[add handling of P_SetAuthId Jeremy Shaw **20110224193722 Ignore-this: d0d330e06b16bdae279d76ffb953a90b ] hunk ./Pages/Login.hs 27 -import Happstack.Server (CookieLife(Session), Response, ServerMonad(..), FilterMonad(..), Happstack, ServerPartT, addCookie, escape, internalServerError, lookCookieValue, lookPairs, mkCookie, seeOther, toResponse) +import Happstack.Server (CookieLife(Session), Response, ServerMonad(..), FilterMonad(..), Happstack, ServerPartT, addCookie, escape, internalServerError, lookCookieValue, lookPairs, mkCookie, seeOther, toResponse, unauthorized) hunk ./Pages/Login.hs 154 +setAuthIdPage :: AuthId -> RouteT ProfileURL (ServerPartT IO) Response +setAuthIdPage authId = + do mAuthToken <- getAuthToken + case mAuthToken of + Nothing -> undefined + (Just authToken) -> + do authIds <- query (IdentifierAuthIds (amIdentifier $ tokenAuthMethod authToken)) -- FIXME: might not be an Identifier + if Set.member authId authIds + then do update (UpdateAuthToken (authToken { tokenAuthId = Just authId })) + seeOther "/" (toResponse "") -- FIXME: don't hardcode destination + else unauthorized =<< + appTemplate "unauthorized" () +

Attempted to set AuthId to <% show $ unAuthId authId %>, but failed because the Identifier is not associated with that AuthId.

+ hunk ./Pages/Login.hs 198 -{- - Nothing -> - do uid <- update (CreateNewProfile (Set.singleton aid)) - update (SetAuthIdUserId aid uid) - return $ toResponse $ "logged in as " ++ show uid - (Just uid) -> - do --} - - - -{- -authIdPicker :: Set AuthId -> RouteT ProfileURL (ServerPartT IO) Response -authIdPicker authIds = - appTemplate "Pick an AuthId" () -

<% mapM auth (Set.toList authIds) %> -

- where - auth authId = -

<% nickName profile %>

--} -{- -data R = - NowUser UserId - | PickAuth (Set AuthIds) --} - -{- -data PickUser - = Picked UserId - | NeedsPickin (Set UserId) - -} - - -{- -authIdsToUserId :: (Happstack m) => Set AuthIds -> m Response -authIdsToUserId authIds = - case Set.size authIds of - 0 -> do aid <- update GenAuthId - uid <- update (CreateNewProfile (Set.singleton aid)) - update (SetAuthIdUserId aid uid) - return $ toResponse $ "logged in as " ++ show uid - 1 -> do let aid = (head $ Set.toList authIds) - mUid <- query (AuthIdUserId aid) - case mUid of - Nothing -> -- this probably should not happen ? - do uid <- update (CreateNewProfile (Set.singleton aid)) - update (SetAuthIdUserId aid uid) - return $ toResponse $ "logged in as " ++ show uid - (Just uid) -> - do --} --- n -> do - - - -- here we have multiple auth ids to pick from. We need to show the user something. But that means stopping and generating a new page. but we will lose the Identifier then. - - - - -{- -foo :: (Happstack m) => Identifier -> m Response -foo identifier = - do userIds <- query (IdentifierToUserId identifier) - case Set.size userIds of - -- new, never before identifier - -- create a new account, *or* link to existing acount - 0 -> do uid <- createNewProfile identifier - addAuthCookie uid - return $ toResponse $ "logged in as " ++ show uid - 1 -> do let [uid] = Set.toList userIds - addAuthCookie uid - return $ toResponse $ "logged in as " ++ show uid - -- pick which user to log in as this will likely require - -- information from the profile, which we do not have access - -- to. - -- - -- also, we need a way to remember the identification - -- normally we set an authToken - -- but the authToken is not yet associated with anyone.. - n -> pickProfile userIds - --} --- linkExisting --- --- to link to an existing account we need: --- --- 1. a way to retrieve that account --- 2. a way to prove the person is authorized - hunk ./Pages/Login.hs 199 - - -{- --- liftIO $ putStrLn $ "openIdPage Identifier: " ++ show identifier - mp <- query (AskProfileByIdentifier identifier) --- liftIO $ putStrLn $ "openIdPage mp: " ++ show mp - authToken <- liftIO $ AuthToken <$> (replicateM 32 $ randomRIO ('a', 'z')) -- FIXME: not a good source of randomness --- liftIO $ putStrLn $ "openIdPage authToken: " ++ show authToken - addCookie Session (mkCookie "authToken" (unAuthToken authToken)) - case mp of - Nothing -> - do now <- liftIO $ getCurrentTime - uid <- update (CreateProfile now (Just authToken)) - update (AddIdentifier uid identifier) - seeOtherURL W_EditProfile - (Just p) -> - do r <- update $ SetAuthToken (userId p) (Just authToken) - if r - then seeOtherURL (W_Profile (userId p)) - else internalSeraverError =<< appTemplate "failure." ()

SetAuthToken <% show (userId p, authToken) %> failed.

--} - -{- -loginPage :: StoryPromptsURL -> StoryPromptsURL -> StoryPrompts Response -loginPage _here _onLogin = - do appTemplate "Login" () $ -

Login

Don't want to remember another username and password? Just connect using an account you already have. It is safe and secure and does not share your password or email address with us. Learn more about OpenId here or click on a link below to connect instantly.

If you still don't trust newfangled Internet technology, you can also create an account and login in the old-fashion way.

- -localLoginPage :: StoryPromptsURL -> StoryPromptsURL -> StoryPrompts Response -localLoginPage here onLogin = - do actionURL <- showURL here - appTemplate "Login" () $ -

Login with a username and password

- <% formPart "p" actionURL handleLogin handleFailure loginForm %> -

- where - handleFailure errs formXML = - toResponse <$> appTemplate' "Login" () -

Login with a username and password

- <% formXML %> -

- - handleLogin aid = - do mp <- query (AskProfileByAuthId aid) - case mp of --- Nothing -> internalServerErrorPage "Login was valid, but does not seem to be associated with any profile." - (Just p) -> - do authToken <- liftIO $ AuthToken <$> (replicateM 32 $ randomRIO ('a', 'z')) -- FIXME: not a good source of randomness - update (SetAuthToken (userId p) (Just authToken)) - addCookie Session (mkCookie "authToken" (unAuthToken authToken)) - seeOtherURL onLogin - loginForm :: StoryForm AuthId - loginForm = - (errors ++> (fieldset $ ol (((,) <$> (li $ label "username: " ++> inputText Nothing) <*> (li $ label "password: " ++> inputPassword) <* login) `transform` checkAuth))) <* create - create :: StoryForm () - create = view [

or create a new account

] - - login = li $ (submit "Login") `setAttrs` [("class" := "submit")] - checkAuth = - transformEitherM $ \(username, password) -> - do r <- query (CheckAuth username password) - case r of - Nothing -> return (Left "Invalid username or password") - (Just authId) -> return (Right authId) - - -yahooPage :: Maybe String -> StoryPromptsURL -> StoryPrompts Response -yahooPage realm _onLogin = - do openIdUrl <- showURL (W_Auth A_OpenId) - gotoURL <- liftIO $ getForwardUrlRealm yahoo openIdUrl realm [] - seeOther gotoURL (toResponse gotoURL) - -myspacePage :: Maybe String -> StoryPromptsURL -> StoryPromptsURL -> StoryPrompts Response -myspacePage realm here _onLogin = - do actionURL <- showURL here - appTemplate "Login" () $ -

Login using your myspace account

- <% formPart "p" actionURL (connect realm . myspace) handleFailure usernameForm %> -

- where - usernameForm :: StoryForm String - usernameForm = - label "http://www.myspace.com/" ++> inputString Nothing <* submit "Login" - -liveJournalPage :: Maybe String -> StoryPromptsURL -> StoryPromptsURL -> StoryPrompts Response -liveJournalPage realm here _onLogin = - do actionURL <- showURL here - appTemplate "Login" () $ -

Login using your Live Journal account

Enter your livejournal account name to connect. You may be prompted to log into your livejournal account and to confirm the login.

- <% formPart "p" actionURL (connect realm . livejournal) handleFailure usernameForm %> -

- where - usernameForm :: StoryForm String - usernameForm = - label "http://" ++> inputString Nothing <++ label ".livejournal.com/" <* submit "Connect" - -genericOpenIdPage :: Maybe String -> StoryPromptsURL -> StoryPromptsURL -> StoryPrompts Response -genericOpenIdPage realm here _onLogin = - do actionURL <- showURL here - appTemplate "Login" () $ -

Connect using your OpenId account

- <% formPart "p" actionURL (connect realm) handleFailure usernameForm %> -

- where - usernameForm :: StoryForm String - usernameForm = - label "Your OpenId url: " ++> inputString Nothing <* submit "Connect" - - - - -connect :: Maybe String -> String -> XMLGenT StoryPrompts Response -connect realm url = - do openIdUrl <- showURL (W_Auth A_OpenId) - gotoURL <- liftIO $ getForwardUrlRealm url openIdUrl realm [] - seeOther gotoURL (toResponse gotoURL) - -handleFailure errs formXML = - toResponse <$> appTemplate' "Login" () -

Errors

- <% errorList (map snd errs) %> - <% formXML %> -

- - -{- - do openIdUrl <- showURL (W_Auth A_OpenId) - gotoURL <- liftIO $ getForwardUrl myopenIdUrl - seeOther gotoURL (toResponse gotoURL) --} - - -openIdPage :: StoryPrompts Response -openIdPage = - do pairs' <- lookPairs - let pairs = mapMaybe (\(k, ev) -> case ev of (Left _) -> Nothing ; (Right v) -> Just (k, v)) pairs' - identifier <- liftIO $ authenticate pairs --- liftIO $ putStrLn $ "openIdPage Identifier: " ++ show identifier - mp <- query (AskProfileByIdentifier identifier) --- liftIO $ putStrLn $ "openIdPage mp: " ++ show mp - authToken <- liftIO $ AuthToken <$> (replicateM 32 $ randomRIO ('a', 'z')) -- FIXME: not a good source of randomness --- liftIO $ putStrLn $ "openIdPage authToken: " ++ show authToken - addCookie Session (mkCookie "authToken" (unAuthToken authToken)) - case mp of - Nothing -> - do now <- liftIO $ getCurrentTime - uid <- update (CreateProfile now (Just authToken)) - update (AddIdentifier uid identifier) - seeOtherURL W_EditProfile - (Just p) -> - do r <- update $ SetAuthToken (userId p) (Just authToken) - if r - then seeOtherURL (W_Profile (userId p)) - else internalServerError =<< appTemplate "failure." ()

SetAuthToken <% show (userId p, authToken) %> failed.

--} hunk ./demo.hs 104 - (A_OpenIdProvider authMode Yahoo) -> yahooPage authMode (Just "http://*.n-heptane.com:8000/") + (A_OpenIdProvider authMode Yahoo) -> yahooPage authMode (Just "http://*.n-heptane.com:8000/") hunk ./demo.hs 110 - P_PickProfile -> pickProfile "/" - + P_PickProfile -> pickProfile "/" + (P_SetAuthId authId) -> setAuthIdPage authId