nathanwoodburn/hns-links
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat: Add signature based login

Browse Source
This commit is contained in:
Nathan Woodburn 2025-03-07 15:14:34 +11:00
parent 715273c58a
commit 2b091fa707
Signed by: nathanwoodburn
GPG Key ID: 203B000478AD0EF1
1 changed files with 34 additions and 18 deletions

52
main.py
View File

@ -512,29 +512,45 @@ def auth_get():
if 'username' not in request.args: if 'username' not in request.args:
return redirect('/?error=Failed to login&reason=No username') return redirect('/?error=Failed to login&reason=No username')
if 'token' not in request.args: username = request.args['username']
if 'token' not in request.args and 'signature' not in request.args:
return redirect('/?error=Failed to login&reason=No token') return redirect('/?error=Failed to login&reason=No token')
username = request.args['username'] if 'token' in request.args:
token = request.args['token'] token = request.args['token']
# Check if user is valid # Check if user is valid
r = requests.get(f'https://login.hns.au/auth/user?token={token}') r = requests.get(f'https://login.hns.au/auth/user?token={token}')
if r.status_code != 200: if r.status_code != 200:
print(r.text,flush=True) print(r.text,flush=True)
return redirect('/?error=Failed to login&reason=Failed to connect to HNS Login') return redirect('/?error=Failed to login&reason=Failed to connect to HNS Login')
try: try:
r = r.json()
except:
print(r.text,flush=True)
return redirect('/?error=Failed to login&reason=Failed to connect to HNS Login')
if 'error' in r:
return redirect('/?error=Failed to login&reason=' + r['error'])
if r['username'] != username:
return redirect('/?error=Failed to login&reason=Username mismatch')
else: # Signature based login
signature = request.args['signature']
r = requests.post(f'http://x:{HSD_API}@{HSD_IP}:{HSD_PORT}', json={
'method': 'verifymessagewithname',
'params': [username, signature, "hns-links"]
})
if r.status_code != 200:
return jsonify({'error': 'Failed to connect to HSD',"success":False}), 500
r = r.json() r = r.json()
except: if 'result' not in r:
print(r.text,flush=True) return jsonify({'error': 'Failed to verify signature',"success":False}), 400
return redirect('/?error=Failed to login&reason=Failed to connect to HNS Login') if r['result'] != True:
return jsonify({'error': 'Failed to verify signature',"success":False}), 400
if 'error' in r:
return redirect('/?error=Failed to login&reason=' + r['error'])
if r['username'] != username:
return redirect('/?error=Failed to login&reason=Username mismatch')
auth_cookie = secrets.token_hex(12 // 2) auth_cookie = secrets.token_hex(12 // 2)
cookies.append({'name': username, 'cookie': auth_cookie}) cookies.append({'name': username, 'cookie': auth_cookie})