Log in with Mastodon
Created by O01eg on July 31, 2024
W2AVMCLON3ANLDK6LSDEYLOLMC3VYX267ESPG4SYWJUQ2QLNWDEQC Dependencies
- [2]
5XW3RJKJK74VHJ2RRB64NL7PYKFLI6RMEUQCJYAU2CLITX5SGNRQC - [3]
HBDTKI2BJX5JI3ALM5KQTDXFTI6HY2JZHEP4D6Y23WHY4ZUCX6LQC - [4]
EKDGFVDQAKIDYILJ6FCHNCD5TF27SPUWZPNKCC3UQ4GZCJTHWDYAC - [5]
IEFJTEIIX52L5HYV7PT2NPCC4HLSJ4WUFMIKQDYUGJDO3XFBJCSQC - [6]
V47NQLKFHWLZMRGEVV2K6IBBKRSPHR672ATFGARCCM7Z7LJZKQHAC - [7]
BVCWJKEXMTMFIK3UUR6GRQYIYJK25V5IX4HWFFDRXCJMDTRAWY6QC - [8]
6NYILMKIHYQMGMCRZANU2FDO66DGINOMCX2J4JFTUI6VL3HZ6D5QC - [9]
NY766BOQIWOQUA44QDD7YKQB5GK735ZUJ3YNXXVUUE2VQZP2YWPQC - [10]
5RQCVFRHI353OFKZPVCNJLJLQPEKJVNEDCTM2224U4WABT2YLMQQC - [11]
D3RL62X5NQTWDZXMDHAXS7K5GSTCCEH7L3YT5JMTPWJON3WKRKUAC - [12]
JG2BQCRDWKCGVC56DCRBFCOXPHGT33LJ4FHWLIPOM64W6343D7CQC - [13]
V5ULHL43GPCVBOTCC4MBRG7KJ7O4QQVFAWUXLJX6E5VDMJCW6BNQC - [14]
WVHXYKCVPKAFVMXBEMD3IHG54RKOIDSOCVNR3OIPEZQG36IGYJZQC - [15]
H6GGDVHWCRHNOSL6R3CPL35CYGH5CPUXESIMTVJG6WMQCNOQMCBAC - [16]
WW3KRXX63EYWW4563QM3VSEN4PGCPR76KJQBYIKCKOCNMDG6JW4QC - [17]
HZDCKIXQ3LCD7YPL7ZZBCRMD7YMKDJ2QAALETTG3FYMBF4TNFUBAC - [18]
MCF5COULF5S6UFLIN2LN652D2ROAJGEBZN4Y3TYAQDV4OI26Y7FQC - [19]
FUCFD4UVRUXDHG24MYEHF2E5E23BIFVKTRGLNBPBVKFLONVSMHTAC - [20]
EVP2FSBHQUCAXQ6IIMBD6IS24ODKHP6HFWYCHIMYG6KOFRQG3RVQC - [21]
WEVOADLSI5FOOXBM5YPAWEIYN2CXROAQ44CLGYOVTJ2OCLSOONYQC - [22]
YDWTHWAI7RPLW3KGM32J2JVUOSFTW4WOV3XPUMNTU3MDNGMQIOZAC - [23]
BCMU6UYKFTBIYNJAZVGIQ45BXLTCL7GLW4O4HDMUTCRRWYH2ZQKAC - [24]
KDKRTAYJBTOXY75T2U5B236L3SEHC7RPCDNYD2H3JZ3ZNQD3NSEAC - [25]
MUTHALNPGO4X2H2CGG7JBQXFYNBUC2ZSZLMFPHSKQ7LAGR3ZGSBAC - [26]
MGRTVGLJX4D5YAJGKTVETEKYNLTQZRSV7EJSFWFTWQOTYXTCA2XAC - [27]
G4JCZ5F77PDA3ZLXDECLYSS76BRLSDEKU7KMILS5N57ETO2VJO6QC - [28]
KDYHFAE3GPCISJYGND4OIPAHUJNPRPEERNJIEY7WSEUCR6IE7TJAC - [29]
HDHALX3UK5VSU7WBDWSVF37QG5OBCIOLFGP5PQTGBQFOARZOKWMQC - [30]
LWCZDLBI3HN4RF6BVQMW2S7DA3YYQXRDHAXKEFZTAH57WOQZAMPQC - [31]
4MZ4VIR7FU3PQ3WKJI6TJIKYOIIBODFEPKLMQ32S4AKPZSDFO6AQC - [32]
WLWTNO4YJ4VBMJYVTP2LGPFQAJTOB524BD5INJFA44X2FKAX76DQC - [33]
3AKTNR3AY7FRYJN3ZZ7NWZ5O7S5UM726G4NGUCW4UD2LWGX5ZUXQC - [34]
BCXEUKX6RVE4UQE46ITSQY2NXYK3MJT7HHL7CJOM7T4OOOCADMIAC
In channels
main
Change contents
Replacement in src/pages/slow_game.rs at line 136 [8.625]
Replacement in src/pages/slow_game.rs at line 423 [8.625]
Replacement in src/pages/slow_game.rs at line 491 [8.625]
Replacement in src/pages/slow_game.rs at line 559 [8.625]
Replacement in src/pages/slow_game.rs at line 628 [8.625]
Replacement in src/pages/slow_game.rs at line 695 [8.625]
Replacement in src/pages/reset_game_pwd.rs at line 35 [16.597]
Replacement in src/pages/reset_game_pwd.rs at line 140 [16.597]
Replacement in src/pages/query_reset_game_pwd.rs at line 29 [17.557]
Replacement in src/pages/my.rs at line 39 [18.979]
Replacement in src/pages/mod.rs at line 82 [20.50]
Replacement in src/pages/log_in.rs at line 40 [19.2605]
Insertion in src/pages/log_in.rs at line 61 [19.2605]
fn log_in_response(player_name: &str,request: &HttpRequest,cookies_key: &actix_web::cookie::Key,set_cookie_domain: bool,base_domain: &str,) -> HttpResponse {let mut jar = request_to_jar(request);if !jar.private(cookies_key).get("i_accept_cookie").map_or(false, |x| x.value() == "yes"){return HttpResponse::Found().append_header((header::LOCATION, "cookies-policy.html")).finish();}let mut builder = cookie::Cookie::build("auth", player_name.to_lowercase()).path("/").secure(true).http_only(true).same_site(cookie::SameSite::Strict).max_age(cookie::time::Duration::weeks(4));if set_cookie_domain {builder = builder.domain(base_domain.to_string());}jar.private_mut(cookies_key).add(builder.finish());let mut response = HttpResponse::Found().append_header((header::LOCATION, "my.html")).finish();if let Some(c) = jar.get("auth") {if let Err(e) = response.add_cookie(c) {log::error!("Cann't set cookie {}", e);}}response}Deletion in src/pages/log_in.rs at line 149 [19.2605]
Replacement in src/pages/log_in.rs at line 151 [19.2605]
let mut builder = cookie::Cookie::build("auth", form.login.to_lowercase()).path("/").secure(true).http_only(true).same_site(cookie::SameSite::Strict).max_age(cookie::time::Duration::weeks(4));if data.set_cookie_domain {builder = builder.domain(data.base_domain.to_string());}jar.private_mut(&data.cookies_key).add(builder.finish());log_in_response(&form.login,&request,&data.cookies_key,data.set_cookie_domain,&data.base_domain,)}Replacement in src/pages/log_in.rs at line 160 [19.2605]
let mut response = HttpResponse::Found().append_header((header::LOCATION, "my.html")).finish();if let Some(c) = jar.get("auth") {if let Err(e) = response.add_cookie(c) {log::error!("Cann't set cookie {}", e);}}responsefn get_mastodon_redirect_url(base_proto: &str, base_domain: &str, domain: &str) -> String {format!("{}://{}/mastodon-redirect-{}.html",base_proto, base_domain, domain)Replacement in src/pages/log_in.rs at line 180 [19.2605]
Insertion in src/pages/log_in.rs at line 237 [19.2605]
Err(())}}}async fn obtain_token_mastodon(base_proto: &str,base_domain: &str,domain: &str,client_id: &str,client_secret: &str,code: &str,) -> Result<String, ()> {let client = awc::Client::default();let website_redirect = get_mastodon_redirect_url(base_proto, base_domain, domain);match client.post(format!("https://{}/oauth/token", domain)).content_type("application/x-www-form-urlencoded").send_body(format!("client_id={}&client_secret={}&redirect_uri={}&grant_type=authorization_code&code={}&scopes=read:accounts",pct_str::PctString::encode(client_id.chars(), pct_str::URIReserved).as_str(),pct_str::PctString::encode(client_secret.chars(), pct_str::URIReserved).as_str(),pct_str::PctString::encode(website_redirect.chars(), pct_str::URIReserved).as_str(),pct_str::PctString::encode(code.chars(), pct_str::URIReserved).as_str())).await {Ok(mut resp) => match resp.json::<serde_json::Value>().await {Ok(serde_json::Value::Object(resp_value_obj)) => {let access_token_value = resp_value_obj.get("access_token");if let Some(serde_json::Value::String(access_token)) = access_token_value {Ok(access_token.clone())} else {log::error!("Mastodon domain {} login failed missing fields JSON {:?}",domain,resp_value_obj);Err(())}}Ok(resp_value) => {log::error!("Mastodon domain {} login failed non-object JSON {:?}",domain,resp_value);Err(())}Err(err) => {log::error!("Mastodon domain {} login failed JSON {:?}",domain,err);Err(())}}Err(err) => {log::error!("Mastodon domain {} login failed {:?}",domain,err);Err(())}}}async fn check_token_mastodon(domain: &str, token: &str) -> Result<String, ()> {let client = awc::Client::default();match client.get(format!("https://{}/api/v1/accounts/verify_credentials",domain)).insert_header(("Authorization", format!("Bearer {}", token))).send().await{Ok(mut resp) => match resp.json::<serde_json::Value>().await {Ok(serde_json::Value::Object(resp_value_obj)) => {let username_value = resp_value_obj.get("username");if let Some(serde_json::Value::String(username)) = username_value {Ok(username.clone())} else {log::error!("Mastodon domain {} login failed missing fields JSON {:?}",domain,resp_value_obj);Err(())}}Ok(resp_value) => {log::error!("Mastodon domain {} login failed non-object JSON {:?}",domain,resp_value);Err(())}Err(err) => {log::error!("Mastodon domain {} login failed JSON {:?}", domain, err);Err(())}},Err(err) => {log::error!("Mastodon domain {} login failed {:?}", domain, err);Insertion in src/pages/log_in.rs at line 348 [19.2605]
}async fn player_name_by_mastodon(dbclient: &deadpool::managed::Object<deadpool_postgres::Manager>,user: &str,domain: &str,) -> Result<Option<String>, ()> {let stmt = match dbclient.prepare("select player_name from auth.contacts where protocol = 'mastodon' and is_active = true and delete_ts is null and address = $1 limit 1;").await {Ok(stmt) => stmt,Err(e) => {log::error!("Pool RO statement error {}", e);return Err(())}};let address = format!("{}@{}", user, domain);let rows = match dbclient.query_opt(&stmt, &[&address]).await {Ok(rows) => rows,Err(e) => {log::error!("Pool RO query error {}", e);return Err(());}};let row = match rows {Some(row) => row,None => {return Ok(None);}};Ok(Some(row.get::<_, String>(0)))Replacement in src/pages/log_in.rs at line 413 [19.2605]
let stmt = match dbclient.prepare("select player_name from auth.contacts where protocol = 'mastodon' and is_active = true and delete_ts is null and address = $1 limit 1;").await {Ok(stmt) => stmt,Err(e) => {log::error!("Pool RO statement error {}", e);return HttpResponse::ServiceUnavailable().body(actix_web::body::None::new());let player_name = match player_name_by_mastodon(&dbclient, &user, &domain).await {Ok(Some(player_name)) => player_name,Ok(None) => {return HttpResponse::NotFound().body("Not found");Replacement in src/pages/log_in.rs at line 419 [19.2605]
Deletion in src/pages/log_in.rs at line 423 [19.2605]
Deletion in src/pages/log_in.rs at line 424 [19.2605]
Replacement in src/pages/log_in.rs at line 547 [19.2605]
let website = format!("{}://{}/", data.base_proto, data.base_domain);let website_redirect = format!("{}mastodon-redirect-{}.html", website, domain);let location = format!("https://{}/oauth/authorize?client_id={}&scope=read:accounts&redirect_uri={}&response_type=code", domain, pct_str::PctString::encode(client_id.chars(), pct_str::URIReserved).as_str(), pct_str::PctString::encode(website_redirect.chars(), pct_str::URIReserved).as_str());let website_redirect = get_mastodon_redirect_url(&data.base_proto, &data.base_domain, &domain);let location = format!("https://{}/oauth/authorize?client_id={}&scope=read:accounts&redirect_uri={}&response_type=code",domain,pct_str::PctString::encode(client_id.chars(), pct_str::URIReserved).as_str(),pct_str::PctString::encode(website_redirect.chars(), pct_str::URIReserved).as_str(),);Insertion in src/pages/log_in.rs at line 556 [19.2605]
}#[actix_web::get("/mastodon-redirect-{domain}.html")]pub async fn get_log_in_mastodon_redirect(req: HttpRequest,domain: web::Path<String>,data: web::Data<WebData<'_>>,data_ro: web::Data<DataBaseRo>,) -> HttpResponse {let domain = domain.into_inner();let domain = match domain.char_indices().nth(128) {None => domain,Some((idx, _)) => domain[..idx].to_string(),};let mut code = None;for params in req.query_string().split('&') {if let Some((k, v)) = params.split_once('=') {if k == "code" {code = Some(v);}}}let code = match code {Some(r) => r,None => {log::warn!("Mastodon not redirected with code in {}",req.query_string());return HttpResponse::BadRequest().body("Incorrect query");}};let dbclient = match data_ro.0.get().await {Ok(client) => client,Err(e) => {log::error!("{}", e);return HttpResponse::ServiceUnavailable().body(actix_web::body::None::new());}};let stmt = match dbclient.prepare("select client_id, client_secret from auth.mastodon_apps where domain = $1;").await{Ok(stmt) => stmt,Err(e) => {log::error!("{}", e);return HttpResponse::ServiceUnavailable().body(actix_web::body::None::new());}};let rows = match dbclient.query_opt(&stmt, &[&domain]).await {Ok(rows) => rows,Err(e) => {log::error!("Pool RO query error {}", e);return HttpResponse::ServiceUnavailable().body(actix_web::body::None::new());}};let row = match rows {Some(r) => r,None => {return HttpResponse::NotFound().body("Not found");}};let opt_client_id = row.get::<_, Option<&str>>(0);let opt_client_secret = row.get::<_, Option<&str>>(1);if let (Some(client_id), Some(client_secret)) = (opt_client_id, opt_client_secret) {match obtain_token_mastodon(&data.base_proto,&data.base_domain,&domain,client_id,client_secret,code,).await{Ok(token) => match check_token_mastodon(&domain, &token).await {Ok(user) => match player_name_by_mastodon(&dbclient, &user, &domain).await {Ok(Some(player_name)) => log_in_response(&player_name,&req,&data.cookies_key,data.set_cookie_domain,&data.base_domain,),Ok(None) => HttpResponse::NotFound().body("Not found"),Err(()) => {HttpResponse::ServiceUnavailable().body(actix_web::body::None::new())}},Err(()) => HttpResponse::NotFound().body("Not found"),},Err(()) => HttpResponse::NotFound().body("Not found"),}} else {log::warn!("Missing mastodon client data for domain {}", domain);HttpResponse::NotFound().body("Not found")}Replacement in src/pages/index.rs at line 14 [20.100]
Replacement in src/pages/cookies_policy.rs at line 14 [29.788]
Replacement in src/pages/cookies_policy.rs at line 37 [29.788]
Replacement in src/main.rs at line 16 [31.17]
Insertion in src/main.rs at line 302 [31.17]
Insertion in Cargo.toml at line 21 [31.77]
Insertion in Cargo.lock at line 869 [34.8513]