/*
 * ProFTPD: mod_ctrls -- a module implementing the ftpdctl local socket
 *                       server
 *
 * Copyright (c) 2000-2003 TJ Saunders
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307, USA.
 *
 * As a special exemption, TJ Saunders and other respective copyright holders
 * give permission to link this program with OpenSSL, and distribute the
 * resulting executable, without including the source code for OpenSSL in the
 * source distribution.
 *
 * This is mod_ctrls, contrib software for proftpd 1.2 and above.
 * For more information contact TJ Saunders <tj@castaglia.org>.
 *
 * $Id: mod_ctrls.h,v 1.2 2004/11/02 18:18:58 castaglia Exp $
 */

#ifndef MOD_CTRLS_H
#define MOD_CTRLS_H

#include <signal.h>
#include "conf.h"

# ifdef PR_USE_CTRLS

/* Controls access control objects */

typedef struct {
  unsigned char allow;
  unsigned int nuids;
  uid_t *uids;
} ctrls_usr_acl_t;

typedef struct {
  unsigned char allow;
  unsigned int ngids;
  gid_t *gids;
} ctrls_grp_acl_t;

typedef struct {
  pool *acl_pool;
  ctrls_usr_acl_t acl_usrs;
  ctrls_grp_acl_t acl_grps;
} ctrls_acl_t;

typedef struct {
  const char *act_action;
  const char *act_desc;
  ctrls_acl_t *act_acl;
  int (*act_cb)(pr_ctrls_t *, int, char **);
} ctrls_acttab_t;

char *ctrls_argsep(char **arg);

/* Returns TRUE if use of ctrl named by action is allowed by the user or group
 * ACL, FALSE otherwise.  The ACLs associated with the given action are
 * looked up in the given table.  The default is to deny everyone, unless an
 * ACL has been configured to allow them.
 */
unsigned char ctrls_check_acl(const pr_ctrls_t *ctrl,
  const ctrls_acttab_t *ctrls_acttab, const char *action);

/* Initialize an ctrls_acl_t object.
 */
void ctrls_init_acl(ctrls_acl_t *acl);

char **ctrls_parse_acl(pool *acl_pool, char *acl_str);

/* Configures the ACLs for the actions implemented in a Controls module.
 */
char *ctrls_set_module_acls(ctrls_acttab_t *ctrls_acttab, pool *acl_pool,
  char **actions, const char *allow, const char *type, char *list);

/* Unregisters a module's actions according to the configured list.
 */
char *ctrls_unregister_module_actions(ctrls_acttab_t *ctrls_acttab,
  char **actions, module *mod);

/* Logs into a mod_ctrls-specific log file.
 */
int ctrls_log(const char *module_version, const char *fmt, ...);

# endif /* PR_USE_CTRLS */
#endif /* MOD_FTPDCTL_H */