BlockColor-Engine/builtin/game/auth.lua

-- Minetest: builtin/auth.lua

--
-- Authentication handler
--

function multicraft.string_to_privs(str, delim)
	if type(str) ~= "string" then return end
	delim = delim or ','
	local privs = {}
	for _, priv in pairs(string.split(str, delim)) do
		privs[priv:trim()] = true
	end
	return privs
end

function multicraft.privs_to_string(privs, delim)
	assert(type(privs) == "table")
	delim = delim or ','
	local list = {}
	for priv, bool in pairs(privs) do
		if bool then
			table.insert(list, priv)
		end
	end
	return table.concat(list, delim)
end

assert(multicraft.string_to_privs("a,b").b == true)
assert(multicraft.privs_to_string({a=true,b=true}) == "a,b")

multicraft.auth_file_path = multicraft.get_worldpath().."/auth.txt"
multicraft.auth_table = {}

local hex={}
for i=0,255 do
    hex[string.format("%0x",i)]=string.char(i)
    hex[string.format("%0X",i)]=string.char(i)
end

local function uri_decode(str)
	str = string.gsub (str, "+", " ")
	return (str:gsub('%%(%x%x)',hex))
end

function uri_encode (str)
	str = string.gsub (str, "([^0-9a-zA-Z_ -])", function (c) return string.format ("%%%02X", string.byte(c)) end)
	str = string.gsub (str, " ", "+")
	return str
end

local function read_auth_file()
	local newtable = {}
	local file, errmsg = io.open(multicraft.auth_file_path, 'rb')
	if not file then
		multicraft.log("info", multicraft.auth_file_path.." could not be opened for reading ("..errmsg.."); assuming new world")
		return
	end
	for line in file:lines() do
		if line ~= "" then
			local fields = line:split(":", true)
			local name, password, privilege_string, last_login = unpack(fields)
			last_login = tonumber(last_login)
			if not (name and password and privilege_string) then
				error("Invalid line in auth.txt: "..dump(line))
			end
			local privileges = multicraft.string_to_privs(privilege_string)
			newtable[uri_decode(name)] = {password=password, privileges=privileges, last_login=last_login}
		end
	end
	io.close(file)
	multicraft.auth_table = newtable
	multicraft.notify_authentication_modified()
end

local function save_auth_file()
	local newtable = {}
	-- Check table for validness before attempting to save
	for name, stuff in pairs(multicraft.auth_table) do
		assert(type(name) == "string")
		assert(name ~= "")
		assert(type(stuff) == "table")
		assert(type(stuff.password) == "string")
		assert(type(stuff.privileges) == "table")
		assert(stuff.last_login == nil or type(stuff.last_login) == "number")
	end
	local file, errmsg = io.open(multicraft.auth_file_path, 'w+b')
	if not file then
		error(multicraft.auth_file_path.." could not be opened for writing: "..errmsg)
	end
	for name, stuff in pairs(multicraft.auth_table) do
		local priv_string = multicraft.privs_to_string(stuff.privileges)
		local parts = {uri_encode(name), stuff.password, priv_string, stuff.last_login or ""}
		file:write(table.concat(parts, ":").."\n")
	end
	io.close(file)
end

read_auth_file()

multicraft.builtin_auth_handler = {
	get_auth = function(name)
		assert(type(name) == "string")
		-- Figure out what password to use for a new player (singleplayer
		-- always has an empty password, otherwise use default, which is
		-- usually empty too)
		local new_password_hash = ""
		-- If not in authentication table, return nil
		if not multicraft.auth_table[name] then
			return nil
		end
		-- Figure out what privileges the player should have.
		-- Take a copy of the privilege table
		local privileges = {}
		for priv, _ in pairs(multicraft.auth_table[name].privileges) do
			privileges[priv] = true
		end
		-- If singleplayer, give all privileges except those marked as give_to_singleplayer = false
		if multicraft.is_singleplayer() then
			for priv, def in pairs(multicraft.registered_privileges) do
				if def.give_to_singleplayer then
					privileges[priv] = true
				end
			end
		-- For the admin, give everything
		elseif name == multicraft.setting_get("name") then
			for priv, def in pairs(multicraft.registered_privileges) do
				privileges[priv] = true
			end
		end
		-- All done
		return {
			password = multicraft.auth_table[name].password,
			privileges = privileges,
			-- Is set to nil if unknown
			last_login = multicraft.auth_table[name].last_login,
		}
	end,
	create_auth = function(name, password)
		assert(type(name) == "string")
		assert(type(password) == "string")
		multicraft.log('info', "Built-in authentication handler adding player '"..name.."'")
		local privs = multicraft.setting_get("default_privs")
		if multicraft.setting_getbool("creative_mode") and multicraft.setting_get("default_privs_creative") then
			privs = multicraft.setting_get("default_privs_creative")
		end
		multicraft.auth_table[name] = {
			password = password,
			privileges = multicraft.string_to_privs(privs),
			last_login = os.time(),
		}
		save_auth_file()
	end,
	set_password = function(name, password)
		assert(type(name) == "string")
		assert(type(password) == "string")
		if not multicraft.auth_table[name] then
			multicraft.builtin_auth_handler.create_auth(name, password)
		else
			multicraft.log('info', "Built-in authentication handler setting password of player '"..name.."'")
			multicraft.auth_table[name].password = password
			save_auth_file()
		end
		return true
	end,
	set_privileges = function(name, privileges)
		assert(type(name) == "string")
		assert(type(privileges) == "table")
		if not multicraft.auth_table[name] then
			multicraft.builtin_auth_handler.create_auth(name,
				multicraft.get_password_hash(name,
					multicraft.setting_get("default_password")))
		end
		multicraft.auth_table[name].privileges = privileges
		multicraft.notify_authentication_modified(name)
		save_auth_file()
	end,
	reload = function()
		read_auth_file()
		return true
	end,
	record_login = function(name)
		assert(type(name) == "string")
		assert(multicraft.auth_table[name]).last_login = os.time()
		save_auth_file()
	end,
}

function multicraft.register_authentication_handler(handler)
	if multicraft.registered_auth_handler then
		error("Add-on authentication handler already registered by "..multicraft.registered_auth_handler_modname)
	end
	multicraft.registered_auth_handler = handler
	multicraft.registered_auth_handler_modname = multicraft.get_current_modname()
end

function multicraft.get_auth_handler()
	return multicraft.registered_auth_handler or multicraft.builtin_auth_handler
end

local function auth_pass(name)
	return function(...)
		local auth_handler = multicraft.get_auth_handler()
		if auth_handler[name] then
			return auth_handler[name](...)
		end
		return false
	end
end

multicraft.set_player_password = auth_pass("set_password")
multicraft.set_player_privs    = auth_pass("set_privileges")
multicraft.auth_reload         = auth_pass("reload")


local record_login = auth_pass("record_login")

multicraft.register_on_joinplayer(function(player)
	record_login(player:get_player_name())
end)
New MainMenu, update WversionManager, Makefile change New MainMenu by 4aiman WVersionManager - 1.3 Makefile - rename output apk 2015-05-12 09:59:17 +02:00			`-- Minetest: builtin/auth.lua`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00
			`--`
			`-- Authentication handler`
			`--`

core->multicraft 2015-07-05 14:23:28 +02:00			`function multicraft.string_to_privs(str, delim)`
New MainMenu, update WversionManager, Makefile change New MainMenu by 4aiman WVersionManager - 1.3 Makefile - rename output apk 2015-05-12 09:59:17 +02:00			`if type(str) ~= "string" then return end`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`delim = delim or ','`
Add strict module Also fix leaking globals found by it. 2014-06-05 18:40:34 +02:00			`local privs = {}`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`for _, priv in pairs(string.split(str, delim)) do`
			`privs[priv:trim()] = true`
			`end`
			`return privs`
			`end`

core->multicraft 2015-07-05 14:23:28 +02:00			`function multicraft.privs_to_string(privs, delim)`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`assert(type(privs) == "table")`
			`delim = delim or ','`
Add strict module Also fix leaking globals found by it. 2014-06-05 18:40:34 +02:00			`local list = {}`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`for priv, bool in pairs(privs) do`
			`if bool then`
			`table.insert(list, priv)`
			`end`
			`end`
			`return table.concat(list, delim)`
			`end`

core->multicraft 2015-07-05 14:23:28 +02:00			`assert(multicraft.string_to_privs("a,b").b == true)`
			`assert(multicraft.privs_to_string({a=true,b=true}) == "a,b")`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00
core->multicraft 2015-07-05 14:23:28 +02:00			`multicraft.auth_file_path = multicraft.get_worldpath().."/auth.txt"`
			`multicraft.auth_table = {}`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00
New MainMenu, update WversionManager, Makefile change New MainMenu by 4aiman WVersionManager - 1.3 Makefile - rename output apk 2015-05-12 09:59:17 +02:00			`local hex={}`
			`for i=0,255 do`
			`hex[string.format("%0x",i)]=string.char(i)`
			`hex[string.format("%0X",i)]=string.char(i)`
			`end`

			`local function uri_decode(str)`
			`str = string.gsub (str, "+", " ")`
			`return (str:gsub('%%(%x%x)',hex))`
			`end`

			`function uri_encode (str)`
			`str = string.gsub (str, "([^0-9a-zA-Z_ -])", function (c) return string.format ("%%%02X", string.byte(c)) end)`
			`str = string.gsub (str, " ", "+")`
			`return str`
			`end`

Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`local function read_auth_file()`
			`local newtable = {}`
core->multicraft 2015-07-05 14:23:28 +02:00			`local file, errmsg = io.open(multicraft.auth_file_path, 'rb')`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`if not file then`
core->multicraft 2015-07-05 14:23:28 +02:00			`multicraft.log("info", multicraft.auth_file_path.." could not be opened for reading ("..errmsg.."); assuming new world")`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`return`
			`end`
			`for line in file:lines() do`
			`if line ~= "" then`
Add last_login field to auth.txt Also shortens some related code and adds more parameters to string.split. 2014-10-09 00:11:44 +02:00			`local fields = line:split(":", true)`
			`local name, password, privilege_string, last_login = unpack(fields)`
			`last_login = tonumber(last_login)`
			`if not (name and password and privilege_string) then`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`error("Invalid line in auth.txt: "..dump(line))`
			`end`
core->multicraft 2015-07-05 14:23:28 +02:00			`local privileges = multicraft.string_to_privs(privilege_string)`
New MainMenu, update WversionManager, Makefile change New MainMenu by 4aiman WVersionManager - 1.3 Makefile - rename output apk 2015-05-12 09:59:17 +02:00			`newtable[uri_decode(name)] = {password=password, privileges=privileges, last_login=last_login}`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`end`
			`end`
			`io.close(file)`
core->multicraft 2015-07-05 14:23:28 +02:00			`multicraft.auth_table = newtable`
			`multicraft.notify_authentication_modified()`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`end`

			`local function save_auth_file()`
			`local newtable = {}`
			`-- Check table for validness before attempting to save`
core->multicraft 2015-07-05 14:23:28 +02:00			`for name, stuff in pairs(multicraft.auth_table) do`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`assert(type(name) == "string")`
			`assert(name ~= "")`
			`assert(type(stuff) == "table")`
			`assert(type(stuff.password) == "string")`
			`assert(type(stuff.privileges) == "table")`
Add last_login field to auth.txt Also shortens some related code and adds more parameters to string.split. 2014-10-09 00:11:44 +02:00			`assert(stuff.last_login == nil or type(stuff.last_login) == "number")`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`end`
core->multicraft 2015-07-05 14:23:28 +02:00			`local file, errmsg = io.open(multicraft.auth_file_path, 'w+b')`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`if not file then`
core->multicraft 2015-07-05 14:23:28 +02:00			`error(multicraft.auth_file_path.." could not be opened for writing: "..errmsg)`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`end`
core->multicraft 2015-07-05 14:23:28 +02:00			`for name, stuff in pairs(multicraft.auth_table) do`
			`local priv_string = multicraft.privs_to_string(stuff.privileges)`
New MainMenu, update WversionManager, Makefile change New MainMenu by 4aiman WVersionManager - 1.3 Makefile - rename output apk 2015-05-12 09:59:17 +02:00			`local parts = {uri_encode(name), stuff.password, priv_string, stuff.last_login or ""}`
Add last_login field to auth.txt Also shortens some related code and adds more parameters to string.split. 2014-10-09 00:11:44 +02:00			`file:write(table.concat(parts, ":").."\n")`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`end`
			`io.close(file)`
			`end`

			`read_auth_file()`

core->multicraft 2015-07-05 14:23:28 +02:00			`multicraft.builtin_auth_handler = {`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`get_auth = function(name)`
			`assert(type(name) == "string")`
			`-- Figure out what password to use for a new player (singleplayer`
			`-- always has an empty password, otherwise use default, which is`
			`-- usually empty too)`
			`local new_password_hash = ""`
Fix unable to join server first time with a password 2012-04-09 10:24:35 +02:00			`-- If not in authentication table, return nil`
core->multicraft 2015-07-05 14:23:28 +02:00			`if not multicraft.auth_table[name] then`
Fix unable to join server first time with a password 2012-04-09 10:24:35 +02:00			`return nil`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`end`
			`-- Figure out what privileges the player should have.`
			`-- Take a copy of the privilege table`
			`local privileges = {}`
core->multicraft 2015-07-05 14:23:28 +02:00			`for priv, _ in pairs(multicraft.auth_table[name].privileges) do`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`privileges[priv] = true`
			`end`
			`-- If singleplayer, give all privileges except those marked as give_to_singleplayer = false`
core->multicraft 2015-07-05 14:23:28 +02:00			`if multicraft.is_singleplayer() then`
			`for priv, def in pairs(multicraft.registered_privileges) do`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`if def.give_to_singleplayer then`
			`privileges[priv] = true`
			`end`
			`end`
			`-- For the admin, give everything`
core->multicraft 2015-07-05 14:23:28 +02:00			`elseif name == multicraft.setting_get("name") then`
			`for priv, def in pairs(multicraft.registered_privileges) do`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`privileges[priv] = true`
			`end`
			`end`
			`-- All done`
			`return {`
core->multicraft 2015-07-05 14:23:28 +02:00			`password = multicraft.auth_table[name].password,`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`privileges = privileges,`
Add last_login field to auth.txt Also shortens some related code and adds more parameters to string.split. 2014-10-09 00:11:44 +02:00			`-- Is set to nil if unknown`
core->multicraft 2015-07-05 14:23:28 +02:00			`last_login = multicraft.auth_table[name].last_login,`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`}`
			`end,`
			`create_auth = function(name, password)`
			`assert(type(name) == "string")`
			`assert(type(password) == "string")`
core->multicraft 2015-07-05 14:23:28 +02:00			`multicraft.log('info', "Built-in authentication handler adding player '"..name.."'")`
			`local privs = multicraft.setting_get("default_privs")`
			`if multicraft.setting_getbool("creative_mode") and multicraft.setting_get("default_privs_creative") then`
			`privs = multicraft.setting_get("default_privs_creative")`
New MainMenu, update WversionManager, Makefile change New MainMenu by 4aiman WVersionManager - 1.3 Makefile - rename output apk 2015-05-12 09:59:17 +02:00			`end`
core->multicraft 2015-07-05 14:23:28 +02:00			`multicraft.auth_table[name] = {`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`password = password,`
core->multicraft 2015-07-05 14:23:28 +02:00			`privileges = multicraft.string_to_privs(privs),`
Add last_login field to auth.txt Also shortens some related code and adds more parameters to string.split. 2014-10-09 00:11:44 +02:00			`last_login = os.time(),`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`}`
			`save_auth_file()`
			`end,`
			`set_password = function(name, password)`
			`assert(type(name) == "string")`
			`assert(type(password) == "string")`
core->multicraft 2015-07-05 14:23:28 +02:00			`if not multicraft.auth_table[name] then`
			`multicraft.builtin_auth_handler.create_auth(name, password)`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`else`
core->multicraft 2015-07-05 14:23:28 +02:00			`multicraft.log('info', "Built-in authentication handler setting password of player '"..name.."'")`
			`multicraft.auth_table[name].password = password`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`save_auth_file()`
			`end`
			`return true`
			`end,`
			`set_privileges = function(name, privileges)`
			`assert(type(name) == "string")`
			`assert(type(privileges) == "table")`
core->multicraft 2015-07-05 14:23:28 +02:00			`if not multicraft.auth_table[name] then`
			`multicraft.builtin_auth_handler.create_auth(name,`
			`multicraft.get_password_hash(name,`
			`multicraft.setting_get("default_password")))`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`end`
core->multicraft 2015-07-05 14:23:28 +02:00			`multicraft.auth_table[name].privileges = privileges`
			`multicraft.notify_authentication_modified(name)`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`save_auth_file()`
			`end,`
			`reload = function()`
			`read_auth_file()`
			`return true`
			`end,`
Add last_login field to auth.txt Also shortens some related code and adds more parameters to string.split. 2014-10-09 00:11:44 +02:00			`record_login = function(name)`
			`assert(type(name) == "string")`
core->multicraft 2015-07-05 14:23:28 +02:00			`assert(multicraft.auth_table[name]).last_login = os.time()`
Add last_login field to auth.txt Also shortens some related code and adds more parameters to string.split. 2014-10-09 00:11:44 +02:00			`save_auth_file()`
			`end,`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`}`

core->multicraft 2015-07-05 14:23:28 +02:00			`function multicraft.register_authentication_handler(handler)`
			`if multicraft.registered_auth_handler then`
			`error("Add-on authentication handler already registered by "..multicraft.registered_auth_handler_modname)`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`end`
core->multicraft 2015-07-05 14:23:28 +02:00			`multicraft.registered_auth_handler = handler`
			`multicraft.registered_auth_handler_modname = multicraft.get_current_modname()`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`end`

core->multicraft 2015-07-05 14:23:28 +02:00			`function multicraft.get_auth_handler()`
			`return multicraft.registered_auth_handler or multicraft.builtin_auth_handler`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`end`

Add last_login field to auth.txt Also shortens some related code and adds more parameters to string.split. 2014-10-09 00:11:44 +02:00			`local function auth_pass(name)`
			`return function(...)`
core->multicraft 2015-07-05 14:23:28 +02:00			`local auth_handler = multicraft.get_auth_handler()`
Add last_login field to auth.txt Also shortens some related code and adds more parameters to string.split. 2014-10-09 00:11:44 +02:00			`if auth_handler[name] then`
			`return auth_handler[name](...)`
			`end`
			`return false`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00			`end`
			`end`

core->multicraft 2015-07-05 14:23:28 +02:00			`multicraft.set_player_password = auth_pass("set_password")`
			`multicraft.set_player_privs = auth_pass("set_privileges")`
			`multicraft.auth_reload = auth_pass("reload")`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00

Add last_login field to auth.txt Also shortens some related code and adds more parameters to string.split. 2014-10-09 00:11:44 +02:00			`local record_login = auth_pass("record_login")`

core->multicraft 2015-07-05 14:23:28 +02:00			`multicraft.register_on_joinplayer(function(player)`
Add last_login field to auth.txt Also shortens some related code and adds more parameters to string.split. 2014-10-09 00:11:44 +02:00			`record_login(player:get_player_name())`
			`end)`
Split builtin.lua to multiple files 2012-04-01 11:37:41 +02:00