Context Navigation

Changeset 1207 for trunk

Timestamp:

12/28/12 15:05:24 (11 years ago)

Author:

nanardon

Message:

back to application side authentication to allow a working logout

Location:

trunk/LATMOS-Accounts-Web/lib

Files:

-                      r895
+                      r1207
 sub _login_auth {
     my ($self, $c, $realm, $authinfo) = @_;
+    my $authheader = $c->req->headers->header('Authorization')
+        or do {
+        $c->log->debug('No Authorization header found');
+        return;
+    };
+    # TODO check auth type
+    my ($type, $base64) = $authheader =~ /(\w+) (\S+)/;
+    ($authinfo->{username}, $authinfo->{password})
+        = decode_base64($base64) =~ /^([^:]+):(.*)/;
+    if (!$authinfo) {
+        my $authheader = $c->req->headers->header('Authorization')
+            or do {
+            $c->log->debug('No Authorization header found');
+            return;
+        };
+        # TODO check auth type
+        my ($type, $base64) = $authheader =~ /(\w+) (\S+)/;
+        ($authinfo->{username}, $authinfo->{password})
+            = decode_base64($base64) =~ /^([^:]+):(.*)/;
+    }
     if($c->model('Accounts')->db->connect(

-                      r1148
+                      r1207
 sub auth_required : Private {
     my ( $self, $c ) = @_;
+    $c->res->status(401);
+    $c->res->content_type('text/plain');
+    $c->res->body('Authorization required.');
+    $c->res->headers->push_header(
+        'WWW-Authenticate' => 'Basic realm="Link::Accounts"'
+    );
+    $c->forward('login');
+}
 …
     } else {
         # No need to login for About section
+        if (!$c->authenticate({}, 'la')) {
+        if (!$c->authenticate({ username => $c->req->param('login'), password =>
+                    $c->req->param('password') }, 'la')) {
             $c->forward('auth_required');
             return;

Note: See TracChangeset for help on using the changeset viewer.