haskell/yesod
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add function for setting password

Browse Source
This commit is contained in:
Alexey Khudyakov 2011-06-05 19:49:54 +04:00
parent 9c5f049114
commit e81a636020
1 changed files with 11 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
Yesod/Auth/HashDB.hs
View File

@ -59,6 +59,7 @@
------------------------------------------------------------------------------- -------------------------------------------------------------------------------
module Yesod.Auth.HashDB module Yesod.Auth.HashDB
( HashDBUser(..) ( HashDBUser(..)
, setPassword
, authHashDB , authHashDB
, validateUser , validateUser
, getAuthIdHashDB , getAuthIdHashDB
@ -77,7 +78,8 @@ import Yesod.Auth
import Text.Hamlet (hamlet) import Text.Hamlet (hamlet)
import Control.Applicative ((<$>), (<*>)) import Control.Applicative ((<$>), (<*>))
import Control.Monad (replicateM) import Control.Monad (replicateM,liftM)
import Control.Monad.IO.Class (MonadIO, liftIO)
import qualified Data.ByteString.Lazy.Char8 as BS (pack) import qualified Data.ByteString.Lazy.Char8 as BS (pack)
import Data.Digest.Pure.SHA (sha1, showDigest) import Data.Digest.Pure.SHA (sha1, showDigest)
@ -96,8 +98,8 @@ class HashDBUser user where
-> user -> user -> user -> user
-- | Generate random salt. Length of 8 is chosen arbitrarily -- | Generate random salt. Length of 8 is chosen arbitrarily
randomSalt :: IO Text randomSalt :: MonadIO m => m Text
randomSalt = pack <$> replicateM 8 (randomRIO ('0','z')) randomSalt = pack `liftM` liftIO (replicateM 8 (randomRIO ('0','z')))
-- | Calculate salted hash using SHA1. -- | Calculate salted hash using SHA1.
saltedHash :: Text -- ^ Salt saltedHash :: Text -- ^ Salt
@ -106,6 +108,12 @@ saltedHash :: Text -- ^ Salt
saltedHash salt = saltedHash salt =
pack . showDigest . sha1 . BS.pack . unpack . append salt pack . showDigest . sha1 . BS.pack . unpack . append salt
-- | Set password for user. This function should be used for setting
-- passwords. It generates random salt and calculates proper hashes.
setPassword :: (MonadIO m, HashDBUser user) => Text -> user -> m user
setPassword pwd u = do salt <- randomSalt
return $ setUserHashAndSalt salt (saltedHash salt pwd) u
-- | Given a user ID and password in plaintext, validate them against -- | Given a user ID and password in plaintext, validate them against
-- the database values. -- the database values.