+ log files

+ more control on auth providers + server info in motd + bans and parsing minecraft server blacklist + more error handling + panic hook to tracing
2025-12-06 13:01:12 +03:00 · 2024-08-15 14:10:39 +03:00 · 2024-08-15 14:10:39 +03:00 · d45a495cbf
commit d45a495cbf
parent bd101fc3fa
21 changed files with 748 additions and 378 deletions
--- a/src/auth/auth.rs
+++ b/src/auth/auth.rs
@ -1,20 +1,32 @@
-use std::sync::Arc;
+use std::{sync::Arc, time::Duration};

 use anyhow::anyhow;
 use axum::{
-    async_trait, extract::{FromRequestParts, State}, http::{request::Parts, StatusCode}, response::{IntoResponse, Response}
+    async_trait, extract::{FromRequestParts, State}, http::{request::Parts, StatusCode}
 };
 use dashmap::DashMap;
-use tracing::{debug, trace};
+use tracing::{debug, error, trace};
 use uuid::Uuid;

-use crate::AppState;
+use crate::{ApiError, ApiResult, AppState};

 use super::types::*;

+const TIMEOUT: Duration = Duration::from_secs(5);
+
 // It's an extractor that pulls a token from the Header.
 #[derive(PartialEq, Debug)]
-pub struct Token(pub Option<String>);
+pub struct Token(pub String);
+
+impl Token {
+    pub async fn check_auth(self, state: &AppState) -> ApiResult<()> {
+        if state.user_manager.is_authenticated(&self.0) {
+            Ok(())
+        } else {
+            Err(ApiError::Unauthorized)
+        }
+    }
+}

 #[async_trait]
 impl<S> FromRequestParts<S> for Token
@ -30,8 +42,8 @@ where
            .and_then(|value| value.to_str().ok());
        trace!(token = ?token);
        match token {
-            Some(token) => Ok(Self(Some(token.to_string()))),
-            None => Ok(Self(None)),
+            Some(token) => Ok(Self(token.to_string())),
+            None => Err(StatusCode::UNAUTHORIZED),
        }
    }
 }
@ -46,53 +58,89 @@ fn get_id_json(json: &serde_json::Value) -> anyhow::Result<Uuid> {
    Ok(uuid)
 }

-#[inline]
 async fn fetch_json(
-    auth_system: AuthSystem,
+    auth_provider: &AuthProvider,
    server_id: &str,
    username: &str,
-) -> anyhow::Result<Option<(Uuid, AuthSystem)>> {
-    let client = reqwest::Client::new();
-    let url = auth_system.get_url();
+) -> anyhow::Result<anyhow::Result<(Uuid, AuthProvider)>> {
+    let client = reqwest::Client::builder().timeout(TIMEOUT).build().unwrap();
+    let url = auth_provider.url.clone();

    let res = client
        .get(url)
        .query(&[("serverId", server_id), ("username", username)])
        .send()
        .await?;
-    debug!("{res:?}");
+    trace!("{res:?}");
    match res.status().as_u16() {
        200 => {
            let json = serde_json::from_str::<serde_json::Value>(&res.text().await?)?;
            let uuid = get_id_json(&json)?;
-            Ok(Some((uuid, auth_system)))
+            Ok(Ok((uuid, auth_provider.clone())))
        }
-        401 => Ok(None), // Ely.By None
-        204 => Ok(None), // Mojang None
-        _ => Err(anyhow!("Unknown code: {}", res.status().as_u16())),
+        _ => Ok(Err(anyhow!("notOK: {} data: {:?}", res.status().as_u16(), res.text().await))),
    }
 }

 pub async fn has_joined(
+    AuthProviders(authproviders): AuthProviders,
    server_id: &str,
    username: &str,
-) -> anyhow::Result<Option<(Uuid, AuthSystem)>> {
-    let (elyby, mojang) = (
-        fetch_json(AuthSystem::ElyBy,server_id, username).await?,
-        fetch_json(AuthSystem::Mojang, server_id, username).await?
-    );
+) -> anyhow::Result<Option<(Uuid, AuthProvider)>> {
+    let (tx, mut rx) = tokio::sync::mpsc::channel(1);

-    if elyby.is_none() && mojang.is_none() {
-        Ok(None)
-    } else if mojang.is_some() {
-        Ok(mojang)
-    } else if elyby.is_some() {
-        Ok(elyby)
+    for provider in &authproviders {
+        tokio::spawn(fetch_and_send(
+            provider.clone(),
+            server_id.to_string(),
+            username.to_string(),
+            tx.clone()
+        ));
+    } 
+    let mut errors = Vec::new(); // Counting fetches what returns errors
+    let mut misses = Vec::new(); // Counting non OK results
+    let mut prov_count: usize = authproviders.len();
+    while prov_count > 0 {
+        if let Some(fetch_res) = rx.recv().await {
+            if let Ok(user_res) = fetch_res {
+                if let Ok(data) = user_res {
+                    return Ok(Some(data))
+                } else {
+                    misses.push(user_res.unwrap_err());
+                }
+            } else {
+                errors.push(fetch_res.unwrap_err());
+            }
+        } else {
+            error!("Unexpected behavior!");
+            return Err(anyhow!("Something went wrong..."))
+        }
+        prov_count -= 1;
+    }
+
+    // Choosing what error return
+
+    // Returns if some internals errors occured
+    if errors.len() != 0 {
+        error!("Something wrong with your authentification providers!\nMisses: {misses:?}\nErrors: {errors:?}");
+        Err(anyhow::anyhow!("{:?}", errors))
+        
    } else {
-        panic!("Impossible error!")
+        // Returning if user can't be authenticated
+        debug!("Misses: {misses:?}");
+        Ok(None)
    }
 }
-// End of work with external APIs
+
+async fn fetch_and_send(
+    provider: AuthProvider,
+    server_id: String,
+    username: String,
+    tx: tokio::sync::mpsc::Sender<anyhow::Result<anyhow::Result<(Uuid, AuthProvider)>>>
+) {
+    let _ = tx.send(fetch_json(&provider, &server_id, &username).await)
+        .await.map_err( |err| trace!("fetch_and_send error [note: ok res returned and mpsc clossed]: {err:?}"));
+}

 // User manager
 #[derive(Debug, Clone)]
@ -100,7 +148,7 @@ pub struct UManager {
    /// Users with incomplete authentication
    pending: Arc<DashMap<String, String>>, // <SHA1 serverId, USERNAME> TODO: Add automatic purge
    /// Authenticated users TODO: Change name to sessions
-    authenticated: Arc<DashMap<String, Uuid>>, // <SHA1 serverId, Userinfo> NOTE: In the future, try it in a separate LockRw branch
+    authenticated: Arc<DashMap<String, Uuid>>, // <SHA1 serverId, Userinfo>
    /// Registered users
    registered: Arc<DashMap<Uuid, Userinfo>>,
 }
@ -116,15 +164,24 @@ impl UManager {
    pub fn pending_insert(&self, server_id: String, username: String) {
        self.pending.insert(server_id, username);
    }
-    pub fn pending_remove(&self, server_id: &str) -> std::option::Option<(std::string::String, std::string::String)> {
+    pub fn pending_remove(&self, server_id: &str) -> Option<(String, String)> {
        self.pending.remove(server_id)
    }
-    pub fn insert(&self, uuid: Uuid, token: String, userinfo: Userinfo) -> Option<Userinfo> {
+    pub fn insert(&self, uuid: Uuid, token: String, userinfo: Userinfo) {
        self.authenticated.insert(token, uuid);
-        self.registered.insert(uuid, userinfo)
+        self.insert_user(uuid, userinfo);
    }
-    pub fn insert_user(&self, uuid: Uuid, userinfo: Userinfo) -> Option<Userinfo> {
-        self.registered.insert(uuid, userinfo)
+    pub fn insert_user(&self, uuid: Uuid, userinfo: Userinfo) {
+        // self.registered.insert(uuid, userinfo)
+        let usercopy = userinfo.clone();
+        self.registered.entry(uuid.clone())
+            .and_modify(|exist| {
+                if !userinfo.username.is_empty() { exist.username = userinfo.username };
+                if !userinfo.auth_provider.is_empty() { exist.auth_provider = userinfo.auth_provider };
+                if userinfo.rank != Userinfo::default().rank { exist.rank = userinfo.rank };
+                if userinfo.token.is_some() { exist.token = userinfo.token };
+                if userinfo.version != Userinfo::default().version { exist.version = userinfo.version };
+            }).or_insert(usercopy);
    }
    pub fn get(
        &self,
@ -139,32 +196,46 @@ impl UManager {
    ) -> Option<dashmap::mapref::one::Ref<'_, Uuid, Userinfo>> {
        self.registered.get(uuid)
    }
+    pub fn ban(&self, banned_user: &Userinfo) {
+        self.registered.entry(banned_user.uuid)
+            .and_modify(|exist| {
+                exist.banned = true;
+            }).or_insert(banned_user.clone());
+    }
+    pub fn unban(&self, uuid: &Uuid) {
+        if let Some(mut user) = self.registered.get_mut(uuid) {
+            user.banned = false;
+        };
+    }
    pub fn is_authenticated(&self, token: &String) -> bool {
        self.authenticated.contains_key(token)
    }
    pub fn _is_registered(&self, uuid: &Uuid) -> bool {
        self.registered.contains_key(uuid)
    }
+    pub fn is_banned(&self, uuid: &Uuid) -> bool {
+        if let Some(user) = self.registered.get(uuid) { user.banned } else { false }
+    }
+    pub fn count_authenticated(&self) -> usize {
+        self.authenticated.len()
+    }
    pub fn remove(&self, uuid: &Uuid) {
-        let token = self.registered.remove(uuid).unwrap().1.token.unwrap();
+        let token = self.registered.get(uuid).unwrap().token.clone().unwrap();
        self.authenticated.remove(&token);
    }
 }
 // End of User manager

 pub async fn check_auth(
-    Token(token): Token,
+    token: Option<Token>,
    State(state): State<AppState>,
-) -> Response {
+) -> ApiResult<&'static str> {

    match token {
        Some(token) => {
-            if state.user_manager.is_authenticated(&token) {
-                (StatusCode::OK, "ok".to_string()).into_response()
-            } else {
-                (StatusCode::UNAUTHORIZED, "unauthorized".to_string()).into_response()
-            }
+            token.check_auth(&state).await?;
+            Ok("ok")
        },
-        None => (StatusCode::BAD_REQUEST, "bad request".to_string()).into_response(),
+        None => Err(ApiError::BadRequest), 
    }
 }
--- a/src/auth/types.rs
+++ b/src/auth/types.rs
@ -1,56 +1,71 @@
-use std::str::FromStr;
-
+use chrono::Utc;
 use serde::Deserialize;
 use uuid::Uuid;
-use anyhow::anyhow;

 #[derive(Debug, Clone, Deserialize)]
 #[serde(rename_all = "camelCase")]
 pub struct Userinfo {
-    pub username: String,
    pub uuid: Uuid,
-    pub auth_system: AuthSystem,
+    pub username: String,
+    pub rank: String,
+    pub last_used: String,
+    pub auth_provider: AuthProvider,
    pub token: Option<String>,
+    pub version: String,
+    pub banned: bool
+    
+}
+
+impl Default for Userinfo {
+    fn default() -> Self {
+        Self {
+            uuid: Default::default(),
+            username: Default::default(),
+            rank: "default".to_string(),
+            last_used: Utc::now().to_rfc3339_opts(chrono::SecondsFormat::Millis, true),
+            auth_provider: Default::default(),
+            token: Default::default(),
+            version: "0.1.4+1.20.1".to_string(),
+            banned: false
+        }
+    }
+}
+
+// new part
+
+#[derive(Debug, Clone, PartialEq, Deserialize)]
+#[serde(rename_all = "camelCase")]
+pub struct AuthProvider {
+    pub name: String,
+    pub url: String,
+}
+
+impl Default for AuthProvider {
+    fn default() -> Self {
+        Self {
+            name: "Unknown".to_string(),
+            url: Default::default()
+        }
+    }
+}
+
+impl AuthProvider {
+    pub fn is_empty(&self) -> bool {
+        if self.name == "Unknown".to_string() {
+            true
+        } else {
+            false
+        }
+    }
 }

 #[derive(Debug, Clone, PartialEq, Deserialize)]
-#[serde(rename_all = "lowercase")]
-pub enum AuthSystem {
-    Internal,
-    ElyBy,
-    Mojang,
-}
-
-impl ToString for AuthSystem {
-    fn to_string(&self) -> String {
-        match self {
-            AuthSystem::Internal => String::from("internal"),
-            AuthSystem::ElyBy => String::from("elyby"),
-            AuthSystem::Mojang => String::from("mojang"),
-        }
-    }
-}
-
-impl FromStr for AuthSystem {
-    type Err = anyhow::Error;
-
-    fn from_str(s: &str) -> Result<Self, Self::Err> {
-        match s {
-            "internal" => Ok(Self::Internal),
-            "elyby" => Ok(Self::ElyBy),
-            "mojang" => Ok(Self::Mojang),
-            _ => Err(anyhow!("No auth system called: {s}"))
-        }
-    }
-}
-
-impl AuthSystem {
-    pub(super) fn get_url(&self) -> String {
-        match self {
-            AuthSystem::Internal => panic!("Can't get internal URL!"),
-            AuthSystem::ElyBy => String::from("http://minecraft.ely.by/session/hasJoined"),
-            AuthSystem::Mojang => String::from("https://sessionserver.mojang.com/session/minecraft/hasJoined"),
-        }
-    }
-}
+#[serde(rename_all = "camelCase")]
+pub struct AuthProviders(pub Vec<AuthProvider>);

+pub fn default_authproviders() -> AuthProviders {
+    AuthProviders(vec![
+        AuthProvider { name: "Mojang".to_string(), url: "https://sessionserver.mojang.com/session/minecraft/hasJoined".to_string() },
+        AuthProvider { name: "ElyBy".to_string(), url: "http://minecraft.ely.by/session/hasJoined".to_string() }
+        ])
+}