play2-auth登录后无法识别用户

时间:2013-10-23 14:18:25

标签: authentication playframework authorization playframework-2.2

我正在尝试使用play2-auth和playframework 2.2.0实现登录,我使用async实现了最后一个分支的逻辑,成功登录后,Home操作无法识别已登录的用户并重定向到登录再一次,一些代码:

AuthConfig特征:

trait AuthConfigImpl extends AuthConfig {

 type Id = String

  type User = Account
  type Authority = models.poso.Permission

  val idTag: ClassTag[Id] = classTag[Id]

  val sessionTimeoutInSeconds: Int = 3600
  def resolveUser(id: Id)(implicit ctx: ExecutionContext): Future[Option[User]] = Future.successful(Cache.getAccountJson(id))

  def loginSucceeded(request: RequestHeader)(implicit ctx: ExecutionContext): Future[SimpleResult] =
    Future.successful(Redirect(routes.Home.test))

  def logoutSucceeded(request: RequestHeader)(implicit ctx: ExecutionContext): Future[SimpleResult] =
    Future.successful(Redirect(routes.Login2.login))

  def authenticationFailed(request: RequestHeader)(implicit ctx: ExecutionContext): Future[SimpleResult] =
    Future.successful(Redirect(routes.Login2.login))

  def authorizationFailed(request: RequestHeader)(implicit ctx: ExecutionContext): Future[SimpleResult] =
        Future.successful(Forbidden("no permission"))

 def authorize(user: User, authority: Authority, request: RequestHeader)(implicit ctx: ExecutionContext): Future[Boolean] = Future.successful {
    val perm = user.user.permissao.tree.get(request.path).getOrElse(false)
    perm match {
      case true => true
      case _ => false
    }
  }
}

家庭行动:

class Home @Inject() (implicit sessionService: SessionService) extends Controller with AuthElement with AuthConfigImpl {

  def test() = StackAction(AuthorityKey -> NormalUser) { implicit request =>
    {
      val u = loggedIn
      //usurio tem permissao
      Ok(views.html.home(u.user.email.toString))
      //      Ok(views.html.home(user.get.email.toString))
    }
  }

}

登录类:

class Login2 @Inject() (implicit sessionService: SessionService, loginService: LoginService, userService: UserService) extends Controller with LoginLogout with AuthConfigImpl with Logging {
 def authenticate = Action.async { implicit request =>
    {
      val form = userForm.bindFromRequest
      try {
        form.fold(
          errors => {
            Future.successful(BadRequest(views.html.login("", userForm)))
          },
          other1Form => {
            val login = loginService.loginVerify(other1Form.email, other1Form.password)
            val uuidGenerate = java.util.UUID.randomUUID.toString
            val account = userService.getDataFromUser(other1Form.email)
            Cache.addEntry(EhCacheRegion.Cerberus.toString() + SessionProductName.Account.toString(), uuidGenerate, models.poso.Session.toJson(account))
            gotoLoginSucceeded(uuidGenerate)
          })
      } catch {
        case login: LoginException => {
          val formError = form.withGlobalError(login.msg)
          Future.successful(BadRequest(views.html.login("", formError)))
        }
        case ex: Exception => {
          logger.error(ex.getMessage())
          Future.successful(BadRequest(views.html.login("", form.withGlobalError("system error"))))
        }
        case _: Any => {
          logger.error("error")
          Future.successful(BadRequest("err"))
        }
      }
    }
  }
}

这是浏览器的结果: enter image description here

1 个答案:

答案 0 :(得分:1)

确保您没有设置安全Cookie,并尝试在不安全的环境中进行测试。 检查AuthConfig,了解lazy val cookieSecureOption

相关问题
最新问题