ViewVC Help
View File | Revision Log | Show Annotations | Download File
/cvs/deliantra/server/ext/login.ext
(Generate patch)

Comparing deliantra/server/ext/login.ext (file contents):
Revision 1.115 by root, Sun Jan 23 23:37:55 2011 UTC vs.
Revision 1.130 by root, Sun Nov 18 10:00:55 2012 UTC

2 2
3# login handling 3# login handling
4 4
5use Fcntl; 5use Fcntl;
6use Coro::AIO; 6use Coro::AIO;
7use Deliantra::Util ();
7 8
8our $MAX_DISCONNECT_TIME = $cf::CFG{max_disconnect_time} || 3600; 9CONF MAX_DISCONNECT_TIME = 3600;
9 10
10# paranoia function to overwrite a string-in-place 11our $VALID_LOGIN = qr<^[a-zA-Z0-9][a-zA-Z0-9\-_]{2,19}\z>;
11sub nuke_str { 12our %LOGIN_LOCK;
12 substr $_[0], 0, (length $_[0]), "x" x length $_[0]
13}
14 13
15sub query { 14sub query {
16 my ($ns, $flags, $text) = @_; 15 my ($ns, $flags, $text) = @_;
17 16
18 $ns->query ($flags, $text, Coro::rouse_cb); 17 $ns->query ($flags, $text, Coro::rouse_cb);
29 || ($level <= 9 && $age > 90 * 86400) # 3 months for level 4..9 28 || ($level <= 9 && $age > 90 * 86400) # 3 months for level 4..9
30 || ($level <= 20 && $age > 180 * 86400) # 6 months for level 10..20 29 || ($level <= 20 && $age > 180 * 86400) # 6 months for level 10..20
31 || $age > 700 * 86400 # 2 years for everybody else 30 || $age > 700 * 86400 # 2 years for everybody else
32} 31}
33 32
34sub check_playing { 33# return a guard object for a lock on the given username, if available
34sub login_guard {
35 my ($ns, $user) = @_; 35 my ($user) = @_;
36 36
37 exists $LOGIN_LOCK{$user}
38 and return undef;
39
37 return unless cf::player::find_active $user; 40 cf::player::find_active $user
41 and return undef;
38 42
39 $ns->send_drawinfo ( 43 undef $LOGIN_LOCK{$user};
40 "That player is already logged in on this server. " 44 Guard::guard { delete $LOGIN_LOCK{$user} }
41 . "If you want to create a new player, choose another name. "
42 . "If you have already a registered, make sure nobody "
43 . "else is using your account at this time. If you lost your connection "
44 . "then the server will likely timeout within a minute. If you still "
45 . "cannot log-in after a minute, you are still logged in. Make sure "
46 . "you do not have another client running. If you use windows, reboot, "
47 . "this will fix anything.",
48 cf::NDI_RED
49 );
50
51 1
52} 45}
53 46
54sub safe_spot($) { 47sub safe_spot($) {
55 my ($pl) = @_; 48 my ($pl) = @_;
56 49
60 or return; 53 or return;
61 my $x = $ob->x; 54 my $x = $ob->x;
62 my $y = $ob->y; 55 my $y = $ob->y;
63 56
64 # never happens normally, but helps when shell users make mistakes 57 # never happens normally, but helps when shell users make mistakes
65 $m->in_memory == cf::MAP_ACTIVE 58 $m->linkable
66 or return 1; 59 or return 1;
67
68# return 0;#d#
69# warn join ":", $m->at ($x, $y);#d#
70# warn "FOO$m { ".scalar ($m->at ($x, $y))." }\n";
71# return 0;
72 60
73 scalar grep $_->type == cf::SAVEBED, $m->at ($x, $y) 61 scalar grep $_->type == cf::SAVEBED, $m->at ($x, $y)
74} 62}
75 63
76sub enter_map { 64sub enter_map {
99 $ob->message ( 87 $ob->message (
100 "You didn't use a bed to reality to leave this realm, leaving your body in great danger. " 88 "You didn't use a bed to reality to leave this realm, leaving your body in great danger. "
101 . "Unfortunately, nobody was near to help you when the monsters arrived to eat you. " 89 . "Unfortunately, nobody was near to help you when the monsters arrived to eat you. "
102 . "Maybe you can find comfort in the thought that your body was quite satisfying in taste... " 90 . "Maybe you can find comfort in the thought that your body was quite satisfying in taste... "
103 . "H<You disconnected too long without having used a savebed.>", 91 . "H<You disconnected too long without having used a savebed.>",
104 cf::NDI_RED 92 cf::NDI_RED | cf::NDI_REPLY
105 ); 93 );
106 # kill them. 94 # kill them.
107 # reminds me of the famous badness 10000 syndrome... 95 # reminds me of the famous badness 10000 syndrome...
108 $ob->stats->hp (-10000); #] if they survive this they deserved to live 96 $ob->stats->hp (-10000); #] if they survive this they deserved to live
109 my $killer = cf::arch::get "killer_login"; $pl->killer ($killer); $killer->destroy; 97 my $killer = cf::arch::get "killer_login"; $pl->killer ($killer); $killer->destroy;
113 $ob->message ( 101 $ob->message (
114 "You didn't use a bed to reality to leave this realm, leaving your body in great danger. " 102 "You didn't use a bed to reality to leave this realm, leaving your body in great danger. "
115 . "Fortunately, some friendly dwellers found you, checked your passport, and brought you to safety. " 103 . "Fortunately, some friendly dwellers found you, checked your passport, and brought you to safety. "
116 . "Better use a savebed next time, much worse things could have happened... " 104 . "Better use a savebed next time, much worse things could have happened... "
117 . "H<You disconnected without having used a savebed. When you do that for too long, you might die.>", 105 . "H<You disconnected without having used a savebed. When you do that for too long, you might die.>",
118 cf::NDI_RED 106 cf::NDI_RED | cf::NDI_REPLY
119 ); 107 );
120 } 108 }
121 } else { 109 } else {
122 $ob->message ( 110 $ob->message (
123 "You didn't use a bed to reality to leave this realm. This is very dangerous, " 111 "You didn't use a bed to reality to leave this realm. This is very dangerous, "
124 . "as lots of things could happen when you leave by other means, such as cave-ins, " 112 . "as lots of things could happen when you leave by other means, such as cave-ins, "
125 . "or monsters suddenly snapping your body. Better use a savebed next time. " 113 . "or monsters suddenly snapping your body. Better use a savebed next time. "
126 . "H<Always apply a bed of reality to disconnect from the server.>", 114 . "H<Always apply a bed of reality to disconnect from the server.>",
127 cf::NDI_RED 115 cf::NDI_RED | cf::NDI_REPLY
128 ); 116 );
129 } 117 }
130 } 118 }
131 119
132 $ob->goto ($map, $x, $y); 120 $ob->goto ($map, $x, $y);
133} 121}
134 122
135sub encode_password($) { 123sub encode_password($) {
136# crypt $_[0], 124 unpack "H*", Deliantra::Util::hash_pw $_[0]
137# join '',
138# ('.', '/', 0..9, 'A'..'Z', 'a'..'z')[(cf::rndm 64), (cf::rndm 64)]
139 "!" . unpack "H*", $_[0]
140} 125}
141 126
142sub compare_password($$) { 127sub compare_password($$) {
143 my ($pass, $token) = @_; 128 my ($pass, $token) = @_;
144 129
145 if ($token =~ /\!(.*)/) { 130 if ($token =~ /!!(.*)/) {
131 return +(substr $pass, 0, 8) eq pack "H*", $1;
132 } elsif ($token =~ /!(.*)/) {
146 return $pass eq pack "H*", $1; 133 return $pass eq pack "H*", $1;
147 } else { 134 } else {
148 return $token eq crypt $pass, $token; 135 return $token eq crypt $pass, $token;
149 } 136 }
150} 137}
158 my $temp = "$PLAYERDIR/~$Coro::current~deleting~"; 145 my $temp = "$PLAYERDIR/~$Coro::current~deleting~";
159 aio_rename "$PLAYERDIR/$user", $temp; 146 aio_rename "$PLAYERDIR/$user", $temp;
160 IO::AIO::aio_rmtree $temp; 147 IO::AIO::aio_rmtree $temp;
161} 148}
162 149
150sub login {
151 my ($pl) = @_;
152
153 # handle character creation, if neccessary
154 # the rest of this function is character creation
155
156 my $ns = $pl->ns;
157 my $ob = $pl->ob;
158
159 if ($pl->{chargen} eq "init") {
160 $ob->goto ($pl->maplevel, $ob->x, $ob->y);
161
162 # create the playerdir, if necessary, as chargen_race_done did it before
163 # presumably because of unique maps
164 aio_mkdir playerdir $pl, 0770;
165 delete $pl->{deny_save}; # set by new
166 $pl->save;
167
168 $pl->{chargen} = "stats";
169 }
170
171 if ($pl->{chargen} eq "stats") {
172 while () {
173 $ob->update_stats;
174 $pl->save_stats;
175
176 my $res = query $ns, cf::CS_QUERY_SINGLECHAR,
177 "[y] to roll new stats [n] to use stats\n[1-7] [1-7] to swap stats.\nRoll again (y/n/1-7)?";
178
179 if ($res =~ /^[Nn]/) {
180 last;
181 } elsif ($res > 0 && $res <= 7) {
182 my $swap = query $ns, cf::CS_QUERY_SINGLECHAR, "Swap stat with (will not roll new stats) [1-7]?";
183
184 if ($swap > 0 && $swap <= 7) {
185 $ob->swap_stats ($res - 1, $swap - 1);
186 }
187 } else {
188 $ob->roll_stats;
189 }
190
191 Coro::Timer::sleep 0.05;
192 }
193
194 $ob->set_animation (2);
195 $ob->add_statbonus;
196
197 $pl->{chargen} = "race";
198 }
199
200 if ($pl->{chargen} eq "race") {
201 while () {
202 $ns->send_msg ("chargen-race-title", ucfirst $pl->title, -1);
203 my $msg = $ob->msg;
204 $msg =~ s/(?<=\S)\n(?=\S)/ /g;
205 $ns->send_msg ("chargen-race-description", $msg, cf::NDI_BLUE);
206
207 my $res = query $ns, cf::CS_QUERY_SINGLECHAR,
208 "Now choose a character.\nPress any key to change outlook.\nPress `d' when you're pleased.\n";
209
210 last if $res =~ /[dD]/;
211
212 $pl->chargen_race_next;
213 Coro::Timer::sleep 0.05;
214 }
215
216 $pl->chargen_race_done;
217 $pl->{chargen} = "gender";
218 }
219
220 if ($pl->{chargen} eq "race") {
221 while () {
222 my $res = query $ns, cf::CS_QUERY_SINGLECHAR,
223 "Now choose a gender.\nPress 'f' to become female, and 'm' to become male.\n";
224
225 if ($res =~ /^[fF]/) {
226 $pl->gender (1);
227 last;
228 } elsif ($res =~ /^[mM]/) {
229 $pl->gender (0);
230 last;
231 }
232 Coro::Timer::sleep 0.05;
233 }
234 $pl->{chargen} = "done";
235 }
236
237 $ns->state (cf::ST_PLAYING);
238
239 if ($pl->{chargen} eq "done") {
240 # XXX: Workaround for delayed client ext protocol handshake
241 $pl->esrv_new_player;
242
243 $pl->{chargen} = "done";
244 }
245
246 $ob->reply (undef, "Welcome to Deliantra!");
247
248 if (0 < Coro::AIO::aio_load "$cf::CONFDIR/motd", my $motd) {
249 $pl->ns->send_msg ("c/motd" => $motd, cf::NDI_CLEAR);
250 }
251}
252
253sub chargen {
254 my ($ns, $user, $hash) = @_;
255
256 # just to make sure nothing is left over
257 # normally, nothing is there.
258 nuke_playerdir $user;
259
260 my $pl = cf::player::new $user;
261 $pl->password (unpack "H*", $hash);
262 $pl->connect ($ns);
263
264 $pl->{chargen} = "init";
265
266 login $pl;
267}
268
163cf::client->attach (on_addme => sub { 269cf::client->attach (on_addme => sub {
164 my ($ns) = @_; 270 my ($ns) = @_;
165 271
166 $ns->pl and return $ns->destroy; 272 $ns->{addme}++ and return $ns->destroy;
167 273
168 $ns->async (sub { 274 $ns->async (sub {
169 $Coro::current->{desc} = "addme init"; 275 $Coro::current->{desc} = "addme init";
170 276
171 my ($user, $pass); 277 my ($user, $pass);
172 278
173 $ns->send_packet ("addme_success"); 279 $ns->send_packet ("addme_success");
174 280
175 for (;;) { 281 for (;;) {
176 $ns->send_drawinfo ( 282 delete $ns->{login_guard};
283
284 $ns->send_msg (log =>
177 "Please enter your username now. If you are a new user, " 285 "Please enter your username now. If you are a new user, "
178 . "make one up that describes your character best. " 286 . "make one up that describes your character best. "
179 . "Only letters and digits are allowed, though.", 287 . "Only letters and digits are allowed, though.",
180 cf::NDI_BLUE 288 cf::NDI_BLUE | cf::NDI_REPLY
181 ); 289 );
182 290
183 # read username 291 # read username
184 while () { 292 while () {
185 $user = query $ns, 0, "What is your name? (login names are case-sensitive)\n:"; 293 $user = query $ns, 0, "What is your name? (login names are case-sensitive)\n:";
186 294
187 if ($cf::LOGIN_LOCK{$user}) { 295 if ($user =~ $VALID_LOGIN) {
188 $ns->send_drawinfo (
189 "That username is currently used in another login session. "
190 . "Chose another, or wait till the other session has ended.",
191 cf::NDI_RED
192 );
193 } elsif ($user =~ /^[a-zA-Z0-9][a-zA-Z0-9\-_]{2,19}\z/) {
194 last; 296 last;
195 } else { 297 } else {
196 $ns->send_drawinfo ( 298 $ns->send_msg (log =>
197 "Your username contains illegal characters " 299 "Your username contains illegal characters "
198 . "(only a-z, A-Z and 0-9 are allowed), " 300 . "(only a-z, A-Z and 0-9 are allowed), "
199 . "or is not between 3 and 20 characters in length.", 301 . "or is not between 3 and 20 characters in length.",
200 cf::NDI_RED 302 cf::NDI_RED | cf::NDI_REPLY
201 ); 303 );
202 } 304 }
203 Coro::Timer::sleep 0.4; 305 Coro::Timer::sleep 0.4;
204 } 306 }
205 307
206 check_playing $ns, $user and next;
207
208 $Coro::current->{desc} = "addme($user) pass"; 308 $Coro::current->{desc} = "addme($user)";
209 309
210 $ns->send_drawinfo ( 310 $ns->send_msg (log =>
211 "Welcome $user, please enter your password now. " 311 "Welcome $user, please enter your password now. "
212 . "New users should now choose a password. " 312 . "New users should now choose a password. "
213 . "Anything your client lets you enter is fine.", 313 . "Anything your client lets you enter is fine.",
214 cf::NDI_BLUE 314 cf::NDI_BLUE | cf::NDI_REPLY
215 ); 315 );
216 316
217 # read password 317 # read password
218 while () { 318 while () {
219 $pass = query $ns, cf::CS_QUERY_HIDEINPUT, "What is your password?\n:"; 319 $pass = query $ns, cf::CS_QUERY_HIDEINPUT, "What is your password?\n:";
220 last if $pass =~ /.../; 320 last if $pass =~ /.../;
221 $ns->send_drawinfo ( 321 $ns->send_msg (log =>
222 "Try to use at least three characters as your password please, " 322 "Try to use at least three characters as your password please, "
223 . "that cannot be too much to ask for :)", 323 . "that cannot be too much to ask for :)",
224 cf::NDI_RED 324 cf::NDI_RED | cf::NDI_REPLY
225 ); 325 );
226 Coro::Timer::sleep 0.4; 326 Coro::Timer::sleep 0.4;
227 } 327 }
228 328
229 # lock this username for the remainder of this login session 329 $ns->{login_guard} = login_guard $user
230 if ($cf::LOGIN_LOCK{$user}) { 330 or do {
231 $ns->send_drawinfo ( 331 $ns->send_msg (log =>
232 "That username is currently used in another login session. " 332 "That user is already logged in (or is logging in)."
233 . "Chose another, or wait till the other session has ended.", 333 . "Chose another, or wait till the other session has ended.",
234 cf::NDI_RED 334 cf::NDI_RED | cf::NDI_REPLY
335 );
336 next;
235 ); 337 };
236 next;
237 }
238 local $cf::LOGIN_LOCK{$user} = 1;
239
240 check_playing $ns, $user and next;
241
242 $Coro::current->{desc} = "addme($user) check";
243 338
244 # try to read the user file and check the password 339 # try to read the user file and check the password
245 if (my $pl = cf::player::find $user) { 340 if (my $pl = cf::player::find $user) {
246 aio_stat $pl->path and next; 341 aio_stat $pl->path and next;
247 my $mtime = (stat _)[9]; 342 my $mtime = (stat _)[9];
248 my $token = $pl->password; 343 my $token = $pl->password;
249 344
250 if ($cf::CFG{ext_login_nocheck} or compare_password $pass, $token) { 345 if ($cf::CFG{ext_login_nocheck} or compare_password $pass, $token) {
251 $pl->password (encode_password $pass); # make sure we store the new encoding #d# 346 # player exists and passwords match - we can proceed
252 nuke_str $pass; 347
253 # password matches, wonderful 348 # password matches, wonderful
254 my $pl = cf::player::find $user or next; 349 my $pl = cf::player::find $user or next;
255 $pl->connect ($ns); 350 $pl->connect ($ns);
256 enter_map $pl; 351 enter_map $pl;
352 login $pl;
257 last; 353 return;
258 } elsif (can_cleanup $pl, $mtime) { 354 } elsif (can_cleanup $pl, $mtime) {
259 Coro::Timer::sleep 1; 355 Coro::Timer::sleep 1;
260 356
261 $ns->send_drawinfo ( 357 $ns->send_msg (log =>
262 "Player exists, but password does not match. If this is your account, " 358 "Player exists, but password does not match. If this is your account, "
263 . "please try again. If not, you can now decide to take over this account " 359 . "please try again. If not, you can now decide to take over this account "
264 . "because it has not been in-use for some time.", 360 . "because it has not been in-use for some time.",
265 cf::NDI_RED 361 cf::NDI_RED | cf::NDI_REPLY
266 ); 362 );
267 363
268 #TODO: nuke_str
269 (query $ns, cf::CS_QUERY_SINGLECHAR, "Delete existing account and create a new one (Y/N)?") =~ /^[yY]/ 364 (query $ns, cf::CS_QUERY_SINGLECHAR, "Delete existing account and create a new one (Y/N)?") =~ /^[yY]/
270 or next; 365 or next;
271 366
272 # check if the file hasn't changed 367 # check if the file hasn't changed
273 aio_stat cf::player::path $user and next; 368 aio_stat cf::player::path $user and next;
275 370
276 $pl->quit_character; 371 $pl->quit_character;
277 372
278 # fall through to creation 373 # fall through to creation
279 } else { 374 } else {
280 nuke_str $pass;
281
282 Coro::Timer::sleep 1; 375 Coro::Timer::sleep 1;
283 376
284 $ns->send_drawinfo ( 377 $ns->send_msg (log =>
285 "Wrong username or password. Please try again " 378 "Wrong username or password. Please try again "
286 . "(check for Numlock and other semi-obvious error sources).", 379 . "(check for Numlock and other semi-obvious error sources).",
287 cf::NDI_RED 380 cf::NDI_RED | cf::NDI_REPLY
288 ); 381 );
289 next; 382 next;
290 } 383 }
291 } else { 384 } else {
292 # unable to load the playerfile: 385 # unable to load the playerfile:
293 # check whether the player dir exists, which means the file is corrupted or 386 # check whether the player dir exists, which means the file is corrupted or
294 # something very similar. 387 # something very similar.
295 if (!aio_stat cf::player::playerdir $user) { 388 if (!aio_stat cf::player::playerdir $user) {
296 $ns->send_drawinfo ( 389 $ns->send_msg ( log =>
297 "Unable to retrieve this player. It might be a locked or broken account. " 390 "Unable to retrieve this player. It might be a locked or broken account. "
298 . "If this is your account, ask a dungeon master for assistance. " 391 . "If this is your account, ask a dungeon master for assistance. "
299 . "Otherwise choose a different login name.", 392 . "Otherwise choose a different login name.",
300 cf::NDI_RED 393 cf::NDI_RED | cf::NDI_REPLY
301 ); 394 );
302 next; 395 next;
303 } 396 }
304 } 397 }
305 398
306 # the rest of this function is character creation
307 $Coro::current->{desc} = "addme($user) chargen";
308
309 # just to make sure nothing is left over
310 # normally, nothing is there.
311 nuke_playerdir $user;
312
313 my $pass2 = query $ns, cf::CS_QUERY_HIDEINPUT, "Please type your password again."; 399 my $pass2 = query $ns, cf::CS_QUERY_HIDEINPUT, "Please type your password again.";
314 400
315 if ($pass2 ne $pass) { 401 if ($pass2 ne $pass) {
316 nuke_str $pass; 402 $ns->send_msg (log =>
317 nuke_str $pass2;
318 $ns->send_drawinfo (
319 "The passwords do not match, please try again.", 403 "The passwords do not match, please try again.",
320 cf::NDI_RED 404 cf::NDI_RED | cf::NDI_REPLY
321 ); 405 );
322 Coro::Timer::sleep 0.5; 406 Coro::Timer::sleep 0.5;
323 next; 407 next;
324 } 408 }
325 409
326 nuke_str $pass2;
327
328 my $pl = cf::player::new $user;
329 $pl->password (encode_password $pass);
330 nuke_str $pass;
331 $pl->connect ($ns);
332 my $ob = $pl->ob;
333
334 $ob->goto ($pl->maplevel, $ob->x, $ob->y);
335
336 while () {
337 $ob->update_stats;
338 $pl->save_stats;
339
340 my $res = query $ns, cf::CS_QUERY_SINGLECHAR,
341 "[y] to roll new stats [n] to use stats\n[1-7] [1-7] to swap stats.\nRoll again (y/n/1-7)?";
342
343 if ($res =~ /^[Nn]/) {
344 last;
345 } elsif ($res > 0 && $res <= 7) {
346 my $swap = query $ns, cf::CS_QUERY_SINGLECHAR, "Swap stat with (will not roll new stats) [1-7]?";
347
348 if ($swap > 0 && $swap <= 7) {
349 $ob->swap_stats ($res - 1, $swap - 1);
350 }
351 } else {
352 $ob->roll_stats;
353 }
354
355 Coro::Timer::sleep 0.05;
356 }
357
358 $ob->set_animation (2);
359 $ob->add_statbonus;
360
361 while () {
362 $ns->send_msg ("chargen-race-title", ucfirst $pl->title, -1);
363 my $msg = $ob->msg;
364 $msg =~ s/(?<=\S)\n(?=\S)/ /g;
365 $ns->send_msg ("chargen-race-description", $msg, cf::NDI_BLUE);
366
367 my $res = query $ns, cf::CS_QUERY_SINGLECHAR,
368 "Now choose a character.\nPress any key to change outlook.\nPress `d' when you're pleased.\n";
369
370 last if $res =~ /[dD]/;
371
372 $pl->chargen_race_next;
373 Coro::Timer::sleep 0.05;
374 }
375
376 # create the playerdir, if necessary, as chargen_race_done did it before
377 # presumably because of unique maps
378 aio_mkdir playerdir $pl, 0770;
379 $pl->chargen_race_done;
380
381 while () {
382 my $res = query $ns, cf::CS_QUERY_SINGLECHAR,
383 "Now choose a gender.\nPress 'f' to become female, and 'm' to become male.\n";
384
385 if ($res =~ /^[fF]/) {
386 $pl->gender (1);
387 last;
388 } elsif ($res =~ /^[mM]/) {
389 $pl->gender (0);
390 last;
391 }
392 Coro::Timer::sleep 0.05;
393 }
394
395 $ob->reply (undef, "Welcome to Deliantra!");
396
397 # XXX: Workaround for delayed client ext protocol handshake
398 $pl->esrv_new_player;
399
400 delete $pl->{deny_save};
401
402 last; 410 last;
403 } 411 }
404 412
405 if (0 < Coro::AIO::aio_load "$cf::CONFDIR/motd", my $motd) { 413 chargen $ns, $user, Deliantra::Util::hash_pw $pass;
406 $ns->send_msg ("c/motd" => $motd, cf::NDI_CLEAR);
407 }
408 }); 414 });
409}); 415});
416
417cf::client->attach (
418 on_version => sub {
419 my ($ns, $arg) = @_;
420
421 # perl probably uses lrand48, which is not secure at all
422 # maybe require linux and use /dev/urandom.
423 $ns->{nonces} = [map { join "", map { chr rand 256 } 0..63 } 1..2];
424 $ns->ext_msg (nonces => @{ $ns->{nonces} });
425 },
426);
427
428cf::register_async_exticmd create_login => sub {
429 my ($ns, $reply, $user, $pass) = @_;
430
431 $ns->{addme}++ and return $ns->destroy;
432
433 $ns->async (sub {
434 my $fail = sub {
435 $reply->(0, $_[0]);
436 $ns->flush; # does not ensure that the data reaches the client - TODO
437 # need to do this in another thread, as this one gets canceled
438 Coro::async_pool {
439 Coro::AnyEvent::sleep 0.1; # TODO, see above, extra hack
440 $ns->destroy if $ns->valid;
441 };
442 Coro::schedule; # do the destroy, should not return
443 };
444
445 $user =~ $VALID_LOGIN
446 or return $fail (
447 "Your username contains illegal characters (only a-z, A-Z and 0-9 are allowed), "
448 . "or is not between 3 and 20 characters in length."
449 );
450
451 $ns->{login_guard} = login_guard $user
452 or return $fail->("User name '$user' is in use - try another login name.");
453
454 cf::player::find $user
455 and return $fail->("User name '$user' is already registered - choose another login name.");
456
457 $reply->(1, "Account Created");
458
459 chargen $ns, $user, $pass;
460 });
461};
462
463cf::register_async_exticmd login => sub {
464 my ($ns, $reply, $user, $hash) = @_;
465
466 $ns->{addme}++ and return $ns->destroy;
467
468 $ns->async (sub {
469 $Coro::current->{desc} = "login($user)";
470
471 my $fail = sub {
472 $reply->(0, $_[0]);
473 $ns->flush; # does not ensure that the data reaches the client - TODO
474 # need to do this in another thread, as this one gets canceled
475 Coro::async_pool {
476 Coro::AnyEvent::sleep 0.1; # TODO, see above, extra hack
477 $ns->destroy if $ns->valid;
478 };
479 Coro::schedule; # do the destroy, should not return
480 };
481
482 $ns->{login_guard} = login_guard $user
483 or return $fail->("User '$user' is currently playing or logging in in another session. If that is your "
484 . "user name, make sure you are not running two clients. When in doubt, reboot.");
485
486 # try to read the user file and check the password
487 my $pl = cf::player::find $user
488 or return $fail->("User '$user' does not exist - wrong spelling?");
489
490 aio_stat $pl->path
491 and return $ns->destroy;
492
493 my $mtime = (stat _)[9];
494 my $token = $pl->password;
495
496 $token = $token =~ /^!/
497 ? Deliantra::Util::hash_pw pack "H*", substr $token, 1
498 : pack "H*", $token;
499
500 $token = Deliantra::Util::auth_pw $token, $ns->{nonces}[0], $ns->{nonces}[1];
501
502 $token eq $hash
503 or $cf::CFG{ext_login_nocheck}
504 or return $fail->("User exists, but the password doesn't match - check your spelling, NumLock/CapsLock etc.");
505
506 # player exists and passwords match - we can proceed
507
508 $reply->(1, "Success");
509
510 $pl->connect ($ns);
511 enter_map $pl;
512 login $pl;
513 });
514};
410 515
411cf::register_command password => sub { 516cf::register_command password => sub {
412 my ($pl, $arg) = @_; 517 my ($pl, $arg) = @_;
413 518
414 unless ($pl->flag (cf::FLAG_WIZ)) { 519 unless ($pl->flag (cf::FLAG_WIZ)) {
415 $pl->message ( 520 $pl->message (
416 "The password can currently only changed by a DM.", 521 "The password can currently only changed by a DM.",
417 cf::NDI_UNIQUE | cf::NDI_REPLY); 522 cf::NDI_UNIQUE | cf::NDI_REPLY);
418 return; 523 return;
419 } 524 }
525
526 $pl->message (#d#
527 "Passwords cannot currently be changed.",#d#
528 cf::NDI_UNIQUE | cf::NDI_REPLY);#d#
529 return;#d#
420 530
421 my (@args) = split /\s+/, $arg; 531 my (@args) = split /\s+/, $arg;
422 my ($player, $new_pw) = @args; 532 my ($player, $new_pw) = @args;
423 533
424 if ($pl->flag (cf::FLAG_WIZ) && $player eq '') { 534 if ($pl->flag (cf::FLAG_WIZ) && $player eq '') {

Diff Legend

Removed lines
+ Added lines
< Changed lines
> Changed lines