Inicio Explorar Axuda
Iniciar sesión
NativePlanet
/
goseg
2
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: acc1ede614
Ramas Etiquetas
goseg
/
ws
/
ws.go

ws.go 6.3 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239 
  1. package ws
    2. 

  2. 

  3. import (
    4. 

  4. 	"encoding/json"
    5. 

  5. 	"fmt"
    6. 

  6. 	"goseg/auth"
    7. 

  7. 	"goseg/broadcast"
    8. 

  8. 	"goseg/config"
    9. 

  9. 	"goseg/structs"
    10. 

  10. 	"net/http"
    11. 

  11. 	"time"
    12. 

  12. 

  13. 	"github.com/gorilla/websocket"
    14. 

  14. )
    15. 

  15. 

  16. var (
    17. 

  17. 	upgrader = websocket.Upgrader{
    18. 

  18. 		ReadBufferSize:  1024,
    19. 

  19. 		WriteBufferSize: 1024,
    20. 

  20. 		CheckOrigin: func(r *http.Request) bool {
    21. 

  21. 			return true // Allow all origins
    22. 

  22. 		},
    23. 

  23. 	}
    24. 

  24. )
    25. 

  25. 

  26. // func handleConnection(c *websocket.Conn) {
    27. 

  27. //     // Read the first message from the client which should be the token
    28. 

  28. //     messageType, p, err := c.ReadMessage()
    29. 

  29. //     if err != nil {
    30. 

  30. //         config.Logger.Error(fmt.Errorf("%v",err))
    31. 

  31. //         return
    32. 

  32. //     }
    33. 

  33. //     token := string(p)
    34. 

  34. //     // Verify the token
    35. 

  35. //     isValid, _, err := CheckToken(token, c, false)  // 'false' assumes it's not a setup
    36. 

  36. //     if !isValid || err != nil {
    37. 

  37. //         config.Logger.Info("Invalid token provided by client.")
    38. 

  38. //         c.Close()
    39. 

  39. //         return
    40. 

  40. //     }
    41. 

  41. 

  42. //     // rest of logic
    43. 

  43. // }
    44. 

  44. 

  45. // switch on ws event cases
    46. 

  46. func WsHandler(w http.ResponseWriter, r *http.Request) {
    47. 

  47. 	conf := config.Conf()
    48. 

  48. 	conn, err := upgrader.Upgrade(w, r, nil)
    49. 

  49. 	if err != nil {
    50. 

  50. 		config.Logger.Error(fmt.Sprintf("Couldn't upgrade websocket connection: %v", err))
    51. 

  51. 		return
    52. 

  52. 	}
    53. 

  53. 	// manage broadcasts and clients thru the broadcast package
    54. 

  54. 	// broadcast.RegisterClient(conn)
    55. 

  55. 	// defer broadcast.UnregisterClient(conn)
    56. 

  56. 	// keepalive for ws
    57. 

  57. 	conn.SetPongHandler(func(string) error {
    58. 

  58. 		conn.SetReadDeadline(time.Now().Add(60 * time.Second))
    59. 

  59. 		return nil
    60. 

  60. 	})
    61. 

  61. 	pingInterval := 15 * time.Second
    62. 

  62. 	go func() {
    63. 

  63. 		ticker := time.NewTicker(pingInterval)
    64. 

  64. 		defer ticker.Stop()
    65. 

  65. 		for {
    66. 

  66. 			select {
    67. 

  67. 			case <-ticker.C:
    68. 

  68. 				if err := conn.WriteMessage(websocket.PingMessage, nil); err != nil {
    69. 

  69. 					return
    70. 

  70. 				}
    71. 

  71. 			}
    72. 

  72. 		}
    73. 

  73. 	}()
    74. 

  74. 	for {
    75. 

  75. 		_, msg, err := conn.ReadMessage()
    76. 

  76. 		if err != nil {
    77. 

  77. 		}
    78. 

  78. 		var payload structs.WsPayload
    79. 

  79. 		// if it fails to marshal, assume that means no token
    80. 

  80. 		// "verify" action is implicit
    81. 

  81. 		if err := json.Unmarshal(msg, &payload); err != nil {
    82. 

  82. 			config.Logger.Info("New client")
    83. 

  83. 			// auth.CreateToken also adds to unauth map
    84. 

  84. 			newToken, err := auth.CreateToken(conn, r, false)
    85. 

  85. 			if err != nil {
    86. 

  86. 				config.Logger.Error("Unable to create token")
    87. 

  87. 			}
    88. 

  88. 			result := map[string]interface{}{
    89. 

  89. 				"type":     "activity",
    90. 

  90. 				"id":       payload.ID, // this is like the action id
    91. 

  91. 				"error":    "null",
    92. 

  92. 				"response": "ack",
    93. 

  93. 				"token":    newToken,
    94. 

  94. 			}
    95. 

  95. 			respJson, err := json.Marshal(result)
    96. 

  96. 			if err != nil {
    97. 

  97. 				errmsg := fmt.Sprintf("Error marshalling token: %v", err)
    98. 

  98. 				config.Logger.Error(errmsg)
    99. 

  99. 			}
    100. 

  100. 			if err := conn.WriteMessage(websocket.TextMessage, respJson); err != nil {
    101. 

  101. 				config.Logger.Error(fmt.Sprintf("Error writing response: %v", err))
    102. 

  102. 			}
    103. 

  103. 		}
    104. 

  104. 		payload.Payload = structs.WsLoginPayload{}
    105. 

  105. 		token := map[string]string{
    106. 

  106. 			"id":    payload.Token.ID,
    107. 

  107. 			"token": payload.Token.Token,
    108. 

  108. 		}
    109. 

  109. 		if auth.CheckToken(token, conn, r, conf.FirstBoot) {
    110. 

  110. 			switch payload.Type {
    111. 

  111. 			case "new_ship":
    112. 

  112. 				config.Logger.Info("New ship")
    113. 

  113. 			case "pier_upload":
    114. 

  114. 				config.Logger.Info("Pier upload")
    115. 

  115. 			case "password":
    116. 

  116. 				config.Logger.Info("Password")
    117. 

  117. 			case "system":
    118. 

  118. 				config.Logger.Info("System")
    119. 

  119. 			case "startram":
    120. 

  120. 				config.Logger.Info("StarTram")
    121. 

  121. 			case "urbit":
    122. 

  122. 				config.Logger.Info("Urbit")
    123. 

  123. 			case "support":
    124. 

  124. 				if err = supportHandler(msg, payload, r, conn); err != nil {
    125. 

  125. 					config.Logger.Error(fmt.Sprintf("%v", err))
    126. 

  126. 				}
    127. 

  127. 			case "broadcast":
    128. 

  128. 				if err := broadcast.BroadcastToClients(); err != nil {
    129. 

  129. 					errmsg := fmt.Sprintf("Unable to broadcast to peer(s): %v", err)
    130. 

  130. 					config.Logger.Error(errmsg)
    131. 

  131. 				}
    132. 

  132. 			default:
    133. 

  133. 				errmsg := fmt.Sprintf("Unknown request type: %s", payload.Type)
    134. 

  134. 				config.Logger.Warn(errmsg)
    135. 

  135. 			}
    136. 

  136. 		} else {
    137. 

  137. 			switch payload.Type {
    138. 

  138. 			case "login":
    139. 

  139. 				if err = loginHandler(conn, msg, payload); err != nil {
    140. 

  140. 					config.Logger.Error(fmt.Sprintf("%v", err))
    141. 

  141. 				}
    142. 

  142. 			case "setup":
    143. 

  143. 				config.Logger.Info("Setup")
    144. 

  144. 				// setup.Setup(payload)
    145. 

  145. 			default:
    146. 

  146. 				errmsg := fmt.Sprintf("Unknown request type: %s", payload.Type)
    147. 

  147. 				config.Logger.Warn(errmsg)
    148. 

  148. 			}
    149. 

  149. 		}
    150. 

  150. 		// default to unauth
    151. 

  151. 		if !auth.WsAuthCheck(conn) {
    152. 

  152. 			unauthHandler(conn, r)
    153. 

  153. 		}
    154. 

  154. 	}
    155. 

  155. }
    156. 

  156. 

  157. // validate password and add to auth session map
    158. 

  158. func loginHandler(conn *websocket.Conn, msg []byte, payload structs.WsPayload) error {
    159. 

  159. 	config.Logger.Info("Login")
    160. 

  160. 	payload.Payload = structs.WsLoginPayload{}
    161. 

  161. 	if err := json.Unmarshal(msg, &payload); err != nil {
    162. 

  162. 		return fmt.Errorf("Error unmarshalling message: %v", err)
    163. 

  163. 	}
    164. 

  164. 	loginPayload, ok := payload.Payload.(structs.WsLoginPayload)
    165. 

  165. 	if !ok {
    166. 

  166. 		return fmt.Errorf("Error casting to LoginPayload")
    167. 

  167. 	}
    168. 

  168. 	isAuthenticated := auth.AuthenticateLogin(loginPayload.Password)
    169. 

  169. 	if isAuthenticated {
    170. 

  170. 		token := map[string]string{
    171. 

  171. 			"id":    payload.Token.ID,
    172. 

  172. 			"token": payload.Token.Token,
    173. 

  173. 		}
    174. 

  174. 		if err := auth.AddToAuthMap(conn, token, true); err != nil {
    175. 

  175. 			return fmt.Errorf("Unable to process login: %v", err)
    176. 

  176. 		}
    177. 

  177. 	} else {
    178. 

  178. 		config.Logger.Info("Login failed")
    179. 

  179. 		return fmt.Errorf("Failed auth")
    180. 

  180. 	}
    181. 

  181. 	return nil
    182. 

  182. }
    183. 

  183. 

  184. 

  185. // broadcast the unauth payload
    186. 

  186. func unauthHandler(conn *websocket.Conn, r *http.Request) {
    187. 

  187. 	config.Logger.Info("Sending unauth broadcast")
    188. 

  188. 	blob := structs.UnauthBroadcast{
    189. 

  189.         Type:      "structure",
    190. 

  190.         AuthLevel: "unauthorized",
    191. 

  191.         Login: struct {
    192. 

  192.             Remainder int `json:"remainder"`
    193. 

  193.         }{
    194. 

  194.             Remainder: 0,
    195. 

  195.         },
    196. 

  196.     }
    197. 

  197. 	resp, err := json.Marshal(blob)
    198. 

  198. 	if err != nil {
    199. 

  199. 		config.Logger.Error(fmt.Sprintf("Error unmarshalling message: %v", err))
    200. 

  200. 		return
    201. 

  201. 	}
    202. 

  202. 	if err := conn.WriteMessage(websocket.TextMessage, resp); err != nil {
    203. 

  203. 		config.Logger.Error(fmt.Sprintf("Error writing response: %v", err))
    204. 

  204. 		return
    205. 

  205. 	}
    206. 

  206. }
    207. 

  207. 

  208. // client send:
    209. 

  209. // {
    210. 

  210. // 	"type": "verify",
    211. 

  211. // 	"id": "jsgeneratedid",
    212. 

  212. // 	"token<optional>": {
    213. 

  213. // 	  "id": "servergeneratedid",
    214. 

  214. // 	  "token": "encryptedtext"
    215. 

  215. // 	}
    216. 

  216. // }
    217. 

  217. 

  218. // 1. we decrypt the token
    219. 

  219. // 2. we modify token['authorized'] to true
    220. 

  220. // 3. remove it from 'unauthorized' in system.json
    221. 

  221. // 4. hash and add to 'authozired' in system.json
    222. 

  222. // 5. encrypt that, and send it back to the user
    223. 

  223. 

  224. // server respond:
    225. 

  225. // {
    226. 

  226. // 	"type": "activity",
    227. 

  227. // 	"response": "ack/nack",
    228. 

  228. // 	"error": "null/<some_error>",
    229. 

  229. // 	"id": "jsgeneratedid",
    230. 

  230. // 	"token": { (either new token or the token the user sent us)
    231. 

  231. // 	  "id": "relevant_token_id",
    232. 

  232. // 	  "token": "encrypted_text"
    233. 

  233. // 	}
    234. 

  234. // }
    235. 

  235. 

  236. func supportHandler(msg []byte, payload structs.WsPayload, r *http.Request, conn *websocket.Conn) error {
    237. 

  237. 	config.Logger.Info("Support")
    238. 

  238. 	return nil
    239. 

  239. }
    240.