Example #1
0
void DEFAULT_CC
scp_v1_mng_process(struct SCP_CONNECTION *c, struct SCP_SESSION *s)
{
    long data;
    enum SCP_SERVER_STATES_E e;
    struct SCP_DISCONNECTED_SESSION *slist = 0;
    int scount;
    int end = 0;

    data = auth_userpass(s->username, s->password,NULL);
    /*LOG_DBG("user: %s\npass: %s", s->username, s->password);*/

    if (!data)
    {
        scp_v1s_mng_deny_connection(c, "Login failed");
        log_message(LOG_LEVEL_INFO,
                    "[MNG] Login failed for user %s. Connection terminated", s->username);
        scp_session_destroy(s);
        auth_end(data);
        return;
    }

    /* testing if login is allowed */
    if (0 == access_login_mng_allowed(s->username))
    {
        scp_v1s_mng_deny_connection(c, "Access to Terminal Server not allowed.");
        log_message(LOG_LEVEL_INFO,
                    "[MNG] User %s not allowed on TS. Connection terminated", s->username);
        scp_session_destroy(s);
        auth_end(data);
        return;
    }

    e = scp_v1s_mng_allow_connection(c, s);

    end = 1;

    while (end)
    {
        switch (e)
        {
            case SCP_SERVER_STATE_MNG_ACTION:
                log_message(LOG_LEVEL_INFO, "Connection cancelled after session listing");
                break;

            case SCP_SERVER_STATE_MNG_LISTREQ:
                /* list disconnected sessions */
                slist = session_get_byuser(NULL, &scount, SESMAN_SESSION_STATUS_ALL);
                LOG_DBG("sessions on TS: %d (slist: %x)", scount, slist);

                if (0 == slist)
                {
                    //          e=scp_v1s_connection_error(c, "Internal error");
                    log_message(LOG_LEVEL_INFO, "No sessions on Terminal Server");
                    end = 0;
                }
                else
                {
                    e = scp_v1s_mng_list_sessions(c, s, scount, slist);
                    g_free(slist);
                }

                break;
            default:
                /* we check the other errors */
                parseCommonStates(e, "scp_v1s_mng_list_sessions()");
                end = 0;
                break;
        }
    }

    /* cleanup */
    scp_session_destroy(s);
    auth_end(data);
}
Example #2
0
File: scp_v1.c Project: pmhahn/xrdp
void DEFAULT_CC
scp_v1_process(struct SCP_CONNECTION *c, struct SCP_SESSION *s)
{
    long data;
    int display;
    int retries;
    int current_try;
    enum SCP_SERVER_STATES_E e;
    struct SCP_DISCONNECTED_SESSION *slist;
    struct session_item *sitem;
    int scount;
    SCP_SID sid;

    retries = g_cfg->sec.login_retry;
    current_try = retries;

    data = auth_userpass(s->username, s->password);
    /*LOG_DBG("user: %s\npass: %s", s->username, s->password);*/

    while ((!data) && ((retries == 0) || (current_try > 0)))
    {
        LOG_DBG("data %d - retry %d - currenttry %d - expr %d",
                data, retries, current_try,
                ((!data) && ((retries == 0) || (current_try > 0))));

        e = scp_v1s_request_password(c, s, "Wrong username and/or password");

        switch (e)
        {
            case SCP_SERVER_STATE_OK:
                /* all ok, we got new username and password */
                data = auth_userpass(s->username, s->password);

                /* one try less */
                if (current_try > 0)
                {
                    current_try--;
                }

                break;
            default:
                /* we check the other errors */
                parseCommonStates(e, "scp_v1s_list_sessions()");
                scp_session_destroy(s);
                return;
                //break;
        }
    }

    if (!data)
    {
        scp_v1s_deny_connection(c, "Login failed");
        log_message( LOG_LEVEL_INFO,
                     "Login failed for user %s. Connection terminated", s->username);
        scp_session_destroy(s);
        return;
    }

    /* testing if login is allowed*/
    if (0 == access_login_allowed(s->username))
    {
        scp_v1s_deny_connection(c, "Access to Terminal Server not allowed.");
        log_message(LOG_LEVEL_INFO,
                    "User %s not allowed on TS. Connection terminated", s->username);
        scp_session_destroy(s);
        return;
    }

    //check if we need password change

    /* list disconnected sessions */
    slist = session_get_byuser(s->username, &scount, SESMAN_SESSION_STATUS_DISCONNECTED);

    if (scount == 0)
    {
        /* no disconnected sessions - start a new one */
        log_message(LOG_LEVEL_DEBUG, "No disconnected sessions for this user"
                    "- we create a new one");

        if (0 != s->client_ip)
        {
            log_message(LOG_LEVEL_INFO, "++ created session (access granted): username %s, ip %s", s->username, s->client_ip);
        }
        else
        {
            log_message(LOG_LEVEL_INFO, "++ created session (access granted): username %s", s->username);
        }

        if (SCP_SESSION_TYPE_XVNC == s->type)
        {
            log_message(LOG_LEVEL_INFO, "starting Xvnc session...");
            display = session_start(s->width, s->height, s->bpp, s->username,
                                    s->password, data, SESMAN_SESSION_TYPE_XVNC,
                                    s->domain, s->program, s->directory, s->client_ip);
        }
        else
        {
            log_message(LOG_LEVEL_INFO, "starting X11rdp session...");
            display = session_start(s->width, s->height, s->bpp, s->username,
                                    s->password, data, SESMAN_SESSION_TYPE_XRDP,
                                    s->domain, s->program, s->directory, s->client_ip);
        }

        e = scp_v1s_connect_new_session(c, display);

        switch (e)
        {
            case SCP_SERVER_STATE_OK:
                /* all ok, we got new username and password */
                break;
            default:
                /* we check the other errors */
                parseCommonStates(e, "scp_v1s_connect_new_session()");
                break;
        }
    }
    else
    {
        /* one or more disconnected sessions - listing */
        e = scp_v1s_list_sessions(c, scount, slist, &sid);

        switch (e)
        {
                /*case SCP_SERVER_STATE_FORCE_NEW:*/
                /* we should check for MaxSessions */
            case SCP_SERVER_STATE_SELECTION_CANCEL:
                log_message( LOG_LEVEL_INFO, "Connection cancelled after session listing");
                break;
            case SCP_SERVER_STATE_OK:
                /* ok, reconnecting... */
                sitem = session_get_bypid(sid);

                if (0 == sitem)
                {
                    e = scp_v1s_connection_error(c, "Internal error");
                    log_message(LOG_LEVEL_INFO, "Cannot find session item on the chain");
                }
                else
                {
                    display = sitem->display;
                    /*e=scp_v1s_reconnect_session(c, sitem, display);*/
                    e = scp_v1s_reconnect_session(c, display);

                    if (0 != s->client_ip)
                    {
                        log_message(LOG_LEVEL_INFO, "++ reconnected session: username %s, display :%d.0, session_pid %d, ip %s", s->username, display, sitem->pid, s->client_ip);
                    }
                    else
                    {
                        log_message(LOG_LEVEL_INFO, "++ reconnected session: username %s, display :%d.0, session_pid %d", s->username, display, sitem->pid);
                    }

                    g_free(sitem);
                }

                break;
            default:
                /* we check the other errors */
                parseCommonStates(e, "scp_v1s_list_sessions()");
                break;
        }

        g_free(slist);
    }

    /* resource management */
    if ((e == SCP_SERVER_STATE_OK) && (s->rsr))
    {
        /* here goes scp resource sharing code */
    }

    /* cleanup */
    scp_session_destroy(s);
    auth_end(data);
}