DES Authentication on the Server Side
The following example illustrates DES authentication on the server
side. The server side is simpler than the client side. This example
uses AUTH_DES instead of AUTH_UNIX:
#include <sys/time.h>
#include <rpc/auth_des.h>
...
...
nuser(rqstp, transp)
struct svc_req *rqstp;
SVCXPRT *transp;
{
struct authdes_cred *des_cred;
int uid;
int gid;
int gidlen;
int gidlist[10];
/*
* we don't care about authentication for null proc
*/
if (rqstp->rq_proc == NULLPROC) {
/* same as before */
}
/*
* now get the uid
*/
switch (rqstp->rq_cred.oa_flavor) {
case AUTH_DES:
des_cred =
(struct authdes_cred *) rqstp->rq_clntcred;
if (! netname2user(des_cred->adc_fullname.name,
&uid, &gid, &gidlen, gidlist))
{
fprintf(stderr, "unknown user: %s\n",
des_cred->adc_fullname.name);
svcerr_systemerr(transp);
return;
}
break;
case AUTH_NULL:
default:
svcerr_weakauth(transp);
return;
}
/*
* The rest is the same as UNIX-style authentication
*/
switch (rqstp->rq_proc) {
case RUSERSPROC_NUM:
/*
* make sure caller is allowed to call this proc
*/
if (uid == 16) {
svcerr_systemerr(transp);
return;
}
/*
* Code here to compute the number of users
* and assign it to the variable nusers
*/
if (!svc_sendreply(transp, xdr_u_long, &nusers)) {
fprintf(stderr, "can't reply to RPC call\n");
return (1);
}
return;
default:
svcerr_noproc(transp);
return;
}
}
Note: The netname2user routine, which is the inverse
of the user2netname routine, converts a network ID to a user
ID. The netname2user routine also supplies group IDs, which
are not used in this example but may be useful in other programs.