2010-01-17 16:42:08 +00:00
|
|
|
|
/*
|
|
|
|
|
* Copyright (c) Contributors, http://opensimulator.org/
|
|
|
|
|
* See CONTRIBUTORS.TXT for a full list of copyright holders.
|
|
|
|
|
*
|
|
|
|
|
* Redistribution and use in source and binary forms, with or without
|
|
|
|
|
* modification, are permitted provided that the following conditions are met:
|
|
|
|
|
* * Redistributions of source code must retain the above copyright
|
|
|
|
|
* notice, this list of conditions and the following disclaimer.
|
|
|
|
|
* * Redistributions in binary form must reproduce the above copyright
|
|
|
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
|
|
|
* documentation and/or other materials provided with the distribution.
|
|
|
|
|
* * Neither the name of the OpenSimulator Project nor the
|
|
|
|
|
* names of its contributors may be used to endorse or promote products
|
|
|
|
|
* derived from this software without specific prior written permission.
|
|
|
|
|
*
|
|
|
|
|
* THIS SOFTWARE IS PROVIDED BY THE DEVELOPERS ``AS IS'' AND ANY
|
|
|
|
|
* EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
|
|
|
|
|
* WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
|
|
|
|
|
* DISCLAIMED. IN NO EVENT SHALL THE CONTRIBUTORS BE LIABLE FOR ANY
|
|
|
|
|
* DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
|
|
|
|
|
* (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
|
|
|
|
|
* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
|
|
|
|
|
* ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
|
|
|
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
|
|
|
|
|
* SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
using System;
|
2010-01-17 05:42:44 +00:00
|
|
|
|
using System.Collections.Generic;
|
2010-01-19 00:34:23 +00:00
|
|
|
|
using System.Net;
|
2010-01-17 05:42:44 +00:00
|
|
|
|
using System.Reflection;
|
|
|
|
|
|
|
|
|
|
using OpenSim.Framework;
|
|
|
|
|
using OpenSim.Services.Interfaces;
|
|
|
|
|
using GridRegion = OpenSim.Services.Interfaces.GridRegion;
|
|
|
|
|
using OpenSim.Server.Base;
|
|
|
|
|
|
|
|
|
|
using OpenMetaverse;
|
|
|
|
|
|
|
|
|
|
using Nini.Config;
|
|
|
|
|
using log4net;
|
|
|
|
|
|
|
|
|
|
namespace OpenSim.Services.HypergridService
|
|
|
|
|
{
|
|
|
|
|
public class GatekeeperService : IGatekeeperService
|
|
|
|
|
{
|
|
|
|
|
private static readonly ILog m_log =
|
|
|
|
|
LogManager.GetLogger(
|
|
|
|
|
MethodBase.GetCurrentMethod().DeclaringType);
|
|
|
|
|
|
|
|
|
|
IGridService m_GridService;
|
|
|
|
|
IPresenceService m_PresenceService;
|
|
|
|
|
IAuthenticationService m_AuthenticationService;
|
|
|
|
|
IUserAccountService m_UserAccountService;
|
2010-01-19 00:34:23 +00:00
|
|
|
|
IHomeUsersSecurityService m_HomeUsersSecurityService;
|
2010-01-17 05:42:44 +00:00
|
|
|
|
ISimulationService m_SimulationService;
|
|
|
|
|
|
|
|
|
|
string m_AuthDll;
|
|
|
|
|
|
|
|
|
|
UUID m_ScopeID;
|
|
|
|
|
bool m_AllowTeleportsToAnyRegion;
|
2010-01-27 16:00:29 +00:00
|
|
|
|
string m_ExternalName;
|
2010-01-17 05:42:44 +00:00
|
|
|
|
GridRegion m_DefaultGatewayRegion;
|
|
|
|
|
|
|
|
|
|
public GatekeeperService(IConfigSource config, ISimulationService simService)
|
|
|
|
|
{
|
|
|
|
|
IConfig serverConfig = config.Configs["GatekeeperService"];
|
|
|
|
|
if (serverConfig == null)
|
|
|
|
|
throw new Exception(String.Format("No section GatekeeperService in config file"));
|
|
|
|
|
|
|
|
|
|
string accountService = serverConfig.GetString("UserAccountService", String.Empty);
|
2010-01-19 00:34:23 +00:00
|
|
|
|
string homeUsersSecurityService = serverConfig.GetString("HomeUsersSecurityService", string.Empty);
|
2010-01-17 05:42:44 +00:00
|
|
|
|
string gridService = serverConfig.GetString("GridService", String.Empty);
|
|
|
|
|
string presenceService = serverConfig.GetString("PresenceService", String.Empty);
|
|
|
|
|
string simulationService = serverConfig.GetString("SimulationService", String.Empty);
|
|
|
|
|
|
|
|
|
|
m_AuthDll = serverConfig.GetString("AuthenticationService", String.Empty);
|
|
|
|
|
|
2010-01-19 00:34:23 +00:00
|
|
|
|
// These 3 are mandatory, the others aren't
|
|
|
|
|
if (gridService == string.Empty || presenceService == string.Empty || m_AuthDll == string.Empty)
|
2010-01-17 05:42:44 +00:00
|
|
|
|
throw new Exception("Incomplete specifications, Gatekeeper Service cannot function.");
|
|
|
|
|
|
|
|
|
|
string scope = serverConfig.GetString("ScopeID", UUID.Zero.ToString());
|
|
|
|
|
UUID.TryParse(scope, out m_ScopeID);
|
|
|
|
|
//m_WelcomeMessage = serverConfig.GetString("WelcomeMessage", "Welcome to OpenSim!");
|
|
|
|
|
m_AllowTeleportsToAnyRegion = serverConfig.GetBoolean("AllowTeleportsToAnyRegion", true);
|
2010-01-27 16:00:29 +00:00
|
|
|
|
m_ExternalName = serverConfig.GetString("ExternalName", string.Empty);
|
2010-01-17 05:42:44 +00:00
|
|
|
|
|
|
|
|
|
Object[] args = new Object[] { config };
|
|
|
|
|
m_GridService = ServerUtils.LoadPlugin<IGridService>(gridService, args);
|
|
|
|
|
m_PresenceService = ServerUtils.LoadPlugin<IPresenceService>(presenceService, args);
|
2010-01-19 00:34:23 +00:00
|
|
|
|
|
|
|
|
|
if (accountService != string.Empty)
|
|
|
|
|
m_UserAccountService = ServerUtils.LoadPlugin<IUserAccountService>(accountService, args);
|
|
|
|
|
if (homeUsersSecurityService != string.Empty)
|
|
|
|
|
m_HomeUsersSecurityService = ServerUtils.LoadPlugin<IHomeUsersSecurityService>(homeUsersSecurityService, args);
|
|
|
|
|
|
2010-01-17 05:42:44 +00:00
|
|
|
|
if (simService != null)
|
|
|
|
|
m_SimulationService = simService;
|
|
|
|
|
else if (simulationService != string.Empty)
|
|
|
|
|
m_SimulationService = ServerUtils.LoadPlugin<ISimulationService>(simulationService, args);
|
|
|
|
|
|
2010-01-19 00:34:23 +00:00
|
|
|
|
if (m_GridService == null || m_PresenceService == null || m_SimulationService == null)
|
2010-01-17 05:42:44 +00:00
|
|
|
|
throw new Exception("Unable to load a required plugin, Gatekeeper Service cannot function.");
|
|
|
|
|
|
|
|
|
|
m_log.Debug("[GATEKEEPER SERVICE]: Starting...");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public GatekeeperService(IConfigSource config)
|
|
|
|
|
: this(config, null)
|
|
|
|
|
{
|
|
|
|
|
}
|
|
|
|
|
|
2010-01-27 16:00:29 +00:00
|
|
|
|
public bool LinkRegion(string regionName, out UUID regionID, out ulong regionHandle, out string externalName, out string imageURL, out string reason)
|
2010-01-17 05:42:44 +00:00
|
|
|
|
{
|
2010-01-17 15:54:03 +00:00
|
|
|
|
regionID = UUID.Zero;
|
|
|
|
|
regionHandle = 0;
|
2010-01-27 16:00:29 +00:00
|
|
|
|
externalName = m_ExternalName;
|
2010-01-17 05:42:44 +00:00
|
|
|
|
imageURL = string.Empty;
|
|
|
|
|
reason = string.Empty;
|
|
|
|
|
|
2010-01-17 15:54:03 +00:00
|
|
|
|
m_log.DebugFormat("[GATEKEEPER SERVICE]: Request to link to {0}", regionName);
|
2010-01-17 05:42:44 +00:00
|
|
|
|
if (!m_AllowTeleportsToAnyRegion)
|
|
|
|
|
{
|
2010-01-17 19:33:47 +00:00
|
|
|
|
List<GridRegion> defs = m_GridService.GetDefaultRegions(m_ScopeID);
|
|
|
|
|
if (defs != null && defs.Count > 0)
|
|
|
|
|
m_DefaultGatewayRegion = defs[0];
|
|
|
|
|
|
2010-01-17 15:54:03 +00:00
|
|
|
|
try
|
|
|
|
|
{
|
|
|
|
|
regionID = m_DefaultGatewayRegion.RegionID;
|
|
|
|
|
regionHandle = m_DefaultGatewayRegion.RegionHandle;
|
|
|
|
|
}
|
|
|
|
|
catch
|
|
|
|
|
{
|
|
|
|
|
reason = "Grid setup problem";
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2010-01-17 05:42:44 +00:00
|
|
|
|
if (regionName != string.Empty)
|
|
|
|
|
{
|
|
|
|
|
reason = "Direct links to regions not allowed";
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
GridRegion region = m_GridService.GetRegionByName(m_ScopeID, regionName);
|
|
|
|
|
if (region == null)
|
|
|
|
|
{
|
|
|
|
|
reason = "Region not found";
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
regionID = region.RegionID;
|
|
|
|
|
regionHandle = region.RegionHandle;
|
|
|
|
|
string regionimage = "regionImage" + region.RegionID.ToString();
|
|
|
|
|
regionimage = regionimage.Replace("-", "");
|
|
|
|
|
|
|
|
|
|
imageURL = "http://" + region.ExternalHostName + ":" + region.HttpPort + "/index.php?method=" + regionimage;
|
|
|
|
|
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public GridRegion GetHyperlinkRegion(UUID regionID)
|
|
|
|
|
{
|
2010-01-17 19:33:47 +00:00
|
|
|
|
m_log.DebugFormat("[GATEKEEPER SERVICE]: Request to get hyperlink region {0}", regionID);
|
|
|
|
|
|
2010-01-17 05:42:44 +00:00
|
|
|
|
if (!m_AllowTeleportsToAnyRegion)
|
|
|
|
|
// Don't even check the given regionID
|
|
|
|
|
return m_DefaultGatewayRegion;
|
|
|
|
|
|
|
|
|
|
GridRegion region = m_GridService.GetRegionByUUID(m_ScopeID, regionID);
|
|
|
|
|
return region;
|
|
|
|
|
}
|
|
|
|
|
|
2010-01-18 18:37:11 +00:00
|
|
|
|
#region Login Agent
|
2010-01-18 02:04:55 +00:00
|
|
|
|
public bool LoginAgent(AgentCircuitData aCircuit, GridRegion destination, out string reason)
|
2010-01-17 05:42:44 +00:00
|
|
|
|
{
|
2010-01-18 02:04:55 +00:00
|
|
|
|
reason = string.Empty;
|
|
|
|
|
|
2010-01-17 19:33:47 +00:00
|
|
|
|
string authURL = string.Empty;
|
|
|
|
|
if (aCircuit.ServiceURLs.ContainsKey("HomeURI"))
|
|
|
|
|
authURL = aCircuit.ServiceURLs["HomeURI"].ToString();
|
|
|
|
|
m_log.DebugFormat("[GATEKEEPER SERVICE]: Request to login foreign agent {0} {1} @ {2} ({3}) at destination {4}",
|
|
|
|
|
aCircuit.firstname, aCircuit.lastname, authURL, aCircuit.AgentID, destination.RegionName);
|
|
|
|
|
|
2010-01-19 01:00:06 +00:00
|
|
|
|
//
|
|
|
|
|
// Authenticate the user
|
|
|
|
|
//
|
2010-01-17 05:42:44 +00:00
|
|
|
|
if (!Authenticate(aCircuit))
|
2010-01-17 19:33:47 +00:00
|
|
|
|
{
|
2010-01-18 02:04:55 +00:00
|
|
|
|
reason = "Unable to verify identity";
|
2010-01-17 19:33:47 +00:00
|
|
|
|
m_log.InfoFormat("[GATEKEEPER SERVICE]: Unable to verify identity of agent {0} {1}. Refusing service.", aCircuit.firstname, aCircuit.lastname);
|
2010-01-17 05:42:44 +00:00
|
|
|
|
return false;
|
2010-01-17 19:33:47 +00:00
|
|
|
|
}
|
2010-01-18 02:04:55 +00:00
|
|
|
|
m_log.DebugFormat("[GATEKEEPER SERVICE]: Identity verified for {0} {1} @ {2}", aCircuit.firstname, aCircuit.lastname, authURL);
|
2010-01-19 01:00:06 +00:00
|
|
|
|
|
|
|
|
|
//
|
|
|
|
|
// Check for impersonations
|
|
|
|
|
//
|
|
|
|
|
UserAccount account = null;
|
|
|
|
|
if (m_UserAccountService != null)
|
|
|
|
|
{
|
|
|
|
|
// Check to see if we have a local user with that UUID
|
|
|
|
|
account = m_UserAccountService.GetUserAccount(m_ScopeID, aCircuit.AgentID);
|
|
|
|
|
if (account != null)
|
|
|
|
|
{
|
|
|
|
|
// Make sure this is the user coming home, and not a fake
|
|
|
|
|
if (m_HomeUsersSecurityService != null)
|
|
|
|
|
{
|
|
|
|
|
Object ep = m_HomeUsersSecurityService.GetEndPoint(aCircuit.SessionID);
|
|
|
|
|
if (ep == null)
|
|
|
|
|
{
|
|
|
|
|
// This is a fake, this session never left this grid
|
|
|
|
|
reason = "Unauthorized";
|
|
|
|
|
m_log.InfoFormat("[GATEKEEPER SERVICE]: Foreign agent {0} {1} has same ID as local user. Refusing service.",
|
|
|
|
|
aCircuit.firstname, aCircuit.lastname);
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
m_log.DebugFormat("[GATEKEEPER SERVICE]: User is ok");
|
2010-01-17 05:42:44 +00:00
|
|
|
|
|
|
|
|
|
// May want to authorize
|
|
|
|
|
|
2010-01-19 01:00:06 +00:00
|
|
|
|
//
|
2010-01-17 05:42:44 +00:00
|
|
|
|
// Login the presence
|
2010-01-19 01:00:06 +00:00
|
|
|
|
//
|
2010-01-17 05:42:44 +00:00
|
|
|
|
if (!m_PresenceService.LoginAgent(aCircuit.AgentID.ToString(), aCircuit.SessionID, aCircuit.SecureSessionID))
|
2010-01-17 19:33:47 +00:00
|
|
|
|
{
|
2010-01-18 02:04:55 +00:00
|
|
|
|
reason = "Unable to login presence";
|
2010-01-17 19:33:47 +00:00
|
|
|
|
m_log.InfoFormat("[GATEKEEPER SERVICE]: Presence login failed for foreign agent {0} {1}. Refusing service.",
|
|
|
|
|
aCircuit.firstname, aCircuit.lastname);
|
2010-01-17 05:42:44 +00:00
|
|
|
|
return false;
|
2010-01-17 19:33:47 +00:00
|
|
|
|
}
|
2010-01-18 02:04:55 +00:00
|
|
|
|
m_log.DebugFormat("[GATEKEEPER SERVICE]: Login presence ok");
|
|
|
|
|
|
2010-01-19 01:00:06 +00:00
|
|
|
|
//
|
2010-01-18 02:04:55 +00:00
|
|
|
|
// Get the region
|
2010-01-19 01:00:06 +00:00
|
|
|
|
//
|
2010-01-18 02:04:55 +00:00
|
|
|
|
destination = m_GridService.GetRegionByUUID(m_ScopeID, destination.RegionID);
|
|
|
|
|
if (destination == null)
|
|
|
|
|
{
|
|
|
|
|
reason = "Destination region not found";
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2010-01-19 01:00:06 +00:00
|
|
|
|
m_log.DebugFormat("[GATEKEEPER SERVICE]: destination ok: {0}", destination.RegionName);
|
|
|
|
|
|
|
|
|
|
//
|
|
|
|
|
// Adjust the visible name
|
|
|
|
|
//
|
|
|
|
|
if (account != null)
|
|
|
|
|
{
|
|
|
|
|
aCircuit.firstname = account.FirstName;
|
|
|
|
|
aCircuit.lastname = account.LastName;
|
|
|
|
|
}
|
|
|
|
|
if (account == null && !aCircuit.lastname.StartsWith("@"))
|
|
|
|
|
{
|
|
|
|
|
aCircuit.firstname = aCircuit.firstname + "." + aCircuit.lastname;
|
|
|
|
|
aCircuit.lastname = "@" + aCircuit.ServiceURLs["HomeURI"].ToString();
|
|
|
|
|
}
|
2010-01-17 05:42:44 +00:00
|
|
|
|
|
2010-01-19 01:00:06 +00:00
|
|
|
|
//
|
2010-01-17 05:42:44 +00:00
|
|
|
|
// Finally launch the agent at the destination
|
2010-01-19 01:00:06 +00:00
|
|
|
|
//
|
2010-01-17 05:42:44 +00:00
|
|
|
|
return m_SimulationService.CreateAgent(destination, aCircuit, 0, out reason);
|
|
|
|
|
}
|
|
|
|
|
|
2010-01-18 18:37:11 +00:00
|
|
|
|
protected bool Authenticate(AgentCircuitData aCircuit)
|
2010-01-17 05:42:44 +00:00
|
|
|
|
{
|
2010-01-18 02:04:55 +00:00
|
|
|
|
string authURL = string.Empty;
|
2010-01-17 19:33:47 +00:00
|
|
|
|
if (aCircuit.ServiceURLs.ContainsKey("HomeURI"))
|
|
|
|
|
authURL = aCircuit.ServiceURLs["HomeURI"].ToString();
|
|
|
|
|
|
2010-01-17 05:42:44 +00:00
|
|
|
|
if (authURL == string.Empty)
|
2010-01-17 19:33:47 +00:00
|
|
|
|
{
|
|
|
|
|
m_log.DebugFormat("[GATEKEEPER SERVICE]: Agent did not provide an authentication server URL");
|
2010-01-17 05:42:44 +00:00
|
|
|
|
return false;
|
2010-01-17 19:33:47 +00:00
|
|
|
|
}
|
2010-01-17 05:42:44 +00:00
|
|
|
|
|
|
|
|
|
Object[] args = new Object[] { authURL };
|
|
|
|
|
IAuthenticationService authService = ServerUtils.LoadPlugin<IAuthenticationService>(m_AuthDll, args);
|
|
|
|
|
if (authService != null)
|
2010-01-18 02:04:55 +00:00
|
|
|
|
{
|
|
|
|
|
try
|
|
|
|
|
{
|
|
|
|
|
return authService.Verify(aCircuit.AgentID, aCircuit.SecureSessionID.ToString(), 30);
|
|
|
|
|
}
|
|
|
|
|
catch
|
|
|
|
|
{
|
|
|
|
|
m_log.DebugFormat("[GATEKEEPER SERVICE]: Unable to contact authentication service at {0}", authURL);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
2010-01-17 05:42:44 +00:00
|
|
|
|
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2010-01-18 18:37:11 +00:00
|
|
|
|
|
|
|
|
|
#endregion
|
|
|
|
|
|
|
|
|
|
public GridRegion GetHomeRegion(UUID userID, out Vector3 position, out Vector3 lookAt)
|
|
|
|
|
{
|
|
|
|
|
position = new Vector3(128, 128, 0); lookAt = Vector3.UnitY;
|
|
|
|
|
|
|
|
|
|
m_log.DebugFormat("[GATEKEEPER SERVICE]: Request to get home region of user {0}", userID);
|
|
|
|
|
|
|
|
|
|
GridRegion home = null;
|
|
|
|
|
PresenceInfo[] presences = m_PresenceService.GetAgents(new string[] { userID.ToString() });
|
|
|
|
|
if (presences != null && presences.Length > 0)
|
|
|
|
|
{
|
|
|
|
|
UUID homeID = presences[0].HomeRegionID;
|
|
|
|
|
if (homeID != UUID.Zero)
|
|
|
|
|
{
|
|
|
|
|
home = m_GridService.GetRegionByUUID(m_ScopeID, homeID);
|
|
|
|
|
position = presences[0].HomePosition;
|
|
|
|
|
lookAt = presences[0].HomeLookAt;
|
|
|
|
|
}
|
|
|
|
|
if (home == null)
|
|
|
|
|
{
|
|
|
|
|
List<GridRegion> defs = m_GridService.GetDefaultRegions(m_ScopeID);
|
|
|
|
|
if (defs != null && defs.Count > 0)
|
|
|
|
|
home = defs[0];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return home;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#region Misc
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
#endregion
|
2010-01-17 05:42:44 +00:00
|
|
|
|
}
|
|
|
|
|
}
|