mirror
/
oragono
kopie van https://github.com/oragono/oragono
Volgen 1
Ster 0
Vork 0
Code Kwesties 0 Publicaties 67 Wiki Activiteit
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2631 Commits
19 Branches
Tree: ef161c47ed
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van 'ef161c47ed'
${ noResults }
oragono/irc/hostserv.go

hostserv.go 14KB
Geschiedenis Ruw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428 
  1. // Copyright (c) 2018 Shivaram Lingamneni <slingamn@cs.stanford.edu>

  2. // released under the MIT license

  3. 

  4. package irc

  5. 

  6. import (

  7. 	"errors"

  8. 	"fmt"

  9. 	"regexp"

  10. 	"time"

  11. 

  12. 	"github.com/oragono/oragono/irc/sno"

  13. )

  14. 

  15. const hostservHelp = `HostServ lets you manage your vhost (i.e., the string displayed

  16. in place of your client's hostname/IP).`

  17. 

  18. var (

  19. 	errVHostBadCharacters = errors.New("Vhost contains prohibited characters")

  20. 	errVHostTooLong       = errors.New("Vhost is too long")

  21. 	// ascii only for now

  22. 	defaultValidVhostRegex = regexp.MustCompile(`^[0-9A-Za-z.\-_/]+$`)

  23. )

  24. 

  25. func hostservEnabled(config *Config) bool {

  26. 	return config.Accounts.VHosts.Enabled

  27. }

  28. 

  29. func hostservRequestsEnabled(config *Config) bool {

  30. 	return config.Accounts.VHosts.Enabled && config.Accounts.VHosts.UserRequests.Enabled

  31. }

  32. 

  33. var (

  34. 	hostservCommands = map[string]*serviceCommand{

  35. 		"on": {

  36. 			handler: hsOnOffHandler,

  37. 			help: `Syntax: $bON$b

  38. 

  39. ON enables your vhost, if you have one approved.`,

  40. 			helpShort:    `$bON$b enables your vhost, if you have one approved.`,

  41. 			authRequired: true,

  42. 			enabled:      hostservEnabled,

  43. 		},

  44. 		"off": {

  45. 			handler: hsOnOffHandler,

  46. 			help: `Syntax: $bOFF$b

  47. 

  48. OFF disables your vhost, if you have one approved.`,

  49. 			helpShort:    `$bOFF$b disables your vhost, if you have one approved.`,

  50. 			authRequired: true,

  51. 			enabled:      hostservEnabled,

  52. 		},

  53. 		"request": {

  54. 			handler: hsRequestHandler,

  55. 			help: `Syntax: $bREQUEST <vhost>$b

  56. 

  57. REQUEST requests that a new vhost by assigned to your account. The request must

  58. then be approved by a server operator.`,

  59. 			helpShort:    `$bREQUEST$b requests a new vhost, pending operator approval.`,

  60. 			authRequired: true,

  61. 			enabled:      hostservRequestsEnabled,

  62. 			minParams:    1,

  63. 		},

  64. 		"status": {

  65. 			handler: hsStatusHandler,

  66. 			help: `Syntax: $bSTATUS [user]$b

  67. 

  68. STATUS displays your current vhost, if any, and the status of your most recent

  69. request for a new one. A server operator can view someone else's status.`,

  70. 			helpShort: `$bSTATUS$b shows your vhost and request status.`,

  71. 			enabled:   hostservEnabled,

  72. 		},

  73. 		"set": {

  74. 			handler: hsSetHandler,

  75. 			help: `Syntax: $bSET <user> <vhost>$b

  76. 

  77. SET sets a user's vhost, bypassing the request system.`,

  78. 			helpShort: `$bSET$b sets a user's vhost.`,

  79. 			capabs:    []string{"vhosts"},

  80. 			enabled:   hostservEnabled,

  81. 			minParams: 2,

  82. 		},

  83. 		"del": {

  84. 			handler: hsSetHandler,

  85. 			help: `Syntax: $bDEL <user>$b

  86. 

  87. DEL deletes a user's vhost.`,

  88. 			helpShort: `$bDEL$b deletes a user's vhost.`,

  89. 			capabs:    []string{"vhosts"},

  90. 			enabled:   hostservEnabled,

  91. 			minParams: 1,

  92. 		},

  93. 		"waiting": {

  94. 			handler: hsWaitingHandler,

  95. 			help: `Syntax: $bWAITING$b

  96. 

  97. WAITING shows a list of pending vhost requests, which can then be approved

  98. or rejected.`,

  99. 			helpShort: `$bWAITING$b shows a list of pending vhost requests.`,

  100. 			capabs:    []string{"vhosts"},

  101. 			enabled:   hostservEnabled,

  102. 		},

  103. 		"approve": {

  104. 			handler: hsApproveHandler,

  105. 			help: `Syntax: $bAPPROVE <user>$b

  106. 

  107. APPROVE approves a user's vhost request.`,

  108. 			helpShort: `$bAPPROVE$b approves a user's vhost request.`,

  109. 			capabs:    []string{"vhosts"},

  110. 			enabled:   hostservEnabled,

  111. 			minParams: 1,

  112. 		},

  113. 		"reject": {

  114. 			handler: hsRejectHandler,

  115. 			help: `Syntax: $bREJECT <user> [<reason>]$b

  116. 

  117. REJECT rejects a user's vhost request, optionally giving them a reason

  118. for the rejection.`,

  119. 			helpShort:         `$bREJECT$b rejects a user's vhost request.`,

  120. 			capabs:            []string{"vhosts"},

  121. 			enabled:           hostservEnabled,

  122. 			minParams:         1,

  123. 			maxParams:         2,

  124. 			unsplitFinalParam: true,

  125. 		},

  126. 		"forbid": {

  127. 			handler: hsForbidHandler,

  128. 			help: `Syntax: $bFORBID <user>$b

  129. 

  130. FORBID prevents a user from using any vhost, including ones on the offer list.`,

  131. 			helpShort: `$bFORBID$b prevents a user from using vhosts.`,

  132. 			capabs:    []string{"vhosts"},

  133. 			enabled:   hostservEnabled,

  134. 			minParams: 1,

  135. 			maxParams: 1,

  136. 		},

  137. 		"permit": {

  138. 			handler: hsForbidHandler,

  139. 			help: `Syntax: $bPERMIT <user>$b

  140. 

  141. PERMIT undoes FORBID, allowing the user to TAKE vhosts again.`,

  142. 			helpShort: `$bPERMIT$b allows a user to use vhosts again.`,

  143. 			capabs:    []string{"vhosts"},

  144. 			enabled:   hostservEnabled,

  145. 			minParams: 1,

  146. 			maxParams: 1,

  147. 		},

  148. 		"offerlist": {

  149. 			handler: hsOfferListHandler,

  150. 			help: `Syntax: $bOFFERLIST$b

  151. 

  152. OFFERLIST lists vhosts that can be chosen without requiring operator approval;

  153. to use one of the listed vhosts, take it with /HOSTSERV TAKE.`,

  154. 			helpShort: `$bOFFERLIST$b lists vhosts that can be taken without operator approval.`,

  155. 			enabled:   hostservEnabled,

  156. 			minParams: 0,

  157. 			maxParams: 0,

  158. 		},

  159. 		"take": {

  160. 			handler: hsTakeHandler,

  161. 			help: `Syntax: $bTAKE$b <vhost>

  162. 

  163. TAKE sets your vhost to one of the vhosts in the server's offer list; to see

  164. the offered vhosts, use /HOSTSERV OFFERLIST.`,

  165. 			helpShort:    `$bTAKE$b sets your vhost to one of the options from the offer list.`,

  166. 			enabled:      hostservEnabled,

  167. 			authRequired: true,

  168. 			minParams:    1,

  169. 			maxParams:    1,

  170. 		},

  171. 	}

  172. )

  173. 

  174. // hsNotice sends the client a notice from HostServ

  175. func hsNotice(rb *ResponseBuffer, text string) {

  176. 	rb.Add(nil, "HostServ!HostServ@localhost", "NOTICE", rb.target.Nick(), text)

  177. }

  178. 

  179. // hsNotifyChannel notifies the designated channel of new vhost activity

  180. func hsNotifyChannel(server *Server, message string) {

  181. 	chname := server.AccountConfig().VHosts.UserRequests.Channel

  182. 	channel := server.channels.Get(chname)

  183. 	if channel == nil {

  184. 		return

  185. 	}

  186. 	chname = channel.Name()

  187. 	for _, client := range channel.Members() {

  188. 		client.Send(nil, "HostServ", "PRIVMSG", chname, message)

  189. 	}

  190. }

  191. 

  192. func hsOnOffHandler(server *Server, client *Client, command string, params []string, rb *ResponseBuffer) {

  193. 	enable := false

  194. 	if command == "on" {

  195. 		enable = true

  196. 	}

  197. 

  198. 	_, err := server.accounts.VHostSetEnabled(client, enable)

  199. 	if err == errNoVhost {

  200. 		hsNotice(rb, client.t(err.Error()))

  201. 	} else if err != nil {

  202. 		hsNotice(rb, client.t("An error occurred"))

  203. 	} else if enable {

  204. 		hsNotice(rb, client.t("Successfully enabled your vhost"))

  205. 	} else {

  206. 		hsNotice(rb, client.t("Successfully disabled your vhost"))

  207. 	}

  208. }

  209. 

  210. func hsRequestHandler(server *Server, client *Client, command string, params []string, rb *ResponseBuffer) {

  211. 	vhost := params[0]

  212. 	if validateVhost(server, vhost, false) != nil {

  213. 		hsNotice(rb, client.t("Invalid vhost"))

  214. 		return

  215. 	}

  216. 

  217. 	accountName := client.Account()

  218. 	_, err := server.accounts.VHostRequest(accountName, vhost, time.Duration(server.Config().Accounts.VHosts.UserRequests.Cooldown))

  219. 	if err != nil {

  220. 		if throttled, ok := err.(*vhostThrottleExceeded); ok {

  221. 			hsNotice(rb, fmt.Sprintf(client.t("You must wait an additional %v before making another request"), throttled.timeRemaining))

  222. 		} else if err == errVhostsForbidden {

  223. 			hsNotice(rb, client.t("An administrator has denied you the ability to use vhosts"))

  224. 		} else {

  225. 			hsNotice(rb, client.t("An error occurred"))

  226. 		}

  227. 	} else {

  228. 		hsNotice(rb, client.t("Your vhost request will be reviewed by an administrator"))

  229. 		chanMsg := fmt.Sprintf("Account %s requests vhost %s", accountName, vhost)

  230. 		hsNotifyChannel(server, chanMsg)

  231. 		server.snomasks.Send(sno.LocalVhosts, chanMsg)

  232. 	}

  233. }

  234. 

  235. func hsStatusHandler(server *Server, client *Client, command string, params []string, rb *ResponseBuffer) {

  236. 	var accountName string

  237. 	if len(params) > 0 {

  238. 		if !client.HasRoleCapabs("vhosts") {

  239. 			hsNotice(rb, client.t("Command restricted"))

  240. 			return

  241. 		}

  242. 		accountName = params[0]

  243. 	} else {

  244. 		accountName = client.Account()

  245. 		if accountName == "" {

  246. 			hsNotice(rb, client.t("You're not logged into an account"))

  247. 			return

  248. 		}

  249. 	}

  250. 

  251. 	account, err := server.accounts.LoadAccount(accountName)

  252. 	if err != nil {

  253. 		if err != errAccountDoesNotExist {

  254. 			server.logger.Warning("internal", "error loading account info", accountName, err.Error())

  255. 		}

  256. 		hsNotice(rb, client.t("No such account"))

  257. 		return

  258. 	}

  259. 

  260. 	if account.VHost.Forbidden {

  261. 		hsNotice(rb, client.t("An administrator has denied you the ability to use vhosts"))

  262. 		return

  263. 	}

  264. 

  265. 	if account.VHost.ApprovedVHost != "" {

  266. 		hsNotice(rb, fmt.Sprintf(client.t("Account %[1]s has vhost: %[2]s"), accountName, account.VHost.ApprovedVHost))

  267. 		if !account.VHost.Enabled {

  268. 			hsNotice(rb, client.t("This vhost is currently disabled, but can be enabled with /HS ON"))

  269. 		}

  270. 	} else {

  271. 		hsNotice(rb, fmt.Sprintf(client.t("Account %s has no vhost"), accountName))

  272. 	}

  273. 	if account.VHost.RequestedVHost != "" {

  274. 		hsNotice(rb, fmt.Sprintf(client.t("A request is pending for vhost: %s"), account.VHost.RequestedVHost))

  275. 	}

  276. 	if account.VHost.RejectedVHost != "" {

  277. 		hsNotice(rb, fmt.Sprintf(client.t("A request was previously made for vhost: %s"), account.VHost.RejectedVHost))

  278. 		hsNotice(rb, fmt.Sprintf(client.t("It was rejected for reason: %s"), account.VHost.RejectionReason))

  279. 	}

  280. }

  281. 

  282. func validateVhost(server *Server, vhost string, oper bool) error {

  283. 	ac := server.AccountConfig()

  284. 	if len(vhost) > ac.VHosts.MaxLength {

  285. 		return errVHostTooLong

  286. 	}

  287. 	if !ac.VHosts.ValidRegexp.MatchString(vhost) {

  288. 		return errVHostBadCharacters

  289. 	}

  290. 	return nil

  291. }

  292. 

  293. func hsSetHandler(server *Server, client *Client, command string, params []string, rb *ResponseBuffer) {

  294. 	user := params[0]

  295. 	var vhost string

  296. 

  297. 	if command == "set" {

  298. 		vhost = params[1]

  299. 		if validateVhost(server, vhost, true) != nil {

  300. 			hsNotice(rb, client.t("Invalid vhost"))

  301. 			return

  302. 		}

  303. 	}

  304. 	// else: command == "del", vhost == ""

  305. 

  306. 	_, err := server.accounts.VHostSet(user, vhost)

  307. 	if err != nil {

  308. 		hsNotice(rb, client.t("An error occurred"))

  309. 	} else if vhost != "" {

  310. 		hsNotice(rb, client.t("Successfully set vhost"))

  311. 	} else {

  312. 		hsNotice(rb, client.t("Successfully cleared vhost"))

  313. 	}

  314. }

  315. 

  316. func hsWaitingHandler(server *Server, client *Client, command string, params []string, rb *ResponseBuffer) {

  317. 	requests, total := server.accounts.VHostListRequests(10)

  318. 	hsNotice(rb, fmt.Sprintf(client.t("There are %[1]d pending requests for vhosts (%[2]d displayed)"), total, len(requests)))

  319. 	for i, request := range requests {

  320. 		hsNotice(rb, fmt.Sprintf(client.t("%[1]d. User %[2]s requests vhost: %[3]s"), i+1, request.Account, request.RequestedVHost))

  321. 	}

  322. }

  323. 

  324. func hsApproveHandler(server *Server, client *Client, command string, params []string, rb *ResponseBuffer) {

  325. 	user := params[0]

  326. 

  327. 	vhostInfo, err := server.accounts.VHostApprove(user)

  328. 	if err != nil {

  329. 		hsNotice(rb, client.t("An error occurred"))

  330. 	} else {

  331. 		hsNotice(rb, fmt.Sprintf(client.t("Successfully approved vhost request for %s"), user))

  332. 		chanMsg := fmt.Sprintf("Oper %[1]s approved vhost %[2]s for account %[3]s", client.Nick(), vhostInfo.ApprovedVHost, user)

  333. 		hsNotifyChannel(server, chanMsg)

  334. 		server.snomasks.Send(sno.LocalVhosts, chanMsg)

  335. 		for _, client := range server.accounts.AccountToClients(user) {

  336. 			client.Notice(client.t("Your vhost request was approved by an administrator"))

  337. 		}

  338. 	}

  339. }

  340. 

  341. func hsRejectHandler(server *Server, client *Client, command string, params []string, rb *ResponseBuffer) {

  342. 	var reason string

  343. 	user := params[0]

  344. 	if len(params) > 1 {

  345. 		reason = params[1]

  346. 	}

  347. 

  348. 	vhostInfo, err := server.accounts.VHostReject(user, reason)

  349. 	if err != nil {

  350. 		hsNotice(rb, client.t("An error occurred"))

  351. 	} else {

  352. 		hsNotice(rb, fmt.Sprintf(client.t("Successfully rejected vhost request for %s"), user))

  353. 		chanMsg := fmt.Sprintf("Oper %s rejected vhost %s for account %s, with the reason: %v", client.Nick(), vhostInfo.RejectedVHost, user, reason)

  354. 		hsNotifyChannel(server, chanMsg)

  355. 		server.snomasks.Send(sno.LocalVhosts, chanMsg)

  356. 		for _, client := range server.accounts.AccountToClients(user) {

  357. 			if reason == "" {

  358. 				client.Notice("Your vhost request was rejected by an administrator")

  359. 			} else {

  360. 				client.Notice(fmt.Sprintf(client.t("Your vhost request was rejected by an administrator. The reason given was: %s"), reason))

  361. 			}

  362. 		}

  363. 	}

  364. }

  365. 

  366. func hsForbidHandler(server *Server, client *Client, command string, params []string, rb *ResponseBuffer) {

  367. 	user := params[0]

  368. 	forbidden := command == "forbid"

  369. 

  370. 	_, err := server.accounts.VHostForbid(user, forbidden)

  371. 	if err == errAccountDoesNotExist {

  372. 		hsNotice(rb, client.t("No such account"))

  373. 	} else if err != nil {

  374. 		hsNotice(rb, client.t("An error occurred"))

  375. 	} else {

  376. 		if forbidden {

  377. 			hsNotice(rb, fmt.Sprintf(client.t("User %s is no longer allowed to use vhosts"), user))

  378. 		} else {

  379. 			hsNotice(rb, fmt.Sprintf(client.t("User %s is now allowed to use vhosts"), user))

  380. 		}

  381. 	}

  382. }

  383. 

  384. func hsOfferListHandler(server *Server, client *Client, command string, params []string, rb *ResponseBuffer) {

  385. 	vhostConfig := server.Config().Accounts.VHosts

  386. 	if len(vhostConfig.OfferList) == 0 {

  387. 		if vhostConfig.UserRequests.Enabled {

  388. 			hsNotice(rb, client.t("The server does not offer any vhosts, but you can request one with /HOSTSERV REQUEST"))

  389. 		} else {

  390. 			hsNotice(rb, client.t("The server does not offer any vhosts"))

  391. 		}

  392. 	} else {

  393. 		hsNotice(rb, client.t("The following vhosts are available and can be chosen with /HOSTSERV TAKE:"))

  394. 		for _, vhost := range vhostConfig.OfferList {

  395. 			hsNotice(rb, vhost)

  396. 		}

  397. 	}

  398. }

  399. 

  400. func hsTakeHandler(server *Server, client *Client, command string, params []string, rb *ResponseBuffer) {

  401. 	config := server.Config()

  402. 	vhost := params[0]

  403. 	found := false

  404. 	for _, offered := range config.Accounts.VHosts.OfferList {

  405. 		if offered == vhost {

  406. 			found = true

  407. 		}

  408. 	}

  409. 	if !found {

  410. 		hsNotice(rb, client.t("That vhost isn't being offered by the server"))

  411. 		return

  412. 	}

  413. 

  414. 	account := client.Account()

  415. 	_, err := server.accounts.VHostTake(account, vhost, time.Duration(config.Accounts.VHosts.UserRequests.Cooldown))

  416. 	if err != nil {

  417. 		if throttled, ok := err.(*vhostThrottleExceeded); ok {

  418. 			hsNotice(rb, fmt.Sprintf(client.t("You must wait an additional %v before taking a vhost"), throttled.timeRemaining))

  419. 		} else if err == errVhostsForbidden {

  420. 			hsNotice(rb, client.t("An administrator has denied you the ability to use vhosts"))

  421. 		} else {

  422. 			hsNotice(rb, client.t("An error occurred"))

  423. 		}

  424. 	} else {

  425. 		hsNotice(rb, client.t("Successfully set vhost"))

  426. 		server.snomasks.Send(sno.LocalVhosts, fmt.Sprintf("Client %s (account %s) took vhost %s", client.Nick(), account, vhost))

  427. 	}

  428. }