File: BasicAuth.pm

package info (click to toggle)
movabletype-opensource 5.1.4%2Bdfsg-4%2Bdeb7u3
  • links: PTS, VCS
  • area: main
  • in suites: wheezy
  • size: 32,996 kB
  • sloc: perl: 197,285; php: 62,405; sh: 166; xml: 117; makefile: 83; sql: 32
file content (113 lines) | stat: -rw-r--r-- 2,327 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
 
# Movable Type (r) Open Source (C) 2001-2012 Six Apart, Ltd.
# This program is distributed under the terms of the
# GNU General Public License, version 2.
#
# $Id$

package MT::Auth::BasicAuth;

use strict;
use base 'MT::Auth::MT';
use MT::Author qw(AUTHOR);

sub can_recover_password {0}
sub is_profile_needed    {1}
sub password_exists      {0}
sub delegate_auth        {1}
sub can_logout           {0}

sub new_user {
    my $auth = shift;
    my ( $app, $user ) = @_;
    $user->password('(none)');
    0;
}

sub remote_user {
    my $auth = shift;
    my ($ctx) = @_;
    if ( $ENV{MOD_PERL} ) {
        my $app = $ctx->{app} or return;
        return $app->{apache}->connection->user;
    }
    return $ENV{REMOTE_USER};
}

sub fetch_credentials {
    my $auth        = shift;
    my ($ctx)       = @_;
    my $remote_user = $auth->remote_user($ctx);
    my $fallback    = { %$ctx, username => $remote_user };
    $ctx = $auth->SUPER::session_credentials(@_);
    if ( !defined $ctx ) {
        if ($remote_user) {
            $ctx = $fallback;
        }
        else {
            return undef;
        }
    }
    if ( $ctx->{username} ne $remote_user ) {
        $ctx = $fallback;
    }
    $ctx;
}

sub validate_credentials {
    my $auth = shift;
    my ( $ctx, %opt ) = @_;

    my $app  = $ctx->{app};
    my $user = $ctx->{username};
    return undef unless ( defined $user ) && ( $user ne '' );

    my $result = MT::Auth::UNKNOWN();

    # load author from db
    my $author = MT::Author->load(
        {   name      => $user,
            type      => AUTHOR,
            auth_type => $app->config->AuthenticationModule
        }
    );
    if ($author) {

        # author status validation
        if ( $author->is_active ) {
            $result = MT::Auth::SUCCESS();
            $app->user($author);

            $result = MT::Auth::NEW_LOGIN()
                unless $app->session_user( $author, $ctx->{session_id},
                %opt );
        }
        else {
            $result = MT::Auth::INACTIVE();
        }
    }
    else {
        if ( $app->config->ExternalUserManagement ) {
            $result = MT::Auth::NEW_USER();
        }
    }

    return $result;
}

1;

__END__

=head1 NAME

MT::Auth::MT

=head1 METHODS

TODO

=head1 AUTHOR & COPYRIGHT

Please see L<MT/AUTHOR & COPYRIGHT>.

=cut