NAME
Catalyst::Authentication::Store::FromSub - A storage class for Catalyst Authentication using one Catalyst Model class
VERSION
version 0.01
SYNOPSIS
use Catalyst qw/Authentication/;
__PACKAGE__->config->{authentication} = {
default_realm => 'members',
realms => {
members => {
credential => {
class => 'Password',
password_field => 'password',
password_type => 'clear'
},
store => {
class => 'FromSub', # or 'Object'
user_type => 'Hash',
model_class => 'UserAuth',
id_field => 'user_id',
}
}
} };
# Log a user in:
sub login : Global {
my ( $self, $c ) = @_;
$c->authenticate( {
username => $c->req->params->username,
password => $c->req->params->password,
} );
}
package MyApp::Model::UserAuth; # map with model_class in config above
use base qw/Catalyst::Model/;
use strict;
sub auth { # sub name needs to be 'auth'
my ($self, $c, $userinfo) = @_;
my $where;
if (exists $userinfo->{user_id}) { # restore from session (id_field => 'user_id')
$where = { user_id => $userinfo->{user_id} };
} elsif (exists $userinfo->{username}) { # from authenticate
$where = { username => $userinfo->{username} };
} else { return; }
# deal with cache
# if (my $val = $c->cache->get($key) {
# return $val;
# } else {
my $user = $c->model('TestApp')->resultset('User')->search( $where )->first;
$user = $user->{_column_data}; # hash
# $c->cache->set($key, $user);
# }
return $user;
}DESCRIPTION
Catalyst::Authentication::Store::FromSub class provides access to authentication information by using a Catalyst Model sub auth.
In sub auth of the Catalyst model, we can use cache there (or do some complicated code). it would avoid the hit of db every request.
CONFIGURATION
The FromSub authentication store is activated by setting the store config class element to 'FromSub'. See the Catalyst::Plugin::Authentication documentation for more details on configuring the store.
The FromSub storage module has several configuration options
__PACKAGE__->config->{authentication} = {
default_realm => 'members',
realms => {
members => {
credential => {
# ...
},
store => {
class => 'FromSub',
user_type => 'Object',
model_class => 'UserAuth',
id_field => 'user_id',
}
}
}
};
authentication:
default_realm: 'members'
realms:
members:
credential:
class: 'Password'
store:
class: 'FromSub'
user_type: 'Object'
model_class: "UserAuth"- class
-
Class is part of the core Catalyst::Authentication::Plugin module, it contains the class name of the store to be used. it must be 'FromSub' here.
- user_type
-
'Hash' or 'Object', depends on the return value in sub auth, REQUIRED.
- model_class
-
Contains the class name (as passed to $c->model()) of Catalyst. This config item is REQUIRED.
- id_field
-
For restore from session, we pass { $id_field => $c->session->{__user}->{$id_field} } to sub auth, so be sure you deal with this $userinfo in sub auth like
sub auth { # sub name needs to be 'auth' my ($self, $c, $userinfo) = @_; my $where; if (exists $userinfo->{user_id}) { # restore from session (id_field => 'user_id') $where = { user_id => $userinfo->{user_id} }; } elsif (exists $userinfo->{username}) { # from authenticate $where = { username => $userinfo->{username} }; } else { return; }It is a primary key return by sub auth. Default as 'id'
USAGE
The Catalyst::Authentication::Store::FromSub storage module is not called directly from application code. You interface with it through the $c->authenticate() call.
EXAMPLES
Adv.
# for login
sub login : Global {
my ( $self, $c ) = @_;
$c->authenticate( {
username => $c->req->params->username,
password => $c->req->params->password,
status => [ 'active', 'registered' ],
} );
}
sub is_admin : Global {
my ( $self, $c ) = @_;
# use Set::Object in C::P::A::Roles
eval {
if ( $c->assert_user_roles( qw/admin/ ) ) {
$c->res->body( 'ok' );
}
};
if ($@) {
$c->res->body( 'failed' );
}
}
package MyApp::Model::UserAuth; # map with model_class in config above
use base qw/Catalyst::Model/;
use strict;
sub auth {
my ($self, $c, $userinfo) = @_;
my ($where, $cache_key);
if (exists $userinfo->{user_id}) {
$where = { user_id => $userinfo->{user_id} };
$cache_key = 'global|user|user_id=' . $userinfo->{user_id};
} elsif (exists $userinfo->{username}) {
$where = { username => $userinfo->{username} };
$cache_key = 'global|user|username=' . $userinfo->{username};
} else { return; }
my $user;
if (my $val = $c->cache->get($cache_key) {
$user = $val;
} else {
$user = $c->model('TestApp')->resultset('User')->search( $where )->first;
$user = $user->{_column_data}; # hash to cache
# get user roles
my $role_rs = $c->model('TestApp')->resultset('UserRole')->search( {
user => $user->{id}
} );
while (my $r = $role_rs->next) {
my $role = $c->model('TestApp')->resultset('Role')->find( {
id => $r->roleid
} );
push @{$user->{roles}}, $role->role;
}
# $user = {
# 'roles' => [
# 'admin',
# 'user'
# ],
# 'status' => 'active',
# 'session_data' => undef,
# 'username' => 'jayk',
# 'email' => 'j@cpants.org',
# 'password' => 'letmein',
# 'id' => '3'
#}
$c->cache->set($cache_key, $user);
}
# validate status
if ( exists $userinfo->{status} and ref $userinfo->{status} eq 'ARRAY') {
unless (grep { $_ eq $user->{status} } @{$userinfo->{status}}) {
return;
}
}
return $user;
}SEE ALSO
Catalyst::Plugin::Authentication, Catalyst::Plugin::Authentication::Internals, Catalyst::Plugin::Authorization::Roles
AUTHOR
Fayland Lam <fayland@gmail.com>COPYRIGHT AND LICENSE
This software is copyright (c) 2009 by Fayland Lam.
This is free software; you can redistribute it and/or modify it under the same terms as perl itself.