You are hereHome / Development / Authentication using Unfiltered for Scala

Authentication using Unfiltered for Scala

By Gerd Riesselmann - Posted on 11 July 2011

Since it took me a while to figure this out (though it seems very obvious now), here's how I do HTTP authentication in Unfiltered while preserving the authenticated user for later access:

class User(val name: String)
object User {
    def verify(name: String, password: String) = {
        if (name == "user" && password == "pwd") Some(new User(name))
        else None
    }
}

class AuthPlan extends Plan {
    val AuthFail = Unauthorized ~> WWWAuthenticate("""Basic realm="/"""")
    def intent = {
        case GET(Path("/na")) => ResponseString("No Authentication needed")
        case req @ BasicAuth(u, p) => User.verify(u, p) match {
            case Some(user) => req match {
                case GET(Path("/a")) => ResponseString("Authenticated as: " + user.name)
                case GET(...) // Your other filters
                case _ => NotFound
            }
            case None => AuthFail
        }
        case _ => AuthFail
    }
}

Tags

About Me

photo of me

I'm a software developer since 1998, who took his way from Visual Basic to C++ and PHP.

Gerd Riesselmann's LinkedIn profile Gerd Riesselmann's Xing profile Gerd Riesselmann on GitHub

My Projects

Stuff I'm working on

Topics

Most popular