Mercurial > pub > Impl
annotate Lib/IMPL/Web/QueryHandler/SecureCookie.pm @ 96:4c55aed00ff2
Minor changes
| author | wizard |
|---|---|
| date | Fri, 30 Apr 2010 15:03:38 +0400 |
| parents | 67eb8eaec3d4 |
| children | 964587c5183c |
| rev | line source |
|---|---|
| 73 | 1 package IMPL::Web::QueryHandler::SecureCookie; |
|
95
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
2 use strict; |
| 68 | 3 |
| 4 use base qw(IMPL::Web::QueryHandler); | |
| 5 use Digest::MD5 qw(md5_hex); | |
| 6 | |
| 7 use IMPL::Class::Property; | |
| 69 | 8 use IMPL::Security::Auth qw(:Const); |
|
95
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
9 use IMPL::Security; |
| 68 | 10 |
| 11 BEGIN { | |
| 12 public property salt => prop_all; | |
| 13 } | |
| 14 | |
| 69 | 15 sub CTOR { |
| 16 my ($this) = @_; | |
| 17 | |
| 75 | 18 $this->salt('DeadBeef') unless $this->salt; |
| 69 | 19 } |
| 20 | |
| 68 | 21 sub Process { |
| 22 my ($this,$action,$nextHandler) = @_; | |
| 23 | |
| 75 | 24 return undef unless $nextHandler; |
| 25 | |
| 68 | 26 my $method = $action->query->cookie('method') || 'simple'; |
| 27 | |
| 28 if ($method eq 'simple') { | |
| 29 | |
| 69 | 30 my $sid = $action->query->cookie('sid'); |
| 75 | 31 my $cookie = $action->query->cookie('sdata'); |
| 32 my $sign = $action->query->cookie('sign'); | |
| 69 | 33 |
| 75 | 34 if ( |
| 35 $sid and | |
| 36 $cookie and | |
| 37 $sign and | |
| 38 $sign eq md5_hex( | |
| 39 $this->salt, | |
| 40 $sid, | |
| 41 $cookie, | |
| 42 $this->salt | |
| 43 ) | |
| 44 ) { | |
|
95
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
45 local $IMPL::Security::authority = $this; |
| 68 | 46 |
| 89 | 47 my $context = $action->application->security->sourceSession->find( |
| 48 { id => $sid } | |
| 49 ) or return $nextHandler->(); | |
| 69 | 50 |
| 74 | 51 my ($result,$challenge) = $context->auth->ValidateSession($cookie); |
| 68 | 52 |
| 69 | 53 if ($result == AUTH_SUCCESS) { |
|
95
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
54 $context->authority($this); |
| 69 | 55 return $context->Impersonate($nextHandler); |
| 56 } else { | |
| 57 return $nextHandler->(); | |
| 58 } | |
| 68 | 59 } |
| 60 } else { | |
| 61 die new IMPL::Exception("Unknown auth method",$method); | |
| 62 } | |
| 63 } | |
| 64 | |
|
95
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
65 sub WriteResponse { |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
66 my ($this,$response,$sid,$cookie,$method) = @_; |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
67 |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
68 my $sign = md5_hex( |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
69 $this->salt, |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
70 $sid, |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
71 $cookie, |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
72 $this->salt |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
73 ); |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
74 |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
75 $this->setCookie(sid => $sid); |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
76 $this->setCookie(sdata => $cookie); |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
77 $this->setCookie(sign => $sign); |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
78 $this->setCookie(method => $method) if $method; |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
79 } |
|
67eb8eaec3d4
Added a security authority property to the Context and Security classes
wizard
parents:
89
diff
changeset
|
80 |
| 75 | 81 1; |
| 68 | 82 |
| 75 | 83 __END__ |
| 84 | |
| 85 =pod | |
| 86 | |
| 87 =head1 NAME | |
| 88 | |
| 89 C<IMPL::Web::QueryHandler::SecureCookie> | |
| 90 | |
| 91 =head1 DESCRIPTION | |
| 92 | |
| 93 C<use base qw(IMPL::Web::QueryHandler)> | |
| 94 | |
| 95 Возобновляет сессию пользователя на основе информации переданной через Cookie. | |
| 96 | |
| 97 Использует механизм подписи информации для проверки верности входных данных перед | |
| 98 началом каких-либо действий. | |
| 99 | |
| 100 Данный обработчик возвращает результат выполнения следдующего обработчика. | |
| 101 | |
| 102 =head1 MEMBERS | |
| 103 | |
| 104 =over | |
| 105 | |
| 106 =item C<[get,set] salt> | |
| 107 | |
| 108 Скаляр, использующийся для подписи данных. | |
| 109 | |
| 110 =back | |
| 111 | |
| 112 =cut |