gitlord
/
isleward
mirror of https://gitlab.com/Isleward/isleward.git
1
0
Fork 0
Code Issues 0 Releases 203 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
263 Commits
10 Branches
35 MiB
 
 
 
Tree: d4f40aff30
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'd4f40aff30'
${ noResults }
isleward/src/server/components/auth.js

460 lines
10 KiB
Raw Blame History 

  1. define([

  2. 	'bcrypt-nodejs',

  3. 	'security/io',

  4. 	'misc/messages',

  5. 	'security/connections',

  6. 	'leaderboard/leaderboard',

  7. 	'config/skins',

  8. 	'misc/profanities'

  9. ], function(

  10. 	bcrypt,

  11. 	io,

  12. 	messages,

  13. 	connections,

  14. 	leaderboard,

  15. 	skins,

  16. 	profanities

  17. ) {

  18. 	return {

  19. 		type: 'auth',

  20. 

  21. 		username: null,

  22. 		charname: null,

  23. 		characters: {},

  24. 		characterList: [],

  25. 		stash: null,

  26. 

  27. 		play: function(data) {

  28. 			if (this.username == null)

  29. 				return;

  30. 

  31. 			var character = this.characters[data.data.name];

  32. 			if (!character)

  33. 				return;

  34. 

  35. 			if (character.permadead)

  36. 				return;

  37. 

  38. 			character.stash = this.stash;

  39. 			character.account = this.username;

  40. 

  41. 			this.charname = character.name;

  42. 

  43. 			data.callback();

  44. 			this.obj.player.sessionStart = +new Date;

  45. 			this.obj.player.spawn(character);

  46. 

  47. 			var prophecies = this.obj.prophecies ? this.obj.prophecies.simplify().list : [];

  48. 			leaderboard.setLevel(character.name, this.obj.stats.values.level, prophecies);

  49. 		},

  50. 

  51. 		doSave: function(extensionObj) {

  52. 			var simple = this.obj.getSimple(true, true);

  53. 			simple.components.spliceWhere(c => c.type == 'stash');

  54. 			//Don't save modified stat values

  55. 			var stats = simple.components.find(c => c.type == 'stats');

  56. 			stats.values = extend(true, {}, stats.values);

  57. 

  58. 			var statKeys = Object.keys(stats.values);

  59. 			var sLen = statKeys.length;

  60. 			for (var i = 0; i < sLen; i++) {

  61. 				var s = statKeys[i];

  62. 				if (

  63. 					(

  64. 						(s.indexOf('xp') > -1) &&

  65. 						(s != 'xpIncrease')

  66. 					) ||

  67. 					(s == 'level') ||

  68. 					(s == 'hp') ||

  69. 					(s == 'mana')

  70. 				)

  71. 					continue;

  72. 

  73. 				delete stats.values[s];

  74. 			}

  75. 

  76. 			//Calculate and store the ttl for effects

  77. 			var time = +new Date;

  78. 			simple.components.find(e => e.type == 'effects').effects.forEach(function(e) {

  79. 				e.expire = time + (e.ttl * 350);

  80. 			});

  81. 

  82. 			var callback = null;

  83. 			if (extensionObj) {

  84. 				callback = extensionObj.callback;

  85. 				delete extensionObj.callback;

  86. 			}

  87. 

  88. 			extend(true, simple, extensionObj);

  89. 

  90. 			try {

  91. 				var a = JSON.stringify(simple);

  92. 			}

  93. 			catch (e) {

  94. 				console.log(simple.components.find(c => (c.type == 'spellbook')).spells);

  95. 			}

  96. 

  97. 			io.set({

  98. 				ent: this.charname,

  99. 				field: 'character',

  100. 				value: JSON.stringify(simple),

  101. 				callback: callback

  102. 			});

  103. 

  104. 			//Save stash

  105. 			io.set({

  106. 				ent: this.username,

  107. 				field: 'stash',

  108. 				value: JSON.stringify(this.obj.stash.items)

  109. 			});

  110. 		},

  111. 

  112. 		simplify: function() {

  113. 			return {

  114. 				type: 'auth',

  115. 				username: this.username,

  116. 				charname: this.charname,

  117. 				skins: this.skins

  118. 			};

  119. 		},

  120. 

  121. 		getCharacterList: function(data) {

  122. 			if (this.username == null)

  123. 				return;

  124. 

  125. 			io.get({

  126. 				ent: this.username,

  127. 				field: 'characterList',

  128. 				callback: this.onGetCharacterList.bind(this, data)

  129. 			});

  130. 		},

  131. 		onGetCharacterList: function(data, result) {

  132. 			var characters = JSON.parse(result || '[]');

  133. 			this.characterList = characters;

  134. 

  135. 			var result = characters

  136. 				.map(c => ({

  137. 					name: c.name ? c.name : c,

  138. 					level: leaderboard.getLevel(c.name ? c.name : c)

  139. 				}));

  140. 

  141. 			data.callback(result);

  142. 		},

  143. 

  144. 		getCharacter: function(data) {

  145. 			io.get({

  146. 				ent: data.data.name,

  147. 				field: 'character',

  148. 				callback: this.onGetCharacter.bind(this, data)

  149. 			});

  150. 		},

  151. 		onGetCharacter: function(data, result) {

  152. 			var character = JSON.parse(result || '{}');

  153. 			this.characters[data.data.name] = character;

  154. 

  155. 			this.getStash(data, character);

  156. 		},

  157. 

  158. 		getStash: function(data, character) {

  159. 			io.get({

  160. 				ent: this.username,

  161. 				field: 'stash',

  162. 				callback: this.onGetStash.bind(this, data, character)

  163. 			});

  164. 		},

  165. 

  166. 		onGetStash: function(data, character, result) {

  167. 			this.stash = JSON.parse(result || '[]');

  168. 

  169. 			if (this.skins != null)

  170. 				data.callback(character);

  171. 			else {

  172. 				data.callback = data.callback.bind(null, character);

  173. 				this.getSkins(data);

  174. 			}

  175. 		},

  176. 

  177. 		getSkins: function(msg) {

  178. 			io.get({

  179. 				ent: this.username,

  180. 				field: 'skins',

  181. 				callback: this.onGetSkins.bind(this, msg)

  182. 			});

  183. 		},

  184. 

  185. 		onGetSkins: function(msg, result) {

  186. 			this.skins = JSON.parse(result || '[]');

  187. 			var skinList = skins.getSkinList(this.skins);

  188. 

  189. 			msg.callback(skinList);

  190. 		},

  191. 

  192. 		saveSkin: function(skinId) {

  193. 			if (!this.skins) {

  194. 				this.getSkins({

  195. 					callback: this.saveSkin.bind(this, skinId)

  196. 				});

  197. 

  198. 				return;

  199. 			}

  200. 

  201. 			this.skins.push(skinId);

  202. 

  203. 			io.set({

  204. 				ent: this.username,

  205. 				field: 'skins',

  206. 				value: JSON.stringify(this.skins),

  207. 				callback: this.onSaveSkin.bind(this)

  208. 			});

  209. 		},

  210. 

  211. 		onSaveSkin: function() {

  212. 

  213. 		},

  214. 

  215. 		doesOwnSkin: function(skinId) {

  216. 			return this.skins.some(s => s == skinId);

  217. 		},

  218. 

  219. 		login: function(msg) {

  220. 			var credentials = msg.data;

  221. 

  222. 			if ((credentials.username == '') | (credentials.password == '')) {

  223. 				msg.callback(messages.login.allFields);

  224. 				return;

  225. 			}

  226. 

  227. 			this.username = credentials.username;

  228. 

  229. 			io.get({

  230. 				ent: credentials.username,

  231. 				field: 'login',

  232. 				callback: this.onHashCompare.bind(this, msg)

  233. 			});

  234. 		},

  235. 		onHashCompare: function(msg, storedPassword) {

  236. 			var credentials = msg.data;

  237. 

  238. 			bcrypt.compare(credentials.password, storedPassword, this.onLogin.bind(this, msg, storedPassword));

  239. 		},

  240. 		onLogin: function(msg, storedPassword, err, compareResult) {

  241. 			if (!storedPassword)

  242. 				msg.callback(messages.login.incorrect);

  243. 			else {

  244. 				if (compareResult) { //If stored password matches the hashed password entered by the user, log them in directly

  245. 					this.onLoginVerified(msg);

  246. 				} else if (msg.data.password == storedPassword) { //If the stored password matches a plaintext password entered by the user; In that case the password gets hashed for the future

  247. 					this.onUnhashedLogin(msg);

  248. 				} else

  249. 					msg.callback(messages.login.incorrect);

  250. 			}

  251. 		},

  252. 		onUnhashedLogin: function(msg) {

  253. 			bcrypt.hash(msg.data.password, null, null, this.onPasswordHashed.bind(this, msg));

  254. 		},

  255. 		onPasswordHashed: function(msg, err, hashedPassword) {

  256. 			io.set({

  257. 				ent: msg.data.username,

  258. 				field: 'login',

  259. 				value: hashedPassword,

  260. 				callback: this.onLoginVerified.bind(this, msg)

  261.             });

  262. 		},

  263. 		onLoginVerified: function(msg) {

  264. 			this.username = msg.data.username;

  265. 			connections.logOut(this.obj);

  266. 			msg.callback();

  267. 		},

  268. 

  269. 		register: function(msg) {

  270. 			var credentials = msg.data;

  271. 

  272. 			if ((credentials.username == '') || (credentials.password == '')) {

  273. 				msg.callback(messages.login.allFields);

  274. 				return;

  275. 			}

  276. 

  277. 			var illegal = ["'", '"', '/', '(', ')', '[', ']', '{', '}', ':', ';', '<', '>'];

  278. 			for (var i = 0; i < illegal.length; i++) {

  279. 				if ((credentials.username.indexOf(illegal[i]) > -1) || (credentials.password.indexOf(illegal[i]) > -1)) {

  280. 					msg.callback(messages.login.illegal);

  281. 					return;

  282. 				}

  283. 			}

  284. 

  285. 			if (!profanities.isClean(credentials.username)) {

  286. 				msg.callback(messages.login.invalid);

  287. 				return;

  288. 			}

  289. 

  290. 			io.get({

  291. 				ent: credentials.username,

  292. 				field: 'login',

  293. 				callback: this.onCheckExists.bind(this, msg)

  294. 			});

  295. 		},

  296. 		onCheckExists: function(msg, result) {

  297. 			if (result) {

  298. 				msg.callback(messages.login.exists);

  299. 				return;

  300. 			}

  301. 

  302. 			var credentials = msg.data;

  303. 

  304. 			bcrypt.hash(credentials.password, null, null, this.onHashGenerated.bind(this, msg));

  305. 		},

  306. 		onHashGenerated: function(msg, err, hashedPassword) {

  307. 			io.set({

  308. 				ent: msg.data.username,

  309. 				field: 'login',

  310. 				value: hashedPassword,

  311. 				callback: this.onRegister.bind(this, msg)

  312. 			});

  313. 		},

  314. 		onRegister: function(msg, result) {

  315. 			io.set({

  316. 				ent: msg.data.username,

  317. 				field: 'characterList',

  318. 				value: '[]',

  319. 				callback: this.onCreateCharacterList.bind(this, msg)

  320. 			});

  321. 		},

  322. 		onCreateCharacterList: function(msg, result) {

  323. 			this.username = msg.data.username;

  324. 			connections.logOut(this.obj);

  325. 			msg.callback();

  326. 		},

  327. 

  328. 		createCharacter: function(msg) {

  329. 			var data = msg.data;

  330. 

  331. 			if ((data.name.length < 3) || (data.name.length > 12)) {

  332. 				msg.callback(messages.createCharacter.nameLength);

  333. 				return;

  334. 			}

  335. 

  336. 			if (!profanities.isClean(data.name)) {

  337. 				msg.callback(messages.login.invalid);

  338. 				return;

  339. 			}

  340. 

  341. 			io.get({

  342. 				ent: data.name,

  343. 				field: 'character',

  344. 				callback: this.onCheckCharacterExists.bind(this, msg)

  345. 			});

  346. 		},

  347. 		onCheckCharacterExists: function(msg, result) {

  348. 			if (result) {

  349. 				msg.callback(messages.login.charExists);

  350. 				return;

  351. 			}

  352. 

  353. 			var data = msg.data;

  354. 

  355. 			this.obj.name = data.name;

  356. 			this.obj.class = data.class;

  357. 			this.obj.costume = data.costume;

  358. 

  359. 			this.obj.cell = skins.getCell(this.obj.class, this.obj.costume);

  360. 			this.obj.previewSpritesheet = skins.getSpritesheet(this.obj.class);

  361. 

  362. 			var simple = this.obj.getSimple(true);

  363. 			simple.components.push({

  364. 				type: 'prophecies',

  365. 				list: data.prophecies || []

  366. 			});

  367. 

  368. 			io.set({

  369. 				ent: data.name,

  370. 				field: 'character',

  371. 				value: JSON.stringify(simple),

  372. 				callback: this.onCreateCharacter.bind(this, msg)

  373. 			});

  374. 		},

  375. 		onCreateCharacter: function(msg, result) {

  376. 			var name = msg.data.name;

  377. 

  378. 			var simple = this.obj.getSimple(true);

  379. 			simple.components.push({

  380. 				type: 'prophecies',

  381. 				list: msg.data.prophecies || []

  382. 			});

  383. 

  384. 			this.characters[name] = simple;

  385. 			this.characterList.push(name);

  386. 			io.set({

  387. 				ent: this.username,

  388. 				field: 'characterList',

  389. 				value: JSON.stringify(this.characterList),

  390. 				callback: this.onAppendList.bind(this, msg)

  391. 			});

  392. 		},

  393. 

  394. 		deleteCharacter: function(msg) {

  395. 			var data = msg.data;

  396. 

  397. 			if ((!data.name) || (!this.username))

  398. 				return;

  399. 

  400. 			if (this.characterList.indexOf(data.name) == -1) {

  401. 				msg.callback([]);

  402. 				return;

  403. 			}

  404. 

  405. 			io.delete({

  406. 				ent: data.name,

  407. 				field: 'character',

  408. 				callback: this.onDeleteCharacter.bind(this, msg)

  409. 			});

  410. 		},

  411. 		onDeleteCharacter: function(msg, result) {

  412. 			this.characterList.spliceWhere(c => c == msg.data.name);

  413. 			var characterList = this.characterList

  414. 				.map(c => ({

  415. 					name: c.name ? c.name : c,

  416. 					level: leaderboard.getLevel(c.name ? c.name : c)

  417. 				}));

  418. 

  419. 			io.set({

  420. 				ent: this.username,

  421. 				field: 'characterList',

  422. 				value: JSON.stringify(characterList),

  423. 				callback: this.onRemoveFromList.bind(this, msg)

  424. 			});

  425. 

  426. 			leaderboard.deleteCharacter(msg.data.name);

  427. 		},

  428. 		onRemoveFromList: function(msg, result) {

  429. 			msg.callback(this.characterList);

  430. 		},

  431. 

  432. 		onAppendList: function(msg, result) {

  433. 			this.play({

  434. 				data: {

  435. 					name: msg.data.name

  436. 				},

  437. 				callback: msg.callback

  438. 			});

  439. 		},

  440. 

  441. 		permadie: function() {

  442. 			this.obj.permadead = true;

  443. 

  444. 			this.doSave({

  445. 				permadead: true,

  446. 				callback: this.onPermadie.bind(this)

  447. 			});

  448. 		},

  449. 

  450. 		onPermadie: function() {

  451. 			process.send({

  452. 				method: 'object',

  453. 				serverId: this.obj.serverId,

  454. 				obj: {

  455. 					dead: true

  456. 				}

  457. 			});

  458. 		}

  459. 	};

  460. });