Common lisp 使用RESTAS和Hunchentoot进行用户身份验证
(我用Hunchentoot和Restas,只是想在这里也提一下) 我真的不知道如何使用HTTP来做这些事情,所以我想发布我的代码可能是显示我意图的最简单方式:Common lisp 使用RESTAS和Hunchentoot进行用户身份验证,common-lisp,hunchentoot,Common Lisp,Hunchentoot,(我用Hunchentoot和Restas,只是想在这里也提一下) 我真的不知道如何使用HTTP来做这些事情,所以我想发布我的代码可能是显示我意图的最简单方式: (define-route log-in ("/log-in/" :method :post) (multiple-value-bind (username pwd) (hunchentoot:authorization) (cond ((and (nth-value 1 (gethash username *users*)
(define-route log-in ("/log-in/" :method :post)
(multiple-value-bind (username pwd) (hunchentoot:authorization)
(cond ((and (nth-value 1 (gethash username *users*)) ;; User exists
(string= pwd (gethash username *users*)))) ;; Password is correct
;; Do something to keep track of logged in user
)))
我该如何在Hunchentoot+Restas上正确地做到这一点?代码和一些解释将非常棒,我在这里很迷茫。您可能需要使用
(启动会话),然后添加如下方法:
(defmethod handle-request :before ((acceptor acceptor) (request request))
(unless (your-check-request-matches-login-page) ; skip session check on login page
(if (null *session*)
(redirect "/log-in")
(progn
(your-check-session-validity)
(other-stuff)))))
(授权)(defmethod handle-request :before ((acceptor acceptor) (request request))
(multiple-value-bind (username pwd) (hunchentoot:authorization)
(if (and (nth-value 1 (gethash username *users*)) ;; User exists
(string= pwd (gethash username *users*))) ;; Password is correct
(progn
;; Do something here
)
(require-authorization "realm"))))
另外,
hunchentoot:authorization(需要授权“某些领域”)