diff options
Diffstat (limited to 'src/mongo/db/auth/authz_session_external_state_server_common.cpp')
| -rw-r--r-- | src/mongo/db/auth/authz_session_external_state_server_common.cpp | 65 |
1 files changed, 65 insertions, 0 deletions
diff --git a/src/mongo/db/auth/authz_session_external_state_server_common.cpp b/src/mongo/db/auth/authz_session_external_state_server_common.cpp new file mode 100644 index 00000000000..200eeb6f0e5 --- /dev/null +++ b/src/mongo/db/auth/authz_session_external_state_server_common.cpp @@ -0,0 +1,65 @@ +/** +* Copyright (C) 2012 10gen Inc. +* +* This program is free software: you can redistribute it and/or modify +* it under the terms of the GNU Affero General Public License, version 3, +* as published by the Free Software Foundation. +* +* This program is distributed in the hope that it will be useful, +* but WITHOUT ANY WARRANTY; without even the implied warranty of +* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +* GNU Affero General Public License for more details. +* +* You should have received a copy of the GNU Affero General Public License +* along with this program. If not, see <http://www.gnu.org/licenses/>. +*/ + +#include "mongo/db/auth/authz_session_external_state_server_common.h" + +#include "mongo/base/status.h" +#include "mongo/db/auth/authorization_manager.h" +#include "mongo/db/client.h" +#include "mongo/db/server_parameters.h" +#include "mongo/util/debug_util.h" + +namespace mongo { + +namespace { + MONGO_EXPORT_STARTUP_SERVER_PARAMETER(enableLocalhostAuthBypass, bool, true); +} // namespace + + // NOTE: we default _allowLocalhost to true under the assumption that _checkShouldAllowLocalhost + // will always be called before any calls to shouldIgnoreAuthChecks. If this is not the case, + // it could cause a security hole. + AuthzSessionExternalStateServerCommon::AuthzSessionExternalStateServerCommon() : + _allowLocalhost(true) {} + AuthzSessionExternalStateServerCommon::~AuthzSessionExternalStateServerCommon() {} + + void AuthzSessionExternalStateServerCommon::_checkShouldAllowLocalhost() { + if (!AuthorizationManager::isAuthEnabled()) + return; + // If we know that an admin user exists, don't re-check. + if (!_allowLocalhost) + return; + // Don't bother checking if we're not on a localhost connection + if (!ClientBasic::getCurrent()->getIsLocalHostConnection()) { + _allowLocalhost = false; + return; + } + + _allowLocalhost = !_hasPrivilegeDocument("admin"); + if (_allowLocalhost) { + ONCE { + log() << "note: no users configured in admin.system.users, allowing localhost " + "access" << std::endl; + } + } + } + + bool AuthzSessionExternalStateServerCommon::shouldIgnoreAuthChecks() const { + ClientBasic* client = ClientBasic::getCurrent(); + return !AuthorizationManager::isAuthEnabled() || + (enableLocalhostAuthBypass &&client->getIsLocalHostConnection() && _allowLocalhost); + } + +} // namespace mongo |