[catagits/Catalyst-Authentication-Credential-OpenID.git] / t / Provider / lib / TestApp / Controller / Root.pm

package TestApp::Controller::Root;

use strict;
use warnings;
no warnings "uninitialized";
use base 'Catalyst::Controller';
use Net::OpenID::Server;

__PACKAGE__->config->{namespace} = '';

=head1 NAME

TestApp::Controller::Root - Root Controller for TestApp.

=head1 DESCRIPTION

D'er... testing. Has an OpenID provider to test the OpenID credential against.

=cut

sub provider : Local {
    my ( $self, $c, $username ) = @_;

    my $nos = Net::OpenID::Server
        ->new(
              get_args     => $c->req->query_params,
              post_args    => $c->req->body_params,
              get_user => sub { $c->user },
              is_identity  => sub {
                  my ( $user, $identity_url ) = @_;
                  return unless $user;
                  my ( $check ) = $identity_url =~ /(\w+)\z/;
                  return $check eq $user->id; # simple auth here
              },
              is_trusted => sub {
                  my ( $user, $trust_root, $is_identity ) = @_;
                  return $is_identity; # enough that they passed is_identity
              },
              setup_url => $c->uri_for($c->req->path, {moo => "setup"}),
              server_secret => $c->config->{startup_time},
              );

  # From your OpenID server endpoint:

    my ( $type, $data ) = $nos->handle_page;

    if ($type eq "redirect")
    {
        $c->res->redirect($data);
    }
    elsif ($type eq "setup")
    {
        my %setup_opts = %{$data};
        $c->res->body(<<"");
You're not signed in so you can't be verified.
<a href="/login">Sign in</a> | <a href="/signin_openid">OpenId</a>.

      # it's then your job to redirect them at the end to "return_to"
      # (or whatever you've named it in setup_map)
    }
    else
    {
        $c->res->content_type($type);
        if ( $username )
        {
            my $server_uri = $c->uri_for($c->req->path);
            $data =~ s,(?=</head>),<link rel="openid.server" href="$server_uri" />,;
        }
        $c->res->body($data);
    }
}

sub logout : Local {
    my($self, $c) = @_;
    $c->logout if $c->user_exists;
    $c->delete_session();
    $c->res->redirect($c->uri_for("/"));
}

sub login : Local {
    my($self, $c) = @_;

    if ( $c->req->method eq 'POST'
         and
         $c->authenticate({ username => $c->req->body_params->{username},
                            password => $c->req->body_params->{password} }) )
    {
#        $c->res->body("You are signed in!");
        $c->res->redirect($c->uri_for("/"));
    }
    else
    {
        my $action = $c->req->uri->path;
        $c->res->body(<<"");
<html><head/><body><form name="login" action="$action" method="POST">
  <input type="text" name="username" />
  <input type="password" name="password" />
  <input type="submit" value="Sign in" />
</form>
</body></html>

    }
}

sub signin_openid : Local {
    my($self, $c) = @_;

    if ( $c->authenticate({}, "openid") )
    {
        $c->res->body("You did it with OpenID!");
    }
    else
    {
        my $action = $c->req->uri->path;
        $c->res->body(<<"");
 <form action="$action" method="GET" name="openid">
  <input type="text" name="openid_identifier" class="openid" size="50" />
  <input type="submit" value="Sign in with OpenID" />
  </form>

    }
}

sub default : Private {
    my ( $self, $c ) = @_;
    $c->response->body(
                       join(" ",
                            "You are",
                            $c->user ? "" : "not",
                            "signed in. <br/>",
                            $c->user ? ( $c->user->id || %{$c->user} ) : '<a href="/login">Sign in</a> | <a href="/signin_openid">OpenId</a>.'
                            )
                       );
}

sub end : Private {
    my ( $self, $c ) = @_;
    $c->response->content_type("text/html");
}

=head1 LICENSE

This library is free software, you can redistribute it and modify
it under the same terms as Perl itself.

=cut

1;
Commit	Line	Data
19439725	1	package TestApp::Controller::Root;
	2
	3	use strict;
	4	use warnings;
	5	no warnings "uninitialized";
	6	use base 'Catalyst::Controller';
	7	use Net::OpenID::Server;
	8
	9	__PACKAGE__->config->{namespace} = '';
	10
	11	=head1 NAME
	12
	13	TestApp::Controller::Root - Root Controller for TestApp.
	14
	15	=head1 DESCRIPTION
	16
	17	D'er... testing. Has an OpenID provider to test the OpenID credential against.
	18
	19	=cut
	20
	21	sub provider : Local {
	22	my ( $self, $c, $username ) = @_;
	23
	24	my $nos = Net::OpenID::Server
	25	->new(
	26	get_args => $c->req->query_params,
	27	post_args => $c->req->body_params,
	28	get_user => sub { $c->user },
	29	is_identity => sub {
	30	my ( $user, $identity_url ) = @_;
	31	return unless $user;
	32	my ( $check ) = $identity_url =~ /(\w+)\z/;
	33	return $check eq $user->id; # simple auth here
	34	},
	35	is_trusted => sub {
	36	my ( $user, $trust_root, $is_identity ) = @_;
	37	return $is_identity; # enough that they passed is_identity
	38	},
	39	setup_url => $c->uri_for($c->req->path, {moo => "setup"}),
	40	server_secret => $c->config->{startup_time},
	41	);
	42
	43	# From your OpenID server endpoint:
	44
	45	my ( $type, $data ) = $nos->handle_page;
	46
	47	if ($type eq "redirect")
	48	{
	49	$c->res->redirect($data);
	50	}
	51	elsif ($type eq "setup")
	52	{
	53	my %setup_opts = %{$data};
	54	$c->res->body(<<"");
	55	You're not signed in so you can't be verified.
	56	<a href="/login">Sign in</a> \| <a href="/signin_openid">OpenId</a>.
	57
	58	# it's then your job to redirect them at the end to "return_to"
	59	# (or whatever you've named it in setup_map)
	60	}
	61	else
	62	{
	63	$c->res->content_type($type);
	64	if ( $username )
65	{
66	my $server_uri = $c->uri_for($c->req->path);
67	$data =~ s,(?=</head>),<link rel="openid.server" href="$server_uri" />,;
68	}
69	$c->res->body($data);
70	}
71	}
72
73	sub logout : Local {
74	my($self, $c) = @_;
75	$c->logout if $c->user_exists;
76	$c->delete_session();
77	$c->res->redirect($c->uri_for("/"));
78	}
79
80	sub login : Local {
81	my($self, $c) = @_;
82
83	if ( $c->req->method eq 'POST'
84	and
85	$c->authenticate({ username => $c->req->body_params->{username},
86	password => $c->req->body_params->{password} }) )
87	{
88	# $c->res->body("You are signed in!");
89	$c->res->redirect($c->uri_for("/"));
90	}
91	else
92	{
93	my $action = $c->req->uri->path;
94	$c->res->body(<<"");
95	<html><head/><body><form name="login" action="$action" method="POST">
96	<input type="text" name="username" />
97	<input type="password" name="password" />
98	<input type="submit" value="Sign in" />
99	</form>
100	</body></html>
101
102	}
103	}
104
105	sub signin_openid : Local {
106	my($self, $c) = @_;
107
108	if ( $c->authenticate({}, "openid") )
109	{
110	$c->res->body("You did it with OpenID!");
111	}
112	else
113	{
114	my $action = $c->req->uri->path;
115	$c->res->body(<<"");
116	<form action="$action" method="GET" name="openid">
117	<input type="text" name="openid_identifier" class="openid" size="50" />
118	<input type="submit" value="Sign in with OpenID" />
119	</form>
120
121	}
122	}
123
124	sub default : Private {
125	my ( $self, $c ) = @_;
126	$c->response->body(
127	join(" ",
128	"You are",
129	$c->user ? "" : "not",
130	"signed in. <br/>",
131	$c->user ? ( $c->user->id \|\| %{$c->user} ) : '<a href="/login">Sign in</a> \| <a href="/signin_openid">OpenId</a>.'
132	)
133	);
134	}
135
136	sub end : Private {
137	my ( $self, $c ) = @_;
138	$c->response->content_type("text/html");
139	}
140
141	=head1 LICENSE
142
143	This library is free software, you can redistribute it and modify
144	it under the same terms as Perl itself.
145
146	=cut
147
148	1;