postgres-haskell
diff --git a/‎postgres-wire.cabal
Lines changed: 1 addition & 0 deletions b/‎postgres-wire.cabal
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/Database/PostgreSQL/Connection.hs
Lines changed: 61 additions & 18 deletions b/‎src/Database/PostgreSQL/Connection.hs
Lines changed: 61 additions & 18 deletions
diff --git a/‎src/Database/PostgreSQL/Protocol/Decoders.hs
Lines changed: 1 addition & 1 deletion b/‎src/Database/PostgreSQL/Protocol/Decoders.hs
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Database/PostgreSQL/Settings.hs
Lines changed: 1 addition & 1 deletion b/‎src/Database/PostgreSQL/Settings.hs
Lines changed: 1 addition & 1 deletion
@@ -38,6 +38,7 @@ library
                      , unix
                      , postgresql-binary
                      , tls
+                     , cryptonite
   default-language:    Haskell2010
   default-extensions:  
     OverloadedStrings
 
@@ -28,8 +28,8 @@ import System.Socket.Family.Inet
 import System.Socket.Type.Stream
 import System.Socket.Protocol.TCP
 import System.Socket.Family.Unix
-import Data.Time.Clock.POSIX
 import Control.Concurrent.Chan.Unagi
+import Crypto.Hash (hash, Digest, MD5)
 
 import Database.PostgreSQL.Protocol.Encoders
 import Database.PostgreSQL.Protocol.Decoders
@@ -62,6 +62,10 @@ data Error
     | ImpossibleError
     deriving (Show)
 
+data AuthError
+    = AuthPostgresError ErrorDesc
+    | AuthNotSupported B.ByteString
+
 data DataMessage = DataMessage [V.Vector B.ByteString]
     deriving (Show)
 
@@ -118,11 +122,13 @@ connect :: ConnectionSettings -> IO Connection
 connect settings =  do
     rawConn <- createRawConnection settings
     when (settingsTls settings == RequiredTls) $ handshakeTls rawConn
-    authorize rawConn settings
+    authResult <- authorize rawConn settings
+    -- TODO should close connection on error
+    connParams <- either (error "invalid connection") pure authResult
 
     (inDataChan, outDataChan) <- newChan
-    (inAllChan, outAllChan) <- newChan
-    storage <- newStatementStorage
+    (inAllChan, outAllChan)   <- newChan
+    storage                   <- newStatementStorage
 
     tid <- forkIO $ receiverThread rawConn inDataChan inAllChan
     pure Connection
@@ -131,18 +137,62 @@ connect settings =  do
         , connOutDataChan = outDataChan
         , connOutAllChan = outAllChan
         , connStatementStorage = storage
-        , connParameters = ConnectionParameters
-            { paramServerVersion = ServerVersion 1 1 1
-            , paramServerEncoding = ""
-            , paramIntegerDatetimes = True
-            }
+        , connParameters = connParams
         }
 
-authorize :: RawConnection -> ConnectionSettings -> IO ()
+authorize
+    :: RawConnection
+    -> ConnectionSettings
+    -> IO (Either AuthError ConnectionParameters)
 authorize rawConn settings = do
     sendStartMessage rawConn $ consStartupMessage settings
+    -- 4096 should be enough for the whole response from a server at
+    -- startup phase.
     r <- rReceive rawConn 4096
-    readAuthMessage r
+    case pushChunk (runGetIncremental decodeAuthResponse) r of
+        BG.Done rest _ r -> case r of
+            AuthenticationOk -> do
+                putStrLn "Auth ok"
+                -- TODO parse parameters
+                pure $ Right $ parseParameters rest
+            AuthenticationCleartextPassword ->
+                performPasswordAuth $ PasswordPlain $ settingsPassword settings
+            AuthenticationMD5Password (MD5Salt salt) ->
+                let pass = "md5" <> md5Hash (md5Hash (settingsPassword settings
+                                 <> settingsUser settings) <> salt)
+                in performPasswordAuth $ PasswordMD5 pass
+            AuthenticationGSS         -> pure $ Left $ AuthNotSupported "GSS"
+            AuthenticationSSPI        -> pure $ Left $ AuthNotSupported "SSPI"
+            AuthenticationGSSContinue _ -> pure $ Left $ AuthNotSupported "GSS"
+            AuthErrorResponse desc    -> pure $ Left $ AuthPostgresError desc
+        -- TODO handle this case
+        f -> error "athorize"
+  where
+    performPasswordAuth
+        :: PasswordText -> IO (Either AuthError ConnectionParameters)
+    performPasswordAuth password = do
+        putStrLn $ "sending password" ++ show password
+        sendMessage rawConn $ PasswordMessage password
+        r <- rReceive rawConn 4096
+        case pushChunk (runGetIncremental decodeAuthResponse) r of
+            BG.Done rest _ r -> case r of
+                AuthenticationOk -> do
+                    putStrLn "Auth ok"
+                    pure $ Right $ parseParameters rest
+                AuthErrorResponse desc ->
+                    pure $ Left $ AuthPostgresError desc
+                _ -> error "Impossible happened"
+            -- TODO handle this case
+            f -> error "authorize"
+    -- TODO right parsing
+    parseParameters :: B.ByteString -> ConnectionParameters
+    parseParameters str = ConnectionParameters
+        { paramServerVersion = ServerVersion 1 1 1
+        , paramIntegerDatetimes = False
+        , paramServerEncoding = ""
+        }
+    md5Hash :: B.ByteString -> B.ByteString
+    md5Hash bs = BS.pack $ show (hash bs :: Digest MD5)
 
 handshakeTls :: RawConnection ->  IO ()
 handshakeTls _ = pure ()
@@ -166,13 +216,6 @@ sendMessage rawConn msg = void $ do
     let smsg = toStrict . toLazyByteString $ encodeClientMessage msg
     rSend rawConn smsg
 
-readAuthMessage :: B.ByteString -> IO ()
-readAuthMessage s =
-    case pushChunk (runGetIncremental decodeAuthResponse) s of
-        BG.Done _ _ r -> case r of
-            AuthenticationOk -> putStrLn "Auth ok"
-            _                -> error "Invalid auth"
-        f -> error $ show s
 
 receiverThread
     :: RawConnection
 
@@ -21,11 +21,11 @@ import Database.PostgreSQL.Protocol.Types
 decodeAuthResponse :: Get AuthResponse
 decodeAuthResponse = do
     c <- getWord8
+    len <- getInt32be
     case chr $ fromIntegral c of
         'E' -> AuthErrorResponse <$>
             (getByteString (fromIntegral $ len - 4) >>= decodeErrorDesc)
         'R' -> do
-            len <- getInt32be
             rType <- getInt32be
             case rType of
                 0 -> pure AuthenticationOk
 
@@ -30,7 +30,7 @@ defaultConnectionSettings = ConnectionSettings
     , settingsPort     = 5432
     , settingsDatabase = "testdb"
     , settingsUser     = "v"
-    , settingsPassword = ""
+    , settingsPassword = "123"
     , settingsTls      = RequiredTls
     }
Original file line number	Diff line number	Diff line change
`@@ -30,7 +30,7 @@ defaultConnectionSettings = ConnectionSettings`
`30`	`30`	`, settingsPort = 5432`
`31`	`31`	`, settingsDatabase = "testdb"`
`32`	`32`	`, settingsUser = "v"`
`33`		`- , settingsPassword = ""`
	`33`	`+ , settingsPassword = "123"`
`34`	`34`	`, settingsTls = RequiredTls`
`35`	`35`	`}`
`36`	`36`