Update documention

More concrete module documentation. Now it shows a way to combine 'AuthHardcoded' plugin with other plugins. Fixed some typos.
2015-11-28 17:44:13 +05:00 · 2015-11-28 17:44:13 +05:00 · 4f2f49b5ee
commit 4f2f49b5ee
parent f524ce55ea
1 changed files with 81 additions and 36 deletions
--- a/yesod-auth/Yesod/Auth/Hardcoded.hs
+++ b/yesod-auth/Yesod/Auth/Hardcoded.hs
@ -7,7 +7,7 @@
 {-# LANGUAGE TypeFamilies          #-}
 {-|
 Module      : Yesod.Auth.Hardcoded
-Description : Very simple auth plugin for harcoded auth pairs.
+Description : Very simple auth plugin for hardcoded auth pairs.
 Copyright   : (c) Arthur Fayzrakhmanov, 2015
 License     : MIT
 Maintainer  : heraldhoi@gmail.com
@ -18,39 +18,98 @@ that allowed to log in and visit some specific sections of your website without
 ability to register new managers.  This simple plugin is designed exactly for
 this purpose.
-Here is a quick example usage instruction.
+Here is a quick usage example.
-= Enable plugin
+== Define hardcoded users representation
 First of all, add plugin to 'authPlugins' list:
-@
+Let's assume, that we want to have some hardcoded managers with normal site
-instance YesodAuth App where
+users.  Let's define hardcoded user representation:
  authPlugins _ = [authHardcoded]
@
 = Define a manager data type
@
 data SiteManager = SiteManager
  { manUserName :: Text
  , manPassWord :: Text }
  deriving Show
 siteManagers :: [SiteManager]
 siteManagers = [SiteManager "content editor" "top secret"]
@
-= Describe a plugin instance of your app
+
 == Describe 'YesodAuth' instance
 Now we need to have some convenient 'AuthId' type representing both
 cases:
@
 instance YesodAuth App where
  type AuthId App = Either UserId Text
@
 Here, right @Text@ value will present hardcoded user name (which obviously must
 be unique).
 'AuthId' must have an instance of 'PathPiece' class, this is needed to store
 user identifier in session (this happens in 'setCreds' and 'setCredsRedirect'
 actions) and to read that identifier from session (this happens in
 `dafaultMaybeAuthId` action).  So we have to define it:
@
 import Text.Read (readMaybe)
 instance PathPiece (Either UserId Text) where
  fromPathPiece = readMaybe . unpack
  toPathPiece = pack . show
@
 Quiet simple so far.  Now let's add plugin to 'authPlugins' list, and define
 'authenticate' method, it should return user identifier for given credentials,
 for normal users it is usually persistent key, for hardcoded users we will
 return user name again.
@
 instance YesodAuth App where
  -- ..
  authPlugins _ = [authHardcoded]
  authenticate Creds{..} =
    return
      (case credsPlugin of
         "hardcoded" ->
           case lookupUser credsIdent of
             Nothing -> UserError InvalidLogin
             Just m  -> Authenticated (Right (manUserName m)))
@
 Here @lookupUser@ is just a helper function to lookup hardcoded users by name:
@
 lookupUser :: Text -> Maybe SiteManager
 lookupUser username = find (\m -> manUserName m == username) siteManagers
@
 == Describe an 'YesodAuthPersist' instance
 Now we need to manually define 'YesodAuthPersist' instance.
 > instance YesodAuthPersist App where
 >   type AuthEntity App = Either User SiteManager
 >
 >   getAuthEntity (Left uid) =
 >     do x <- runDB (get uid)
 >        return (Left <$> x)
 >   getAuthEntity (Right username) = return (Right <$> lookupUser username)
 == Define 'YesodAuthHardcoded' instance
 Finally, let's define an plugin instance
@
 instance YesodAuthHardcoded App where
  validatePassword u = return . validPassword u
-  isUserNameExists   = return . lookupUser
+  doesUserNameExist  = return . isJust . lookupUser
 lookupUser :: Text -> Bool
 lookupUser username =
  case find (\m -> manUserName m == username) siteManagers of
    Just _ -> True
    _      -> False
 validPassword :: Text -> Text -> Bool
 validPassword u p =
@ -59,26 +118,12 @@ validPassword u p =
    _      -> False
@
 = One caveat: 'authenticate' action of 'YesodAuth'.
-You may want to store additional information for harcoded users in database, but
+== Conclusion
 in this example let's cheat a bit:
-@
+Now we can use 'maybeAuthId', 'maybeAuthPair', 'requireAuthId', and
-instance YesodAuth App where
+'requireAuthPair', moreover, the returned value makes possible to distinguish
-  authenticate _ =
+normal users and site managers.
    return (Authenticated (toSqlKey 0))
@
 It is also possible to make 'authenticate' action smart enough to examine which
 plugin was used to log in user, e.g.
@
 authenticate creds =
  case credsPlugin creds of
    "hardcoded" -> -- ...
    -- ...
@
 -}
 module Yesod.Auth.Hardcoded
  ( YesodAuthHardcoded(..)