From 60556ad4ec158dd8f6799b6fd3523f888ff54850 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Adolfo=20G=C3=B3mez=20Garc=C3=ADa?= Date: Tue, 21 Apr 2015 12:29:10 +0200 Subject: [PATCH] fixed RDP with user credentials --- server/samples/REST2.py | 114 ++++++++++++++++++ .../src/uds/transports/HTML5RDP/HTML5RDP.py | 6 +- .../uds/transports/RDP/BaseRDPTransport.py | 6 +- 3 files changed, 120 insertions(+), 6 deletions(-) create mode 100644 server/samples/REST2.py diff --git a/server/samples/REST2.py b/server/samples/REST2.py new file mode 100644 index 00000000..a7202f9b --- /dev/null +++ b/server/samples/REST2.py @@ -0,0 +1,114 @@ +# -*- coding: utf-8 -*- + +# +# Copyright (c) 2014 Virtual Cable S.L. +# All rights reserved. +# +# Redistribution and use in source and binary forms, with or without modification, +# are permitted provided that the following conditions are met: +# +# * Redistributions of source code must retain the above copyright notice, +# this list of conditions and the following disclaimer. +# * Redistributions in binary form must reproduce the above copyright notice, +# this list of conditions and the following disclaimer in the documentation +# and/or other materials provided with the distribution. +# * Neither the name of Virtual Cable S.L. nor the names of its contributors +# may be used to endorse or promote products derived from this software +# without specific prior written permission. +# +# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" +# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE +# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE +# DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE +# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL +# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR +# SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER +# CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, +# OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE +# OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + +''' +@author: Adolfo Gómez, dkmaster at dkmon dot com +''' +from __future__ import unicode_literals + +from httplib2 import Http +import json + +rest_url = 'http://172.27.0.1:8000/rest/' + +headers = {} + +# Hace login con el root, puede usarse cualquier autenticador y cualquier usuario, pero en la 1.5 solo está implementado poder hacer +# este tipo de login con el usuario "root" +def login(): + global headers + h = Http() + + # parameters = '{ "auth": "admin", "username": "root", "password": "temporal" }' + parameters = '{ "auth": "casa", "username": "172.27.0.1", "password": "" }' + + resp, content = h.request(rest_url + 'auth/login', method='POST', body=parameters) + + if resp['status'] != '200': # Authentication error due to incorrect parameters, bad request, etc... + print "Authentication error" + return -1 + + # resp contiene las cabeceras, content el contenido de la respuesta (que es json), pero aún está en formato texto + res = json.loads(content) + print res + if res['result'] != 'ok': # Authentication error + print "Authentication error" + return -1 + + headers['X-Auth-Token'] = res['token'] + + return 0 + +def logout(): + global headers + h = Http() + + resp, content = h.request(rest_url + 'auth/logout', headers=headers) + + if resp['status'] != '200': # Logout error due to incorrect parameters, bad request, etc... + print "Error requesting logout" + return -1 + + # Return value of logout method is nonsense (returns always done right now, but it's not important) + + return 0 + +# Sample response from request_pools +# [ +# { +# u'initial_srvs': 0, +# u'name': u'WinAdolfo', +# u'max_srvs': 0, +# u'comments': u'', +# u'id': 6, +# u'state': u'A', +# u'user_services_count': 3, +# u'cache_l2_srvs': 0, +# u'service_id': 9, +# u'provider_id': 2, +# u'cache_l1_srvs': 0, +# u'restrained': False} +# ] + +def request_services(): + h = Http() + + resp, content = h.request(rest_url + 'connection', headers=headers) + if resp['status'] != '200': # error due to incorrect parameters, bad request, etc... + print "Error requesting services" + print resp, content + return {} + + return json.loads(content) + +if __name__ == '__main__': + if login() == 0: # If we can log in, will get the pools correctly + res = request_services() + print res + print logout() # This will success diff --git a/server/src/uds/transports/HTML5RDP/HTML5RDP.py b/server/src/uds/transports/HTML5RDP/HTML5RDP.py index 768743f7..68387795 100644 --- a/server/src/uds/transports/HTML5RDP/HTML5RDP.py +++ b/server/src/uds/transports/HTML5RDP/HTML5RDP.py @@ -102,7 +102,7 @@ class HTML5RDPTransport(Transport): def processUserPassword(self, service, user, password): username = user.getUsernameForAuth() - if self.fixedName.value is not '': + if self.fixedName.value != '': username = self.fixedName.value proc = username.split('@') @@ -112,9 +112,9 @@ class HTML5RDPTransport(Transport): domain = '' username = proc[0] - if self.fixedPassword.value is not '': + if self.fixedPassword.value != '': password = self.fixedPassword.value - if self.fixedDomain.value is not '': + if self.fixedDomain.value != '': domain = self.fixedDomain.value if self.useEmptyCreds.isTrue(): username, password, domain = '', '', '' diff --git a/server/src/uds/transports/RDP/BaseRDPTransport.py b/server/src/uds/transports/RDP/BaseRDPTransport.py index 2ef98f65..189eb362 100644 --- a/server/src/uds/transports/RDP/BaseRDPTransport.py +++ b/server/src/uds/transports/RDP/BaseRDPTransport.py @@ -90,7 +90,7 @@ class BaseRDPTransport(Transport): def processUserPassword(self, service, user, password): username = user.getUsernameForAuth() - if self.fixedName.value is not '': + if self.fixedName.value != '': username = self.fixedName.value proc = username.split('@') @@ -100,9 +100,9 @@ class BaseRDPTransport(Transport): domain = '' username = proc[0] - if self.fixedPassword.value is not '': + if self.fixedPassword.value != '': password = self.fixedPassword.value - if self.fixedDomain.value is not '': + if self.fixedDomain.value != '': domain = self.fixedDomain.value if self.useEmptyCreds.isTrue(): username, password, domain = '', '', ''