1 files changed, 69 insertions, 5 deletions
diff --git a/doc/misc/auth.texi b/doc/misc/auth.texi
index 23ac23dce5b..a16da92343e 100644
--- a/doc/misc/auth.texi
+++ b/doc/misc/auth.texi
@@ -131,11 +131,11 @@ library encourages this confusion by accepting both, as you'll see
 later.
 If you have problems with the search, set @code{auth-source-debug} to
-@code{t} and see what host, port, and user the library is checking in
+@code{'trivia} and see what host, port, and user the library is
-the @code{*Messages*} buffer.  Ditto for any other problems, your
+checking in the @code{*Messages*} buffer.  Ditto for any other
-first step is always to see what's being checked.  The second step, of
+problems, your first step is always to see what's being checked.  The
-course, is to write a blog entry about it and wait for the answer in
+second step, of course, is to write a blog entry about it and wait for
-the comments.
+the answer in the comments.
 You can customize the variable @code{auth-sources}.  The following may
 be needed if you are using an older version of Emacs or if the
@@ -232,6 +232,14 @@ TODO: how does it work generally, how does secrets.el work, some examples.
 @node Help for developers
 @chapter Help for developers
+The auth-source library lets you control logging output easily.
+@defvar auth-source-debug
+Set this variable to 'trivia to see lots of output in *Messages*, or
+set it to a function that behaves like @code{message} to do your own
+logging.
+@end defvar
 The auth-source library only has a few functions for external use.
 @defun auth-source-search SPEC
@@ -240,6 +248,62 @@ TODO: how to include docstring?
 @end defun
+Let's take a look at an example of using @code{auth-source-search}
+from Gnus' @code{nnimap.el}.
+@example
+(defun nnimap-credentials (address ports)
+  (let* ((auth-source-creation-prompts
+          '((user  . "IMAP user at %h: ")
+            (secret . "IMAP password for %u@@%h: ")))
+         (found (nth 0 (auth-source-search :max 1
+                                           :host address
+                                           :port ports
+                                           :require '(:user :secret)
+                                           :create t))))
+    (if found
+        (list (plist-get found :user)
+              (let ((secret (plist-get found :secret)))
+                (if (functionp secret)
+                    (funcall secret)
+                  secret))
+              (plist-get found :save-function))
+      nil)))
+@end example
+This call requires the user and password (secret) to be in the
+results.  It also requests that an entry be created if it doesn't
+exist already.  While the created entry is being assembled, the shown
+prompts will be used to interact with the user.  The caller can also
+pass data in @code{auth-source-creation-defaults} to supply defaults
+for any of the prompts.
+Note that the password needs to be evaluated if it's a function.  It's
+wrapped in a function to provide some security.
+Later, after a successful login, @code{nnimal.el} calls the
+@code{:save-function} like so:
+@example
+(when (functionp (nth 2 credentials))
+   (funcall (nth 2 credentials)))
+@end example
+This will work whether the @code{:save-function} was provided or not.
+@code{:save-function} will be provided only when a new entry was
+created, so this effectively says ``after a successful login, save the
+authentication information we just used, if it was newly created.''
+After the first time it's called, the @code{:save-function} will not
+run again (but it will log something if you have set
+@code{auth-source-debug} to @code{'trivia}).  This is so it won't ask
+the same question again, which is annoying.  This is so it won't ask
+the same question again, which is annoying.  This is so it won't ask
+the same question again, which is annoying.
+So the responsibility of the API user that specified @code{:create t}
+is to call the @code{:save-function} if it's provided.
 @defun auth-source-delete SPEC
 TODO: how to include docstring?

diff --git a/doc/misc/auth.texi b/doc/misc/auth.texi index 23ac23dce5b..a16da92343e 100644 --- a/doc/misc/auth.texi +++ b/doc/misc/auth.texi
@@ -131,11 +131,11 @@ library encourages this confusion by accepting both, as you'll see
131	later.	131	later.
132		132
133	If you have problems with the search, set @code{auth-source-debug} to	133	If you have problems with the search, set @code{auth-source-debug} to
134	@code{t} and see what host, port, and user the library is checking in	134	@code{'trivia} and see what host, port, and user the library is
135	the @code{Messages} buffer. Ditto for any other problems, your	135	checking in the @code{Messages} buffer. Ditto for any other
136	first step is always to see what's being checked. The second step, of	136	problems, your first step is always to see what's being checked. The
137	course, is to write a blog entry about it and wait for the answer in	137	second step, of course, is to write a blog entry about it and wait for
138	the comments.	138	the answer in the comments.
139		139
140	You can customize the variable @code{auth-sources}. The following may	140	You can customize the variable @code{auth-sources}. The following may
141	be needed if you are using an older version of Emacs or if the	141	be needed if you are using an older version of Emacs or if the
@@ -232,6 +232,14 @@ TODO: how does it work generally, how does secrets.el work, some examples.
232	@node Help for developers	232	@node Help for developers
233	@chapter Help for developers	233	@chapter Help for developers
234		234
		235	The auth-source library lets you control logging output easily.
		236
		237	@defvar auth-source-debug
		238	Set this variable to 'trivia to see lots of output in Messages, or
		239	set it to a function that behaves like @code{message} to do your own
		240	logging.
		241	@end defvar
		242
235	The auth-source library only has a few functions for external use.	243	The auth-source library only has a few functions for external use.
236		244
237	@defun auth-source-search SPEC	245	@defun auth-source-search SPEC
@@ -240,6 +248,62 @@ TODO: how to include docstring?
240		248
241	@end defun	249	@end defun
242		250
		251	Let's take a look at an example of using @code{auth-source-search}
		252	from Gnus' @code{nnimap.el}.
		253
		254	@example
		255	(defun nnimap-credentials (address ports)
		256	(let* ((auth-source-creation-prompts
		257	'((user . "IMAP user at %h: ")
		258	(secret . "IMAP password for %u@@%h: ")))
		259	(found (nth 0 (auth-source-search :max 1
		260	:host address
		261	:port ports
		262	:require '(:user :secret)
		263	:create t))))
		264	(if found
		265	(list (plist-get found :user)
		266	(let ((secret (plist-get found :secret)))
		267	(if (functionp secret)
		268	(funcall secret)
		269	secret))
		270	(plist-get found :save-function))
		271	nil)))
		272	@end example
		273
		274	This call requires the user and password (secret) to be in the
		275	results. It also requests that an entry be created if it doesn't
		276	exist already. While the created entry is being assembled, the shown
		277	prompts will be used to interact with the user. The caller can also
		278	pass data in @code{auth-source-creation-defaults} to supply defaults
		279	for any of the prompts.
		280
		281	Note that the password needs to be evaluated if it's a function. It's
		282	wrapped in a function to provide some security.
		283
		284	Later, after a successful login, @code{nnimal.el} calls the
		285	@code{:save-function} like so:
		286
		287	@example
		288	(when (functionp (nth 2 credentials))
		289	(funcall (nth 2 credentials)))
		290	@end example
		291
		292	This will work whether the @code{:save-function} was provided or not.
		293	@code{:save-function} will be provided only when a new entry was
		294	created, so this effectively says ``after a successful login, save the
		295	authentication information we just used, if it was newly created.''
		296
		297	After the first time it's called, the @code{:save-function} will not
		298	run again (but it will log something if you have set
		299	@code{auth-source-debug} to @code{'trivia}). This is so it won't ask
		300	the same question again, which is annoying. This is so it won't ask
		301	the same question again, which is annoying. This is so it won't ask
		302	the same question again, which is annoying.
		303
		304	So the responsibility of the API user that specified @code{:create t}
		305	is to call the @code{:save-function} if it's provided.
		306
243	@defun auth-source-delete SPEC	307	@defun auth-source-delete SPEC
244		308
245	TODO: how to include docstring?	309	TODO: how to include docstring?