[catagits/Catalyst-Plugin-Authentication.git] / lib / Catalyst / Plugin / Authentication.pm

#!/usr/bin/perl

package Catalyst::Plugin::Authentication;

use base qw/Class::Accessor::Fast Class::Data::Inheritable/;

BEGIN {
    __PACKAGE__->mk_accessors(qw/_user/);
    __PACKAGE__->mk_classdata($_) for qw/_auth_stores _auth_store_names/;
}

use strict;
use warnings;

use Tie::RefHash;
use Class::Inspector;

our $VERSION = "0.01";

sub set_authenticated {
    my ( $c, $user ) = @_;

    $c->user($user);

    if (    $c->isa("Catalyst::Plugin::Session")
        and $c->config->{authentication}{use_session}
        and $user->supports("session") )
    {
        $c->save_user_in_session($user);
    }
}

sub user {
	my $c = shift;

	if ( @_ ) {
		return $c->_user( @_ );
	}

	my $user = $c->_user;

	if ( $user and !Scalar::Util::blessed( $user ) ) {
		return $c->auth_restore_user( $user );
	}

	return $user;
}

sub save_user_in_session {
	my ( $c, $user ) = @_;

    my $store = $user->store || ref $user;
    $c->session->{__user_store} = $c->get_auth_store_name($store) || $store;
    $c->session->{__user} = $user->for_session;
}

sub logout {
    my $c = shift;

    $c->user(undef);

    if (    $c->isa("Catalyst::Plugin::Session")
        and $c->config->{authentication}{use_session} )
    {
        delete @{ $c->session }{qw/__user __user_store/};
    }
}

sub get_user {
    my ( $c, $uid ) = @_;

    if ( my $store = $c->default_auth_store ) {
        return $store->get_user($uid);
    }
    else {
        Catalyst::Exception->throw(
                "The user id $uid was passed to an authentication "
              . "plugin, but no default store was specified" );
    }
}

sub prepare {
    my $c = shift->NEXT::prepare(@_);

    if (    $c->isa("Catalyst::Plugin::Session")
        and $c->default_auth_store
        and !$c->user )
    {
        if ( $c->sessionid and my $frozen_user = $c->session->{__user} ) {
			$c->_user( $frozen_user );
        }
    }

    return $c;
}

sub auth_restore_user {
	my ( $c, $frozen_user, $store_name ) = @_;

	$store_name  ||= $c->session->{__user_store};
	$frozen_user ||= $c->session->{__user};

	my $store = $c->get_auth_store( $store_name );
	$c->_user( my $user = $store->from_session( $c, $frozen_user ) );
	$c->request->{user} = $user;    # compatibility kludge

	return $user;

}

sub setup {
    my $c = shift;

    my $cfg = $c->config->{authentication} || {};

    %$cfg = (
        use_session => 1,
        %$cfg,
    );

    $c->register_auth_stores(
        default => $cfg->{store},
        %{ $cfg->{stores} || {} },
    );

    $c->NEXT::setup(@_);
}

sub get_auth_store {
    my ( $self, $name ) = @_;
    $self->auth_stores->{$name} || ( Class::Inspector->loaded($name) && $name );
}

sub get_auth_store_name {
    my ( $self, $store ) = @_;
    $self->auth_store_names->{$store};
}

sub register_auth_stores {
    my ( $self, %new ) = @_;

    foreach my $name ( keys %new ) {
        my $store = $new{$name} or next;
        $self->auth_stores->{$name}       = $store;
        $self->auth_store_names->{$store} = $name;
    }
}

sub auth_stores {
    my $self = shift;
    $self->_auth_stores(@_) || $self->_auth_stores( {} );
}

sub auth_store_names {
    my $self = shift;

    unless ( $self->_auth_store_names ) {
        tie my %hash, 'Tie::RefHash';
        $self->_auth_store_names( \%hash );
    }

    $self->_auth_store_names;
}

sub default_auth_store {
    my $self = shift;

    if ( my $new = shift ) {
        $self->register_auth_stores( default => $new );
    }

    $self->get_auth_store("default");
}

__PACKAGE__;

__END__

=pod

=head1 NAME

Catalyst::Plugin::Authentication - 

=head1 SYNOPSIS

	use Catalyst qw/
		Authentication
		Authentication::Store::Foo
		Authentication::Credential::Password
	/;

=head1 DESCRIPTION

The authentication plugin is used by the various authentication and
authorization plugins in catalyst.

It defines the notion of a logged in user, and provides integration with the 

=head1 METHODS

=over 4 

=item logout

Delete the currently logged in user from C<user> and the session.

=item user

Returns the currently logged user or undef if there is none.

=item get_user $uid

Delegate C<get_user> to the default store.

=item default_auth_store

Returns C<< $c->config->{authentication}{store} >>.

=back

=head1 INTERNAL METHODS

=over 4

=item set_authenticated $user

Marks a user as authenticated. Should be called from a
C<Catalyst::Plugin::Authentication::Credential> plugin after successful
authentication.

This involves setting C<user> and the internal data in C<session> if
L<Catalyst::Plugin::Session> is loaded.

=item prepare

Revives a user from the session object if there is one.

=item setup

Sets the default configuration parameters.

=item 

=back

=head1 CONFIGURATION

=over 4

=item use_session

Whether or not to store the user's logged in state in the session, if the
application is also using the L<Catalyst::Plugin::Authentication> plugin.

=back

=cut
Commit	Line	Data
06675d2e	1	#!/usr/bin/perl
	2
	3	package Catalyst::Plugin::Authentication;
	4
b003080b	5	use base qw/Class::Accessor::Fast Class::Data::Inheritable/;
06675d2e	6
b003080b	7	BEGIN {
7bb06c91	8	__PACKAGE__->mk_accessors(qw/_user/);
96777f3a	9	__PACKAGE__->mk_classdata($_) for qw/_auth_stores _auth_store_names/;
b003080b	10	}
06675d2e	11
	12	use strict;
	13	use warnings;
	14
96777f3a	15	use Tie::RefHash;
12dae309	16	use Class::Inspector;
96777f3a	17
c7c003d3	18	our $VERSION = "0.01";
c7c003d3	19
06675d2e	20	sub set_authenticated {
	21	my ( $c, $user ) = @_;
	22
	23	$c->user($user);
	24
	25	if ( $c->isa("Catalyst::Plugin::Session")
96777f3a	26	and $c->config->{authentication}{use_session}
12dae309	27	and $user->supports("session") )
06675d2e	28	{
12dae309	29	$c->save_user_in_session($user);
06675d2e	30	}
	31	}
	32
7bb06c91	33	sub user {
	34	my $c = shift;
	35
	36	if ( @_ ) {
	37	return $c->_user( @_ );
	38	}
	39
	40	my $user = $c->_user;
	41
	42	if ( $user and !Scalar::Util::blessed( $user ) ) {
	43	return $c->auth_restore_user( $user );
	44	}
	45
	46	return $user;
	47	}
	48
12dae309	49	sub save_user_in_session {
	50	my ( $c, $user ) = @_;
	51
	52	my $store = $user->store \|\| ref $user;
	53	$c->session->{__user_store} = $c->get_auth_store_name($store) \|\| $store;
	54	$c->session->{__user} = $user->for_session;
	55	}
	56
06675d2e	57	sub logout {
	58	my $c = shift;
	59
	60	$c->user(undef);
b003080b	61
	62	if ( $c->isa("Catalyst::Plugin::Session")
	63	and $c->config->{authentication}{use_session} )
	64	{
96777f3a	65	delete @{ $c->session }{qw/__user __user_store/};
b003080b	66	}
06675d2e	67	}
06675d2e	68
7d0922d8	69	sub get_user {
	70	my ( $c, $uid ) = @_;
	71
	72	if ( my $store = $c->default_auth_store ) {
	73	return $store->get_user($uid);
	74	}
	75	else {
	76	Catalyst::Exception->throw(
	77	"The user id $uid was passed to an authentication "
	78	. "plugin, but no default store was specified" );
	79	}
	80	}
	81
06675d2e	82	sub prepare {
	83	my $c = shift->NEXT::prepare(@_);
	84
	85	if ( $c->isa("Catalyst::Plugin::Session")
22be989b	86	and $c->default_auth_store
06675d2e	87	and !$c->user )
06675d2e	88	{
7bb06c91	89	if ( $c->sessionid and my $frozen_user = $c->session->{__user} ) {
7bb06c91	90	$c->_user( $frozen_user );
06675d2e	91	}
	92	}
	93
	94	return $c;
	95	}
	96
7bb06c91	97	sub auth_restore_user {
	98	my ( $c, $frozen_user, $store_name ) = @_;
	99
	100	$store_name \|\|= $c->session->{__user_store};
	101	$frozen_user \|\|= $c->session->{__user};
	102
	103	my $store = $c->get_auth_store( $store_name );
	104	$c->_user( my $user = $store->from_session( $c, $frozen_user ) );
	105	$c->request->{user} = $user; # compatibility kludge
	106
	107	return $user;
	108
	109	}
	110
06675d2e	111	sub setup {
	112	my $c = shift;
	113
712a35bf	114	my $cfg = $c->config->{authentication} \|\| {};
06675d2e	115
	116	%$cfg = (
	117	use_session => 1,
	118	%$cfg,
	119	);
b003080b	120
12dae309	121	$c->register_auth_stores(
	122	default => $cfg->{store},
	123	%{ $cfg->{stores} \|\| {} },
	124	);
96777f3a	125
b003080b	126	$c->NEXT::setup(@_);
06675d2e	127	}
06675d2e	128
96777f3a	129	sub get_auth_store {
12dae309	130	my ( $self, $name ) = @_;
12dae309	131	$self->auth_stores->{$name} \|\| ( Class::Inspector->loaded($name) && $name );
96777f3a	132	}
	133
	134	sub get_auth_store_name {
12dae309	135	my ( $self, $store ) = @_;
12dae309	136	$self->auth_store_names->{$store};
96777f3a	137	}
	138
	139	sub register_auth_stores {
12dae309	140	my ( $self, %new ) = @_;
96777f3a	141
12dae309	142	foreach my $name ( keys %new ) {
	143	my $store = $new{$name} or next;
	144	$self->auth_stores->{$name} = $store;
	145	$self->auth_store_names->{$store} = $name;
	146	}
96777f3a	147	}
	148
	149	sub auth_stores {
12dae309	150	my $self = shift;
12dae309	151	$self->_auth_stores(@_) \|\| $self->_auth_stores( {} );
96777f3a	152	}
	153
	154	sub auth_store_names {
12dae309	155	my $self = shift;
96777f3a	156
12dae309	157	unless ( $self->_auth_store_names ) {
	158	tie my %hash, 'Tie::RefHash';
	159	$self->_auth_store_names( \%hash );
	160	}
96777f3a	161
12dae309	162	$self->_auth_store_names;
96777f3a	163	}
	164
	165	sub default_auth_store {
12dae309	166	my $self = shift;
96777f3a	167
12dae309	168	if ( my $new = shift ) {
	169	$self->register_auth_stores( default => $new );
	170	}
96777f3a	171
12dae309	172	$self->get_auth_store("default");
96777f3a	173	}
96777f3a	174
06675d2e	175	__PACKAGE__;
	176
	177	__END__
	178
	179	=pod
	180
	181	=head1 NAME
	182
	183	Catalyst::Plugin::Authentication -
	184
	185	=head1 SYNOPSIS
	186
	187	use Catalyst qw/
	188	Authentication
	189	Authentication::Store::Foo
	190	Authentication::Credential::Password
	191	/;
	192
	193	=head1 DESCRIPTION
	194
	195	The authentication plugin is used by the various authentication and
	196	authorization plugins in catalyst.
	197
	198	It defines the notion of a logged in user, and provides integration with the
	199
	200	=head1 METHODS
	201
	202	=over 4
	203
	204	=item logout
	205
	206	Delete the currently logged in user from C<user> and the session.
	207
	208	=item user
	209
	210	Returns the currently logged user or undef if there is none.
	211
7d0922d8	212	=item get_user $uid
	213
	214	Delegate C<get_user> to the default store.
	215
	216	=item default_auth_store
	217
	218	Returns C<< $c->config->{authentication}{store} >>.
	219
06675d2e	220	=back
	221
	222	=head1 INTERNAL METHODS
	223
	224	=over 4
	225
	226	=item set_authenticated $user
	227
	228	Marks a user as authenticated. Should be called from a
	229	C<Catalyst::Plugin::Authentication::Credential> plugin after successful
	230	authentication.
	231
	232	This involves setting C<user> and the internal data in C<session> if
	233	L<Catalyst::Plugin::Session> is loaded.
	234
	235	=item prepare
	236
	237	Revives a user from the session object if there is one.
	238
	239	=item setup
	240
	241	Sets the default configuration parameters.
	242
	243	=item
	244
	245	=back
	246
	247	=head1 CONFIGURATION
	248
	249	=over 4
	250
	251	=item use_session
	252
	253	Whether or not to store the user's logged in state in the session, if the
	254	application is also using the L<Catalyst::Plugin::Authentication> plugin.
	255
	256	=back
	257
	258	=cut
	259
	260