[moira.git] / server / qaccess.pc

/* $Id$
 *
 * Check access to queries
 *
 * Copyright (C) 1987-1998 by the Massachusetts Institute of Technology
 * For copying and distribution information, please see the file
 * <mit-copyright.h>.
 */

#include <mit-copyright.h>
#include "mr_server.h"
#include "qrtn.h"
#include "query.h"

#include <ctype.h>
#include <stdlib.h>

EXEC SQL INCLUDE sqlca;

RCSID("$Header$");

extern char *whoami;
extern int dbms_errno, mr_errcode;

EXEC SQL WHENEVER SQLERROR DO dbmserr();


/* Specialized Access Routines */

/* access_user - verify that client name equals specified login name
 *
 *  - since field validation routines are called first, a users_id is
 *    now in argv[0] instead of the login name.
 */

int access_user(struct query *q, char *argv[], client *cl)
{
  if (cl->users_id != *(int *)argv[0])
    return MR_PERM;
  else
    return MR_SUCCESS;
}


/* access_login - verify that client name equals specified login name
 *
 *   argv[0...n] contain search info.  q->
 */

int access_login(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  int id;
  EXEC SQL END DECLARE SECTION;

  if (q->argc != 1)
    return MR_ARGS;

  if (!strcmp(q->shortname, "gual"))
    {
      EXEC SQL SELECT users_id INTO :id FROM users
	WHERE login = :argv[0] AND users_id != 0;
    }
  else if (!strcmp(q->shortname, "gubl"))
    {
      EXEC SQL SELECT users_id INTO :id FROM users u
	WHERE u.login = :argv[0] AND u.users_id != 0;
    }
  else if (!strcmp(q->shortname, "guau"))
    {
      EXEC SQL SELECT users_id INTO :id FROM users
	WHERE unix_uid = :argv[0] AND users_id != 0;
    }
  else if (!strcmp(q->shortname, "gubu"))
    {
      EXEC SQL SELECT users_id INTO :id FROM users u
	WHERE u.unix_uid = :argv[0] AND u.users_id != 0;
    }

  if (sqlca.sqlcode == SQL_NO_MATCH)
    return MR_NO_MATCH; /* ought to be MR_USER, but this is what
			   gual returns, so we have to be consistent */
  else if (sqlca.sqlerrd[2] != 1 || id != cl->users_id)
    return MR_PERM;
  else
    return MR_SUCCESS;
}


/* access_spob - check access for set_pobox */

int access_spob(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  int id;
  EXEC SQL END DECLARE SECTION;

  if (!strcmp(argv[1], "IMAP"))
      {
	EXEC SQL SELECT owner INTO :id FROM filesys f 
	  WHERE f.label = :argv[2] AND f.type = 'IMAP' AND
	  f.lockertype = 'USER';
	if (cl->users_id != id)
	  return MR_PERM;
      }
  if (cl->users_id != *(int *)argv[0])
    return MR_PERM;
  else
    return MR_SUCCESS;
}


/* access_list - check access for most list operations
 *
 * Inputs: argv[0] - list_id
 *	    q - query name
 *	    argv[2] - member ID (only for queries "amtl" and  "dmfl")
 *	    argv[7] - group ID (only for query "ulis")
 *          cl - client name
 *
 * - check that client is a member of the access control list
 * - OR, if the query is add_member_to_list or delete_member_from_list
 *	and the list is public, allow access if client = member
 */

int access_list(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  int list_id, acl_id, flags, gid, users_id, member_id, member_acl_id;
  int memacl_id;
  char acl_type[LIST_ACL_TYPE_SIZE], name[LIST_NAME_SIZE], *newname;
  char member_acl_type[LIST_ACL_TYPE_SIZE], memacl_type[LIST_ACL_TYPE_SIZE];
  EXEC SQL END DECLARE SECTION;
  int status;

  list_id = *(int *)argv[0];
  member_id = *(int *)argv[2];
  EXEC SQL SELECT acl_id, acl_type, memacl_id, memacl_type,
    gid, publicflg, name
    INTO :acl_id, :acl_type, :memacl_id, :memacl_type, 
    :gid, :flags, :name
    FROM list
    WHERE list_id = :list_id;

  if (sqlca.sqlerrd[2] != 1)
    return MR_INTERNAL;

  /* if update_list, don't allow them to change the GID or rename to a
	 username other than their own */
  if (!strcmp("ulis", q->shortname))
    {
      if (!strcmp(argv[7], UNIQUE_GID))
	{
	  if (gid != -1)
	    return MR_PERM;
	}
      else
	{
	  if (gid != atoi(argv[7]))
	    return MR_PERM;
	}

      newname = argv[1];

      if (!strcmp("ulis", q->shortname))
	  {
	    /* Check that it doesn't conflict with the Grouper namespace. */
	    if (strlen(newname) > 4 && isdigit(newname[2]) && 
		isdigit(newname[3]) && newname[4] == '-')
	      {
		if (!strncasecmp(newname, "fa", 2) ||
		    !strncasecmp(newname, "sp", 2) ||
		    !strncasecmp(newname, "su", 2) ||
		    !strncasecmp(newname, "ja", 2))
		  return MR_RESERVED;
	      }

	    /* Don't let anyone take owner-foo list names.  They interact 
	     * weirdly with the aliases automatically generated by 
	     * mailhub.gen.
	     */
	    if (!strncasecmp(newname, "owner-", 6))
	      return MR_RESERVED;
	  }

      EXEC SQL SELECT users_id INTO :users_id FROM users
	WHERE login = :newname;
      if ((sqlca.sqlcode != SQL_NO_MATCH) && strcmp(strtrim(name), newname) &&
	  (users_id != cl->users_id))
	return MR_PERM;
    }

  /* check for client in access control list and return success right 
   * away if it's there. */
  if (find_member(acl_type, acl_id, cl))
    return MR_SUCCESS;

  /* If not amtl, atml, or dmfl, we lose. */
  if (strcmp(q->shortname, "amtl") && strcmp(q->shortname, "atml") &&
      strcmp(q->shortname, "dmfl") && strcmp(q->shortname, "tmol"))
    return MR_PERM;

  if (find_member(memacl_type, memacl_id, cl))
    return MR_SUCCESS;

  if (flags || q->type == DELETE)
    {
      if (!strcmp("USER", argv[1]) && *(int *)argv[2] == cl->users_id)
        return MR_SUCCESS;
      if (!strcmp("KERBEROS", argv[1]) && *(int *)argv[2] == -cl->client_id)
        return MR_SUCCESS;
      if (!strcmp("LIST", argv[1]) && !strcmp("dmfl", q->shortname))
	{
	  EXEC SQL SELECT acl_id, acl_type INTO :member_acl_id, 
	    :member_acl_type 
	    FROM list
	    WHERE list_id = :member_id; 
	  
	  if (find_member(member_acl_type, member_acl_id, cl))
	    return MR_SUCCESS;
	}
    }

  /* Otherwise fail. */
  return MR_PERM;
}


/* access_visible_list - allow access to list only if it is not hidden,
 *	or if the client is on the ACL
 *
 * Inputs: argv[0] - list_id
 *         cl - client identifier
 */

int access_visible_list(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  int list_id, acl_id, memacl_id, flags ;
  char acl_type[LIST_ACL_TYPE_SIZE], memacl_type[LIST_ACL_TYPE_SIZE];
  EXEC SQL END DECLARE SECTION;
  int status;

  list_id = *(int *)argv[0];
  EXEC SQL SELECT hidden, acl_id, acl_type, memacl_id, memacl_type
    INTO :flags, :acl_id, :acl_type, :memacl_id, :memacl_type
    FROM list
    WHERE list_id = :list_id;
  if (sqlca.sqlerrd[2] != 1)
    return MR_INTERNAL;
  if (!flags)
    return MR_SUCCESS;

  /* check for client in access control list */
  status = find_member(acl_type, acl_id, cl);
  if (!status)
    {
      status = find_member(memacl_type, memacl_id, cl);
      if (!status)
	return MR_PERM;
    }
  return MR_SUCCESS;
}


/* access_vis_list_by_name - allow access to list only if it is not hidden,
 *	or if the client is on the ACL
 *
 * Inputs: argv[0] - list name
 *         cl - client identifier
 */

int access_vis_list_by_name(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  int acl_id, memacl_id, flags, rowcount;
  char acl_type[LIST_ACL_TYPE_SIZE], memacl_type[LIST_ACL_TYPE_SIZE];
  char *listname;
  EXEC SQL END DECLARE SECTION;
  int status;

  listname = argv[0];
  EXEC SQL SELECT hidden, acl_id, acl_type, memacl_id, memacl_type 
    INTO :flags, :acl_id, :acl_type, :memacl_id, :memacl_type
    FROM list 
    WHERE name = :listname;

  rowcount = sqlca.sqlerrd[2];
  if (rowcount > 1)
    return MR_WILDCARD;
  if (rowcount == 0)
    return MR_NO_MATCH;
  if (!flags)
    return MR_SUCCESS;

  /* check for client in access control list */
  status = find_member(acl_type, acl_id, cl);
  if (!status)
    {
      status = find_member(memacl_type, memacl_id, cl);
      if (!status)
	return MR_PERM;
    }
  return MR_SUCCESS;
}


/* access_member - allow user to access member of type "USER" and name matches
 * username, or to access member of type "KERBEROS" and the principal matches
 * the user, or to access member of type "LIST" and list is one that user is
 * on the acl of, or the list is visible.
 */

int access_member(struct query *q, char *argv[], client *cl)
{
  if (!strcmp(argv[0], "LIST") || !strcmp(argv[0], "RLIST"))
    return access_visible_list(q, &argv[1], cl);

  if (!strcmp(argv[0], "USER") || !strcmp(argv[0], "RUSER"))
    {
      if (cl->users_id == *(int *)argv[1])
	return MR_SUCCESS;
    }

  if (!strcmp(argv[0], "KERBEROS") || !strcmp(argv[0], "RKERBEROS"))
    {
      if (cl->client_id == -*(int *)argv[1])
	return MR_SUCCESS;
    }

  return MR_PERM;
}


/* access_qgli - special access routine for Qualified_get_lists.  Allows
 * access iff argv[0] == "TRUE" and argv[2] == "FALSE".
 */

int access_qgli(struct query *q, char *argv[], client *cl)
{
  if (!strcmp(argv[0], "TRUE") && !strcmp(argv[2], "FALSE"))
    return MR_SUCCESS;
  return MR_PERM;
}


/* access_service - allow access if user is on ACL of service.  Don't
 * allow access if a wildcard is used.
 */

int access_service(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  int acl_id;
  char *name, acl_type[LIST_ACL_TYPE_SIZE];
  EXEC SQL END DECLARE SECTION;
  int status;
  char *c;

  name = argv[0];
  for (c = name; *c; c++)
    {
      if (islower(*c))
	*c = toupper(*c);
    }
  EXEC SQL SELECT acl_id, acl_type INTO :acl_id, :acl_type FROM servers
    WHERE name = :name;
  if (sqlca.sqlerrd[2] > 1)
    return MR_PERM;

  /* check for client in access control list */
  status = find_member(acl_type, acl_id, cl);
  if (!status)
    return MR_PERM;

  return MR_SUCCESS;
}


/* access_filesys - verify that client is owner or on owners list of filesystem
 *	named by argv[0]
 */

int access_filesys(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  int users_id, list_id;
  char *name;
  EXEC SQL END DECLARE SECTION;
  int status;

  name = argv[0];
  EXEC SQL SELECT owner, owners INTO :users_id, :list_id FROM filesys
    WHERE label = :name;

  if (sqlca.sqlerrd[2] != 1)
    return MR_PERM;
  if (users_id == cl->users_id)
    return MR_SUCCESS;
  status = find_member("LIST", list_id, cl);
  if (status)
    return MR_SUCCESS;
  else
    return MR_PERM;
}


/* access_host - successful if owner of host, or subnet containing host
 */

int access_host(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  int mid, sid, id, subnet_status;
  char mtype[MACHINE_OWNER_TYPE_SIZE], stype[SUBNET_OWNER_TYPE_SIZE];
  char *account_number;
  EXEC SQL END DECLARE SECTION;
  int status, idx;

  if (q->version < 6)
    idx = 0;
  else if (q->version >= 6 && q->version < 8)
    idx = 1;
  else
    idx = 2;
  
  if (q->type == RETRIEVE)
    {
      if (strcmp(argv[0], "*") || strcmp(argv[1], "*") ||
	  strcmp(argv[2], "*") || strcmp(argv[3], "*"))
	return MR_SUCCESS;
      else
	return MR_PERM;
    }

  if (q->type == APPEND)
    {
      /* Non-query owner must set use to zero */
      if (atoi(argv[6 + idx]) != 0)
	return MR_PERM;

      /* ... and start the hostname with a letter */
      if (isdigit(argv[0][0]))
	return MR_BAD_CHAR;

      id = *(int *)argv[8 + idx];
      EXEC SQL SELECT s.owner_type, s.owner_id, s.status
	INTO :stype, :sid, :subnet_status FROM subnet s
	WHERE s.snet_id = :id;
      mid = 0;

      if (q->version >= 8)
	{
	  if (subnet_status == SNET_STATUS_BILLABLE)
	    {
	      account_number = argv[7];
	      EXEC SQL SELECT account_number FROM accountnumbers 
		WHERE account_number = :account_number;
	      if (sqlca.sqlcode == SQL_NO_MATCH)
		return MR_ACCOUNT_NUMBER;
	    }
	}

      if (find_member(stype, sid, cl))
	return MR_SUCCESS;
      else
	return MR_PERM;
    }
  else /* q-type == UPDATE */
    {
      EXEC SQL BEGIN DECLARE SECTION;
      int status, acomment, use, ocomment, snid;
      char contact[MACHINE_CONTACT_SIZE], address[MACHINE_ADDRESS_SIZE];
      char name[MACHINE_NAME_SIZE];
      char billing_contact[MACHINE_BILLING_CONTACT_SIZE];
      EXEC SQL END DECLARE SECTION;

      id = *(int *)argv[0];
      EXEC SQL SELECT m.name, m.use, m.contact, m.billing_contact, m.status, 
	m.address, m.owner_type, m.owner_id, m.acomment, m.ocomment, m.snet_id,
	s.owner_type, s.owner_id INTO :name, :use, :contact, :billing_contact,
	:status, :address, :mtype, :mid, :acomment, :ocomment, :snid, :stype, 
	:sid
	FROM machine m, subnet s
	WHERE m.mach_id = :id AND s.snet_id = m.snet_id;
      if (dbms_errno)
	return mr_errcode;

      /* non-query-owner cannot change use or ocomment */
      if ((use != atoi(argv[7 + idx])) || (ocomment != *(int *)argv[14 + idx]))
	return MR_PERM;

      /* or rename to start with digit */
      if (isdigit(argv[1][0]) && strcmp(strtrim(name), argv[1]))
	return MR_BAD_CHAR;

      if (!find_member(stype, sid, cl))
	{
	  if (find_member(mtype, mid, cl))
	    {
	      /* host owner also cannot change contact, status, address,
		 owner, or acomment */
	      if (strcmp(argv[6], strtrim(contact)) ||
		  (status != atoi(argv[8 + idx])) ||
		  strcmp(argv[10 + idx], strtrim(address)) ||
		  strcmp(argv[11 + idx], strtrim(mtype)) ||
		  (mid != *(int *)argv[12 + idx]) || 
		  (acomment != *(int *)argv[13 + idx]))
		return MR_PERM;
	      /* Billing contact field didn't appear until version 6 */
	      if (q->version >= 6)
		if (strcmp(argv[7], strtrim(billing_contact)))
		    return MR_PERM;
	    }
	  else
	    return MR_PERM;
	}

      /* If moving to a new subnet, make sure user is on acl there */
      id = *(int *)argv[9 + idx];
      if (id != snid)
	{
	  EXEC SQL SELECT owner_type, owner_id INTO :stype, :sid
	    FROM subnet WHERE snet_id=:id;
	  if (!find_member(stype, sid, cl))
	    return MR_PERM;
	}

      return MR_SUCCESS;
    }
}


/* access_ahal - check for adding a host alias.
 * successful if host has less then 2 aliases and (client is owner of
 * host or subnet).
 * If deleting an alias, any owner will do.
 */

int access_ahal(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  int cnt, id, mid, sid;
  char mtype[MACHINE_OWNER_TYPE_SIZE], stype[SUBNET_OWNER_TYPE_SIZE];
  EXEC SQL END DECLARE SECTION;
  int status;

  if (q->type == RETRIEVE)
    return MR_SUCCESS;

  id = *(int *)argv[1];

  if (q->type == APPEND && isdigit(argv[0][0]))
    return MR_BAD_CHAR;

  EXEC SQL SELECT count(name) INTO :cnt from hostalias WHERE mach_id = :id;
  if (dbms_errno)
    return mr_errcode;
  /* if the type is APPEND, this is ahal and we need to make sure there
   * will be no more than 2 aliases.  If it's not, it must be dhal and
   * any owner will do.
   */
  if (q->type == APPEND && cnt >= 2)
    return MR_PERM;
  EXEC SQL SELECT m.owner_type, m.owner_id, s.owner_type, s.owner_id
    INTO :mtype, :mid, :stype, :sid FROM machine m, subnet s
    WHERE m.mach_id = :id and s.snet_id = m.snet_id;
  status = find_member(mtype, mid, cl);
  if (status)
    return MR_SUCCESS;
  status = find_member(stype, sid, cl);
  if (status)
    return MR_SUCCESS;
  else
    return MR_PERM;
}


/* access_snt - check for retrieving network structure
 */

int access_snt(struct query *q, char *argv[], client *cl)
{
  if (q->type == RETRIEVE)
    return MR_SUCCESS;

  return MR_PERM;
}


/* access_printer */
int access_printer(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  char type[PRINTSERVERS_OWNER_TYPE_SIZE];
  int id, mach_id;
  EXEC SQL END DECLARE SECTION;
  int status;

  mach_id = *(int *)argv[PRN_RM];
  EXEC SQL SELECT owner_type, owner_id INTO :type, :id
    FROM printservers WHERE mach_id = :mach_id;
  if (sqlca.sqlcode)
    return MR_PERM;

  status = find_member(type, id, cl);
  if (status)
    return MR_SUCCESS;
  else
    return MR_PERM;
}

/* access_zephyr */
int access_zephyr(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  char type[ZEPHYR_OWNER_TYPE_SIZE];
  char *class;
  int id;
  EXEC SQL END DECLARE SECTION;
  int status;

  class = argv[ZA_CLASS];
  EXEC SQL SELECT owner_type, owner_id INTO :type, :id
      FROM zephyr WHERE class = :class;
  if (sqlca.sqlcode)
    return MR_PERM;

  status = find_member(type, id, cl);
  if (status)
    return MR_SUCCESS;
  else
    return MR_PERM;
}

/* access_container - check access for most container operations
 *
 * Inputs: argv[0] - cnt_id
 *	    q - query name	  
 *          cl - client name
 *
 * - check if that client is a member of the access control list
 * - OR, if the query is add_machine_to_container or delete_machine_from_container
 *	check if the client is a memeber of the mem_acl list
 * - if the query is update_container and the container is to be renamed and
 *   it is a top-level container, only priviledged users can do it
 */

int access_container(struct query *q, char *argv[], client *cl)
{
  EXEC SQL BEGIN DECLARE SECTION;
  int cnt_id, acl_id, memacl_id;
  char acl_type[CONTAINERS_ACL_TYPE_SIZE], memacl_type[CONTAINERS_ACL_TYPE_SIZE];
  char name[CONTAINERS_NAME_SIZE], *newname;
  EXEC SQL END DECLARE SECTION;
  int status;

  cnt_id = *(int *)argv[0];
  
  /* if amcn or dmcn, container id is the second argument */
  if (strcmp(q->shortname, "amcn") == 0 || strcmp(q->shortname, "dmcn") == 0)
	cnt_id = *(int *)argv[1];

  EXEC SQL SELECT acl_id, acl_type, memacl_id, memacl_type, name
    INTO :acl_id, :acl_type, :memacl_id, :memacl_type, :name
    FROM containers
    WHERE cnt_id = :cnt_id;

  if (sqlca.sqlerrd[2] != 1)
    return MR_INTERNAL;

   /* trim off the trailing spaces */
   strcpy(name, strtrim(name));

  /* if the query is update_container and the containers is to be renamed
   * and it is a top-level container, only dbadmin can do it */
  if (!strcmp(q->shortname, "ucon"))
  {
    newname = argv[1];
    if (strcmp(name, newname) && strchr(name, '/') == NULL)
      return MR_PERM;
  }

  /* check for client in access control list and return success right 
   * away if it's there. */
  if (find_member(acl_type, acl_id, cl))
    return MR_SUCCESS;

  /* If not amcn, dmcn, we lose. */
  if (strcmp(q->shortname, "amcn") && strcmp(q->shortname, "dmcn"))
    return MR_PERM;

  if (find_member(memacl_type, memacl_id, cl))
    return MR_SUCCESS;

  /* Otherwise fail. */
  return MR_PERM;
}
Commit	Line	Data
7ac48069	1	/* $Id$
73cf66ba	2	*
7ac48069	3	* Check access to queries
73cf66ba	4	*
7ac48069	5	* Copyright (C) 1987-1998 by the Massachusetts Institute of Technology
	6	* For copying and distribution information, please see the file
	7	* <mit-copyright.h>.
73cf66ba	8	*/
73cf66ba	9
73cf66ba	10	#include <mit-copyright.h>
73cf66ba	11	#include "mr_server.h"
7ac48069	12	#include "qrtn.h"
03c05291	13	#include "query.h"
7ac48069	14
73cf66ba	15	#include <ctype.h>
7ac48069	16	#include <stdlib.h>
7ac48069	17
73cf66ba	18	EXEC SQL INCLUDE sqlca;
7ac48069	19
7ac48069	20	RCSID("$Header$");
73cf66ba	21
73cf66ba	22	extern char *whoami;
03c05291	23	extern int dbms_errno, mr_errcode;
73cf66ba	24
03c05291	25	EXEC SQL WHENEVER SQLERROR DO dbmserr();
73cf66ba	26
	27
	28	/* Specialized Access Routines */
	29
	30	/* access_user - verify that client name equals specified login name
	31	*
	32	* - since field validation routines are called first, a users_id is
	33	* now in argv[0] instead of the login name.
	34	*/
	35
5eaef520	36	int access_user(struct query q, char argv[], client *cl)
73cf66ba	37	{
5eaef520	38	if (cl->users_id != (int )argv[0])
	39	return MR_PERM;
	40	else
	41	return MR_SUCCESS;
73cf66ba	42	}
	43
	44
	45
	46	/* access_login - verify that client name equals specified login name
	47	*
	48	* argv[0...n] contain search info. q->
	49	*/
	50
5eaef520	51	int access_login(struct query q, char argv[], client *cl)
73cf66ba	52	{
5eaef520	53	EXEC SQL BEGIN DECLARE SECTION;
	54	int id;
	55	EXEC SQL END DECLARE SECTION;
73cf66ba	56
5eaef520	57	if (q->argc != 1)
5eaef520	58	return MR_ARGS;
03c05291	59
5eaef520	60	if (!strcmp(q->shortname, "gual"))
5eaef520	61	{
5906749e	62	EXEC SQL SELECT users_id INTO :id FROM users
cc0ec904	63	WHERE login = :argv[0] AND users_id != 0;
5eaef520	64	}
	65	else if (!strcmp(q->shortname, "gubl"))
	66	{
03c05291	67	EXEC SQL SELECT users_id INTO :id FROM users u
cc0ec904	68	WHERE u.login = :argv[0] AND u.users_id != 0;
5eaef520	69	}
	70	else if (!strcmp(q->shortname, "guau"))
	71	{
5906749e	72	EXEC SQL SELECT users_id INTO :id FROM users
5906749e	73	WHERE unix_uid = :argv[0] AND users_id != 0;
5eaef520	74	}
	75	else if (!strcmp(q->shortname, "gubu"))
	76	{
03c05291	77	EXEC SQL SELECT users_id INTO :id FROM users u
03c05291	78	WHERE u.unix_uid = :argv[0] AND u.users_id != 0;
73cf66ba	79	}
73cf66ba	80
5eaef520	81	if (sqlca.sqlcode == SQL_NO_MATCH)
	82	return MR_NO_MATCH; /* ought to be MR_USER, but this is what
	83	gual returns, so we have to be consistent */
	84	else if (sqlca.sqlerrd[2] != 1 \|\| id != cl->users_id)
	85	return MR_PERM;
	86	else
	87	return MR_SUCCESS;
73cf66ba	88	}
	89
	90
f659afb2	91	/* access_spob - check access for set_pobox */
	92
	93	int access_spob(struct query q, char argv[], client *cl)
	94	{
51e578b6	95	EXEC SQL BEGIN DECLARE SECTION;
	96	int id;
	97	EXEC SQL END DECLARE SECTION;
	98
	99	if (!strcmp(argv[1], "IMAP"))
	100	{
	101	EXEC SQL SELECT owner INTO :id FROM filesys f
	102	WHERE f.label = :argv[2] AND f.type = 'IMAP' AND
	103	f.lockertype = 'USER';
	104	if (cl->users_id != id)
	105	return MR_PERM;
	106	}
	107	if (cl->users_id != (int )argv[0])
f659afb2	108	return MR_PERM;
	109	else
	110	return MR_SUCCESS;
	111	}
	112
73cf66ba	113
	114	/* access_list - check access for most list operations
	115	*
	116	* Inputs: argv[0] - list_id
	117	* q - query name
	118	* argv[2] - member ID (only for queries "amtl" and "dmfl")
e688520a	119	* argv[7] - group ID (only for query "ulis")
73cf66ba	120	* cl - client name
	121	*
	122	* - check that client is a member of the access control list
	123	* - OR, if the query is add_member_to_list or delete_member_from_list
	124	* and the list is public, allow access if client = member
	125	*/
	126
5eaef520	127	int access_list(struct query q, char argv[], client *cl)
73cf66ba	128	{
5eaef520	129	EXEC SQL BEGIN DECLARE SECTION;
40b33762	130	int list_id, acl_id, flags, gid, users_id, member_id, member_acl_id;
59c3208b	131	int memacl_id;
e688520a	132	char acl_type[LIST_ACL_TYPE_SIZE], name[LIST_NAME_SIZE], *newname;
59c3208b	133	char member_acl_type[LIST_ACL_TYPE_SIZE], memacl_type[LIST_ACL_TYPE_SIZE];
5eaef520	134	EXEC SQL END DECLARE SECTION;
	135	int status;
	136
	137	list_id = (int )argv[0];
40b33762	138	member_id = (int )argv[2];
59c3208b	139	EXEC SQL SELECT acl_id, acl_type, memacl_id, memacl_type,
	140	gid, publicflg, name
	141	INTO :acl_id, :acl_type, :memacl_id, :memacl_type,
	142	:gid, :flags, :name
5eaef520	143	FROM list
	144	WHERE list_id = :list_id;
	145
	146	if (sqlca.sqlerrd[2] != 1)
	147	return MR_INTERNAL;
	148
59c3208b	149	/* if update_list, don't allow them to change the GID or rename to a
	150	username other than their own */
	151	if (!strcmp("ulis", q->shortname))
5eaef520	152	{
	153	if (!strcmp(argv[7], UNIQUE_GID))
	154	{
	155	if (gid != -1)
	156	return MR_PERM;
	157	}
	158	else
	159	{
	160	if (gid != atoi(argv[7]))
	161	return MR_PERM;
	162	}
5c96d2cd	163
d83ee5a2	164	newname = argv[1];
5c96d2cd	165
	166	if (!strcmp("ulis", q->shortname))
	167	{
	168	/* Check that it doesn't conflict with the Grouper namespace. */
	169	if (strlen(newname) > 4 && isdigit(newname[2]) &&
	170	isdigit(newname[3]) && newname[4] == '-')
	171	{
	172	if (!strncasecmp(newname, "fa", 2) \|\|
	173	!strncasecmp(newname, "sp", 2) \|\|
	174	!strncasecmp(newname, "su", 2) \|\|
	175	!strncasecmp(newname, "ja", 2))
	176	return MR_RESERVED;
	177	}
	178
	179	/* Don't let anyone take owner-foo list names. They interact
	180	* weirdly with the aliases automatically generated by
	181	* mailhub.gen.
	182	*/
	183	if (!strncasecmp(newname, "owner-", 6))
	184	return MR_RESERVED;
	185	}
	186
d83ee5a2	187	EXEC SQL SELECT users_id INTO :users_id FROM users
5eaef520	188	WHERE login = :newname;
17f090e1	189	if ((sqlca.sqlcode != SQL_NO_MATCH) && strcmp(strtrim(name), newname) &&
17f090e1	190	(users_id != cl->users_id))
5eaef520	191	return MR_PERM;
73cf66ba	192	}
73cf66ba	193
59c3208b	194	/* check for client in access control list and return success right
	195	* away if it's there. */
	196	if (find_member(acl_type, acl_id, cl))
	197	return MR_SUCCESS;
	198
	199	/* If not amtl, atml, or dmfl, we lose. */
	200	if (strcmp(q->shortname, "amtl") && strcmp(q->shortname, "atml") &&
e3fbe284	201	strcmp(q->shortname, "dmfl") && strcmp(q->shortname, "tmol"))
5eaef520	202	return MR_PERM;
73cf66ba	203
59c3208b	204	if (find_member(memacl_type, memacl_id, cl))
	205	return MR_SUCCESS;
	206
	207	if (flags \|\| q->type == DELETE)
	208	{
	209	if (!strcmp("USER", argv[1]) && (int )argv[2] == cl->users_id)
	210	return MR_SUCCESS;
	211	if (!strcmp("KERBEROS", argv[1]) && (int )argv[2] == -cl->client_id)
	212	return MR_SUCCESS;
	213	if (!strcmp("LIST", argv[1]) && !strcmp("dmfl", q->shortname))
	214	{
	215	EXEC SQL SELECT acl_id, acl_type INTO :member_acl_id,
	216	:member_acl_type
	217	FROM list
	218	WHERE list_id = :member_id;
	219
	220	if (find_member(member_acl_type, member_acl_id, cl))
	221	return MR_SUCCESS;
	222	}
	223	}
	224
	225	/* Otherwise fail. */
	226	return MR_PERM;
73cf66ba	227	}
	228
	229
	230	/* access_visible_list - allow access to list only if it is not hidden,
	231	* or if the client is on the ACL
	232	*
	233	* Inputs: argv[0] - list_id
	234	* cl - client identifier
	235	*/
	236
5eaef520	237	int access_visible_list(struct query q, char argv[], client *cl)
73cf66ba	238	{
5eaef520	239	EXEC SQL BEGIN DECLARE SECTION;
59c3208b	240	int list_id, acl_id, memacl_id, flags ;
59c3208b	241	char acl_type[LIST_ACL_TYPE_SIZE], memacl_type[LIST_ACL_TYPE_SIZE];
5eaef520	242	EXEC SQL END DECLARE SECTION;
	243	int status;
	244
	245	list_id = (int )argv[0];
59c3208b	246	EXEC SQL SELECT hidden, acl_id, acl_type, memacl_id, memacl_type
59c3208b	247	INTO :flags, :acl_id, :acl_type, :memacl_id, :memacl_type
5eaef520	248	FROM list
	249	WHERE list_id = :list_id;
	250	if (sqlca.sqlerrd[2] != 1)
	251	return MR_INTERNAL;
	252	if (!flags)
	253	return MR_SUCCESS;
	254
	255	/* check for client in access control list */
	256	status = find_member(acl_type, acl_id, cl);
	257	if (!status)
59c3208b	258	{
	259	status = find_member(memacl_type, memacl_id, cl);
	260	if (!status)
	261	return MR_PERM;
	262	}
5eaef520	263	return MR_SUCCESS;
73cf66ba	264	}
	265
	266
	267	/* access_vis_list_by_name - allow access to list only if it is not hidden,
	268	* or if the client is on the ACL
	269	*
	270	* Inputs: argv[0] - list name
	271	* cl - client identifier
	272	*/
	273
5eaef520	274	int access_vis_list_by_name(struct query q, char argv[], client *cl)
73cf66ba	275	{
5eaef520	276	EXEC SQL BEGIN DECLARE SECTION;
59c3208b	277	int acl_id, memacl_id, flags, rowcount;
	278	char acl_type[LIST_ACL_TYPE_SIZE], memacl_type[LIST_ACL_TYPE_SIZE];
	279	char *listname;
5eaef520	280	EXEC SQL END DECLARE SECTION;
	281	int status;
	282
	283	listname = argv[0];
59c3208b	284	EXEC SQL SELECT hidden, acl_id, acl_type, memacl_id, memacl_type
	285	INTO :flags, :acl_id, :acl_type, :memacl_id, :memacl_type
	286	FROM list
	287	WHERE name = :listname;
5eaef520	288
	289	rowcount = sqlca.sqlerrd[2];
	290	if (rowcount > 1)
	291	return MR_WILDCARD;
	292	if (rowcount == 0)
	293	return MR_NO_MATCH;
	294	if (!flags)
	295	return MR_SUCCESS;
	296
	297	/* check for client in access control list */
	298	status = find_member(acl_type, acl_id, cl);
	299	if (!status)
59c3208b	300	{
	301	status = find_member(memacl_type, memacl_id, cl);
	302	if (!status)
	303	return MR_PERM;
	304	}
5eaef520	305	return MR_SUCCESS;
73cf66ba	306	}
	307
	308
	309	/* access_member - allow user to access member of type "USER" and name matches
f3c08a60	310	* username, or to access member of type "KERBEROS" and the principal matches
f3c08a60	311	* the user, or to access member of type "LIST" and list is one that user is
73cf66ba	312	* on the acl of, or the list is visible.
	313	*/
	314
5eaef520	315	int access_member(struct query q, char argv[], client *cl)
73cf66ba	316	{
5eaef520	317	if (!strcmp(argv[0], "LIST") \|\| !strcmp(argv[0], "RLIST"))
5eaef520	318	return access_visible_list(q, &argv[1], cl);
73cf66ba	319
5eaef520	320	if (!strcmp(argv[0], "USER") \|\| !strcmp(argv[0], "RUSER"))
	321	{
	322	if (cl->users_id == (int )argv[1])
	323	return MR_SUCCESS;
73cf66ba	324	}
73cf66ba	325
5eaef520	326	if (!strcmp(argv[0], "KERBEROS") \|\| !strcmp(argv[0], "RKERBEROS"))
	327	{
	328	if (cl->client_id == -(int )argv[1])
	329	return MR_SUCCESS;
73cf66ba	330	}
73cf66ba	331
5eaef520	332	return MR_PERM;
73cf66ba	333	}
	334
	335
	336	/* access_qgli - special access routine for Qualified_get_lists. Allows
	337	* access iff argv[0] == "TRUE" and argv[2] == "FALSE".
	338	*/
	339
5eaef520	340	int access_qgli(struct query q, char argv[], client *cl)
73cf66ba	341	{
5eaef520	342	if (!strcmp(argv[0], "TRUE") && !strcmp(argv[2], "FALSE"))
	343	return MR_SUCCESS;
	344	return MR_PERM;
73cf66ba	345	}
	346
	347
	348	/* access_service - allow access if user is on ACL of service. Don't
	349	* allow access if a wildcard is used.
	350	*/
	351
5eaef520	352	int access_service(struct query q, char argv[], client *cl)
73cf66ba	353	{
5eaef520	354	EXEC SQL BEGIN DECLARE SECTION;
5eaef520	355	int acl_id;
e688520a	356	char *name, acl_type[LIST_ACL_TYPE_SIZE];
5eaef520	357	EXEC SQL END DECLARE SECTION;
	358	int status;
	359	char *c;
	360
	361	name = argv[0];
	362	for (c = name; *c; c++)
	363	{
	364	if (islower(*c))
	365	c = toupper(c);
	366	}
	367	EXEC SQL SELECT acl_id, acl_type INTO :acl_id, :acl_type FROM servers
	368	WHERE name = :name;
	369	if (sqlca.sqlerrd[2] > 1)
	370	return MR_PERM;
	371
	372	/* check for client in access control list */
	373	status = find_member(acl_type, acl_id, cl);
	374	if (!status)
	375	return MR_PERM;
	376
	377	return MR_SUCCESS;
73cf66ba	378	}
	379
	380
	381	/* access_filesys - verify that client is owner or on owners list of filesystem
	382	* named by argv[0]
	383	*/
	384
5eaef520	385	int access_filesys(struct query q, char argv[], client *cl)
73cf66ba	386	{
5eaef520	387	EXEC SQL BEGIN DECLARE SECTION;
	388	int users_id, list_id;
	389	char *name;
	390	EXEC SQL END DECLARE SECTION;
	391	int status;
	392
	393	name = argv[0];
	394	EXEC SQL SELECT owner, owners INTO :users_id, :list_id FROM filesys
	395	WHERE label = :name;
	396
	397	if (sqlca.sqlerrd[2] != 1)
	398	return MR_PERM;
	399	if (users_id == cl->users_id)
	400	return MR_SUCCESS;
	401	status = find_member("LIST", list_id, cl);
	402	if (status)
	403	return MR_SUCCESS;
	404	else
	405	return MR_PERM;
73cf66ba	406	}
73cf66ba	407
1beb5e23	408
	409	/* access_host - successful if owner of host, or subnet containing host
	410	*/
	411
5eaef520	412	int access_host(struct query q, char argv[], client *cl)
1beb5e23	413	{
5eaef520	414	EXEC SQL BEGIN DECLARE SECTION;
2d05b47b	415	int mid, sid, id, subnet_status;
e688520a	416	char mtype[MACHINE_OWNER_TYPE_SIZE], stype[SUBNET_OWNER_TYPE_SIZE];
2d05b47b	417	char *account_number;
5eaef520	418	EXEC SQL END DECLARE SECTION;
e4ae0190	419	int status, idx;
	420
	421	if (q->version < 6)
	422	idx = 0;
2d05b47b	423	else if (q->version >= 6 && q->version < 8)
e4ae0190	424	idx = 1;
2d05b47b	425	else
	426	idx = 2;
	427
17f090e1	428	if (q->type == RETRIEVE)
	429	{
	430	if (strcmp(argv[0], "") \|\| strcmp(argv[1], "") \|\|
	431	strcmp(argv[2], "") \|\| strcmp(argv[3], ""))
	432	return MR_SUCCESS;
	433	else
	434	return MR_PERM;
	435	}
9e252e6f	436
5eaef520	437	if (q->type == APPEND)
5eaef520	438	{
17f090e1	439	/* Non-query owner must set use to zero */
e4ae0190	440	if (atoi(argv[6 + idx]) != 0)
17f090e1	441	return MR_PERM;
17f090e1	442
9e252e6f	443	/* ... and start the hostname with a letter */
	444	if (isdigit(argv[0][0]))
	445	return MR_BAD_CHAR;
	446
e4ae0190	447	id = (int )argv[8 + idx];
2d05b47b	448	EXEC SQL SELECT s.owner_type, s.owner_id, s.status
2d05b47b	449	INTO :stype, :sid, :subnet_status FROM subnet s
5eaef520	450	WHERE s.snet_id = :id;
5eaef520	451	mid = 0;
17f090e1	452
2d05b47b	453	if (q->version >= 8)
2d05b47b	454	{
82395a5e	455	if (subnet_status == SNET_STATUS_BILLABLE)
2d05b47b	456	{
	457	account_number = argv[7];
	458	EXEC SQL SELECT account_number FROM accountnumbers
	459	WHERE account_number = :account_number;
	460	if (sqlca.sqlcode == SQL_NO_MATCH)
	461	return MR_ACCOUNT_NUMBER;
	462	}
	463	}
	464
17f090e1	465	if (find_member(stype, sid, cl))
5eaef520	466	return MR_SUCCESS;
	467	else
	468	return MR_PERM;
	469	}
17f090e1	470	else /* q-type == UPDATE */
5eaef520	471	{
17f090e1	472	EXEC SQL BEGIN DECLARE SECTION;
17f090e1	473	int status, acomment, use, ocomment, snid;
e688520a	474	char contact[MACHINE_CONTACT_SIZE], address[MACHINE_ADDRESS_SIZE];
9e252e6f	475	char name[MACHINE_NAME_SIZE];
e4ae0190	476	char billing_contact[MACHINE_BILLING_CONTACT_SIZE];
17f090e1	477	EXEC SQL END DECLARE SECTION;
17f090e1	478
5eaef520	479	id = (int )argv[0];
e4ae0190	480	EXEC SQL SELECT m.name, m.use, m.contact, m.billing_contact, m.status,
	481	m.address, m.owner_type, m.owner_id, m.acomment, m.ocomment, m.snet_id,
	482	s.owner_type, s.owner_id INTO :name, :use, :contact, :billing_contact,
	483	:status, :address, :mtype, :mid, :acomment, :ocomment, :snid, :stype,
	484	:sid
17f090e1	485	FROM machine m, subnet s
	486	WHERE m.mach_id = :id AND s.snet_id = m.snet_id;
	487	if (dbms_errno)
	488	return mr_errcode;
	489
	490	/* non-query-owner cannot change use or ocomment */
e4ae0190	491	if ((use != atoi(argv[7 + idx])) \|\| (ocomment != (int )argv[14 + idx]))
17f090e1	492	return MR_PERM;
17f090e1	493
9e252e6f	494	/* or rename to start with digit */
	495	if (isdigit(argv[1][0]) && strcmp(strtrim(name), argv[1]))
	496	return MR_BAD_CHAR;
	497
17f090e1	498	if (!find_member(stype, sid, cl))
	499	{
	500	if (find_member(mtype, mid, cl))
	501	{
	502	/* host owner also cannot change contact, status, address,
	503	owner, or acomment */
7617c632	504	if (strcmp(argv[6], strtrim(contact)) \|\|
e4ae0190	505	(status != atoi(argv[8 + idx])) \|\|
	506	strcmp(argv[10 + idx], strtrim(address)) \|\|
	507	strcmp(argv[11 + idx], strtrim(mtype)) \|\|
	508	(mid != (int )argv[12 + idx]) \|\|
	509	(acomment != (int )argv[13 + idx]))
17f090e1	510	return MR_PERM;
e4ae0190	511	/* Billing contact field didn't appear until version 6 */
e4ae0190	512	if (q->version >= 6)
7617c632	513	if (strcmp(argv[7], strtrim(billing_contact)))
e4ae0190	514	return MR_PERM;
17f090e1	515	}
	516	else
	517	return MR_PERM;
	518	}
	519
	520	/* If moving to a new subnet, make sure user is on acl there */
e4ae0190	521	id = (int )argv[9 + idx];
17f090e1	522	if (id != snid)
	523	{
	524	EXEC SQL SELECT owner_type, owner_id INTO :stype, :sid
	525	FROM subnet WHERE snet_id=:id;
	526	if (!find_member(stype, sid, cl))
	527	return MR_PERM;
	528	}
5eaef520	529
5eaef520	530	return MR_SUCCESS;
1beb5e23	531	}
1beb5e23	532	}
	533
	534
	535	/* access_ahal - check for adding a host alias.
	536	* successful if host has less then 2 aliases and (client is owner of
	537	* host or subnet).
	538	* If deleting an alias, any owner will do.
	539	*/
	540
5eaef520	541	int access_ahal(struct query q, char argv[], client *cl)
1beb5e23	542	{
5eaef520	543	EXEC SQL BEGIN DECLARE SECTION;
5eaef520	544	int cnt, id, mid, sid;
e688520a	545	char mtype[MACHINE_OWNER_TYPE_SIZE], stype[SUBNET_OWNER_TYPE_SIZE];
5eaef520	546	EXEC SQL END DECLARE SECTION;
	547	int status;
	548
	549	if (q->type == RETRIEVE)
	550	return MR_SUCCESS;
	551
	552	id = (int )argv[1];
	553
9e252e6f	554	if (q->type == APPEND && isdigit(argv[0][0]))
	555	return MR_BAD_CHAR;
	556
5eaef520	557	EXEC SQL SELECT count(name) INTO :cnt from hostalias WHERE mach_id = :id;
	558	if (dbms_errno)
	559	return mr_errcode;
	560	/* if the type is APPEND, this is ahal and we need to make sure there
	561	* will be no more than 2 aliases. If it's not, it must be dhal and
	562	* any owner will do.
	563	*/
	564	if (q->type == APPEND && cnt >= 2)
	565	return MR_PERM;
	566	EXEC SQL SELECT m.owner_type, m.owner_id, s.owner_type, s.owner_id
	567	INTO :mtype, :mid, :stype, :sid FROM machine m, subnet s
	568	WHERE m.mach_id = :id and s.snet_id = m.snet_id;
	569	status = find_member(mtype, mid, cl);
	570	if (status)
	571	return MR_SUCCESS;
	572	status = find_member(stype, sid, cl);
	573	if (status)
	574	return MR_SUCCESS;
	575	else
	576	return MR_PERM;
1beb5e23	577	}
7cf83f0f	578
7cf83f0f	579
7cf83f0f	580	/* access_snt - check for retrieving network structure
	581	*/
	582
5eaef520	583	int access_snt(struct query q, char argv[], client *cl)
7cf83f0f	584	{
5eaef520	585	if (q->type == RETRIEVE)
5eaef520	586	return MR_SUCCESS;
7cf83f0f	587
5eaef520	588	return MR_PERM;
7cf83f0f	589	}
1a9a0a59	590
	591
	592	/* access_printer */
	593	int access_printer(struct query q, char argv[], client *cl)
	594	{
	595	EXEC SQL BEGIN DECLARE SECTION;
	596	char type[PRINTSERVERS_OWNER_TYPE_SIZE];
	597	int id, mach_id;
	598	EXEC SQL END DECLARE SECTION;
	599	int status;
	600
	601	mach_id = (int )argv[PRN_RM];
	602	EXEC SQL SELECT owner_type, owner_id INTO :type, :id
	603	FROM printservers WHERE mach_id = :mach_id;
	604	if (sqlca.sqlcode)
	605	return MR_PERM;
	606
	607	status = find_member(type, id, cl);
	608	if (status)
	609	return MR_SUCCESS;
	610	else
	611	return MR_PERM;
	612	}
d7ddc011	613
	614	/* access_zephyr */
	615	int access_zephyr(struct query q, char argv[], client *cl)
	616	{
	617	EXEC SQL BEGIN DECLARE SECTION;
	618	char type[ZEPHYR_OWNER_TYPE_SIZE];
	619	char *class;
	620	int id;
	621	EXEC SQL END DECLARE SECTION;
	622	int status;
	623
	624	class = argv[ZA_CLASS];
	625	EXEC SQL SELECT owner_type, owner_id INTO :type, :id
	626	FROM zephyr WHERE class = :class;
	627	if (sqlca.sqlcode)
	628	return MR_PERM;
	629
	630	status = find_member(type, id, cl);
	631	if (status)
	632	return MR_SUCCESS;
	633	else
	634	return MR_PERM;
	635	}
	636
2fb668b0	637	/* access_container - check access for most container operations
	638	*
	639	* Inputs: argv[0] - cnt_id
	640	* q - query name
	641	* cl - client name
	642	*
	643	* - check if that client is a member of the access control list
	644	* - OR, if the query is add_machine_to_container or delete_machine_from_container
	645	* check if the client is a memeber of the mem_acl list
	646	* - if the query is update_container and the container is to be renamed and
	647	* it is a top-level container, only priviledged users can do it
	648	*/
	649
	650	int access_container(struct query q, char argv[], client *cl)
	651	{
	652	EXEC SQL BEGIN DECLARE SECTION;
	653	int cnt_id, acl_id, memacl_id;
	654	char acl_type[CONTAINERS_ACL_TYPE_SIZE], memacl_type[CONTAINERS_ACL_TYPE_SIZE];
	655	char name[CONTAINERS_NAME_SIZE], *newname;
	656	EXEC SQL END DECLARE SECTION;
	657	int status;
	658
	659	cnt_id = (int )argv[0];
	660
	661	/* if amcn or dmcn, container id is the second argument */
	662	if (strcmp(q->shortname, "amcn") == 0 \|\| strcmp(q->shortname, "dmcn") == 0)
	663	cnt_id = (int )argv[1];
	664
	665	EXEC SQL SELECT acl_id, acl_type, memacl_id, memacl_type, name
	666	INTO :acl_id, :acl_type, :memacl_id, :memacl_type, :name
	667	FROM containers
	668	WHERE cnt_id = :cnt_id;
	669
	670	if (sqlca.sqlerrd[2] != 1)
	671	return MR_INTERNAL;
	672
	673	/* trim off the trailing spaces */
	674	strcpy(name, strtrim(name));
	675
	676	/* if the query is update_container and the containers is to be renamed
	677	* and it is a top-level container, only dbadmin can do it */
	678	if (!strcmp(q->shortname, "ucon"))
	679	{
	680	newname = argv[1];
	681	if (strcmp(name, newname) && strchr(name, '/') == NULL)
	682	return MR_PERM;
	683	}
	684
	685	/* check for client in access control list and return success right
	686	* away if it's there. */
	687	if (find_member(acl_type, acl_id, cl))
	688	return MR_SUCCESS;
	689
	690	/* If not amcn, dmcn, we lose. */
	691	if (strcmp(q->shortname, "amcn") && strcmp(q->shortname, "dmcn"))
	692	return MR_PERM;
	693
	694	if (find_member(memacl_type, memacl_id, cl))
	695	return MR_SUCCESS;
	696
	697	/* Otherwise fail. */
	698	return MR_PERM;
	699	}