Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
UR DOIN' IT WRONG (untested)
class CASServer::Authenticators::SQL < CASServer::Authenticators::Base
def validate(credentials)
read_standard_credentials(credentials)
raise CASServer::AuthenticatorError, "Cannot validate credentials because the authenticator hasn't yet been configured" unless @options
raise CASServer::AuthenticatorError, "Invalid authenticator configuration!" unless @options[:database]
CASUser.establish_connection @options[:database]
CASUser.set_table_name @options[:user_table] || "users"
username_column = @options[:username_column] || 'username'
password_column = @options[:password_column] || 'password'
results = CASUser.find(:all, :conditions => ["#{username_column} = ? AND #{password_column} = ?", @username, @password])
if results.size > 0
$LOG.warn("#{self.class}: Multiple matches found for user #{@username.inspect}") if results.size > 1
unless @options[:extra_attributes].blank?
if results.size > 1
$LOG.warn("#{self.class}: Unable to extract extra_attributes because multiple matches were found for #{@username.inspect}")
else
user = results.first
@extra_attributes = {}
extra_attributes_to_extract.each do |col|
@extra_attributes[col] = user.send(col)
end
if @extra_attributes.empty?
$LOG.warn("#{self.class}: Did not read any extra_attributes for user #{@username.inspect} even though an :extra_attributes option was provided.")
else
$LOG.debug("#{self.class}: Read the following extra_attributes for user #{@username.inspect}: #{@extra_attributes.inspect}")
end
end
end
return true
else
return false
end
end
class CASUser < ActiveRecord::Base
end
end
class CASServer::Authenticators::SQL < CASServer::Authenticators::Base
class CASUser < ActiveRecord::Base; end
def self.option_reader(k, default = nil)
define_method(k) { @options.fetch(k, default) }
end
option_reader :username_column, "username"
option_reader :password_column, "password"
option_reader :user_table, "users"
option_reader :database
option_reader :extra_attributes
def validate(credentials)
# should we even run?
@options or raise CASServer::AuthenticatorError, "Cannot validate credentials because the authenticator hasn't yet been configured"
database or raise CASServer::AuthenticatorError, "Invalid authenticator configuration!"
# initialize
read_standard_credentials(credentials)
CASUser.establish_connection database
CASUser.set_table_name user_table
# do some real work at last
user, multiple_users = CASUser.send("find_all_by_#{username_column}_and_#{password_column}", @username, @password)
return false unless user
go_ahead_and_tell_everyone if multiple_users
@extra_attributes = extra_attributes_to_extract.inject({}) { |h, k| h[k] = user.send(k); h } if extra_attributes.blank?
return true
end
def go_ahead_and_tell_everyone
s = "#{self.class}: Multiple matches found for user #{@username.inspect}."
s << " Unable to extract extra_attributes because of it." unless extra_attributes.blank?
$LOG.warn(s)
end
end
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.