Meishin/LoginSystem
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
3,604 Commits 10 Branches 53 Tags
Commit Graph

2291 Commits

Author SHA1 Message Date
Gabriele C
adb3c06f51 Fix #1617 
Dinstinct invalid countries ("--") from localhost addresses ("LOCALHOST"), allow localhost access by default.
 2018-08-22 16:56:14 +02:00
DNx
f0cd775d7c Pass the ip check into player join event 
if AuthMe still cannot get the ip address.
 2018-07-22 13:03:58 +07:00
ljacqu
c420255ad7
Merge pull request #1547 from AuthMe/ip-check 
[Discussion] Skip IP check for API registration
 2018-07-16 19:24:14 +02:00
Gabriele C
b1c322c60c
Add #1591 debug code (#1599) 2018-07-16 14:49:35 +02:00
Gabriele C
38711a9913 1.13 compatible 2018-07-16 13:57:14 +02:00
Gabriele C
1a1ba31bf1
Merge branch 'master' into ip-check 2018-07-16 13:35:03 +02:00
DNx
6a219c3fc4 this one not get committed 2018-07-08 02:26:50 +07:00
DNx
1fd4f0e1a7 Improve previous commit 2018-07-08 02:24:58 +07:00
DNx
1d118afd17 Fix #1587 
AsyncPlayerPreLoginEvent#getAddress() sometimes return null if it unresolved.
In that case we should pass it to PlayerLoginEvent to do the join verification process.
 2018-07-07 20:54:38 +07:00
games647
0227cb3f74 Add IPv6 support for isLocal checks (#1592) 
* Add IPv6 support for isLocal checks

* Replace magic values like 127.0.0.1 and use our utility
* Support for IPv6 local adresses in IPv6 only or dual stack environments
    * Loopback [::1]
    * Site-Local fc00::/7
    * Link-local fe80::/10

* Introduce extra method for loopback addresses

* Use public IP for passMaxLogin check

* Use non-local IP addresses in test after change in verification
 2018-07-04 02:05:17 +02:00
games647
0a3b66bc7d
Start a reading instance after downloading (Related #1581) 2018-06-03 13:34:51 +02:00
games647
135e323358
Set the downloading flag in order to mark it as successful (Related #1581) 2018-06-03 09:47:52 +02:00
games647
f39141ed53
Fix race condition starting multiple database downloads (Related #1581) 2018-06-02 21:50:43 +02:00
games647
5058747b10
Download database only if there is a newer one uploaded (Fixes #1581) 2018-06-02 21:50:02 +02:00
ljacqu
fecd79fd28
Merge pull request #1577 from AuthMe/1417-chat-before-login-with-permission 
#1417 Add permission node to allow chat before login
 2018-05-22 19:51:15 +02:00
ljacqu
b9943675ba #1557 Disallow player from using /email setpassword more than once 2018-05-21 13:29:34 +02:00
ljacqu
768ef9179a Update datasource columns version 
- Fixes #1551 Bad closing of resources in case of an exception
- Facilitates initialization of SQL handler implementation
 2018-05-21 13:07:13 +02:00
ljacqu
68b896cfc3 Move salt column configuration to the other column configs 2018-05-21 09:10:27 +02:00
ljacqu
6142042996 #1417 Add permission node to allow chat before login 2018-05-21 08:45:18 +02:00
ljacqu
8e4288f911 Minor code householding 2018-05-20 13:10:26 +02:00
ljacqu
c96e28f726 Add debug logging for teleports (relates to #1521) 2018-05-13 22:52:41 +02:00
ljacqu
729c567dd5 #1141 Check that user is logged in before changing TOTP key 
- Use PlayerCache to check that user is logged in where appropriate
- Add log statements
 2018-05-13 18:49:40 +02:00
ljacqu
6f2f7a73af Merge branch 'master' of https://github.com/AuthMe/AuthMeReloaded into 1141-optional-additional-2fa-auth 2018-05-01 22:49:23 +02:00
ljacqu
1e3ed795c1 #1141 2FA implementation fixes 
- Merge TotpService into TotpAuthenticator
- Add missing tests
- Migrate old 2fa enabled key to new one
 2018-05-01 22:49:07 +02:00
ljacqu
d55b4bb3b5 #1561 Fix timing attacks by comparing hashes in constant time (#1563) 
* #1561 Fix timing attacks by comparing hashes in constant time

* #1561 Fix timing attacks in phpBB fallback hashes
- As noted by @games647
 2018-04-22 21:27:38 +02:00
ljacqu
cff456c285 Help message updater: specify the name of the updated file 2018-04-22 12:51:41 +02:00
ljacqu
ecaffbabfc Small cleanups / changes amassed over time 
- Small javadoc fixes
- Simplifications
- Move logException method from StringUtils to ExceptionUtils
 2018-04-22 12:45:34 +02:00
ljacqu
29ac3a7022 #1141 Fixes to TOTP implementation 
- Revert back to SHA1 as HMAC hash function so that it works with Google authenticator
- Add message to user to tell him to run /2fa confirm to add a TOTP code
 2018-04-22 11:13:27 +02:00
ljacqu
de0e588cf3 Merge branch 'master' of https://github.com/AuthMe/AuthMeReloaded into 1141-optional-additional-2fa-auth 2018-04-22 07:14:05 +02:00
Gabriele C
baec034909
#1555 Add RegisterEvent and AuthMeAsyncPreRegisterEvent (#1559) 
* #1555 Add RegisterEvent and AuthMeAsyncPreRegisterEvent

* Add missing javadoc
 2018-04-21 13:02:14 +02:00
Gabriele C
6e16abc34e Don't purge users if unable to load permission data 2018-04-19 11:45:21 +02:00
Tony
1f9bf38755 Added EmailChangedEvent (#1549) 
* Added EmailChangedEvent

* Fix failing tests

Silly.

* Documented the EmailChangedEvent

* Separate messages for cancelled email event

* Added lang todos for all the languages I can't speak

I wish I could though.

* Checkstyle satisfaction

* Changed log level to info for cancelled events
 2018-04-03 17:45:27 +02:00
ljacqu
9326094d9c #1141 Fix review remarks by @games647 
- Use SHA512 to generate keys instead of default SHA1
- Declare google authenticator dependency as optional and add relocation rule
 2018-04-03 00:13:53 +02:00
ljacqu
2bf78dd186 Merge branch 'master' of https://github.com/AuthMe/AuthMeReloaded into 1141-optional-additional-2fa-auth 2018-04-02 23:44:19 +02:00
ljacqu
106dea1611 Minor: fix JavaDoc warnings 2018-04-02 23:43:52 +02:00
ljacqu
fc54c0311b #1539 Columns handler: finishing touches 
- Add relocation rule for shading of the library
- Fix SQLite connection not being refreshed on reload
 2018-04-02 23:19:13 +02:00
games647
ee41d92216
Skip IP check for API registration 2018-03-29 14:08:33 +02:00
ljacqu
26472b6be3 #1539 Create common parent for SQLite and MySQL 2018-03-25 22:27:44 +02:00
ljacqu
4595a14191 #1539 Add support for columns that are not on player auth (is_logged, has_session) 2018-03-25 11:52:40 +02:00
ljacqu
137fc3d505 #1539 Use columns handler in more datasource methods; fix case-insensitivity for SQLite 2018-03-24 22:53:30 +01:00
ljacqu
881ef6a640 #1539 DataSource columns: close MySQL connections, add missing columns, use newly built-in types, improve column initialization 2018-03-24 21:16:43 +01:00
ljacqu
5a58f2c44f #1539 Integrate data source columns library 
- Create wrapper around SqlColumnsHandler for AuthMe-specific behavior
- Integrate columns handler into first SQLite and MySQL method implementations
 2018-03-24 12:24:43 +01:00
ljacqu
e9ab82db6b #1141 Make 2fa messages translatable, various cleanups (null safety, ...) 2018-03-21 23:56:13 +01:00
ljacqu
f66a8a5b06 Merge branch 'master' of https://github.com/AuthMe/AuthMeReloaded into 1141-optional-additional-2fa-auth 
# Conflicts:
#	src/main/java/fr/xephi/authme/permission/PlayerPermission.java
#	src/main/java/fr/xephi/authme/service/BukkitService.java
 2018-03-20 23:07:25 +01:00
ljacqu
495cfc69a9 #1141 Move TOTP code during login as separate step: /2fa code 
Rough version.
- Introduces a limbo player state on the LimboPlayer, allowing us to add further mandatory actions between successful (password) authentication and the ability to play on the server
 2018-03-20 23:06:08 +01:00
Gabriele C
6251a69d3e Use the latest LuckPerms api methods 2018-03-20 10:42:17 +01:00
ljacqu
a1a909c01d #1531 Move spigot detection to BukkitService (#1534) 2018-03-19 23:08:48 +01:00
ljacqu
250bd0d148
Merge pull request #1517 from AuthMe/642-kick-on-fast-commands 
#642 - Quick Command Protection
 2018-03-19 22:35:49 +01:00
HexelDev
84f97ea1c2 Add QuickCommandsProtectionManager#processJoin(player) 2018-03-19 22:33:53 +01:00
ljacqu
af6bee59bd Merge branch 'master' of https://github.com/AuthMe/AuthMeReloaded into 1141-optional-additional-2fa-auth 
# Conflicts:
#	src/main/java/fr/xephi/authme/datasource/MySQL.java
 2018-03-19 22:32:16 +01:00