📄 aaa_session_auth_server_fsm.cxx
字号:
msg->acl.add(orHostAvp()); msg->acl.add(orRealmAvp()); // optional avps if (Attributes().Username().IsSet()) { AAA_Utf8AvpWidget unameAvp(AAA_AVPNAME_USERNAME); unameAvp.Get() = Attributes().Username()(); msg->acl.add(unameAvp()); } AAA_ScholarAttribute<diameter_octetstring_t> cls; m_Session.SetClassAvp(cls); if (cls.IsSet()) { AAA_StringAvpWidget classAvp(AAA_AVPNAME_CLASS); classAvp.Get() = cls(); msg->acl.add(classAvp()); } orStateId.Get() = AAA_CFG_RUNTIME()->originStateId; msg->acl.add(orStateId()); // TBD: Add more AVP's here if needed m_Session.TxDelivery(msg);}void AAA_AuthSessionServerStateMachine::TxASR(){ /* 8.5.1. Abort-Session-Request The Abort-Session-Request (ASR), indicated by the Command-Code set to 274 and the message flags' 'R' bit set, may be sent by any server to the access device that is providing session service, to request that the session identified by the Session-Id be stopped. Message Format <ASR> ::= < Diameter Header: 274, REQ, PXY > < Session-Id > { Origin-Host } { Origin-Realm } { Destination-Realm } { Destination-Host } { Auth-Application-Id } [ User-Name ] [ Origin-State-Id ] * [ Proxy-Info ] * [ Route-Record ] * [ AVP ] */ std::auto_ptr<AAAMessage> msg(new AAAMessage); ACE_OS::memset(&msg->hdr, 0, sizeof(msg->hdr)); msg->hdr.ver = AAA_PROTOCOL_VERSION; msg->hdr.length = 0; msg->hdr.flags.r = AAA_FLG_SET; msg->hdr.flags.p = AAA_FLG_CLR; msg->hdr.flags.e = AAA_FLG_CLR; msg->hdr.code = AAA_MSGCODE_ABORTSESSION; msg->hdr.appId = AAA_BASE_APPLICATION_ID; // required Attributes().SessionId().Set(*msg); AAA_IdentityAvpWidget orHostAvp(AAA_AVPNAME_ORIGINHOST); AAA_IdentityAvpWidget orRealmAvp(AAA_AVPNAME_ORIGINREALM); AAA_IdentityAvpWidget destHostAvp(AAA_AVPNAME_DESTHOST); AAA_IdentityAvpWidget destRealmAvp(AAA_AVPNAME_DESTREALM); AAA_UInt32AvpWidget authIdAvp(AAA_AVPNAME_AUTHAPPID); AAA_UInt32AvpWidget orStateId(AAA_AVPNAME_ORIGINSTATEID); orHostAvp.Get() = AAA_CFG_TRANSPORT()->identity; orRealmAvp.Get() = AAA_CFG_TRANSPORT()->realm; destRealmAvp.Get() = Attributes().DestinationRealm()(); destHostAvp.Get() = Attributes().DestinationHost()(); authIdAvp.Get() = Attributes().ApplicationId(); msg->acl.add(orHostAvp()); msg->acl.add(orRealmAvp()); msg->acl.add(destHostAvp()); msg->acl.add(destRealmAvp()); msg->acl.add(authIdAvp()); // optional avps if (Attributes().Username().IsSet()) { AAA_Utf8AvpWidget unameAvp(AAA_AVPNAME_USERNAME); unameAvp.Get() = Attributes().Username()(); msg->acl.add(unameAvp()); } orStateId.Get() = AAA_CFG_RUNTIME()->originStateId; msg->acl.add(orStateId()); // TBD: Add more AVP's here if needed if (m_Session.TxDelivery(msg) != AAA_ERR_SUCCESS) { ScheduleTimer(AAA_SESSION_AUTH_EV_TX_ASR_FAIL, AAA_CFG_AUTH_SESSION()->abortRetryTm, 0, AAA_TIMER_TYPE_ASR); return; } m_ASRSent = true;}void AAA_AuthSessionServerStateMachine::TxRAR(diameter_unsigned32_t reAuthType){ /* 8.3.1. Re-Auth-Request The Re-Auth-Request (RAR), indicated by the Command-Code set to 258 and the message flags' 'R' bit set, may be sent by any server to the access device that is providing session service, to request that the user be re-authenticated and/or re-authorized. Message Format <RAR> ::= < Diameter Header: 258, REQ, PXY > < Session-Id > { Origin-Host } { Origin-Realm } { Destination-Realm } { Destination-Host } { Auth-Application-Id } { Re-Auth-Request-Type } [ User-Name ] [ Origin-State-Id ] * [ Proxy-Info ] * [ Route-Record ] * [ AVP ] */ std::auto_ptr<AAAMessage> msg(new AAAMessage); ACE_OS::memset(&msg->hdr, 0, sizeof(msg->hdr)); msg->hdr.ver = AAA_PROTOCOL_VERSION; msg->hdr.length = 0; msg->hdr.flags.r = AAA_FLG_SET; msg->hdr.flags.p = AAA_FLG_CLR; msg->hdr.flags.e = AAA_FLG_CLR; msg->hdr.code = AAA_MSGCODE_REAUTH; msg->hdr.appId = AAA_BASE_APPLICATION_ID; // required Attributes().SessionId().Set(*msg); AAA_IdentityAvpWidget orHostAvp(AAA_AVPNAME_ORIGINHOST); AAA_IdentityAvpWidget orRealmAvp(AAA_AVPNAME_ORIGINREALM); AAA_IdentityAvpWidget destHostAvp(AAA_AVPNAME_DESTHOST); AAA_IdentityAvpWidget destRealmAvp(AAA_AVPNAME_DESTREALM); AAA_UInt32AvpWidget authIdAvp(AAA_AVPNAME_AUTHAPPID); AAA_UInt32AvpWidget reAuthTypeAvp(AAA_AVPNAME_REAUTHREQTYPE); AAA_Utf8AvpWidget uNameAvp(AAA_AVPNAME_USERNAME); AAA_UInt32AvpWidget orStateId(AAA_AVPNAME_ORIGINSTATEID); orHostAvp.Get() = AAA_CFG_TRANSPORT()->identity; orRealmAvp.Get() = AAA_CFG_TRANSPORT()->realm; destRealmAvp.Get() = Attributes().DestinationRealm()(); destHostAvp.Get() = Attributes().DestinationHost()(); authIdAvp.Get() = Attributes().ApplicationId(); reAuthTypeAvp.Get() = reAuthType; msg->acl.add(orHostAvp()); msg->acl.add(orRealmAvp()); msg->acl.add(destHostAvp()); msg->acl.add(destRealmAvp()); msg->acl.add(authIdAvp()); msg->acl.add(reAuthTypeAvp()); // optional avps if (Attributes().Username().IsSet()) { AAA_Utf8AvpWidget unameAvp(AAA_AVPNAME_USERNAME); unameAvp.Get() = Attributes().Username()(); msg->acl.add(unameAvp()); } orStateId.Get() = AAA_CFG_RUNTIME()->originStateId; msg->acl.add(orStateId()); // TBD: Add more AVP's here if needed m_Session.TxDelivery(msg);}void AAA_AuthSessionServerStateMachine::RxRAA(AAAMessage &msg){ /* 8.3.2. Re-Auth-Answer The Re-Auth-Answer (RAA), indicated by the Command-Code set to 258 and the message flags' 'R' bit clear, is sent in response to the RAR. The Result-Code AVP MUST be present, and indicates the disposition of the request. A successful RAA message MUST be followed by an application-specific authentication and/or authorization message. Message Format <RAA> ::= < Diameter Header: 258, PXY > < Session-Id > { Result-Code } { Origin-Host } { Origin-Realm } [ User-Name ] [ Origin-State-Id ] [ Error-Message ] [ Error-Reporting-Host ] * [ Failed-AVP ] * [ Redirect-Host ] [ Redirect-Host-Usage ] [ Redirect-Host-Cache-Time ] * [ Proxy-Info ] * [ AVP ] */ AAA_UInt32AvpContainerWidget rcodeAvp(msg.acl); AAA_IdentityAvpContainerWidget oHostAvp(msg.acl); AAA_IdentityAvpContainerWidget oRealmAvp(msg.acl); AAA_Utf8AvpContainerWidget uNameAvp(msg.acl); AAA_Utf8AvpContainerWidget errMsgAvp(msg.acl); AAA_IdentityAvpContainerWidget errHostAvp(msg.acl); diameter_unsigned32_t *rcode = rcodeAvp.GetAvp(AAA_AVPNAME_RESULTCODE); diameter_identity_t *host = oHostAvp.GetAvp(AAA_AVPNAME_ORIGINHOST); diameter_identity_t *realm = oRealmAvp.GetAvp(AAA_AVPNAME_ORIGINREALM); diameter_utf8string_t *uname = uNameAvp.GetAvp(AAA_AVPNAME_USERNAME); diameter_utf8string_t *errMsg = errMsgAvp.GetAvp(AAA_AVPNAME_ERRORMESSAGE); diameter_identity_t *errHost = errHostAvp.GetAvp(AAA_AVPNAME_ERRORREPORTINGHOST); AAA_LOG(LM_INFO, "(%P|%t) *** Re-Auth answer received ***\n"); Attributes().MsgIdRxMessage(msg); AAA_SessionId sid; sid.Get(msg); sid.Dump(); if (host) { AAA_LOG(LM_INFO, "(%P|%t) From Host: %s\n", host->data()); } if (realm) { AAA_LOG(LM_INFO, "(%P|%t) From Realm: %s\n", realm->data()); } if (uname) { AAA_LOG(LM_INFO, "(%P|%t) From User: %s\n", uname->data()); } if (rcode) { AAA_LOG(LM_INFO, "(%P|%t) Result-Code: %d\n", *rcode); } if (errMsg) { if (errHost) { AAA_LOG(LM_INFO, "(%P|%t) Message from [%s]: %s\n", errHost->data(), errMsg->data()); } else { AAA_LOG(LM_INFO, "(%P|%t) Message: %s\n", errMsg->data()); } }}⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -