1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
use crate::attribute::Attribute;
use crate::{Error, ErrorKind, Result};
use stun_codec::rfc5389;
use stun_codec::Message;
#[derive(Debug, Clone)]
pub struct AuthParams {
username: rfc5389::attributes::Username,
password: String,
realm: Option<rfc5389::attributes::Realm>,
nonce: Option<rfc5389::attributes::Nonce>,
}
impl AuthParams {
pub fn new(username: &str, password: &str) -> Result<Self> {
let username = track!(rfc5389::attributes::Username::new(username.to_owned()))?;
Ok(AuthParams {
username,
password: password.to_owned(),
realm: None,
nonce: None,
})
}
pub fn with_realm_and_nonce(
username: &str,
password: &str,
realm: &str,
nonce: &str,
) -> Result<Self> {
let username = track!(rfc5389::attributes::Username::new(username.to_owned()))?;
let realm = track!(rfc5389::attributes::Realm::new(realm.to_owned()))?;
let nonce = track!(rfc5389::attributes::Nonce::new(nonce.to_owned()))?;
Ok(AuthParams {
username,
password: password.to_owned(),
realm: Some(realm),
nonce: Some(nonce),
})
}
pub fn has_realm(&self) -> bool {
self.realm.is_some()
}
pub fn has_nonce(&self) -> bool {
self.nonce.is_some()
}
pub fn set_realm(&mut self, realm: rfc5389::attributes::Realm) {
self.realm = Some(realm);
}
pub fn set_nonce(&mut self, nonce: rfc5389::attributes::Nonce) {
self.nonce = Some(nonce);
}
pub fn get_realm(&self) -> Option<&rfc5389::attributes::Realm> {
self.realm.as_ref()
}
pub fn get_nonce(&self) -> Option<&rfc5389::attributes::Nonce> {
self.nonce.as_ref()
}
pub fn add_auth_attributes<T>(&self, mut message: T) -> Result<()>
where
T: AsMut<Message<Attribute>>,
{
let realm = track_assert_some!(self.realm.clone(), ErrorKind::Other);
let nonce = track_assert_some!(self.nonce.clone(), ErrorKind::Other);
message.as_mut().add_attribute(self.username.clone().into());
message.as_mut().add_attribute(realm.clone().into());
message.as_mut().add_attribute(nonce.into());
let mi = track!(
rfc5389::attributes::MessageIntegrity::new_long_term_credential(
message.as_mut(),
&self.username,
&realm,
&self.password,
)
)?;
message.as_mut().add_attribute(mi.into());
Ok(())
}
pub fn validate(&self, mi: &rfc5389::attributes::MessageIntegrity) -> Result<()> {
let realm = track_assert_some!(self.realm.as_ref(), ErrorKind::Other);
track!(mi
.check_long_term_credential(&self.username, realm, &self.password)
.map_err(Error::from))?;
Ok(())
}
}