我有一个从Drupal页面托管的Flash应用程序。 Flash应用程序的某些部分应该对所有用户可用,但有些部分应仅供登录用户使用。 (具体角色无关紧要,只是他们是网站的任何授权用户)。
在Flash中,我可以通过屏幕抓取“?q = user”页面来检测用户是否已登录,但这非常脆弱。这样做的“正确”方法是什么?如有必要,我可以安装其他模块,但它们需要与Drupal 6兼容,而不是5。
同样,如果当前没有用户登录,我如何获取他们提供给我的用户名和密码并将其登录(或确定密码错误)?
答案 0 :(得分:4)
如果您熟悉模块开发,则可以快速创建自己的模块,以获得所需的功能,而无需通过“真正的”Web服务层。这是一个快速示例,创建一个名为“myservices”的模块:
<?php
// myservices.info
name = My Services
description = Expose basic services
core = 6.x
<?php
// myservices.module
function myservices_menu() {
$items['myservices/user'] = array(
'title' => 'Get auth',
'page callback' => 'myservices_get_user',
'access arguments' => array('access content'),
);
return $items;
}
function myservices_get_user() {
global $user;
if (in_array('authenticated user', $user->roles) ) {
print 'yes';
} else {
print 'no';
}
}
将这两个文件放在模块目录中的“myservices”目录中,激活它,然后转到http://yourdomain.com/myservices/user
如果您经过身份验证,则会返回yes,如果不是no等,则可以在Flash应用中选择。
答案 1 :(得分:2)
我能够使用Drupal的“系统”和“用户”服务来做到这一点:
在撰写本文时,AMFPHP服务尚未移植到Drupal 6,因此我使用了XMLRPC。要使用ActionScript中的XMLRPC,我使用了as3-rpclib处的帮助程序库。这个库是为ActionScript2编写的,所以在Flex3上使用它需要我修补它,如this page所述(向下滚动页面并在2008年5月10日通过“jameshyu”搜索评论)。
完成所有这些先决条件后,您可以检查当前登录的用户(如果有)和/或使用以下代码登录用户。
这是实际实现登录的模块:
package
{
import com.ak33m.rpc.xmlrpc.XMLRPCObject;
import flash.events.*;
import flash.net.*;
import mx.collections.ItemResponder;
import mx.rpc.AsyncToken;
import mx.rpc.events.FaultEvent;
import mx.rpc.events.ResultEvent;
public class DrupalLogin
{
private var _api:XMLRPCObject;
public function DrupalLogin( url:String )
{
_api = new XMLRPCObject();
_api.endpoint = url;
_api.destination = "";
}
public function set LoginResult( fn:Function ):void {_handleLoginResult = fn; }
public function set CheckResult( fn:Function ):void {_handleCheckResult = fn; }
public function set LogoutResult( fn:Function ):void {_handleLogoutResult = fn; }
public function get User():String { return _user; }
public function set TraceResult( fn:Function ):void {_handleTrace = fn; }
private var _handleLoginResult:Function;
private var _handleCheckResult:Function;
private var _handleLogoutResult:Function;
private var _handleTrace:Function;
private function onTrace( st:String ):void
{
_handleTrace(st);
}
private var _firstCheckDone:Boolean = false;
private var _loggedIn:Boolean = false;
// The logged-in user's ID (if any)
private var _user:String = "";
// *****************************************
// doLogin
// *****************************************
// Function doLogin kicks off the process.
public function doLogin( user:String, pwd:String ):void
{
onTrace( "******************* doLogin ********************" );
if( !_firstCheckDone )
{
_handleLoginResult( false, "ALWAYS CALL doCheck() FIRST TO SEE IF YOU NEED TO LOG IN OR NOT" );
return;
}
if( _loggedIn )
{
_handleLoginResult( true, "YOU ARE ALREADY LOGGED IN" );
return;
}
var token:AsyncToken = _api.call( "user.login", _sid, user, pwd );
var tresponder:ItemResponder = new ItemResponder(this.onLoginInfo,this.onLoginFault);
token.addResponder(tresponder);
}
private function onLoginInfo (event:ResultEvent,token:Object = null):void
{
onTrace( "... got onLoginInfo" );
_user = event.result.user.name;
_loggedIn = true;
_handleLoginResult( true, "logged in ok" );
}
private function onLoginFault (event:FaultEvent, token:Object=null):void
{
onTrace( " got onLoginFault" );
_loggedIn = false;
_handleLoginResult( false, "Fault: " + event.fault.faultString + " -- " + event.fault.faultCode);
}
// *****************************************
// doLogout
// *****************************************
public function doLogout():void
{
onTrace( "******************* doLogout ********************" );
if( !_firstCheckDone )
{
_handleLogoutResult( false, "ALWAYS CALL doCheck() FIRST TO SEE IF YOU ARE ABLE TO LOG OUT OR NOT" );
return;
}
if( !_loggedIn )
{
_handleLogoutResult( true, "YOU ARE ALREADY LOGGED OUT" );
return;
}
var token:AsyncToken = _api.call( "user.logout", _sid );
var tresponder:ItemResponder = new ItemResponder(this.onLogoutInfo,this.onLogoutFault);
token.addResponder(tresponder);
}
private function onLogoutInfo (event:ResultEvent,token:Object = null):void
{
onTrace( "got onLogoutInfo" );
_loggedIn = false;
_handleLogoutResult( true, "logged out ok" );
}
private function onLogoutFault (event:FaultEvent, token:Object=null):void
{
onTrace( "got onLogoutFault" );
_loggedIn = false;
_handleLogoutResult( false, "Fault: " + event.fault.faultString + " -- " + event.fault.faultCode);
}
// *****************************************
// doCheckLogin
// *****************************************
private var _sid:String;
public function doCheckLogin():void
{
onTrace( "******************* doCheckLogin ********************" );
var token:AsyncToken = _api.call( "system.connect" );
var tresponder:ItemResponder = new ItemResponder(this.onCheckInfo,this.onCheckFault);
token.addResponder(tresponder);
}
private function onCheckInfo (event:ResultEvent,token:Object = null):void
{
onTrace( "got onCheckInfo" );
_user = event.result.user.name;
_sid = event.result.user.sid;
var roles:Object = event.result.user.roles;
_loggedIn = false;
for( var i:int=0; i<10; i++ )
{
var tmp:String = roles[i.toString()];
if( tmp == "authenticated user" )
_loggedIn = true;
}
trace( "user = " + _user + ", sid=" + _sid + ", loggedIn=" + _loggedIn );
_firstCheckDone = true;
_handleCheckResult( _loggedIn, _loggedIn?("Currently logged in as " + _user):"Not logged in yet" );
}
private function onCheckFault (event:FaultEvent, token:Object=null):void
{
onTrace( "got onCheckFault" );
_handleCheckResult( false, "Fault: " + event.fault.faultString + " -- " + event.fault.faultCode);
}
}
}
以下是使用它的示例:
<?xml version="1.0" encoding="utf-8"?>
<mx:Application xmlns:mx="http://www.adobe.com/2006/mxml" layout="absolute">
<mx:Script source="LoginExample.as" />
<mx:Button id="btnGoodLogin" click="btnGoodLogin_onClick()" label="Good Login" enabled="true" y="28"/>
<mx:Button id="btnBadLogin" click="btnBadLogin_onClick()" label="Bad Login" enabled="true" y="28" x="112"/>
<mx:Button id="btnLogout" click="btnLogout_onClick()" label="Logout" enabled="true" y="28" x="219"/>
<mx:Button id="btnCheck" click="btnCheck_onClick()" label="Check" enabled="true" y="28" x="325"/>
<mx:Text id="txtResult" y="58" width="263"/>
</mx:Application>
import flash.events.*;
import flash.net.*;
private var _login:DrupalLogin;
private function setup():void
{
if( _login==null )
{
var url:String = "http://myserver/mydrupal?q=services/xmlrpc";
_login = new DrupalLogin(url);
_login.CheckResult = handleCheckResult;
_login.LoginResult = handleLoginResult;
_login.LogoutResult = handleLogoutResult;
_login.TraceResult = handleTraceResult;
}
}
private function btnGoodLogin_onClick():void
{
setup();
_login.doLogin( "goodname", "goodpwd" );
}
private function btnBadLogin_onClick():void
{
setup();
_login.doLogin( "badname", "badpwd" );
}
private function btnLogout_onClick():void
{
setup();
_login.doLogout();
}
private function btnCheck_onClick():void
{
setup();
_login.doCheckLogin();
}
private function showResult( result:String):void
{
trace( "showResult: " + result );
txtResult.text = result;
}
private function handleTraceResult( text:String ):void
{
trace( text );
}
private function handleCheckResult( loggedIn:Boolean, txt:String="" ):void
{
if( txt != "" )
txt = " (" + txt + ")";
if( loggedIn )
showResult( "ALREADY LOGGED IN AS " + _login.User + txt);
else
showResult( "NOT LOGGED IN YET" + txt );
}
private function handleLoginResult( loggedIn:Boolean, txt:String="" ):void
{
if( txt != "" )
txt = " (" + txt + ")";
if( loggedIn )
showResult( "LOGIN ATTEMPT SUCCEEDED" + txt);
else
showResult( "LOGIN ATTEMPT FAILED" + txt );
}
private function handleLogoutResult( loggedOut:Boolean, txt:String="" ):void
{
if( txt != "" )
txt = " (" + txt + ")";
if( loggedOut )
showResult( "LOGOUT ATTEMPT SUCCEEDED" + txt );
else
showResult( "LOGOUT ATTEMPT FAILED" + txt);
}
答案 2 :(得分:0)
我知道这篇帖子最初制作时还有很长的路要走,但是如果你仍然对此感兴趣并且从不花时间研究它,我想出了如何通过flash成功处理登录文献。 (嵌入式或外部的一个。)它甚至不需要在系统上安装AMFPHP。 (这很好,因为最后我检查了AMFPHP所依赖的服务模块还没有推荐状态。)
我在此设置了一个演示页:AS3 Login Demo Page
您可以登录并注销,它会检测您是否已经登录。它仍在进行中,但您需要的大部分内容都是为您准备的。
如果您想查看文档并希望获得源代码的副本,请访问以下所有内容:www.andrewnprice.com
我希望有所帮助。我应该在下周的某个时间对该演示进行更新,所以如果你想要我在帖子中添加的其他一些功能,请回来查看。