xmpp-rs-mirror/src/client/auth.rs

use std::mem::replace;
use futures::{Future, Poll, Async, sink, Stream};
use tokio_io::{AsyncRead, AsyncWrite};
use sasl::common::Credentials;
use sasl::common::scram::{Sha1, Sha256};
use sasl::client::Mechanism;
use sasl::client::mechanisms::{Scram, Plain, Anonymous};
use serialize::base64::FromBase64;
use minidom::Element;
use xmpp_parsers::sasl::{Auth, Response, Mechanism as XMPPMechanism};

use xmpp_codec::Packet;
use xmpp_stream::XMPPStream;
use stream_start::StreamStart;

const NS_XMPP_SASL: &str = "urn:ietf:params:xml:ns:xmpp-sasl";

pub struct ClientAuth<S: AsyncWrite> {
    state: ClientAuthState<S>,
    mechanism: Box<Mechanism>,
}

enum ClientAuthState<S: AsyncWrite> {
    WaitSend(sink::Send<XMPPStream<S>>),
    WaitRecv(XMPPStream<S>),
    Start(StreamStart<S>),
    Invalid,
}

impl<S: AsyncWrite> ClientAuth<S> {
    pub fn new(stream: XMPPStream<S>, creds: Credentials) -> Result<Self, String> {
        let mechs: Vec<(Box<Mechanism>, XMPPMechanism)> = vec![
            // (Box::new(Scram::<Sha256>::from_credentials(creds.clone()).unwrap()),
            //  XMPPMechanism::ScramSha256
            // ),
            (Box::new(Scram::<Sha1>::from_credentials(creds.clone()).unwrap()),
             XMPPMechanism::ScramSha1
            ),
            (Box::new(Plain::from_credentials(creds).unwrap()),
             XMPPMechanism::Plain
            ),
            (Box::new(Anonymous::new()),
             XMPPMechanism::Anonymous
            ),
        ];

        let mech_names: Vec<String> =
            match stream.stream_features.get_child("mechanisms", NS_XMPP_SASL) {
                None =>
                    return Err("No auth mechanisms".to_owned()),
                Some(mechs) =>
                    mechs.children()
                    .filter(|child| child.is("mechanism", NS_XMPP_SASL))
                    .map(|mech_el| mech_el.text())
                    .collect(),
            };
        println!("SASL mechanisms offered: {:?}", mech_names);

        for (mut mech, mechanism) in mechs {
            let name = mech.name().to_owned();
            if mech_names.iter().any(|name1| *name1 == name) {
                println!("SASL mechanism selected: {:?}", name);
                let initial = try!(mech.initial());
                let mut this = ClientAuth {
                    state: ClientAuthState::Invalid,
                    mechanism: mech,
                };
                this.send(
                    stream,
                    Auth {
                        mechanism,
                        data: initial,
                    }
                );
                return Ok(this);
            }
        }

        Err("No supported SASL mechanism available".to_owned())
    }

    fn send<N: Into<Element>>(&mut self, stream: XMPPStream<S>, nonza: N) {
        let send = stream.send_stanza(nonza);

        self.state = ClientAuthState::WaitSend(send);
    }
}

impl<S: AsyncRead + AsyncWrite> Future for ClientAuth<S> {
    type Item = XMPPStream<S>;
    type Error = String;

    fn poll(&mut self) -> Poll<Self::Item, Self::Error> {
        let state = replace(&mut self.state, ClientAuthState::Invalid);

        match state {
            ClientAuthState::WaitSend(mut send) =>
                match send.poll() {
                    Ok(Async::Ready(stream)) => {
                        self.state = ClientAuthState::WaitRecv(stream);
                        self.poll()
                    },
                    Ok(Async::NotReady) => {
                        self.state = ClientAuthState::WaitSend(send);
                        Ok(Async::NotReady)
                    },
                    Err(e) =>
                        Err(format!("{}", e)),
                },
            ClientAuthState::WaitRecv(mut stream) =>
                match stream.poll() {
                    Ok(Async::Ready(Some(Packet::Stanza(ref stanza))))
                        if stanza.is("challenge", NS_XMPP_SASL) =>
                    {
                        let content = try!(
                            stanza.text()
                                .from_base64()
                                .map_err(|e| format!("{}", e))
                        );
                        let response = try!(self.mechanism.response(&content));
                        self.send(stream, Response { data: response });
                        self.poll()
                    },
                    Ok(Async::Ready(Some(Packet::Stanza(ref stanza))))
                        if stanza.is("success", NS_XMPP_SASL) =>
                    {
                        let start = stream.restart();
                        self.state = ClientAuthState::Start(start);
                        self.poll()
                    },
                    Ok(Async::Ready(Some(Packet::Stanza(ref stanza))))
                        if stanza.is("failure", NS_XMPP_SASL) =>
                    {
                        let e = stanza.children().next()
                            .map(|child| child.name())
                            .unwrap_or("Authentication failure");
                        Err(e.to_owned())
                    },
                    Ok(Async::Ready(event)) => {
                        println!("ClientAuth ignore {:?}", event);
                        Ok(Async::NotReady)
                    },
                    Ok(_) => {
                        self.state = ClientAuthState::WaitRecv(stream);
                        Ok(Async::NotReady)
                    },
                    Err(e) =>
                        Err(format!("{}", e)),
                },
            ClientAuthState::Start(mut start) =>
                match start.poll() {
                    Ok(Async::Ready(stream)) =>
                        Ok(Async::Ready(stream)),
                    Ok(Async::NotReady) => {
                        self.state = ClientAuthState::Start(start);
                        Ok(Async::NotReady)
                    },
                    Err(e) =>
                        Err(format!("{}", e)),
                },
            ClientAuthState::Invalid =>
                unreachable!(),
        }
    }
}
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`use std::mem::replace;`
more replacement with xmpp-parsers 2018-08-01 23:01:41 +00:00			`use futures::{Future, Poll, Async, sink, Stream};`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`use tokio_io::{AsyncRead, AsyncWrite};`
			`use sasl::common::Credentials;`
don’t use wildcard use 2017-07-18 20:54:10 +00:00			`use sasl::common::scram::{Sha1, Sha256};`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`use sasl::client::Mechanism;`
don’t use wildcard use 2017-07-18 20:54:10 +00:00			`use sasl::client::mechanisms::{Scram, Plain, Anonymous};`
replace parts of client::auth with xmpp-parsers 2018-08-01 23:44:48 +00:00			`use serialize::base64::FromBase64;`
more replacement with xmpp-parsers 2018-08-01 23:01:41 +00:00			`use minidom::Element;`
replace parts of client::auth with xmpp-parsers 2018-08-01 23:44:48 +00:00			`use xmpp_parsers::sasl::{Auth, Response, Mechanism as XMPPMechanism};`
add client_auth using sasl 2017-06-05 23:29:20 +00:00
don’t use wildcard use 2017-07-18 20:54:10 +00:00			`use xmpp_codec::Packet;`
			`use xmpp_stream::XMPPStream;`
			`use stream_start::StreamStart;`
add client_auth using sasl 2017-06-05 23:29:20 +00:00
			`const NS_XMPP_SASL: &str = "urn:ietf:params:xml:ns:xmpp-sasl";`

			`pub struct ClientAuth<S: AsyncWrite> {`
			`state: ClientAuthState<S>,`
			`mechanism: Box<Mechanism>,`
			`}`

			`enum ClientAuthState<S: AsyncWrite> {`
			`WaitSend(sink::Send<XMPPStream<S>>),`
			`WaitRecv(XMPPStream<S>),`
client_auth: add stream restart 2017-06-05 23:38:48 +00:00			`Start(StreamStart<S>),`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`Invalid,`
			`}`

			`impl<S: AsyncWrite> ClientAuth<S> {`
			`pub fn new(stream: XMPPStream<S>, creds: Credentials) -> Result<Self, String> {`
replace parts of client::auth with xmpp-parsers 2018-08-01 23:44:48 +00:00			`let mechs: Vec<(Box<Mechanism>, XMPPMechanism)> = vec![`
			`// (Box::new(Scram::<Sha256>::from_credentials(creds.clone()).unwrap()),`
			`// XMPPMechanism::ScramSha256`
			`// ),`
			`(Box::new(Scram::<Sha1>::from_credentials(creds.clone()).unwrap()),`
			`XMPPMechanism::ScramSha1`
			`),`
			`(Box::new(Plain::from_credentials(creds).unwrap()),`
			`XMPPMechanism::Plain`
			`),`
			`(Box::new(Anonymous::new()),`
			`XMPPMechanism::Anonymous`
			`),`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`];`

			`let mech_names: Vec<String> =`
switch from rustxml to minidom, doesn't work 2017-07-17 18:53:00 +00:00			`match stream.stream_features.get_child("mechanisms", NS_XMPP_SASL) {`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`None =>`
			`return Err("No auth mechanisms".to_owned()),`
			`Some(mechs) =>`
switch from rustxml to minidom, doesn't work 2017-07-17 18:53:00 +00:00			`mechs.children()`
			`.filter(\|child\| child.is("mechanism", NS_XMPP_SASL))`
			`.map(\|mech_el\| mech_el.text())`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`.collect(),`
			`};`
consolidate debug output 2017-06-19 00:34:16 +00:00			`println!("SASL mechanisms offered: {:?}", mech_names);`
add client_auth using sasl 2017-06-05 23:29:20 +00:00
replace parts of client::auth with xmpp-parsers 2018-08-01 23:44:48 +00:00			`for (mut mech, mechanism) in mechs {`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`let name = mech.name().to_owned();`
			`if mech_names.iter().any(\|name1\| *name1 == name) {`
consolidate debug output 2017-06-19 00:34:16 +00:00			`println!("SASL mechanism selected: {:?}", name);`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`let initial = try!(mech.initial());`
			`let mut this = ClientAuth {`
			`state: ClientAuthState::Invalid,`
			`mechanism: mech,`
			`};`
			`this.send(`
			`stream,`
replace parts of client::auth with xmpp-parsers 2018-08-01 23:44:48 +00:00			`Auth {`
			`mechanism,`
			`data: initial,`
			`}`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`);`
			`return Ok(this);`
			`}`
			`}`

			`Err("No supported SASL mechanism available".to_owned())`
			`}`

replace parts of client::auth with xmpp-parsers 2018-08-01 23:44:48 +00:00			`fn send<N: Into<Element>>(&mut self, stream: XMPPStream<S>, nonza: N) {`
add XMPPStream.send_stanza() convenience method 2018-08-01 22:19:06 +00:00			`let send = stream.send_stanza(nonza);`
add client_auth using sasl 2017-06-05 23:29:20 +00:00
			`self.state = ClientAuthState::WaitSend(send);`
			`}`
			`}`

			`impl<S: AsyncRead + AsyncWrite> Future for ClientAuth<S> {`
			`type Item = XMPPStream<S>;`
			`type Error = String;`

			`fn poll(&mut self) -> Poll<Self::Item, Self::Error> {`
			`let state = replace(&mut self.state, ClientAuthState::Invalid);`

			`match state {`
			`ClientAuthState::WaitSend(mut send) =>`
			`match send.poll() {`
			`Ok(Async::Ready(stream)) => {`
			`self.state = ClientAuthState::WaitRecv(stream);`
			`self.poll()`
			`},`
			`Ok(Async::NotReady) => {`
			`self.state = ClientAuthState::WaitSend(send);`
			`Ok(Async::NotReady)`
			`},`
			`Err(e) =>`
			`Err(format!("{}", e)),`
			`},`
			`ClientAuthState::WaitRecv(mut stream) =>`
			`match stream.poll() {`
			`Ok(Async::Ready(Some(Packet::Stanza(ref stanza))))`
migrate to minidom 0.6.0 2017-08-14 01:56:08 +00:00			`if stanza.is("challenge", NS_XMPP_SASL) =>`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`{`
			`let content = try!(`
switch from rustxml to minidom, doesn't work 2017-07-17 18:53:00 +00:00			`stanza.text()`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`.from_base64()`
			`.map_err(\|e\| format!("{}", e))`
			`);`
			`let response = try!(self.mechanism.response(&content));`
replace parts of client::auth with xmpp-parsers 2018-08-01 23:44:48 +00:00			`self.send(stream, Response { data: response });`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`self.poll()`
			`},`
			`Ok(Async::Ready(Some(Packet::Stanza(ref stanza))))`
migrate to minidom 0.6.0 2017-08-14 01:56:08 +00:00			`if stanza.is("success", NS_XMPP_SASL) =>`
client_auth: add stream restart 2017-06-05 23:38:48 +00:00			`{`
			`let start = stream.restart();`
			`self.state = ClientAuthState::Start(start);`
			`self.poll()`
			`},`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`Ok(Async::Ready(Some(Packet::Stanza(ref stanza))))`
migrate to minidom 0.6.0 2017-08-14 01:56:08 +00:00			`if stanza.is("failure", NS_XMPP_SASL) =>`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`{`
delint (clippy) 2017-07-20 22:19:08 +00:00			`let e = stanza.children().next()`
			`.map(\|child\| child.name())`
			`.unwrap_or("Authentication failure");`
switch from rustxml to minidom, doesn't work 2017-07-17 18:53:00 +00:00			`Err(e.to_owned())`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`},`
			`Ok(Async::Ready(event)) => {`
			`println!("ClientAuth ignore {:?}", event);`
			`Ok(Async::NotReady)`
			`},`
			`Ok(_) => {`
			`self.state = ClientAuthState::WaitRecv(stream);`
			`Ok(Async::NotReady)`
			`},`
			`Err(e) =>`
			`Err(format!("{}", e)),`
			`},`
client_auth: add stream restart 2017-06-05 23:38:48 +00:00			`ClientAuthState::Start(mut start) =>`
			`match start.poll() {`
			`Ok(Async::Ready(stream)) =>`
			`Ok(Async::Ready(stream)),`
			`Ok(Async::NotReady) => {`
			`self.state = ClientAuthState::Start(start);`
			`Ok(Async::NotReady)`
			`},`
			`Err(e) =>`
			`Err(format!("{}", e)),`
			`},`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`ClientAuthState::Invalid =>`
			`unreachable!(),`
			`}`
			`}`
			`}`