Or try this application which implements authentication example with perl catalyst from scratch. <br>You can test it, its just a couple steps.. hope it helps. <br>i wrote it sometime ago but i have not tested yet.<br><br>1. create a database<br>
2. create tables:<br>
<br>
CREATE TABLE users<br>
(<br>
id serial NOT NULL,<br>
nome text,<br>
sobrenome text,<br>
is_deleted integer DEFAULT 0,<br>
endereco text,<br>
created date DEFAULT now(),<br>
username text,<br>
"password" text,<br>
telefone text,<br>
email character varying(255),<br>
CONSTRAINT users_pkey PRIMARY KEY (id)<br>
);<br>
<br>
CREATE TABLE roles<br>
(<br>
id integer NOT NULL,<br>
"role" text,<br>
CONSTRAINT role_pkey PRIMARY KEY (id)<br>
);<br>
<br>
<br>
CREATE TABLE users_to_roles<br>
(<br>
user_id integer NOT NULL,<br>
role_id integer NOT NULL,<br>
CONSTRAINT users_to_roles_pkey PRIMARY KEY (user_id, role_id),<br>
CONSTRAINT users_to_roles_role_id_fkey FOREIGN KEY (role_id)<br>
REFERENCES roles (id) MATCH SIMPLE<br>
ON UPDATE NO ACTION ON DELETE NO ACTION,<br>
CONSTRAINT users_to_roles_user_id_fkey FOREIGN KEY (user_id)<br>
REFERENCES users (id) MATCH SIMPLE<br>
ON UPDATE NO ACTION ON DELETE NO ACTION<br>
);<br>
<br>
2.1 add some data onto db:<br>
<br>
insert into roles (id, role) values (1, 'admin');<br>
insert into roles (id, role) values (2, 'gerente');<br>
insert into roles (id, role) values (3, 'banidos');<br>
insert into roles (id, role) values (4, 'funcionario');<br>
insert into roles (id, role) values (5, 'secretaria');<br>
<br>
insert into users (nome, sobrenome, is_deleted, endereco, username,
password, email) values ('joe', 'silva', '0', '-', 'joe', 'silva',
'<a href="mailto:joe@silva.net" target="_blank">joe@silva.net</a>');<br>
insert into users (nome, sobrenome, is_deleted, endereco, username,
password, email) values ('maria', 'gomes', '0', '-', 'maria', 'gomes',
'<a href="mailto:mariagomes@hotmail.com" target="_blank">mariagomes@hotmail.com</a>');<br>
insert into users (nome, sobrenome, is_deleted, endereco, username,
password, email) values ('admin', 'admin', '0', '-', 'admin', 'admin',
'<a href="mailto:admin@admins.com" target="_blank">admin@admins.com</a>');<br>
<br>
<br>
insert into users_to_roles ( role_id, user_id ) values (1, 3);<br>
insert into users_to_roles ( role_id, user_id ) values (2, 1);<br>
insert into users_to_roles ( role_id, user_id ) values (2, 2);<br>
<br>
3. create a default catalyst app<br>
<br>
<a href="http://catalyst.pl/" target="_blank">catalyst.pl</a> Example::Catalyst::Auth<br>
cd Example-Catalyst-Auth/<br>
<br>
4. create TT view<br>
<br>
script/<a href="http://example_catalyst_auth_create.pl/" target="_blank">example_catalyst_auth_create.pl</a> view TT<br>
<br>
5. open TT.pm file to edit<br>
<br>
vim lib/Example/Catalyst/Auth/View/TT.pm<br>
<br>
6. insert the following into your TT.pm<br>
<br>
package Example::Catalyst::Auth::View::TT;<br>
use warnings;<br>
use strict;<br>
use base 'Catalyst::View::TT';<br>
<br>
__PACKAGE__->config(<br>
# Set to 1 for detailed timer stats in your HTML as comments<br>
TIMER => 0,<br>
# This is your wrapper template located in the 'root/src'<br>
WRAPPER => 'wrapper.tt2',<br>
# Change default TT extension<br>
TEMPLATE_EXTENSION => '.tt2',<br>
# Set the location for TT files<br>
INCLUDE_PATH => [<br>
Example::Catalyst::Auth->path_to( 'root', ),<br>
],<br>
);<br>
<br>
__PACKAGE__->meta->make_immutable;<br>
<br>
1;<br>
<br>
<br>
7. now open the main ap config<br>
<br>
vim lib/Example/Catalyst/Auth.pm<br>
<br>
8. and insert inside your __PACKAGE__->config() :<br>
<br>
default_view => 'TT',<br>
ENCODING => 'utf-8',<br>
<br>
8.1 and also declare these inside your use Catalyst qw//:<br>
<br>
Unicode<br>
<br>
StackTrace<br>
<span class="il">Authentication</span><br>
Authorization::Roles<br>
<br>
8.2 and insert the Auth configuration also.. on that same file:<br>
<br>
__PACKAGE__->config->{'Plugin::<span class="il">Authentication</span>'} = {<br>
default => {<br>
class => 'SimpleDB',<br>
# user_model => 'DBICSchemamodel::Users',<br>
user_model => 'DBICSchemamodel::User',<br>
password_type => 'clear',<br>
user_role_user_field => 'user_id',<br>
user_role_role_field => 'role_id',<br>
},<br>
};<br>
<br>
8.3 and also insert the Store config<br>
<br>
__PACKAGE__->config->{'Plugin::Cache'}{backend} = { #DEFAULT backend<br>
store => "FastMmap",<br>
class => "Cache::FastMmap",<br>
storage => "/tmp/cache",<br>
expires => 3600,<br>
};<br>
<br>
<br>
<br>
<br>
<br>
<br>
8. create the wrapper:<br>
<br>
vim root/wrapper.tt2<br>
<br>
9. and insert this content:<br>
<br>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"<br>
"<a href="http://www.w3.org/TR/xhtml1/DTD/xhtml11.dtd" target="_blank">http://www.w3.org/TR/xhtml1/DTD/xhtml11.dtd</a>"><br>
<html xmlns="<a href="http://www.w3.org/1999/xhtml" target="_blank">http://www.w3.org/1999/xhtml</a>"><br>
<head><br>
</head><br>
<body><br>
[%content%]<br>
</body><br>
</html><br>
<br>
10. now lets modify our Root controller.<br>
We should create one index page (And test the view we setup is working)<br>
We should create one hidden page, which will show only when logged in.<br>
<br>
vim lib/Example/Catalyst/Auth/Controller/Root.pm<br>
<br>
10.1 declare use HTML::FormHandler<br>
<br>
use HTML::FormHandler;<br>
<br>
11. delete index action and add the following:<br>
<br>
sub auto :Private {<br>
my ($self, $c) =@_;<br>
<br>
if ( $c->action eq $c->controller('root')->action_for('login')<br>
|| $c->action eq $c->controller('root')->action_for('index')<br>
) {<br>
return 1;<br>
}<br>
<br>
# If a user doesn't exist, force login<br>
if (<br>
!$c->user_exists<br>
or (<br>
(<br>
!$c->check_user_roles('admin')<br>
and !$c->check_user_roles('gerente')<br>
and !$c->check_user_roles('funcionario')<br>
)<br>
)<br>
)<br>
{<br>
# Redirect the user to the login page<br>
$c->forward('login');<br>
# Return 0 to cancel 'post-auto' processing and prevent use of application<br>
return 0;<br>
}<br>
<br>
# User found, so return 1 to continue with processing after this 'auto'<br>
return 1;<br>
}<br>
<br>
sub index :Path :Args(0) {<br>
my ( $self, $c ) = @_;<br>
$c->stash(template => \'Welcome please <a
href="/login">login</a>'); #or i could use: template =>
'index.tt2', and create that file inside myapp/root<br>
}<br>
<br>
sub hidden_page :Path('/hidden_page') :Args(0) {<br>
my ( $self, $c ) = @_;<br>
$c->stash( template => \'CONTEÚDO ESCONDIDO' );<br>
}<br>
<br>
sub login : Path('/login') : Args(0) {<br>
my ( $self, $c ) = @_;<br>
<br>
my $form = HTML::FormHandler->new({<br>
field_list => [<br>
username => {<br>
type => 'Text',<br>
label => 'Login',<br>
required => 1,<br>
required_message => 'Campo Requerido',<br>
},<br>
password => {<br>
type => 'Password',<br>
label => 'Password',<br>
required => 1,<br>
required_message => 'Campo Requerido',<br>
},<br>
submit => {<br>
type => 'Submit',<br>
value => 'Login',<br>
},<br>
],<br>
});<br>
$c->stash( template => \$form->render);<br>
<br>
# Get the username and password from form<br>
my $username = $c->request->params->{username} || undef;<br>
my $password = $c->request->params->{password} || undef;<br>
<br>
# If the username and password values were found in form<br>
if ( defined($username) && defined($password) ) {<br>
<br>
# Attempt to log the user in<br>
if (<br>
$c->authenticate(<br>
{<br>
username => $username,<br>
password => $password<br>
}<br>
)<br>
)<br>
{<br>
<br>
$c->forward('hidden_page');<br>
<br>
return;<br>
}<br>
else {<br>
<br>
# Set an error message<br>
$c->stash->{error_msg} =<br>
"Login desconhecido. Verifique seu login e senha e tente novamente. ";<br>
}<br>
}<br>
<br>
# If either of above don't work out, send to the login page<br>
$c->detach('index') if ($c->user_exists);<br>
}<br>
<br>
<br>
<br>
<br>
sub logout : Path('/logout') : Args(0) {<br>
my ( $self, $c ) = @_;<br>
<br>
# Clear the user's state<br>
$c->logout;<br>
<br>
# Send the user to the starting point<br>
$c->response->redirect( $c->uri_for('/') );<br>
}<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
<br>
12. now create your schema:<br>
<br>
script/<a href="http://example_catalyst_auth_create.pl/" target="_blank">example_catalyst_auth_create.pl</a> model DBICSchemamodel
DBIC::Schema Example::Catalyst::Auth::DBSchema create=static
dbi:Pg:dbname=test_auth dblogin password<br>
<br>
13. add many_to_many relationships to model User<br>
<br>
vim lib/Example/Catalyst/Auth/DBSchema/Result/User.pm<br>
<br>
14. insert before make_immutable or 1<br>
<br>
__PACKAGE__->many_to_many('roles', 'users_to_roles' => 'role');<br>
<br>
15. add many_to_many relationships to model Role<br>
<br>
vim lib/Example/Catalyst/Auth/DBSchema/Result/Role.pm<br>
<br>
14. insert before make_immutable or 1<br>
<br>
__PACKAGE__->many_to_many('users', 'users_to_roles' => 'user');<br><br><br><br><br><br><br><br>att,<br>Hernan<br><br><br><div class="gmail_quote">On Tue, Jan 11, 2011 at 3:18 PM, Mike Raynham <span dir="ltr"><<a href="mailto:catalyst@mikeraynham.co.uk">catalyst@mikeraynham.co.uk</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;"><div class="im">On 11/01/11 16:09, Ben Lavery wrote:<br>
<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
Dear all,<br>
<br>
After installing Catalyst on an OpenIndiana virtual machine, I've been working through the Definitive Guide to Catalyst for the last few weeks and have been impressed with how smoothly most of it has gone.<br>
<br>
I have, however, become unstuck at Chapter 6. The book explains how to create an application that uses some simple CRUD with user and role data, and uses authentication to prevent users updating other user's data.<br>
I have a working application that allows one to create and read user data, but I can't figure out how to apply the authentication. The book says:<br>
"When using the Authentication plug-in, as we showed in Chapter 3..."<br>
<br>
I've gone back to Chapter 3 and followed the steps, but I'm not sure where I am supposed to put the "$c->authenticate".<br>
If I place it in DBAuthTest::Controller::Root in a subroutine called "auto", every page on the site needs me to log in, but no matter what I put in the username and password fields it says that the data is invalid.<br>
As such I have no idea where I have gone wrong, after Googling I can't find similar problems, or people who have had similar problems or implemented a similar system in a similar way.<br>
I have looked at the source code provided on the publisher's site, but it doesn't include code for the whole chapter, and indeed seems to stop given code a page or two previous to where I am now...<br>
<br>
I have uploaded a copy of my application to <a href="http://hashbang0.com/personal/DBAuthTest.tar.bz2" target="_blank">http://hashbang0.com/personal/DBAuthTest.tar.bz2</a> (~46K) which I hope help demonstrate where I am currently.<br>
<br>
Many thanks for your time, I appreciate any help you can give,<br>
<br>
Ben Lavery<br>
</blockquote>
<br></div>
The authentication section of the online tutorial, as suggested by Hernan Lopes, is definitely worth reading. However, what follows may get you started. The following approach doesn't deal with roles or permission levels - it just tests if a user is logged in or not.<br>
<br>
The following code is just to give you an idea of how it would work. I've just grabbed bits of code from various places and stuck them together, so please don't expect to be able to just copy and paste it into your code :-)<br>
<br>
In your secure controller actions, you need to check if a user is logged in:<br>
<br>
In DBAuthTest::Controller::AuthUsers...<br>
<br>
###<br>
<br>
sub add : Chained('base'): PathPart('add'): Args(0) {<br>
my ($self, $c) = @_;<br>
<br>
# Detach to the no_user action if a user is not logged in.<br>
$c->detach( '/no_user' ) unless $c->user_exists;<br>
<br>
# Do secure stuff here...<br>
}<br>
<br>
###<br>
<br>
Then in DBAuthTest::Controller::Root...<br>
<br>
###<br>
<br>
sub no_user :Chained('/') :PathPart :Args(0) {<br>
my ($self, $c) = @_;<br>
<br>
# The user is not logged in.<br>
<br>
# Remember the failed action so that we can redirect to it<br>
# after login.<br>
$c->session->{action_private_path} = $c->action->private_path;<br>
<br>
# Put a message in the flash so that we can display it on the<br>
# login page.<br>
$c->flash(<br>
error_msg =><br>
'To perform the requested action, you must be logged in.'<br>
);<br>
<br>
# Redirect to a login page.<br>
$c->response->redirect(<br>
$c->uri_for_action( '/login' )<br>
);<br>
}<br>
<br>
###<br>
<br>
You then need a suitable controller to handle authentication:<br>
<br>
###<br>
<br>
package DBAuthTest::Controller::Login;<br>
<br>
sub login :Chained('base') :PathPart('login') :Args(0) {<br>
my ( $self, $c ) = @_;<br>
<br>
# Get username and password from somewhere...<br>
my $username = $c->request->params->{username};<br>
my $password = $c->request->params->{password};<br>
<br>
# Do something here if username and password have<br>
# not been supplied.<br>
<br>
unless ( $c->authenticate( {<br>
username => $username,<br>
password => $password<br>
} ) ) {<br>
<br>
# Stash an error message.<br>
$c->stash(<br>
error_msg => 'Incorrect username, password, or both',<br>
);<br>
<br>
# Handle invalid credentials.<br>
<br>
return;<br>
}<br>
<br>
if( $c->session->{action_private_path} ) {<br>
<br>
# Redirect to the previously unauthorised action.<br>
$c->response->redirect(<br>
$c->uri_for_action( $c->session->{action_private_path} )<br>
);<br>
<br>
delete $c->session->{action_private_path};<br>
<br>
} else {<br>
<br>
# Redirect to a default page.<br>
$c->response->redirect( $c->uri_for_action('/index') );<br>
<br>
}<br>
}<br>
<br>
###<div><div></div><div class="h5"><br>
<br>
<br>
_______________________________________________<br>
List: <a href="mailto:Catalyst@lists.scsys.co.uk" target="_blank">Catalyst@lists.scsys.co.uk</a><br>
Listinfo: <a href="http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst" target="_blank">http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst</a><br>
Searchable archive: <a href="http://www.mail-archive.com/catalyst@lists.scsys.co.uk/" target="_blank">http://www.mail-archive.com/catalyst@lists.scsys.co.uk/</a><br>
Dev site: <a href="http://dev.catalyst.perl.org/" target="_blank">http://dev.catalyst.perl.org/</a><br>
</div></div></blockquote></div><br>