Safe Haskell	None
Language	Haskell2010

Servant.Server.Internal.BasicAuth

Contents

Basic Auth

Synopsis

Basic Auth

data BasicAuthResult usr Source #

servant-server's current implementation of basic authentication is not immune to certian kinds of timing attacks. Decoding payloads does not take a fixed amount of time.

The result of authentication/authorization

Constructors

Unauthorized
BadPassword
NoSuchUser
Authorized usr

Instances

Functor BasicAuthResult Source #
Methods fmap :: (a -> b) -> BasicAuthResult a -> BasicAuthResult b # (<$) :: a -> BasicAuthResult b -> BasicAuthResult a #
Eq usr => Eq (BasicAuthResult usr) Source #
Methods (==) :: BasicAuthResult usr -> BasicAuthResult usr -> Bool # (/=) :: BasicAuthResult usr -> BasicAuthResult usr -> Bool #
Read usr => Read (BasicAuthResult usr) Source #
Methods readsPrec :: Int -> ReadS (BasicAuthResult usr) # readList :: ReadS [BasicAuthResult usr] # readPrec :: ReadPrec (BasicAuthResult usr) # readListPrec :: ReadPrec [BasicAuthResult usr] #
Show usr => Show (BasicAuthResult usr) Source #
Methods showsPrec :: Int -> BasicAuthResult usr -> ShowS # show :: BasicAuthResult usr -> String # showList :: [BasicAuthResult usr] -> ShowS #
Generic (BasicAuthResult usr) Source #
Associated Types type Rep (BasicAuthResult usr) :: * -> * # Methods from :: BasicAuthResult usr -> Rep (BasicAuthResult usr) x # to :: Rep (BasicAuthResult usr) x -> BasicAuthResult usr #
type Rep (BasicAuthResult usr) Source #
type Rep (BasicAuthResult usr) = D1 * (MetaData "BasicAuthResult" "Servant.Server.Internal.BasicAuth" "servant-snap-0.8.1-CfjhSxc4SFC8Vc95tNVfo" False) ((:+:) * ((:+:) * (C1 * (MetaCons "Unauthorized" PrefixI False) (U1 )) (C1 (MetaCons "BadPassword" PrefixI False) (U1 ))) ((:+:) (C1 * (MetaCons "NoSuchUser" PrefixI False) (U1 )) (C1 (MetaCons "Authorized" PrefixI False) (S1 * (MetaSel (Nothing Symbol) NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 * usr)))))

newtype BasicAuthCheck m usr Source #

Datatype wrapping a function used to check authentication.

Constructors

BasicAuthCheck
Fields unBasicAuthCheck :: BasicAuthData -> m (BasicAuthResult usr)

Instances

Functor m => Functor (BasicAuthCheck m) Source #
Methods fmap :: (a -> b) -> BasicAuthCheck m a -> BasicAuthCheck m b # (<$) :: a -> BasicAuthCheck m b -> BasicAuthCheck m a #
Generic (BasicAuthCheck m usr) Source #
Associated Types type Rep (BasicAuthCheck m usr) :: * -> * # Methods from :: BasicAuthCheck m usr -> Rep (BasicAuthCheck m usr) x # to :: Rep (BasicAuthCheck m usr) x -> BasicAuthCheck m usr #
type Rep (BasicAuthCheck m usr) Source #
type Rep (BasicAuthCheck m usr) = D1 * (MetaData "BasicAuthCheck" "Servant.Server.Internal.BasicAuth" "servant-snap-0.8.1-CfjhSxc4SFC8Vc95tNVfo" True) (C1 * (MetaCons "BasicAuthCheck" PrefixI True) (S1 * (MetaSel (Just Symbol "unBasicAuthCheck") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 * (BasicAuthData -> m (BasicAuthResult usr)))))

mkBAChallengerHdr :: ByteString -> (CI ByteString, ByteString) Source #

Internal method to make a basic-auth challenge

decodeBAHdr :: Request -> Maybe BasicAuthData Source #

Find and decode an Authorization header from the request as Basic Auth

runBasicAuth :: MonadSnap m => Request -> ByteString -> BasicAuthCheck m usr -> DelayedM m usr Source #

Run and check basic authentication, returning the appropriate http error per the spec.