Jedi::Plugin::Auth - Auth for Jedi
version 0.01
Auth for Jedi is a package that handle authentication storage for you.
You can signin, login, logout, signout and get the list of user.
You can also store additional information.
All user have a login and password, and get a unique user id (UUID) at the creation.
You can use that UUID in your database to keep the list of action an user have made.
package MyApps; use Data::UUID; use Jedi::Apps; use Jedi::Plugin::Template; use Jedi::Plugin::Session; #mandatory for the Auth use Jedi::Plugin::Auth; sub jedi_apps { my ($app) = @_; $app->get('/login', $app->can('handle_login')); $app->get('/signin', $app->can('handle_signin')); $app->get('/activate', $app->can('handle_activate')); } sub handle_login { my ($app, $request, $response) = @_; my ($login, $password) = map { $request->params->{$_} } qw/user password/; my $user = $app->jedi_auth_login($request, user => $user, password => $password); if ($user->{status} eq 'ok') { #redirect to index $response->status('302'); $response->set_header('Location' => '/'); return 0; #stop propagation } else { $response->status('200'); $response->body($app->template('index'), {error_msg => 'bad login'}); } } sub handle_signin { my ($app, $request, $response) = @_; my ($login, $password, $email, $roles) = map { $request->params->{$_} } qw/user password email roles/; my $user = $app->jedi_auth_signin( user => $login, password => $password, #auto sha1 roles => [split /,/, $roles // ''], info => { email => $email, activated => 0, activate_token => Data::UUID->new->create_str; } ); if ($user->{status} eq 'ok') { #please activate your account by mail } else { #display error # $user->{missing} if a field is missing # $user->{error_msg} for DB error, you can check 'user is not uniq' or stuff like that } } sub handle_activate { my ($app, $request, $response) = @_; my ($user, $activate_token) = map { $request->params->{$_} } qw/user token/; my $users = $app->jedi_auth_users($user); my $user = shift @$users; if (!defined $user) { # user not found } else { if ($user->{info}{activate_token} eq $activate_token) { # activate $app->jedi_auth_update($request, user => $user, info => {activate_token => undef, activated => 0}); # display ok } else { # display error } } }
Create a new user
$app->jedi_auth_signin( user => 'admin', password => 'admin', uuid => 'XXXXXXXXXXXXXXX' #SHA1 Hex Base64 roles => ['admin'], info => { activated => 0, label => 'Administrator', email => 'admin@admin.local', blog => 'http://blog.celogeek.com', live => 'geistteufel@live.fr', created_at => 1388163353, last_login => 1388164353, } );
Roles are dynamically added. Your apps need to handle the relation between each role.
For example : admin include poweruser, user ...
Return :
{ status => 'ok', user => 'admin', uuid => Data::UUID string, info => { activated => 0, label => 'Administrator', email => 'admin@admin.local', blog => 'http://blog.celogeek.com', live => 'geistteufel@live.fr', created_at => 1388163353, last_login => 1388164353, }, roles => ['admin'], }
In case of missing fields :
{ status => 'ko', missing => ['list of missing fields'], }
For db errors (duplicate ...) :
{ status => 'ko', error_msg => "$@", }
Destroy an user
$app->jedi_auth_signout('admin')
If you want to destroy the current user, ensure to logout first
if ($request->session_get->{auth}{user} eq 'admin') { $app->jedi_auth_logout($request); } $app->jedi_auth_signout('admin')
Login the user
$app->jedi_auth_login( $request, user => 'admin', password => 'admin', );
{ status => 'ok', uuid => "uuid string", info => { INFO HASH }, roles => [ ROLES ] } { status => 'ko' }
The user info will be save in the session of user :
$request->session_get->{auth} = { user => 'admin', uuid => Data::UUID string, info => { activated => 0, label => 'Administrator', email => 'admin@admin.local', blog => 'http://blog.celogeek.com', live => 'geistteufel@live.fr', created_at => 1388163353, last_login => 1388164353, }, roles => ['admin'], }
Logout the current login user
$app->jedi_auth_logout($request)
Update the user account
$app->jedi_auth_update( $request, user => 'admin', info => { activated => 1, } )
It will update the 'admin' user, and add/change the info.activated to 1. All the other info will be keep.
To clear an info key :
$app->jedi_auth_update( $request, user => 'admin', info => { blog => undef, } )
Return the list of user with a specific role.
Only the "user" key is returned
$app->jedi_auth_users_with_role('admin'); # ["admin"]
Return the number of users in the databases
$app->jedi_auth_users_count() # 1
Return the list of all users with info :
$app->jedi_auth_users
Return only the info of the user admin :
$app->jedi_auth_users('admin')
Return the info of user admin and test :
$app->jedi_auth_users('admin', 'test')
By default the plugin will store a SQLite DB file into the dist_dir of the Jedi::Plugin::Auth. It will use the classname of your apps to store the database only for your app.
You can change the root of the storage for your app like this in the configuration of Jedi::Launcher :
MyApps: auth: sqlite: path: /var/lib/auth/
Please report any bugs or feature requests on the bugtracker website https://github.com/celogeek/perl-jedi-plugin-auth/issues
When submitting a bug or request, please include a test-file or a patch to an existing test-file that illustrates the bug or desired feature.
celogeek <me@celogeek.com>
This software is copyright (c) 2013 by celogeek <me@celogeek.com>.
This is free software; you can redistribute it and/or modify it under the same terms as the Perl 5 programming language system itself.
To install Jedi::Plugin::Auth, copy and paste the appropriate command in to your terminal.
cpanm
cpanm Jedi::Plugin::Auth
CPAN shell
perl -MCPAN -e shell install Jedi::Plugin::Auth
For more information on module installation, please visit the detailed CPAN module installation guide.