hMollom-0.2: src/Network/Mollom/Auth.hs
-- | Takes care of the authentication on behalf of a Mollom client.
module Network.Mollom.Auth
( authenticate
, getMollomTime
, getMollomNonce
, getAuthenticationInformation
) where
import Codec.Binary.Base64(encode)
import Data.ByteString.Internal(c2w)
import Data.HMAC (hmac_sha1)
import Data.List (intersperse)
import Data.Time.Clock (getCurrentTime)
import Data.Time.Format (formatTime)
import System.IO.Unsafe (unsafePerformIO)
import System.Locale (defaultTimeLocale)
import Network.Mollom.Internals
authenticate :: String -- ^public key
-> String -- ^private key
-> String -- ^timestamp
-> String -- ^nonce
-> String -- ^ resulting hash value, base64 encoded
authenticate publicKey privateKey timestamp nonce =
let hash = hmac_sha1 (map c2w privateKey) $ map c2w . concat . (intersperse ":") $ [timestamp, nonce, privateKey]
in encode hash
getMollomTime :: String -- ^time format
-> String -- ^current time in the specified format
getMollomTime format =
let time = unsafePerformIO $ getCurrentTime
in formatTime defaultTimeLocale format time
getMollomNonce :: String
getMollomNonce = "FIXME_NONCE"
getAuthenticationInformation :: String -> String -> [(String, String)]
getAuthenticationInformation publicKey privateKey =
let timeStamp = getMollomTime mollomTimeFormat
nonce = getMollomNonce
hash = authenticate publicKey privateKey timeStamp nonce
in [("public_key", publicKey), ("time", timeStamp), ("hash", hash), ("nonce", nonce)]