MINOR: cli: create new function cli_has_level() to validate permissions This function is used to check that the CLI features the appropriate level of permissions or to prepare the adequate error message.

commit: de57a578ba79f37092025ccf571e388a23ce679c [log] [tgz]
author: Willy Tarreau <w@1wt.eu> Wed Nov 23 17:01:39 2016 +0100
committer: Willy Tarreau <w@1wt.eu> Thu Nov 24 16:59:27 2016 +0100
tree: 162431cc0847f9f60aeb3b3440b0066175b54e07
parent: 69e9644e3548c28f8e1d1636328f392a89c64786 [diff] [blame]
diff --git a/src/cli.c b/src/cli.c
index c00fc86..0a6a68d 100644
--- a/src/cli.c
+++ b/src/cli.c

@@ -472,6 +472,24 @@
 	return 0;
 }
 
+/* Verifies that the CLI at least has a level at least as high as <level>
+ * (typically ACCESS_LVL_ADMIN). Returns 1 if OK, otherwise 0. In case of
+ * failure, an error message is prepared and the appctx's state is adjusted
+ * to print it so that a return 1 is enough to abort any processing.
+ */
+int cli_has_level(struct appctx *appctx, int level)
+{
+	struct stream_interface *si = appctx->owner;
+	struct stream *s = si_strm(si);
+
+	if (strm_li(s)->bind_conf->level < level) {
+		appctx->ctx.cli.msg = stats_permission_denied_msg;
+		appctx->st0 = STAT_CLI_PRINT;
+		return 0;
+	}
+	return 1;
+}
+
 
 /* print a string of text buffer to <out>. The format is :
  * Non-printable chars \t, \n, \r and \e are * encoded in C format.
commit	de57a578ba79f37092025ccf571e388a23ce679c	[log] [tgz]
author	Willy Tarreau <w@1wt.eu>	Wed Nov 23 17:01:39 2016 +0100
committer	Willy Tarreau <w@1wt.eu>	Thu Nov 24 16:59:27 2016 +0100
tree	162431cc0847f9f60aeb3b3440b0066175b54e07
parent	69e9644e3548c28f8e1d1636328f392a89c64786 [diff] [blame]