added global authenticate() function that authenticates

a user against a standard Unix passwd file.

src/helma/framework/core/Application.java

@@ -76,6 +76,8 @@ public class Application extends UnicastRemoteObject implements IRemoteApp, Runn
 
     protected CacheMap skincache = new CacheMap (100);
 
+    private CryptFile pwfile;
+
 
     public Application () throws RemoteException {
 	super ();
@@ -112,6 +114,11 @@ public class Application extends UnicastRemoteObject implements IRemoteApp, Runn
 	File propfile = new File (appDir, "app.properties");
 	props = new SystemProperties (propfile.getAbsolutePath (), sysProps);
 
+	File pwf = new File (home, "passwd");
+	CryptFile parentpwfile = new CryptFile (pwf, null);
+	pwf = new File (appDir, "passwd");
+	pwfile = new CryptFile (pwf, parentpwfile);
+
 	nmgr = new NodeManager (this, dbDir.getAbsolutePath (), props);
 
 	debug = "true".equalsIgnoreCase (props.getProperty ("debug"));
@@ -432,6 +439,17 @@ public class Application extends UnicastRemoteObject implements IRemoteApp, Runn
 	return true;
     }
 
+    /**
+     * In contrast to login, this works outside the Hop user object framework. Instead, the user is
+     * authenticated against a passwd file in the application directory. This is to have some sort of
+     * authentication available *before* the application is up and running, i.e. for application setup tasks.
+     */
+    public boolean authenticate (String uname, String password) {
+	if (uname == null || password == null)
+	    return false;
+	return pwfile.authenticate (uname, password);
+    }
+
     public String getNodePath (INode n, String tmpname) {
 	INode root = getDataRoot ();
 	INode users = getUserRoot ();

src/helma/framework/core/HopExtension.java

@@ -108,6 +108,7 @@ public class HopExtension {
         go.putHiddenProperty("createSkin", new GlobalCreateSkin ("createSkin", evaluator, fp));
         go.putHiddenProperty("renderSkin", new RenderSkin ("renderSkin", evaluator, fp, reval, true, false));
         go.putHiddenProperty("renderSkin_as_string", new RenderSkin ("renderSkin_as_string", evaluator, fp, reval, true, true));
+        go.putHiddenProperty("authenticate", new GlobalAuthenticate ("authenticate", evaluator, fp));
         go.deleteProperty("exit", "exit".hashCode());
 
         // and some methods for session management from JS...
@@ -558,6 +559,18 @@ public class HopExtension {
         }
     }
 
+    class GlobalAuthenticate extends BuiltinFunctionObject {
+        GlobalAuthenticate (String name, Evaluator evaluator, FunctionPrototype fp) {
+            super (fp, evaluator, name, 1);
+        }
+        public ESValue callFunction (ESObject thisObject, ESValue[] arguments) throws EcmaScriptException {
+            if (arguments.length != 2)
+                return ESBoolean.makeBoolean (false);
+            return ESBoolean.makeBoolean (app.authenticate (arguments[0].toString (), arguments[1].toString ()));
+
+        }
+    }
+
     /**
      * Get a parsed Skin from the central skin cache if possible, otherwise create it
      */