168 lines
6.3 KiB
Java
168 lines
6.3 KiB
Java
package fr.xephi.authme.process.register;
|
|
|
|
import fr.xephi.authme.AuthMe;
|
|
import fr.xephi.authme.cache.auth.PlayerAuth;
|
|
import fr.xephi.authme.cache.auth.PlayerCache;
|
|
import fr.xephi.authme.datasource.DataSource;
|
|
import fr.xephi.authme.output.MessageKey;
|
|
import fr.xephi.authme.permission.PlayerStatePermission;
|
|
import fr.xephi.authme.process.Process;
|
|
import fr.xephi.authme.process.ProcessService;
|
|
import fr.xephi.authme.security.HashAlgorithm;
|
|
import fr.xephi.authme.security.crypts.HashedPassword;
|
|
import fr.xephi.authme.security.crypts.TwoFactor;
|
|
import fr.xephi.authme.settings.Settings;
|
|
import fr.xephi.authme.settings.properties.EmailSettings;
|
|
import fr.xephi.authme.settings.properties.RegistrationSettings;
|
|
import fr.xephi.authme.settings.properties.RestrictionSettings;
|
|
import fr.xephi.authme.settings.properties.SecuritySettings;
|
|
import fr.xephi.authme.util.StringUtils;
|
|
import org.bukkit.Bukkit;
|
|
import org.bukkit.entity.Player;
|
|
|
|
import java.util.List;
|
|
|
|
/**
|
|
*/
|
|
public class AsyncRegister implements Process {
|
|
|
|
private final Player player;
|
|
private final String name;
|
|
private final String password;
|
|
private final String ip;
|
|
private final String email;
|
|
private final AuthMe plugin;
|
|
private final DataSource database;
|
|
private final PlayerCache playerCache;
|
|
private final ProcessService service;
|
|
|
|
public AsyncRegister(Player player, String password, String email, AuthMe plugin, DataSource data,
|
|
PlayerCache playerCache, ProcessService service) {
|
|
this.player = player;
|
|
this.password = password;
|
|
this.name = player.getName().toLowerCase();
|
|
this.email = email;
|
|
this.plugin = plugin;
|
|
this.database = data;
|
|
this.ip = service.getIpAddressManager().getPlayerIp(player);
|
|
this.playerCache = playerCache;
|
|
this.service = service;
|
|
}
|
|
|
|
private boolean preRegisterCheck() {
|
|
if (playerCache.isAuthenticated(name)) {
|
|
service.send(player, MessageKey.ALREADY_LOGGED_IN_ERROR);
|
|
return false;
|
|
} else if (!service.getProperty(RegistrationSettings.IS_ENABLED)) {
|
|
service.send(player, MessageKey.REGISTRATION_DISABLED);
|
|
return false;
|
|
}
|
|
|
|
//check the password safety only if it's not a automatically generated password
|
|
if (service.getProperty(SecuritySettings.PASSWORD_HASH) != HashAlgorithm.TWO_FACTOR) {
|
|
MessageKey passwordError = service.validatePassword(password, player.getName());
|
|
if (passwordError != null) {
|
|
service.send(player, passwordError);
|
|
return false;
|
|
}
|
|
}
|
|
|
|
//check this in both possibilities so don't use 'else if'
|
|
if (database.isAuthAvailable(name)) {
|
|
service.send(player, MessageKey.NAME_ALREADY_REGISTERED);
|
|
return false;
|
|
}
|
|
|
|
final int maxRegPerIp = service.getProperty(RestrictionSettings.MAX_REGISTRATION_PER_IP);
|
|
if (maxRegPerIp > 0
|
|
&& !"127.0.0.1".equalsIgnoreCase(ip)
|
|
&& !"localhost".equalsIgnoreCase(ip)
|
|
&& !plugin.getPermissionsManager().hasPermission(player, PlayerStatePermission.ALLOW_MULTIPLE_ACCOUNTS)) {
|
|
List<String> otherAccounts = database.getAllAuthsByIp(ip);
|
|
if (otherAccounts.size() >= maxRegPerIp) {
|
|
service.send(player, MessageKey.MAX_REGISTER_EXCEEDED, Integer.toString(maxRegPerIp),
|
|
Integer.toString(otherAccounts.size()), StringUtils.join(", ", otherAccounts));
|
|
return false;
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
|
|
@Override
|
|
public void run() {
|
|
if (preRegisterCheck()) {
|
|
if (!StringUtils.isEmpty(email)) {
|
|
emailRegister();
|
|
} else {
|
|
passwordRegister();
|
|
}
|
|
}
|
|
}
|
|
|
|
private void emailRegister() {
|
|
final int maxRegPerEmail = service.getProperty(EmailSettings.MAX_REG_PER_EMAIL);
|
|
if (maxRegPerEmail > 0
|
|
&& !plugin.getPermissionsManager().hasPermission(player, PlayerStatePermission.ALLOW_MULTIPLE_ACCOUNTS)) {
|
|
int otherAccounts = database.countAuthsByEmail(email);
|
|
if (otherAccounts >= maxRegPerEmail) {
|
|
service.send(player, MessageKey.MAX_REGISTER_EXCEEDED, Integer.toString(maxRegPerEmail),
|
|
Integer.toString(otherAccounts), "@");
|
|
return;
|
|
}
|
|
}
|
|
|
|
final HashedPassword hashedPassword = service.computeHash(password, name);
|
|
PlayerAuth auth = PlayerAuth.builder()
|
|
.name(name)
|
|
.realName(player.getName())
|
|
.password(hashedPassword)
|
|
.ip(ip)
|
|
.location(player.getLocation())
|
|
.email(email)
|
|
.build();
|
|
|
|
if (!database.saveAuth(auth)) {
|
|
service.send(player, MessageKey.ERROR);
|
|
return;
|
|
}
|
|
database.updateEmail(auth);
|
|
database.updateSession(auth);
|
|
plugin.mail.main(auth, password);
|
|
ProcessSyncEmailRegister sync = new ProcessSyncEmailRegister(player, service);
|
|
service.scheduleSyncDelayedTask(sync);
|
|
|
|
}
|
|
|
|
private void passwordRegister() {
|
|
final HashedPassword hashedPassword = service.computeHash(password, name);
|
|
PlayerAuth auth = PlayerAuth.builder()
|
|
.name(name)
|
|
.realName(player.getName())
|
|
.password(hashedPassword)
|
|
.ip(ip)
|
|
.location(player.getLocation())
|
|
.build();
|
|
|
|
if (!database.saveAuth(auth)) {
|
|
service.send(player, MessageKey.ERROR);
|
|
return;
|
|
}
|
|
|
|
if (!Settings.forceRegLogin) {
|
|
//PlayerCache.getInstance().addPlayer(auth);
|
|
//database.setLogged(name);
|
|
// TODO: check this...
|
|
plugin.getManagement().performLogin(player, "dontneed", true);
|
|
}
|
|
|
|
ProcessSyncPasswordRegister sync = new ProcessSyncPasswordRegister(player, plugin, service);
|
|
service.scheduleSyncDelayedTask(sync);
|
|
|
|
//give the user the secret code to setup their app code generation
|
|
if (service.getProperty(SecuritySettings.PASSWORD_HASH) == HashAlgorithm.TWO_FACTOR) {
|
|
String qrCodeUrl = TwoFactor.getQRBarcodeURL(player.getName(), Bukkit.getIp(), hashedPassword.getHash());
|
|
service.send(player, MessageKey.TWO_FACTOR_CREATE, hashedPassword.getHash(), qrCodeUrl);
|
|
}
|
|
}
|
|
}
|