fraport/fradrive-old
fraport/fradrive-old
Archived
3
1
Fork 0
Code Issues 65 Pull Requests 5 Actions Packages Projects Releases 197 Wiki Activity

refactor(ldap): CampusUserError -> LdapUserError

Browse Source
This commit is contained in:
Sarah Vaupel 2024-02-10 00:27:36 +01:00
parent 12fe58fc81
commit cc8bd19f85
1 changed files with 19 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

37
src/Auth/LDAP.hs
View File

@ -8,7 +8,7 @@ module Auth.LDAP
( apLdap ( apLdap
, ADError(..), ADInvalidCredentials(..) , ADError(..), ADInvalidCredentials(..)
, ldapLogin , ldapLogin
, CampusUserException(..) , LdapUserException(..)
, ldapUser, ldapUser', ldapUser'' , ldapUser, ldapUser', ldapUser''
--, ldapUserReTest, ldapUserReTest' --, ldapUserReTest, ldapUserReTest'
, ldapUserMatr, ldapUserMatr' , ldapUserMatr, ldapUserMatr'
@ -46,11 +46,13 @@ apLdap = "LDAP"
deriving newtype instance Ord Ldap.Attr deriving newtype instance Ord Ldap.Attr
-- TODO: rename
data CampusLogin = CampusLogin data CampusLogin = CampusLogin
{ campusIdent :: CI Text { campusIdent :: CI Text
, campusPassword :: Text , campusPassword :: Text
} deriving (Generic) } deriving (Generic)
-- TODO: rename
data CampusMessage = MsgCampusIdentPlaceholder data CampusMessage = MsgCampusIdentPlaceholder
| MsgCampusIdent | MsgCampusIdent
| MsgCampusPassword | MsgCampusPassword
@ -118,15 +120,14 @@ ldapUserEmail = Ldap.Attr "mail" :|
] ]
-- TODO: rename data LdapUserException = LdapUserLdapError LdapPoolError
data CampusUserException = CampusUserLdapError LdapPoolError | LdapUserNoResult
| CampusUserNoResult | LdapUserAmbiguous
| CampusUserAmbiguous
deriving (Show, Eq, Generic) deriving (Show, Eq, Generic)
instance Exception CampusUserException instance Exception LdapUserException
makePrisms ''CampusUserException makePrisms ''LdapUserException
ldapUserWith :: ( MonadUnliftIO m ldapUserWith :: ( MonadUnliftIO m
@ -139,13 +140,13 @@ ldapUserWith :: ( MonadUnliftIO m
-- -> m (Either LdapPoolError (Either CampusUserException (Ldap.AttrList []))) -- -> m (Either LdapPoolError (Either CampusUserException (Ldap.AttrList [])))
-- ) -- )
=> ( LdapPool => ( LdapPool
-> (Ldap -> m (Either CampusUserException (Ldap.AttrList []))) -> (Ldap -> m (Either LdapUserException (Ldap.AttrList [])))
-> m (Either LdapPoolError (Either CampusUserException (Ldap.AttrList []))) -> m (Either LdapPoolError (Either LdapUserException (Ldap.AttrList [])))
) )
-> (LdapConf, LdapPool) -> (LdapConf, LdapPool)
-> Creds site -> Creds site
-> m (Either CampusUserException (Ldap.AttrList [])) -> m (Either LdapUserException (Ldap.AttrList []))
ldapUserWith withLdap' (conf@LdapConf{..}, pool) Creds{..} = either (throwM . CampusUserLdapError) return <=< withLdap' pool $ \ldap -> liftIO . runExceptT $ do ldapUserWith withLdap' (conf@LdapConf{..}, pool) Creds{..} = either (throwM . LdapUserLdapError) return <=< withLdap' pool $ \ldap -> liftIO . runExceptT $ do
lift $ Ldap.bind ldap ldapDn ldapPassword lift $ Ldap.bind ldap ldapDn ldapPassword
results <- case lookup "DN" credsExtra of results <- case lookup "DN" credsExtra of
Just userDN -> do Just userDN -> do
@ -154,9 +155,9 @@ ldapUserWith withLdap' (conf@LdapConf{..}, pool) Creds{..} = either (throwM . Ca
Nothing -> do Nothing -> do
lift $ findUser conf ldap credsIdent [] lift $ findUser conf ldap credsIdent []
case results of case results of
[] -> throwE CampusUserNoResult [] -> throwE LdapUserNoResult
[Ldap.SearchEntry _ attrs] -> return attrs [Ldap.SearchEntry _ attrs] -> return attrs
_otherwise -> throwE CampusUserAmbiguous _otherwise -> throwE LdapUserAmbiguous
-- TODO: reintroduce once failover has been reimplemented -- TODO: reintroduce once failover has been reimplemented
@ -212,7 +213,7 @@ ldapUser'' :: ( MonadMask m
-> Text -> Text
-> m (Maybe (Ldap.AttrList [])) -> m (Maybe (Ldap.AttrList []))
ldapUser'' pool ident ldapUser'' pool ident
= runMaybeT . catchIfMaybeT (is _CampusUserNoResult) $ ldapUser pool (Creds apLdap ident []) = runMaybeT . catchIfMaybeT (is _LdapUserNoResult) $ ldapUser pool (Creds apLdap ident [])
ldapUserMatr :: ( MonadUnliftIO m ldapUserMatr :: ( MonadUnliftIO m
@ -222,13 +223,13 @@ ldapUserMatr :: ( MonadUnliftIO m
=> (LdapConf, LdapPool) => (LdapConf, LdapPool)
-> UserMatriculation -> UserMatriculation
-> m (Ldap.AttrList []) -> m (Ldap.AttrList [])
ldapUserMatr (conf@LdapConf{..}, pool) userMatr = either (throwM . CampusUserLdapError) return <=< withLdap pool $ \ldap -> liftIO $ do ldapUserMatr (conf@LdapConf{..}, pool) userMatr = either (throwM . LdapUserLdapError) return <=< withLdap pool $ \ldap -> liftIO $ do
Ldap.bind ldap ldapDn ldapPassword Ldap.bind ldap ldapDn ldapPassword
results <- findUserMatr conf ldap userMatr [] results <- findUserMatr conf ldap userMatr []
case results of case results of
[] -> throwM CampusUserNoResult [] -> throwM LdapUserNoResult
[Ldap.SearchEntry _ attrs] -> return attrs [Ldap.SearchEntry _ attrs] -> return attrs
_otherwise -> throwM CampusUserAmbiguous _otherwise -> throwM LdapUserAmbiguous
ldapUserMatr' :: ( MonadMask m ldapUserMatr' :: ( MonadMask m
, MonadUnliftIO m , MonadUnliftIO m
@ -237,7 +238,7 @@ ldapUserMatr' :: ( MonadMask m
=> (LdapConf, LdapPool) => (LdapConf, LdapPool)
-> UserMatriculation -> UserMatriculation
-> m (Maybe (Ldap.AttrList [])) -> m (Maybe (Ldap.AttrList []))
ldapUserMatr' pool = runMaybeT . catchIfMaybeT (is _CampusUserNoResult) . ldapUserMatr pool ldapUserMatr' pool = runMaybeT . catchIfMaybeT (is _LdapUserNoResult) . ldapUserMatr pool
newtype ADInvalidCredentials = ADInvalidCredentials ADError newtype ADInvalidCredentials = ADInvalidCredentials ADError