Authentication helper. Used by other controllers. Short-circuits on certain conditions and may emit a redirect or render a response.

Logs user in when user e-mail and password are given, or checks if the session is valid to serve a current page.

Takes a request map and obtains a database connection, a client IP address and an authentication configuration from it. Also gets user’s e-mail and a password from a map associated with the :form-params key of the req. Calls auth-user-with-password! to get the result or perform a redirect if the authentication was not successful.

If there is no e-mail nor password given (the value is nil, false or an empty string) then the authentication is not performed but instead the validity of a session is tested. If the session is invalid a redirect to the login page is performed; the destination URL is obtained by looking up the route data key :auth/login and taking a route name associated with it, or by visiting an URL associated with the :login route name (as default, when the previous lookup was not successful). If the destination path is parameterized with a language, the redirect will set this path parameter to a value obtained by calling the web/pick-language-str, using language detection chain identified by the :user key. The same language will be passed to the auth-user-with-password! call.

If the session is valid then the given request map is returned with the :authenticated! key set to true.

Renders status of identity confirmation on a basis of user’s identity and quick token obtained from form params. Identity type must belong to a group :amelinium.identity/public.

Verifies confirmation token or code against a database and if it matches creates an account.

Verifies confirmation token against a database and if it matches, updates the identity (phone or e-mail).

Prepares response data to be displayed on a login page.

Logs user out.

Changes password for the user authenticated with an old password and e-mail or sets the password for the given user-id.

Creates a password on a basis of a token, or on a basis of a code and identity.

Initiates password recovery by sending an e-mail or SMS message with a verification code or token.

Displays password setting form for a user authenticated with token or code.

Prepares response data to be displayed on a prolongation page.

Initiates user registration process by receiving e-mail, password and name.

Returns an expiration date and time formatted according to the RFC 1123.

Performs the identity verification by sending an e-mail or SMS with a URL to complete confirmation. Takes a request map req and configuration options as a map with the following keys:

:db - database connection handler or a data source object, :id - identity used for verification (e-mail address or a phone number), :id-type - identity type (:email or :phone), :lang - language (defaults to a result of common/pick-language), :reason – verification reason (:creation, :recovery, :change, :unlock), :no-data - status to be set when there is no result from a database (default: :verify/bad-result), :result - a result of calling confirmation function from a model, :translator - translation function (defaults to a result of amelinium.common/translator), :route-data - route data (defaults to a result of calling amelinium.http/get-route-data), :confirm-once? - if truthy (default) then existing confirmation will cause error response, :async/responder - asynchronous response handler for Twilio client (default: amelinium.common.controller/verify-request-id-update), :async/raiser - asynchronous error handler for Twilio client (default: amelinium.common.controller/verify-process-error).