… | |
… | |
2 | |
2 | |
3 | # login handling |
3 | # login handling |
4 | |
4 | |
5 | use Fcntl; |
5 | use Fcntl; |
6 | use Coro::AIO; |
6 | use Coro::AIO; |
|
|
7 | use Deliantra::Util (); |
7 | |
8 | |
8 | CONF MAX_DISCONNECT_TIME = 3600; |
9 | CONF MAX_DISCONNECT_TIME = 3600; |
9 | |
10 | |
10 | sub query { |
11 | sub query { |
11 | my ($ns, $flags, $text) = @_; |
12 | my ($ns, $flags, $text) = @_; |
… | |
… | |
57 | my $y = $ob->y; |
58 | my $y = $ob->y; |
58 | |
59 | |
59 | # never happens normally, but helps when shell users make mistakes |
60 | # never happens normally, but helps when shell users make mistakes |
60 | $m->linkable |
61 | $m->linkable |
61 | or return 1; |
62 | or return 1; |
62 | |
|
|
63 | # return 0;#d# |
|
|
64 | # warn join ":", $m->at ($x, $y);#d# |
|
|
65 | # warn "FOO$m { ".scalar ($m->at ($x, $y))." }\n"; |
|
|
66 | # return 0; |
|
|
67 | |
63 | |
68 | scalar grep $_->type == cf::SAVEBED, $m->at ($x, $y) |
64 | scalar grep $_->type == cf::SAVEBED, $m->at ($x, $y) |
69 | } |
65 | } |
70 | |
66 | |
71 | sub enter_map { |
67 | sub enter_map { |
… | |
… | |
170 | |
166 | |
171 | # just to make sure nothing is left over |
167 | # just to make sure nothing is left over |
172 | # normally, nothing is there. |
168 | # normally, nothing is there. |
173 | nuke_playerdir $user; |
169 | nuke_playerdir $user; |
174 | |
170 | |
175 | my $pass2 = query $ns, cf::CS_QUERY_HIDEINPUT, "Please type your password again."; |
|
|
176 | |
|
|
177 | if ($pass2 ne $pass) { |
|
|
178 | $ns->send_drawinfo ( |
|
|
179 | "The passwords do not match, please try again.", |
|
|
180 | cf::NDI_RED |
|
|
181 | ); |
|
|
182 | Coro::Timer::sleep 0.5; |
|
|
183 | next; |
|
|
184 | } |
|
|
185 | |
|
|
186 | my $pl = cf::player::new $user; |
171 | my $pl = cf::player::new $user; |
187 | $pl->password (encode_password $pass); |
172 | $pl->password (encode_password $pass); |
188 | $pl->connect ($ns); |
173 | $pl->connect ($ns); |
189 | my $ob = $pl->ob; |
174 | my $ob = $pl->ob; |
190 | |
175 | |
… | |
… | |
258 | } |
243 | } |
259 | |
244 | |
260 | cf::client->attach (on_addme => sub { |
245 | cf::client->attach (on_addme => sub { |
261 | my ($ns) = @_; |
246 | my ($ns) = @_; |
262 | |
247 | |
263 | $ns->pl and return $ns->destroy; |
248 | $ns->{addme}++ and return $ns->destroy; |
264 | |
249 | |
265 | $ns->async (sub { |
250 | $ns->async (sub { |
266 | $Coro::current->{desc} = "addme init"; |
251 | $Coro::current->{desc} = "addme init"; |
267 | |
252 | |
268 | my ($user, $pass); |
253 | my ($user, $pass); |
… | |
… | |
345 | my $token = $pl->password; |
330 | my $token = $pl->password; |
346 | |
331 | |
347 | if ($cf::CFG{ext_login_nocheck} or compare_password $pass, $token) { |
332 | if ($cf::CFG{ext_login_nocheck} or compare_password $pass, $token) { |
348 | # player exists and passwords match - we can proceed |
333 | # player exists and passwords match - we can proceed |
349 | |
334 | |
350 | $pl->password (encode_password $pass); # make sure we store the new encoding #d# |
|
|
351 | # password matches, wonderful |
335 | # password matches, wonderful |
352 | my $pl = cf::player::find $user or next; |
336 | my $pl = cf::player::find $user or next; |
353 | $pl->connect ($ns); |
337 | $pl->connect ($ns); |
354 | enter_map $pl; |
338 | enter_map $pl; |
355 | login_done $pl; |
339 | login_done $pl; |
… | |
… | |
397 | ); |
381 | ); |
398 | next; |
382 | next; |
399 | } |
383 | } |
400 | } |
384 | } |
401 | |
385 | |
|
|
386 | my $pass2 = query $ns, cf::CS_QUERY_HIDEINPUT, "Please type your password again."; |
|
|
387 | |
|
|
388 | if ($pass2 ne $pass) { |
|
|
389 | $ns->send_drawinfo ( |
|
|
390 | "The passwords do not match, please try again.", |
|
|
391 | cf::NDI_RED |
|
|
392 | ); |
|
|
393 | Coro::Timer::sleep 0.5; |
|
|
394 | next; |
|
|
395 | } |
|
|
396 | |
402 | last; |
397 | last; |
403 | } |
398 | } |
404 | |
399 | |
405 | # lock again, too layz to make this nicer |
400 | # lock again, too layz to make this nicer |
406 | local $cf::LOGIN_LOCK{$user} = 1; |
401 | local $cf::LOGIN_LOCK{$user} = 1; |
|
|
402 | |
407 | chargen $ns, $user, $pass; |
403 | chargen $ns, $user, $pass; |
408 | login_done $ns->pl; |
404 | login_done $ns->pl; |
409 | }); |
405 | }); |
410 | }); |
406 | }); |
|
|
407 | |
|
|
408 | cf::client->attach ( |
|
|
409 | on_version => sub { |
|
|
410 | my ($ns, $arg) = @_; |
|
|
411 | |
|
|
412 | $ns->{nonces} = [map { join "", map { chr rand 256 } 0..63 } 1..2]; |
|
|
413 | $ns->ext_msg (nonces => @{ $ns->{nonces} }); |
|
|
414 | }, |
|
|
415 | ); |
|
|
416 | |
|
|
417 | #cf::register_async_exticmd create_login => sub { |
|
|
418 | # my ($ns, $reply, $user, $pass) = @_; |
|
|
419 | # |
|
|
420 | # $ns->{addme}++ and return $ns->destroy; |
|
|
421 | #}; |
|
|
422 | |
|
|
423 | cf::register_async_exticmd login => sub { |
|
|
424 | my ($ns, $reply, $user, $hash) = @_; |
|
|
425 | |
|
|
426 | $ns->{addme}++ and return $ns->destroy; |
|
|
427 | |
|
|
428 | $ns->async (sub { |
|
|
429 | local $cf::LOGIN_LOCK{$user} = 1; |
|
|
430 | |
|
|
431 | $Coro::current->{desc} = "login($user) check"; |
|
|
432 | |
|
|
433 | my $fail = sub { |
|
|
434 | $reply->(0, $_[0]); |
|
|
435 | $ns->flush; # does not ensure that the data reaches the client - TODO |
|
|
436 | # need to do this in another thread, as this one gets canceled |
|
|
437 | Coro::async_pool { |
|
|
438 | Coro::AnyEvent::sleep 0.1; # TODO, see above, extra hack |
|
|
439 | $ns->destroy; |
|
|
440 | }; |
|
|
441 | Coro::schedule; # do the destroy, should not return |
|
|
442 | }; |
|
|
443 | |
|
|
444 | # try to read the user file and check the password |
|
|
445 | my $pl = cf::player::find $user |
|
|
446 | or return $fail->("User '$user' does not exist - wrong spelling?"); |
|
|
447 | |
|
|
448 | aio_stat $pl->path |
|
|
449 | and return $ns->destroy; |
|
|
450 | |
|
|
451 | my $mtime = (stat _)[9]; |
|
|
452 | my $token = $pl->password; |
|
|
453 | |
|
|
454 | $token = $token =~ /^!/ |
|
|
455 | ? Deliantra::Util::hash_pw pack "H*", substr $token, 1 |
|
|
456 | : pack "H*", $token; |
|
|
457 | |
|
|
458 | $token = Deliantra::Util::auth_pw $token, $ns->{nonces}[0], $ns->{nonces}[1]; |
|
|
459 | |
|
|
460 | $token eq $hash |
|
|
461 | or $cf::CFG{ext_login_nocheck} |
|
|
462 | or return $fail->("User exists, but the password doesn't match - check your spelling, NumLock/CapsLock etc."); |
|
|
463 | |
|
|
464 | # player exists and passwords match - we can proceed |
|
|
465 | |
|
|
466 | $pl->connect ($ns); |
|
|
467 | enter_map $pl; |
|
|
468 | login_done $pl; |
|
|
469 | |
|
|
470 | $reply->(1, "Success"); |
|
|
471 | }); |
|
|
472 | }; |
411 | |
473 | |
412 | cf::register_command password => sub { |
474 | cf::register_command password => sub { |
413 | my ($pl, $arg) = @_; |
475 | my ($pl, $arg) = @_; |
414 | |
476 | |
415 | unless ($pl->flag (cf::FLAG_WIZ)) { |
477 | unless ($pl->flag (cf::FLAG_WIZ)) { |
416 | $pl->message ( |
478 | $pl->message ( |
417 | "The password can currently only changed by a DM.", |
479 | "The password can currently only changed by a DM.", |
418 | cf::NDI_UNIQUE | cf::NDI_REPLY); |
480 | cf::NDI_UNIQUE | cf::NDI_REPLY); |
419 | return; |
481 | return; |
420 | } |
482 | } |
|
|
483 | |
|
|
484 | $pl->message (#d# |
|
|
485 | "Passwords cannot currently be changed.",#d# |
|
|
486 | cf::NDI_UNIQUE | cf::NDI_REPLY);#d# |
|
|
487 | return;#d# |
421 | |
488 | |
422 | my (@args) = split /\s+/, $arg; |
489 | my (@args) = split /\s+/, $arg; |
423 | my ($player, $new_pw) = @args; |
490 | my ($player, $new_pw) = @args; |
424 | |
491 | |
425 | if ($pl->flag (cf::FLAG_WIZ) && $player eq '') { |
492 | if ($pl->flag (cf::FLAG_WIZ) && $player eq '') { |