1 /*
2 * CDDL HEADER START
3 *
4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License, Version 1.0 only
6 * (the "License"). You may not use this file except in compliance
7 * with the License.
8 *
9 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
10 * or http://www.opensolaris.org/os/licensing.
11 * See the License for the specific language governing permissions
12 * and limitations under the License.
13 *
14 * When distributing Covered Code, include this CDDL HEADER in each
15 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
16 * If applicable, add the following below this CDDL HEADER, with the
17 * fields enclosed by brackets "[]" replaced with your own identifying
18 * information: Portions Copyright [yyyy] [name of copyright owner]
19 *
20 * CDDL HEADER END
21 */
22 /*
23 * Copyright 1992 Sun Microsystems, Inc. All rights reserved.
24 * Use is subject to license terms.
25 */
26
27 #pragma ident "%Z%%M% %I% %E% SMI"
28
29 #include <stdio.h>
30 #include <signal.h>
31 #include <grp.h>
32 #include <sys/time.h>
33 #include <errno.h>
34
35 /*
36 * Version to go in the BCP compatibility library in SVr4 version of
37 * SunOS. This does not bother talking to rpc.pwdauthd or looking for the
38 * password.adjunct file on the system since they do not exist anymore.
39 * They have been effectively replaced by a more robust aging security provided
40 * by the combination of /etc/shadow file, shadow support in the NIS+
41 * passwd table and the use of secure RPC in NIS+.
42 */
43
44 int
grpauth(char * name,char * password)45 grpauth(char *name, char *password)
46 {
47
48 /*
49 * this routine authenticates a password for the named user.
50 * Assumes the adjunct file does not exist.
51 * and therefore checks the group "source" using the standard
52 * getgrnam(3C) routine that uses /etc/nsswitch.conf(4).
53 */
54 struct group gr;
55 struct group *grp;
56
57 if ((grp = getgrnam(name)) == NULL)
58 /* group is not in main password system */
59 return (-1);
60 gr = *grp;
61 if (gr.gr_passwd[0] == '#' && gr.gr_passwd[1] == '$') {
62 /* this means that /etc/group has problems */
63 fprintf(stderr, "grpauth: bad group entry for %s\n",
64 gr.gr_name);
65 return (-1);
66 }
67 if (strcmp(crypt(password, gr.gr_passwd), gr.gr_passwd) == 0)
68 return (0);
69 else
70 return (-1);
71 }
72