Add function for setting password

2011-06-05 19:49:54 +04:00 · 2011-06-05 19:49:54 +04:00 · e81a636020
commit e81a636020
parent 9c5f049114
1 changed files with 11 additions and 3 deletions
--- a/Yesod/Auth/HashDB.hs
+++ b/Yesod/Auth/HashDB.hs
@ -59,6 +59,7 @@
 -------------------------------------------------------------------------------
 module Yesod.Auth.HashDB
    ( HashDBUser(..)
+    , setPassword
    , authHashDB
    , validateUser
    , getAuthIdHashDB
@ -77,7 +78,8 @@ import Yesod.Auth
 import Text.Hamlet (hamlet)

 import Control.Applicative         ((<$>), (<*>))
-import Control.Monad               (replicateM)
+import Control.Monad               (replicateM,liftM)
+import Control.Monad.IO.Class      (MonadIO, liftIO)

 import qualified Data.ByteString.Lazy.Char8 as BS (pack)
 import Data.Digest.Pure.SHA        (sha1, showDigest)
@ -96,8 +98,8 @@ class HashDBUser user where
                     -> user -> user

 -- | Generate random salt. Length of 8 is chosen arbitrarily
-randomSalt :: IO Text
-randomSalt = pack <$> replicateM 8 (randomRIO ('0','z'))
+randomSalt :: MonadIO m => m Text
+randomSalt = pack `liftM` liftIO (replicateM 8 (randomRIO ('0','z')))

 -- | Calculate salted hash using SHA1.
 saltedHash :: Text              -- ^ Salt
@ -106,6 +108,12 @@ saltedHash :: Text              -- ^ Salt
 saltedHash salt = 
  pack . showDigest . sha1 . BS.pack . unpack . append salt

+-- | Set password for user. This function should be used for setting
+--   passwords. It generates random salt and calculates proper hashes.
+setPassword :: (MonadIO m, HashDBUser user) => Text -> user -> m user
+setPassword pwd u = do salt <- randomSalt
+                       return $ setUserHashAndSalt salt (saltedHash salt pwd) u
+

 -- | Given a user ID and password in plaintext, validate them against
 --   the database values.