From 4a58845211f75fc3e87dbfcac98aab1e0bbf09f0 Mon Sep 17 00:00:00 2001 From: Alexey Date: Sun, 5 Oct 2025 19:10:53 +0300 Subject: [PATCH] deledet some files --- com/Access/GetMasterAccess.lua | 77 ---------------------------------- com/Zones/GetZoneInfo.lua | 69 ------------------------------ 2 files changed, 146 deletions(-) delete mode 100644 com/Access/GetMasterAccess.lua delete mode 100644 com/Zones/GetZoneInfo.lua diff --git a/com/Access/GetMasterAccess.lua b/com/Access/GetMasterAccess.lua deleted file mode 100644 index 6a4145f..0000000 --- a/com/Access/GetMasterAccess.lua +++ /dev/null @@ -1,77 +0,0 @@ -local session = require("internal.session") -local log = require("internal.log") -local jwt = require("internal.crypt.jwt") -local bc = require("internal.crypt.bcrypt") -local db = require("internal.database.sqlite").connect("db/root.db", {log = true}) -local sha256 = require("internal.crypt.sha256") - -log.info("Someone at "..session.request.address.." trying to get master access") - -local function close_db() - if db then - db:close() - db = nil - end -end - -local params = session.request.params.get() - -local function check_missing(arr, p) - local is_missing = {} - local ok = true - for _, key in ipairs(arr) do - if p[key] == nil then - table.insert(is_missing, key) - ok = false - end - end - return ok, is_missing -end - -local ok, mp = check_missing({"master_secret", "master_name", "my_key"}, params) -if not ok then - close_db() - session.response.send_error(-32602, "Missing params", mp) -end - -if type(params.master_secret) ~= "string" then - close_db() - session.response.send_error(-32050, "Access denied") -end - -if type(params.master_name) ~= "string" then - close_db() - session.response.send_error(-32050, "Access denied") -end - -local master, err = db:query_row("SELECT * FROM master_units WHERE master_name = ?", {params.master_name}) - -if not master then - log.event("DB query failed:", err) - close_db() - session.response.send_error(-32050, "Access denied") -end - -local ok = bc.compare(master.master_secret, params.master_secret) -if not ok then - log.warn("Login failed: wrong password") - close_db() - session.response.send_error(-32050, "Access denied") -end - -local token = jwt.encode({ - secret = require("_config").token(), - payload = { - session_uuid = session.id, - master_id = master.id, - key = sha256.sum(params.my_key) - }, - expires_in = 3600 -}) - -close_db() -session.response.send({ - token = token -}) - --- G7HgOgl72o7t7u7r diff --git a/com/Zones/GetZoneInfo.lua b/com/Zones/GetZoneInfo.lua deleted file mode 100644 index 841cc52..0000000 --- a/com/Zones/GetZoneInfo.lua +++ /dev/null @@ -1,69 +0,0 @@ -local session = require("internal.session") -local log = require("internal.log") -local jwt = require("internal.crypt.jwt") -local bc = require("internal.crypt.bcrypt") -local sha256 = require("internal.crypt.sha256") -local dbdriver = require("internal.database.sqlite") - -local db_root = dbdriver.connect("db/root.db", {log = true}) -local db_zone = nil - -local function close_db() - if db_root then - db_root:close() - db_root = nil - end - if db_zone then - db_zone:close() - db_zone = nil - end -end - -local token = session.request.headers.get("authorization") - -if not token or type(token) ~= "string" then - close_db() - session.response.send_error(-32050, "Access denied") -end - -local prefix = "Bearer " -if token:sub(1, #prefix) ~= prefix then - close_db() - session.response.send_error(-32052, "Invalid Authorization scheme") -end - -local access_token = token:sub(#prefix + 1) - -local err, data = jwt.decode(access_token, { secret = require("_config").token() }) - -if err or not data then - close_db() - session.response.send_error(-32053, "Cannod parse JWT", {err}) -end - -if data.master_id then - - -end - -local params = session.request.params.get() - -local function check_missing(arr, p) - local is_missing = {} - local ok = true - for _, key in ipairs(arr) do - if p[key] == nil then - table.insert(is_missing, key) - ok = false - end - end - return ok, is_missing -end - -local ok, mp = check_missing({"zone_name"}, params) -if not ok then - close_db() - session.response.send_error(-32602, "Missing params", mp) -end - -close_db() \ No newline at end of file