func checkOneOp(in *proto.PkgOneOp, req *PkgArgs, au Authorize) bool {
n, err := in.Decode(req.Pkg)
if err != nil || n != len(req.Pkg) {
in.ErrCode = table.EcDecodeFail
}
if in.ErrCode == 0 && in.DbId == proto.AdminDbId {
in.ErrCode = table.EcInvDbId
}
if in.ErrCode == 0 && !au.IsAuth(in.DbId) {
in.ErrCode = table.EcNoPrivilege
}
if in.ErrCode != 0 {
in.CtrlFlag &^= 0xFF // Clear all ctrl flags
in.CtrlFlag |= proto.CtrlErrCode
}
return in.ErrCode == 0
}
func (tbl *Table) Auth(req *PkgArgs, au Authorize) []byte {
var in proto.PkgOneOp
_, err := in.Decode(req.Pkg)
if err != nil {
in.CtrlFlag &^= 0xFF // Clear all ctrl flags
in.SetErrCode(table.EcDecodeFail)
return replyHandle(&in)
}
in.ErrCode = 0
var authDB uint8
var already bool
if au.IsAuth(proto.AdminDbId) {
authDB = proto.AdminDbId
already = true
} else if in.DbId != proto.AdminDbId && au.IsAuth(in.DbId) {
authDB = in.DbId
already = true
}
if already {
return replyHandle(&in)
}
password := string(in.RowKey)
tbl.mtx.Lock()
// Admin password
if tbl.authPwd == nil || tbl.authPwd[proto.AdminDbId] == password {
authDB = proto.AdminDbId
} else {
// Selected DB password
if len(password) > 0 && tbl.authPwd[in.DbId] == password {
authDB = in.DbId
} else {
in.SetErrCode(table.EcAuthFailed)
}
}
tbl.mtx.Unlock()
// Success
if in.ErrCode == 0 {
in.DbId = authDB
au.SetAuth(authDB)
}
return replyHandle(&in)
}
func (srv *Server) replyOneOp(req *Request, errCode int8) {
var out proto.PkgOneOp
out.Cmd = req.Cmd
out.DbId = req.DbId
out.Seq = req.Seq
out.ErrCode = errCode
if out.ErrCode != 0 {
out.CtrlFlag |= proto.CtrlErrCode
}
var pkg = make([]byte, out.Length())
_, err := out.Encode(pkg)
if err != nil {
log.Fatalf("Encode failed: %s\n", err)
}
srv.sendResp(false, req, pkg)
}
