* This may be broken.. it hasn't been tested, however I wanted to get the last database changes in before sdauge changes them significantly.

author: Teravus Ovares 2008-01-09 18:57:03 +0000
committer: Teravus Ovares 2008-01-09 18:57:03 +0000
commit: 49fe4eb3cdf4b5cb11e5fe0980bb7c3a3d47b6ea (patch)
tree: 37de8fc8d0f2507fd892b6f24ae6b5899a0f0bd7 /OpenSim/Framework/Communications/LoginService.cs
parent: default to OpenSim.Framework.Data.SQLite which is the new storage (diff)
download: opensim-SC_OLD-49fe4eb3cdf4b5cb11e5fe0980bb7c3a3d47b6ea.zip
opensim-SC_OLD-49fe4eb3cdf4b5cb11e5fe0980bb7c3a3d47b6ea.tar.gz
opensim-SC_OLD-49fe4eb3cdf4b5cb11e5fe0980bb7c3a3d47b6ea.tar.bz2
opensim-SC_OLD-49fe4eb3cdf4b5cb11e5fe0980bb7c3a3d47b6ea.tar.xz
1 files changed, 145 insertions, 4 deletions
diff --git a/OpenSim/Framework/Communications/LoginService.cs b/OpenSim/Framework/Communications/LoginService.cs
index 9cfac1c..f0a0a0b 100644
--- a/OpenSim/Framework/Communications/LoginService.cs
+++ b/OpenSim/Framework/Communications/LoginService.cs
@@ -29,6 +29,7 @@
 using System;
 using System.Collections;
 using System.Collections.Generic;
+using System.IO;
 using System.Threading;
 using libsecondlife;
 using libsecondlife.StructuredData;
@@ -79,7 +80,7 @@ namespace OpenSim.Framework.UserManagement
                Hashtable requestData = (Hashtable) request.Params[0];
                bool GoodXML = (requestData.Contains("first") && requestData.Contains("last") &&
-                                requestData.Contains("passwd"));
+                                (requestData.Contains("passwd") || requestData.Contains("web_login_key")));
                bool GoodLogin = false;
                UserProfileData userProfile;
@@ -89,7 +90,8 @@ namespace OpenSim.Framework.UserManagement
                {
                    string firstname = (string) requestData["first"];
                    string lastname = (string) requestData["last"];
-                    string passwd = (string) requestData["passwd"];
+                    
                    userProfile = GetTheUser(firstname, lastname);
                    if (userProfile == null)
@@ -100,8 +102,29 @@ namespace OpenSim.Framework.UserManagement
                        return logResponse.CreateLoginFailedResponse();
                    }
+                    if (requestData.Contains("passwd"))
+                    {
+                        string passwd = (string)requestData["passwd"];
+                        GoodLogin = AuthenticateUser(userProfile, passwd);
+                    }
+                    else if (requestData.Contains("web_login_key"))
+                    {
+                        LLUUID webloginkey = null;
+                        try
+                        {
+                            webloginkey = new LLUUID((string)requestData["web_login_key"]);
+                        }
+                        catch (System.Exception)
+                        {
+                            return logResponse.CreateFailedResponse();
+                        }
+                        GoodLogin = AuthenticateUser(userProfile, webloginkey);
-                    GoodLogin = AuthenticateUser(userProfile, passwd);
+                    }
+                    else
+                    {
+                        return logResponse.CreateFailedResponse();
+                    }
                }
                else
                {
@@ -334,6 +357,105 @@ namespace OpenSim.Framework.UserManagement
        {
        }
+        public Hashtable ProcessHTMLLogin(Hashtable keysvals)
+        {
+            Hashtable returnactions = new Hashtable();
+            int statuscode = 200;
+            returnactions["int_response_code"] = statuscode;
+            returnactions["str_response_string"] = GetDefaultLoginForm();
+            if (keysvals.ContainsKey("show_login_form"))
+            {
+                if ((string)keysvals["show_login_form"] == "TRUE")
+                {
+                }
+                else
+                {
+                }
+            }
+            return returnactions;
+             
+        }
+        public string GetLoginForm()
+        {
+            string file = Path.Combine(Util.configDir(), "http_loginform.html");
+            if (!File.Exists(file))
+                return GetDefaultLoginForm();
+            StreamReader sr = File.OpenText(file);
+            string result = sr.ReadToEnd();
+            sr.Close();
+            return result;
+        }
+        public string GetDefaultLoginForm()
+        {
+            string responseString =
+           "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">";
+                responseString = responseString + "<html xmlns=\"http://www.w3.org/1999/xhtml\">";
+                responseString = responseString + "<head>";
+                responseString = responseString +
+                                 "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />";
+                responseString = responseString + "<meta http-equiv=\"cache-control\" content=\"no-cache\">";
+                responseString = responseString + "<meta http-equiv=\"Pragma\" content=\"no-cache\">";
+                responseString = responseString + "<title>Second Life Login</title>";
+                responseString = responseString + "<body>";
+                responseString = responseString + "<div id=\"login_box\">";
+                
+                responseString = responseString + "<form action=\"/\" method=\"GET\" id=\"login-form\">";
+                responseString = responseString + "<div id=\"message\">[$errors]</div>";
+                responseString = responseString + "<fieldset id=\"firstname\">";
+                responseString = responseString + "<legend>First Name:</legend>";
+                responseString = responseString + "<input type=\"text\" id=\"firstname_input\" size=\"15\" maxlength=\"100\" name=\"username\" value=\"[$firstname]\" />";
+                responseString = responseString + "</fieldset>";
+                responseString = responseString + "<fieldset id=\"lastname\">";
+                responseString = responseString + "<legend>Last Name:</legend>";
+                responseString = responseString + "<input type=\"text\" size=\"15\" maxlength=\"100\" name=\"lastname\" value=\"[$lastname]\" />";
+                responseString = responseString + "</fieldset>";
+                responseString = responseString + "<fieldset id=\"password\">";
+                responseString = responseString + "<legend>Password:</legend>";
+                responseString = responseString + "<table cellspacing=\"0\" cellpadding=\"0\" border=\"0\">";
+                responseString = responseString + "<tr>";
+                responseString = responseString + "<td colspan=\"2\"><input type=\"password\" size=\"15\" maxlength=\"100\" name=\"password\" value=\"[$password]\" /></td>";
+                responseString = responseString + "</tr>";
+                responseString = responseString + "<tr>";
+                responseString = responseString + "<td valign=\"middle\"><input type=\"checkbox\" name=\"remember_password\" id=\"remember_password\" [$remember_password] style=\"margin-left:0px;\"/></td>";
+                responseString = responseString + "<td><label for=\"remember_password\">Remember password</label></td>";
+                responseString = responseString + "</tr>";
+                responseString = responseString + "</table>";
+                responseString = responseString + "</fieldset>";
+                responseString = responseString + "<input type=\"hidden\" name=\"show_login_form\" value=\"FALSE\" />";
+                responseString = responseString + "<input type=\"hidden\" name=\"method\" value=\"login\" />";
+                responseString = responseString + "<input type=\"hidden\" id=\"grid\" name=\"grid\" value=\"[$grid]\" />";
+                responseString = responseString + "<div id=\"submitbtn\">";
+                responseString = responseString + "<input class=\"input_over\" type=\"submit\" value=\"Connect\" />";
+                responseString = responseString + "</div>";
+                responseString = responseString + "<div id=\"connecting\" style=\"visibility:hidden\"> Connecting...</div>";
+                responseString = responseString + "<div id=\"helplinks\">";
+                responseString = responseString + "<a href=\"http://www.secondlife.com/join/index.php\" target=\"_blank\">Create new account</a> | ";
+                responseString = responseString + "<a href=\"http://www.secondlife.com/account/request.php\" target=\"_blank\">Forgot password?</a>";
+                responseString = responseString + "</div>";
+                responseString = responseString + "<div id=\"channelinfo\"> [$clientchannelinfo] | [$clientversion]=[$clientlanguage]</div>";
+                responseString = responseString + "</form>";
+                responseString = responseString + "<script language=\"JavaScript\">";
+                responseString = responseString + "document.getElementById('firstname_input').focus();";
+                responseString = responseString + "</script>";
+                responseString = responseString + "</div>";
+                responseString = responseString + "</div>";
+                responseString = responseString + "</body>";
+                responseString = responseString + "</html>";
+            return responseString;
+        }
        /// <summary>
        /// Saves a target agent to the database
        /// </summary>
@@ -353,14 +475,33 @@ namespace OpenSim.Framework.UserManagement
        /// <returns>Authenticated?</returns>
        public virtual bool AuthenticateUser(UserProfileData profile, string password)
        {
+            bool passwordSuccess = false;
            MainLog.Instance.Verbose(
                "LOGIN", "Authenticating {0} {1} ({2})", profile.username, profile.surname, profile.UUID);
+            // Web Login method seems to also occasionally send the hashed password itself
+        
            password = password.Remove(0, 3); //remove $1$
            string s = Util.Md5Hash(password + ":" + profile.passwordSalt);
-            return profile.passwordHash.Equals(s.ToString(), StringComparison.InvariantCultureIgnoreCase);
+            passwordSuccess = (profile.passwordHash.Equals(s.ToString(), StringComparison.InvariantCultureIgnoreCase) 
+                            || profile.passwordHash.Equals(password.ToString(),StringComparison.InvariantCultureIgnoreCase));
+            return passwordSuccess;
+        }
+        public virtual bool AuthenticateUser(UserProfileData profile, LLUUID webloginkey)
+        {
+            bool passwordSuccess = false;
+            MainLog.Instance.Verbose(
+                "LOGIN", "Authenticating {0} {1} ({2})", profile.username, profile.surname, profile.UUID);
+            // Match web login key unless it's the default weblogin key LLUUID.Zero
+            passwordSuccess = ((profile.webLoginKey==webloginkey) && profile.webLoginKey != LLUUID.Zero);
+            return passwordSuccess;
        }
        /// <summary>
author	Teravus Ovares	2008-01-09 18:57:03 +0000
committer	Teravus Ovares	2008-01-09 18:57:03 +0000
commit	49fe4eb3cdf4b5cb11e5fe0980bb7c3a3d47b6ea (patch)
tree	37de8fc8d0f2507fd892b6f24ae6b5899a0f0bd7 /OpenSim/Framework/Communications/LoginService.cs
parent	default to OpenSim.Framework.Data.SQLite which is the new storage (diff)
download	opensim-SC_OLD-49fe4eb3cdf4b5cb11e5fe0980bb7c3a3d47b6ea.zip opensim-SC_OLD-49fe4eb3cdf4b5cb11e5fe0980bb7c3a3d47b6ea.tar.gz opensim-SC_OLD-49fe4eb3cdf4b5cb11e5fe0980bb7c3a3d47b6ea.tar.bz2 opensim-SC_OLD-49fe4eb3cdf4b5cb11e5fe0980bb7c3a3d47b6ea.tar.xz

diff --git a/OpenSim/Framework/Communications/LoginService.cs b/OpenSim/Framework/Communications/LoginService.cs index 9cfac1c..f0a0a0b 100644 --- a/OpenSim/Framework/Communications/LoginService.cs +++ b/OpenSim/Framework/Communications/LoginService.cs
@@ -29,6 +29,7 @@
29	using System;	29	using System;
30	using System.Collections;	30	using System.Collections;
31	using System.Collections.Generic;	31	using System.Collections.Generic;
		32	using System.IO;
32	using System.Threading;	33	using System.Threading;
33	using libsecondlife;	34	using libsecondlife;
34	using libsecondlife.StructuredData;	35	using libsecondlife.StructuredData;
@@ -79,7 +80,7 @@ namespace OpenSim.Framework.UserManagement
79	Hashtable requestData = (Hashtable) request.Params[0];	80	Hashtable requestData = (Hashtable) request.Params[0];
80		81
81	bool GoodXML = (requestData.Contains("first") && requestData.Contains("last") &&	82	bool GoodXML = (requestData.Contains("first") && requestData.Contains("last") &&
82	requestData.Contains("passwd"));	83	(requestData.Contains("passwd") \|\| requestData.Contains("web_login_key")));
83	bool GoodLogin = false;	84	bool GoodLogin = false;
84		85
85	UserProfileData userProfile;	86	UserProfileData userProfile;
@@ -89,7 +90,8 @@ namespace OpenSim.Framework.UserManagement
89	{	90	{
90	string firstname = (string) requestData["first"];	91	string firstname = (string) requestData["first"];
91	string lastname = (string) requestData["last"];	92	string lastname = (string) requestData["last"];
92	string passwd = (string) requestData["passwd"];	93
		94
93		95
94	userProfile = GetTheUser(firstname, lastname);	96	userProfile = GetTheUser(firstname, lastname);
95	if (userProfile == null)	97	if (userProfile == null)
@@ -100,8 +102,29 @@ namespace OpenSim.Framework.UserManagement
100		102
101	return logResponse.CreateLoginFailedResponse();	103	return logResponse.CreateLoginFailedResponse();
102	}	104	}
		105	if (requestData.Contains("passwd"))
		106	{
		107	string passwd = (string)requestData["passwd"];
		108	GoodLogin = AuthenticateUser(userProfile, passwd);
		109	}
		110	else if (requestData.Contains("web_login_key"))
		111	{
		112	LLUUID webloginkey = null;
		113	try
		114	{
		115	webloginkey = new LLUUID((string)requestData["web_login_key"]);
		116	}
		117	catch (System.Exception)
		118	{
		119	return logResponse.CreateFailedResponse();
		120	}
		121	GoodLogin = AuthenticateUser(userProfile, webloginkey);
103		122
104	GoodLogin = AuthenticateUser(userProfile, passwd);	123	}
		124	else
		125	{
		126	return logResponse.CreateFailedResponse();
		127	}
105	}	128	}
106	else	129	else
107	{	130	{
@@ -334,6 +357,105 @@ namespace OpenSim.Framework.UserManagement
334	{	357	{
335	}	358	}
336		359
		360	public Hashtable ProcessHTMLLogin(Hashtable keysvals)
		361	{
		362	Hashtable returnactions = new Hashtable();
		363	int statuscode = 200;
		364
		365	returnactions["int_response_code"] = statuscode;
		366	returnactions["str_response_string"] = GetDefaultLoginForm();
		367
		368	if (keysvals.ContainsKey("show_login_form"))
		369	{
		370	if ((string)keysvals["show_login_form"] == "TRUE")
		371	{
		372
		373	}
		374	else
		375	{
		376
		377
		378	}
		379
		380	}
		381	return returnactions;
		382
		383	}
		384
		385	public string GetLoginForm()
		386	{
		387	string file = Path.Combine(Util.configDir(), "http_loginform.html");
		388	if (!File.Exists(file))
		389	return GetDefaultLoginForm();
		390
		391	StreamReader sr = File.OpenText(file);
		392	string result = sr.ReadToEnd();
		393	sr.Close();
		394	return result;
		395	}
		396
		397	public string GetDefaultLoginForm()
		398	{
		399	string responseString =
		400	"<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">";
		401	responseString = responseString + "<html xmlns=\"http://www.w3.org/1999/xhtml\">";
		402	responseString = responseString + "<head>";
		403	responseString = responseString +
		404	"<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />";
		405	responseString = responseString + "<meta http-equiv=\"cache-control\" content=\"no-cache\">";
		406	responseString = responseString + "<meta http-equiv=\"Pragma\" content=\"no-cache\">";
		407	responseString = responseString + "<title>Second Life Login</title>";
		408	responseString = responseString + "<body>";
		409	responseString = responseString + "<div id=\"login_box\">";
		410
		411	responseString = responseString + "<form action=\"/\" method=\"GET\" id=\"login-form\">";
		412
		413	responseString = responseString + "<div id=\"message\">[$errors]</div>";
		414	responseString = responseString + "<fieldset id=\"firstname\">";
		415	responseString = responseString + "<legend>First Name:</legend>";
		416	responseString = responseString + "<input type=\"text\" id=\"firstname_input\" size=\"15\" maxlength=\"100\" name=\"username\" value=\"[$firstname]\" />";
		417	responseString = responseString + "</fieldset>";
		418	responseString = responseString + "<fieldset id=\"lastname\">";
		419	responseString = responseString + "<legend>Last Name:</legend>";
		420	responseString = responseString + "<input type=\"text\" size=\"15\" maxlength=\"100\" name=\"lastname\" value=\"[$lastname]\" />";
		421	responseString = responseString + "</fieldset>";
		422	responseString = responseString + "<fieldset id=\"password\">";
		423	responseString = responseString + "<legend>Password:</legend>";
		424	responseString = responseString + "<table cellspacing=\"0\" cellpadding=\"0\" border=\"0\">";
		425	responseString = responseString + "<tr>";
		426	responseString = responseString + "<td colspan=\"2\"><input type=\"password\" size=\"15\" maxlength=\"100\" name=\"password\" value=\"[$password]\" /></td>";
		427	responseString = responseString + "</tr>";
		428	responseString = responseString + "<tr>";
		429	responseString = responseString + "<td valign=\"middle\"><input type=\"checkbox\" name=\"remember_password\" id=\"remember_password\" [$remember_password] style=\"margin-left:0px;\"/></td>";
		430	responseString = responseString + "<td><label for=\"remember_password\">Remember password</label></td>";
		431	responseString = responseString + "</tr>";
		432	responseString = responseString + "</table>";
		433	responseString = responseString + "</fieldset>";
		434	responseString = responseString + "<input type=\"hidden\" name=\"show_login_form\" value=\"FALSE\" />";
		435	responseString = responseString + "<input type=\"hidden\" name=\"method\" value=\"login\" />";
		436	responseString = responseString + "<input type=\"hidden\" id=\"grid\" name=\"grid\" value=\"[$grid]\" />";
		437	responseString = responseString + "<div id=\"submitbtn\">";
		438	responseString = responseString + "<input class=\"input_over\" type=\"submit\" value=\"Connect\" />";
		439	responseString = responseString + "</div>";
		440	responseString = responseString + "<div id=\"connecting\" style=\"visibility:hidden\"> Connecting...</div>";
		441
		442	responseString = responseString + "<div id=\"helplinks\">";
		443	responseString = responseString + "<a href=\"http://www.secondlife.com/join/index.php\" target=\"_blank\">Create new account</a> \| ";
		444	responseString = responseString + "<a href=\"http://www.secondlife.com/account/request.php\" target=\"_blank\">Forgot password?</a>";
		445	responseString = responseString + "</div>";
		446
		447	responseString = responseString + "<div id=\"channelinfo\"> [$clientchannelinfo] \| [$clientversion]=[$clientlanguage]</div>";
		448	responseString = responseString + "</form>";
		449	responseString = responseString + "<script language=\"JavaScript\">";
		450	responseString = responseString + "document.getElementById('firstname_input').focus();";
		451	responseString = responseString + "</script>";
		452	responseString = responseString + "</div>";
		453	responseString = responseString + "</div>";
		454	responseString = responseString + "</body>";
		455	responseString = responseString + "</html>";
		456	return responseString;
		457	}
		458
337	/// <summary>	459	/// <summary>
338	/// Saves a target agent to the database	460	/// Saves a target agent to the database
339	/// </summary>	461	/// </summary>
@@ -353,14 +475,33 @@ namespace OpenSim.Framework.UserManagement
353	/// <returns>Authenticated?</returns>	475	/// <returns>Authenticated?</returns>
354	public virtual bool AuthenticateUser(UserProfileData profile, string password)	476	public virtual bool AuthenticateUser(UserProfileData profile, string password)
355	{	477	{
		478	bool passwordSuccess = false;
356	MainLog.Instance.Verbose(	479	MainLog.Instance.Verbose(
357	"LOGIN", "Authenticating {0} {1} ({2})", profile.username, profile.surname, profile.UUID);	480	"LOGIN", "Authenticating {0} {1} ({2})", profile.username, profile.surname, profile.UUID);
358		481
		482	// Web Login method seems to also occasionally send the hashed password itself
		483
		484
359	password = password.Remove(0, 3); //remove $1$	485	password = password.Remove(0, 3); //remove $1$
360		486
361	string s = Util.Md5Hash(password + ":" + profile.passwordSalt);	487	string s = Util.Md5Hash(password + ":" + profile.passwordSalt);
362		488
363	return profile.passwordHash.Equals(s.ToString(), StringComparison.InvariantCultureIgnoreCase);	489	passwordSuccess = (profile.passwordHash.Equals(s.ToString(), StringComparison.InvariantCultureIgnoreCase)
		490	\|\| profile.passwordHash.Equals(password.ToString(),StringComparison.InvariantCultureIgnoreCase));
		491
		492	return passwordSuccess;
		493	}
		494
		495	public virtual bool AuthenticateUser(UserProfileData profile, LLUUID webloginkey)
		496	{
		497	bool passwordSuccess = false;
		498	MainLog.Instance.Verbose(
		499	"LOGIN", "Authenticating {0} {1} ({2})", profile.username, profile.surname, profile.UUID);
		500
		501	// Match web login key unless it's the default weblogin key LLUUID.Zero
		502	passwordSuccess = ((profile.webLoginKey==webloginkey) && profile.webLoginKey != LLUUID.Zero);
		503
		504	return passwordSuccess;
364	}	505	}
365		506
366	/// <summary>	507	/// <summary>