veloren/server/src/auth_provider.rs

use authc::{AuthClient, AuthToken, Uuid};
use common::msg::RegisterError;
use hashbrown::HashMap;
use log::error;
use std::str::FromStr;

fn derive_uuid(username: &str) -> Uuid {
    let mut state = 144066263297769815596495629667062367629;

    for byte in username.as_bytes() {
        state ^= *byte as u128;
        state = state.wrapping_mul(309485009821345068724781371);
    }

    Uuid::from_slice(&state.to_be_bytes()).unwrap()
}

pub struct AuthProvider {
    accounts: HashMap<Uuid, String>,
    auth_server: Option<AuthClient>,
}

impl AuthProvider {
    pub fn new(auth_addr: Option<String>) -> Self {
        let auth_server = match auth_addr {
            Some(addr) => Some(AuthClient::new(addr)),
            None => None,
        };

        AuthProvider {
            accounts: HashMap::new(),
            auth_server,
        }
    }

    pub fn logout(&mut self, uuid: Uuid) {
        if self.accounts.remove(&uuid).is_none() {
            error!("Attempted to logout user that is not logged in.");
        };
    }

    pub fn query(&mut self, username_or_token: String) -> Result<(String, Uuid), RegisterError> {
        // Based on whether auth server is provided or not we expect an username or
        // token
        match &self.auth_server {
            // Token from auth server expected
            Some(srv) => {
                log::info!("Validating '{}' token.", &username_or_token);
                // Parse token
                let token = AuthToken::from_str(&username_or_token)
                    .map_err(|e| RegisterError::AuthError(e.to_string()))?;
                // Validate token
                let uuid = srv.validate(token)?;
                // Check if already logged in
                if self.accounts.contains_key(&uuid) {
                    return Err(RegisterError::AlreadyLoggedIn);
                }
                // Log in
                let username = srv.uuid_to_username(uuid)?;
                self.accounts.insert(uuid, username.clone());
                Ok((username, uuid))
            },
            // Username is expected
            None => {
                // Assume username was provided
                let username = username_or_token;
                let uuid = derive_uuid(&username);
                if !self.accounts.contains_key(&uuid) {
                    log::info!("New User '{}'", username);
                    self.accounts.insert(uuid, username.clone());
                    Ok((username, uuid))
                } else {
                    Err(RegisterError::AlreadyLoggedIn)
                }
            },
        }
    }
}
Server auth handling improvements. 2020-01-01 20:17:43 +00:00			`use authc::{AuthClient, AuthToken, Uuid};`
improve(login): more precise error handling during login 2020-01-07 06:27:18 +00:00			`use common::msg::RegisterError;`
Switch to hashbrown in server. 2019-08-11 19:48:02 +00:00			`use hashbrown::HashMap;`
Add uid to Player component fix: world examples 2020-01-11 21:04:49 +00:00			`use log::error;`
:/ and reactivated the password field 2019-12-21 17:02:39 +00:00			`use std::str::FromStr;`
created basic AuthProvider which we can change to suit our needs 2019-08-08 22:24:14 +00:00
Server auth handling improvements. 2020-01-01 20:17:43 +00:00			`fn derive_uuid(username: &str) -> Uuid {`
Fix #556 2020-05-12 23:08:33 +00:00			`let mut state = 144066263297769815596495629667062367629;`

			`for byte in username.as_bytes() {`
			`state ^= *byte as u128;`
			`state = state.wrapping_mul(309485009821345068724781371);`
Server auth handling improvements. 2020-01-01 20:17:43 +00:00			`}`
Fix #556 2020-05-12 23:08:33 +00:00
			`Uuid::from_slice(&state.to_be_bytes()).unwrap()`
Server auth handling improvements. 2020-01-01 20:17:43 +00:00			`}`

created basic AuthProvider which we can change to suit our needs 2019-08-08 22:24:14 +00:00			`pub struct AuthProvider {`
Add warning prompt for untrusted auth servers, move some auth code into 2020-01-02 08:43:45 +00:00			`accounts: HashMap<Uuid, String>,`
:/ and reactivated the password field 2019-12-21 17:02:39 +00:00			`auth_server: Option<AuthClient>,`
created basic AuthProvider which we can change to suit our needs 2019-08-08 22:24:14 +00:00			`}`

			`impl AuthProvider {`
:/ and reactivated the password field 2019-12-21 17:02:39 +00:00			`pub fn new(auth_addr: Option<String>) -> Self {`
			`let auth_server = match auth_addr {`
			`Some(addr) => Some(AuthClient::new(addr)),`
			`None => None,`
			`};`

created basic AuthProvider which we can change to suit our needs 2019-08-08 22:24:14 +00:00			`AuthProvider {`
			`accounts: HashMap::new(),`
:/ and reactivated the password field 2019-12-21 17:02:39 +00:00			`auth_server,`
created basic AuthProvider which we can change to suit our needs 2019-08-08 22:24:14 +00:00			`}`
			`}`

Add uid to Player component fix: world examples 2020-01-11 21:04:49 +00:00			`pub fn logout(&mut self, uuid: Uuid) {`
			`if self.accounts.remove(&uuid).is_none() {`
			`error!("Attempted to logout user that is not logged in.");`
			`};`
			`}`
Remove account on logout. 2020-01-11 19:50:35 +00:00
Add uid to Player component fix: world examples 2020-01-11 21:04:49 +00:00			`pub fn query(&mut self, username_or_token: String) -> Result<(String, Uuid), RegisterError> {`
:/ and reactivated the password field 2019-12-21 17:02:39 +00:00			`// Based on whether auth server is provided or not we expect an username or`
			`// token`
			`match &self.auth_server {`
			`// Token from auth server expected`
			`Some(srv) => {`
			`log::info!("Validating '{}' token.", &username_or_token);`
improve(login): more precise error handling during login 2020-01-07 06:27:18 +00:00			`// Parse token`
			`let token = AuthToken::from_str(&username_or_token)`
			`.map_err(\|e\| RegisterError::AuthError(e.to_string()))?;`
			`// Validate token`
			`let uuid = srv.validate(token)?;`
			`// Check if already logged in`
			`if self.accounts.contains_key(&uuid) {`
			`return Err(RegisterError::AlreadyLoggedIn);`
:/ and reactivated the password field 2019-12-21 17:02:39 +00:00			`}`
improve(login): more precise error handling during login 2020-01-07 06:27:18 +00:00			`// Log in`
Add uid to Player component fix: world examples 2020-01-11 21:04:49 +00:00			`let username = srv.uuid_to_username(uuid)?;`
			`self.accounts.insert(uuid, username.clone());`
			`Ok((username, uuid))`
:/ and reactivated the password field 2019-12-21 17:02:39 +00:00			`},`
			`// Username is expected`
			`None => {`
Add warning prompt for untrusted auth servers, move some auth code into 2020-01-02 08:43:45 +00:00			`// Assume username was provided`
			`let username = username_or_token;`
			`let uuid = derive_uuid(&username);`
			`if !self.accounts.contains_key(&uuid) {`
			`log::info!("New User '{}'", username);`
Add uid to Player component fix: world examples 2020-01-11 21:04:49 +00:00			`self.accounts.insert(uuid, username.clone());`
			`Ok((username, uuid))`
:/ and reactivated the password field 2019-12-21 17:02:39 +00:00			`} else {`
improve(login): more precise error handling during login 2020-01-07 06:27:18 +00:00			`Err(RegisterError::AlreadyLoggedIn)`
:/ and reactivated the password field 2019-12-21 17:02:39 +00:00			`}`
			`},`
created basic AuthProvider which we can change to suit our needs 2019-08-08 22:24:14 +00:00			`}`
			`}`
			`}`