X-Git-Url: https://cgit.sxemacs.org/?a=blobdiff_plain;f=lisp%2Fauth-source.el;h=284e6e911bdd3cce5adb6a5658756bf80e2a44d7;hb=5056300ec12b44383d2c2de659d2436ed7cfdf0f;hp=863928b59d66363929f3f98737bec756923a265e;hpb=010053aacca25dd0495e3bf90e897f98da9600da;p=gnus diff --git a/lisp/auth-source.el b/lisp/auth-source.el index 863928b59..284e6e911 100644 --- a/lisp/auth-source.el +++ b/lisp/auth-source.el @@ -1,26 +1,24 @@ ;;; auth-source.el --- authentication sources for Gnus and Emacs -;; Copyright (C) 2008 Free Software Foundation, Inc. +;; Copyright (C) 2008, 2009, 2010 Free Software Foundation, Inc. ;; Author: Ted Zlatanov ;; Keywords: news ;; This file is part of GNU Emacs. -;; GNU Emacs is free software; you can redistribute it and/or modify +;; GNU Emacs is free software: you can redistribute it and/or modify ;; it under the terms of the GNU General Public License as published by -;; the Free Software Foundation; either version 3, or (at your option) -;; any later version. +;; the Free Software Foundation, either version 3 of the License, or +;; (at your option) any later version. ;; GNU Emacs is distributed in the hope that it will be useful, ;; but WITHOUT ANY WARRANTY; without even the implied warranty of -;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ;; GNU General Public License for more details. ;; You should have received a copy of the GNU General Public License -;; along with GNU Emacs; see the file COPYING. If not, write to the -;; Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, -;; Boston, MA 02110-1301, USA. +;; along with GNU Emacs. If not, see . ;;; Commentary: @@ -29,28 +27,12 @@ ;; of providing 5000 options, we'll stick to simple, easy to ;; understand options. -;; Easy setup: -;; (require 'auth-source) -;; (customize-variable 'auth-sources) ;; optional - -;; now, whatever sources you've defined for password have to be available - -;; if you want encrypted sources, which is strongly recommended, do -;; (require 'epa-file) -;; (epa-file-mode) - -;; before you put some data in ~/.authinfo.gpg (the default place) - -;;; For url-auth authentication (HTTP/HTTPS), you need to use: - -;;; machine yourmachine.com:80 port http login testuser password testpass - -;;; This will match any realm and authentication method (basic or -;;; digest). If you want finer controls, explore the url-auth source -;;; code and variables. +;; See the auth.info Info documentation for details. ;;; Code: +(require 'gnus-util) + (eval-when-compile (require 'cl)) (eval-when-compile (require 'netrc)) @@ -78,13 +60,46 @@ (defconst auth-source-protocols-customize (mapcar (lambda (a) (let ((p (car-safe a))) - (list 'const + (list 'const :tag (upcase (symbol-name p)) p))) auth-source-protocols)) -;;; this default will be changed to ~/.authinfo.gpg -(defcustom auth-sources '((:source "~/.authinfo.enc" :host t :protocol t)) +(defvar auth-source-cache (make-hash-table :test 'equal) + "Cache for auth-source data") + +(defcustom auth-source-do-cache t + "Whether auth-source should cache information." + :group 'auth-source + :version "23.1" ;; No Gnus + :type `boolean) + +(defcustom auth-source-debug nil + "Whether auth-source should log debug messages. +Also see `auth-source-hide-passwords'. + +If the value is nil, debug messages are not logged. +If the value is t, debug messages are logged with `message'. + In that case, your authentication data will be in the + clear (except for passwords, which are always stripped out). +If the value is a function, debug messages are logged by calling + that function using the same arguments as `message'." + :group 'auth-source + :version "23.1" ;; No Gnus + :type `(choice + :tag "auth-source debugging mode" + (const :tag "Log using `message' to the *Messages* buffer" t) + (function :tag "Function that takes arguments like `message'") + (const :tag "Don't log anything" nil))) + +(defcustom auth-source-hide-passwords t + "Whether auth-source should hide passwords in log messages. +Only relevant if `auth-source-debug' is not nil." + :group 'auth-source + :version "23.1" ;; No Gnus + :type `boolean) + +(defcustom auth-sources '((:source "~/.authinfo.gpg" :host t :protocol t)) "List of authentication sources. Each entry is the authentication type with optional properties." @@ -121,6 +136,19 @@ Each entry is the authentication type with optional properties." ;; (auth-source-user-or-password-imap "password" "imap.myhost.com") ;; (auth-source-protocol-defaults 'imap) +;; (let ((auth-source-debug 'debug)) (auth-source-debug "hello")) +;; (let ((auth-source-debug t)) (auth-source-debug "hello")) +;; (let ((auth-source-debug nil)) (auth-source-debug "hello")) +(defun auth-source-do-debug (&rest msg) + ;; set logger to either the function in auth-source-debug or 'message + ;; note that it will be 'message if auth-source-debug is nil, so + ;; we also check the value + (when auth-source-debug + (let ((logger (if (functionp auth-source-debug) + auth-source-debug + 'message))) + (apply logger msg)))) + (defun auth-source-pick (host protocol &optional fallback) "Parse `auth-sources' for HOST, and PROTOCOL matches. @@ -143,18 +171,51 @@ Returns fallback choices (where PROTOCOL or HOST are nil) with FALLBACK t." (unless fallback (auth-source-pick host protocol t))))) +(defun auth-source-forget-user-or-password (mode host protocol) + (interactive "slogin/password: \nsHost: \nsProtocol: \n") ;for testing + (remhash (format "%s %s:%s" mode host protocol) auth-source-cache)) + +(defun auth-source-forget-all-cached () + "Forget all cached auth-source authentication tokens." + (interactive) + (setq auth-source-cache (make-hash-table :test 'equal))) + (defun auth-source-user-or-password (mode host protocol) - "Find user or password (from the string MODE) matching HOST and PROTOCOL." -;;; (debug mode host protocol) - (let (found) - (dolist (choice (auth-source-pick host protocol)) - (setq found (netrc-machine-user-or-password - mode - (plist-get choice :source) - (list host) - (list (format "%s" protocol)) - (auth-source-protocol-defaults protocol))) - (when found + "Find MODE (string or list of strings) matching HOST and PROTOCOL. +MODE can be \"login\" or \"password\" for example." + (auth-source-do-debug + "auth-source-user-or-password: get %s for %s (%s)" + mode host protocol) + (let* ((listy (listp mode)) + (mode (if listy mode (list mode))) + (cname (format "%s %s:%s" mode host protocol)) + (found (gethash cname auth-source-cache))) + (if found + (progn + (auth-source-do-debug + "auth-source-user-or-password: cached %s=%s for %s (%s)" + mode + ;; don't show the password + (if (and (member "password" mode) auth-source-hide-passwords) "SECRET" found) + host protocol) + found) + (dolist (choice (auth-source-pick host protocol)) + (setq found (netrc-machine-user-or-password + mode + (plist-get choice :source) + (list host) + (list (format "%s" protocol)) + (auth-source-protocol-defaults protocol))) + (when found + (auth-source-do-debug + "auth-source-user-or-password: found %s=%s for %s (%s)" + mode + ;; don't show the password + (if (and (member "password" mode) auth-source-hide-passwords) "SECRET" found) + host protocol) + (setq found (if listy found (car-safe found))) + (when auth-source-do-cache + (puthash cname found auth-source-cache))) (return found))))) (defun auth-source-protocol-defaults (protocol)