使用Scala Play框架和剪影进行身份验证失败时如何记录用户凭据
我有一个安全的行动使用剪影,像这样的东西:使用Scala Play框架和剪影进行身份验证失败时如何记录用户凭据,scala,playframework,silhouette,Scala,Playframework,Silhouette,我有一个安全的行动使用剪影,像这样的东西: def data: Action[JsValue] = silhouette.SecuredAction(errorHandler).async(parse.json) { implicit request => ... 我想在用户身份验证失败时记录消息。最好是他/她用来验证身份的用户名。我找不到这样做的方法。最后,我发现创建自己的AuthProvider(或者更确切地说,覆盖现有的BasicAuthProvider)并添加一个MarkerCo
def data: Action[JsValue] = silhouette.SecuredAction(errorHandler).async(parse.json) { implicit request =>
...
我想在用户身份验证失败时记录消息。最好是他/她用来验证身份的用户名。我找不到这样做的方法。最后,我发现创建自己的AuthProvider(或者更确切地说,覆盖现有的BasicAuthProvider)并添加一个
MarkerContextclass BasicAuthProvider @Inject()(
override protected val authInfoRepository: AuthInfoRepository,
override protected val passwordHasherRegistry: PasswordHasherRegistry)(implicit override val executionContext: ExecutionContext)
extends providers.BasicAuthProvider(authInfoRepository, passwordHasherRegistry)(executionContext) {
/**
* Authenticates an identity based on credentials sent in a request.
*
* @param request The request.
* @tparam B The type of the body.
* @return Some login info on successful authentication or None if the authentication was unsuccessful.
*/
override def authenticate[B](request: Request[B]): Future[Option[LoginInfo]] = {
getCredentials(request) match {
case Some(credentials) =>
val loginInfo = LoginInfo(id, credentials.identifier)
val marker: org.slf4j.Marker =
MarkerFactory.getMarker(loginInfo.toString)
implicit val mc: MarkerContext = MarkerContext(marker)
authenticate(loginInfo, credentials.password).map {
case Authenticated => Some(loginInfo)
case InvalidPassword(error) =>
logger.warn(error)
None
case UnsupportedHasher(error) => throw new ConfigurationException(error)
case NotFound(error) =>
logger.warn(error)
None
}
case None => Future.successful(None)
}
}
}