Change-Id: Id02d7d764bf69de0d39cd5cb75eda1ecd2f552cfchanges/19/4519/14
Kirill Solomko
10 years ago
parent
56b566946c
commit
c2922071ef
@ -0,0 +1,87 @@
|
|||||||
|
package NGCP::Panel::AuthenticationStore::System;
|
||||||
|
use Sipwise::Base;
|
||||||
|
use Moose;
|
||||||
|
use namespace::autoclean;
|
||||||
|
use NGCP::Panel::AuthenticationStore::SystemRole;
|
||||||
|
use Config::Tiny;
|
||||||
|
|
||||||
|
with 'MooseX::Emulate::Class::Accessor::Fast';
|
||||||
|
use Scalar::Util qw( blessed );
|
||||||
|
|
||||||
|
__PACKAGE__->mk_accessors(qw/acl port user_class/);
|
||||||
|
|
||||||
|
sub new {
|
||||||
|
my ( $class, $config, $app) = @_;
|
||||||
|
|
||||||
|
my $group = $config->{group}
|
||||||
|
or die $class.": group is undefined in the config";
|
||||||
|
my $file = delete $config->{file}
|
||||||
|
or die $class.": file is not specified in the config";
|
||||||
|
my $api_cfg = Config::Tiny->read($file)
|
||||||
|
or die "Cannot read $file: $!";
|
||||||
|
|
||||||
|
my %data;
|
||||||
|
foreach my $key (keys %{$api_cfg->{_}}) {
|
||||||
|
my $val = $api_cfg->{_}{$key};
|
||||||
|
next unless $key =~ s/^(${group}|NGCP_API)_//i;
|
||||||
|
$key = lc $key;
|
||||||
|
foreach my $t (qw(login password roles port)) {
|
||||||
|
$key eq $t and $data{$key} = $val;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
foreach my $key (qw(login password roles port)) {
|
||||||
|
die $class.": undefined $group $key parameter" unless $data{$key};
|
||||||
|
}
|
||||||
|
|
||||||
|
my $self = bless {
|
||||||
|
acl => { $data{login} =>
|
||||||
|
{
|
||||||
|
login => $data{login},
|
||||||
|
password => $data{password},
|
||||||
|
roles => $data{roles},
|
||||||
|
} },
|
||||||
|
port => $data{port},
|
||||||
|
user_class => $config->{user_class} ||
|
||||||
|
"NGCP::Panel::AuthenticationStore::SystemRole",
|
||||||
|
}, $class;
|
||||||
|
|
||||||
|
return $self;
|
||||||
|
}
|
||||||
|
|
||||||
|
sub find_user {
|
||||||
|
my ( $self, $authinfo, $c ) = @_;
|
||||||
|
|
||||||
|
return unless $self->port eq $c->request->env->{SERVER_PORT};
|
||||||
|
|
||||||
|
my $user = $authinfo->{stored} ||
|
||||||
|
$self->acl->{$authinfo->{login}} || return;
|
||||||
|
my $username = $user->{login} || return;
|
||||||
|
|
||||||
|
return unless exists $self->acl->{$username};
|
||||||
|
|
||||||
|
if (ref($user) eq "HASH") {
|
||||||
|
return $self->user_class->new($user);
|
||||||
|
} elsif (ref($user) && blessed($user) &&
|
||||||
|
$user->isa('NGCP::Panel::AuthenticationStore::SystemRole')) {
|
||||||
|
return $user;
|
||||||
|
} else {
|
||||||
|
Catalyst::Exception->throw(
|
||||||
|
"The user '$username' must be a hash reference or an " .
|
||||||
|
"object of class NGCP::Panel::AuthenticationStore::SystemRole");
|
||||||
|
}
|
||||||
|
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
|
||||||
|
sub from_session {
|
||||||
|
my ( $self, $c, $stored ) = @_;
|
||||||
|
|
||||||
|
return $self->find_user( { stored => $stored } );
|
||||||
|
}
|
||||||
|
|
||||||
|
__PACKAGE__->meta->make_immutable(inline_constructor => 0);
|
||||||
|
|
||||||
|
1;
|
||||||
|
|
||||||
|
# vim ts=4 sw=4 et
|
||||||
@ -0,0 +1,15 @@
|
|||||||
|
package NGCP::Panel::AuthenticationStore::SystemRole;
|
||||||
|
use Sipwise::Base;
|
||||||
|
use base 'Catalyst::Authentication::User::Hash';
|
||||||
|
|
||||||
|
sub roles {
|
||||||
|
my $self = shift;
|
||||||
|
|
||||||
|
# return only first role for now
|
||||||
|
return ref($self->{roles}) eq "ARRAY" ? $self->{roles}[0]
|
||||||
|
: $self->{roles};
|
||||||
|
}
|
||||||
|
|
||||||
|
1;
|
||||||
|
|
||||||
|
# vim ts=4 sw=4 et
|
||||||
Loading…
Reference in new issue