Smallthoughts

Thoughts on Smalltalk

Login filter

If you provide a one-argument block to TLLoginComponent>>#onLogin: it will be evaluated after a logging-in user's username and password have been validated, but before they have gained access. The argument passed to the block is the logging-in user object. In the block you can access all the user object methods, including applicationProperties. If the block evaluates to nil, the user is allowed access. To disallow access, the block should evaluate to a string to be displayed to the user explaining that they are being denied access.

Login filters can be used to disable accounts temporarily, limit the frequency of logins, perform logging, etc.

Here is an example from LoginTestApp. There is a button labeled "Disable my account for two minutes" presented to logged-in users. Clicking the button sends disableMe:

disableMe
    self session user applicationProperties
        at: 'disabled'
        put: (DateAndTime current) + 2 minutes.
    self loggedOut

In LoginTestApp initialize, the login filter is established like this:

    loginComponent onLogin: [ :user | self loginFilter: user ].

Here is the login filter method itself:

loginFilter: user
    | until |
    until := user applicationProperties at: 'disabled' ifAbsent: [ ^ nil ].
    until < DateAndTime current
        ifTrue: [
            user applicationProperties removeKey: 'disabled'.
            ^ nil ]
        ifFalse: [
            ^ 'Your account is disabled. Try again later.']

Tests
Integrating TFLogin with your application
Ajax
User administration
Deleting user accounts
Login filter
Managing failed login attempts
Auto-login
Using email confirmation
New user initialization
Appearance
Persistence
TLCachingFileStorageAdaptor
Application Properties
Reinitialization
New password validation
Logging out
Powered by Pier