2026-03-28 04:48:18 -04:00
|
|
|
#include "stdafx.h"
|
|
|
|
|
#include "HandshakeManager.h"
|
|
|
|
|
#include "AuthModule.h"
|
2026-04-03 21:39:59 -04:00
|
|
|
#include "HttpClient.h"
|
|
|
|
|
#include "StringHelpers.h"
|
|
|
|
|
#include "Common/vendor/nlohmann/json.hpp"
|
2026-03-28 04:48:18 -04:00
|
|
|
|
|
|
|
|
static constexpr auto PROTOCOL_VERSION = L"1.0";
|
|
|
|
|
|
2026-04-03 21:39:59 -04:00
|
|
|
static wstring getField(const vector<pair<wstring, wstring>> &fields, const wchar_t *key)
|
|
|
|
|
{
|
|
|
|
|
for (const auto &[k, v] : fields)
|
|
|
|
|
if (k == key) return v;
|
|
|
|
|
return {};
|
|
|
|
|
}
|
|
|
|
|
|
2026-03-28 04:48:18 -04:00
|
|
|
HandshakeManager::HandshakeManager(bool isServer)
|
|
|
|
|
: isServer(isServer), state(HandshakeState::IDLE), activeModule(nullptr)
|
|
|
|
|
{
|
|
|
|
|
}
|
|
|
|
|
|
2026-04-04 20:49:05 -04:00
|
|
|
void HandshakeManager::registerModule(unique_ptr<AuthModule> module)
|
2026-03-28 04:48:18 -04:00
|
|
|
{
|
2026-04-04 20:49:05 -04:00
|
|
|
wstring name = module->schemeName();
|
|
|
|
|
modules[std::move(name)] = std::move(module);
|
2026-03-28 04:48:18 -04:00
|
|
|
}
|
|
|
|
|
|
2026-04-03 21:39:59 -04:00
|
|
|
void HandshakeManager::setCredentials(const wstring &token, const wstring &uid, const wstring &username, const wstring &variation)
|
|
|
|
|
{
|
|
|
|
|
accessToken = token;
|
|
|
|
|
clientUid = uid;
|
|
|
|
|
clientUsername = username;
|
|
|
|
|
preferredVariation = variation;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
vector<shared_ptr<AuthPacket>> HandshakeManager::drainPendingPackets()
|
|
|
|
|
{
|
2026-04-05 18:04:53 -04:00
|
|
|
auto out = std::move(pendingPackets);
|
|
|
|
|
pendingPackets.clear();
|
2026-04-03 21:39:59 -04:00
|
|
|
return out;
|
|
|
|
|
}
|
|
|
|
|
|
2026-03-28 04:48:18 -04:00
|
|
|
shared_ptr<AuthPacket> HandshakeManager::handlePacket(const shared_ptr<AuthPacket> &packet)
|
|
|
|
|
{
|
|
|
|
|
return isServer ? handleServer(packet) : handleClient(packet);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
shared_ptr<AuthPacket> HandshakeManager::createInitialPacket()
|
|
|
|
|
{
|
|
|
|
|
state = HandshakeState::VERSION_SENT;
|
2026-04-06 02:33:39 -04:00
|
|
|
wstring schemes;
|
|
|
|
|
for (const auto &[name, mod] : modules)
|
|
|
|
|
{
|
|
|
|
|
if (!schemes.empty()) schemes += L",";
|
|
|
|
|
schemes += name;
|
|
|
|
|
}
|
|
|
|
|
return makePacket(AuthStage::ANNOUNCE_VERSION, {
|
|
|
|
|
{L"version", PROTOCOL_VERSION},
|
|
|
|
|
{L"schemes", schemes}
|
|
|
|
|
});
|
2026-03-28 04:48:18 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
shared_ptr<AuthPacket> HandshakeManager::handleServer(const shared_ptr<AuthPacket> &packet)
|
|
|
|
|
{
|
|
|
|
|
switch (packet->stage)
|
|
|
|
|
{
|
|
|
|
|
case AuthStage::ANNOUNCE_VERSION:
|
|
|
|
|
{
|
2026-04-03 21:39:59 -04:00
|
|
|
protocolVersion = getField(packet->fields, L"version");
|
2026-03-28 04:48:18 -04:00
|
|
|
if (protocolVersion != PROTOCOL_VERSION)
|
|
|
|
|
return fail();
|
|
|
|
|
|
|
|
|
|
if (modules.empty())
|
|
|
|
|
return fail();
|
|
|
|
|
|
2026-04-06 02:33:39 -04:00
|
|
|
auto splitCsv = [](const wstring &s) {
|
|
|
|
|
vector<wstring> out;
|
|
|
|
|
for (size_t p = 0; p < s.size(); ) {
|
|
|
|
|
size_t c = s.find(L',', p);
|
|
|
|
|
if (c == wstring::npos) c = s.size();
|
|
|
|
|
out.push_back(s.substr(p, c - p));
|
|
|
|
|
p = c + 1;
|
|
|
|
|
}
|
|
|
|
|
return out;
|
|
|
|
|
};
|
|
|
|
|
auto supported = splitCsv(getField(packet->fields, L"schemes"));
|
|
|
|
|
|
|
|
|
|
activeModule = nullptr;
|
|
|
|
|
for (auto &[name, mod] : modules)
|
|
|
|
|
{
|
|
|
|
|
if (supported.empty() || std::find(supported.begin(), supported.end(), name) != supported.end())
|
|
|
|
|
{
|
|
|
|
|
activeModule = mod.get();
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (!activeModule)
|
|
|
|
|
return fail();
|
2026-03-28 04:48:18 -04:00
|
|
|
state = HandshakeState::SCHEME_DECLARED;
|
|
|
|
|
return makePacket(AuthStage::DECLARE_SCHEME, {
|
|
|
|
|
{L"version", PROTOCOL_VERSION},
|
|
|
|
|
{L"scheme", activeModule->schemeName()}
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case AuthStage::ACCEPT_SCHEME:
|
|
|
|
|
{
|
2026-04-03 21:39:59 -04:00
|
|
|
activeVariation = getField(packet->fields, L"variation");
|
2026-03-28 04:48:18 -04:00
|
|
|
state = HandshakeState::SETTINGS_SENT;
|
|
|
|
|
auto settings = activeModule->getSettings(activeVariation);
|
|
|
|
|
return makePacket(AuthStage::SCHEME_SETTINGS, std::move(settings));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case AuthStage::BEGIN_AUTH:
|
|
|
|
|
{
|
|
|
|
|
state = HandshakeState::AUTH_IN_PROGRESS;
|
|
|
|
|
return nullptr;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case AuthStage::AUTH_DATA:
|
|
|
|
|
{
|
|
|
|
|
wstring uid, username;
|
|
|
|
|
if (!activeModule->onAuthData(packet->fields, uid, username))
|
|
|
|
|
return fail();
|
2026-04-03 04:28:52 -04:00
|
|
|
finalUid = uid;
|
|
|
|
|
finalUsername = username;
|
2026-03-28 04:48:18 -04:00
|
|
|
state = HandshakeState::AUTH_DATA_EXCHANGED;
|
|
|
|
|
return nullptr;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case AuthStage::AUTH_DONE:
|
|
|
|
|
{
|
2026-04-03 21:39:59 -04:00
|
|
|
if (getField(packet->fields, L"uid") != finalUid || getField(packet->fields, L"username") != finalUsername)
|
2026-03-28 04:48:18 -04:00
|
|
|
return fail();
|
|
|
|
|
|
|
|
|
|
state = HandshakeState::IDENTITY_ASSIGNED;
|
|
|
|
|
return makePacket(AuthStage::ASSIGN_IDENTITY, {
|
|
|
|
|
{L"uid", finalUid},
|
|
|
|
|
{L"username", finalUsername}
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case AuthStage::CONFIRM_IDENTITY:
|
|
|
|
|
{
|
2026-04-03 21:39:59 -04:00
|
|
|
if (getField(packet->fields, L"uid") != finalUid || getField(packet->fields, L"username") != finalUsername)
|
2026-03-28 04:48:18 -04:00
|
|
|
return fail();
|
|
|
|
|
|
|
|
|
|
state = HandshakeState::COMPLETE;
|
|
|
|
|
return makePacket(AuthStage::AUTH_SUCCESS);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
default:
|
|
|
|
|
return fail();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
shared_ptr<AuthPacket> HandshakeManager::handleClient(const shared_ptr<AuthPacket> &packet)
|
|
|
|
|
{
|
|
|
|
|
switch (packet->stage)
|
|
|
|
|
{
|
|
|
|
|
case AuthStage::DECLARE_SCHEME:
|
|
|
|
|
{
|
2026-04-03 21:39:59 -04:00
|
|
|
protocolVersion = getField(packet->fields, L"version");
|
|
|
|
|
wstring scheme = getField(packet->fields, L"scheme");
|
2026-03-28 04:48:18 -04:00
|
|
|
|
2026-04-06 02:33:39 -04:00
|
|
|
app.DebugPrintf("AUTH CLIENT: DECLARE_SCHEME scheme=%ls\n", scheme.c_str());
|
|
|
|
|
|
2026-03-28 04:48:18 -04:00
|
|
|
if (protocolVersion != PROTOCOL_VERSION)
|
|
|
|
|
return fail();
|
|
|
|
|
|
|
|
|
|
auto it = modules.find(scheme);
|
|
|
|
|
if (it == modules.end())
|
|
|
|
|
return fail();
|
|
|
|
|
|
2026-04-04 20:49:05 -04:00
|
|
|
activeModule = it->second.get();
|
2026-03-28 04:48:18 -04:00
|
|
|
|
|
|
|
|
auto variations = activeModule->supportedVariations();
|
2026-04-03 21:39:59 -04:00
|
|
|
if (!preferredVariation.empty() &&
|
|
|
|
|
std::find(variations.begin(), variations.end(), preferredVariation) != variations.end())
|
|
|
|
|
activeVariation = preferredVariation;
|
|
|
|
|
else
|
|
|
|
|
activeVariation = variations.empty() ? L"" : variations[0];
|
2026-03-28 04:48:18 -04:00
|
|
|
|
2026-04-06 02:33:39 -04:00
|
|
|
app.DebugPrintf("AUTH CLIENT: accepting variation=%ls\n", activeVariation.c_str());
|
2026-03-28 04:48:18 -04:00
|
|
|
state = HandshakeState::SCHEME_ACCEPTED;
|
|
|
|
|
return makePacket(AuthStage::ACCEPT_SCHEME, {{L"variation", activeVariation}});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case AuthStage::SCHEME_SETTINGS:
|
|
|
|
|
{
|
2026-04-06 02:33:39 -04:00
|
|
|
if (!activeModule)
|
|
|
|
|
return fail();
|
2026-04-03 21:39:59 -04:00
|
|
|
wstring serverId = getField(packet->fields, L"serverId");
|
2026-04-06 02:33:39 -04:00
|
|
|
wstring joinUrlW = getField(packet->fields, L"joinUrl");
|
2026-04-03 21:39:59 -04:00
|
|
|
wstring scheme(activeModule->schemeName());
|
2026-04-06 02:33:39 -04:00
|
|
|
|
|
|
|
|
app.DebugPrintf("AUTH CLIENT: SCHEME_SETTINGS joinUrl=%ls serverId=%ls\n", joinUrlW.c_str(), serverId.c_str());
|
|
|
|
|
|
|
|
|
|
if (scheme == L"mcconsoles:session" && !accessToken.empty() && !joinUrlW.empty())
|
2026-04-03 21:39:59 -04:00
|
|
|
{
|
|
|
|
|
nlohmann::json body = {
|
|
|
|
|
{"accessToken", narrowStr(accessToken)},
|
|
|
|
|
{"selectedProfile", narrowStr(clientUid)},
|
|
|
|
|
{"serverId", narrowStr(serverId)}
|
|
|
|
|
};
|
2026-04-06 02:33:39 -04:00
|
|
|
string joinUrl = narrowStr(joinUrlW);
|
|
|
|
|
app.DebugPrintf("AUTH CLIENT: POSTing join to %s\n", joinUrl.c_str());
|
|
|
|
|
HttpResponse resp;
|
|
|
|
|
try {
|
|
|
|
|
resp = HttpClient::post(joinUrl, body.dump());
|
|
|
|
|
} catch (...) {
|
|
|
|
|
app.DebugPrintf("AUTH CLIENT: join POST threw exception\n");
|
|
|
|
|
return fail();
|
|
|
|
|
}
|
|
|
|
|
app.DebugPrintf("AUTH CLIENT: join POST status=%d\n", resp.statusCode);
|
|
|
|
|
if (resp.statusCode < 200 || resp.statusCode >= 300)
|
2026-04-03 21:39:59 -04:00
|
|
|
return fail();
|
|
|
|
|
}
|
|
|
|
|
|
2026-03-28 04:48:18 -04:00
|
|
|
state = HandshakeState::AUTH_IN_PROGRESS;
|
2026-04-03 21:39:59 -04:00
|
|
|
pendingPackets.push_back(makePacket(AuthStage::BEGIN_AUTH));
|
|
|
|
|
pendingPackets.push_back(makePacket(AuthStage::AUTH_DATA, {
|
|
|
|
|
{L"uid", clientUid},
|
|
|
|
|
{L"username", clientUsername}
|
|
|
|
|
}));
|
|
|
|
|
pendingPackets.push_back(makePacket(AuthStage::AUTH_DONE, {
|
|
|
|
|
{L"uid", clientUid},
|
|
|
|
|
{L"username", clientUsername}
|
|
|
|
|
}));
|
|
|
|
|
return nullptr;
|
2026-03-28 04:48:18 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case AuthStage::ASSIGN_IDENTITY:
|
|
|
|
|
{
|
2026-04-03 21:39:59 -04:00
|
|
|
finalUid = getField(packet->fields, L"uid");
|
|
|
|
|
finalUsername = getField(packet->fields, L"username");
|
2026-03-28 04:48:18 -04:00
|
|
|
|
|
|
|
|
state = HandshakeState::IDENTITY_CONFIRMED;
|
|
|
|
|
return makePacket(AuthStage::CONFIRM_IDENTITY, {
|
|
|
|
|
{L"uid", finalUid},
|
|
|
|
|
{L"username", finalUsername}
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case AuthStage::AUTH_SUCCESS:
|
|
|
|
|
{
|
|
|
|
|
state = HandshakeState::COMPLETE;
|
|
|
|
|
return nullptr;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
case AuthStage::AUTH_FAILURE:
|
|
|
|
|
{
|
|
|
|
|
state = HandshakeState::FAILED;
|
|
|
|
|
return nullptr;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
default:
|
|
|
|
|
return fail();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
shared_ptr<AuthPacket> HandshakeManager::makePacket(AuthStage stage, vector<pair<wstring, wstring>> fields)
|
|
|
|
|
{
|
|
|
|
|
return std::make_shared<AuthPacket>(stage, std::move(fields));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
shared_ptr<AuthPacket> HandshakeManager::fail()
|
|
|
|
|
{
|
|
|
|
|
state = HandshakeState::FAILED;
|
|
|
|
|
return makePacket(AuthStage::AUTH_FAILURE);
|
|
|
|
|
}
|
