/usr/include/Wt/Auth/User is in libwt-dev 3.3.6+dfsg-1.1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 | // This may look like C code, but it's really -*- C++ -*-
/*
* Copyright (C) 2011 Emweb bvba, Kessel-Lo, Belgium.
*
* See the LICENSE file for terms of use.
*/
#ifndef WT_AUTH_USER_H_
#define WT_AUTH_USER_H_
#include <Wt/WDateTime>
#include <Wt/WString>
#include <Wt/Auth/Token>
#include <Wt/Auth/PasswordHash>
namespace Wt {
namespace Auth {
class AbstractUserDatabase;
/*! \class User Wt/Auth/User
* \brief A user
*
* This class represents a user. It is a value class that stores only
* the user id and a reference to an AbstractUserDatabase to access
* its properties.
*
* An object can point to a valid user, or be invalid. Invalid users
* are typically used as return value for database queries which did
* not match with an existing user.
*
* Not all methods are valid or applicable to your authentication
* system. See AbstractUserDatabase for a discussion.
*
* \sa AbstractUserDatabase
*
* \ingroup auth
*/
class WT_API User
{
public:
/*! \brief Enumeration for a user's account status.
*
* \sa status()
*/
enum Status {
Disabled, //!< Successfully identified but not allowed to log in.
Normal //!< Normal status
};
/*! \brief Enumeration for an email token stored for the user.
*/
enum EmailTokenRole {
VerifyEmail, //!< Token is used to verify his email address
LostPassword //!< Token is used to allow the user to enter a new password
};
/*! \brief Default constructor.
*
* Creates an invalid user.
*
* \sa isValid()
*/
User();
/*! \brief Constructor.
*
* Creates a user with id \p id, and whose information is stored in
* the \p database.
*/
User(const std::string& id, const AbstractUserDatabase& database);
/*! \brief Returns the user database.
*
* This returns the user database passed in the constructor, or 0 if the
* user is invalid, and was constructed using the default constructor.
*/
AbstractUserDatabase *database() const { return db_; }
/*! \brief Comparison operator.
*
* Two users are equal if they have the same identity and the same database.
*/
bool operator==(const User& other) const;
/*! \brief Comparison operator.
*
* \sa operator==
*/
bool operator!=(const User& other) const;
/*! \brief Returns whether the user is valid.
*
* A invalid user is a sentinel value returned by methods that query
* the database but could not identify a matching user.
*/
bool isValid() const { return db_ != 0; }
/*! \brief Returns the user id.
*
* This returns the id that uniquely identifies the user, and acts
* as a "primary key" to obtain other information for the user in
* the database.
*
* \sa AbstractUserDatabase
*/
const std::string& id() const { return id_; }
/*! \brief Returns an identity.
*/
WT_USTRING identity(const std::string& provider) const;
/*! \brief Adds an identity.
*
* Depending on whether the database supports multiple identities
* per provider, this may change (like setIdentity()), or add
* another identity to the user. For some identity providers (e.g. a
* 3rd party identity provider), it may be sensible to have more
* than one identity of the same provider for a single user
* (e.g. multiple email accounts managed by the same provider, that
* in fact identify the same user).
*/
void addIdentity(const std::string& provider, const WT_USTRING& identity);
/*! \brief Sets an identity.
*
* Unlike addIdentity() this overrides any other identity of the
* given provider, in case the underlying database supports multiple
* identities per user.
*/
void setIdentity(const std::string& provider, const WT_USTRING& identity);
/*! \brief Removes an identity.
*
* \sa addIdentity()
*/
void removeIdentity(const std::string& provider);
/*! \brief Sets a password.
*
* \sa AbstractUserDatabase::setPassword()
*/
void setPassword(const PasswordHash& password) const;
/*! \brief Returns the password.
*
* \sa AbstractUserDatabase::password()
*/
PasswordHash password() const;
/*! \brief Sets the email address.
*
* \sa AbstractUserDatabase::setEmail()
*/
void setEmail(const std::string& address) const;
/*! \brief Returns the email address.
*
* \sa AbstractUserDatabase::email()
*/
std::string email() const;
/*! \brief Sets the unverified email address.
*
* \sa AbstractUserDatabase::setUnverifiedEmail()
*/
void setUnverifiedEmail(const std::string& address) const;
/*! \brief Returns the unverified email address.
*
* \sa AbstractUserDatabase::unverifiedEmail()
*/
std::string unverifiedEmail() const;
/*! \brief Returns the account status.
*
* \sa AbstractUserDatabase::status()
*/
Status status() const;
/*! \brief Sets the account status.
*
* \sa AbstractUserDatabase::setStatus()
*/
void setStatus(Status status);
/*! \brief Returns the email token.
*
* \sa AbstractUserDatabase::emailToken()
*/
Token emailToken() const;
/*! \brief Returns the email token role.
*
* \sa AbstractUserDatabase::emailTokenRole()
*/
EmailTokenRole emailTokenRole() const;
/*! \brief Sets an email token.
*
* \sa AbstractUserDatabase::setEmailToken()
*/
void setEmailToken(const Token& token, EmailTokenRole role) const;
/*! \brief Clears the email token.
*
* \sa setEmailToken()
*/
void clearEmailToken() const;
/*! \brief Adds an authentication token.
*
* \sa AbstractUserDatabase::addAuthToken()
*/
void addAuthToken(const Token& token) const;
/*! \brief Removes an authentication token.
*
* \sa AbstractUserDatabase::removeAuthToken()
*/
void removeAuthToken(const std::string& hash) const;
/*! \brief Updates an authentication token.
*
* \sa AbstractUserDatabase::updateAuthToken()
*/
int updateAuthToken(const std::string& hash, const std::string& newHash)
const;
/*! \brief Logs the result of an authentication attempt.
*
* This changes the number of failed login attempts, and stores the
* current date as the last login attempt time.
*
* \sa failedLoginAttempts(), lastLoginAttempt()
*/
void setAuthenticated(bool success) const;
/*! \brief Returns the number of consecutive unsuccessful login attempts.
*
* \sa setAuthenticated()
*/
int failedLoginAttempts() const;
/*! \brief Returns the last login attempt.
*
* \sa setAuthenticated()
*/
WDateTime lastLoginAttempt() const;
private:
std::string id_;
AbstractUserDatabase *db_;
void checkValid() const;
};
}
}
#endif // WT_AUTH_USER
|