;;; -*- Mode: LISP; Syntax: COMMON-LISP; Package: CL-USER; Base: 10 -*- ;;; $Header: src/auth.lisp $ ;;; Copyright (c) 2008, Andrea Chiumenti. All rights reserved. ;;; Redistribution and use in source and binary forms, with or without ;;; modification, are permitted provided that the following conditions ;;; are met: ;;; * Redistributions of source code must retain the above copyright ;;; notice, this list of conditions and the following disclaimer. ;;; * Redistributions in binary form must reproduce the above ;;; copyright notice, this list of conditions and the following ;;; disclaimer in the documentation and/or other materials ;;; provided with the distribution. ;;; THIS SOFTWARE IS PROVIDED BY THE AUTHOR 'AS IS' AND ANY EXPRESSED ;;; OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED ;;; WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ;;; ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY ;;; DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL ;;; DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE ;;; GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS ;;; INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, ;;; WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING ;;; NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS ;;; SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. (in-package :claw-demo-frontend) (defclass demo-principal (principal) ((firstname :initarg :firstname :accessor demo-principal-firstname) (surname :initarg :surname :accessor demo-principal-surname)) (:default-initargs :firstname "" :surname "")) (defclass demo-configuration (configuration) () (:documentation "Authorization configuration for application atuhentication and authorization management.")) (defmethod configuration-login ((configuration demo-configuration)) (let ((claw-demo-backend:*claw-demo-db* (db-connect))) (multiple-value-bind (user password) (if (eq (lisplet-authentication-type *claw-current-lisplet*) :basic) (claw-authorization) (values (claw-parameter "username") (claw-parameter "password"))) (unwind-protect (let ((user-vo (find-user-by-name user))) (when (and user-vo (string= password (user-password user-vo))) (make-instance 'demo-principal :name (user-username user-vo) :firstname (user-firstname user-vo) :surname (user-surname user-vo) :roles (loop for role in (user-roles user-vo) collect (role-name role))))) (db-disconnect)))))