func ResetMumblePassword(w http.ResponseWriter, r *http.Request) {
token, err := chelpers.GetToken(r)
if err != nil {
http.Error(w, "You aren't logged in.", http.StatusForbidden)
return
}
player := chelpers.GetPlayer(token)
player.MumbleAuthkey = player.GenAuthKey()
player.Save()
newToken := chelpers.NewToken(player)
cookie := &http.Cookie{
Name: "auth-jwt",
Value: newToken,
Path: "/",
Domain: config.Constants.CookieDomain,
Expires: time.Now().Add(30 * 24 * time.Hour),
}
http.SetCookie(w, cookie)
referer, ok := r.Header["Referer"]
if ok {
http.Redirect(w, r, referer[0], 303)
return
}
http.Redirect(w, r, config.Constants.LoginRedirectPath, 303)
}
func SteamMockLoginHandler(w http.ResponseWriter, r *http.Request) {
if !config.Constants.MockupAuth {
http.NotFound(w, r)
return
}
steamid := r.URL.Query().Get("steamid")
if steamid == "" {
http.Error(w, "No SteamID given", http.StatusBadRequest)
return
}
p, err := player.GetPlayerBySteamID(steamid)
if err != nil {
p, err = player.NewPlayer(steamid)
if err != nil {
logrus.Error(err)
http.Error(w, "Internal Server Error", http.StatusInternalServerError)
return
}
database.DB.Create(p)
}
err = p.UpdatePlayerInfo()
if err != nil {
logrus.Error(err)
}
key := controllerhelpers.NewToken(p)
cookie := &http.Cookie{
Name: "auth-jwt",
Value: key,
Path: "/",
Domain: config.Constants.CookieDomain,
Expires: time.Now().Add(30 * 24 * time.Hour),
//Secure: true,
}
http.SetCookie(w, cookie)
http.Redirect(w, r, config.Constants.LoginRedirectPath, 303)
}
func SteamLoginCallbackHandler(w http.ResponseWriter, r *http.Request) {
refererURL := r.URL.Query().Get("referer")
publicURL, _ := url.Parse(config.Constants.PublicAddress)
// this wouldnt be used anymore, so modify it directly
r.URL.Scheme = publicURL.Scheme
r.URL.Host = publicURL.Host
idURL, err := openid.Verify(r.URL.String(), discoveryCache, nonceStore)
if err != nil {
logrus.Error("Error verifying openid", err)
http.Error(w, err.Error(), 500)
return
}
parts := reSteamID.FindStringSubmatch(idURL)
logrus.Info("Steam auth callback: ", idURL)
if len(parts) != 2 {
logrus.Errorf("Steam Authentication failed. Response: %s", idURL)
http.Error(w, "Steam Authentication failed, please try again.", 500)
return
}
steamid := parts[1]
if config.Constants.SteamIDWhitelist != "" &&
!controllerhelpers.IsSteamIDWhitelisted(steamid) {
//Use a more user-friendly message later
logrus.Errorf("User %s not in whitelist", steamid)
http.Error(w, "Sorry, you're not in the closed alpha.", 403)
return
}
p, err := player.GetPlayerBySteamID(steamid)
if err != nil {
p, err = player.NewPlayer(steamid)
if err != nil {
logrus.Error(err)
http.Error(w, "Internal Server Error", http.StatusInternalServerError)
return
}
database.DB.Create(p)
}
go func() {
if time.Since(p.ProfileUpdatedAt) >= 1*time.Hour {
err := p.UpdatePlayerInfo()
if err != nil {
logrus.Error(err)
}
}
}()
key := controllerhelpers.NewToken(p)
cookie := &http.Cookie{
Name: "auth-jwt",
Value: key,
Path: "/",
Domain: config.Constants.CookieDomain,
Expires: time.Now().Add(30 * 24 * time.Hour),
HttpOnly: true,
Secure: config.Constants.SecureCookies,
}
http.SetCookie(w, cookie)
if refererURL != "" {
http.Redirect(w, r, refererURL, 303)
return
}
http.Redirect(w, r, config.Constants.LoginRedirectPath, 303)
}