mirror of
https://gitee.com/acl-dev/acl.git
synced 2024-12-02 11:57:43 +08:00
102 lines
2.3 KiB
C
102 lines
2.3 KiB
C
#include "lib_acl.h"
|
|
#include "http_plugin.h"
|
|
#include "http_access.h"
|
|
|
|
static ACL_FIFO *__domains_allow;
|
|
|
|
typedef struct {
|
|
char *domain;
|
|
int dlen;
|
|
int permit;
|
|
int nocase;
|
|
} DOMAIN_ACCESS;
|
|
|
|
static int domain_correct(const char *domain)
|
|
{
|
|
const char *myname = "domain_correct";
|
|
const char *ptr = domain;
|
|
int lastch = 0;
|
|
|
|
while (*ptr) {
|
|
if (!(ACL_ISALNUM(*ptr) || *ptr == '.' || *ptr == '_' || *ptr == '-')) {
|
|
acl_msg_warn("%s(%d): domain(%s) invalid, char(%c, %d)",
|
|
myname, __LINE__, domain, *ptr, *ptr);
|
|
return (0);
|
|
}
|
|
lastch = *ptr;
|
|
ptr++;
|
|
}
|
|
|
|
if (!((lastch >= 'a' && lastch <= 'z') || (lastch >= 'A' && lastch <= 'Z'))) {
|
|
acl_msg_warn("%s(%d): domain(%s) invalid, last char(%c, %d)",
|
|
myname, __LINE__, domain, lastch, lastch);
|
|
return (0);
|
|
}
|
|
return (1);
|
|
}
|
|
|
|
void http_access_init(void)
|
|
{
|
|
const char *myname = "http_access_init";
|
|
ACL_ARGV *argv;
|
|
ACL_ITER iter;
|
|
|
|
__domains_allow = acl_fifo_new();
|
|
|
|
if (!var_cfg_http_domain_allow || !(*var_cfg_http_domain_allow))
|
|
return;
|
|
|
|
argv = acl_argv_split(var_cfg_http_domain_allow, " \t,;");
|
|
acl_foreach(iter, argv) {
|
|
DOMAIN_ACCESS *dacc;
|
|
char *ptr = (char*) iter.data;
|
|
char *ptr1, *ptr2;
|
|
int permit = 1, nocase = 1;
|
|
|
|
ptr1 = strchr(ptr, ':');
|
|
if (ptr1) {
|
|
*ptr1++ = 0;
|
|
ptr2 = strchr(ptr, ':');
|
|
if (ptr2) {
|
|
*ptr2++ = 0;
|
|
nocase = atoi(ptr2);
|
|
}
|
|
permit = atoi(ptr1);
|
|
}
|
|
if (!domain_correct(ptr))
|
|
continue;
|
|
dacc = (DOMAIN_ACCESS*) acl_mycalloc(1, sizeof(DOMAIN_ACCESS));
|
|
dacc->domain = acl_mystrdup(ptr);
|
|
dacc->dlen = strlen(dacc->domain);
|
|
dacc->permit = permit;
|
|
dacc->nocase = nocase;
|
|
acl_fifo_push(__domains_allow, dacc);
|
|
acl_msg_info("%s: add domain(%s, %s, %s)",
|
|
myname, dacc->domain, permit ? "allow" : "deny",
|
|
nocase ? "incaseble" : "caseble");
|
|
}
|
|
|
|
acl_argv_free(argv);
|
|
}
|
|
|
|
int http_access_permit(const char *domain)
|
|
{
|
|
ACL_ITER iter;
|
|
|
|
acl_foreach(iter, __domains_allow) {
|
|
DOMAIN_ACCESS *dacc = (DOMAIN_ACCESS*) iter.data;
|
|
|
|
if (dacc->nocase) {
|
|
if (acl_strrncasecmp(domain, dacc->domain, dacc->dlen) == 0) {
|
|
return (dacc->permit);
|
|
}
|
|
} else {
|
|
if (acl_strrncmp(domain, dacc->domain, dacc->dlen) == 0) {
|
|
return (dacc->permit);
|
|
}
|
|
}
|
|
}
|
|
|
|
return (var_cfg_http_domain_allow_all);
|
|
}
|