Security

Type Members

class AuthenticatedBuilder[U] extends ActionBuilder[[A]AuthenticatedRequest[A, U], AnyContent]

An authenticated action builder.

This can be used to create an action builder, like so:

// in a Security trait
object Authenticated extends AuthenticatedBuilder(req => getUserFromRequest(req))

// then in a controller
def index = Authenticated { implicit request =>
  Ok("Hello " + request.user)
}

It can also be used from an action builder, for example:

class AuthenticatedDbRequest[A](val user: User,
                                val conn: Connection,
                                request: Request[A]) extends WrappedRequest[A](request)

object Authenticated extends ActionBuilder[AuthenticatedDbRequest] {
  def invokeBlock[A](request: Request[A], block: (AuthenticatedDbRequest[A]) => Future[Result]) = {
    AuthenticatedBuilder(req => getUserFromRequest(req)).authenticate(request, { authRequest: AuthenticatedRequest[A, User] =>
      DB.withConnection { conn =>
        block(new AuthenticatedDbRequest[A](authRequest.user, conn, request))
      }
    })
  }
}

class AuthenticatedRequest[A, U] extends WrappedRequest[A]

An authenticated request

Value Members

final def !=(arg0: Any): Boolean

Definition Classes
AnyRef → Any
final def ##(): Int

Definition Classes
AnyRef → Any
final def ==(arg0: Any): Boolean

Definition Classes
AnyRef → Any
def Authenticated[A](userinfo: (RequestHeader) ⇒ Option[A], onUnauthorized: (RequestHeader) ⇒ Result)(action: (A) ⇒ EssentialAction): EssentialAction

Wraps another action, allowing only authenticated HTTP requests.
Wraps another action, allowing only authenticated HTTP requests. Furthermore, it lets users to configure where to retrieve the user info from and what to do in case unsuccessful authentication
For example:
```
 //in a Security trait
 def username(request: RequestHeader) = request.session.get("email")
 def onUnauthorized(request: RequestHeader) = Results.Redirect(routes.Application.login)
 def isAuthenticated(f: => String => Request[AnyContent] => Result) = {
   Authenticated(username, onUnauthorized) { user =>
     Action(request => f(user)(request))
   }
 }
//then in a controller
def index = isAuthenticated { username => implicit request =>
    Ok("Hello " + username)
}
```
A
the type of the user info value (e.g. String if user info consists only in a user name)
userinfo
function used to retrieve the user info from the request header
onUnauthorized
function used to generate alternative result if the user is not authenticated
action
the action to wrap

object AuthenticatedBuilder

An authenticated action builder.

This can be used to create an action builder, like so:

// in a Security trait
object Authenticated extends AuthenticatedBuilder(req => getUserFromRequest(req))

// then in a controller
def index = Authenticated { implicit request =>
  Ok("Hello " + request.user)
}

It can also be used from an action builder, for example:

class AuthMessagesRequest[A](val user: User,
                              messagesApi: MessagesApi,
                              request: Request[A]) extends WrappedRequest[A](request)

class Authenticated @Inject()(messagesApi: MessagesApi) extends ActionBuilder[AuthMessagesRequest] {
  def invokeBlock[A](request: Request[A], block: (AuthMessagesRequest[A]) => Future[Result]) = {
    AuthenticatedBuilder(req => getUserFromRequest(req)).authenticate(request, { authRequest: AuthenticatedRequest[A, User] =>
        block(new AuthenticatedDbRequest[A](authRequest.user, messagesApi, request))
    })
  }
}

def WithAuthentication[A](userinfo: (RequestHeader) ⇒ Option[A])(action: (A) ⇒ EssentialAction): EssentialAction
final def asInstanceOf[T0]: T0

Definition Classes
Any
def clone(): AnyRef

Attributes
protected[java.lang]
Definition Classes
AnyRef
Annotations
@throws( ... )
final def eq(arg0: AnyRef): Boolean

Definition Classes
AnyRef
def equals(arg0: Any): Boolean

Definition Classes
AnyRef → Any
def finalize(): Unit

Attributes
protected[java.lang]
Definition Classes
AnyRef
Annotations
@throws( classOf[java.lang.Throwable] )
final def getClass(): Class[_]

Definition Classes
AnyRef → Any
def hashCode(): Int

Definition Classes
AnyRef → Any
final def isInstanceOf[T0]: Boolean

Definition Classes
Any
final def ne(arg0: AnyRef): Boolean

Definition Classes
AnyRef
final def notify(): Unit

Definition Classes
AnyRef
final def notifyAll(): Unit

Definition Classes
AnyRef
final def synchronized[T0](arg0: ⇒ T0): T0

Definition Classes
AnyRef
def toString(): String

Definition Classes
AnyRef → Any
final def wait(): Unit

Definition Classes
AnyRef
Annotations
@throws( ... )
final def wait(arg0: Long, arg1: Int): Unit

Definition Classes
AnyRef
Annotations
@throws( ... )
final def wait(arg0: Long): Unit

Definition Classes
AnyRef
Annotations
@throws( ... )

Deprecated Value Members

def Authenticated(action: (String) ⇒ EssentialAction): EssentialAction

Wraps another action, allowing only authenticated HTTP requests.
Wraps another action, allowing only authenticated HTTP requests.
The user name is retrieved from the (configurable) session cookie, and added to the HTTP request’s username attribute. In case of failure it returns an Unauthorized response (401)
For example:
```
 //in a Security trait
 def isAuthenticated(f: => String => Request[AnyContent] => Result) = {
   Authenticated { user =>
     Action(request => f(user)(request))
   }
 }
//then in a controller
def index = isAuthenticated { username => implicit request =>
    Ok("Hello " + username)
}
```
action
the action to wrap

Annotations
@deprecated
Deprecated
(Since version 2.6.0) Use Authenticated(RequestHeader => Option[String])(String => EssentialAction)
lazy val username: String

Key of the username attribute stored in session.
Key of the username attribute stored in session.

Annotations
@deprecated
Deprecated
(Since version 2.6.0) Security.username is deprecated.

Related Doc: package mvc

object Security

Type Members

class AuthenticatedBuilder[U] extends ActionBuilder[[A]AuthenticatedRequest[A, U], AnyContent]

class AuthenticatedRequest[A, U] extends WrappedRequest[A]

Value Members

final def !=(arg0: Any): Boolean

final def ##(): Int

final def ==(arg0: Any): Boolean

def Authenticated[A](userinfo: (RequestHeader) ⇒ Option[A], onUnauthorized: (RequestHeader) ⇒ Result)(action: (A) ⇒ EssentialAction): EssentialAction

object AuthenticatedBuilder

def WithAuthentication[A](userinfo: (RequestHeader) ⇒ Option[A])(action: (A) ⇒ EssentialAction): EssentialAction

final def asInstanceOf[T0]: T0

def clone(): AnyRef

final def eq(arg0: AnyRef): Boolean

def equals(arg0: Any): Boolean

def finalize(): Unit

final def getClass(): Class[_]

def hashCode(): Int

final def isInstanceOf[T0]: Boolean

final def ne(arg0: AnyRef): Boolean

final def notify(): Unit

final def notifyAll(): Unit

final def synchronized[T0](arg0: ⇒ T0): T0

def toString(): String

final def wait(): Unit

final def wait(arg0: Long, arg1: Int): Unit

final def wait(arg0: Long): Unit

Deprecated Value Members

def Authenticated(action: (String) ⇒ EssentialAction): EssentialAction

lazy val username: String

Inherited from AnyRef

Inherited from Any

Ungrouped