@@ -0,0 +1,88 @@
|
||||
package login
|
||||
|
||||
import (
|
||||
"encoding/base64"
|
||||
"errors"
|
||||
"honoka-chan/internal/middleware"
|
||||
"honoka-chan/internal/router"
|
||||
loginschema "honoka-chan/internal/schema/login"
|
||||
"honoka-chan/internal/session"
|
||||
"honoka-chan/pkg/db"
|
||||
"honoka-chan/pkg/encrypt"
|
||||
honokautils "honoka-chan/pkg/utils"
|
||||
"strconv"
|
||||
"time"
|
||||
|
||||
"github.com/gin-gonic/gin"
|
||||
"github.com/tidwall/gjson"
|
||||
)
|
||||
|
||||
func login(ctx *gin.Context) {
|
||||
ss := session.Get(ctx)
|
||||
defer ss.Finalize()
|
||||
|
||||
authData, err := db.Ldb.Get([]byte(ctx.MustGet("token").(string)))
|
||||
if ss.CheckErr(err) {
|
||||
return
|
||||
}
|
||||
|
||||
clientToken, err := base64.StdEncoding.DecodeString(gjson.Get(string(authData), "client_token").String())
|
||||
if ss.CheckErr(err) {
|
||||
return
|
||||
}
|
||||
serverToken, err := base64.StdEncoding.DecodeString(gjson.Get(string(authData), "server_token").String())
|
||||
if ss.CheckErr(err) {
|
||||
return
|
||||
}
|
||||
|
||||
xmcKey := honokautils.XOR(clientToken, serverToken)
|
||||
aesKey := xmcKey[0:16]
|
||||
|
||||
reqData := gjson.Parse(ctx.MustGet("request_data").(string))
|
||||
key, err := base64.StdEncoding.DecodeString(reqData.Get("login_key").String())
|
||||
if ss.CheckErr(err) {
|
||||
return
|
||||
}
|
||||
loginKey := encrypt.AESCBCDecrypt(key, aesKey)[16:]
|
||||
// fmt.Println("loginKey", string(loginKey))
|
||||
|
||||
// password, err := base64.StdEncoding.DecodeString(reqData.Get("login_passwd").String())
|
||||
// if ss.CheckErr(err) {
|
||||
// return
|
||||
// }
|
||||
// loginPasswd := encrypt.AESCBCDecrypt(password, aesKey)[16:]
|
||||
// fmt.Println("loginPasswd", string(loginPasswd))
|
||||
|
||||
authorizeToken := base64.StdEncoding.EncodeToString([]byte(honokautils.RandomStr(32)))
|
||||
|
||||
var userID int // 需要更新为字符串
|
||||
exists, err := ss.UserEng.Table("user_key").Where("key = ?", string(loginKey)).Cols("user_id").Get(&userID)
|
||||
if ss.CheckErr(err) {
|
||||
return
|
||||
}
|
||||
|
||||
if !exists || userID == 0 {
|
||||
ss.Abort(errors.New("invalid user"))
|
||||
return
|
||||
}
|
||||
|
||||
err = db.Ldb.Set([]byte(strconv.Itoa(userID)), []byte(authorizeToken))
|
||||
if ss.CheckErr(err) {
|
||||
return
|
||||
}
|
||||
|
||||
ss.Respond(loginschema.LoginResp{
|
||||
ResponseData: loginschema.LoginData{
|
||||
AuthorizeToken: authorizeToken,
|
||||
UserId: userID,
|
||||
ServerTimestamp: time.Now().Unix(),
|
||||
AdultFlag: 2,
|
||||
},
|
||||
ReleaseInfo: []any{},
|
||||
StatusCode: 200,
|
||||
})
|
||||
}
|
||||
|
||||
func init() {
|
||||
router.AddHandler("main.php", "POST", "/login/login", middleware.Common, login)
|
||||
}
|
||||
Reference in New Issue
Block a user