mirror of
https://github.com/owasp-modsecurity/ModSecurity.git
synced 2025-08-13 21:36:00 +03:00
68 lines
1.6 KiB
C++
68 lines
1.6 KiB
C++
/*
|
|
* ModSecurity, http://www.modsecurity.org/
|
|
* Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
|
|
*
|
|
* You may not use this file except in compliance with
|
|
* the License. You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* If any of the files related to licensing are missing or if you have any
|
|
* other questions related to licensing please contact Trustwave Holdings, Inc.
|
|
* directly using the email address security@modsecurity.org.
|
|
*
|
|
*/
|
|
|
|
#include "variables/remote_user.h"
|
|
|
|
#include <time.h>
|
|
#include <stdio.h>
|
|
#include <string.h>
|
|
#include <sys/types.h>
|
|
#include <sys/stat.h>
|
|
#include <fcntl.h>
|
|
|
|
#include <iostream>
|
|
#include <string>
|
|
#include <vector>
|
|
#include <list>
|
|
#include <utility>
|
|
|
|
#include "modsecurity/transaction.h"
|
|
#include "utils/base64.h"
|
|
|
|
namespace modsecurity {
|
|
namespace Variables {
|
|
|
|
|
|
void RemoteUser::evaluateInternal(Transaction *transaction,
|
|
std::vector<const collection::Variable *> *l) {
|
|
size_t pos;
|
|
std::string base64;
|
|
|
|
std::string *header = transaction->m_collections.resolveFirst(
|
|
"REQUEST_HEADERS:Authorization");
|
|
|
|
if (header == NULL) {
|
|
return;
|
|
}
|
|
|
|
if (header->compare(0, 6, "Basic ") == 0) {
|
|
base64 = std::string(*header, 6, header->length());
|
|
}
|
|
|
|
base64 = Utils::Base64::decode(base64);
|
|
|
|
pos = base64.find(":");
|
|
if (pos == std::string::npos) {
|
|
return;
|
|
}
|
|
base64 = std::string(base64, 0, pos);
|
|
|
|
l->push_back(new collection::Variable("REMOTE_USER", base64));
|
|
}
|
|
|
|
|
|
} // namespace Variables
|
|
} // namespace modsecurity
|