Home Explore Help
Register Sign In
jast
/
gitinfo
Watch 2
Star 0
Fork 0
Files Issues 0 Pull Requests 0
Branch: master
Branches Tags
gitinfo
/
plugins
/
weblogin.pm

weblogin.pm 1.6 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. use Digest::SHA qw(sha1_hex);
    2. 

  2. {
    3. 

  3. 	on_load => sub {
    4. 

  4. 		my $heap = \%BotIrc::heap;
    5. 

  5. 		$heap->{websessions} = {};
    6. 

  6. 		my $ws = $heap->{websessions};
    7. 

  7. 		$heap->{websessions_cleanup} = sub {
    8. 

  8. 			for (keys %$ws) {
    9. 

  9. 				next if time() - $ws->{$_}{last_used} < $BotIrc::config->{http_sessionpurge}
    10. 

  10. 			}
    11. 

  11. 		};
    12. 

  12. 	},
    13. 

  13. 	before_unload => sub {
    14. 

  14. 		delete $BotIrc::heap{websessions};
    15. 

  15. 	},
    16. 

  16. 	control_commands => {
    17. 

  17. 		login => sub {
    18. 

  18. 			my ($client, $data, @args) = @_;
    19. 

  19. 			my $heap = $BotIrc::heap{websessions};
    20. 

  20. 			if (!exists $heap->{$args[0]}) {
    21. 

  21. 				BotCtl::send($client, "invalid");
    22. 

  22. 				return;
    23. 

  23. 			}
    24. 

  24. 			my $session = $heap->{$args[0]};
    25. 

  25. 			if (time() - $session->{last_used} > $BotIrc::config->{http_sessionexpire}) {
    26. 

  26. 				BotCtl::send($client, "expired");
    27. 

  27. 				delete $heap->{$args[0]};
    28. 

  28. 				return;
    29. 

  29. 			}
    30. 

  30. 			BotCtl::set_level($data, $session->{username});
    31. 

  31. 			$data->{session_id} = $args[0];
    32. 

  32. 			$session->{last_used} = time();
    33. 

  33. 			BotCtl::send($client, "ok", $session->{username});
    34. 

  34. 		},
    35. 

  35. 		logout => sub {
    36. 

  36. 			if (!exists $data->{session_id}) {
    37. 

  37. 				BotCtl::send($client, "invalid");
    38. 

  38. 				return;
    39. 

  39. 			}
    40. 

  40. 			delete $heap->{$data->{session_id}};
    41. 

  41. 			delete $data->{session_id};
    42. 

  42. 			BotCtl::set_level($data, "!guest");
    43. 

  43. 			BotCtl::send($client, "ok");
    44. 

  44. 		},
    45. 

  45. 	},
    46. 

  46. 	irc_commands => {
    47. 

  47. 		weblogin => sub {
    48. 

  48. 			my ($source, $targets, $args, $account) = @_;
    49. 

  49. 			BotIrc::check_ctx(authed => 1, wisdom_public => 0) or return;
    50. 

  50. 

  51. 			# evil!
    52. 

  52. 			my $auth = sha1_hex("$account:$$:".int(rand(1_000_000)).":".time());
    53. 

  53. 			$BotIrc::heap{websessions}{$auth} = {
    54. 

  54. 				username	=> lc($account),
    55. 

  55. 				last_used	=> time()
    56. 

  56. 			};
    57. 

  57. 			BotIrc::send_wisdom("Please go to $BotIrc::config->{http_loginurl}$auth to log in (session cookies must be allowed).");
    58. 

  58. 		},
    59. 

  59. 	},
    60. 

  60. };
    61. 

  61.