pjs/network/main/singsign.c

3145 строки
94 KiB
C

/* -*- Mode: C; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 2 -*-
*
* The contents of this file are subject to the Netscape Public License
* Version 1.0 (the "License"); you may not use this file except in
* compliance with the License. You may obtain a copy of the License at
* http://www.mozilla.org/NPL/
*
* Software distributed under the License is distributed on an "AS IS"
* basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See
* the License for the specific language governing rights and limitations
* under the License.
*
* The Original Code is Mozilla Communicator client code.
*
* The Initial Developer of the Original Code is Netscape Communications
* Corporation. Portions created by Netscape are Copyright (C) 1998
* Netscape Communications Corporation. All Rights Reserved.
*/
#if defined(SingleSignon)
#define alphabetize 1
#include "libi18n.h" /* For the character code set conversions */
#include "secnav.h" /* For SECNAV_UnMungeString and SECNAV_MungeString */
#ifdef XP_MAC
#include "prpriv.h" /* for NewNamedMonitor */
#include "prinrval.h" /* for PR_IntervalNow */
#ifdef APPLE_KEYCHAIN /* APPLE */
#include "Keychain.h" /* APPLE */
#define kNetscapeProtocolType 'form' /* APPLE */
#endif /* APPLE */
#else
#include "private/prpriv.h" /* for NewNamedMonitor */
#endif
#ifdef PROFILE
#pragma profile on
#endif
#include "prefapi.h"
#include "xpgetstr.h"
#include "xpgetstr.h"
extern int MK_SIGNON_PASSWORDS_GENERATE;
extern int MK_SIGNON_PASSWORDS_REMEMBER;
extern int MK_SIGNON_PASSWORDS_FETCH;
extern int MK_SIGNON_YOUR_SIGNONS;
extern int MK_SIGNON_YOUR_SIGNON_REJECTS;
extern int MK_SIGNON_NOTIFICATION;
extern int MK_SIGNON_NOTIFICATION_1;
extern int MK_SIGNON_NAG;
extern int MK_SIGNON_REMEMBER;
extern int MK_SIGNON_SELECTUSER;
extern int MK_SIGNON_CHANGE;
/* locks for signon cache */
static PRMonitor * signon_lock_monitor = NULL;
static PRThread * signon_lock_owner = NULL;
static int signon_lock_count = 0;
static Bool si_anonymous = FALSE;
#ifdef APPLE_KEYCHAIN
static Bool si_list_invalid = FALSE;
static KCCallbackUPP si_kcUPP = NULL;
PRIVATE int
si_SaveSignonDataInKeychain();
#endif
/* the following is from the now-defunct lo_ele.h */
struct LO_FormSubmitData_struct {
int32 value_cnt;
PA_Block name_array;
PA_Block value_array;
PA_Block type_array;
};
#define FORM_TYPE_TEXT 1
#define FORM_TYPE_PASSWORD 7
/* temporary */
/*
* Need this for now because the normal call to FE_Confirm goes through
* a pointer in the context (context->func->confirm) and the context
* doesn't exist when we get control from layout, namely when SI_RememberSignonData
* is called
*
* Same applies to FE_SelectDialog because context doesn't exist when
* SI_RestoreSignonData is called
*/
static const char *pref_useDialogs =
"wallet.useDialogs";
PRIVATE Bool si_useDialogs = FALSE;
PRIVATE void
si_SetUsingDialogsPref(Bool x)
{
/* do nothing if new value of pref is same as current value */
if (x == si_useDialogs) {
return;
}
/* change the pref */
si_useDialogs = x;
}
MODULE_PRIVATE int PR_CALLBACK
si_UsingDialogsPrefChanged(const char * newpref, void * data)
{
Bool x;
PREF_GetBoolPref(pref_useDialogs, &x);
si_SetUsingDialogsPref(x);
return PREF_NOERROR;
}
void
si_RegisterUsingDialogsPrefCallbacks(void)
{
Bool x = FALSE; /* initialize to default value in case PREF_GetBoolPref fails */
static Bool first_time = TRUE;
if(first_time)
{
first_time = FALSE;
PREF_GetBoolPref(pref_useDialogs, &x);
si_SetUsingDialogsPref(x);
PREF_RegisterCallback(pref_useDialogs, si_UsingDialogsPrefChanged, NULL);
}
}
PRIVATE Bool
si_GetUsingDialogsPref(void)
{
si_RegisterUsingDialogsPrefCallbacks();
return si_useDialogs;
}
Bool
MyFE_Confirm(const char* szMessage)
{
char c;
if (!si_GetUsingDialogsPref()) {
return JS_TRUE;
}
fprintf(stdout, "%c%s (y/n)? ", '\007', szMessage); /* \007 is BELL */
for (;;) {
c = getchar();
if (tolower(c) == 'y') {
return JS_TRUE;
}
if (tolower(c) == 'n') {
return JS_FALSE;
}
}
}
Bool
MyFE_SelectDialog
(const char* szMessage, const char** pList, int16* pCount)
{
char c;
int i;
if (!si_GetUsingDialogsPref()) {
*pCount = 0;
return JS_TRUE;
}
fprintf(stdout, "%s\n", szMessage);
for (i=0; i<*pCount; i++) {
fprintf(stdout, "%d: %s\n", i, pList[i]);
}
fprintf(stdout, "%cType user number (max=9) or type n to cancel. ", '\007'); /* \007 is BELL */
for (;;) {
c = getchar();
if (c >= '0' && c <= '9') {
*pCount = c - '0';
return JS_TRUE;
}
if (tolower(c) == 'n') {
return JS_FALSE;
}
}
}
/* end of temporary */
PRIVATE void
si_lock_signon_list(void)
{
if(!signon_lock_monitor) {
signon_lock_monitor =
PR_NewNamedMonitor("signon-lock");
}
PR_EnterMonitor(signon_lock_monitor);
while(TRUE) {
/* no current owner or owned by this thread */
PRThread * t = PR_CurrentThread();
if(signon_lock_owner == NULL || signon_lock_owner == t) {
signon_lock_owner = t;
signon_lock_count++;
PR_ExitMonitor(signon_lock_monitor);
return;
}
/* owned by someone else -- wait till we can get it */
PR_Wait(signon_lock_monitor, PR_INTERVAL_NO_TIMEOUT);
}
}
PRIVATE void
si_unlock_signon_list(void)
{
PR_EnterMonitor(signon_lock_monitor);
#ifdef DEBUG
/* make sure someone doesn't try to free a lock they don't own */
PR_ASSERT(signon_lock_owner == PR_CurrentThread());
#endif
signon_lock_count--;
if(signon_lock_count == 0) {
signon_lock_owner = NULL;
PR_Notify(signon_lock_monitor);
}
PR_ExitMonitor(signon_lock_monitor);
}
/*
* Data and procedures for rememberSignons preference
*/
static const char *pref_rememberSignons =
"network.signon.rememberSignons";
PRIVATE Bool si_RememberSignons = FALSE;
PRIVATE int
si_SaveSignonDataLocked(char * filename);
PRIVATE void
si_SetSignonRememberingPref(Bool x)
{
/* do nothing if new value of pref is same as current value */
if (x == si_RememberSignons) {
return;
}
/* if pref is being turned off, save the current signons to a file */
if (x == 0) {
si_lock_signon_list();
si_SaveSignonDataLocked(NULL);
si_unlock_signon_list();
#ifdef APPLE_KEYCHAIN
/* We no longer need the Keychain callback installed */
KCRemoveCallback( si_kcUPP );
DisposeRoutineDescriptor( si_kcUPP );
si_kcUPP = NULL;
#endif
}
/* change the pref */
si_RememberSignons = x;
/* if pref is being turned on, load the signon file into memory */
if (x == 1) {
SI_RemoveAllSignonData();
SI_LoadSignonData(NULL);
}
}
MODULE_PRIVATE int PR_CALLBACK
si_SignonRememberingPrefChanged(const char * newpref, void * data)
{
Bool x;
PREF_GetBoolPref(pref_rememberSignons, &x);
si_SetSignonRememberingPref(x);
return PREF_NOERROR;
}
void
si_RegisterSignonPrefCallbacks(void)
{
Bool x = TRUE; /* initialize to default value in case PREF_GetBoolPref fails */
static Bool first_time = TRUE;
if(first_time)
{
first_time = FALSE;
PREF_GetBoolPref(pref_rememberSignons, &x);
si_SetSignonRememberingPref(x);
PREF_RegisterCallback(pref_rememberSignons, si_SignonRememberingPrefChanged, NULL);
}
}
PRIVATE Bool
si_GetSignonRememberingPref(void)
{
#ifdef APPLE_KEYCHAIN
/* If the Keychain has been locked or an item deleted or updated,
we need to reload the signon data */
if (si_list_invalid)
{
/*
* set si_list_invalid to FALSE first because SI_RemoveAllSignonData
* calls si_GetSignonRememberingPref
*/
si_list_invalid = FALSE;
SI_RemoveAllSignonData();
SI_LoadSignonData(NULL);
}
#endif
si_RegisterSignonPrefCallbacks();
return si_RememberSignons;
}
/*
* Data and procedures for signon cache
*/
typedef struct _SignonDataStruct {
char * name;
char * value;
Bool isPassword;
} si_SignonDataStruct;
typedef struct _SignonUserStruct {
XP_List * signonData_list;
} si_SignonUserStruct;
typedef struct _SignonURLStruct {
char * URLName;
si_SignonUserStruct* chosen_user; /* this is a state variable */
XP_List * signonUser_list;
} si_SignonURLStruct;
typedef struct _RejectStruct {
char * URLName;
char * userName;
} si_Reject;
PRIVATE XP_List * si_signon_list=0;
PRIVATE XP_List * si_reject_list=0;
PRIVATE Bool si_signon_list_changed = FALSE;
PRIVATE int si_TagCount = 0;
PRIVATE Bool si_NoticeGiven = FALSE;
/* Remove misleading portions from URL name */
PRIVATE char*
si_StrippedURL (char* URLName) {
char *result = 0;
char *s, *t;
/* check for null URLName */
if (URLName == NULL || XP_STRLEN(URLName) == 0) {
return NULL;
}
/* check for protocol at head of URL */
s = URLName;
s = (char*) XP_STRCHR(s+1, '/');
if (s) {
if (*(s+1) == '/') {
/* looks good, let's parse it */
return NET_ParseURL(URLName, GET_HOST_PART);
} else {
/* not a valid URL, leave it as is */
StrAllocCopy(result, URLName);
return result;
}
}
/* initialize result */
StrAllocCopy(result, URLName);
/* remove everything in result after and including first question mark */
s = result;
s = (char*) XP_STRCHR(s, '?');
if (s) {
*s = '\0';
}
/* remove everything in result after last slash (e.g., index.html) */
s = result;
t = 0;
while ((s = (char*) XP_STRCHR(s+1, '/'))) {
t = s;
}
if (t) {
*(t+1) = '\0';
}
/* remove socket number from result */
s = result;
while ((s = (char*) XP_STRCHR(s+1, ':'))) {
/* s is at next colon */
if (*(s+1) != '/') {
/* and it's not :// so it must be start of socket number */
if ((t = (char*) XP_STRCHR(s+1, '/'))) {
/* t is at slash terminating the socket number */
do {
/* copy remainder of t to s */
*s++ = *t;
} while (*(t++));
}
break;
}
}
/* alll done */
return result;
}
/* remove terminating CRs or LFs */
PRIVATE void
si_StripLF(char* buffer) {
while ((buffer[XP_STRLEN(buffer)-1] == '\n') ||
(buffer[XP_STRLEN(buffer)-1] == '\r')) {
buffer[XP_STRLEN(buffer)-1] = '\0';
}
}
/* If user-entered password is "generate", then generate a random password */
PRIVATE void
si_Randomize(char * password) {
PRIntervalTime random;
int i;
const char * hexDigits = "0123456789AbCdEf";
if (XP_STRCMP(password, XP_GetString(MK_SIGNON_PASSWORDS_GENERATE)) == 0) {
random = PR_IntervalNow();
for (i=0; i<8; i++) {
password[i] = hexDigits[random%16];
random = random/16;
}
}
}
/*
* Get the URL node for a given URL name
*
* This routine is called only when holding the signon lock!!!
*/
PRIVATE si_SignonURLStruct *
si_GetURL(char * URLName) {
XP_List * list_ptr = si_signon_list;
si_SignonURLStruct * url;
char *strippedURLName = 0;
if (!URLName) {
/* no URLName specified, return first URL (returns NULL if not URLs) */
return (si_SignonURLStruct *) XP_ListNextObject(list_ptr);
}
strippedURLName = si_StrippedURL(URLName);
while((url = (si_SignonURLStruct *) XP_ListNextObject(list_ptr))!=0) {
if(url->URLName && !XP_STRCMP(strippedURLName, url->URLName)) {
XP_FREE(strippedURLName);
return url;
}
}
XP_FREE(strippedURLName);
return (NULL);
}
/* Remove a user node from a given URL node */
PUBLIC Bool
SI_RemoveUser(char *URLName, char *userName, Bool save) {
si_SignonURLStruct * url;
si_SignonUserStruct * user;
si_SignonDataStruct * data;
XP_List * user_ptr;
XP_List * data_ptr;
/* do nothing if signon preference is not enabled */
if (!si_GetSignonRememberingPref()) {
return FALSE;
}
si_lock_signon_list();
/* get URL corresponding to URLName (or first URL if URLName is NULL) */
url = si_GetURL(URLName);
if (!url) {
/* URL not found */
si_unlock_signon_list();
return FALSE;
}
/* free the data in each node of the specified user node for this URL */
user_ptr = url->signonUser_list;
if (userName == NULL) {
/* no user specified so remove the first one */
user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr);
} else {
/* find the specified user */
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
data_ptr = user->signonData_list;
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
if (XP_STRCMP(data->value, userName)==0) {
goto foundUser;
}
}
}
si_unlock_signon_list();
return FALSE; /* user not found so nothing to remove */
foundUser: ;
}
/* free the items in the data list */
data_ptr = user->signonData_list;
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
XP_FREE(data->name);
XP_FREE(data->value);
}
/* free the data list */
XP_ListDestroy(user->signonData_list);
/* free the user node */
XP_ListRemoveObject(url->signonUser_list, user);
/* remove this URL if it contains no more users */
if (XP_ListCount(url->signonUser_list) == 0) {
XP_FREE(url->URLName);
XP_ListRemoveObject(si_signon_list, url);
}
/* write out the change to disk */
if (save) {
si_signon_list_changed = TRUE;
si_SaveSignonDataLocked(NULL);
}
si_unlock_signon_list();
return TRUE;
}
/* Determine if a specified url/user exists */
PRIVATE Bool
si_CheckForUser(char *URLName, char *userName) {
si_SignonURLStruct * url;
si_SignonUserStruct * user;
si_SignonDataStruct * data;
XP_List * user_ptr;
XP_List * data_ptr;
/* do nothing if signon preference is not enabled */
if (!si_GetSignonRememberingPref()) {
return FALSE;
}
si_lock_signon_list();
/* get URL corresponding to URLName */
url = si_GetURL(URLName);
if (!url) {
/* URL not found */
si_unlock_signon_list();
return FALSE;
}
/* find the specified user */
user_ptr = url->signonUser_list;
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
data_ptr = user->signonData_list;
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
if (XP_STRCMP(data->value, userName)==0) {
si_unlock_signon_list();
return TRUE;
}
}
}
si_unlock_signon_list();
return FALSE; /* user not found */
}
/*
* Get the user node for a given URL
*
* This routine is called only when holding the signon lock!!!
*
* This routine is called only if signon pref is enabled!!!
*/
PRIVATE si_SignonUserStruct*
si_GetUser(char* URLName, Bool pickFirstUser, char* userText) {
si_SignonURLStruct* url;
si_SignonUserStruct* user;
si_SignonDataStruct* data;
XP_List * data_ptr=0;
XP_List * user_ptr=0;
/* get to node for this URL */
url = si_GetURL(URLName);
if (url != NULL) {
/* node for this URL was found */
int16 user_count;
user_ptr = url->signonUser_list;
if ((user_count = XP_ListCount(user_ptr)) == 1) {
/* only one set of data exists for this URL so select it */
user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr);
url->chosen_user = user;
} else if (pickFirstUser) {
user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr);
} else {
/* multiple users for this URL so a choice needs to be made */
char ** list;
char ** list2;
si_SignonUserStruct** users;
si_SignonUserStruct** users2;
list = XP_ALLOC(user_count*sizeof(char*));
users = XP_ALLOC(user_count*sizeof(si_SignonUserStruct*));
list2 = list;
users2 = users;
/* step through set of user nodes for this URL and create list of
* first data node of each (presumably that is the user name).
* Note that the user nodes are already ordered by
* most-recently-used so the first one in the list is the most
* likely one to be chosen.
*/
user_count = 0;
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
data_ptr = user->signonData_list;
/* consider first data node to be the identifying item */
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
if (PL_strcmp(data->name, userText)) {
/* name of current data item does not match name in data node */
continue;
}
*(list2++) = data->value;
*(users2++) = user;
user_count++;
}
/* have user select a username from the list */
if (user_count == 0) {
/* not first data node for any saved user, so simply pick first user */
user_ptr = url->signonUser_list;
user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr);
} else if (user_count == 1) {
/* only one user for this form at this url, so select it */
user = users[0];
} else if ((user_count > 1) && MyFE_SelectDialog(
XP_GetString(MK_SIGNON_SELECTUSER),
list, &user_count)) {
/* user pressed OK */
if (user_count == -1) {
user_count = 0; /* user didn't select, so use first one */
}
user = users[user_count]; /* this is the selected item */
/* item selected is now most-recently used, put at head of list */
XP_ListRemoveObject(url->signonUser_list, user);
XP_ListAddObject(url->signonUser_list, user);
} else {
user = NULL;
}
url->chosen_user = user;
XP_FREE(list);
XP_FREE(users);
/* if we don't remove the URL from the cache at this point, the
* cached copy will be brought in containing the last-used username
* rather than the username that was just selected
*/
NET_RemoveURLFromCache
(NET_CreateURLStruct((char *)URLName, NET_DONT_RELOAD));
}
} else {
user = NULL;
}
return user;
}
/*
* Get the user for which a change-of-password is to be applied
*
* This routine is called only when holding the signon lock!!!
*
* This routine is called only if signon pref is enabled!!!
*/
PRIVATE si_SignonUserStruct*
si_GetUserForChangeForm(char* URLName, int messageNumber)
{
si_SignonURLStruct* url;
si_SignonUserStruct* user;
si_SignonDataStruct * data;
XP_List * user_ptr = 0;
XP_List * data_ptr = 0;
char *message = 0;
/* get to node for this URL */
url = si_GetURL(URLName);
if (url != NULL) {
/* node for this URL was found */
user_ptr = url->signonUser_list;
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
char *strippedURLName = si_StrippedURL(URLName);
data_ptr = user->signonData_list;
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
message = PR_smprintf(XP_GetString(messageNumber),
data->value,
strippedURLName);
XP_FREE(strippedURLName);
if (MyFE_Confirm(message)) {
/*
* since this user node is now the most-recently-used one, move it
* to the head of the user list so that it can be favored for
* re-use the next time this form is encountered
*/
XP_ListRemoveObject(url->signonUser_list, user);
XP_ListAddObject(url->signonUser_list, user);
si_signon_list_changed = TRUE;
si_SaveSignonDataLocked(NULL);
XP_FREE(message);
return user;
}
}
}
XP_FREE(message);
return NULL;
}
/*
* Get the url and user for which a change-of-password is to be applied
*
* This routine is called only when holding the signon lock!!!
*
* This routine is called only if signon pref is enabled!!!
*/
PRIVATE si_SignonUserStruct*
si_GetURLAndUserForChangeForm(char* password)
{
si_SignonURLStruct* url;
si_SignonUserStruct* user;
si_SignonDataStruct * data;
XP_List * url_ptr = 0;
XP_List * user_ptr = 0;
XP_List * data_ptr = 0;
char *message = 0;
int16 user_count;
char ** list;
char ** list2;
si_SignonUserStruct** users;
si_SignonUserStruct** users2;
si_SignonURLStruct** urls;
si_SignonURLStruct** urls2;
/* get count of total number of user nodes at all url nodes */
user_count = 0;
url_ptr = si_signon_list;
while((url = (si_SignonURLStruct *) XP_ListNextObject(url_ptr))!=0) {
user_ptr = url->signonUser_list;
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
user_count++;
}
}
/* allocate lists for maximumum possible url and user names */
list = XP_ALLOC(user_count*sizeof(char*));
users = XP_ALLOC(user_count*sizeof(si_SignonUserStruct*));
urls = XP_ALLOC(user_count*sizeof(si_SignonUserStruct*));
list2 = list;
users2 = users;
urls2 = urls;
/* step through set of URLs and users and create list of each */
user_count = 0;
url_ptr = si_signon_list;
while((url = (si_SignonURLStruct *) XP_ListNextObject(url_ptr))!=0) {
user_ptr = url->signonUser_list;
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
data_ptr = user->signonData_list;
/* find saved password and see if it matches password user just entered */
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
if (data->isPassword && !PL_strcmp(data->value, password)) {
/* passwords match so add entry to list */
/* consider first data node to be the identifying item */
data_ptr = user->signonData_list;
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
*list2 = 0;
StrAllocCopy(*list2, url->URLName);
StrAllocCat(*list2,": ");
StrAllocCat(*list2, data->value);
list2++;
*(users2++) = user;
*(urls2++) = url;
user_count++;
break;
}
}
}
}
/* query user */
if (user_count && MyFE_SelectDialog
(XP_GetString(MK_SIGNON_CHANGE),
list,
&user_count)) {
user = users[user_count];
url = urls[user_count];
/*
* since this user node is now the most-recently-used one, move it
* to the head of the user list so that it can be favored for
* re-use the next time this form is encountered
*/
XP_ListRemoveObject(url->signonUser_list, user);
XP_ListAddObject(url->signonUser_list, user);
si_signon_list_changed = TRUE;
si_SaveSignonDataLocked(NULL);
} else {
user = NULL;
}
/* free allocated strings */
while (--list2 > list) {
XP_FREE(*list2);
}
XP_FREE(list);
XP_FREE(users);
XP_FREE(urls);
return user;
}
PRIVATE void
si_FreeReject(si_Reject * reject) {
/*
* This routine should only be called while holding the
* signon list lock
*/
if(!reject) {
return;
}
XP_ListRemoveObject(si_reject_list, reject);
PR_FREEIF(reject->URLName);
PR_FREEIF(reject->userName);
PR_Free(reject);
}
PRIVATE Bool
si_CheckForReject(char * URLName, char * userName) {
XP_List * list_ptr;
si_Reject * reject;
si_lock_signon_list();
if (si_reject_list) {
list_ptr = si_reject_list;
while((reject = (si_Reject *) XP_ListNextObject(list_ptr))!=0) {
if(!PL_strcmp(userName, reject->userName) &&
!PL_strcmp(URLName, reject->URLName)) {
si_unlock_signon_list();
return TRUE;
}
}
}
si_unlock_signon_list();
return FALSE;
}
PRIVATE void
si_PutReject(char * URLName, char * userName, Bool save) {
si_Reject * reject;
char * URLName2=NULL;
char * userName2=NULL;
reject = PR_NEW(si_Reject);
if (reject) {
/*
* lock the signon list
* Note that, for efficiency, SI_LoadSignonData already sets the lock
* before calling this routine whereas none of the other callers do.
* So we need to determine whether or not we were called from
* SI_LoadSignonData before setting or clearing the lock. We can
* determine this by testing "save" since only SI_LoadSignonData
* passes in a value of FALSE for "save".
*/
XP_List * list_ptr;
if (save) {
si_lock_signon_list();
}
list_ptr = si_reject_list;
StrAllocCopy(URLName2, URLName);
StrAllocCopy(userName2, userName);
reject->URLName = URLName2;
reject->userName = userName2;
if(!si_reject_list) {
si_reject_list = XP_ListNew();
if(!si_reject_list) {
PR_Free(reject->URLName);
PR_Free(reject->userName);
PR_Free(reject);
if (save) {
si_unlock_signon_list();
}
return;
}
}
#ifdef alphabetize
/* add it to the list in alphabetical order */
{
si_Reject * tmp_reject;
Bool rejectAdded = FALSE;
while((tmp_reject = (si_Reject *) XP_ListNextObject(list_ptr))!=0) {
if (PL_strcmp (reject->URLName, tmp_reject->URLName)<0) {
XP_ListInsertObject (si_reject_list, tmp_reject, reject);
rejectAdded = TRUE;
break;
}
}
if (!rejectAdded) {
XP_ListAddObjectToEnd (si_reject_list, reject);
}
}
#else
/* add it to the end of the list */
XP_ListAddObjectToEnd (si_reject_list, reject);
#endif
if (save) {
si_signon_list_changed = TRUE;
SI_SaveSignonData(NULL);
}
if (save) {
si_unlock_signon_list();
}
}
}
/* Ask user if it is ok to save the signon data */
PRIVATE Bool
si_OkToSave(char *URLName, char *userName) {
Bool remember_checked = TRUE;
char *strippedURLName = 0;
/* if url/user already exists, then it is safe to save it again */
if (si_CheckForUser(URLName, userName)) {
return TRUE;
}
if (!si_NoticeGiven) {
char* notification = 0;
si_NoticeGiven = TRUE;
si_signon_list_changed = TRUE;
SI_SaveSignonData(NULL);
StrAllocCopy(notification, XP_GetString(MK_SIGNON_NOTIFICATION));
StrAllocCat(notification, XP_GetString(MK_SIGNON_NOTIFICATION_1));
if (!MyFE_Confirm(notification)) {
XP_FREE (notification);
PREF_SetBoolPref(pref_rememberSignons, FALSE);
return FALSE;
}
XP_FREE (notification);
}
strippedURLName = si_StrippedURL(URLName);
if (si_CheckForReject(strippedURLName, userName)) {
XP_FREE(strippedURLName);
return FALSE;
}
if (!MyFE_Confirm(XP_GetString(MK_SIGNON_NAG))) {
si_PutReject(strippedURLName, userName, TRUE);
XP_FREE(strippedURLName);
return FALSE;
}
XP_FREE(strippedURLName);
return TRUE;
}
/*
* Put data obtained from a submit form into the data structure for
* the specified URL
*
* See comments below about state of signon lock when routine is called!!!
*
* This routine is called only if signon pref is enabled!!!
*/
PRIVATE void
si_PutData(char * URLName, LO_FormSubmitData * submit, Bool save) {
char * name;
char * value;
Bool added_to_list = FALSE;
si_SignonURLStruct * url;
si_SignonUserStruct * user;
si_SignonDataStruct * data;
int j;
XP_List * list_ptr;
XP_List * user_ptr;
XP_List * data_ptr;
si_SignonURLStruct * tmp_URL_ptr;
Bool mismatch;
int i;
/* discard this if the password is empty */
for (i=0; i<submit->value_cnt; i++) {
if ((((uint8*)submit->type_array)[i] == FORM_TYPE_PASSWORD) &&
(!((char **)(submit->value_array))[i] ||
!XP_STRLEN( ((char **)(submit->value_array)) [i])) ) {
return;
}
}
/*
* lock the signon list
* Note that, for efficiency, SI_LoadSignonData already sets the lock
* before calling this routine whereas none of the other callers do.
* So we need to determine whether or not we were called from
* SI_LoadSignonData before setting or clearing the lock. We can
* determine this by testing "save" since only SI_LoadSignonData passes
* in a value of FALSE for "save".
*/
if (save) {
si_lock_signon_list();
}
/* make sure the signon list exists */
if(!si_signon_list) {
si_signon_list = XP_ListNew();
if(!si_signon_list) {
if (save) {
si_unlock_signon_list();
}
return;
}
}
/* find node in signon list having the same URL */
if ((url = si_GetURL(URLName)) == NULL) {
/* doesn't exist so allocate new node to be put into signon list */
url = XP_NEW(si_SignonURLStruct);
if (!url) {
if (save) {
si_unlock_signon_list();
}
return;
}
/* fill in fields of new node */
url->URLName = si_StrippedURL(URLName);
if (!url->URLName) {
XP_FREE(url);
if (save) {
si_unlock_signon_list();
}
return;
}
url->signonUser_list = XP_ListNew();
if(!url->signonUser_list) {
XP_FREE(url->URLName);
XP_FREE(url);
}
/* put new node into signon list */
#ifdef alphabetize
/* add it to the list in alphabetical order */
list_ptr = si_signon_list;
while((tmp_URL_ptr =
(si_SignonURLStruct *) XP_ListNextObject(list_ptr))!=0) {
if(PL_strcmp(url->URLName,tmp_URL_ptr->URLName)<0) {
XP_ListInsertObject
(si_signon_list, tmp_URL_ptr, url);
added_to_list = TRUE;
break;
}
}
if (!added_to_list) {
XP_ListAddObjectToEnd (si_signon_list, url);
}
}
#else
/* add it to the end of the list */
XP_ListAddObjectToEnd (si_signon_list, url);
#endif
/* initialize state variables in URL node */
url->chosen_user = NULL;
/*
* see if a user node with data list matching new data already exists
* (password fields will not be checked for in this matching)
*/
user_ptr = url->signonUser_list;
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
data_ptr = user->signonData_list;
j = 0;
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
mismatch = FALSE;
/* skip non text/password fields */
while ((j < submit->value_cnt) &&
(((uint8*)submit->type_array)[j]!=FORM_TYPE_TEXT) &&
(((uint8*)submit->type_array)[j]!=FORM_TYPE_PASSWORD)) {
j++;
}
/* check for match on name field and type field */
if ((j < submit->value_cnt) &&
(data->isPassword ==
(((uint8*)submit->type_array)[j]==FORM_TYPE_PASSWORD)) &&
(!XP_STRCMP(data->name, ((char **)submit->name_array)[j]))) {
/* success, now check for match on value field if not password */
if (!submit->value_array[j]) {
/* special case a null value */
if (!XP_STRCMP(data->value, "")) {
j++; /* success */
} else {
mismatch = TRUE;
break; /* value mismatch, try next user */
}
} else if (!XP_STRCMP(data->value, ((char **)submit->value_array)[j])
|| data->isPassword) {
j++; /* success */
} else {
mismatch = TRUE;
break; /* value mismatch, try next user */
}
} else {
mismatch = TRUE;
break; /* name or type mismatch, try next user */
}
}
if (!mismatch) {
/* all names and types matched and all non-password values matched */
/*
* note: it is ok for password values not to match; it means
* that the user has either changed his password behind our
* back or that he previously mis-entered the password
*/
/* update the saved password values */
data_ptr = user->signonData_list;
j = 0;
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
/* skip non text/password fields */
while ((j < submit->value_cnt) &&
(((uint8*)submit->type_array)[j]!=FORM_TYPE_TEXT) &&
(((uint8*)submit->type_array)[j]!=FORM_TYPE_PASSWORD)) {
j++;
}
/* update saved password */
if ((j < submit->value_cnt) && data->isPassword) {
if (XP_STRCMP(data->value, ((char **)submit->value_array)[j])) {
si_signon_list_changed = TRUE;
StrAllocCopy(data->value, ((char **)submit->value_array)[j]);
si_Randomize(data->value);
}
}
j++;
}
/*
* since this user node is now the most-recently-used one, move it
* to the head of the user list so that it can be favored for
* re-use the next time this form is encountered
*/
XP_ListRemoveObject(url->signonUser_list, user);
XP_ListAddObject(url->signonUser_list, user);
/* return */
if (save) {
si_signon_list_changed = TRUE;
si_SaveSignonDataLocked(NULL);
si_unlock_signon_list();
}
return; /* nothing more to do since data already exists */
}
}
/* user node with current data not found so create one */
user = XP_NEW(si_SignonUserStruct);
if (!user) {
if (save) {
si_unlock_signon_list();
}
return;
}
user->signonData_list = XP_ListNew();
if(!user->signonData_list) {
XP_FREE(user);
if (save) {
si_unlock_signon_list();
}
return;
}
/* create and fill in data nodes for new user node */
for (j=0; j<submit->value_cnt; j++) {
/* skip non text/password fields */
if((((uint8*)submit->type_array)[j]!=FORM_TYPE_TEXT) &&
(((uint8*)submit->type_array)[j]!=FORM_TYPE_PASSWORD)) {
continue;
}
/* create signon data node */
data = XP_NEW(si_SignonDataStruct);
if (!data) {
XP_ListDestroy(user->signonData_list);
XP_FREE(user);
}
data->isPassword =
(((uint8 *)submit->type_array)[j] == FORM_TYPE_PASSWORD);
name = 0; /* so that StrAllocCopy doesn't free previous name */
StrAllocCopy(name, ((char **)submit->name_array)[j]);
data->name = name;
value = 0; /* so that StrAllocCopy doesn't free previous name */
if (submit->value_array[j]) {
StrAllocCopy(value, ((char **)submit->value_array)[j]);
} else {
StrAllocCopy(value, ""); /* insures that value is not null */
}
data->value = value;
if (data->isPassword) {
si_Randomize(data->value);
}
/* append new data node to end of data list */
XP_ListAddObjectToEnd (user->signonData_list, data);
}
/* append new user node to front of user list for matching URL */
/*
* Note that by appending to the front, we assure that if there are
* several users, the most recently used one will be favored for
* reuse the next time this form is encountered. But don't do this
* when reading in signons.txt (i.e., when save is false), otherwise
* we will be reversing the order when reading in.
*/
if (save) {
XP_ListAddObject(url->signonUser_list, user);
si_signon_list_changed = TRUE;
si_SaveSignonDataLocked(NULL);
si_unlock_signon_list();
} else {
XP_ListAddObjectToEnd(url->signonUser_list, user);
}
}
/*
* When a new form is started, set the tagCount to 0
*/
PUBLIC void
SI_StartOfForm() {
si_TagCount = 0;
}
/*
* APPLE
* The Keychain callback. This routine will be called whenever a lock,
* delete, or update event occurs in the Keychain. The only action taken
* is to make the signon list invalid, so it will be read in again the
* next time it is accessed.
*/
#ifdef APPLE_KEYCHAIN
OSStatus PR_CALLBACK
si_KeychainCallback( KCEvent keychainEvent, KCCallbackInfo *info, void *userContext) {
Bool *listInvalid = (Bool*)userContext;
*listInvalid = TRUE;
}
#endif
#define BUFFER_SIZE 4096
#define MAX_ARRAY_SIZE 50
/*
* APPLE
* Get the signon data from the keychain
*
* This routine is called only if signon pref is enabled!!!
*/
#ifdef APPLE_KEYCHAIN
PRIVATE int
si_LoadSignonDataFromKeychain() {
char * URLName;
LO_FormSubmitData submit;
char* name_array[MAX_ARRAY_SIZE];
char* value_array[MAX_ARRAY_SIZE];
uint8 type_array[MAX_ARRAY_SIZE];
char buffer[BUFFER_SIZE];
XP_File fp;
Bool badInput = FALSE;
int i;
char* unmungedValue;
KCItemRef itemRef;
KCAttributeList attrList;
KCAttribute attr[2];
KCItemClass itemClass = kInternetPasswordKCItemClass;
KCProtocolType protocol = kNetscapeProtocolType;
OSStatus status = noErr;
KCSearchRef searchRef = NULL;
/* initialize the submit structure */
submit.name_array = (PA_Block)name_array;
submit.value_array = (PA_Block)value_array;
submit.type_array = (PA_Block)type_array;
/* set up the attribute list */
attrList.count = 2;
attrList.attr = attr;
attr[0].tag = kClassKCItemAttr;
attr[0].data = &itemClass;
attr[0].length = sizeof(itemClass);
attr[1].tag = kProtocolKCItemAttr;
attr[1].data = &protocol;
attr[1].length = sizeof(protocol);
status = KCFindFirstItem( &attrList, &searchRef, &itemRef );
if (status == noErr) {
/* if we found a Netscape item, let's assume notice has been given */
si_NoticeGiven = TRUE;
} else {
si_NoticeGiven = FALSE;
}
si_lock_signon_list();
while(status == noErr) {
char *value;
uint16 i = 0;
uint32 actualSize;
KCItemFlags flags;
Boolean reject = FALSE;
submit.value_cnt = 0;
/* first find out if it is a reject entry */
attr[0].tag = kFlagsKCItemAttr;
attr[0].length = sizeof(KCItemFlags);
attr[0].data = &flags;
status = KCGetAttribute( itemRef, attr, nil );
if (status != noErr) {
break;
}
if (flags & kNegativeKCItemFlag) {
reject = TRUE;
}
/* get the server name */
attr[0].tag = kServerKCItemAttr;
attr[0].length = BUFFER_SIZE;
attr[0].data = buffer;
status = KCGetAttribute( itemRef, attr, &actualSize );
if (status != noErr) {
break;
{
/* null terminate */
buffer[actualSize] = 0;
URLName = NULL;
StrAllocCopy(URLName, buffer);
if (!reject) {
/* get the password data */
status = KCGetData(itemRef, BUFFER_SIZE, buffer, &actualSize);
if (status != noErr) {
break;
}
/* null terminate */
buffer[actualSize] = 0;
/* parse for '=' which separates the name and value */
for (i = 0; i < XP_STRLEN(buffer); i++) {
if (buffer[i] == '=') {
value = &buffer[i+1];
buffer[i] = 0;
break;
}
}
name_array[submit.value_cnt] = NULL;
value_array[submit.value_cnt] = NULL;
type_array[submit.value_cnt] = FORM_TYPE_PASSWORD;
StrAllocCopy(name_array[submit.value_cnt], buffer);
StrAllocCopy(value_array[submit.value_cnt], value);
}
/* get the account attribute */
attr[0].tag = kAccountKCItemAttr;
attr[0].length = BUFFER_SIZE;
attr[0].data = buffer;
status = KCGetAttribute( itemRef, attr, &actualSize );
if (status != noErr) {
break;
}
/* null terminate */
buffer[actualSize] = 0;
if (!reject) {
/* parse for '=' which separates the name and value */
for (i = 0; i < XP_STRLEN(buffer); i++) {
if (buffer[i] == '=') {
value = &buffer[i+1];
buffer[i] = 0;
break;
}
}
submit.value_cnt++;
name_array[submit.value_cnt] = NULL;
value_array[submit.value_cnt] = NULL;
type_array[submit.value_cnt] = FORM_TYPE_TEXT;
StrAllocCopy(name_array[submit.value_cnt], buffer);
StrAllocCopy(value_array[submit.value_cnt], value);
/* check for overruning of the arrays */
if (submit.value_cnt >= MAX_ARRAY_SIZE) {
break;
}
submit.value_cnt++;
/* store the info for this URL into memory-resident data structure */
if (!URLName || XP_STRLEN(URLName) == 0) {
badInput = TRUE;
}
if (!badInput) {
si_PutData(URLName, &submit, FALSE);
}
/* free up all the allocations done for processing this URL */
for (i = 0; i < submit.value_cnt; i++) {
XP_FREE(name_array[i]);
XP_FREE(value_array[i]);
}
} else {
/* reject */
si_PutReject(URLName, buffer, FALSE);
}
reject = FALSE; /* reset reject flag */
XP_FREE(URLName);
KCReleaseItemRef( &itemRef );
status = KCFindNextItem( searchRef, &itemRef );
}
si_unlock_signon_list();
if (searchRef) {
KCReleaseSearchRef( &searchRef );
}
/* Register a callback with the Keychain if we haven't already done so. */
if (si_kcUPP == NULL)
{
si_kcUPP = NewKCCallbackProc( si_KeychainCallback );
if (!si_kcUPP) {
return memFullErr;
}
KCAddCallback( si_kcUPP, kLockKCEventMask + kDeleteKCEventMask + kUpdateKCEventMask, &si_list_invalid );
/*
* Note that the callback is not necessarily removed. We take advantage
* of the fact that the Keychain will clean up the callback when the app
* goes away. It is explicitly removed when the signon preference is turned off.
*/
}
if (status == errKCItemNotFound) {
status = 0;
}
return (status);
}
#endif
/*
* Temporary routines until real encryption routines become available
*/
char *
MY_SECNAV_UnMungeString(char * text) {
char * result = NULL;
char* p;
StrAllocCopy(result, text);
p = result;
while (*p) {
*(p++) ^= 0xff;
}
return result;
}
char *
MY_SECNAV_MungeString(char * text) {
char * result = NULL;
char* p;
StrAllocCopy(result, text);
p = result;
while (*p) {
*(p++) ^= 0xff;
}
return result;
}
/*
* Load signon data from disk file
* The parameter passed in on entry is ignored
*/
PUBLIC int
SI_LoadSignonData(char * filename) {
char * URLName;
LO_FormSubmitData submit;
char* name_array[MAX_ARRAY_SIZE];
char* value_array[MAX_ARRAY_SIZE];
uint8 type_array[MAX_ARRAY_SIZE];
char buffer[BUFFER_SIZE];
XP_File fp;
Bool badInput;
int i;
char* unmungedValue;
/* do nothing if signon preference is not enabled */
if (!si_GetSignonRememberingPref()) {
return 0;
}
#ifdef APPLE_KEYCHAIN
if (KeychainManagerAvailable()) {
return si_LoadSignonDataFromKeychain();
}
#endif
/* open the signon file */
if(!(fp = XP_FileOpen(filename, xpHTTPSingleSignon, XP_FILE_READ))) {
return(-1);
}
/* skip the initial comment lines */
do {
XP_FileReadLine(buffer, BUFFER_SIZE, fp);
} while (buffer[0] == '#');
/* first line after comment indicates if notice was given */
si_NoticeGiven = (buffer[0] == 'T');
/* read the reject list */
si_lock_signon_list();
while(XP_FileReadLine(buffer, BUFFER_SIZE, fp)) {
if (buffer[0] == '.') {
break; /* end of reject list */
}
si_StripLF(buffer);
URLName = NULL;
StrAllocCopy(URLName, buffer);
XP_FileReadLine(buffer, BUFFER_SIZE, fp); /* get username */
si_StripLF(buffer);
si_PutReject(URLName, buffer, FALSE);
XP_FREE (URLName);
}
/* initialize the submit structure */
submit.name_array = (PA_Block)name_array;
submit.value_array = (PA_Block)value_array;
submit.type_array = (PA_Block)type_array;
/* read the URL line */
while(XP_FileReadLine(buffer, BUFFER_SIZE, fp)) {
si_StripLF(buffer);
URLName = NULL;
StrAllocCopy(URLName, buffer);
/* preparre to read the name/value pairs */
submit.value_cnt = 0;
badInput = FALSE;
while(XP_FileReadLine(buffer, BUFFER_SIZE, fp)) {
/* line starting with . terminates the pairs for this URL entry */
if (buffer[0] == '.') {
break; /* end of URL entry */
}
/* line just read is the name part */
/* save the name part and determine if it is a password */
si_StripLF(buffer);
name_array[submit.value_cnt] = NULL;
if (buffer[0] == '*') {
type_array[submit.value_cnt] = FORM_TYPE_PASSWORD;
StrAllocCopy(name_array[submit.value_cnt], buffer+1);
} else {
type_array[submit.value_cnt] = FORM_TYPE_TEXT;
StrAllocCopy(name_array[submit.value_cnt], buffer);
}
/* read in and save the value part */
if(!XP_FileReadLine(buffer, BUFFER_SIZE, fp)) {
/* error in input file so give up */
badInput = TRUE;
break;
}
si_StripLF(buffer);
value_array[submit.value_cnt] = NULL;
/* note that we need to skip over leading '=' of value */
if (type_array[submit.value_cnt] == FORM_TYPE_PASSWORD) {
if ((unmungedValue=MY_SECNAV_UnMungeString(buffer+1)) == NULL) {
/* this is the free source and there is no obscuring of passwords */
unmungedValue = buffer+1;
StrAllocCopy(value_array[submit.value_cnt++], buffer+1);
} else {
StrAllocCopy(value_array[submit.value_cnt++], unmungedValue);
XP_FREE(unmungedValue);
}
} else {
StrAllocCopy(value_array[submit.value_cnt++], buffer+1);
}
/* check for overruning of the arrays */
if (submit.value_cnt >= MAX_ARRAY_SIZE) {
break;
}
}
/* store the info for this URL into memory-resident data structure */
if (!URLName || XP_STRLEN(URLName) == 0) {
badInput = TRUE;
}
if (!badInput) {
si_PutData(URLName, &submit, FALSE);
}
/* free up all the allocations done for processing this URL */
XP_FREE(URLName);
for (i=0; i<submit.value_cnt; i++) {
XP_FREE(name_array[i]);
XP_FREE(value_array[i]);
}
if (badInput) {
si_unlock_signon_list();
return (1);
}
}
si_unlock_signon_list();
return(0);
}
/*
* APPLE
* Save signon data to Apple Keychain
*
* This routine is called only if signon pref is enabled!!!
*/
#ifdef APPLE_KEYCHAIN
PRIVATE int
si_SaveSignonDataInKeychain() {
char* account = nil;
char* password = nil;
XP_List * list_ptr;
XP_List * user_ptr;
XP_List * data_ptr;
si_SignonURLStruct * URL;
si_SignonUserStruct * user;
si_SignonDataStruct * data;
si_Reject * reject;
OSStatus status;
KCItemRef itemRef;
KCAttribute attr;
KCItemFlags flags = kInvisibleKCItemFlag + kNegativeKCItemFlag;
uint32 actualLength;
/* save off the reject list */
if (si_reject_list) {
list_ptr = si_reject_list;
while((reject = (si_Reject *) XP_ListNextObject(list_ptr))!=0) {
status = kcaddinternetpassword
(reject->URLName, nil,
reject->userName,
kAnyPort,
kNetscapeProtocolType,
kAnyAuthType,
0,
nil,
&itemRef);
if (status != noErr && status != errKCDuplicateItem) {
return(status);
}
if (status == noErr) {
/*
* make the item invisible so the user doesn't see it and
* negative so we know that it is a reject entry
*/
attr.tag = kFlagsKCItemAttr;
attr.data = &flags;
attr.length = sizeof( flags );
status = KCSetAttribute( itemRef, &attr );
if (status != noErr) {
return(status);
}
status = KCUpdateItem(itemRef);
if (status != noErr) {
return(status);
}
KCReleaseItemRef(&itemRef);
}
}
}
/* save off the passwords */
if((si_signon_list)) {
list_ptr = si_signon_list;
while((URL = (si_SignonURLStruct *) XP_ListNextObject(list_ptr)) != NULL) {
user_ptr = URL->signonUser_list;
/* add each user node of the URL node */
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr)) != NULL) {
data_ptr = user->signonData_list;
/* write out each data node of the user node */
while((data=(si_SignonDataStruct *) XP_ListNextObject(data_ptr)) != NULL) {
char* attribute = nil;
if (data->isPassword) {
password = XP_ALLOC(XP_STRLEN(data->value) +
XP_STRLEN(data->name) + 2);
if (!password) {
return (-1);
}
attribute = password;
} else {
account = XP_ALLOC( XP_STRLEN(data->value) +
XP_STRLEN(data->name) + 2);
if (!account) {
XP_FREE(password);
return (-1);
}
attribute = account;
}
XP_STRCPY(attribute, data->name);
XP_STRCAT(attribute, "=");
XP_STRCAT(attribute, data->value);
}
/* if it's already there, we just want to change the password */
status = kcfindinternetpassword
(URL->URLName,
nil,
account,
kAnyPort,
kNetscapeProtocolType,
kAnyAuthType,
0,
nil,
&actualLength,
&itemRef);
if (status == noErr) {
status = KCSetData(itemRef, XP_STRLEN(password), password);
if (status != noErr) {
return(status);
}
status = KCUpdateItem(itemRef);
KCReleaseItemRef(&itemRef);
} else {
/* wasn't there, let's add it */
status = kcaddinternetpassword
(URL->URLName,
nil,
account,
kAnyPort,
kNetscapeProtocolType,
kAnyAuthType,
XP_STRLEN(password),
password,
nil);
}
if (account) {
XP_FREE(account);
}
if (password) {
XP_FREE(password);
}
account = password = nil;
if (status != noErr) {
return(status);
}
}
}
}
si_signon_list_changed = FALSE;
return (0);
}
#endif
/*
* Save signon data to disk file
* The parameter passed in on entry is ignored
*
* This routine is called only when holding the signon lock!!!
*
* This routine is called only if signon pref is enabled!!!
*/
PRIVATE int
si_SaveSignonDataLocked(char * filename) {
XP_List * list_ptr;
XP_List * user_ptr;
XP_List * data_ptr;
si_SignonURLStruct * url;
si_SignonUserStruct * user;
si_SignonDataStruct * data;
si_Reject * reject;
XP_File fp;
/* do nothing if signon list has not changed */
if(!si_signon_list_changed) {
return(-1);
}
/* do not save signons if in anonymous mode */
if(si_anonymous) {
return(-1);
}
#ifdef APPLE_KEYCHAIN
if (KeychainManagerAvailable()) {
return si_SaveSignonDataInKeychain();
}
#endif
/* do nothing if we are unable to open file that contains signon list */
if(!(fp = XP_FileOpen(filename, xpHTTPSingleSignon, XP_FILE_WRITE))) {
return(-1);
}
/* format for head of file shall be:
* # comment
* # comment
* # comment
* TRUE -- indicates if notification has already been given to user
* URLName -- first url/username on reject list
* userName
* URLName -- second url/username on reject list
* userName
* ... -- etc.
* . -- end of list
*/
/* write out leading comments */
XP_FileWrite("# Netscape HTTP Signons File" LINEBREAK
"# This is a generated file! Do not edit."
LINEBREAK "#" LINEBREAK, -1, fp);
/* write out si_NoticeGiven */
if (si_NoticeGiven) {
XP_FileWrite("TRUE" LINEBREAK, -1, fp);
} else {
XP_FileWrite("FALSE" LINEBREAK, -1, fp);
}
/* write out reject list */
if (si_reject_list) {
list_ptr = si_reject_list;
while((reject = (si_Reject *) XP_ListNextObject(list_ptr))!=0) {
XP_FileWrite(reject->URLName, -1, fp);
XP_FileWrite(LINEBREAK, -1, fp);
XP_FileWrite(reject->userName, -1, fp);
XP_FileWrite(LINEBREAK, -1, fp);
}
}
XP_FileWrite("." LINEBREAK, -1, fp);
/* format for cached logins shall be:
* url LINEBREAK {name LINEBREAK value LINEBREAK}* . LINEBREAK
* if type is password, name is preceded by an asterisk (*)
*/
/* write out each URL node */
if((si_signon_list)) {
list_ptr = si_signon_list;
while((url = (si_SignonURLStruct *)
XP_ListNextObject(list_ptr)) != NULL) {
user_ptr = url->signonUser_list;
/* write out each user node of the URL node */
while((user = (si_SignonUserStruct *)
XP_ListNextObject(user_ptr)) != NULL) {
XP_FileWrite(url->URLName, -1, fp);
XP_FileWrite(LINEBREAK, -1, fp);
data_ptr = user->signonData_list;
/* write out each data node of the user node */
while((data = (si_SignonDataStruct *)
XP_ListNextObject(data_ptr)) != NULL) {
char* mungedValue;
if (data->isPassword) {
XP_FileWrite("*", -1, fp);
}
XP_FileWrite(data->name, -1, fp);
XP_FileWrite(LINEBREAK, -1, fp);
XP_FileWrite("=", -1, fp); /* precede values with '=' */
if (data->isPassword) {
if ((mungedValue = MY_SECNAV_MungeString(data->value))) {
XP_FileWrite(mungedValue, -1, fp);
XP_FREE(mungedValue);
} else {
/* in free source, passwords are not obscured */
XP_FileWrite(data->value, -1, fp);
}
} else {
XP_FileWrite(data->value, -1, fp);
}
XP_FileWrite(LINEBREAK, -1, fp);
}
XP_FileWrite(".", -1, fp);
XP_FileWrite(LINEBREAK, -1, fp);
}
}
}
si_signon_list_changed = FALSE;
XP_FileClose(fp);
return(0);
}
/*
* Save signon data to disk file
* The parameter passed in on entry is ignored
*/
PUBLIC int
SI_SaveSignonData(char * filename) {
int retval;
/* do nothing if signon preference is not enabled */
if (!si_GetSignonRememberingPref()) {
return FALSE;
}
/* lock and call common save routine */
si_lock_signon_list();
retval = si_SaveSignonDataLocked(filename);
si_unlock_signon_list();
return retval;
}
/*
* Remove all the signons and free everything
*/
PUBLIC void
SI_RemoveAllSignonData() {
/* repeatedly remove first user node of first URL node */
while (SI_RemoveUser(NULL, NULL, FALSE)) {
}
}
/*
* Check for a signon submission and remember the data if so
*/
PUBLIC void
SI_RememberSignonData
(char* URLName, char** name_array, char** value_array, char** type_array, PRInt32 value_cnt)
{
int i, j;
int passwordCount = 0;
int pswd[3];
LO_FormSubmitData submit;
submit.name_array = (PA_Block)name_array;
submit.value_array = (PA_Block)value_array;
submit.type_array = (PA_Block)type_array;
submit.value_cnt = value_cnt;
/* do nothing if signon preference is not enabled */
if (!si_GetSignonRememberingPref()){
return;
}
/* determine how many passwords are in the form and where they are */
for (i=0; i<submit.value_cnt; i++) {
if (((uint8 *)submit.type_array)[i] == FORM_TYPE_PASSWORD) {
if (passwordCount < 3 ) {
pswd[passwordCount] = i;
}
passwordCount++;
}
}
/* process the form according to how many passwords it has */
if (passwordCount == 1) {
/* one-password form is a log-in so remember it */
/* obtain the index of the first input field (that is the username) */
for (j=0; j<submit.value_cnt; j++) {
if (((uint8 *)submit.type_array)[j] == FORM_TYPE_TEXT) {
break;
}
}
if ((j<submit.value_cnt) && si_OkToSave(URLName, /* urlname */
((char **)submit.value_array)[j] /* username */)) {
si_PutData(URLName, &submit, TRUE);
}
} else if (passwordCount == 2) {
/* two-password form is a registration */
} else if (passwordCount == 3) {
/* three-password form is a change-of-password request */
XP_List * data_ptr;
si_SignonDataStruct* data;
si_SignonUserStruct* user;
/* make sure all passwords are non-null and 2nd and 3rd are identical */
if (!submit.value_array[pswd[0]] || ! submit.value_array[pswd[1]] ||
!submit.value_array[pswd[2]] ||
XP_STRCMP(((char **)submit.value_array)[pswd[1]],
((char **)submit.value_array)[pswd[2]])) {
return;
}
/* ask user if this is a password change */
si_lock_signon_list();
user = si_GetURLAndUserForChangeForm
(((char **)submit.value_array)[pswd[0]]);
/* return if user said no */
if (!user) {
si_unlock_signon_list();
return;
}
/* get to password being saved */
data_ptr = user->signonData_list;
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
if (data->isPassword) {
break;
}
}
/*
* if second password is "generate" then generate a random
* password for it and use same random value for third password
* as well (Note: this all works because we already know that
* second and third passwords are identical so third password
* must also be "generate". Furthermore si_Randomize() will
* create a random password of exactly eight characters -- the
* same length as "generate".)
*/
si_Randomize(((char **)submit.value_array)[pswd[1]]);
XP_STRCPY(((char **)submit.value_array)[pswd[2]],
((char **)submit.value_array)[pswd[1]]);
StrAllocCopy(data->value, ((char **)submit.value_array)[pswd[1]]);
si_signon_list_changed = TRUE;
si_SaveSignonDataLocked(NULL);
si_unlock_signon_list();
}
}
PUBLIC void
SI_RestoreSignonData
(char* URLName, char* name, char** value)
{
si_SignonUserStruct* user;
si_SignonDataStruct* data;
XP_List * data_ptr=0;
/* do nothing if signon preference is not enabled */
if (!si_GetSignonRememberingPref()){
return;
}
si_lock_signon_list();
#ifdef xxx
/*
* determine if it is a change-of-password field
* the heuristic that we will use is that if this is the first
* item on the form and it is a password, this is probably a
* change-of-password form
*/
/* see if this is first item in form and is a password */
/* get first saved user just so we can see the name of the first item on the form */
user = si_GetUser(URLName, TRUE, NULL); /* this is the first saved user */
if (user) {
data_ptr = user->signonData_list; /* this is first item on form */
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
if(data->isPassword && name && XP_STRCMP(data->name, name)==0) {
/* current item is first item on form and is a password */
user = (URLName, MK_SIGNON_PASSWORDS_FETCH);
if (user) {
/* user has confirmed it's a change-of-password form */
data_ptr = user->signonData_list;
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
if (data->isPassword) {
*value = data->value;
si_unlock_signon_list();
return;
}
}
}
}
}
#endif
/* restore the data from previous time this URL was visited */
user = si_GetUser(URLName, FALSE, name);
if (user) {
data_ptr = user->signonData_list;
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
if(name && XP_STRCMP(data->name, name)==0) {
*value = data->value;
si_unlock_signon_list();
return;
}
}
}
si_unlock_signon_list();
}
/*
* Remember signon data from a browser-generated password dialog
*/
PRIVATE void
si_RememberSignonDataFromBrowser(char* URLName, char* username, char* password)
{
LO_FormSubmitData submit;
char* USERNAME = "username";
char* PASSWORD = "password";
char* name_array[2];
char* value_array[2];
uint8 type_array[2];
/* do nothing if signon preference is not enabled */
if (!si_GetSignonRememberingPref()){
return;
}
/* initialize a temporary submit structure */
submit.name_array = (PA_Block)name_array;
submit.value_array = (PA_Block)value_array;
submit.type_array = (PA_Block)type_array;
submit.value_cnt = 2;
name_array[0] = USERNAME;
value_array[0] = NULL;
StrAllocCopy(value_array[0], username);
type_array[0] = FORM_TYPE_TEXT;
name_array[1] = PASSWORD;
value_array[1] = NULL;
StrAllocCopy(value_array[1], password);
type_array[1] = FORM_TYPE_PASSWORD;
/* Save the signon data */
si_PutData(URLName, &submit, TRUE);
/* Free up the data memory just allocated */
XP_FREE(value_array[0]);
XP_FREE(value_array[1]);
}
PUBLIC void
SI_RememberSignonDataFromBrowser
(char* URLName, char* username, char* password)
{
if (si_OkToSave(URLName, username)) {
si_RememberSignonDataFromBrowser (URLName, username, password);
}
}
/*
* Check for remembered data from a previous browser-generated password dialog
* restore it if so
*/
PRIVATE void
si_RestoreOldSignonDataFromBrowser
(char* URLName, Bool pickFirstUser,
char** username, char** password)
{
si_SignonUserStruct* user;
si_SignonDataStruct* data;
XP_List * data_ptr=0;
/* get the data from previous time this URL was visited */
si_lock_signon_list();
user = si_GetUser(URLName, pickFirstUser, "username");
if (!user) {
/* leave original username and password from caller unchanged */
/* username = 0; */
/* *password = 0; */
si_unlock_signon_list();
return;
}
/* restore the data from previous time this URL was visited */
data_ptr = user->signonData_list;
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
if(XP_STRCMP(data->name, "username")==0) {
StrAllocCopy(*username, data->value);
} else if(XP_STRCMP(data->name, "password")==0) {
StrAllocCopy(*password, data->value);
}
}
si_unlock_signon_list();
}
/* Browser-generated prompt for user-name and password */
PUBLIC int
SI_PromptUsernameAndPassword
(MWContext *context, char *prompt,
char **username, char **password, char *URLName)
{
int status;
char *copyOfPrompt=0;
/* just for safety -- really is a problem in SI_Prompt */
StrAllocCopy(copyOfPrompt, prompt);
/* do the FE thing if signon preference is not enabled */
if (!si_GetSignonRememberingPref()){
status = FE_PromptUsernameAndPassword
(context, copyOfPrompt, username, password);
XP_FREEIF(copyOfPrompt);
return status;
}
/* prefill with previous username/password if any */
si_RestoreOldSignonDataFromBrowser
(URLName, FALSE, username, password);
/* get new username/password from user */
status = FE_PromptUsernameAndPassword
(context, copyOfPrompt, username, password);
/* remember these values for next time */
if (status && si_OkToSave(URLName, *username)) {
si_RememberSignonDataFromBrowser (URLName, *username, *password);
}
/* cleanup and return */
XP_FREEIF(copyOfPrompt);
return status;
}
/* Browser-generated prompt for password */
PUBLIC char *
SI_PromptPassword
(MWContext *context, char *prompt, char *URLName, Bool pickFirstUser)
{
char *password=0, *username=0, *copyOfPrompt=0, *result;
char *urlname = URLName;
char *s;
/* just for safety -- really is a problem in SI_Prompt */
StrAllocCopy(copyOfPrompt, prompt);
/* do the FE thing if signon preference is not enabled */
if (!si_GetSignonRememberingPref()){
result = FE_PromptPassword(context, copyOfPrompt);
XP_FREEIF(copyOfPrompt);
return result;
}
/* get host part of URL which is of form user@host */
s = URLName;
while (*s && (*s != '@')) {
s++;
}
if (*s) {
/* @ found, host is URL part following the @ */
urlname = s+1; /* urlname is part of URL after the @ */
}
/* get previous password used with this username */
si_RestoreOldSignonDataFromBrowser
(urlname, pickFirstUser, &username, &password);
/* return if a password was found */
/*
* Note that we reject a password of " ". It is a dummy password
* that was put in by a preceding call to SI_Prompt. This occurs
* in mknews which calls on SI_Prompt to get the username and then
* SI_PromptPassword to get the password (why they didn't simply
* call on SI_PromptUsernameAndPassword is beyond me). So the call
* to SI_Prompt will save the username along with the dummy password.
* In this call to SI_Password, the real password gets saved in place
* of the dummy one.
*/
if (password && XP_STRLEN(password) && XP_STRCMP(password, " ")) {
XP_FREEIF(copyOfPrompt);
return password;
}
/* if no password found, get new password from user */
password = FE_PromptPassword(context, copyOfPrompt);
/* if username wasn't even found, extract it from URLName */
if (!username) {
s = URLName;
/* get to @ in URL if any */
while (*s && (*s != '@')) {
s++;
}
if (*s) {
/* @ found, username is URL part preceding the @ */
*s = '\0';
StrAllocCopy(username, URLName);
*s = '@';
} else {
/* no @ found, use entire URL as uername */
StrAllocCopy(username, URLName);
}
}
/* remember these values for next time */
if (password && XP_STRLEN(password) &&
si_OkToSave(urlname, username)) {
si_RememberSignonDataFromBrowser (urlname, username, password);
}
/* cleanup and return */
XP_FREEIF(username);
XP_FREEIF(copyOfPrompt);
return password;
}
/* Browser-generated prompt for username */
PUBLIC char *
SI_Prompt (MWContext *context, char *prompt,
char* defaultUsername, char *URLName)
{
char *password=0, *username=0, *copyOfPrompt=0, *result;
/*
* make copy of prompt because it is currently in a temporary buffer in
* the caller (from GetString) which will be destroyed if GetString() is
* called again before prompt is used
*/
StrAllocCopy(copyOfPrompt, prompt);
/* do the FE thing if signon preference is not enabled */
if (!si_GetSignonRememberingPref()){
result = FE_Prompt(context, copyOfPrompt, defaultUsername);
XP_FREEIF(copyOfPrompt);
return result;
}
/* get previous username used */
if (!defaultUsername || !XP_STRLEN(defaultUsername)) {
si_RestoreOldSignonDataFromBrowser
(URLName, FALSE, &username, &password);
} else {
StrAllocCopy(username, defaultUsername);
}
/* prompt for new username */
result = FE_Prompt(context, copyOfPrompt, username);
/* remember this username for next time */
if (result && XP_STRLEN(result)) {
if (username && (XP_STRCMP(username, result) == 0)) {
/*
* User is re-using the same user name as from previous time
* so keep the previous password as well
*/
si_RememberSignonDataFromBrowser (URLName, result, password);
} else {
/*
* We put in a dummy password of " " which we will test
* for in a following call to SI_PromptPassword. See comments
* in that routine.
*/
si_RememberSignonDataFromBrowser (URLName, result, " ");
}
}
/* cleanup and return */
XP_FREEIF(username);
XP_FREEIF(password);
XP_FREEIF(copyOfPrompt);
return result;
}
PRIVATE XP_List * si_dormant_signon_list=0;
PUBLIC void
SI_AnonymizeSignons()
{
if (!si_anonymous) {
si_lock_signon_list();
si_dormant_signon_list = si_signon_list;
si_signon_list = XP_ListNew();
si_unlock_signon_list();
si_anonymous = TRUE;
}
}
PUBLIC void
SI_UnanonymizeSignons()
{
if (si_anonymous) {
SI_RemoveAllSignonData();
si_lock_signon_list();
si_signon_list = si_dormant_signon_list;
si_unlock_signon_list();
si_dormant_signon_list = 0;
si_anonymous = FALSE;
}
}
#ifdef HTMLDialogs
#include "htmldlgs.h"
#else
#define XP_DIALOG_CANCEL_BUTTON (1<<0)
#define XP_DIALOG_OK_BUTTON (1<<2)
#define XP_STRINGS_CHUNKSIZE 512
typedef struct _XPDialogState XPDialogState;
typedef struct _XPDialogInfo XPDialogInfo;
typedef struct _XPDialogStrings XPDialogStrings;
typedef PRBool (* XP_HTMLDialogHandler)(XPDialogState *state, char **argv,
int argc, unsigned int button);
struct _XPDialogState {
PRArenaPool *arena;
void *window;
void *proto_win;
XPDialogInfo *dialogInfo;
void *arg;
void (* deleteCallback)(void *arg);
void *cbarg;
PRBool deleted;
};
struct _XPDialogInfo {
unsigned int buttonFlags;
XP_HTMLDialogHandler handler;
int width;
int height;
};
struct _XPDialogStrings
{
PRArenaPool *arena;
int basestringnum;
int nargs;
char **args;
char *contents;
};
extern time_t CookieTime();
extern XPDialogState *
XP_MakeRawHTMLDialog(void *proto_win, XPDialogInfo *dialogInfo,
int titlenum, XPDialogStrings *strings,
int handlestring, void *arg);
extern XPDialogStrings *XP_GetDialogStrings(int stringnum);
extern void
XP_SetDialogString(XPDialogStrings *strings, int argNum, char *string);
extern char *
XP_FindValueInArgs(const char *name, char **av, int ac);
#endif
extern int XP_CERT_PAGE_STRINGS;
extern int SA_REMOVE_BUTTON_LABEL;
extern int MK_SIGNON_VIEW_SIGNONS;
extern int MK_SIGNON_VIEW_REJECTS;
#define BUFLEN 5000
#define FLUSH_BUFFER \
if (buffer) { \
StrAllocCat(buffer2, buffer); \
buffer[0] = '\0'; \
g = 0; \
}
/* return TRUE if "number" is in sequence of comma-separated numbers */
Bool si_InSequence(char* sequence, int number) {
char* ptr;
char* endptr;
char* undo = NULL;
Bool retval = FALSE;
int i;
/* not necessary -- routine will work even with null sequence */
if (!*sequence) {
return FALSE;
}
for (ptr = sequence ; ptr ; ptr = endptr) {
/* get to next comma */
endptr = PL_strchr(ptr, ',');
/* if comma found, process it */
if (endptr) {
/* restore last comma-to-null back to comma */
if (undo) {
*undo = ',';
}
/* set the comma to a null */
undo = endptr;
*endptr++ = '\0';
/* compare the number before the comma with "number" */
if (*ptr) {
i = atoi(ptr);
if (i == number) {
/* "number" was in the sequence so return TRUE */
retval = TRUE;
break;
}
}
}
}
/* restore last comma-to-null back to comma */
if (undo) {
*undo = ',';
}
return retval;
}
PR_STATIC_CALLBACK(PRBool)
si_SignonInfoDialogDone(XPDialogState* state, char** argv, int argc,
unsigned int button)
{
XP_List *url_ptr;
XP_List *user_ptr;
XP_List *data_ptr;
XP_List *reject_ptr;
si_SignonURLStruct *url;
si_SignonURLStruct *URLToDelete = 0;
si_SignonUserStruct* user;
si_SignonUserStruct* userToDelete = 0;
si_SignonDataStruct* data;
si_Reject* reject;
si_Reject* rejectToDelete = 0;
char *buttonName;
int userNumber;
int rejectNumber;
char* gone;
buttonName = XP_FindValueInArgs("button", argv, argc);
if (button != XP_DIALOG_OK_BUTTON) {
/* OK button not pressed (must be cancel button that was pressed) */
return PR_FALSE;
}
/* OK was pressed, do the deletions */
/* get the comma-separated sequence of signons to be deleted */
gone = XP_FindValueInArgs("goneS", argv, argc);
XP_ASSERT(gone);
if (!gone) {
return PR_FALSE;
}
/*
* step through all users and delete those that are in the sequence
* Note: we can't delete user while "user_ptr" is pointing to it because
* that would destroy "user_ptr". So we do a lazy deletion
*/
userNumber = 0;
url_ptr = si_signon_list;
while ((url = (si_SignonURLStruct *) XP_ListNextObject(url_ptr))) {
user_ptr = url->signonUser_list;
while ((user = (si_SignonUserStruct *)
XP_ListNextObject(user_ptr))) {
if (si_InSequence(gone, userNumber)) {
if (userToDelete) {
/* get to first data item -- that's the user name */
data_ptr = userToDelete->signonData_list;
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
/* do the deletion */
SI_RemoveUser(URLToDelete->URLName, data->value, TRUE);
}
userToDelete = user;
URLToDelete = url;
}
userNumber++;
}
}
if (userToDelete) {
/* get to first data item -- that's the user name */
data_ptr = userToDelete->signonData_list;
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
/* do the deletion */
SI_RemoveUser(URLToDelete->URLName, data->value, TRUE);
si_signon_list_changed = TRUE;
si_SaveSignonDataLocked(NULL);
}
/* get the comma-separated sequence of rejections to be deleted */
gone = XP_FindValueInArgs("goneR", argv, argc);
XP_ASSERT(gone);
if (!gone) {
return PR_FALSE;
}
/* step through all rejects and delete those that are in the sequence
* Note: we can't delete reject while "reject_ptr" is pointing to it because
* that would destroy "reject_ptr". So we do a lazy deletion
*/
rejectNumber = 0;
si_lock_signon_list();
reject_ptr = si_reject_list;
while ((reject = (si_Reject *) XP_ListNextObject(reject_ptr))) {
if (si_InSequence(gone, rejectNumber)) {
if (rejectToDelete) {
si_FreeReject(rejectToDelete);
}
rejectToDelete = reject;
}
rejectNumber++;
}
if (rejectToDelete) {
si_FreeReject(rejectToDelete);
si_signon_list_changed = TRUE;
si_SaveSignonDataLocked(NULL);
}
si_unlock_signon_list();
return PR_FALSE;
}
typedef struct _SignonViewerDialog SignonViewerDialog;
struct _SignonViewerDialog {
void *window;
void *parent_window;
PRBool dialogUp;
XPDialogState *state;
};
PUBLIC void
SI_DisplaySignonInfoAsHTML(MWContext *context)
{
char *buffer = (char*)XP_ALLOC(BUFLEN);
char *buffer2 = 0;
int g = 0, signonNum, count;
XP_List *url_ptr;
XP_List *user_ptr;
XP_List *data_ptr;
XP_List *reject_ptr;
si_SignonURLStruct *url;
si_SignonUserStruct * user;
si_SignonDataStruct* data;
si_Reject *reject;
SignonViewerDialog *dlg;
int i;
char * view_signons = NULL;
char * view_rejects = NULL;
char * heading = NULL;
static XPDialogInfo dialogInfo = {
0,
si_SignonInfoDialogDone,
350,
400
};
XPDialogStrings* strings;
strings = XP_GetDialogStrings(XP_CERT_PAGE_STRINGS);
if (!strings) {
return;
}
#ifdef APPLE_KEYCHAIN
/* If the Keychain has been locked or an item deleted or updated,
we need to reload the signon data */
if (si_list_invalid)
{
/* set si_list_invalid to FALSE first because SI_RemoveAllSignonData
calls si_GetSignonRememberingPref */
si_list_invalid = FALSE;
SI_RemoveAllSignonData();
SI_LoadSignonData(NULL);
}
#endif
StrAllocCopy(buffer2, "");
StrAllocCopy (view_signons, XP_GetString(MK_SIGNON_VIEW_SIGNONS));
StrAllocCopy (view_rejects, XP_GetString(MK_SIGNON_VIEW_REJECTS));
/* generate initial section of html file */
g += PR_snprintf(buffer+g, BUFLEN-g,
"<HTML>\n"
"<HEAD>\n"
" <TITLE>Signons</TITLE>\n"
" <SCRIPT>\n"
" index_frame = 0;\n"
" title_frame = 1;\n"
" spacer1_frame = 2;\n"
" list_frame = 3;\n"
" spacer2_frame = 4;\n"
" button_frame = 5;\n"
"\n"
" var signon_mode;\n"
" var goneS;\n"
" var goneR;\n"
" deleted_signons = new Array (0"
);
FLUSH_BUFFER
/* force loading of the signons file */
si_RegisterSignonPrefCallbacks();
si_lock_signon_list();
/* fill in initial 0's for deleted_signons and deleted_rejects arrays */
url_ptr = si_signon_list;
i = 0;
while ( (url=(si_SignonURLStruct *) XP_ListNextObject(url_ptr)) ) {
user_ptr = url->signonUser_list;
while ( (user=(si_SignonUserStruct *) XP_ListNextObject(user_ptr)) ) {
/* this actually gives one 0 too many but that doesn't hurt */
g += PR_snprintf(buffer+g, BUFLEN-g,
",0"
);
if (((++i)%50) == 0) {
g += PR_snprintf(buffer+g, BUFLEN-g,
"\n "
);
}
}
}
g += PR_snprintf(buffer+g, BUFLEN-g,
");\n"
" deleted_rejects = new Array (0"
);
count = XP_ListCount(si_reject_list);
for (i=1; i<count; i++) {
g += PR_snprintf(buffer+g, BUFLEN-g,
",0"
);
if ((i%50) == 0) {
g += PR_snprintf(buffer+g, BUFLEN-g,
"\n "
);
}
}
FLUSH_BUFFER
StrAllocCopy (heading, XP_GetString(MK_SIGNON_YOUR_SIGNONS));
g += PR_snprintf(buffer+g, BUFLEN-g,
");\n"
"\n"
" function DeleteItemSelected() {\n"
" if (signon_mode) {\n"
" DeleteSignonSelected();\n"
" } else {\n"
" DeleteRejectSelected();\n"
" }\n"
" }\n"
"\n"
" function DeleteSignonSelected() {\n"
" selname = top.frames[list_frame].document.fSelectSignon.selname;\n"
" goneS = top.frames[button_frame].document.buttons.goneS;\n"
" var p;\n"
" var i;\n"
" for (i=selname.options.length; i>0; i--) {\n"
" if (selname.options[i-1].selected) {\n"
" selname.options[i-1].selected = 0;\n"
" goneS.value = goneS.value + selname.options[i-1].value + \",\";\n"
" deleted_signons[selname.options[i-1].value] = 1;\n"
" for (j=i ; j<selname.options.length ; j++) {\n"
" selname.options[j-1] = selname.options[j];\n"
" }\n"
" selname.options[selname.options.length-1] = null;\n"
" }\n"
" }\n"
" }\n"
"\n"
" function DeleteRejectSelected() {\n"
" selname = top.frames[list_frame].document.fSelectReject.selname;\n"
" goneR = top.frames[button_frame].document.buttons.goneR;\n"
" var p;\n"
" var i;\n"
" for (i=selname.options.length; i>0; i--) {\n"
" if (selname.options[i-1].selected) {\n"
" selname.options[i-1].selected = 0;\n"
" goneR.value = goneR.value + selname.options[i-1].value + \",\";\n"
" deleted_rejects[selname.options[i-1].value] = 1;\n"
" for (j=i; j < selname.options.length; j++) {\n"
" selname.options[j-1] = selname.options[j];\n"
" }\n"
" selname.options[selname.options.length-1] = null;\n"
" }\n"
" }\n"
" }\n"
"\n"
" function loadSignons(){\n"
" signon_mode = 1;\n"
" top.frames[index_frame].document.open();\n"
" top.frames[index_frame].document.write(\n"
" \"<BODY BGCOLOR=#C0C0C0>\" +\n"
" \"<TABLE BORDER=0 WIDTH=100%>\" +\n"
" \"<TR>\" +\n"
" \"<TD ALIGN=CENTER VALIGN=MIDDLE BGCOLOR=#FFFFFF>\" +\n"
" \"<FONT SIZE=2 COLOR=#666666>\" +\n"
" \"<B>%s</B>\" +\n"
" \"</FONT>\" +\n"
" \"</TD>\" +\n"
" \"<TD ALIGN=CENTER VALIGN=MIDDLE BGCOLOR=#C0C0C0>\" +\n"
" \"<A HREF=javascript:top.loadRejects();>\" +\n"
" \"<FONT SIZE=2>%s</FONT>\" +\n"
" \"</A>\" +\n"
" \"</TD>\" +\n"
" \"<TD>&nbsp;&nbsp;&nbsp;</TD>\" +\n"
" \"</TR>\" +\n"
" \"</TABLE>\" +\n"
" \"</BODY>\"\n"
" );\n"
" top.frames[index_frame].document.close();\n"
"\n"
" top.frames[title_frame].document.open();\n"
" top.frames[title_frame].document.write\n"
" (\"&nbsp;%s\");\n"
" top.frames[title_frame].document.close();\n"
"\n"
" top.frames[list_frame].document.open();\n"
" top.frames[list_frame].document.write(\n"
" \"<FORM name=fSelectSignon>\" +\n"
" \"<P>\" +\n"
" \"<TABLE BORDER=0 WIDTH=100% HEIGHT=95%>\" +\n"
" \"<TR>\" +\n"
" \"<TD WIDTH=100% VALIGN=TOP>\" +\n"
" \"<CENTER>\" +\n"
" \"<P>\" +\n"
" \"<SELECT NAME=selname SIZE=15 MULTIPLE> \"\n"
" );\n",
view_signons, view_rejects, heading);
FLUSH_BUFFER
PR_FREEIF(heading);
/* generate the html for the list of signons */
url_ptr = si_signon_list;
signonNum = 0;
while ( (url=(si_SignonURLStruct *) XP_ListNextObject(url_ptr)) ) {
user_ptr = url->signonUser_list;
while ( (user=(si_SignonUserStruct *) XP_ListNextObject(user_ptr)) ) {
/* first data item for user is the username */
data_ptr = user->signonData_list;
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
g += PR_snprintf(buffer+g, BUFLEN-g,
" if (!deleted_signons[%d]) {\n"
" top.frames[list_frame].document.write(\n"
" \"<OPTION value=%d>\" +\n"
" \"%s:%s\" +\n"
" \"</OPTION>\"\n"
" );\n"
" }\n",
signonNum, signonNum,
url->URLName,
data->value
);
FLUSH_BUFFER
signonNum++;
}
}
/* generate next section of html file */
StrAllocCopy (heading, XP_GetString(MK_SIGNON_YOUR_SIGNON_REJECTS));
g += PR_snprintf(buffer+g, BUFLEN-g,
" top.frames[list_frame].document.write(\n"
" \"</SELECT>\" +\n"
" \"</CENTER>\" +\n"
" \"</TD>\" +\n"
" \"</TR>\" +\n"
" \"</TABLE>\" +\n"
" \"</FORM>\"\n"
" );\n"
" top.frames[list_frame].document.close();\n"
" }\n"
"\n"
" function loadRejects(){\n"
" signon_mode = 0;\n"
" top.frames[index_frame].document.open();\n"
" top.frames[index_frame].document.write(\n"
" \"<BODY BGCOLOR=#C0C0C0>\" +\n"
" \"<TABLE BORDER=0 WIDTH=100%>\" +\n"
" \"<TR>\" +\n"
" \"<TD ALIGN=CENTER VALIGN=MIDDLE BGCOLOR=#C0C0C0>\" +\n"
" \"<A HREF=javascript:top.loadSignons();>\" +\n"
" \"<FONT SIZE=2>%s</FONT>\" +\n"
" \"</A>\" +\n"
" \"</TD>\" +\n"
" \"<TD ALIGN=CENTER VALIGN=MIDDLE BGCOLOR=#FFFFFF>\" +\n"
" \"<FONT SIZE=2 COLOR=#666666>\" +\n"
" \"<B>%s</B>\" +\n"
" \"</FONT>\" +\n"
" \"</TD>\" +\n"
" \"<TD>&nbsp;&nbsp;&nbsp;</TD>\" +\n"
" \"</TR>\" +\n"
" \"</TABLE>\" +\n"
" \"</BODY>\"\n"
" );\n"
" top.frames[index_frame].document.close();\n"
"\n"
" top.frames[title_frame].document.open();\n"
" top.frames[title_frame].document.write\n"
" (\"&nbsp;%s\");\n"
" top.frames[title_frame].document.close();\n"
"\n"
" top.frames[list_frame].document.open();\n"
" top.frames[list_frame].document.write(\n"
" \"<FORM name=fSelectReject>\" +\n"
" \"<P>\" +\n"
" \"<TABLE BORDER=0 WIDTH=100% HEIGHT=95%>\" +\n"
" \"<TR>\" +\n"
" \"<TD WIDTH=100% VALIGN=TOP>\" +\n"
" \"<CENTER>\" +\n"
" \"<P>\" +\n"
" \"<SELECT NAME=selname SIZE=15 MULTIPLE> \"\n"
" );\n",
view_signons, view_rejects, heading);
FLUSH_BUFFER
PR_FREEIF(heading);
/* generate the html for the list of rejects */
signonNum = 0;
reject_ptr=si_reject_list;
while ( (reject=(si_Reject *)
XP_ListNextObject(reject_ptr)) ) {
g += PR_snprintf(buffer+g, BUFLEN-g,
" if (!deleted_rejects[%d]) {\n"
" top.frames[list_frame].document.write(\n"
" \"<OPTION value=\" +\n"
" \"%d>\" +\n"
" \"%s: %s\" +\n"
" \"</OPTION>\"\n"
" );\n"
" }\n",
signonNum, signonNum,
reject->URLName,
reject->userName);
FLUSH_BUFFER
signonNum++;
}
/* generate next section of html file */
g += PR_snprintf(buffer+g, BUFLEN-g,
" top.frames[list_frame].document.write(\n"
" \"</SELECT>\" +\n"
" \"</CENTER>\" +\n"
" \"</TD>\" +\n"
" \"</TR>\" +\n"
" \"</TABLE>\" +\n"
" \"</FORM>\"\n"
" );\n"
" top.frames[list_frame].document.close();\n"
" }\n"
"\n"
" function loadButtons(){\n"
" top.frames[button_frame].document.open();\n"
" top.frames[button_frame].document.write(\n"
" \"<FORM name=buttons action=internal-dialog-handler method=post>\" +\n"
" \"<BR>\" +\n"
" \"&nbsp;\" +\n"
" \"<INPUT type=BUTTON \" +\n"
" \"value=Remove \" +\n"
" \"onclick=top.DeleteItemSelected();>\" +\n"
" \"<DIV align=right>\" +\n"
" \"<INPUT type=BUTTON value=OK width=80 onclick=parent.clicker(this,window.parent)>\" +\n"
" \" &nbsp;&nbsp;\" +\n"
" \"<INPUT type=BUTTON value=Cancel width=80 onclick=parent.clicker(this,window.parent)>\" +\n"
" \"</DIV>\" +\n"
" \"<INPUT type=HIDDEN name=xxxbuttonxxx>\" +\n"
" \"<INPUT type=HIDDEN name=handle value="
);
FLUSH_BUFFER
/* transfer what we have so far into strings->args[0] */
if (buffer2) {
XP_SetDialogString(strings, 0, buffer2);
buffer2 = NULL;
}
/* Note: strings->args[1] will later be filled in with value of handle */
/* generate remainder of html, it will go into strings->arg[2] */
g += PR_snprintf(buffer+g, BUFLEN-g,
">\" +\n"
" \"<INPUT TYPE=HIDDEN NAME=goneS SIZE=-1>\" +\n"
" \"<INPUT TYPE=HIDDEN NAME=goneR SIZE=-1>\" +\n"
" \"</FORM>\"\n"
" );\n"
" top.frames[button_frame].document.close();\n"
" }\n"
"\n"
" function loadFrames(){\n"
" loadSignons();\n"
" loadButtons();\n"
" }\n"
"\n"
" function clicker(but,win){\n"
#ifndef HTMLDialogs
" var goneS = top.frames[button_frame].document.buttons.goneS;\n"
" var goneR = top.frames[button_frame].document.buttons.goneR;\n"
" var expires = new Date();\n"
" expires.setTime(expires.getTime() + 1000*60*60*24*365);\n"
" document.cookie = \"htmldlgs=|\" + but.value +\n"
" \"|goneS|\" + goneS.value + \"|goneR|\" + goneR.value + \"|\" +\n"
" \"; expires=\" + expires.toGMTString();\n"
#endif
" top.frames[button_frame].document.buttons.xxxbuttonxxx.value = but.value;\n"
" top.frames[button_frame].document.buttons.xxxbuttonxxx.name = 'button';\n"
" top.frames[button_frame].document.buttons.submit();\n"
" }\n"
"\n"
" </SCRIPT>\n"
"</HEAD>\n"
"<FRAMESET ROWS = 25,25,*,75\n"
" BORDER=0\n"
" FRAMESPACING=0\n"
" onLoad=loadFrames()>\n"
" <FRAME SRC=about:blank\n"
" NAME=index_frame\n"
" SCROLLING=NO\n"
" MARGINWIDTH=1\n"
" MARGINHEIGHT=1\n"
" NORESIZE>\n"
" <FRAME SRC=about:blank\n"
" NAME=title_frame\n"
" SCROLLING=NO\n"
" MARGINWIDTH=1\n"
" MARGINHEIGHT=1\n"
" NORESIZE>\n"
" <FRAMESET COLS=5,*,5\n"
" BORDER=0\n"
" FRAMESPACING=0>\n"
" <FRAME SRC=about:blank\n"
" NAME=spacer1_frame\n"
" SCROLLING=AUTO\n"
" MARGINWIDTH=0\n"
" MARGINHEIGHT=0\n"
" NORESIZE>\n"
" <FRAME SRC=about:blank\n"
" NAME=list_frame\n"
" SCROLLING=AUTO\n"
" MARGINWIDTH=0\n"
" MARGINHEIGHT=0\n"
" NORESIZE>\n"
" <FRAME SRC=about:blank\n"
" NAME=spacer2_frame\n"
" SCROLLING=AUTO\n"
" MARGINWIDTH=0\n"
" MARGINHEIGHT=0\n"
" NORESIZE>\n"
" </FRAMESET>\n"
" <FRAME SRC=about:blank\n"
" NAME=button_frame\n"
" SCROLLING=NO\n"
" MARGINWIDTH=1\n"
" MARGINHEIGHT=1\n"
" NORESIZE>\n"
"</FRAMESET>\n"
"\n"
"<NOFRAMES>\n"
" <BODY> <P> </BODY>\n"
"</NOFRAMES>\n"
"</HTML>\n"
);
FLUSH_BUFFER
si_unlock_signon_list();
/* free some strings that are no longer needed */
PR_FREEIF(view_signons);
PR_FREEIF(view_rejects);
PR_FREEIF(buffer);
/* put html just generated into strings->arg[2] and invoke HTML dialog */
if (buffer2) {
XP_SetDialogString(strings, 2, buffer2);
buffer2 = NULL;
}
dlg = PORT_ZAlloc(sizeof(SignonViewerDialog));
if ( dlg == NULL ) {
return;
}
dlg->parent_window = (void *)NULL;
dlg->dialogUp = PR_TRUE;
dlg->state =XP_MakeRawHTMLDialog(NULL, &dialogInfo, MK_SIGNON_YOUR_SIGNONS,
strings, 1, (void *)dlg);
return;
}
#endif