Moved all auth settings into YesodAuth typeclass
This commit is contained in:
Michael Snoyman
parent
27981e04f4
commit
086b73ac59
@ -49,13 +49,20 @@ import Control.Exception (Exception)
|
|||||||
data LoginType = OpenId | Rpxnow
|
data LoginType = OpenId | Rpxnow
|
||||||
|
|
||||||
class Yesod master => YesodAuth master where
|
class Yesod master => YesodAuth master where
|
||||||
|
defaultDest :: master -> Routes master
|
||||||
|
|
||||||
|
liftAuthRoute :: master -> Routes Auth -> Routes master
|
||||||
|
|
||||||
onRpxnowLogin :: Rpxnow.Identifier -> GHandler Auth master ()
|
onRpxnowLogin :: Rpxnow.Identifier -> GHandler Auth master ()
|
||||||
|
onRpxnowLogin _ = return ()
|
||||||
|
|
||||||
|
rpxnowApiKey :: master -> Maybe String
|
||||||
|
rpxnowApiKey _ = Nothing
|
||||||
|
|
||||||
|
defaultLoginType :: master -> LoginType
|
||||||
|
defaultLoginType _ = OpenId
|
||||||
|
|
||||||
data Auth = Auth
|
data Auth = Auth
|
||||||
{ defaultDest :: String
|
|
||||||
, rpxnowApiKey :: Maybe String
|
|
||||||
, defaultLoginType :: LoginType
|
|
||||||
}
|
|
||||||
|
|
||||||
$(mkYesodSub "Auth" [''YesodAuth] [$parseRoutes|
|
$(mkYesodSub "Auth" [''YesodAuth] [$parseRoutes|
|
||||||
/check Check GET
|
/check Check GET
|
||||||
@ -108,23 +115,24 @@ getOpenIdForward = do
|
|||||||
(redirectString RedirectTemporary)
|
(redirectString RedirectTemporary)
|
||||||
res
|
res
|
||||||
|
|
||||||
getOpenIdComplete :: GHandler Auth master ()
|
getOpenIdComplete :: YesodAuth master => GHandler Auth master ()
|
||||||
getOpenIdComplete = do
|
getOpenIdComplete = do
|
||||||
rr <- getRequest
|
rr <- getRequest
|
||||||
let gets' = reqGetParams rr
|
let gets' = reqGetParams rr
|
||||||
res <- runAttemptT $ OpenId.authenticate gets'
|
res <- runAttemptT $ OpenId.authenticate gets'
|
||||||
render <- getUrlRender
|
render <- getUrlRender
|
||||||
|
renderm <- getUrlRenderMaster
|
||||||
let errurl err = render OpenIdR ++ "?message=" ++ encodeUrl (show err)
|
let errurl err = render OpenIdR ++ "?message=" ++ encodeUrl (show err)
|
||||||
let onFailure err = redirectString RedirectTemporary $ errurl err
|
let onFailure err = redirectString RedirectTemporary $ errurl err
|
||||||
let onSuccess (OpenId.Identifier ident) = do
|
let onSuccess (OpenId.Identifier ident) = do
|
||||||
y <- getYesod
|
y <- getYesodMaster
|
||||||
header authCookieName ident
|
header authCookieName ident
|
||||||
redirectToDest RedirectTemporary $ defaultDest y
|
redirectToDest RedirectTemporary $ renderm $ defaultDest y
|
||||||
attempt onFailure onSuccess res
|
attempt onFailure onSuccess res
|
||||||
|
|
||||||
handleRpxnowR :: YesodAuth master => GHandler Auth master ()
|
handleRpxnowR :: YesodAuth master => GHandler Auth master ()
|
||||||
handleRpxnowR = do
|
handleRpxnowR = do
|
||||||
ay <- getYesod
|
ay <- getYesodMaster
|
||||||
apiKey <- case rpxnowApiKey ay of
|
apiKey <- case rpxnowApiKey ay of
|
||||||
Just x -> return x
|
Just x -> return x
|
||||||
Nothing -> notFound
|
Nothing -> notFound
|
||||||
@ -133,10 +141,11 @@ handleRpxnowR = do
|
|||||||
let token = case getParams rr "token" ++ pp "token" of
|
let token = case getParams rr "token" ++ pp "token" of
|
||||||
[] -> failure MissingToken
|
[] -> failure MissingToken
|
||||||
(x:_) -> x
|
(x:_) -> x
|
||||||
|
render <- getUrlRenderMaster
|
||||||
let dest = case pp "dest" of
|
let dest = case pp "dest" of
|
||||||
[] -> case getParams rr "dest" of
|
[] -> case getParams rr "dest" of
|
||||||
[] -> defaultDest ay
|
[] -> render $ defaultDest ay
|
||||||
("":_) -> defaultDest ay
|
("":_) -> render $ defaultDest ay
|
||||||
(('#':rest):_) -> rest
|
(('#':rest):_) -> rest
|
||||||
(s:_) -> s
|
(s:_) -> s
|
||||||
(d:_) -> d
|
(d:_) -> d
|
||||||
@ -177,11 +186,12 @@ getCheck = do
|
|||||||
, ("displayName", jsonScalar dn)
|
, ("displayName", jsonScalar dn)
|
||||||
]
|
]
|
||||||
|
|
||||||
getLogout :: GHandler Auth master ()
|
getLogout :: YesodAuth master => GHandler Auth master ()
|
||||||
getLogout = do
|
getLogout = do
|
||||||
y <- getYesod
|
y <- getYesodMaster
|
||||||
deleteCookie authCookieName
|
deleteCookie authCookieName
|
||||||
redirectToDest RedirectTemporary $ defaultDest y
|
render <- getUrlRenderMaster
|
||||||
|
redirectToDest RedirectTemporary $ render $ defaultDest y
|
||||||
|
|
||||||
-- | Gets the identifier for a user if available.
|
-- | Gets the identifier for a user if available.
|
||||||
maybeIdentifier :: RequestReader m => m (Maybe String)
|
maybeIdentifier :: RequestReader m => m (Maybe String)
|
||||||
@ -197,33 +207,32 @@ displayName = do
|
|||||||
|
|
||||||
-- | Gets the identifier for a user. If user is not logged in, redirects them
|
-- | Gets the identifier for a user. If user is not logged in, redirects them
|
||||||
-- to the login page.
|
-- to the login page.
|
||||||
authIdentifier :: GHandler Auth master String
|
authIdentifier :: YesodAuth master => GHandler sub master String
|
||||||
authIdentifier = maybeIdentifier >>= maybe redirectLogin return
|
authIdentifier = maybeIdentifier >>= maybe redirectLogin return
|
||||||
|
|
||||||
-- | Redirect the user to the 'defaultLoginPath', setting the DEST cookie
|
-- | Redirect the user to the 'defaultLoginPath', setting the DEST cookie
|
||||||
-- appropriately.
|
-- appropriately.
|
||||||
redirectLogin :: GHandler Auth master a
|
redirectLogin :: YesodAuth master => GHandler sub master a
|
||||||
redirectLogin = do
|
redirectLogin = do
|
||||||
y <- getYesod
|
y <- getYesodMaster
|
||||||
let r = case defaultLoginType y of
|
let r = case defaultLoginType y of
|
||||||
OpenId -> OpenIdR
|
OpenId -> OpenIdR
|
||||||
Rpxnow -> RpxnowR -- FIXME this doesn't actually show a login page?
|
Rpxnow -> RpxnowR -- FIXME this doesn't actually show a login page?
|
||||||
redirectSetDest RedirectTemporary r
|
redirectSetDest RedirectTemporary $ liftAuthRoute y r
|
||||||
|
|
||||||
-- | Redirect to the given URL, and set a cookie with the current URL so the
|
-- | Redirect to the given URL, and set a cookie with the current URL so the
|
||||||
-- user will ultimately be sent back here.
|
-- user will ultimately be sent back here.
|
||||||
redirectSetDest :: RedirectType
|
redirectSetDest :: RedirectType
|
||||||
-> Routes sub -- ^ redirect page
|
-> Routes master
|
||||||
-> GHandler sub master a
|
-> GHandler sub master a
|
||||||
redirectSetDest rt dest = do
|
redirectSetDest rt dest = do
|
||||||
ur <- getUrlRender
|
ur <- getUrlRender
|
||||||
toMaster <- getRouteToMaster
|
|
||||||
curr <- getRoute
|
curr <- getRoute
|
||||||
let curr' = case curr of
|
let curr' = case curr of
|
||||||
Just x -> ur x
|
Just x -> ur x
|
||||||
Nothing -> "/" -- should never happen anyway
|
Nothing -> "/" -- should never happen anyway
|
||||||
addCookie destCookieTimeout destCookieName curr'
|
addCookie destCookieTimeout destCookieName curr'
|
||||||
redirect rt $ toMaster dest
|
redirect rt dest
|
||||||
|
|
||||||
-- | Read the 'destCookieName' cookie and redirect to this destination. If the
|
-- | Read the 'destCookieName' cookie and redirect to this destination. If the
|
||||||
-- cookie is missing, then use the default path provided.
|
-- cookie is missing, then use the default path provided.
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user