com.gu.pandomainauth.action

AuthActions

trait AuthActions extends PanDomainAuth

Linear Supertypes
PanDomainAuth, AnyRef, Any
Ordering
  1. Alphabetic
  2. By inheritance
Inherited
  1. AuthActions
  2. PanDomainAuth
  3. AnyRef
  4. Any
  1. Hide All
  2. Show all
Learn more about member selection
Visibility
  1. Public
  2. All

Type Members

  1. trait AbstractApiAuthAction extends ActionBuilder[UserRequest]

    Abstraction for API auth actions allowing to mix in custom results for each of the different error scenarios.

  2. trait PlainErrorResponses extends AnyRef

Abstract Value Members

  1. abstract def authCallbackUrl: String

    The auth callback url.

    The auth callback url. This is where google will send the user after authentication. This action on this url should invoke processGoogleCallback

    returns

  2. abstract def domain: String

    Definition Classes
    PanDomainAuth

  3. abstract def system: String

    Definition Classes
    PanDomainAuth

  4. abstract def validateUser(authedUser: AuthenticatedUser): Boolean

    Returns true if the authed user is valid in the implementing system (meets your multifactor requirements, you recognise the email etc.

    Returns true if the authed user is valid in the implementing system (meets your multifactor requirements, you recognise the email etc.).

    If your implementing application needs to audit logins / register new users etc then this ia also the place to do it (although in this case you should strongly consider setting cacheValidation to true).

    authedUser
    returns

    true if the user is valid in your app

Concrete Value Members

  1. final def !=(arg0: AnyRef): Boolean

    Definition Classes
    AnyRef

  2. final def !=(arg0: Any): Boolean

    Definition Classes
    Any

  3. final def ##(): Int

    Definition Classes
    AnyRef → Any

  4. final def ==(arg0: AnyRef): Boolean

    Definition Classes
    AnyRef

  5. final def ==(arg0: Any): Boolean

    Definition Classes
    Any

  6. val ANTI_FORGERY_KEY: String

  7. object APIAuthAction extends AbstractApiAuthAction with PlainErrorResponses

    Action that ensures the user is logged in and validated.

  8. object AuthAction extends ActionBuilder[UserRequest]

    Action that ensures the user is logged in and validated.

  9. val GoogleAuth: GoogleAuth

  10. val LOGIN_ORIGIN_KEY: String

    A Play session key that stores the target URL that was being accessed when redirected for authentication

  11. lazy val actorSystem: ActorSystem

    Definition Classes
    PanDomainAuth

  12. def apiGracePeriod: Long

    Adding an expiry extension to APIAuthActions allows for a delay between an applications authentication and their respective API XHR calls expiring.

    Adding an expiry extension to APIAuthActions allows for a delay between an applications authentication and their respective API XHR calls expiring.

    By default this is 0 and thus disabled.

    This is particularly useful for SPAs where users have third party cookies disabled.

    returns

    the amount of delay between App and API expiry in milliseconds

  13. final def asInstanceOf[T0]: T0

    Definition Classes
    Any

  14. lazy val authSettings: Agent[PanDomainAuthSettings]

    Definition Classes
    PanDomainAuth

  15. def awsCredentialsProvider: AWSCredentialsProvider

    Definition Classes
    PanDomainAuth

  16. def awsRegion: Option[Region]

    Definition Classes
    PanDomainAuth

  17. lazy val bucket: S3Bucket

    Definition Classes
    PanDomainAuth

  18. def cacheValidation: Boolean

    By default the validity of the user is checked every request.

    By default the validity of the user is checked every request. If your validateUser implementation is expensive or has side effects you can override this to true and validity will only be checked the first time the user visits your app after their login is established.

    Note the the cache is invalidated after the user's session is re-established with google.

    returns

    true if you want to only check the validity of the user once for the lifetime of the user's auth session

  19. def checkMultifactor(authedUser: AuthenticatedUser): Boolean

  20. def clone(): AnyRef

    Attributes
    protected[java.lang]
    Definition Classes
    AnyRef
    Annotations
    @throws( ... )

  21. lazy val domainSettingsRefreshActor: ActorRef

    Definition Classes
    PanDomainAuth

  22. final def eq(arg0: AnyRef): Boolean

    Definition Classes
    AnyRef

  23. def equals(arg0: Any): Boolean

    Definition Classes
    AnyRef → Any

  24. def extractAuth(request: RequestHeader): AuthenticationStatus

    Extract the authentication status from the request.

  25. def finalize(): Unit

    Attributes
    protected[java.lang]
    Definition Classes
    AnyRef
    Annotations
    @throws( classOf[java.lang.Throwable] )

  26. def flushCookie(result: Result): Result

  27. def generateCookies(authedUser: AuthenticatedUser): List[Cookie]

  28. final def getClass(): Class[_]

    Definition Classes
    AnyRef → Any

  29. def hashCode(): Int

    Definition Classes
    AnyRef → Any

  30. def includeSystemInCookie(authedUser: AuthenticatedUser)(result: Result): Result

  31. def invalidUserMessage(claimedAuth: AuthenticatedUser): String

    Generates the message shown to the user when user validation fails.

    Generates the message shown to the user when user validation fails. override this to add a custom error message

    claimedAuth
    returns

  32. final def isInstanceOf[T0]: Boolean

    Definition Classes
    Any

  33. val multifactorChecker: Option[Google2FAGroupChecker]

  34. final def ne(arg0: AnyRef): Boolean

    Definition Classes
    AnyRef

  35. final def notify(): Unit

    Definition Classes
    AnyRef

  36. final def notifyAll(): Unit

    Definition Classes
    AnyRef

  37. def processGoogleCallback()(implicit request: RequestHeader): Future[Result]

  38. def processLogout(implicit request: RequestHeader): Result

  39. def proxyConfiguration: Option[ProxyConfiguration]

    Definition Classes
    PanDomainAuth

  40. def readAuthenticatedUser(request: RequestHeader): Option[AuthenticatedUser]

  41. def readCookie(request: RequestHeader): Option[Cookie]

  42. def sendForAuth[A](implicit request: RequestHeader, email: Option[String] = None): Future[Result]

    starts the authentication process for a user.

    starts the authentication process for a user. By default this just sends the user off to google for auth but if you want to show welcome page with a button on it then override.

  43. def settings: PanDomainAuthSettings

    Definition Classes
    PanDomainAuth

  44. lazy val settingsMap: Map[String, String]

    Definition Classes
    PanDomainAuth

  45. def showUnauthedMessage(message: String)(implicit request: RequestHeader): Result

    invoked when the user is not logged in a can't be authed - this may be when the user is not valid in yur system or when they have exoplicitly logged out.

    invoked when the user is not logged in a can't be authed - this may be when the user is not valid in yur system or when they have exoplicitly logged out.

    Override this to add a logged out screen and display maeesages for your app. The default implementation is to ust return a 403 response

    message
    request
    returns

  46. def shutdown: Unit

    Definition Classes
    PanDomainAuth

  47. final def synchronized[T0](arg0: ⇒ T0): T0

    Definition Classes
    AnyRef

  48. def toString(): String

    Definition Classes
    AnyRef → Any

  49. final def wait(): Unit

    Definition Classes
    AnyRef
    Annotations
    @throws( ... )

  50. final def wait(arg0: Long, arg1: Int): Unit

    Definition Classes
    AnyRef
    Annotations
    @throws( ... )

  51. final def wait(arg0: Long): Unit

    Definition Classes
    AnyRef
    Annotations
    @throws( ... )

Inherited from PanDomainAuth

Inherited from AnyRef

Inherited from Any

Ungrouped