github
/
mosquitto
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
develop
master
fixes
release/2.0
release/1.6
dynamic-bridge
release/1.5
debian
debian-mosquitto
v2.0.15
v2.0.14
v2.0.13
v2.0.12
v2.0.11
v1.6.15
v2.0.10
v2.0.9
v1.6.14
v1.5.11
v2.0.8
v2.0.7
v1.6.13
v2.0.6
v2.0.5
v2.0.4
v2.0.3
v2.0.2
v2.0.1
v2.0.0
v1.5.10
v1.6.12
v1.6.11
v1.6.10
v1.6.9
v1.6.8
v1.6.7
v1.6.6
v1.5.9
v1.6.5
v1.6.4
v1.6.3
v1.6.2
v1.6.1
v1.6
v1.5.8
v1.5.7
v1.5.6
v1.5.5
v1.5.4
v1.5.3
v1.5.2
v1.5.1
v1.5
v1.4.15
v1.4.14
v1.4.13
v1.4.12
v1.4.11
v1.4.10
v1.4.9
v1.4.8
v1.4.7
v1.4.6
v1.4.5
v1.4.4
v1.4.3
v1.4.2
v1.4.1
v1.3.2-not-blessed
v1.3.3-not-blessed
v1.3.4-not-blessed
v1.3.5-not-blessed
v1.4
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'cbbc4a0ea3'
${ noResults }
mosquitto/plugins/auth-by-env/mosquitto_auth_by_env.c

105 lines
2.5 KiB
C
Raw Blame History

/*
Copyright (c) 2021 Frank Villaro-Dixon <frank@villaro-dixon.eu>
This plugin is under the WTFPL. Do what you want with it.
SPDX-License-Identifier: WTFPL
Contributors:
Frank Villaro-Dixon - initial implementation and documentation.
*/
/*
* This plugin allows users to authenticate with any username, as long as
* the provided password matches the MOSQUITTO_PASSWORD environment variable.
* If the MOSQUITTO_PASSWORD env variable is empty, then authentication is rejected.
*
* Compile with:
* gcc -I<path to mosquitto-repo/include> -fPIC -shared mosquitto_auth_by_env.c -o mosquitto_auth_by_env.so
*
* Use in config with:
*
* plugin /path/to/mosquitto_auth_by_env.so
*
* Note that this only works on Mosquitto 2.0 or later.
*/
#include "config.h"
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include "mosquitto_broker.h"
#include "mosquitto_plugin.h"
#include "mosquitto.h"
#include "mqtt_protocol.h"
#define ENV_MOSQUITTO_PASSWORD "MOSQUITTO_PASSWORD"
static mosquitto_plugin_id_t *mosq_pid = NULL;
static char *environment_password;
static int basic_auth_callback(int event, void *event_data, void *userdata)
{
struct mosquitto_evt_basic_auth *ed = event_data;
UNUSED(event);
UNUSED(userdata);
if(!environment_password || !ed->password){
return MOSQ_ERR_PLUGIN_DEFER;
}
if(!strcmp(ed->password, environment_password)){
/* Password matched MOSQUITTO_PASSWORD */
return MOSQ_ERR_SUCCESS;
}
else{
return MOSQ_ERR_PLUGIN_DEFER;
}
}
int mosquitto_plugin_version(int supported_version_count, const int *supported_versions)
{
int i;
for(i=0; i<supported_version_count; i++){
if(supported_versions[i] == 5){
return 5;
}
}
return -1;
}
int mosquitto_plugin_init(mosquitto_plugin_id_t *identifier, void **user_data, struct mosquitto_opt *opts, int opt_count)
{
UNUSED(user_data);
UNUSED(opts);
UNUSED(opt_count);
char *env_var_content;
mosq_pid = identifier;
env_var_content = getenv(ENV_MOSQUITTO_PASSWORD);
if(env_var_content){
if(strlen(env_var_content) > 0){
environment_password = strdup(env_var_content);
return mosquitto_callback_register(mosq_pid, MOSQ_EVT_BASIC_AUTH, basic_auth_callback, NULL, NULL);
}
}
log__printf(NULL, MOSQ_LOG_INFO, "Auth-by-env plugin called, but "ENV_MOSQUITTO_PASSWORD" env var is empty\n");
return 0;
}
int mosquitto_plugin_cleanup(void *user_data, struct mosquitto_opt *opts, int opt_count)
{
UNUSED(user_data);
UNUSED(opts);
UNUSED(opt_count);
free(environment_password);
return mosquitto_callback_unregister(mosq_pid, MOSQ_EVT_BASIC_AUTH, basic_auth_callback, NULL);
}
Reference in New Issue View Git Blame Copy Permalink