Emulation/nex-protocols-common-go
1
0
Fork 0
mirror of https://github.com/PretendoNetwork/nex-protocols-common-go.git synced 2025-04-02 11:02:13 -04:00
Code Issues Projects Releases Packages Wiki Activity
nex-protocols-common-go/authentication/generate_ticket.go
Jonathan Barrow 98c91bafc4 Added TODO comment to ticket generation
2022-04-17 22:02:14 -04:00

63 lines
2 KiB
Go
Raw Permalink Blame History

package authentication
import (
"crypto/rand"
"github.com/PretendoNetwork/nex-go"
)
func generateTicket(userPID uint32, targetPID uint32) ([]byte, uint32) {
if commonAuthenticationProtocol.passwordFromPIDHandler == nil {
logger.Warning("Missing passwordFromPIDHandler!")
return []byte{}, nex.Errors.Core.Unknown
}
var userPassword string
var targetPassword string
var errorCode uint32
// TODO: Maybe we should error out if the user PID is the server account?
switch userPID {
case 2: // "Quazal Rendez-Vous" (the server user) account
userPassword = commonAuthenticationProtocol.server.KerberosPassword()
case 100: // guest user account
userPassword = "MMQea3n!fsik"
default:
userPassword, errorCode = commonAuthenticationProtocol.passwordFromPIDHandler(userPID)
}
if errorCode != 0 {
return []byte{}, errorCode
}
switch targetPID {
case 2: // "Quazal Rendez-Vous" (the server user) account
targetPassword = commonAuthenticationProtocol.server.KerberosPassword()
case 100: // guest user account
targetPassword = "MMQea3n!fsik"
default:
targetPassword, errorCode = commonAuthenticationProtocol.passwordFromPIDHandler(userPID)
}
if errorCode != 0 {
return []byte{}, errorCode
}
userKey := nex.DeriveKerberosKey(userPID, []byte(userPassword))
targetKey := nex.DeriveKerberosKey(targetPID, []byte(targetPassword))
sessionKey := make([]byte, commonAuthenticationProtocol.server.KerberosKeySize())
rand.Read(sessionKey)
ticketInternalData := nex.NewKerberosTicketInternalData()
ticketInternalData.SetTimestamp(nex.NewDateTime(0)) // CHANGE THIS
ticketInternalData.SetUserPID(userPID)
ticketInternalData.SetSessionKey(sessionKey)
encryptedTicketInternalData := ticketInternalData.Encrypt(targetKey, nex.NewStreamOut(commonAuthenticationProtocol.server))
ticket := nex.NewKerberosTicket()
ticket.SetSessionKey(sessionKey)
ticket.SetTargetPID(targetPID)
ticket.SetInternalData(encryptedTicketInternalData)
return ticket.Encrypt(userKey, nex.NewStreamOut(commonAuthenticationProtocol.server)), 0
}
Reference in a new issue View git blame Copy permalink