Module: Dalli::Protocol::Binary::SaslAuthentication

Included in:
Dalli::Protocol::Binary
Defined in:
lib/dalli/protocol/binary/sasl_authentication.rb

Overview

Code to support SASL authentication

Constant Summary collapse

PLAIN_AUTH = 
'PLAIN'

Instance Method Summary collapse

Instance Method Details

#authenticate_connectionObject

Raises:



40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
 
# File 'lib/dalli/protocol/binary/sasl_authentication.rb', line 40

def authenticate_connection
  Dalli.logger.info { "Dalli/SASL authenticating as #{username}" }

  status, mechanisms = perform_auth_negotiation
  return Dalli.logger.debug('Authentication not required/supported by server') if status == 0x81

  supported_mechanisms!(mechanisms)
  status, content = authenticate_with_plain

  return Dalli.logger.info("Dalli/SASL: #{content}") if status.zero?

  raise Dalli::DalliError, "Error authenticating: 0x#{status.to_s(16)}" unless status == 0x21

  raise NotImplementedError, 'No two-step authentication mechanisms supported'
  # (step, msg) = sasl.receive('challenge', content)
  # raise Dalli::NetworkError, "Authentication failed" if sasl.failed? || step != 'response'
end

#authenticate_with_plainObject 



33
34
35
36
37
38
 
# File 'lib/dalli/protocol/binary/sasl_authentication.rb', line 33

def authenticate_with_plain
  write(RequestFormatter.standard_request(opkey: :auth_request,
                                          key: PLAIN_AUTH,
                                          value: "\x0#{username}\x0#{password}"))
  @response_processor.auth_response
end

#perform_auth_negotiationObject 



10
11
12
13
14
15
16
17
18
19
20
21
 
# File 'lib/dalli/protocol/binary/sasl_authentication.rb', line 10

def perform_auth_negotiation
  write(RequestFormatter.standard_request(opkey: :auth_negotiation))

  status, content = response_processor.auth_response
  return [status, []] if content.nil?

  # Substitute spaces for the \x00 returned by
  # memcached as a separator for easier
  content&.tr!("\u0000", ' ')
  mechanisms = content&.split
  [status, mechanisms]
end

#supported_mechanisms!(mechanisms) ⇒ Object 



25
26
27
28
29
30
31
 
# File 'lib/dalli/protocol/binary/sasl_authentication.rb', line 25

def supported_mechanisms!(mechanisms)
  unless mechanisms.include?(PLAIN_AUTH)
    raise NotImplementedError,
          'Dalli only supports the PLAIN authentication mechanism'
  end
  [PLAIN_AUTH]
end