+{-# LANGUAGE
+ UnicodeSyntax
+ #-}
{-# OPTIONS_HADDOCK prune #-}
-- |Manipulation of WWW authorization.
, authCredentialP -- private
)
where
-
-import qualified Codec.Binary.Base64 as B64
-import Data.Maybe
-import Network.HTTP.Lucu.Parser
-import Network.HTTP.Lucu.Parser.Http
-import Network.HTTP.Lucu.Utils
+import qualified Data.ByteString.Base64 as B64
+import qualified Data.ByteString.Char8 as C8
+import Network.HTTP.Lucu.Parser
+import Network.HTTP.Lucu.Parser.Http
+import Network.HTTP.Lucu.Utils
+import Prelude.Unicode
-- |Authorization challenge to be sent to client with
-- \"WWW-Authenticate\" header. See
deriving (Eq)
-- |'Realm' is just a string which must not contain any non-ASCII letters.
-type Realm = String
+type Realm = String
-- |Authorization credential to be sent by client with
-- \"Authorization\" header. See
-- letters.
type Password = String
-
instance Show AuthChallenge where
show (BasicAuthChallenge realm)
- = "Basic realm=" ++ quoteStr realm
+ = "Basic realm=" ⧺ quoteStr realm
-
-authCredentialP :: Parser AuthCredential
-authCredentialP = allowEOF $!
- do _ <- string "Basic"
- _ <- many1 lws
- b64 <- many1
- $ satisfy (\ c -> (c >= 'a' && c <= 'z') ||
- (c >= 'A' && c <= 'Z') ||
- (c >= '0' && c <= '9') ||
- c == '+' ||
- c == '/' ||
- c == '=')
- let decoded = map (toEnum . fromEnum) (fromJust $ B64.decode b64)
- case break (== ':') decoded of
- (uid, ':' : password)
- -> return (BasicAuthCredential uid password)
- _ -> failP
+authCredentialP ∷ Parser AuthCredential
+authCredentialP
+ = allowEOF $!
+ do _ ← string "Basic"
+ _ ← many1 lws
+ b64 ← many1
+ $ satisfy (\c → (c ≥ 'a' ∧ c ≤ 'z') ∨
+ (c ≥ 'A' ∧ c ≤ 'Z') ∨
+ (c ≥ '0' ∧ c ≤ '9') ∨
+ c ≡ '+' ∨
+ c ≡ '/' ∨
+ c ≡ '=')
+ case break (≡ ':') (decode b64) of
+ (uid, ':' : password)
+ → return (BasicAuthCredential uid password)
+ _ → failP
+ where
+ decode ∷ String → String
+ decode = C8.unpack ∘ B64.decodeLenient ∘ C8.pack