haskell - Yesod admin auth with BrowserId and the scaffolded website -


i'm trying simple app yesod (a blog app) following https://www.youtube.com/watch?v=sadfv-qbvg8 (i used scaffolded website)

i want add simple authentification secure access of creation of article.

following http://www.yesodweb.com/book/authentication-and-authorization, added:

-- routes not requiring authentication. isauthorized (authr _) _ = return authorized isauthorized faviconr _ = return authorized isauthorized robotsr _ = return authorized isauthorized publisharticler _ = isadmin -- default authorized now. isauthorized _ _ = return authorized

my new route publisharticler. isadmin function same in book:

isadmin =     mu <- maybeauthid     return $ case mu of         nothing -> authenticationrequired         "admin" -> authorized         _ -> unauthorized "you must admin"

and doesn't compile :(

foundation.hs:76:38:     no instance (isstring userid) arising use of ‘isadmin’     in expression: isadmin     in equation ‘isauthorized’:         isauthorized publisharticler _ = isadmin     in instance declaration ‘yesod app’

i don't understand i'm doing wrong…

thanks,

edit:

more information authid, it's defined this:

type authid app = userid

my model is:

user     ident text     password text maybe     uniqueuser ident     deriving typeable

and want check if ident property equal (like email address example) authorize publish new articles.

maybeauthid return authid object if user authenticated. in example yesod book, authid synonym text: it's user name. text objects (and other types have isstring instances) can built string literals, why example code works: haskell knows how transform

"admin"

into text object.

you're using more complex type represent logged in user, either need provide isstring instance user (which build user without password, say):

instance isstring user    fromstring s = user (pack s) ""

or, maybe easier, modify isadmin function ident part of user object, like:

 isadmin =    mu <- maybeauthid    return $ case mu of      nothing -> authenticationrequired      (user ident _) -> case ident of        "admin" -> authorized        _ -> unauthorized "you must admin"

edit misread definition of authid, thought 

type authid app = user

in fact, have userid, ids of user objects in database. can 2 things: precompute list of ids of users have admin privilege , see if user id maybeauthid gives 1 of them, or read user in db given id , see if has rights...


Comments

Post a Comment

Popular posts from this blog

gcc - MinGW's ld cannot perform PE operations on non PE output file -

i know there other similar questions out there, stackoverflow or not. i've researched lot this, , still didn't find single solution. i'm doing operative system side project. i've been doing in assembly, wanna join c code. test, made assembly code file (called test.asm): [bits 32] global _a section .text _a: jmp $ then made c file (called main.c): extern void a(void); int main(void) { a(); } to link, used file (called make.bat): "c:\mingw\bin\gcc.exe" -ffreestanding -c -o c.o main.c nasm -f coff -o asm.o test.asm "c:\mingw\bin\ld.exe" -ttext 0x100000 --oformat binary -o out.bin c.o asm.o pause i've been researching ages, , i'm still struggling find answer. hope won't flagged duplicate. acknowledge existence of similar questions, have different answers, , none work me. question: what doing wrong? old mingw versions had problem "ld" not able create non-pe files @ all. maybe current versions...
Read more

timeout - Handshake_timeout on RabbitMQ using python and pika from remote vm -

i have several vm's around world, identical , same python code (and same library version of pika 0.9.13). 1 of them failing because of handshake_timeout: =error report==== 17-jun-2015::12:27:07 === closing amqp connection <0.290.0> (yy.yy.yy.yy:47232 -> xx.xx.xx.xx:5672): {handshake_timeout,handshake} that taken rabbitmq log, in client code see like error:pika.adapters.base_connection:connection xx.xx.xx.xx:5672 failed: timeout unhandled exception in thread started <function listen_for_start_download_message @ 0x1e5bcf8> i have tested connection telnet following guide: http://rubybunny.info/articles/troubleshooting.html i increased handshake_timeout 40000 milliseconds , ssl_handshake_timeout 20000 milliseconds , error persists, ping rabbitmq server machine little bit higher in other machines nothing abnormal (136ms). has found similar problem sometime or can recommend way test rabbitmq connection? i'm not sure if solution problem in case pr...
Read more

c# - Search and Add Comment with OpenXML for Word -

i'm newbie openxml sdk. i need perform following tasks on word docx on server side, , believe openxml sdk first place should into. so requirements follows: look specific text in document add comment in location of found text. is possible openxml sdk? tried go through docs, , found way search , replace text, couldn't find way add comment in appropriate location. thanks! the link ron gave indicate how insert comment. insert want, can find paragraph like paragraph p = body.descendants<paragraph>().where(p.innertext.contains(searchstring)).firstordefault(); if (p != null) { // here follow link ron post create comment // insert comment p p.insertafter() said in link } maybe have adapt bit depending matching criteria
Read more