R/auth.R
In bedatadriven/activityinfo-R: R interface to ActivityInfo.org, an information management software for humanitarian and development operations
Defines functions
activityInfoLogin
deprecationOfBasicAuthWarning
activityInfoToken
credentialType
.onLoad
Documented in
activityInfoLogin
activityInfoToken
# set standard connection to stdin() for user interaction
.onLoad <- function(libname, pkgname) {
options(activityinfo.verbose.requests = FALSE)
options(activityinfo.verbose.tasks = FALSE)
}
# the legacy credentials file was "~/.activityinfo.credentials", changing the name to ensure we don't overwrite the old key file accidentally
credentialsFile <- "~/.activityinfo.server.credentials"
credentials <- environment()
# ---- activityInfoRootUrl() ----
#' Get or set the root url for the ActivityInfo server
#'
#' @description
#' Get or set the root url for the ActivityInfo server
#'
#' @param newUrl The new URL to set as the ActivityInfo root URL
#'
#' @details
#' If you are using the [ActivityInfo Self-Managed Server](https://www.activityinfo.org/support/docs/self-managed/index.html),
#' you can use this function to point the R package to your own server.
#'
#' @examples
#' \dontrun{
#' # Connect to a self-managed ActivityInfo server
#' activityInfoRootUrl("https://activityinfo.example.org")
#' }
#' @export
activityInfoRootUrl <- local({
url <- "https://www.activityinfo.org"
function(newUrl) {
if (!missing(newUrl)) {
url <<- newUrl
activityInfoAuthentication(NULL)
invisible()
} else {
url
}
}
})
# ---- ActivityInfoAuthentication() ----
#' Constructs a httr::authentication object from saved credentials
#' from the user's home directory at ~/.activityinfo.server.credentials
#'
#' @importFrom httr authenticate add_headers
#' @importFrom rlang .data
#' @noRd
activityInfoAuthentication <- local({
credentials <- NULL
function(newValue) {
if (!missing(newValue)) {
credentials <<- newValue
if (!is.null(credentials)&&credentialType(credentials) == "basic") deprecationOfBasicAuthWarning()
} else {
if (is.null(credentials)&&file.exists(credentialsFile)) {
authObj = readRDS(file = credentialsFile) %>% filter(.data$server == activityInfoRootUrl())
if (nrow(authObj) == 1) {
credentials <<- authObj %>% pull(credentials)
if (credentialType(credentials) == "basic") deprecationOfBasicAuthWarning()
} else if (nrow(authObj) > 1) {
warning(sprintf("...file exists, but has more than one key. Try saving the key again.\n", path.expand(path = credentialsFile)))
}
}
if (is.null(credentials)) {
warning("Connecting to activityinfo.org anonymously...")
NULL
} else {
type <- credentialType(credentials)
if (type == "basic") {
userPass <- unlist(strsplit(credentials, ":"))
authenticate(userPass[1], userPass[2], type = "basic")
} else if (type == "bearer") {
httr::add_headers(Authorization = paste("Bearer", credentials, sep = " "))
}
}
}
}
})
# ---- Other functions ----
credentialType <- function(credentials) {
if (nchar(credentials) > 2) {
if (grepl(credentials, pattern = ".+:.+")) {
return("basic")
} else {
return("bearer")
}
}
stop("ActivityInfo credential not a valid type.")
}
#' Store personal token to authorize requests for the
#' ActivityInfo API
#'
#' @description
#' Configures the current session to use a personal token for authentication to
#' the ActivityInfo Server.
#'
#' @param token The personal token used to authenticate with to ActivityInfo.org
#' @param prompt TRUE if to prompt the user to save the token
#'
#' @details
#' Users can generate a personal API token from the [Profile Settings](https://www.activityinfo.org/support/docs/m/84880/l/1333305.html)
#' page of ActivityInfo's user interface. This token is used instead of a password
#' when connecting to the ActivityInfo API.
#'
#' Note, in general, you [*never* include your API token](https://blog.gitguardian.com/secrets-api-management/)
#' in an R source file or check such sources with tokens into version control.
#'
#' When run interactively and prompt = TRUE, you will be prompted to store the token locally on
#' your device. This avoids the need to provide the token each time you run
#' a script. The token is stored in plaintext, however, so you should only
#' agree to store your token when your device is properly secured with a screenlock
#' and not shared with others.
#'
#'
#'
#' @examples
#' \dontrun{
#' activityInfoToken("<API TOKEN>")
#' }
#' @export
#' @importFrom rlang .data
activityInfoToken <- function(token, prompt = TRUE) {
if (interactive() && missing(token)) {
token <- readline("Enter your token: ")
}
saveToAuthFile <- function(authObj) {
authObj <- authObj %>%
filter(.data$server != activityInfoRootUrl()) %>%
add_row(server = activityInfoRootUrl(), credentials = token)
saveRDS(object = authObj, file = credentialsFile)
}
activityInfoAuthentication(token)
if (interactive() && prompt) {
cat("Do you want to save your token for future R sessions?\n")
cat("WARNING: If you choose yes, your token will be stored plain text in your home\n")
cat("directory. Don't choose this option on an insecure or public machine! (Y/n)\n")
save <- readline("Save token? ")
if (substr(tolower(save), 1, 1) == "y") {
if (file.exists(credentialsFile)) {
authObj <- readRDS(file = credentialsFile)
existingAuthObj <- authObj %>% filter(.data$server == activityInfoRootUrl())
if (nrow(existingAuthObj)==1) {
cat(sprintf("You already have a saved token. Do you want to replace existing token for %s?\n", activityInfoRootUrl()))
save2 <- readline("Save token? ")
if (substr(tolower(save2), 1, 1) == "y") {
saveToAuthFile(authObj)
}
} else {
saveToAuthFile(authObj)
}
} else {
authObj <- tibble(server = activityInfoRootUrl(), credentials = token)
saveToAuthFile(authObj)
}
}
}
}
deprecationOfBasicAuthWarning <- function() {
warning("The ActivityInfo API is deprecating the use of username and passwords. Update your code to use a personal API token with the function activityInfoToken() before the functionality is removed.", call. = FALSE, noBreaks. = TRUE)
}
#' Use Basic Authentication (deprecated) to authenticate and store user credentials to authorize requests for the
#' ActivityInfo API
#'
#' @description
#' Configures the current session to use a user's email address and
#' password for authentication to \href{www.activityinfo.org}{ActivityInfo.org}
#'
#' This function is deprecated. Switch to the more secure activityInfoToken() with a personal access token.
#'
#' @param userEmail The email address used to log in with to ActivityInfo.org
#' @param password The user's ActivityInfo password
#'
#' @examples
#' \dontrun{
#' activityInfoLogin("nouser@activityinfo.org", "pass")
#' }
#' @export
activityInfoLogin <- function(userEmail, password) {
.Deprecated("activityInfoToken")
deprecationOfBasicAuthWarning()
if (missing(userEmail) || missing(password)) {
attempts <- 0
repeat {
userEmail <- readline("Enter the email address you use to login to ActivityInfo.org: ")
if (grepl(userEmail, pattern = ".+@.+")) {
break
}
cat("Not an email address...\n")
attempts <- 1
if (attempts >= 3) {
stop("Invalid email address, must contain at least a '@' !")
attempts <- attempts + 1
}
}
password <- readline("Enter your password: ")
}
credentials <- paste(userEmail, password, sep = ":")
activityInfoAuthentication(credentials)
if (interactive()) {
cat("Do you want to save your password for future R sessions?\n")
cat("WARNING: If you choose yes, your password will be stored plain text in your home\n")
cat("directory. Don't choose this option on an insecure or public machine! (Y/n)\n")
save <- readline("Save password? ")
if (substr(tolower(save), 1, 1) == "y") {
cat(credentials, file = credentialsFile)
}
}
}
bedatadriven/activityinfo-R documentation built on Dec. 21, 2024, 8:23 a.m.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Defines functions activityInfoLogin deprecationOfBasicAuthWarning activityInfoToken credentialType .onLoad
Documented in activityInfoLogin activityInfoToken
# set standard connection to stdin() for user interaction
.onLoad <- function(libname, pkgname) {
options(activityinfo.verbose.requests = FALSE)
options(activityinfo.verbose.tasks = FALSE)
}
# the legacy credentials file was "~/.activityinfo.credentials", changing the name to ensure we don't overwrite the old key file accidentally
credentialsFile <- "~/.activityinfo.server.credentials"
credentials <- environment()
# ---- activityInfoRootUrl() ----
#' Get or set the root url for the ActivityInfo server
#'
#' @description
#' Get or set the root url for the ActivityInfo server
#'
#' @param newUrl The new URL to set as the ActivityInfo root URL
#'
#' @details
#' If you are using the [ActivityInfo Self-Managed Server](https://www.activityinfo.org/support/docs/self-managed/index.html),
#' you can use this function to point the R package to your own server.
#'
#' @examples
#' \dontrun{
#' # Connect to a self-managed ActivityInfo server
#' activityInfoRootUrl("https://activityinfo.example.org")
#' }
#' @export
activityInfoRootUrl <- local({
url <- "https://www.activityinfo.org"
function(newUrl) {
if (!missing(newUrl)) {
url <<- newUrl
activityInfoAuthentication(NULL)
invisible()
} else {
url
}
}
})
# ---- ActivityInfoAuthentication() ----
#' Constructs a httr::authentication object from saved credentials
#' from the user's home directory at ~/.activityinfo.server.credentials
#'
#' @importFrom httr authenticate add_headers
#' @importFrom rlang .data
#' @noRd
activityInfoAuthentication <- local({
credentials <- NULL
function(newValue) {
if (!missing(newValue)) {
credentials <<- newValue
if (!is.null(credentials)&&credentialType(credentials) == "basic") deprecationOfBasicAuthWarning()
} else {
if (is.null(credentials)&&file.exists(credentialsFile)) {
authObj = readRDS(file = credentialsFile) %>% filter(.data$server == activityInfoRootUrl())
if (nrow(authObj) == 1) {
credentials <<- authObj %>% pull(credentials)
if (credentialType(credentials) == "basic") deprecationOfBasicAuthWarning()
} else if (nrow(authObj) > 1) {
warning(sprintf("...file exists, but has more than one key. Try saving the key again.\n", path.expand(path = credentialsFile)))
}
}
if (is.null(credentials)) {
warning("Connecting to activityinfo.org anonymously...")
NULL
} else {
type <- credentialType(credentials)
if (type == "basic") {
userPass <- unlist(strsplit(credentials, ":"))
authenticate(userPass[1], userPass[2], type = "basic")
} else if (type == "bearer") {
httr::add_headers(Authorization = paste("Bearer", credentials, sep = " "))
}
}
}
}
})
# ---- Other functions ----
credentialType <- function(credentials) {
if (nchar(credentials) > 2) {
if (grepl(credentials, pattern = ".+:.+")) {
return("basic")
} else {
return("bearer")
}
}
stop("ActivityInfo credential not a valid type.")
}
#' Store personal token to authorize requests for the
#' ActivityInfo API
#'
#' @description
#' Configures the current session to use a personal token for authentication to
#' the ActivityInfo Server.
#'
#' @param token The personal token used to authenticate with to ActivityInfo.org
#' @param prompt TRUE if to prompt the user to save the token
#'
#' @details
#' Users can generate a personal API token from the [Profile Settings](https://www.activityinfo.org/support/docs/m/84880/l/1333305.html)
#' page of ActivityInfo's user interface. This token is used instead of a password
#' when connecting to the ActivityInfo API.
#'
#' Note, in general, you [*never* include your API token](https://blog.gitguardian.com/secrets-api-management/)
#' in an R source file or check such sources with tokens into version control.
#'
#' When run interactively and prompt = TRUE, you will be prompted to store the token locally on
#' your device. This avoids the need to provide the token each time you run
#' a script. The token is stored in plaintext, however, so you should only
#' agree to store your token when your device is properly secured with a screenlock
#' and not shared with others.
#'
#'
#'
#' @examples
#' \dontrun{
#' activityInfoToken("<API TOKEN>")
#' }
#' @export
#' @importFrom rlang .data
activityInfoToken <- function(token, prompt = TRUE) {
if (interactive() && missing(token)) {
token <- readline("Enter your token: ")
}
saveToAuthFile <- function(authObj) {
authObj <- authObj %>%
filter(.data$server != activityInfoRootUrl()) %>%
add_row(server = activityInfoRootUrl(), credentials = token)
saveRDS(object = authObj, file = credentialsFile)
}
activityInfoAuthentication(token)
if (interactive() && prompt) {
cat("Do you want to save your token for future R sessions?\n")
cat("WARNING: If you choose yes, your token will be stored plain text in your home\n")
cat("directory. Don't choose this option on an insecure or public machine! (Y/n)\n")
save <- readline("Save token? ")
if (substr(tolower(save), 1, 1) == "y") {
if (file.exists(credentialsFile)) {
authObj <- readRDS(file = credentialsFile)
existingAuthObj <- authObj %>% filter(.data$server == activityInfoRootUrl())
if (nrow(existingAuthObj)==1) {
cat(sprintf("You already have a saved token. Do you want to replace existing token for %s?\n", activityInfoRootUrl()))
save2 <- readline("Save token? ")
if (substr(tolower(save2), 1, 1) == "y") {
saveToAuthFile(authObj)
}
} else {
saveToAuthFile(authObj)
}
} else {
authObj <- tibble(server = activityInfoRootUrl(), credentials = token)
saveToAuthFile(authObj)
}
}
}
}
deprecationOfBasicAuthWarning <- function() {
warning("The ActivityInfo API is deprecating the use of username and passwords. Update your code to use a personal API token with the function activityInfoToken() before the functionality is removed.", call. = FALSE, noBreaks. = TRUE)
}
#' Use Basic Authentication (deprecated) to authenticate and store user credentials to authorize requests for the
#' ActivityInfo API
#'
#' @description
#' Configures the current session to use a user's email address and
#' password for authentication to \href{www.activityinfo.org}{ActivityInfo.org}
#'
#' This function is deprecated. Switch to the more secure activityInfoToken() with a personal access token.
#'
#' @param userEmail The email address used to log in with to ActivityInfo.org
#' @param password The user's ActivityInfo password
#'
#' @examples
#' \dontrun{
#' activityInfoLogin("nouser@activityinfo.org", "pass")
#' }
#' @export
activityInfoLogin <- function(userEmail, password) {
.Deprecated("activityInfoToken")
deprecationOfBasicAuthWarning()
if (missing(userEmail) || missing(password)) {
attempts <- 0
repeat {
userEmail <- readline("Enter the email address you use to login to ActivityInfo.org: ")
if (grepl(userEmail, pattern = ".+@.+")) {
break
}
cat("Not an email address...\n")
attempts <- 1
if (attempts >= 3) {
stop("Invalid email address, must contain at least a '@' !")
attempts <- attempts + 1
}
}
password <- readline("Enter your password: ")
}
credentials <- paste(userEmail, password, sep = ":")
activityInfoAuthentication(credentials)
if (interactive()) {
cat("Do you want to save your password for future R sessions?\n")
cat("WARNING: If you choose yes, your password will be stored plain text in your home\n")
cat("directory. Don't choose this option on an insecure or public machine! (Y/n)\n")
save <- readline("Save password? ")
if (substr(tolower(save), 1, 1) == "y") {
cat(credentials, file = credentialsFile)
}
}
}
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Embedding an R snippet on your website
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.