Gitiles
Code Review Sign In
gerrit.openbmc.org / openbmc / bmcweb / c5d03ff4737b1f4e4eb7e59f533d6c5a1faeeab5 / . / redfish-core / include / privileges.hpp
blob: ca445518355cf201cc739e25b050b0e01c7e3c53 [file] [log] [blame]
Borawski.Lukasz86e1b662018-01-19 14:22:14 +0100[diff] [blame]1/*
2// Copyright (c) 2018 Intel Corporation
3//
4// Licensed under the Apache License, Version 2.0 (the "License");
5// you may not use this file except in compliance with the License.
6// You may obtain a copy of the License at
7//
8// http://www.apache.org/licenses/LICENSE-2.0
9//
10// Unless required by applicable law or agreed to in writing, software
11// distributed under the License is distributed on an "AS IS" BASIS,
12// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13// See the License for the specific language governing permissions and
14// limitations under the License.
15*/
16#pragma once
17
Tanousf00032d2018-11-05 01:18:10 -0300[diff] [blame]18#include <crow/logging.h>
19
20#include <array>
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100[diff] [blame]21#include <bitset>
Tanousf00032d2018-11-05 01:18:10 -0300[diff] [blame]22#include <boost/beast/http/verb.hpp>
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100[diff] [blame]23#include <boost/container/flat_map.hpp>
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]24#include <cstdint>
25#include <vector>
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100[diff] [blame]26
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]27namespace redfish
28{
29
30enum class PrivilegeType
31{
32 BASE,
33 OEM
34};
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100[diff] [blame]35
Ed Tanousa6927792018-03-06 10:01:57 -0800[diff] [blame]36/** @brief A fixed array of compile time privileges */
37constexpr std::array<const char*, 5> basePrivileges{
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800[diff] [blame]38 "Login", "ConfigureManager", "ConfigureComponents", "ConfigureSelf",
39 "ConfigureUsers"};
Borawski.Lukasz43a095a2018-02-19 15:39:01 +0100[diff] [blame]40
Ed Tanousb01bf292019-03-25 19:25:26 +0000[diff] [blame]41constexpr const int basePrivilegeCount = basePrivileges.size();
Ed Tanousa6927792018-03-06 10:01:57 -0800[diff] [blame]42
43/** @brief Max number of privileges per type */
Ed Tanousb01bf292019-03-25 19:25:26 +0000[diff] [blame]44constexpr const int maxPrivilegeCount = 32;
Ed Tanousa6927792018-03-06 10:01:57 -0800[diff] [blame]45
46/** @brief A vector of all privilege names and their indexes */
47static const std::vector<std::string> privilegeNames{basePrivileges.begin(),
48 basePrivileges.end()};
Borawski.Lukasz43a095a2018-02-19 15:39:01 +0100[diff] [blame]49
Borawski.Lukasz86e1b662018-01-19 14:22:14 +0100[diff] [blame]50/**
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100[diff] [blame]51 * @brief Redfish privileges
52 *
53 * Entity privileges and user privileges are represented by this class.
54 *
Ed Tanous55c7b7a2018-05-22 15:27:24 -0700[diff] [blame]55 * Each incoming Connection requires a comparison between privileges held
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100[diff] [blame]56 * by the user issuing a request and the target entity's privileges.
57 *
58 * To ensure best runtime performance of this comparison, privileges
59 * are represented as bitsets. Each bit in the bitset corresponds to a
60 * unique privilege name.
61 *
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100[diff] [blame]62 * A bit is set if the privilege is required (entity domain) or granted
63 * (user domain) and false otherwise.
64 *
Borawski.Lukasz86e1b662018-01-19 14:22:14 +0100[diff] [blame]65 */
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]66class Privileges
67{
68 public:
69 /**
70 * @brief Constructs object without any privileges active
71 *
72 */
73 Privileges() = default;
Borawski.Lukasz43a095a2018-02-19 15:39:01 +0100[diff] [blame]74
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]75 /**
76 * @brief Constructs object with given privileges active
77 *
78 * @param[in] privilegeList List of privileges to be activated
79 *
80 */
81 Privileges(std::initializer_list<const char*> privilegeList)
82 {
83 for (const char* privilege : privilegeList)
84 {
85 if (!setSinglePrivilege(privilege))
86 {
87 BMCWEB_LOG_CRITICAL << "Unable to set privilege " << privilege
88 << "in constructor";
89 }
90 }
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100[diff] [blame]91 }
92
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]93 /**
94 * @brief Sets given privilege in the bitset
95 *
96 * @param[in] privilege Privilege to be set
97 *
98 * @return None
99 *
100 */
101 bool setSinglePrivilege(const char* privilege)
102 {
Ed Tanousb01bf292019-03-25 19:25:26 +0000[diff] [blame]103 for (int searchIndex = 0; searchIndex < privilegeNames.size();
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]104 searchIndex++)
105 {
106 if (privilege == privilegeNames[searchIndex])
107 {
108 privilegeBitset.set(searchIndex);
109 return true;
110 }
111 }
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800[diff] [blame]112
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]113 return false;
Ed Tanousa6927792018-03-06 10:01:57 -0800[diff] [blame]114 }
115
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]116 /**
117 * @brief Sets given privilege in the bitset
118 *
119 * @param[in] privilege Privilege to be set
120 *
121 * @return None
122 *
123 */
124 bool setSinglePrivilege(const std::string& privilege)
125 {
126 return setSinglePrivilege(privilege.c_str());
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100[diff] [blame]127 }
Ed Tanousa6927792018-03-06 10:01:57 -0800[diff] [blame]128
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]129 /**
130 * @brief Retrieves names of all active privileges for a given type
131 *
132 * @param[in] type Base or OEM
133 *
134 * @return Vector of active privileges. Pointers are valid until
135 * the setSinglePrivilege is called, or the Privilege structure is destroyed
136 *
137 */
138 std::vector<const std::string*>
139 getActivePrivilegeNames(const PrivilegeType type) const
140 {
141 std::vector<const std::string*> activePrivileges;
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100[diff] [blame]142
Ed Tanousb01bf292019-03-25 19:25:26 +0000[diff] [blame]143 int searchIndex = 0;
144 int endIndex = basePrivilegeCount;
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]145 if (type == PrivilegeType::OEM)
146 {
147 searchIndex = basePrivilegeCount - 1;
148 endIndex = privilegeNames.size();
149 }
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800[diff] [blame]150
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]151 for (; searchIndex < endIndex; searchIndex++)
152 {
153 if (privilegeBitset.test(searchIndex))
154 {
155 activePrivileges.emplace_back(&privilegeNames[searchIndex]);
156 }
157 }
158
159 return activePrivileges;
160 }
161
162 /**
163 * @brief Determines if this Privilege set is a superset of the given
164 * privilege set
165 *
166 * @param[in] privilege Privilege to be checked
167 *
168 * @return None
169 *
170 */
171 bool isSupersetOf(const Privileges& p) const
172 {
173 return (privilegeBitset & p.privilegeBitset) == p.privilegeBitset;
174 }
175
176 private:
177 std::bitset<maxPrivilegeCount> privilegeBitset = 0;
Borawski.Lukasz86e1b662018-01-19 14:22:14 +0100[diff] [blame]178};
179
Ed Tanouse0d918b2018-03-27 17:41:04 -0700[diff] [blame]180using OperationMap = boost::container::flat_map<boost::beast::http::verb,
181 std::vector<Privileges>>;
Borawski.Lukasz43a095a2018-02-19 15:39:01 +0100[diff] [blame]182
183/**
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800[diff] [blame]184 * @brief Checks if given privileges allow to call an HTTP method
185 *
186 * @param[in] method HTTP method
187 * @param[in] user Privileges
188 *
189 * @return True if method allowed, false otherwise
Borawski.Lukasz43a095a2018-02-19 15:39:01 +0100[diff] [blame]190 *
191 */
Ed Tanouse0d918b2018-03-27 17:41:04 -0700[diff] [blame]192inline bool isMethodAllowedWithPrivileges(const boost::beast::http::verb method,
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800[diff] [blame]193 const OperationMap& operationMap,
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]194 const Privileges& userPrivileges)
195{
196 const auto& it = operationMap.find(method);
197 if (it == operationMap.end())
198 {
199 return false;
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800[diff] [blame]200 }
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]201
202 // If there are no privileges assigned, assume no privileges required
203 if (it->second.empty())
204 {
205 return true;
206 }
207
208 for (auto& requiredPrivileges : it->second)
209 {
210 if (userPrivileges.isSupersetOf(requiredPrivileges))
211 {
212 return true;
213 }
214 }
215 return false;
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800[diff] [blame]216}
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100[diff] [blame]217
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800[diff] [blame]218/**
219 * @brief Checks if a user is allowed to call an HTTP method
220 *
221 * @param[in] method HTTP method
222 * @param[in] user Username
223 *
224 * @return True if method allowed, false otherwise
225 *
226 */
Ed Tanouse0d918b2018-03-27 17:41:04 -0700[diff] [blame]227inline bool isMethodAllowedForUser(const boost::beast::http::verb method,
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800[diff] [blame]228 const OperationMap& operationMap,
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]229 const std::string& user)
230{
231 // TODO: load user privileges from configuration as soon as its available
232 // now we are granting all privileges to everyone.
233 Privileges userPrivileges{"Login", "ConfigureManager", "ConfigureSelf",
234 "ConfigureUsers", "ConfigureComponents"};
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800[diff] [blame]235
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]236 return isMethodAllowedWithPrivileges(method, operationMap, userPrivileges);
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800[diff] [blame]237}
Borawski.Lukasz86e1b662018-01-19 14:22:14 +0100[diff] [blame]238
Ed Tanous1abe55e2018-09-05 08:30:59 -0700[diff] [blame]239} // namespace redfish