mirror of
https://github.com/GravitLauncher/Launcher
synced 2024-12-23 09:01:08 +03:00
[FIX] Bad login (MySQL + HWID)
This commit is contained in:
parent
7bfa4ebdab
commit
7cd6b9c1d9
1 changed files with 15 additions and 8 deletions
|
@ -51,7 +51,7 @@ public boolean allowGetSecureLevelInfo(Client client) {
|
||||||
@Override
|
@Override
|
||||||
public void onHardwareReport(HardwareReportResponse response, Client client) {
|
public void onHardwareReport(HardwareReportResponse response, Client client) {
|
||||||
if (!enableHardwareFeature) {
|
if (!enableHardwareFeature) {
|
||||||
response.sendResult(new HardwareReportRequestEvent(createHardwareToken(client.username, response.hardware)));
|
response.sendResult(new HardwareReportRequestEvent(null));
|
||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
if (!client.isAuth || client.trustLevel == null || client.trustLevel.publicKey == null) {
|
if (!client.isAuth || client.trustLevel == null || client.trustLevel.publicKey == null) {
|
||||||
|
@ -73,11 +73,14 @@ public void onHardwareReport(HardwareReportResponse response, Client client) {
|
||||||
throw new SecurityException("Your hardware banned");
|
throw new SecurityException("Your hardware banned");
|
||||||
}
|
}
|
||||||
client.trustLevel.hardwareInfo = hardware.getHardwareInfo();
|
client.trustLevel.hardwareInfo = hardware.getHardwareInfo();
|
||||||
|
response.sendResult(new HardwareReportRequestEvent(createHardwareToken(client.username, hardware)));
|
||||||
|
return;
|
||||||
} else {
|
} else {
|
||||||
logger.error("AuthCoreProvider not supported hardware");
|
logger.error("AuthCoreProvider not supported hardware");
|
||||||
|
response.sendError("AuthCoreProvider not supported hardware");
|
||||||
|
return;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
response.sendResult(new HardwareReportRequestEvent(createHardwareToken(client.username, response.hardware)));
|
|
||||||
}
|
}
|
||||||
|
|
||||||
@Override
|
@Override
|
||||||
|
@ -93,7 +96,7 @@ public VerifySecureLevelKeyRequestEvent onSuccessVerify(Client client) {
|
||||||
}
|
}
|
||||||
client.trustLevel.hardwareInfo = hardware.getHardwareInfo();
|
client.trustLevel.hardwareInfo = hardware.getHardwareInfo();
|
||||||
authSupportHardware.connectUserAndHardware(client.sessionObject, hardware);
|
authSupportHardware.connectUserAndHardware(client.sessionObject, hardware);
|
||||||
return new VerifySecureLevelKeyRequestEvent(false, false, createPublicKeyToken(client.username, client.trustLevel.publicKey), createHardwareToken(client.username, client.trustLevel.hardwareInfo));
|
return new VerifySecureLevelKeyRequestEvent(false, false, createPublicKeyToken(client.username, client.trustLevel.publicKey), createHardwareToken(client.username, hardware));
|
||||||
} else {
|
} else {
|
||||||
logger.warn("AuthCoreProvider not supported hardware. HardwareInfo not checked!");
|
logger.warn("AuthCoreProvider not supported hardware. HardwareInfo not checked!");
|
||||||
}
|
}
|
||||||
|
@ -115,12 +118,12 @@ public void init(LaunchServer server) {
|
||||||
public void close() {
|
public void close() {
|
||||||
}
|
}
|
||||||
|
|
||||||
public String createHardwareToken(String username, HardwareReportRequest.HardwareInfo info) {
|
public String createHardwareToken(String username, UserHardware hardware) {
|
||||||
return Jwts.builder()
|
return Jwts.builder()
|
||||||
.setIssuer("LaunchServer")
|
.setIssuer("LaunchServer")
|
||||||
.setSubject(username)
|
.setSubject(username)
|
||||||
.setExpiration(new Date(System.currentTimeMillis() + 1000 * 60 * 60 * 8))
|
.setExpiration(new Date(System.currentTimeMillis() + 1000 * 60 * 60 * 8))
|
||||||
.claim("hardware", info)
|
.claim("hardware", hardware.getId())
|
||||||
.signWith(server.keyAgreementManager.ecdsaPrivateKey)
|
.signWith(server.keyAgreementManager.ecdsaPrivateKey)
|
||||||
.compact();
|
.compact();
|
||||||
}
|
}
|
||||||
|
@ -152,10 +155,14 @@ public HardwareInfoTokenVerifier(LaunchServer server) {
|
||||||
public boolean accept(Client client, AuthProviderPair pair, String extendedToken) {
|
public boolean accept(Client client, AuthProviderPair pair, String extendedToken) {
|
||||||
try {
|
try {
|
||||||
var parse = parser.parseClaimsJws(extendedToken);
|
var parse = parser.parseClaimsJws(extendedToken);
|
||||||
HardwareReportRequest.HardwareInfo hardwareInfo = parse.getBody().get("hardware", HardwareReportRequest.HardwareInfo.class);
|
String hardwareInfoId = parse.getBody().get("hardware", String.class);
|
||||||
if (hardwareInfo == null) return false;
|
if (hardwareInfoId == null) return false;
|
||||||
|
if(client.auth == null) return false;
|
||||||
|
var hardwareSupport = client.auth.core.isSupport(AuthSupportHardware.class);
|
||||||
|
if(hardwareSupport == null) return false;
|
||||||
|
UserHardware hardware = hardwareSupport.getHardwareInfoById(hardwareInfoId);
|
||||||
if (client.trustLevel == null) client.trustLevel = new Client.TrustLevel();
|
if (client.trustLevel == null) client.trustLevel = new Client.TrustLevel();
|
||||||
client.trustLevel.hardwareInfo = hardwareInfo;
|
client.trustLevel.hardwareInfo = hardware.getHardwareInfo();
|
||||||
return true;
|
return true;
|
||||||
} catch (Throwable e) {
|
} catch (Throwable e) {
|
||||||
logger.error("Hardware JWT error", e);
|
logger.error("Hardware JWT error", e);
|
||||||
|
|
Loading…
Reference in a new issue