7 files changed, 166 insertions, 26 deletions
diff --git a/OpenSim/Framework/Communications/IUserService.cs b/OpenSim/Framework/Communications/IUserService.cs
index 725225d..15c5a96 100644
--- a/OpenSim/Framework/Communications/IUserService.cs
+++ b/OpenSim/Framework/Communications/IUserService.cs
@@ -98,7 +98,7 @@ namespace OpenSim.Framework.Communications
        /// <param name="friendlistowner">The agent that who's friends list is being updated</param>
        /// <param name="friend">The agent that is getting or loosing permissions</param>
        /// <param name="perms">A uint bit vector for set perms that the friend being added has; 0 = none, 1=This friend can see when they sign on, 2 = map, 4 edit objects </param>
-        void UpdateUserFriendPerms(UUID friendlistowner, UUID friend, uint perms);
+        void UpdateUserFriendPerms(UUID friendlistowner, UUID friend, uint perms);   
        /// <summary>
        /// Logs off a user on the user server
@@ -137,9 +137,21 @@ namespace OpenSim.Framework.Communications
        // But since Scenes only have IUserService references, I'm placing it here for now.
        bool VerifySession(UUID userID, UUID sessionID);
+        /// <summary>
+        /// Authenticate a user by their password.
+        /// </summary>
+        /// 
+        /// This is used by callers outside the login process that want to
+        /// verify a user who has given their password.
+        ///
+        /// This should probably also be in IAuthentication but is here for the same reasons as VerifySession() is
+        ///
+        /// <param name="userID"></param>
+        /// <param name="password"></param>
+        /// <returns></returns>
+        bool AuthenticateUserByPassword(UUID userID, string password);        
        // Temporary Hack until we move everything to the new service model
        void SetInventoryService(IInventoryService invService);
    }
 }
diff --git a/OpenSim/Framework/Communications/Tests/Cache/AssetCacheTests.cs b/OpenSim/Framework/Communications/Tests/Cache/AssetCacheTests.cs
index ac0dc6d..a757282 100644
--- a/OpenSim/Framework/Communications/Tests/Cache/AssetCacheTests.cs
+++ b/OpenSim/Framework/Communications/Tests/Cache/AssetCacheTests.cs
@@ -149,6 +149,11 @@ namespace OpenSim.Framework.Communications.Tests
            {
                throw new NotImplementedException();
            }
+            public virtual bool AuthenticateUserByPassword(UUID userID, string password)
+            {
+                throw new NotImplementedException();        
+            }             
        }
    }
 }
diff --git a/OpenSim/Framework/Communications/UserManagerBase.cs b/OpenSim/Framework/Communications/UserManagerBase.cs
index 58174a0..1abd733 100644
--- a/OpenSim/Framework/Communications/UserManagerBase.cs
+++ b/OpenSim/Framework/Communications/UserManagerBase.cs
@@ -44,7 +44,8 @@ namespace OpenSim.Framework.Communications
    /// <summary>
    /// Base class for user management (create, read, etc)
    /// </summary>
-    public abstract class UserManagerBase : IUserService, IUserAdminService, IAvatarService, IMessagingService, IAuthentication
+    public abstract class UserManagerBase 
+        : IUserService, IUserAdminService, IAvatarService, IMessagingService, IAuthentication
    {
        private static readonly ILog m_log
            = LogManager.GetLogger(MethodBase.GetCurrentMethod().DeclaringType);
@@ -93,9 +94,9 @@ namespace OpenSim.Framework.Communications
        public void AddPlugin(string provider, string connect)
        {
            m_plugins.AddRange(DataPluginFactory.LoadDataPlugins<IUserDataPlugin>(provider, connect));
-        }
+        }       
-        #region UserProfile
+        #region UserProfile        
        
        public virtual void AddTemporaryUserProfile(UserProfileData userProfile)
        {
@@ -891,7 +892,10 @@ namespace OpenSim.Framework.Communications
            if (userProfile != null && userProfile.CurrentAgent != null)
            {
-                m_log.DebugFormat("[USER AUTH]: Verifying session {0} for {1}; current  session {2}", sessionID, userID, userProfile.CurrentAgent.SessionID);
+                m_log.DebugFormat(
+                    "[USER AUTH]: Verifying session {0} for {1}; current  session {2}", 
+                    sessionID, userID, userProfile.CurrentAgent.SessionID);
+                
                if (userProfile.CurrentAgent.SessionID == sessionID)
                {
                    return true;
@@ -901,6 +905,26 @@ namespace OpenSim.Framework.Communications
            return false;
        }
+        public virtual bool AuthenticateUserByPassword(UUID userID, string password)
+        {
+//            m_log.DebugFormat("[USER AUTH]: Authenticating user {0} given password {1}", userID, password);
+            
+            UserProfileData userProfile = GetUserProfile(userID);
+            if (null == userProfile)
+                return false;
+      
+            string md5PasswordHash = Util.Md5Hash(Util.Md5Hash(password) + ":" + userProfile.PasswordSalt);
+//            m_log.DebugFormat(
+//                "[USER AUTH]: Submitted hash {0}, stored hash {1}", md5PasswordHash, userProfile.PasswordHash);
+    
+            if (md5PasswordHash == userProfile.PasswordHash)
+                return true;
+            else
+                return false;         
+        }          
        #endregion
    }
 }
diff --git a/OpenSim/Grid/UserServer.Modules/UserManager.cs b/OpenSim/Grid/UserServer.Modules/UserManager.cs
index 002f232..bc19ac8 100644
--- a/OpenSim/Grid/UserServer.Modules/UserManager.cs
+++ b/OpenSim/Grid/UserServer.Modules/UserManager.cs
@@ -108,6 +108,9 @@ namespace OpenSim.Grid.UserServer.Modules
            m_httpServer.AddXmlRPCHandler("get_user_by_uuid", XmlRPCGetUserMethodUUID);
            m_httpServer.AddXmlRPCHandler("get_avatar_picker_avatar", XmlRPCGetAvatarPickerAvatar);
+            // Used by IAR module to do password checks
+            //m_httpServer.AddXmlRPCHandler("authenticate_user_by_password", XmlRPCAuthenticateUserMethodPassword);
            m_httpServer.AddXmlRPCHandler("update_user_current_region", XmlRPCAtRegion);
            m_httpServer.AddXmlRPCHandler("logout_of_simulator", XmlRPCLogOffUserMethodUUID);
            m_httpServer.AddXmlRPCHandler("get_agent_by_uuid", XmlRPCGetAgentMethodUUID);
@@ -203,6 +206,57 @@ namespace OpenSim.Grid.UserServer.Modules
        #region XMLRPC User Methods
+        /// <summary>
+        /// Authenticate a user using their password
+        /// </summary>
+        /// <param name="request">Must contain values for "user_uuid" and "password" keys</param>
+        /// <param name="remoteClient"></param>
+        /// <returns></returns>
+        public XmlRpcResponse XmlRPCAuthenticateUserMethodPassword(XmlRpcRequest request, IPEndPoint remoteClient)
+        {
+//            m_log.DebugFormat("[USER MANAGER]: Received authenticated user by password request from {0}", remoteClient);
+            
+            Hashtable requestData = (Hashtable)request.Params[0];
+            string userUuidRaw = (string)requestData["user_uuid"];
+            string password = (string)requestData["password"];
+            if (null == userUuidRaw)
+                return Util.CreateUnknownUserErrorResponse();
+            UUID userUuid;
+            if (!UUID.TryParse(userUuidRaw, out userUuid))
+                return Util.CreateUnknownUserErrorResponse();
+            UserProfileData userProfile = m_userDataBaseService.GetUserProfile(userUuid);
+            if (null == userProfile)
+                return Util.CreateUnknownUserErrorResponse();            
+            string authed;
+            
+            if (null == password)
+            {
+                authed = "FALSE";
+            }
+            else
+            {
+                if (m_userDataBaseService.AuthenticateUserByPassword(userUuid, password))
+                    authed = "TRUE";
+                else
+                    authed = "FALSE";
+            }
+//            m_log.DebugFormat(
+//                "[USER MANAGER]: Authentication by password result from {0} for {1} is {2}",
+//                remoteClient, userUuid, authed);
+            XmlRpcResponse response = new XmlRpcResponse();            
+            Hashtable responseData = new Hashtable();            
+            responseData["auth_user"] = authed;
+            response.Value = responseData;
+            
+            return response;            
+        }
        public XmlRpcResponse XmlRPCGetAvatarPickerAvatar(XmlRpcRequest request, IPEndPoint remoteClient)
        {
            // XmlRpcResponse response = new XmlRpcResponse();
@@ -246,10 +300,10 @@ namespace OpenSim.Grid.UserServer.Modules
                    m_userDataBaseService.CommitAgent(ref userProfile);
                    //setUserProfile(userProfile);
                    returnstring = "TRUE";
                }
            }
+                
            responseData.Add("returnString", returnstring);
            response.Value = responseData;
            return response;
diff --git a/OpenSim/Region/Communications/Local/LocalUserServices.cs b/OpenSim/Region/Communications/Local/LocalUserServices.cs
index af4fb37..d18937e 100644
--- a/OpenSim/Region/Communications/Local/LocalUserServices.cs
+++ b/OpenSim/Region/Communications/Local/LocalUserServices.cs
@@ -80,6 +80,21 @@ namespace OpenSim.Region.Communications.Local
                throw new Exception("[LOCAL USER SERVICES]: Unknown master user UUID. Possible reason: UserServer is not running.");
            }
            return data;
-        }       
+        }
+        public override bool AuthenticateUserByPassword(UUID userID, string password)
+        {
+            UserProfileData userProfile = GetUserProfile(userID);
+            if (null == userProfile)
+                return false;
+      
+            string md5PasswordHash = Util.Md5Hash(Util.Md5Hash(password) + ":" + userProfile.PasswordSalt);
+    
+            if (md5PasswordHash == userProfile.PasswordHash)
+                return true;
+            else
+                return false;         
+        }        
    }
-}
+}
+\ No newline at end of file
diff --git a/OpenSim/Region/Communications/OGS1/OGS1UserServices.cs b/OpenSim/Region/Communications/OGS1/OGS1UserServices.cs
index dff8305..89b3e42 100644
--- a/OpenSim/Region/Communications/OGS1/OGS1UserServices.cs
+++ b/OpenSim/Region/Communications/OGS1/OGS1UserServices.cs
@@ -140,6 +140,47 @@ namespace OpenSim.Region.Communications.OGS1
        {
            m_log.DebugFormat("[OGS1 USER SERVICES]: Verifying user session for " + userID);
            return AuthClient.VerifySession(GetUserServerURL(userID), userID, sessionID);
-        }  
+        }
+        public override bool AuthenticateUserByPassword(UUID userID, string password)
+        {
+            try
+            {
+                Hashtable param = new Hashtable();
+                param["user_uuid"] = userID.ToString();
+                param["password"] = password;
+                IList parameters = new ArrayList();
+                parameters.Add(param);
+                XmlRpcRequest req = new XmlRpcRequest("authenticate_user_by_password", parameters);
+                XmlRpcResponse resp = req.Send(m_commsManager.NetworkServersInfo.UserURL, 30000);
+                Hashtable respData = (Hashtable)resp.Value;
+//                foreach (object key in respData.Keys)
+//                {                   
+//                    Console.WriteLine("respData {0}, {1}", key, respData[key]);
+//                }
+//                m_log.DebugFormat(
+//                    "[OGS1 USER SERVICES]: AuthenticatedUserByPassword response for {0} is [{1}]", 
+//                    userID, respData["auth_user"]);
+                if ((string)respData["auth_user"] == "TRUE")
+                {
+                    return true;
+                }
+                else
+                {
+                    return false;
+                }
+            }
+            catch (Exception e)
+            {
+                m_log.ErrorFormat(
+                    "[OGS1 USER SERVICES]: Error when trying to authenticate user by password from remote user server: {0}",
+                    e);
+                return false;
+            }            
+        }
    }
 }
 \ No newline at end of file
diff --git a/OpenSim/Region/CoreModules/Avatar/Inventory/Archiver/InventoryArchiverModule.cs b/OpenSim/Region/CoreModules/Avatar/Inventory/Archiver/InventoryArchiverModule.cs
index 196205c..b82b940 100644
--- a/OpenSim/Region/CoreModules/Avatar/Inventory/Archiver/InventoryArchiverModule.cs
+++ b/OpenSim/Region/CoreModules/Avatar/Inventory/Archiver/InventoryArchiverModule.cs
@@ -322,7 +322,7 @@ namespace OpenSim.Region.CoreModules.Avatar.Inventory.Archiver
        /// <param name="pass">User password</param>
        /// <returns></returns>
        protected CachedUserInfo GetUserInfo(string firstName, string lastName, string pass)
-        {
+        {            
            CachedUserInfo userInfo = m_aScene.CommsManager.UserProfileCacheService.GetUserDetails(firstName, lastName);
            //m_aScene.CommsManager.UserService.GetUserProfile(firstName, lastName);
            if (null == userInfo)
@@ -333,29 +333,18 @@ namespace OpenSim.Region.CoreModules.Avatar.Inventory.Archiver
                return null;
            }
-            string md5PasswdHash = Util.Md5Hash(Util.Md5Hash(pass) + ":" + userInfo.UserProfile.PasswordSalt);
+            if (m_aScene.CommsManager.UserService.AuthenticateUserByPassword(userInfo.UserProfile.ID, pass))
-            if (userInfo.UserProfile.PasswordHash == null || userInfo.UserProfile.PasswordHash == String.Empty)
            {
-                m_log.ErrorFormat(
+                return userInfo;
-                    "[INVENTORY ARCHIVER]: Sorry, the grid mode service is not providing password hash details for the check.  This will be fixed in an OpenSim git revision soon");
-                return null;
            }
+            else
-//            m_log.DebugFormat(
-//                "[INVENTORY ARCHIVER]: received salt {0}, hash {1}, supplied hash {2}", 
-//                userInfo.UserProfile.PasswordSalt, userInfo.UserProfile.PasswordHash, md5PasswdHash);
-            
-            if (userInfo.UserProfile.PasswordHash != md5PasswdHash)
            {
                m_log.ErrorFormat(
                    "[INVENTORY ARCHIVER]: Password for user {0} {1} incorrect.  Please try again.", 
                    firstName, lastName);
+                
                return null;
            }
-            
-            return userInfo;
        }
        
        /// <summary>

diff --git a/OpenSim/Framework/Communications/IUserService.cs b/OpenSim/Framework/Communications/IUserService.cs index 725225d..15c5a96 100644 --- a/OpenSim/Framework/Communications/IUserService.cs +++ b/OpenSim/Framework/Communications/IUserService.cs
@@ -98,7 +98,7 @@ namespace OpenSim.Framework.Communications
98	/// <param name="friendlistowner">The agent that who's friends list is being updated</param>	98	/// <param name="friendlistowner">The agent that who's friends list is being updated</param>
99	/// <param name="friend">The agent that is getting or loosing permissions</param>	99	/// <param name="friend">The agent that is getting or loosing permissions</param>
100	/// <param name="perms">A uint bit vector for set perms that the friend being added has; 0 = none, 1=This friend can see when they sign on, 2 = map, 4 edit objects </param>	100	/// <param name="perms">A uint bit vector for set perms that the friend being added has; 0 = none, 1=This friend can see when they sign on, 2 = map, 4 edit objects </param>
101	void UpdateUserFriendPerms(UUID friendlistowner, UUID friend, uint perms);	101	void UpdateUserFriendPerms(UUID friendlistowner, UUID friend, uint perms);
102		102
103	/// <summary>	103	/// <summary>
104	/// Logs off a user on the user server	104	/// Logs off a user on the user server
@@ -137,9 +137,21 @@ namespace OpenSim.Framework.Communications
137	// But since Scenes only have IUserService references, I'm placing it here for now.	137	// But since Scenes only have IUserService references, I'm placing it here for now.
138	bool VerifySession(UUID userID, UUID sessionID);	138	bool VerifySession(UUID userID, UUID sessionID);
139		139
		140	/// <summary>
		141	/// Authenticate a user by their password.
		142	/// </summary>
		143	///
		144	/// This is used by callers outside the login process that want to
		145	/// verify a user who has given their password.
		146	///
		147	/// This should probably also be in IAuthentication but is here for the same reasons as VerifySession() is
		148	///
		149	/// <param name="userID"></param>
		150	/// <param name="password"></param>
		151	/// <returns></returns>
		152	bool AuthenticateUserByPassword(UUID userID, string password);
140		153
141	// Temporary Hack until we move everything to the new service model	154	// Temporary Hack until we move everything to the new service model
142	void SetInventoryService(IInventoryService invService);	155	void SetInventoryService(IInventoryService invService);
143
144	}	156	}
145	}	157	}


diff --git a/OpenSim/Framework/Communications/Tests/Cache/AssetCacheTests.cs b/OpenSim/Framework/Communications/Tests/Cache/AssetCacheTests.cs index ac0dc6d..a757282 100644 --- a/OpenSim/Framework/Communications/Tests/Cache/AssetCacheTests.cs +++ b/OpenSim/Framework/Communications/Tests/Cache/AssetCacheTests.cs
@@ -149,6 +149,11 @@ namespace OpenSim.Framework.Communications.Tests
149	{	149	{
150	throw new NotImplementedException();	150	throw new NotImplementedException();
151	}	151	}
		152
		153	public virtual bool AuthenticateUserByPassword(UUID userID, string password)
		154	{
		155	throw new NotImplementedException();
		156	}
152	}	157	}
153	}	158	}
154	}	159	}


diff --git a/OpenSim/Framework/Communications/UserManagerBase.cs b/OpenSim/Framework/Communications/UserManagerBase.cs index 58174a0..1abd733 100644 --- a/OpenSim/Framework/Communications/UserManagerBase.cs +++ b/OpenSim/Framework/Communications/UserManagerBase.cs
@@ -44,7 +44,8 @@ namespace OpenSim.Framework.Communications
44	/// <summary>	44	/// <summary>
45	/// Base class for user management (create, read, etc)	45	/// Base class for user management (create, read, etc)
46	/// </summary>	46	/// </summary>
47	public abstract class UserManagerBase : IUserService, IUserAdminService, IAvatarService, IMessagingService, IAuthentication	47	public abstract class UserManagerBase
		48	: IUserService, IUserAdminService, IAvatarService, IMessagingService, IAuthentication
48	{	49	{
49	private static readonly ILog m_log	50	private static readonly ILog m_log
50	= LogManager.GetLogger(MethodBase.GetCurrentMethod().DeclaringType);	51	= LogManager.GetLogger(MethodBase.GetCurrentMethod().DeclaringType);
@@ -93,9 +94,9 @@ namespace OpenSim.Framework.Communications
93	public void AddPlugin(string provider, string connect)	94	public void AddPlugin(string provider, string connect)
94	{	95	{
95	m_plugins.AddRange(DataPluginFactory.LoadDataPlugins<IUserDataPlugin>(provider, connect));	96	m_plugins.AddRange(DataPluginFactory.LoadDataPlugins<IUserDataPlugin>(provider, connect));
96	}	97	}
97		98
98	#region UserProfile	99	#region UserProfile
99		100
100	public virtual void AddTemporaryUserProfile(UserProfileData userProfile)	101	public virtual void AddTemporaryUserProfile(UserProfileData userProfile)
101	{	102	{
@@ -891,7 +892,10 @@ namespace OpenSim.Framework.Communications
891		892
892	if (userProfile != null && userProfile.CurrentAgent != null)	893	if (userProfile != null && userProfile.CurrentAgent != null)
893	{	894	{
894	m_log.DebugFormat("[USER AUTH]: Verifying session {0} for {1}; current session {2}", sessionID, userID, userProfile.CurrentAgent.SessionID);	895	m_log.DebugFormat(
		896	"[USER AUTH]: Verifying session {0} for {1}; current session {2}",
		897	sessionID, userID, userProfile.CurrentAgent.SessionID);
		898
895	if (userProfile.CurrentAgent.SessionID == sessionID)	899	if (userProfile.CurrentAgent.SessionID == sessionID)
896	{	900	{
897	return true;	901	return true;
@@ -901,6 +905,26 @@ namespace OpenSim.Framework.Communications
901	return false;	905	return false;
902	}	906	}
903		907
		908	public virtual bool AuthenticateUserByPassword(UUID userID, string password)
		909	{
		910	// m_log.DebugFormat("[USER AUTH]: Authenticating user {0} given password {1}", userID, password);
		911
		912	UserProfileData userProfile = GetUserProfile(userID);
		913
		914	if (null == userProfile)
		915	return false;
		916
		917	string md5PasswordHash = Util.Md5Hash(Util.Md5Hash(password) + ":" + userProfile.PasswordSalt);
		918
		919	// m_log.DebugFormat(
		920	// "[USER AUTH]: Submitted hash {0}, stored hash {1}", md5PasswordHash, userProfile.PasswordHash);
		921
		922	if (md5PasswordHash == userProfile.PasswordHash)
		923	return true;
		924	else
		925	return false;
		926	}
		927
904	#endregion	928	#endregion
905	}	929	}
906	}	930	}


diff --git a/OpenSim/Grid/UserServer.Modules/UserManager.cs b/OpenSim/Grid/UserServer.Modules/UserManager.cs index 002f232..bc19ac8 100644 --- a/OpenSim/Grid/UserServer.Modules/UserManager.cs +++ b/OpenSim/Grid/UserServer.Modules/UserManager.cs
@@ -108,6 +108,9 @@ namespace OpenSim.Grid.UserServer.Modules
108	m_httpServer.AddXmlRPCHandler("get_user_by_uuid", XmlRPCGetUserMethodUUID);	108	m_httpServer.AddXmlRPCHandler("get_user_by_uuid", XmlRPCGetUserMethodUUID);
109	m_httpServer.AddXmlRPCHandler("get_avatar_picker_avatar", XmlRPCGetAvatarPickerAvatar);	109	m_httpServer.AddXmlRPCHandler("get_avatar_picker_avatar", XmlRPCGetAvatarPickerAvatar);
110		110
		111	// Used by IAR module to do password checks
		112	//m_httpServer.AddXmlRPCHandler("authenticate_user_by_password", XmlRPCAuthenticateUserMethodPassword);
		113
111	m_httpServer.AddXmlRPCHandler("update_user_current_region", XmlRPCAtRegion);	114	m_httpServer.AddXmlRPCHandler("update_user_current_region", XmlRPCAtRegion);
112	m_httpServer.AddXmlRPCHandler("logout_of_simulator", XmlRPCLogOffUserMethodUUID);	115	m_httpServer.AddXmlRPCHandler("logout_of_simulator", XmlRPCLogOffUserMethodUUID);
113	m_httpServer.AddXmlRPCHandler("get_agent_by_uuid", XmlRPCGetAgentMethodUUID);	116	m_httpServer.AddXmlRPCHandler("get_agent_by_uuid", XmlRPCGetAgentMethodUUID);
@@ -203,6 +206,57 @@ namespace OpenSim.Grid.UserServer.Modules
203		206
204	#region XMLRPC User Methods	207	#region XMLRPC User Methods
205		208
		209	/// <summary>
		210	/// Authenticate a user using their password
		211	/// </summary>
		212	/// <param name="request">Must contain values for "user_uuid" and "password" keys</param>
		213	/// <param name="remoteClient"></param>
		214	/// <returns></returns>
		215	public XmlRpcResponse XmlRPCAuthenticateUserMethodPassword(XmlRpcRequest request, IPEndPoint remoteClient)
		216	{
		217	// m_log.DebugFormat("[USER MANAGER]: Received authenticated user by password request from {0}", remoteClient);
		218
		219	Hashtable requestData = (Hashtable)request.Params[0];
		220	string userUuidRaw = (string)requestData["user_uuid"];
		221	string password = (string)requestData["password"];
		222
		223	if (null == userUuidRaw)
		224	return Util.CreateUnknownUserErrorResponse();
		225
		226	UUID userUuid;
		227	if (!UUID.TryParse(userUuidRaw, out userUuid))
		228	return Util.CreateUnknownUserErrorResponse();
		229
		230	UserProfileData userProfile = m_userDataBaseService.GetUserProfile(userUuid);
		231	if (null == userProfile)
		232	return Util.CreateUnknownUserErrorResponse();
		233
		234	string authed;
		235
		236	if (null == password)
		237	{
		238	authed = "FALSE";
		239	}
		240	else
		241	{
		242	if (m_userDataBaseService.AuthenticateUserByPassword(userUuid, password))
		243	authed = "TRUE";
		244	else
		245	authed = "FALSE";
		246	}
		247
		248	// m_log.DebugFormat(
		249	// "[USER MANAGER]: Authentication by password result from {0} for {1} is {2}",
		250	// remoteClient, userUuid, authed);
		251
		252	XmlRpcResponse response = new XmlRpcResponse();
		253	Hashtable responseData = new Hashtable();
		254	responseData["auth_user"] = authed;
		255	response.Value = responseData;
		256
		257	return response;
		258	}
		259
206	public XmlRpcResponse XmlRPCGetAvatarPickerAvatar(XmlRpcRequest request, IPEndPoint remoteClient)	260	public XmlRpcResponse XmlRPCGetAvatarPickerAvatar(XmlRpcRequest request, IPEndPoint remoteClient)
207	{	261	{
208	// XmlRpcResponse response = new XmlRpcResponse();	262	// XmlRpcResponse response = new XmlRpcResponse();
@@ -246,10 +300,10 @@ namespace OpenSim.Grid.UserServer.Modules
246	m_userDataBaseService.CommitAgent(ref userProfile);	300	m_userDataBaseService.CommitAgent(ref userProfile);
247	//setUserProfile(userProfile);	301	//setUserProfile(userProfile);
248		302
249
250	returnstring = "TRUE";	303	returnstring = "TRUE";
251	}	304	}
252	}	305	}
		306
253	responseData.Add("returnString", returnstring);	307	responseData.Add("returnString", returnstring);
254	response.Value = responseData;	308	response.Value = responseData;
255	return response;	309	return response;


diff --git a/OpenSim/Region/Communications/Local/LocalUserServices.cs b/OpenSim/Region/Communications/Local/LocalUserServices.cs index af4fb37..d18937e 100644 --- a/OpenSim/Region/Communications/Local/LocalUserServices.cs +++ b/OpenSim/Region/Communications/Local/LocalUserServices.cs
@@ -80,6 +80,21 @@ namespace OpenSim.Region.Communications.Local
80	throw new Exception("[LOCAL USER SERVICES]: Unknown master user UUID. Possible reason: UserServer is not running.");	80	throw new Exception("[LOCAL USER SERVICES]: Unknown master user UUID. Possible reason: UserServer is not running.");
81	}	81	}
82	return data;	82	return data;
83	}	83	}
		84
		85	public override bool AuthenticateUserByPassword(UUID userID, string password)
		86	{
		87	UserProfileData userProfile = GetUserProfile(userID);
		88
		89	if (null == userProfile)
		90	return false;
		91
		92	string md5PasswordHash = Util.Md5Hash(Util.Md5Hash(password) + ":" + userProfile.PasswordSalt);
		93
		94	if (md5PasswordHash == userProfile.PasswordHash)
		95	return true;
		96	else
		97	return false;
		98	}
84	}	99	}
85	}	100	} \ No newline at end of file


diff --git a/OpenSim/Region/Communications/OGS1/OGS1UserServices.cs b/OpenSim/Region/Communications/OGS1/OGS1UserServices.cs index dff8305..89b3e42 100644 --- a/OpenSim/Region/Communications/OGS1/OGS1UserServices.cs +++ b/OpenSim/Region/Communications/OGS1/OGS1UserServices.cs
@@ -140,6 +140,47 @@ namespace OpenSim.Region.Communications.OGS1
140	{	140	{
141	m_log.DebugFormat("[OGS1 USER SERVICES]: Verifying user session for " + userID);	141	m_log.DebugFormat("[OGS1 USER SERVICES]: Verifying user session for " + userID);
142	return AuthClient.VerifySession(GetUserServerURL(userID), userID, sessionID);	142	return AuthClient.VerifySession(GetUserServerURL(userID), userID, sessionID);
143	}	143	}
		144
		145	public override bool AuthenticateUserByPassword(UUID userID, string password)
		146	{
		147	try
		148	{
		149	Hashtable param = new Hashtable();
		150	param["user_uuid"] = userID.ToString();
		151	param["password"] = password;
		152	IList parameters = new ArrayList();
		153	parameters.Add(param);
		154	XmlRpcRequest req = new XmlRpcRequest("authenticate_user_by_password", parameters);
		155	XmlRpcResponse resp = req.Send(m_commsManager.NetworkServersInfo.UserURL, 30000);
		156	Hashtable respData = (Hashtable)resp.Value;
		157
		158	// foreach (object key in respData.Keys)
		159	// {
		160	// Console.WriteLine("respData {0}, {1}", key, respData[key]);
		161	// }
		162
		163	// m_log.DebugFormat(
		164	// "[OGS1 USER SERVICES]: AuthenticatedUserByPassword response for {0} is [{1}]",
		165	// userID, respData["auth_user"]);
		166
		167	if ((string)respData["auth_user"] == "TRUE")
		168	{
		169	return true;
		170	}
		171	else
		172	{
		173	return false;
		174	}
		175	}
		176	catch (Exception e)
		177	{
		178	m_log.ErrorFormat(
		179	"[OGS1 USER SERVICES]: Error when trying to authenticate user by password from remote user server: {0}",
		180	e);
		181
		182	return false;
		183	}
		184	}
144	}	185	}
145	} \ No newline at end of file	186	} \ No newline at end of file


diff --git a/OpenSim/Region/CoreModules/Avatar/Inventory/Archiver/InventoryArchiverModule.cs b/OpenSim/Region/CoreModules/Avatar/Inventory/Archiver/InventoryArchiverModule.cs index 196205c..b82b940 100644 --- a/OpenSim/Region/CoreModules/Avatar/Inventory/Archiver/InventoryArchiverModule.cs +++ b/OpenSim/Region/CoreModules/Avatar/Inventory/Archiver/InventoryArchiverModule.cs
@@ -322,7 +322,7 @@ namespace OpenSim.Region.CoreModules.Avatar.Inventory.Archiver
322	/// <param name="pass">User password</param>	322	/// <param name="pass">User password</param>
323	/// <returns></returns>	323	/// <returns></returns>
324	protected CachedUserInfo GetUserInfo(string firstName, string lastName, string pass)	324	protected CachedUserInfo GetUserInfo(string firstName, string lastName, string pass)
325	{	325	{
326	CachedUserInfo userInfo = m_aScene.CommsManager.UserProfileCacheService.GetUserDetails(firstName, lastName);	326	CachedUserInfo userInfo = m_aScene.CommsManager.UserProfileCacheService.GetUserDetails(firstName, lastName);
327	//m_aScene.CommsManager.UserService.GetUserProfile(firstName, lastName);	327	//m_aScene.CommsManager.UserService.GetUserProfile(firstName, lastName);
328	if (null == userInfo)	328	if (null == userInfo)
@@ -333,29 +333,18 @@ namespace OpenSim.Region.CoreModules.Avatar.Inventory.Archiver
333	return null;	333	return null;
334	}	334	}
335		335
336	string md5PasswdHash = Util.Md5Hash(Util.Md5Hash(pass) + ":" + userInfo.UserProfile.PasswordSalt);	336	if (m_aScene.CommsManager.UserService.AuthenticateUserByPassword(userInfo.UserProfile.ID, pass))
337
338	if (userInfo.UserProfile.PasswordHash == null \|\| userInfo.UserProfile.PasswordHash == String.Empty)
339	{	337	{
340	m_log.ErrorFormat(	338	return userInfo;
341	"[INVENTORY ARCHIVER]: Sorry, the grid mode service is not providing password hash details for the check. This will be fixed in an OpenSim git revision soon");
342
343	return null;
344	}	339	}
345		340	else
346	// m_log.DebugFormat(
347	// "[INVENTORY ARCHIVER]: received salt {0}, hash {1}, supplied hash {2}",
348	// userInfo.UserProfile.PasswordSalt, userInfo.UserProfile.PasswordHash, md5PasswdHash);
349
350	if (userInfo.UserProfile.PasswordHash != md5PasswdHash)
351	{	341	{
352	m_log.ErrorFormat(	342	m_log.ErrorFormat(
353	"[INVENTORY ARCHIVER]: Password for user {0} {1} incorrect. Please try again.",	343	"[INVENTORY ARCHIVER]: Password for user {0} {1} incorrect. Please try again.",
354	firstName, lastName);	344	firstName, lastName);
		345
355	return null;	346	return null;
356	}	347	}
357
358	return userInfo;
359	}	348	}
360		349
361	/// <summary>	350	/// <summary>