Class: RemoteWorkplaceAuth

Inherits:

Object

Object
RemoteWorkplaceAuth

Defined in:: lib/rww_auth.rb

Overview

ActiveDirectory-Exchange-Blaggh authentication guerilla-style. Will take the give username and password and try to authenticate them against the give Remote Web Workplace server. This assumes that the user on a domain also has an email address with OWA of course. If the user is found RWW will give us a specific response. No credentials or user information is retrieved. Please go and make OpenID frontends from that, I dare you!

Usage:

rww_servr = RemoteWebWorkplaceAuth.new("intranet.bigenterprise.com" use_ssl = true)
if rww_servr.authenticate("julik", "topsecret")
  puts "Yuppie!"
else
  puts "No donut"
end

Constant Summary collapse

VERSION =

"1.0.1"

VIEW_STATE_PAT =

/name="__VIEWSTATE" value="([^"]+)"/

Instance Attribute Summary collapse

#server ⇒ Object

Returns the value of attribute server.
#use_ssl ⇒ Object

Returns the value of attribute use_ssl.

Instance Method Summary collapse

#auth(user, password) ⇒ Object

Will run the auth.
#initialize(hostname, use_ssl = true) ⇒ RemoteWorkplaceAuth constructor

A new instance of RemoteWorkplaceAuth.

Constructor Details

#initialize(hostname, use_ssl = true) ⇒ `RemoteWorkplaceAuth`

Returns a new instance of RemoteWorkplaceAuth.

# File 'lib/rww_auth.rb', line 28

def initialize(hostname, use_ssl = true)
  @server = hostname
  @base_login_url = '/Remote/logon.aspx?ReturnUrl=%2fRemote%2fDefault.aspx'
  @outlook = if use_ssl
    o = Net::HTTP.new(@server, 443)
    o.use_ssl = true
    o.verify_mode = OpenSSL::SSL::VERIFY_NONE
    o
  else
    Net::HTTP.new(@server)
  end
end

Instance Attribute Details

#server ⇒ `Object`

Returns the value of attribute server.



26
27
28

# File 'lib/rww_auth.rb', line 26

def server
  @server
end

#use_ssl ⇒ `Object`

Returns the value of attribute use_ssl.



26
27
28

# File 'lib/rww_auth.rb', line 26

def use_ssl
  @use_ssl
end

Instance Method Details

#auth(user, password) ⇒ `Object`

Will run the auth

# File 'lib/rww_auth.rb', line 42

def auth(user, password)
  with_viewstate do | payload |
    login_form_values  = {
      "txtUserName" => user.to_s,
      "txtUserPass" => password.to_s,
      "cmdLogin" => "cmdLogin",
      "listSpeed" => "Broadband",
      "__VIEWSTATE" => payload,
    }
    
    begin
      @outlook.start do |http|
        form_post = Net::HTTP::Post.new("/Remote/logon.aspx")
        form_post.set_form_data(login_form_values, '&')
        response = http.request(form_post); response.value
      end
    rescue Net::HTTPRetriableError => e
      if e.message =~ /302/ # RWW will return a redirect if the user is found
        return true
      end
    end
    
    return false
  end
end