Change-Id: Id02d7d764bf69de0d39cd5cb75eda1ecd2f552cfchanges/19/4519/14
Kirill Solomko
10 years ago
parent
56b566946c
commit
c2922071ef
@ -0,0 +1,87 @@
|
||||
package NGCP::Panel::AuthenticationStore::System;
|
||||
use Sipwise::Base;
|
||||
use Moose;
|
||||
use namespace::autoclean;
|
||||
use NGCP::Panel::AuthenticationStore::SystemRole;
|
||||
use Config::Tiny;
|
||||
|
||||
with 'MooseX::Emulate::Class::Accessor::Fast';
|
||||
use Scalar::Util qw( blessed );
|
||||
|
||||
__PACKAGE__->mk_accessors(qw/acl port user_class/);
|
||||
|
||||
sub new {
|
||||
my ( $class, $config, $app) = @_;
|
||||
|
||||
my $group = $config->{group}
|
||||
or die $class.": group is undefined in the config";
|
||||
my $file = delete $config->{file}
|
||||
or die $class.": file is not specified in the config";
|
||||
my $api_cfg = Config::Tiny->read($file)
|
||||
or die "Cannot read $file: $!";
|
||||
|
||||
my %data;
|
||||
foreach my $key (keys %{$api_cfg->{_}}) {
|
||||
my $val = $api_cfg->{_}{$key};
|
||||
next unless $key =~ s/^(${group}|NGCP_API)_//i;
|
||||
$key = lc $key;
|
||||
foreach my $t (qw(login password roles port)) {
|
||||
$key eq $t and $data{$key} = $val;
|
||||
}
|
||||
}
|
||||
|
||||
foreach my $key (qw(login password roles port)) {
|
||||
die $class.": undefined $group $key parameter" unless $data{$key};
|
||||
}
|
||||
|
||||
my $self = bless {
|
||||
acl => { $data{login} =>
|
||||
{
|
||||
login => $data{login},
|
||||
password => $data{password},
|
||||
roles => $data{roles},
|
||||
} },
|
||||
port => $data{port},
|
||||
user_class => $config->{user_class} ||
|
||||
"NGCP::Panel::AuthenticationStore::SystemRole",
|
||||
}, $class;
|
||||
|
||||
return $self;
|
||||
}
|
||||
|
||||
sub find_user {
|
||||
my ( $self, $authinfo, $c ) = @_;
|
||||
|
||||
return unless $self->port eq $c->request->env->{SERVER_PORT};
|
||||
|
||||
my $user = $authinfo->{stored} ||
|
||||
$self->acl->{$authinfo->{login}} || return;
|
||||
my $username = $user->{login} || return;
|
||||
|
||||
return unless exists $self->acl->{$username};
|
||||
|
||||
if (ref($user) eq "HASH") {
|
||||
return $self->user_class->new($user);
|
||||
} elsif (ref($user) && blessed($user) &&
|
||||
$user->isa('NGCP::Panel::AuthenticationStore::SystemRole')) {
|
||||
return $user;
|
||||
} else {
|
||||
Catalyst::Exception->throw(
|
||||
"The user '$username' must be a hash reference or an " .
|
||||
"object of class NGCP::Panel::AuthenticationStore::SystemRole");
|
||||
}
|
||||
|
||||
return;
|
||||
}
|
||||
|
||||
sub from_session {
|
||||
my ( $self, $c, $stored ) = @_;
|
||||
|
||||
return $self->find_user( { stored => $stored } );
|
||||
}
|
||||
|
||||
__PACKAGE__->meta->make_immutable(inline_constructor => 0);
|
||||
|
||||
1;
|
||||
|
||||
# vim ts=4 sw=4 et
|
||||
@ -0,0 +1,15 @@
|
||||
package NGCP::Panel::AuthenticationStore::SystemRole;
|
||||
use Sipwise::Base;
|
||||
use base 'Catalyst::Authentication::User::Hash';
|
||||
|
||||
sub roles {
|
||||
my $self = shift;
|
||||
|
||||
# return only first role for now
|
||||
return ref($self->{roles}) eq "ARRAY" ? $self->{roles}[0]
|
||||
: $self->{roles};
|
||||
}
|
||||
|
||||
1;
|
||||
|
||||
# vim ts=4 sw=4 et
|
||||
Loading…
Reference in new issue