blob: 2d445454629514e93c8d17c200bc8ac020bcab18 [file] [log] [blame]
Borawski.Lukasz86e1b662018-01-19 14:22:14 +01001/*
2// Copyright (c) 2018 Intel Corporation
3//
4// Licensed under the Apache License, Version 2.0 (the "License");
5// you may not use this file except in compliance with the License.
6// You may obtain a copy of the License at
7//
8// http://www.apache.org/licenses/LICENSE-2.0
9//
10// Unless required by applicable law or agreed to in writing, software
11// distributed under the License is distributed on an "AS IS" BASIS,
12// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13// See the License for the specific language governing permissions and
14// limitations under the License.
15*/
16#pragma once
17
Ed Tanousc94ad492019-10-10 15:39:33 -070018#include <logging.h>
Tanousf00032d2018-11-05 01:18:10 -030019
Tanousf00032d2018-11-05 01:18:10 -030020#include <boost/beast/http/verb.hpp>
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +010021#include <boost/container/flat_map.hpp>
Gunnar Mills1214b7e2020-06-04 10:11:30 -050022
23#include <array>
24#include <bitset>
Ed Tanous1abe55e2018-09-05 08:30:59 -070025#include <cstdint>
26#include <vector>
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +010027
Ed Tanous1abe55e2018-09-05 08:30:59 -070028namespace redfish
29{
30
31enum class PrivilegeType
32{
33 BASE,
34 OEM
35};
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +010036
Ed Tanousa6927792018-03-06 10:01:57 -080037/** @brief A fixed array of compile time privileges */
38constexpr std::array<const char*, 5> basePrivileges{
Ed Tanous3ebd75f2018-03-05 18:20:01 -080039 "Login", "ConfigureManager", "ConfigureComponents", "ConfigureSelf",
40 "ConfigureUsers"};
Borawski.Lukasz43a095a2018-02-19 15:39:01 +010041
Ed Tanous271584a2019-07-09 16:24:22 -070042constexpr const size_t basePrivilegeCount = basePrivileges.size();
Ed Tanousa6927792018-03-06 10:01:57 -080043
44/** @brief Max number of privileges per type */
Ed Tanous271584a2019-07-09 16:24:22 -070045constexpr const size_t maxPrivilegeCount = 32;
Ed Tanousa6927792018-03-06 10:01:57 -080046
47/** @brief A vector of all privilege names and their indexes */
Ed Tanous23a21a12020-07-25 04:45:05 +000048static const std::array<std::string, maxPrivilegeCount> privilegeNames{
49 "Login", "ConfigureManager", "ConfigureComponents", "ConfigureSelf",
50 "ConfigureUsers"};
Borawski.Lukasz43a095a2018-02-19 15:39:01 +010051
Borawski.Lukasz86e1b662018-01-19 14:22:14 +010052/**
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +010053 * @brief Redfish privileges
54 *
Joseph Reynolds900f9492019-11-25 15:37:29 -060055 * This implements a set of Redfish privileges. These directly represent
56 * user privileges and help represent entity privileges.
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +010057 *
Ed Tanous55c7b7a2018-05-22 15:27:24 -070058 * Each incoming Connection requires a comparison between privileges held
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +010059 * by the user issuing a request and the target entity's privileges.
60 *
61 * To ensure best runtime performance of this comparison, privileges
62 * are represented as bitsets. Each bit in the bitset corresponds to a
63 * unique privilege name.
64 *
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +010065 * A bit is set if the privilege is required (entity domain) or granted
66 * (user domain) and false otherwise.
67 *
Borawski.Lukasz86e1b662018-01-19 14:22:14 +010068 */
Ed Tanous1abe55e2018-09-05 08:30:59 -070069class Privileges
70{
71 public:
72 /**
73 * @brief Constructs object without any privileges active
74 *
75 */
76 Privileges() = default;
Borawski.Lukasz43a095a2018-02-19 15:39:01 +010077
Ed Tanous1abe55e2018-09-05 08:30:59 -070078 /**
79 * @brief Constructs object with given privileges active
80 *
81 * @param[in] privilegeList List of privileges to be activated
82 *
83 */
84 Privileges(std::initializer_list<const char*> privilegeList)
85 {
86 for (const char* privilege : privilegeList)
87 {
88 if (!setSinglePrivilege(privilege))
89 {
90 BMCWEB_LOG_CRITICAL << "Unable to set privilege " << privilege
91 << "in constructor";
92 }
93 }
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +010094 }
95
Ed Tanous1abe55e2018-09-05 08:30:59 -070096 /**
97 * @brief Sets given privilege in the bitset
98 *
99 * @param[in] privilege Privilege to be set
100 *
101 * @return None
102 *
103 */
Ed Tanous23a21a12020-07-25 04:45:05 +0000104 bool setSinglePrivilege(const std::string_view privilege)
Ed Tanous1abe55e2018-09-05 08:30:59 -0700105 {
Ed Tanous271584a2019-07-09 16:24:22 -0700106 for (size_t searchIndex = 0; searchIndex < privilegeNames.size();
Ed Tanous1abe55e2018-09-05 08:30:59 -0700107 searchIndex++)
108 {
109 if (privilege == privilegeNames[searchIndex])
110 {
111 privilegeBitset.set(searchIndex);
112 return true;
113 }
114 }
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800115
Ed Tanous1abe55e2018-09-05 08:30:59 -0700116 return false;
Ed Tanousa6927792018-03-06 10:01:57 -0800117 }
118
Ed Tanous1abe55e2018-09-05 08:30:59 -0700119 /**
Joseph Reynolds900f9492019-11-25 15:37:29 -0600120 * @brief Resets the given privilege in the bitset
121 *
122 * @param[in] privilege Privilege to be reset
123 *
124 * @return None
125 *
126 */
127 bool resetSinglePrivilege(const char* privilege)
128 {
129 for (size_t searchIndex = 0; searchIndex < privilegeNames.size();
130 searchIndex++)
131 {
132 if (privilege == privilegeNames[searchIndex])
133 {
134 privilegeBitset.reset(searchIndex);
135 return true;
136 }
137 }
138 return false;
139 }
140
141 /**
Ed Tanous1abe55e2018-09-05 08:30:59 -0700142 * @brief Retrieves names of all active privileges for a given type
143 *
144 * @param[in] type Base or OEM
145 *
146 * @return Vector of active privileges. Pointers are valid until
147 * the setSinglePrivilege is called, or the Privilege structure is destroyed
148 *
149 */
Ed Tanous23a21a12020-07-25 04:45:05 +0000150 std::vector<std::string>
Ed Tanous1abe55e2018-09-05 08:30:59 -0700151 getActivePrivilegeNames(const PrivilegeType type) const
152 {
Ed Tanous23a21a12020-07-25 04:45:05 +0000153 std::vector<std::string> activePrivileges;
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100154
Ed Tanous271584a2019-07-09 16:24:22 -0700155 size_t searchIndex = 0;
156 size_t endIndex = basePrivilegeCount;
Ed Tanous1abe55e2018-09-05 08:30:59 -0700157 if (type == PrivilegeType::OEM)
158 {
159 searchIndex = basePrivilegeCount - 1;
160 endIndex = privilegeNames.size();
161 }
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800162
Ed Tanous1abe55e2018-09-05 08:30:59 -0700163 for (; searchIndex < endIndex; searchIndex++)
164 {
165 if (privilegeBitset.test(searchIndex))
166 {
Ed Tanous23a21a12020-07-25 04:45:05 +0000167 activePrivileges.emplace_back(privilegeNames[searchIndex]);
Ed Tanous1abe55e2018-09-05 08:30:59 -0700168 }
169 }
170
171 return activePrivileges;
172 }
173
174 /**
175 * @brief Determines if this Privilege set is a superset of the given
176 * privilege set
177 *
178 * @param[in] privilege Privilege to be checked
179 *
180 * @return None
181 *
182 */
183 bool isSupersetOf(const Privileges& p) const
184 {
185 return (privilegeBitset & p.privilegeBitset) == p.privilegeBitset;
186 }
187
Joseph Reynolds3bf4e632020-02-06 14:44:32 -0600188 /**
189 * @brief Returns the intersection of two Privilege sets.
190 *
191 * @param[in] privilege Privilege set to intersect with.
192 *
193 * @return The new Privilege set.
194 *
195 */
196 Privileges intersection(const Privileges& p) const
197 {
198 return Privileges{privilegeBitset & p.privilegeBitset};
199 }
200
Ed Tanous1abe55e2018-09-05 08:30:59 -0700201 private:
Joseph Reynolds3bf4e632020-02-06 14:44:32 -0600202 Privileges(const std::bitset<maxPrivilegeCount>& p) : privilegeBitset{p}
Gunnar Mills1214b7e2020-06-04 10:11:30 -0500203 {}
Ed Tanous1abe55e2018-09-05 08:30:59 -0700204 std::bitset<maxPrivilegeCount> privilegeBitset = 0;
Borawski.Lukasz86e1b662018-01-19 14:22:14 +0100205};
206
Ratan Gupta6f359562019-04-03 10:39:08 +0530207inline const Privileges& getUserPrivileges(const std::string& userRole)
208{
209 // Redfish privilege : Administrator
210 if (userRole == "priv-admin")
211 {
212 static Privileges admin{"Login", "ConfigureManager", "ConfigureSelf",
213 "ConfigureUsers", "ConfigureComponents"};
214 return admin;
215 }
216 else if (userRole == "priv-operator")
217 {
218 // Redfish privilege : Operator
219 static Privileges op{"Login", "ConfigureSelf", "ConfigureComponents"};
220 return op;
221 }
jayaprakash Mutyalad7e08022019-12-05 23:29:13 +0000222 else if (userRole == "priv-user")
Ratan Gupta6f359562019-04-03 10:39:08 +0530223 {
224 // Redfish privilege : Readonly
225 static Privileges readOnly{"Login", "ConfigureSelf"};
226 return readOnly;
227 }
jayaprakash Mutyalad7e08022019-12-05 23:29:13 +0000228 else
229 {
230 // Redfish privilege : NoAccess
231 static Privileges noaccess;
232 return noaccess;
233 }
Ratan Gupta6f359562019-04-03 10:39:08 +0530234}
235
Joseph Reynolds900f9492019-11-25 15:37:29 -0600236/**
237 * @brief The OperationMap represents the privileges required for a
238 * single entity (URI). It maps from the allowable verbs to the
239 * privileges required to use that operation.
240 *
241 * This represents the Redfish "Privilege AND and OR syntax" as given
242 * in the spec and shown in the Privilege Registry. This does not
243 * implement any Redfish property overrides, subordinate overrides, or
244 * resource URI overrides. This does not implement the limitation of
245 * the ConfigureSelf privilege to operate only on your own account or
246 * session.
247 **/
Ed Tanouse0d918b2018-03-27 17:41:04 -0700248using OperationMap = boost::container::flat_map<boost::beast::http::verb,
249 std::vector<Privileges>>;
Borawski.Lukasz43a095a2018-02-19 15:39:01 +0100250
Joseph Reynolds900f9492019-11-25 15:37:29 -0600251/* @brief Checks if user is allowed to call an operation
252 *
253 * @param[in] operationPrivilegesRequired Privileges required
254 * @param[in] userPrivileges Privileges the user has
255 *
256 * @return True if operation is allowed, false otherwise
257 */
258inline bool isOperationAllowedWithPrivileges(
259 const std::vector<Privileges>& operationPrivilegesRequired,
260 const Privileges& userPrivileges)
261{
262 // If there are no privileges assigned, there are no privileges required
263 if (operationPrivilegesRequired.empty())
264 {
265 return true;
266 }
267 for (auto& requiredPrivileges : operationPrivilegesRequired)
268 {
269 BMCWEB_LOG_ERROR << "Checking operation privileges...";
270 if (userPrivileges.isSupersetOf(requiredPrivileges))
271 {
272 BMCWEB_LOG_ERROR << "...success";
273 return true;
274 }
275 }
276 return false;
277}
278
Borawski.Lukasz43a095a2018-02-19 15:39:01 +0100279/**
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800280 * @brief Checks if given privileges allow to call an HTTP method
281 *
282 * @param[in] method HTTP method
283 * @param[in] user Privileges
284 *
285 * @return True if method allowed, false otherwise
Borawski.Lukasz43a095a2018-02-19 15:39:01 +0100286 *
287 */
Ed Tanouse0d918b2018-03-27 17:41:04 -0700288inline bool isMethodAllowedWithPrivileges(const boost::beast::http::verb method,
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800289 const OperationMap& operationMap,
Ed Tanous1abe55e2018-09-05 08:30:59 -0700290 const Privileges& userPrivileges)
291{
292 const auto& it = operationMap.find(method);
293 if (it == operationMap.end())
294 {
295 return false;
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800296 }
Ed Tanous1abe55e2018-09-05 08:30:59 -0700297
Joseph Reynolds900f9492019-11-25 15:37:29 -0600298 return isOperationAllowedWithPrivileges(it->second, userPrivileges);
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800299}
Borawski.Lukaszaecb47a2018-01-25 12:14:14 +0100300
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800301/**
302 * @brief Checks if a user is allowed to call an HTTP method
303 *
304 * @param[in] method HTTP method
305 * @param[in] user Username
306 *
307 * @return True if method allowed, false otherwise
308 *
309 */
Ed Tanouse0d918b2018-03-27 17:41:04 -0700310inline bool isMethodAllowedForUser(const boost::beast::http::verb method,
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800311 const OperationMap& operationMap,
Ed Tanouscb13a392020-07-25 19:02:03 +0000312 const std::string&)
Ed Tanous1abe55e2018-09-05 08:30:59 -0700313{
314 // TODO: load user privileges from configuration as soon as its available
315 // now we are granting all privileges to everyone.
316 Privileges userPrivileges{"Login", "ConfigureManager", "ConfigureSelf",
317 "ConfigureUsers", "ConfigureComponents"};
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800318
Ed Tanous1abe55e2018-09-05 08:30:59 -0700319 return isMethodAllowedWithPrivileges(method, operationMap, userPrivileges);
Ed Tanous3ebd75f2018-03-05 18:20:01 -0800320}
Borawski.Lukasz86e1b662018-01-19 14:22:14 +0100321
Ed Tanous1abe55e2018-09-05 08:30:59 -0700322} // namespace redfish