HTTP Basic Authorization for Play 2.0

BasicRealm.scala

import org.apache.commons.codec.binary.Base64.decodeBase64
import play.api._
import play.api.mvc._

trait BasicRealm {
  def name: String
  def authorize(user: String, password: String): Boolean
}

object BasicRealm extends Controller {
  def apply[A](realm: BasicRealm)(action: Action[A]) = Action(action.parser) { request =>
    request.headers.get("Authorization").flatMap { authorization =>
      authorization.split(" ").drop(1).headOption.filter { encoded =>
        new String(decodeBase64(encoded.getBytes)).split(":") match {
          case Array(u, p) if realm.authorize(u, p) => true
          case _ => false
        }
      }.map(_ => action(request))
    }.getOrElse {
      val k = "WWW-Authenticate"
      val v = "Basic realm=\""+realm.name+"\""
      Unauthorized.withHeaders(k -> v)
    }
  }
}

Usage.scala

val realm = new BasicRealm {
  val name = "Secret"
  def authorize(user: String, password: String) = {
    user == "admin" && password == "1234secret"
  }
}

def myAction = BasicRealm(realm) {
  Action { request =>
    Ok
  }
}