Jocelyn Fiat
16cae0047d
Now, all formats used by CMS are instances of CMS_FORMAT, mainly to prepare the admin section in order to define format by config/database. CMS_NODE_API provides all queries to access the content types, and formats, this way a module can easily alter the formats by adding a new filter. TODO: see how to integrate permission checking, to control who can use a specific format (such as full HTML).
194 lines
5.0 KiB
Plaintext
194 lines
5.0 KiB
Plaintext
note
|
|
description: "Summary description for {CMS_OPENID_STORAGE_SQL}."
|
|
date: "$Date$"
|
|
revision: "$Revision$"
|
|
|
|
class
|
|
CMS_OPENID_STORAGE_SQL
|
|
|
|
inherit
|
|
CMS_OPENID_STORAGE_I
|
|
|
|
CMS_PROXY_STORAGE_SQL
|
|
|
|
CMS_OPENID_STORAGE_I
|
|
|
|
CMS_STORAGE_SQL_I
|
|
|
|
REFACTORING_HELPER
|
|
|
|
create
|
|
make
|
|
|
|
feature -- Access User Outh
|
|
|
|
user_openid_by_userid_identity (a_uid: like {CMS_USER}.id; a_identity: READABLE_STRING_GENERAL): detachable CMS_USER
|
|
-- <Precursor>
|
|
local
|
|
l_parameters: STRING_TABLE [detachable ANY]
|
|
do
|
|
error_handler.reset
|
|
write_information_log (generator + ".user_openid_by_userid_identity")
|
|
create l_parameters.make (1)
|
|
l_parameters.put (a_uid, "uid")
|
|
l_parameters.put (a_identity, "identity")
|
|
sql_query (Select_user_openid_by_id, l_parameters)
|
|
if sql_rows_count = 1 then
|
|
Result := fetch_user
|
|
else
|
|
check no_more_than_one: sql_rows_count = 0 end
|
|
end
|
|
end
|
|
|
|
user_openid_by_identity (a_identity: READABLE_STRING_GENERAL): detachable CMS_USER
|
|
-- <Precursor>
|
|
local
|
|
l_parameters: STRING_TABLE [detachable ANY]
|
|
do
|
|
error_handler.reset
|
|
write_information_log (generator + ".user_openid_by_identity")
|
|
create l_parameters.make (1)
|
|
l_parameters.put (a_identity, "identity")
|
|
sql_query (Select_user_by_openid_identity, l_parameters)
|
|
if sql_rows_count = 1 then
|
|
Result := fetch_user
|
|
else
|
|
check no_more_than_one: sql_rows_count = 0 end
|
|
end
|
|
end
|
|
|
|
|
|
feature --Access: Consumers
|
|
|
|
openid_consumers: LIST [STRING]
|
|
-- Return a list of consumers, or empty
|
|
do
|
|
error_handler.reset
|
|
create {ARRAYED_LIST [STRING]} Result.make (0)
|
|
write_information_log (generator + ".openid_consumers")
|
|
sql_query (Sql_openid_consumers, Void)
|
|
if not has_error then
|
|
from
|
|
sql_start
|
|
until
|
|
sql_after
|
|
loop
|
|
if attached sql_read_string (1) as l_name then
|
|
Result.force (l_name)
|
|
end
|
|
sql_forth
|
|
end
|
|
end
|
|
end
|
|
|
|
openid_consumer_by_name (a_name: READABLE_STRING_8): detachable CMS_OPENID_CONSUMER
|
|
-- Retrieve a consumer by name `a_name', if any.
|
|
local
|
|
l_parameters: STRING_TABLE [detachable ANY]
|
|
do
|
|
error_handler.reset
|
|
write_information_log (generator + ".openid_consumer_by_name")
|
|
create l_parameters.make (1)
|
|
l_parameters.put (a_name, "name")
|
|
sql_query (sql_openid_consumer_name, l_parameters)
|
|
if sql_rows_count = 1 then
|
|
Result := fetch_consumer
|
|
else
|
|
check no_more_than_one: sql_rows_count = 0 end
|
|
end
|
|
end
|
|
|
|
feature -- Change: User OAuth
|
|
|
|
new_user_openid (a_identity: READABLE_STRING_GENERAL; a_user: CMS_USER)
|
|
-- Add a new user with openid authentication.
|
|
-- <Precursor>.
|
|
local
|
|
l_parameters: STRING_TABLE [detachable ANY]
|
|
do
|
|
error_handler.reset
|
|
sql_begin_transaction
|
|
|
|
write_information_log (generator + ".new_user_openid")
|
|
create l_parameters.make (4)
|
|
l_parameters.put (a_user.id, "uid")
|
|
l_parameters.put (a_identity, "identity")
|
|
l_parameters.put (create {DATE_TIME}.make_now_utc, "utc_date")
|
|
sql_change (Sql_insert_openid, l_parameters)
|
|
sql_commit_transaction
|
|
end
|
|
|
|
feature {NONE} -- Implementation OAuth Consumer
|
|
|
|
fetch_consumer: detachable CMS_OPENID_CONSUMER
|
|
do
|
|
if attached sql_read_integer_64 (1) as l_id then
|
|
create Result.make_with_id (l_id)
|
|
|
|
if attached sql_read_string (2) as l_name then
|
|
Result.set_name (l_name)
|
|
end
|
|
if attached sql_read_string (3) as l_endpoint then
|
|
Result.set_endpoint (l_endpoint)
|
|
end
|
|
end
|
|
end
|
|
|
|
feature {NONE} -- Implementation: User
|
|
|
|
fetch_user: detachable CMS_USER
|
|
local
|
|
l_id: INTEGER_64
|
|
l_name: detachable READABLE_STRING_32
|
|
do
|
|
if attached sql_read_integer_64 (1) as i then
|
|
l_id := i
|
|
end
|
|
if attached sql_read_string_32 (2) as s and then not s.is_whitespace then
|
|
l_name := s
|
|
end
|
|
|
|
if l_name /= Void then
|
|
create Result.make (l_name)
|
|
if l_id > 0 then
|
|
Result.set_id (l_id)
|
|
end
|
|
elseif l_id > 0 then
|
|
create Result.make_with_id (l_id)
|
|
end
|
|
|
|
if Result /= Void then
|
|
if attached sql_read_string (3) as l_password then
|
|
-- FIXME: should we return the password here ???
|
|
Result.set_hashed_password (l_password)
|
|
end
|
|
if attached sql_read_string (5) as l_email then
|
|
Result.set_email (l_email)
|
|
end
|
|
if attached sql_read_integer_32 (6) as l_status then
|
|
Result.set_status (l_status)
|
|
end
|
|
else
|
|
check expected_valid_user: False end
|
|
end
|
|
end
|
|
|
|
feature {NONE} -- User OpenID
|
|
|
|
|
|
Select_user_by_openid_identity: STRING = "SELECT u.* FROM users as u JOIN openid_items as og ON og.uid = u.uid and og.identity = :identity;"
|
|
--| FIXME: replace the u.* by a list of field names, to avoid breaking `featch_user' if two fieds are swiped.
|
|
|
|
Select_user_openid_by_id: STRING = "SELECT u.* FROM users as u JOIN openid_items as og ON og.uid = u.uid and og.uid = :uid and og.identity = :identity;"
|
|
|
|
Sql_insert_openid: STRING = "INSERT INTO openid_items (uid, identity, created) VALUES (:uid, :identity, :utc_date);"
|
|
|
|
Sql_openid_consumers: STRING = "SELECT name FROM openid_consumers";
|
|
|
|
|
|
feature {NONE} -- Consumer
|
|
|
|
Sql_openid_consumer_name: STRING = "SELECT * FROM openid_consumers where name =:name;"
|
|
|
|
end
|