Author image Tomas Doran
and 1 contributors


Catalyst::Authentication::Store::Tangram - A storage class for Catalyst authentication from a class stored in Tangram


    use Catalyst qw/

    __PACKAGE__->config( authentication => { 
        default_realm => 'members',
        realms => {
            members => {
                credential => {
                    class => 'Password',
                    password_field => 'password',
                    password_type => 'clear'
                store => {
                    class => 'Tangram',
                    tangram_user_class => 'Users',
                    tangram_model => 'Tangram',
                    storage_method => 'storage', # $c->model('Tangram')->storage                    use_roles => 1,
                    role_relation -> 'authority',
                    role_name_field => 'name',

    # Log a user in:
    sub login : Global {
        my ( $self, $c ) = @_;

            email_address => $c->req->param('email_address'),
            password => $c->req->param('password'),


The Catalyst::Authentication::Store::Tangram class provides access to authentication information stored in a database via Tangram.


The Tangram authentication store is activated by setting the store configuration class element to Tangram as shown above. See the Catalyst::Plugin::Authentication documentation for more details on configuring the store.

The Tangram storage module has several configuration options

    authentication => {
        default_realm => 'members',
        realms => {
            members => {
                credential => {
                    # ...
                store => {
                    class => 'Tangram',
                    user_class => 'Users',
                    tangram_model => 'Tangram',
                    storage_method => 'storage', # $c->model('Tangram')->storage

Class is part of the core Catalyst::Plugin::Authentication module, it contains the class name of the store to be used.


Contains the class name of the class persisted in your Tangram schema to use as the source for user information. This config item is REQUIRED. This class name is used to get a Tangram remote object when constructing a search for your user when first authenticating, and also this is the class which the ->load method is called on to restore the user from a session.


Contains the class name (as passed to $c->model()) of the Tangram model to use as the source for user information. This config item is REQUIRED. The storage_method method will be invoked on this class to get the Tangram::Storage instance to restore the user from.


Contains the method to call on the tangram_model to retrieve the instance of Tangram::Storage which users are looked up from.


Contains the class which the user object is blessed into. This class is usually Catalyst::Authentication::Store::Tangram::User, but you can sub-class that class and have your subclass used instead by setting this configuration parameter. You will not need to use this setting unless you are doing unusual things with the user class.


Activates role support if set to '1'


The name of the method to call on your Tangram user object to retrieve an array of roles for this user.

This field may be a Tangram::Type::Array::FromMany, or a Tangram::Type::Array::FromOne (in which case you will also need to use role_name_field), or it may be your own function which returns a list of roles..


The name of the field to retrieve the name of the role from on the Tangram class representing roles. Note that if this configuration parameter isn't supplied, then the list returned by the method call to role_relation will be used directly.


new ( $config, $app, $realm )

Simple constructor, returns a blessed reference to the store object instance.

find_user ( $authinfo, $c )

$auth_info is expected to be a hash with the keys being field names on your Tangram user object, and the values being what those fields should be matched against. A tangram select will be built from the supplied authentication information, and this select is used to retrieve the user from Tangram.

for_session ( $c, $user )

This method returns the Tangram ID for the user, as that is all that is necessary to be persisted in the session to restore the user.

from_session ( $c, $frozenuser )

This method is called whenever a user is being restored from the session. $frozenuser contains the Tangram ID of the user to restore.


Delegates to the Catalyst::Authentication::Store::Tangram::User-supports|Catalyst::Authentication::Store::Tangram::User#supports> method.


This is a Perl CODE ref that can be used to filter out multiple results from your Tangram query. In theory, your Tangram query should only return one result and find_user() will throw an exception if it encounters more than one result. However, if you have, for whatever reason, a legitimate reason for returning multiple search results from your Tangram query, use user_results_filter to filter out the Tangram entries you do not want considered. Your CODE ref should expect a single argument, an instance of your Tangram user object, and it should return exactly one value, which is used as a true/false.


 user_results_filter => sub {
                          my $obj = shift;
                            $obj->permissions =~ /catalystapp/ ? 1 : 0

Note: The above example is not a best practice method for storing roles against a user, you really want a Tangram::Type::Array::FromMany


Returns a list of roles that this user is authorised for.

Calls the method specified by the role_relation configuration key, and expects either a list, or a reference to an array of roles to be returned.

Note that this method will call the role_relation method on the user_class, not on the tangram_user_class directly. This can therefore be used to add a custom role lookup without changing your underlying model class lookup by sub-classing Catalyst::Authentication::Storage::Tangram::User, and adding the custom lookup there (then setting role_relation and user_class appropriately.


Catalyst::Authentication::Store::Tangram::User, Catalyst::Plugin::Authentication, Catalyst::Authentication::Store


Tomas Doran, <bobtfish at bobtfish dot net>

With thanks to state51, my employer, for giving me the time to work on this.

Various ideas stolen from other Catalyst::Authentication modules by other authors.


All complex software has bugs, and I'm sure that this module is no exception.

Please report bugs through the bug tracker.


Copyright (c) 2008, state51. Some rights reserved.


This module is free software; you can use, redistribute, and modify it under the same terms as Perl 5.8.x.