/usr/include/Wt/Auth/AuthWidget is in libwt-dev 3.3.6+dfsg-1.1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 | // This may look like C code, but it's really -*- C++ -*-
/*
* Copyright (C) 2011 Emweb bvba, Kessel-Lo, Belgium.
*
* See the LICENSE file for terms of use.
*/
#ifndef WT_AUTH_AUTH_WIDGET_H_
#define WT_AUTH_AUTH_WIDGET_H_
#include <Wt/WTemplateFormView>
#include <Wt/Auth/AuthModel>
#include <Wt/Auth/OAuthService>
namespace Wt {
namespace Auth {
class AbstractUserDatabase;
class AuthModel;
class Login;
class User;
/*! \class AuthWidget Wt/Auth/AuthWidget
* \brief An authentication widget.
*
* The authentication widget is a widget that provides a login or
* logout function (depending on whether the user is currently logged
* in). You can use it for either or both purposes.
*
* Login or logout events are signalled to a Login object on which
* this widget acts.
*
* The widget also processes environmental information related to
* authentication:
*
* - email tokens, which are indicated in an internal path. The widget
* uses dialogs (by default) to interact with the user to act on the token.
* - authentication tokens, which are stored in browser cookies, to implement
* remember-me functionality.
*
* The processEnvironment() method initiates this process, and should
* typically be called only at application startup time.
*
* The authentication widget is implemented as a View for an
* AuthModel, which can be set using setModel(). The login logic (at
* this moment only for password-based authentication) is handled by
* this model.
*
* It is very likely that the off-the shelf authentication widget does
* not satisfy entirely to your taste or functional requirements. The
* widget uses three methods to allow customization:
*
* - as a WTemplateFormView, you may change the layout and styling of
* to your liking.
* - the authentication logic is delegated to an AuthModel and can
* can be specialized or can be used with a custom view altogether.
* - the views are created using virtual methods, which may be specialized
* to create a customized view or to apply changes to the default view.
*
* \ingroup auth
*/
class WT_API AuthWidget : public WTemplateFormView
{
public:
/*! \brief Constructor
*
* Creates a new authentication widget. This creates an AuthModel
* using the given authentication service \p baseAuth and user
* database \p users.
*
* The result of authentication changes is propagated to the rest of
* the application using a \p login object.
*
* Authentication services need to be configured in the model().
*/
AuthWidget(const AuthService& baseAuth, AbstractUserDatabase& users,
Login& login, WContainerWidget *parent = 0);
/*! \brief Constructor.
*
* Creates a new authentication widget.
*
* The result of authentication changes is propagated to the rest of
* the application using a \p login object.
*
* You need to call setModel() to configure a model for this view.
*/
AuthWidget(Login& login, WContainerWidget *parent = 0);
/*! \brief Sets a model.
*
* This sets a model to be used for authentication.
*/
void setModel(AuthModel *model);
/*! \brief Returns the model.
*
* The model is used only for the login function.
*
* \sa setModel()
*/
AuthModel *model() const { return model_; }
/*! \brief Returns the login object.
*
* This login object is used to keep track of the user currently
* authenticated.
*/
Login& login() { return login_; }
/*! \brief Sets an internal path for authentication services.
*
* Only the registration function is made available through an
* internal path (so that one can redirect a user to the
* registration page). Other internal paths involved in
* authentication are configured in the service classes:
* - AuthService::setEmailRedirectInternalPath(): email tokens
* - OAuthService::redirectInternalPath(): an internal path used during
* the oauth process.
*/
void setInternalBasePath(const std::string& path);
/*! \brief Returns the internal path.
*
* \sa setInternalBasePath()
*/
std::string internalBasePath() const { return basePath_; }
/*! \brief Configures registration capabilities.
*
* Although the AuthWidget itself does not implement a registration
* view, it may offer a button/link to do so, and calls
* registerNewUser() when a user wishes to register.
*
* Even if registration is not enabled, the result of an
* OAuthService login process may be that a new user is
* identified. Then the createRegistrationView() is also used to
* present this new user with a registration view, passing the
* information obtained through OAuth.
*/
void setRegistrationEnabled(bool enabled);
/*! \brief Starts a new registration process.
*
* This calls \p registerNewUser(0).
*/
void registerNewUser();
/*! \brief Starts a new registration process.
*
* This starts a new registration process, and may be called in
* response to a user action, an internal path change, or an
* OAuthService login procedure which identified a new user. In the
* latter case, the OAuth-provided information is passed as
* parameter \p oauth.
*
* The default implementation creates a view using
* createRegistrationView(), and shows it in a dialog using
* showDialog().
*/
virtual void registerNewUser(const Identity& oauth);
/*! \brief Processes the (initial) environment.
*
* This method process environmental information that may be
* relevant to authentication:
*
* - email tokens, which are indicated through an internal path. The
* widget uses dialogs (by default) to interact with the user to
* act on the token.
*
* - authentication tokens, which are stored in browser cookies, to
* implement remember-me functionality. When logging in using an
* authentication token, the login is considered "weak" (since a
* user may have inadvertently forgotten to logout from a public
* computer). You should let the user authenticate using another,
* primary method before doing sensitive operations. The
* createPasswordPromptDialog() method may be useful for this.
*
* \sa letUpdatePassword()
*/
virtual void processEnvironment();
/*! \brief Lets the user update his password.
*
* This creates a view to let the user enter his new password.
*
* The default implementation creates a new view using
* createUpdatePasswordView() and shows it in a dialog using
* showDialog().
*/
virtual void letUpdatePassword(const User& user, bool promptPassword);
/*! \brief Lets the user "recover" a lost password.
*
* This creates a view to let the user enter his email address, used
* to send an email containing instructions to enter a new password.
*
* The default implementation creates a new view using
* createLostPasswordView() and shows it in a dialog using
* showDialog().
*/
virtual void handleLostPassword();
/*! \brief Creates a lost password view.
*
* When email verification has been enabled, the user may indicate
* that he has lost his password -- then proof of controlling the same
* email address that had associated with his account is sufficient to
* allow him to enter a new password.
*
* This creates the widget used to let the user enter his email
* address. The default implementation creates a new
* LostPasswordWidget.
*
* \sa handleLostPassword()
*/
virtual WWidget *createLostPasswordView();
/*! \brief Creates a registration view.
*
* This creates a registration view, optionally using information
* already obtained from a third party identification service (such as
* an OAuth provider).
*
* The default implementation creates a new RegistrationWidget
* with a model created using createRegistrationModel().
*
* \sa registerNewUser()
*/
virtual WWidget *createRegistrationView(const Identity& id);
/*! \brief Creates a view to update a user's password.
*
* If \p promptPassword is \c true, the user has to enter his current
* password in addition to a new password.
*
* This creates the widget used to let the user chose a new
* password. The default implementation instantiates an
* UpdatePasswordWidget.
*
* \sa letUpdatePassword()
*/
virtual WWidget *createUpdatePasswordView(const User& user,
bool promptPassword);
/*! \brief Creates a password prompt dialog.
*
* This creates a dialog
* password. The user is taken from the \p login object, which also
* signals an eventual success using its Login::changed() signal.
*
* The default implementation instantiates a PasswordPromptDialog.
*/
virtual WDialog *createPasswordPromptDialog(Login& login);
void attemptPasswordLogin();
/*! \brief Displays the error message.
*
* This method display an dialog showing the error
*/
virtual void displayError(const WString& error);
/*! \brief Displays the info message.
*
* This method display an dialog showing the info
*/
virtual void displayInfo(const WString& message);
protected:
/*! \brief Creates the user-interface.
*
* This method is called just before an initial rendering, and creates
* the initial view.
*
* The default implementation calls createLoginView() or
* createLoggedInView() depending on whether a user is currently
* logged in.
*/
virtual void create();
/*! \brief Creates the login view.
*
* This creates a view that allows the user to login, and is shown when
* no user is current logged in.
*
* The default implementation renders the
* <tt>"Wt.Auth.template.login"</tt> template, and binds fields
* using createPasswordLoginView() and createOAuthLoginView().
*/
virtual void createLoginView();
/*! \brief Creates the view shown when the user is logged in.
*
* The default implementation renders the
* <tt>"Wt.Auth.template.logged-in"</tt> template.
*/
virtual void createLoggedInView();
/*! \brief Creates a password login view.
*
* This is used by the default implementation of createLoginView()
* to prompt for the information needed for logging in using a
* username and password. The default implementation implements a view
* guided by the model().
*
* \sa createLoginView()
*/
virtual void createPasswordLoginView();
/*! \brief Creates a widget to login using OAuth.
*
* The default implementation adds an icon for each OAuth service
* provider available.
*
* There's alot to say about making a usable login mechanism for
* OAuth (and federated login services in general), see
* https://sites.google.com/site/oauthgoog/UXFedLogin.
*
* \sa createLoginView()
*/
virtual void createOAuthLoginView();
/*! \brief Shows a dialog.
*
* This shows a dialog. The default method creates a standard WDialog,
* with the given \p title and \p contents as central widget.
*
* When the central widget is deleted, it deletes the dialog.
*/
virtual WDialog *showDialog(const WString& title, WWidget *contents);
/*! \brief Returns the registration model.
*
* Calls createRegistrationModel() or resets a previously created one.
*
* \sa registerNewUser()
*/
RegistrationModel *registrationModel();
/*! \brief Creates a registration model.
*
* This method creates a registration model. The default
* implementation creates a RegistrationModel() but you may want to
* reimplement this function to return a specialized registration
* model (complementing a specialized registration view).
*
* \sa registerNewUser()
*/
virtual RegistrationModel *createRegistrationModel();
virtual WWidget *createFormWidget(AuthModel::Field field);
virtual void render(WFlags<RenderFlag> flags);
private:
AuthModel *model_;
RegistrationModel *registrationModel_;
Login& login_;
std::string basePath_;
bool registrationEnabled_;
bool created_;
WDialog *dialog_, *messageBox_;
void init();
void logout();
void loginThrottle(int delay);
void closeDialog();
void onLoginChange();
void onPathChange(const std::string& path);
bool handleRegistrationPath(const std::string& path);
void oAuthStateChange(OAuthProcess *process);
void oAuthDone(OAuthProcess *process, const Identity& identity);
void updatePasswordLoginView();
};
}
}
#endif // WT_AUTH_AUTH_WIDGET_H_
|