OpenSim
/
OpenSimMirror
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
OpenSimMirror/OpenSim/Services/HypergridService/GatekeeperService.cs

569 lines
24 KiB
C#
Raw Normal View History

Get the full viewer name even if it's (incorrectly) sent in the 'Channel' field Recent versions of Firestorm and Singularity have started sending the viewer name in the 'Channel' field, leaving only their version number in the 'Viewer' field. So we need to search both of these fields for the viewer name. This resolves http://opensimulator.org/mantis/view.php?id=6952
2013-12-08 14:50:24 +00:00
/*
Copyright notices.
2010-01-17 16:42:08 +00:00
* Copyright (c) Contributors, http://opensimulator.org/
* See CONTRIBUTORS.TXT for a full list of copyright holders.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions are met:
* * Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* * Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* * Neither the name of the OpenSimulator Project nor the
* names of its contributors may be used to endorse or promote products
* derived from this software without specific prior written permission.
*
* THIS SOFTWARE IS PROVIDED BY THE DEVELOPERS ``AS IS'' AND ANY
* EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
* WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
* DISCLAIMED. IN NO EVENT SHALL THE CONTRIBUTORS BE LIABLE FOR ANY
* DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
* (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
* ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
* SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*/
using System;
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
using System.Collections.Generic;
Go Home works. With security!!
2010-01-19 00:34:23 +00:00
using System.Net;
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
using System.Reflection;
Thank you Snoopy for a patch that adds some filtering to client versions allowed at login and HG-login times. NOTE: additional (optional) configuration variables in [LoginService] and [GatekeeperService]. See .examples.
2011-04-27 14:02:37 +00:00
using System.Text.RegularExpressions;
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
using OpenSim.Framework;
using OpenSim.Services.Interfaces;
using GridRegion = OpenSim.Services.Interfaces.GridRegion;
using OpenSim.Server.Base;
HG 1.5 is in place. Tested in standalone only.
2010-01-29 03:19:42 +00:00
using OpenSim.Services.Connectors.Hypergrid;
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
using OpenMetaverse;
using Nini.Config;
using log4net;
namespace OpenSim.Services.HypergridService
{
public class GatekeeperService : IGatekeeperService
{
private static readonly ILog m_log =
LogManager.GetLogger(
MethodBase.GetCurrentMethod().DeclaringType);
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
private static bool m_Initialized = false;
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
private static IGridService m_GridService;
private static IPresenceService m_PresenceService;
private static IUserAccountService m_UserAccountService;
private static IUserAgentService m_UserAgentService;
private static ISimulationService m_SimulationService;
Use GridUser properly for foreign users.
2012-09-26 19:40:41 +00:00
private static IGridUserService m_GridUserService;
Added an interface to an external ban service. With this commit, the interface is used only in Hypergrided worlds (Gatekeeper), although in those, it applies to both local and foreign users. The Ban service itself is not in core; it is to be provided externally.
2013-04-28 04:23:29 +00:00
private static IBansService m_BansService;
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
More HG 2.0: access control at the Gatekeeper. \o/
2012-09-22 04:03:14 +00:00
private static string m_AllowedClients = string.Empty;
private static string m_DeniedClients = string.Empty;
User level based restrictions for HyperGrid teleports, asset uploads, group creations and getting contacted from other grids. Incoming HyperGrid teleports can also be restricted to local users.
2012-03-27 20:09:58 +00:00
private static bool m_ForeignAgentsAllowed = true;
More HG 2.0: access control at the Gatekeeper. \o/
2012-09-22 04:03:14 +00:00
private static List<string> m_ForeignsAllowedExceptions = new List<string>();
private static List<string> m_ForeignsDisallowedExceptions = new List<string>();
Thank you Snoopy for a patch that adds some filtering to client versions allowed at login and HG-login times. NOTE: additional (optional) configuration variables in [LoginService] and [GatekeeperService]. See .examples.
2011-04-27 14:02:37 +00:00
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
private static UUID m_ScopeID;
private static bool m_AllowTeleportsToAnyRegion;
private static string m_ExternalName;
HG: Hopefully this fixes the issues with port 80 once and for all.
2012-11-08 03:59:54 +00:00
private static Uri m_Uri;
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
private static GridRegion m_DefaultGatewayRegion;
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
public GatekeeperService(IConfigSource config, ISimulationService simService)
{
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
if (!m_Initialized)
{
m_Initialized = true;
IConfig serverConfig = config.Configs["GatekeeperService"];
if (serverConfig == null)
throw new Exception(String.Format("No section GatekeeperService in config file"));
string accountService = serverConfig.GetString("UserAccountService", String.Empty);
One more buglet related to the issue at hand.
2010-08-03 23:33:56 +00:00
string homeUsersService = serverConfig.GetString("UserAgentService", string.Empty);
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
string gridService = serverConfig.GetString("GridService", String.Empty);
string presenceService = serverConfig.GetString("PresenceService", String.Empty);
string simulationService = serverConfig.GetString("SimulationService", String.Empty);
Use GridUser properly for foreign users.
2012-09-26 19:40:41 +00:00
string gridUserService = serverConfig.GetString("GridUserService", String.Empty);
Added an interface to an external ban service. With this commit, the interface is used only in Hypergrided worlds (Gatekeeper), although in those, it applies to both local and foreign users. The Ban service itself is not in core; it is to be provided externally.
2013-04-28 04:23:29 +00:00
string bansService = serverConfig.GetString("BansService", String.Empty);
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
Use GridUser properly for foreign users.
2012-09-26 19:40:41 +00:00
// These are mandatory, the others aren't
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
if (gridService == string.Empty || presenceService == string.Empty)
throw new Exception("Incomplete specifications, Gatekeeper Service cannot function.");
string scope = serverConfig.GetString("ScopeID", UUID.Zero.ToString());
UUID.TryParse(scope, out m_ScopeID);
//m_WelcomeMessage = serverConfig.GetString("WelcomeMessage", "Welcome to OpenSim!");
m_AllowTeleportsToAnyRegion = serverConfig.GetBoolean("AllowTeleportsToAnyRegion", true);
Switched to using the other Util function with a default value.
2013-02-28 04:59:16 +00:00
m_ExternalName = Util.GetConfigVarFromSections<string>(config, "GatekeeperURI",
new string[] { "Startup", "Hypergrid", "GatekeeperService" }, String.Empty);
Simplification of HG configs: HomeURI and GatekeeperURI now are defined as default under [Startup]. They can then be overwritten in the other sections (but probably shouldn't). I kept the existing code for backwards compatibility, so this should not cause any breaks from people's current configurations. But people should move to have these 2 vars under [Startup] -- see OpenSim.ini.example and Robust.HG.ini.example. And yes, both names now end with "URI" for consistency.
2013-02-22 01:26:19 +00:00
m_ExternalName = serverConfig.GetString("ExternalName", m_ExternalName);
Fixed some inconsistency with trailing /. Made debug messages consistent. Changed the stored region names of HG regions. Increased the size of regionName in DB.
2010-12-06 03:43:24 +00:00
if (m_ExternalName != string.Empty && !m_ExternalName.EndsWith("/"))
m_ExternalName = m_ExternalName + "/";
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
HG: Hopefully this fixes the issues with port 80 once and for all.
2012-11-08 03:59:54 +00:00
try
{
m_Uri = new Uri(m_ExternalName);
}
catch
{
m_log.WarnFormat("[GATEKEEPER SERVICE]: Malformed gatekeeper address {0}", m_ExternalName);
}
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
Object[] args = new Object[] { config };
m_GridService = ServerUtils.LoadPlugin<IGridService>(gridService, args);
m_PresenceService = ServerUtils.LoadPlugin<IPresenceService>(presenceService, args);
if (accountService != string.Empty)
m_UserAccountService = ServerUtils.LoadPlugin<IUserAccountService>(accountService, args);
if (homeUsersService != string.Empty)
m_UserAgentService = ServerUtils.LoadPlugin<IUserAgentService>(homeUsersService, args);
Use GridUser properly for foreign users.
2012-09-26 19:40:41 +00:00
if (gridUserService != string.Empty)
m_GridUserService = ServerUtils.LoadPlugin<IGridUserService>(gridUserService, args);
Added an interface to an external ban service. With this commit, the interface is used only in Hypergrided worlds (Gatekeeper), although in those, it applies to both local and foreign users. The Ban service itself is not in core; it is to be provided externally.
2013-04-28 04:23:29 +00:00
if (bansService != string.Empty)
m_BansService = ServerUtils.LoadPlugin<IBansService>(bansService, args);
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
if (simService != null)
m_SimulationService = simService;
else if (simulationService != string.Empty)
m_SimulationService = ServerUtils.LoadPlugin<ISimulationService>(simulationService, args);
Clean up viewer-based access control specifications.
2015-09-06 17:00:20 +00:00
string[] possibleAccessControlConfigSections = new string[] { "AccessControl", "GatekeeperService" };
m_AllowedClients = Util.GetConfigVarFromSections<string>(
config, "AllowedClients", possibleAccessControlConfigSections, string.Empty);
m_DeniedClients = Util.GetConfigVarFromSections<string>(
config, "DeniedClients", possibleAccessControlConfigSections, string.Empty);
User level based restrictions for HyperGrid teleports, asset uploads, group creations and getting contacted from other grids. Incoming HyperGrid teleports can also be restricted to local users.
2012-03-27 20:09:58 +00:00
m_ForeignAgentsAllowed = serverConfig.GetBoolean("ForeignAgentsAllowed", true);
Thank you Snoopy for a patch that adds some filtering to client versions allowed at login and HG-login times. NOTE: additional (optional) configuration variables in [LoginService] and [GatekeeperService]. See .examples.
2011-04-27 14:02:37 +00:00
More HG 2.0: access control at the Gatekeeper. \o/
2012-09-22 04:03:14 +00:00
LoadDomainExceptionsFromConfig(serverConfig, "AllowExcept", m_ForeignsAllowedExceptions);
LoadDomainExceptionsFromConfig(serverConfig, "DisallowExcept", m_ForeignsDisallowedExceptions);
Bug fix (HG): mantis #4891. This doesn't actually fix the underlying bug, but it clears up the circular dependency issue between Gatekeeper and UserAgents that had made me resort to in-process remote calls, which, in turn, were hitting bugs down there somewhere in mono. NOTE: CONFIGURATION CHANGE IN ROBUST.HG.INI.EXAMPLE !!!###!!!
2010-08-03 23:02:52 +00:00
if (m_GridService == null || m_PresenceService == null || m_SimulationService == null)
throw new Exception("Unable to load a required plugin, Gatekeeper Service cannot function.");
m_log.Debug("[GATEKEEPER SERVICE]: Starting...");
}
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
}
public GatekeeperService(IConfigSource config)
: this(config, null)
{
}
More HG 2.0: access control at the Gatekeeper. \o/
2012-09-22 04:03:14 +00:00
protected void LoadDomainExceptionsFromConfig(IConfig config, string variable, List<string> exceptions)
{
string value = config.GetString(variable, string.Empty);
string[] parts = value.Split(new char[] { ',' }, StringSplitOptions.RemoveEmptyEntries);
foreach (string s in parts)
exceptions.Add(s.Trim());
}
HG LinkRegion sends region size also
2016-11-20 03:51:38 +00:00
public bool LinkRegion(string regionName, out UUID regionID, out ulong regionHandle, out string externalName, out string imageURL, out string reason, out int sizeX, out int sizeY)
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
{
Hyperlinking minimally tested and working.
2010-01-17 15:54:03 +00:00
regionID = UUID.Zero;
regionHandle = 0;
HG LinkRegion sends region size also
2016-11-20 03:51:38 +00:00
sizeX = (int)Constants.RegionSize;
sizeY = (int)Constants.RegionSize;
Fixed some inconsistency with trailing /. Made debug messages consistent. Changed the stored region names of HG regions. Increased the size of regionName in DB.
2010-12-06 03:43:24 +00:00
externalName = m_ExternalName + ((regionName != string.Empty) ? " " + regionName : "");
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
imageURL = string.Empty;
reason = string.Empty;
Show map tile for hyperlinks. Perform Check4096 before adding a hyperlink. Configuration option AssetService in section [GridService] must be set to enable this functionality. Map tiles do currently not show for hyperlinks set in simulators that are connected to grids, see Mantis #5270.
2010-12-13 20:19:33 +00:00
GridRegion region = null;
Assorted bug fixes in hypergrid linking.
2010-05-03 16:50:55 +00:00
m_log.DebugFormat("[GATEKEEPER SERVICE]: Request to link to {0}", (regionName == string.Empty)? "default region" : regionName);
Assorted bug fixes related to hyperlinking
2010-02-01 06:35:23 +00:00
if (!m_AllowTeleportsToAnyRegion || regionName == string.Empty)
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
{
Allow one to specify a DefaultHGRegion flag in [GridService] in order to allow different default regions for HG and direct grid logins. This requires a new GridService.GetDefaultHypergridRegions() so ROBUST services require updating but not simulators. This method still returns regions flagged with just DefaultRegion after any DefaultHGRegions, so if no DefaultHGRegions are specified then existing configured defaults will still work. Immediate use is for conference where we need to be able to specify different defaults However, this is also generally useful to send experienced HG users to one default location and local users whose specified region fails (e.g. no "home" or "last") to another.
2013-09-02 16:27:45 +00:00
List<GridRegion> defs = m_GridService.GetDefaultHypergridRegions(m_ScopeID);
HG agent transfers are starting to work. Gatekeeper handlers are missing.
2010-01-17 19:33:47 +00:00
if (defs != null && defs.Count > 0)
Hyperlinking minimally tested and working.
2010-01-17 15:54:03 +00:00
{
Show map tile for hyperlinks. Perform Check4096 before adding a hyperlink. Configuration option AssetService in section [GridService] must be set to enable this functionality. Map tiles do currently not show for hyperlinks set in simulators that are connected to grids, see Mantis #5270.
2010-12-13 20:19:33 +00:00
region = defs[0];
m_DefaultGatewayRegion = region;
Hyperlinking minimally tested and working.
2010-01-17 15:54:03 +00:00
}
Show map tile for hyperlinks. Perform Check4096 before adding a hyperlink. Configuration option AssetService in section [GridService] must be set to enable this functionality. Map tiles do currently not show for hyperlinks set in simulators that are connected to grids, see Mantis #5270.
2010-12-13 20:19:33 +00:00
else
Hyperlinking minimally tested and working.
2010-01-17 15:54:03 +00:00
{
Assorted bug fixes related to hyperlinking
2010-02-01 06:35:23 +00:00
reason = "Grid setup problem. Try specifying a particular region here.";
Batter debug messages.
2010-02-01 06:40:06 +00:00
m_log.DebugFormat("[GATEKEEPER SERVICE]: Unable to send information. Please specify a default region for this grid!");
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
return false;
}
}
Show map tile for hyperlinks. Perform Check4096 before adding a hyperlink. Configuration option AssetService in section [GridService] must be set to enable this functionality. Map tiles do currently not show for hyperlinks set in simulators that are connected to grids, see Mantis #5270.
2010-12-13 20:19:33 +00:00
else
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
{
Show map tile for hyperlinks. Perform Check4096 before adding a hyperlink. Configuration option AssetService in section [GridService] must be set to enable this functionality. Map tiles do currently not show for hyperlinks set in simulators that are connected to grids, see Mantis #5270.
2010-12-13 20:19:33 +00:00
region = m_GridService.GetRegionByName(m_ScopeID, regionName);
if (region == null)
{
reason = "Region not found";
return false;
}
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
}
regionID = region.RegionID;
regionHandle = region.RegionHandle;
HG LinkRegion sends region size also
2016-11-20 03:51:38 +00:00
sizeX = region.RegionSizeX;
sizeY = region.RegionSizeY;
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
Show map tile for hyperlinks. Perform Check4096 before adding a hyperlink. Configuration option AssetService in section [GridService] must be set to enable this functionality. Map tiles do currently not show for hyperlinks set in simulators that are connected to grids, see Mantis #5270.
2010-12-13 20:19:33 +00:00
string regionimage = "regionImage" + regionID.ToString();
regionimage = regionimage.Replace("-", "");
* refactor refactor refactor ServerURI 4 lyfe
2010-10-02 23:17:02 +00:00
imageURL = region.ServerURI + "index.php?method=" + regionimage;
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
return true;
}
When preparing a Hypergrid teleport, tell the receiving grid which user is entering the grid. This can affect which region to use. E.g., returning users may be allowed to enter any region, whereas users from other grids will have to enter a gateway region. Previously per-user decisions were only made later, but by then it's too late to change which region the user enters.
2014-04-06 13:18:40 +00:00
public GridRegion GetHyperlinkRegion(UUID regionID, UUID agentID, string agentHomeURI, out string message)
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
{
When teleporting using Hypergrid, show more informative error messages in case of error
2014-04-03 09:47:20 +00:00
message = null;
HG agent transfers are starting to work. Gatekeeper handlers are missing.
2010-01-17 19:33:47 +00:00
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
if (!m_AllowTeleportsToAnyRegion)
When teleporting using Hypergrid, show more informative error messages in case of error
2014-04-03 09:47:20 +00:00
{
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
// Don't even check the given regionID
When logging reigon information returned by GateKeeperService.GetHyperlinkRegion, log the return server URL returned. This helps diagnoses misconfiguration where, for instance, a LAN ExternalHostName has been configured that isn't reachable externally.
2014-11-21 20:36:48 +00:00
m_log.DebugFormat(
"[GATEKEEPER SERVICE]: Returning gateway region {0} {1} @ {2} to user {3}{4} as teleporting to arbitrary regions is not allowed.",
m_DefaultGatewayRegion.RegionName,
m_DefaultGatewayRegion.RegionID,
m_DefaultGatewayRegion.ServerURI,
agentID,
agentHomeURI == null ? "" : " @ " + agentHomeURI);
When teleporting using Hypergrid, show more informative error messages in case of error
2014-04-03 09:47:20 +00:00
message = "Teleporting to the default region.";
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
return m_DefaultGatewayRegion;
When teleporting using Hypergrid, show more informative error messages in case of error
2014-04-03 09:47:20 +00:00
}
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
GridRegion region = m_GridService.GetRegionByUUID(m_ScopeID, regionID);
When teleporting using Hypergrid, show more informative error messages in case of error
2014-04-03 09:47:20 +00:00
if (region == null)
{
When logging reigon information returned by GateKeeperService.GetHyperlinkRegion, log the return server URL returned. This helps diagnoses misconfiguration where, for instance, a LAN ExternalHostName has been configured that isn't reachable externally.
2014-11-21 20:36:48 +00:00
m_log.DebugFormat(
"[GATEKEEPER SERVICE]: Could not find region with ID {0} as requested by user {1}{2}. Returning null.",
regionID, agentID, (agentHomeURI == null) ? "" : " @ " + agentHomeURI);
When teleporting using Hypergrid, show more informative error messages in case of error
2014-04-03 09:47:20 +00:00
message = "The teleport destination could not be found.";
return null;
}
When logging reigon information returned by GateKeeperService.GetHyperlinkRegion, log the return server URL returned. This helps diagnoses misconfiguration where, for instance, a LAN ExternalHostName has been configured that isn't reachable externally.
2014-11-21 20:36:48 +00:00
m_log.DebugFormat(
"[GATEKEEPER SERVICE]: Returning region {0} {1} @ {2} to user {3}{4}.",
region.RegionName,
region.RegionID,
region.ServerURI,
agentID,
agentHomeURI == null ? "" : " @ " + agentHomeURI);
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
return region;
}
* Added missing GatekeeperServiceConnector * Added basic machinery for teleporting users home. Untested.
2010-01-18 18:37:11 +00:00
#region Login Agent
In teleports, pass the source region to the destination (similar to an HTTP referrer)
2014-04-09 05:03:25 +00:00
public bool LoginAgent(GridRegion source, AgentCircuitData aCircuit, GridRegion destination, out string reason)
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
{
Agent gets there through the Gatekeeper, but still a few quirks to fix.
2010-01-18 02:04:55 +00:00
reason = string.Empty;
HG agent transfers are starting to work. Gatekeeper handlers are missing.
2010-01-17 19:33:47 +00:00
string authURL = string.Empty;
if (aCircuit.ServiceURLs.ContainsKey("HomeURI"))
authURL = aCircuit.ServiceURLs["HomeURI"].ToString();
In teleports, pass the source region to the destination (similar to an HTTP referrer)
2014-04-09 05:03:25 +00:00
m_log.InfoFormat("[GATEKEEPER SERVICE]: Login request for {0} {1} @ {2} ({3}) at {4} using viewer {5}, channel {6}, IP {7}, Mac {8}, Id0 {9}, Teleport Flags: {10}. From region {11}",
aCircuit.firstname, aCircuit.lastname, authURL, aCircuit.AgentID, destination.RegionID,
aCircuit.Viewer, aCircuit.Channel, aCircuit.IPAddress, aCircuit.Mac, aCircuit.Id0, (TeleportFlags)aCircuit.teleportFlags,
(source == null) ? "Unknown" : string.Format("{0} ({1}){2}", source.RegionName, source.RegionID, (source.RawServerURI == null) ? "" : " @ " + source.ServerURI));
Added an interface to an external ban service. With this commit, the interface is used only in Hypergrided worlds (Gatekeeper), although in those, it applies to both local and foreign users. The Ban service itself is not in core; it is to be provided externally.
2013-04-28 04:23:29 +00:00
Get the full viewer name even if it's (incorrectly) sent in the 'Channel' field Recent versions of Firestorm and Singularity have started sending the viewer name in the 'Channel' field, leaving only their version number in the 'Viewer' field. So we need to search both of these fields for the viewer name. This resolves http://opensimulator.org/mantis/view.php?id=6952
2013-12-08 14:50:24 +00:00
string curViewer = Util.GetViewerName(aCircuit);
Thank you Snoopy for a patch that adds some filtering to client versions allowed at login and HG-login times. NOTE: additional (optional) configuration variables in [LoginService] and [GatekeeperService]. See .examples.
2011-04-27 14:02:37 +00:00
//
// Check client
//
if (m_AllowedClients != string.Empty)
{
Regex arx = new Regex(m_AllowedClients);
Get the full viewer name even if it's (incorrectly) sent in the 'Channel' field Recent versions of Firestorm and Singularity have started sending the viewer name in the 'Channel' field, leaving only their version number in the 'Viewer' field. So we need to search both of these fields for the viewer name. This resolves http://opensimulator.org/mantis/view.php?id=6952
2013-12-08 14:50:24 +00:00
Match am = arx.Match(curViewer);
Thank you Snoopy for a patch that adds some filtering to client versions allowed at login and HG-login times. NOTE: additional (optional) configuration variables in [LoginService] and [GatekeeperService]. See .examples.
2011-04-27 14:02:37 +00:00
if (!am.Success)
{
HG LinkRegion sends region size also
2016-11-20 03:51:38 +00:00
reason = "Login failed: client " + curViewer + " is not allowed";
Get the full viewer name even if it's (incorrectly) sent in the 'Channel' field Recent versions of Firestorm and Singularity have started sending the viewer name in the 'Channel' field, leaving only their version number in the 'Viewer' field. So we need to search both of these fields for the viewer name. This resolves http://opensimulator.org/mantis/view.php?id=6952
2013-12-08 14:50:24 +00:00
m_log.InfoFormat("[GATEKEEPER SERVICE]: Login failed, reason: client {0} is not allowed", curViewer);
Thank you Snoopy for a patch that adds some filtering to client versions allowed at login and HG-login times. NOTE: additional (optional) configuration variables in [LoginService] and [GatekeeperService]. See .examples.
2011-04-27 14:02:37 +00:00
return false;
}
}
if (m_DeniedClients != string.Empty)
{
Regex drx = new Regex(m_DeniedClients);
Get the full viewer name even if it's (incorrectly) sent in the 'Channel' field Recent versions of Firestorm and Singularity have started sending the viewer name in the 'Channel' field, leaving only their version number in the 'Viewer' field. So we need to search both of these fields for the viewer name. This resolves http://opensimulator.org/mantis/view.php?id=6952
2013-12-08 14:50:24 +00:00
Match dm = drx.Match(curViewer);
Thank you Snoopy for a patch that adds some filtering to client versions allowed at login and HG-login times. NOTE: additional (optional) configuration variables in [LoginService] and [GatekeeperService]. See .examples.
2011-04-27 14:02:37 +00:00
if (dm.Success)
{
HG LinkRegion sends region size also
2016-11-20 03:51:38 +00:00
reason = "Login failed: client " + curViewer + " is denied";
Get the full viewer name even if it's (incorrectly) sent in the 'Channel' field Recent versions of Firestorm and Singularity have started sending the viewer name in the 'Channel' field, leaving only their version number in the 'Viewer' field. So we need to search both of these fields for the viewer name. This resolves http://opensimulator.org/mantis/view.php?id=6952
2013-12-08 14:50:24 +00:00
m_log.InfoFormat("[GATEKEEPER SERVICE]: Login failed, reason: client {0} is denied", curViewer);
Thank you Snoopy for a patch that adds some filtering to client versions allowed at login and HG-login times. NOTE: additional (optional) configuration variables in [LoginService] and [GatekeeperService]. See .examples.
2011-04-27 14:02:37 +00:00
return false;
}
}
HG agent transfers are starting to work. Gatekeeper handlers are missing.
2010-01-17 19:33:47 +00:00
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
//
// Authenticate the user
//
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
if (!Authenticate(aCircuit))
HG agent transfers are starting to work. Gatekeeper handlers are missing.
2010-01-17 19:33:47 +00:00
{
Agent gets there through the Gatekeeper, but still a few quirks to fix.
2010-01-18 02:04:55 +00:00
reason = "Unable to verify identity";
HG agent transfers are starting to work. Gatekeeper handlers are missing.
2010-01-17 19:33:47 +00:00
m_log.InfoFormat("[GATEKEEPER SERVICE]: Unable to verify identity of agent {0} {1}. Refusing service.", aCircuit.firstname, aCircuit.lastname);
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
return false;
HG agent transfers are starting to work. Gatekeeper handlers are missing.
2010-01-17 19:33:47 +00:00
}
Agent gets there through the Gatekeeper, but still a few quirks to fix.
2010-01-18 02:04:55 +00:00
m_log.DebugFormat("[GATEKEEPER SERVICE]: Identity verified for {0} {1} @ {2}", aCircuit.firstname, aCircuit.lastname, authURL);
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
//
// Check for impersonations
//
UserAccount account = null;
if (m_UserAccountService != null)
{
// Check to see if we have a local user with that UUID
account = m_UserAccountService.GetUserAccount(m_ScopeID, aCircuit.AgentID);
if (account != null)
{
HG 1.5 is in place. Tested in standalone only.
2010-01-29 03:19:42 +00:00
// Make sure this is the user coming home, and not a foreign user with same UUID as a local user
if (m_UserAgentService != null)
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
{
HG: Renamed one method
2011-12-04 16:24:16 +00:00
if (!m_UserAgentService.IsAgentComingHome(aCircuit.SessionID, m_ExternalName))
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
{
HG 1.5 is in place. Tested in standalone only.
2010-01-29 03:19:42 +00:00
// Can't do, sorry
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
reason = "Unauthorized";
m_log.InfoFormat("[GATEKEEPER SERVICE]: Foreign agent {0} {1} has same ID as local user. Refusing service.",
aCircuit.firstname, aCircuit.lastname);
return false;
}
}
}
}
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
User level based restrictions for HyperGrid teleports, asset uploads, group creations and getting contacted from other grids. Incoming HyperGrid teleports can also be restricted to local users.
2012-03-27 20:09:58 +00:00
//
More HG 2.0: access control at the Gatekeeper. \o/
2012-09-22 04:03:14 +00:00
// Foreign agents allowed? Exceptions?
User level based restrictions for HyperGrid teleports, asset uploads, group creations and getting contacted from other grids. Incoming HyperGrid teleports can also be restricted to local users.
2012-03-27 20:09:58 +00:00
//
Added an interface to an external ban service. With this commit, the interface is used only in Hypergrided worlds (Gatekeeper), although in those, it applies to both local and foreign users. The Ban service itself is not in core; it is to be provided externally.
2013-04-28 04:23:29 +00:00
if (account == null)
User level based restrictions for HyperGrid teleports, asset uploads, group creations and getting contacted from other grids. Incoming HyperGrid teleports can also be restricted to local users.
2012-03-27 20:09:58 +00:00
{
More HG 2.0: access control at the Gatekeeper. \o/
2012-09-22 04:03:14 +00:00
bool allowed = m_ForeignAgentsAllowed;
if (m_ForeignAgentsAllowed && IsException(aCircuit, m_ForeignsAllowedExceptions))
Added an interface to an external ban service. With this commit, the interface is used only in Hypergrided worlds (Gatekeeper), although in those, it applies to both local and foreign users. The Ban service itself is not in core; it is to be provided externally.
2013-04-28 04:23:29 +00:00
allowed = false;
More HG 2.0: access control at the Gatekeeper. \o/
2012-09-22 04:03:14 +00:00
if (!m_ForeignAgentsAllowed && IsException(aCircuit, m_ForeignsDisallowedExceptions))
allowed = true;
if (!allowed)
{
reason = "Destination does not allow visitors from your world";
m_log.InfoFormat("[GATEKEEPER SERVICE]: Foreign agents are not permitted {0} {1} @ {2}. Refusing service.",
aCircuit.firstname, aCircuit.lastname, aCircuit.ServiceURLs["HomeURI"]);
return false;
}
User level based restrictions for HyperGrid teleports, asset uploads, group creations and getting contacted from other grids. Incoming HyperGrid teleports can also be restricted to local users.
2012-03-27 20:09:58 +00:00
}
Added an interface to an external ban service. With this commit, the interface is used only in Hypergrided worlds (Gatekeeper), although in those, it applies to both local and foreign users. The Ban service itself is not in core; it is to be provided externally.
2013-04-28 04:23:29 +00:00
//
// Is the user banned?
// This uses a Ban service that's more powerful than the configs
//
string uui = (account != null ? aCircuit.AgentID.ToString() : Util.ProduceUserUniversalIdentifier(aCircuit));
if (m_BansService != null && m_BansService.IsBanned(uui, aCircuit.IPAddress, aCircuit.Id0, authURL))
{
reason = "You are banned from this world";
m_log.InfoFormat("[GATEKEEPER SERVICE]: Login failed, reason: user {0} is banned", uui);
return false;
}
minor: Make logging in GatekeeperService.LoginAgent() a bit more detailed so that we can distinguish between simultaneous logins
2013-08-22 00:24:55 +00:00
m_log.DebugFormat("[GATEKEEPER SERVICE]: User {0} is ok", aCircuit.Name);
Added an interface to an external ban service. With this commit, the interface is used only in Hypergrided worlds (Gatekeeper), although in those, it applies to both local and foreign users. The Ban service itself is not in core; it is to be provided externally.
2013-04-28 04:23:29 +00:00
Finished implementing ViaLogin vs ViaHGLogin. Removed lookup on myipaddress.com. Also removed client IP verification upon UDP connection that had been left there -- we can't do that in general.
2010-08-20 02:54:40 +00:00
bool isFirstLogin = false;
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
//
Finished implementing ViaLogin vs ViaHGLogin. Removed lookup on myipaddress.com. Also removed client IP verification upon UDP connection that had been left there -- we can't do that in general.
2010-08-20 02:54:40 +00:00
// Login the presence, if it's not there yet (by the login service)
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
//
Finished implementing ViaLogin vs ViaHGLogin. Removed lookup on myipaddress.com. Also removed client IP verification upon UDP connection that had been left there -- we can't do that in general.
2010-08-20 02:54:40 +00:00
PresenceInfo presence = m_PresenceService.GetAgent(aCircuit.SessionID);
if (presence != null) // it has been placed there by the login service
isFirstLogin = true;
Use GridUser properly for foreign users.
2012-09-26 19:40:41 +00:00
else
{
Finished implementing ViaLogin vs ViaHGLogin. Removed lookup on myipaddress.com. Also removed client IP verification upon UDP connection that had been left there -- we can't do that in general.
2010-08-20 02:54:40 +00:00
if (!m_PresenceService.LoginAgent(aCircuit.AgentID.ToString(), aCircuit.SessionID, aCircuit.SecureSessionID))
{
reason = "Unable to login presence";
m_log.InfoFormat("[GATEKEEPER SERVICE]: Presence login failed for foreign agent {0} {1}. Refusing service.",
aCircuit.firstname, aCircuit.lastname);
return false;
}
minor: Make logging in GatekeeperService.LoginAgent() a bit more detailed so that we can distinguish between simultaneous logins
2013-08-22 00:24:55 +00:00
m_log.DebugFormat("[GATEKEEPER SERVICE]: Login presence {0} is ok", aCircuit.Name);
Agent gets there through the Gatekeeper, but still a few quirks to fix.
2010-01-18 02:04:55 +00:00
Use GridUser properly for foreign users.
2012-09-26 19:40:41 +00:00
// Also login foreigners with GridUser service
if (m_GridUserService != null && account == null)
{
string userId = aCircuit.AgentID.ToString();
string first = aCircuit.firstname, last = aCircuit.lastname;
if (last.StartsWith("@"))
{
string[] parts = aCircuit.firstname.Split('.');
if (parts.Length >= 2)
{
first = parts[0];
last = parts[1];
}
}
userId += ";" + aCircuit.ServiceURLs["HomeURI"] + ";" + first + " " + last;
m_GridUserService.LoggedIn(userId);
}
}
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
//
Agent gets there through the Gatekeeper, but still a few quirks to fix.
2010-01-18 02:04:55 +00:00
// Get the region
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
//
Agent gets there through the Gatekeeper, but still a few quirks to fix.
2010-01-18 02:04:55 +00:00
destination = m_GridService.GetRegionByUUID(m_ScopeID, destination.RegionID);
if (destination == null)
{
Revert "Make HG logins fall back to fallback regions if the desired region fails." This is very similar to my earlier revert in bcb8605f8428a9009a2badf9c9eed06d9f59962c and fails for the same reasons. Reverting this change because it causes a problem if access is denied to the user. This reverts commit c7a8afbb8da40e09252d58d95c89b8a99a684157.
2013-08-26 20:07:49 +00:00
reason = "Destination region not found";
return false;
Agent gets there through the Gatekeeper, but still a few quirks to fix.
2010-01-18 02:04:55 +00:00
}
minor: Make logging in GatekeeperService.LoginAgent() a bit more detailed so that we can distinguish between simultaneous logins
2013-08-22 00:24:55 +00:00
m_log.DebugFormat(
"[GATEKEEPER SERVICE]: Destination {0} is ok for {1}", destination.RegionName, aCircuit.Name);
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
//
// Adjust the visible name
//
if (account != null)
{
aCircuit.firstname = account.FirstName;
aCircuit.lastname = account.LastName;
}
Fixes mantis #5923
2012-03-08 23:55:43 +00:00
if (account == null)
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
{
Fixes mantis #5923
2012-03-08 23:55:43 +00:00
if (!aCircuit.lastname.StartsWith("@"))
aCircuit.firstname = aCircuit.firstname + "." + aCircuit.lastname;
Thanks Marck for the patch to mantis #4941 (shortening avies' names on HG)
2010-08-16 00:25:27 +00:00
try
{
Uri uri = new Uri(aCircuit.ServiceURLs["HomeURI"].ToString());
In the AgentCircuitData of HG users, set the last name to include the port E.g., instead of "first.last @grid.example.com", the name is now "first.last @grid.example.com:8002"
2015-08-03 13:25:45 +00:00
aCircuit.lastname = "@" + uri.Authority;
Thanks Marck for the patch to mantis #4941 (shortening avies' names on HG)
2010-08-16 00:25:27 +00:00
}
catch
{
m_log.WarnFormat("[GATEKEEPER SERVICE]: Malformed HomeURI (this should never happen): {0}", aCircuit.ServiceURLs["HomeURI"]);
aCircuit.lastname = "@" + aCircuit.ServiceURLs["HomeURI"].ToString();
}
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
}
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
//
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
// Finally launch the agent at the destination
Check for impersonations at the Gatekeeper.
2010-01-19 01:00:06 +00:00
//
Finished implementing ViaLogin vs ViaHGLogin. Removed lookup on myipaddress.com. Also removed client IP verification upon UDP connection that had been left there -- we can't do that in general.
2010-08-20 02:54:40 +00:00
Constants.TeleportFlags loginFlag = isFirstLogin ? Constants.TeleportFlags.ViaLogin : Constants.TeleportFlags.ViaHGLogin;
Propagate our teleport flags on logins
2012-02-18 05:32:09 +00:00
// Preserve our TeleportFlags we have gathered so-far
loginFlag |= (Constants.TeleportFlags) aCircuit.teleportFlags;
In teleports, pass the source region to the destination (similar to an HTTP referrer)
2014-04-09 05:03:25 +00:00
m_log.DebugFormat("[GATEKEEPER SERVICE]: Launching {0}, Teleport Flags: {1}", aCircuit.Name, loginFlag);
minor: Make logging in GatekeeperService.LoginAgent() a bit more detailed so that we can distinguish between simultaneous logins
2013-08-22 00:24:55 +00:00
Introduce an EntityTransferContext carrying the version numbers to pass to all interested functions. Should fix the varregion conditional. Still a testing version, do NOT use in production!
2015-10-31 17:13:02 +00:00
EntityTransferContext ctx = new EntityTransferContext();
On login and first HG entrance to a foreign grid, perform query access checks before proceeding.
2014-07-21 22:53:33 +00:00
if (!m_SimulationService.QueryAccess(
destination, aCircuit.AgentID, aCircuit.ServiceURLs["HomeURI"].ToString(),
Introduce an EntityTransferContext carrying the version numbers to pass to all interested functions. Should fix the varregion conditional. Still a testing version, do NOT use in production!
2015-10-31 17:13:02 +00:00
true, aCircuit.startpos, new List<UUID>(), ctx, out reason))
On login and first HG entrance to a foreign grid, perform query access checks before proceeding.
2014-07-21 22:53:33 +00:00
return false;
More plumbing of the EntityTransferContext (not yet complete)
2015-11-01 18:11:14 +00:00
return m_SimulationService.CreateAgent(source, destination, aCircuit, (uint)loginFlag, ctx, out reason);
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
}
* Added missing GatekeeperServiceConnector * Added basic machinery for teleporting users home. Untested.
2010-01-18 18:37:11 +00:00
protected bool Authenticate(AgentCircuitData aCircuit)
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
{
HG 1.5 is in place. Tested in standalone only.
2010-01-29 03:19:42 +00:00
if (!CheckAddress(aCircuit.ServiceSessionID))
return false;
Gatekeeper: stop bogus agents earlier, here at the Gatekeeper. No need to bother the sim.
2013-07-14 00:52:05 +00:00
if (string.IsNullOrEmpty(aCircuit.IPAddress))
{
m_log.DebugFormat("[GATEKEEPER SERVICE]: Agent did not provide a client IP address.");
return false;
}
HG 1.5 is in place. Tested in standalone only.
2010-01-29 03:19:42 +00:00
string userURL = string.Empty;
HG agent transfers are starting to work. Gatekeeper handlers are missing.
2010-01-17 19:33:47 +00:00
if (aCircuit.ServiceURLs.ContainsKey("HomeURI"))
HG 1.5 is in place. Tested in standalone only.
2010-01-29 03:19:42 +00:00
userURL = aCircuit.ServiceURLs["HomeURI"].ToString();
HG agent transfers are starting to work. Gatekeeper handlers are missing.
2010-01-17 19:33:47 +00:00
HG 1.5 is in place. Tested in standalone only.
2010-01-29 03:19:42 +00:00
if (userURL == string.Empty)
HG agent transfers are starting to work. Gatekeeper handlers are missing.
2010-01-17 19:33:47 +00:00
{
m_log.DebugFormat("[GATEKEEPER SERVICE]: Agent did not provide an authentication server URL");
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
return false;
HG agent transfers are starting to work. Gatekeeper handlers are missing.
2010-01-17 19:33:47 +00:00
}
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
One more thing related to the previous commit. Must avoid all in-process remote calls.
2010-08-03 23:27:11 +00:00
if (userURL == m_ExternalName)
Dont' bother with a userAgentService != null check right after we've constructed it
2011-11-15 20:37:49 +00:00
{
this is so bad, brain is beyond fried. must stop.
2010-08-04 00:05:48 +00:00
return m_UserAgentService.VerifyAgent(aCircuit.SessionID, aCircuit.ServiceSessionID);
Dont' bother with a userAgentService != null check right after we've constructed it
2011-11-15 20:37:49 +00:00
}
One more thing related to the previous commit. Must avoid all in-process remote calls.
2010-08-03 23:27:11 +00:00
else
Agent gets there through the Gatekeeper, but still a few quirks to fix.
2010-01-18 02:04:55 +00:00
{
One more thing related to the previous commit. Must avoid all in-process remote calls.
2010-08-03 23:27:11 +00:00
IUserAgentService userAgentService = new UserAgentServiceConnector(userURL);
Dont' bother with a userAgentService != null check right after we've constructed it
2011-11-15 20:37:49 +00:00
try
Agent gets there through the Gatekeeper, but still a few quirks to fix.
2010-01-18 02:04:55 +00:00
{
Dont' bother with a userAgentService != null check right after we've constructed it
2011-11-15 20:37:49 +00:00
return userAgentService.VerifyAgent(aCircuit.SessionID, aCircuit.ServiceSessionID);
}
catch
{
m_log.DebugFormat("[GATEKEEPER SERVICE]: Unable to contact authentication service at {0}", userURL);
return false;
Agent gets there through the Gatekeeper, but still a few quirks to fix.
2010-01-18 02:04:55 +00:00
}
}
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
}
* Added missing GatekeeperServiceConnector * Added basic machinery for teleporting users home. Untested.
2010-01-18 18:37:11 +00:00
HG 1.5 is in place. Tested in standalone only.
2010-01-29 03:19:42 +00:00
// Check that the service token was generated for *this* grid.
// If it wasn't then that's a fake agent.
protected bool CheckAddress(string serviceToken)
* Added missing GatekeeperServiceConnector * Added basic machinery for teleporting users home. Untested.
2010-01-18 18:37:11 +00:00
{
HG 1.5 is in place. Tested in standalone only.
2010-01-29 03:19:42 +00:00
string[] parts = serviceToken.Split(new char[] { ';' });
if (parts.Length < 2)
return false;
* Added missing GatekeeperServiceConnector * Added basic machinery for teleporting users home. Untested.
2010-01-18 18:37:11 +00:00
fixes a problem with ending slashes in GatekeeperService to verify session-addresses
2010-12-29 12:40:47 +00:00
char[] trailing_slash = new char[] { '/' };
string addressee = parts[0].TrimEnd(trailing_slash);
string externalname = m_ExternalName.TrimEnd(trailing_slash);
m_log.DebugFormat("[GATEKEEPER SERVICE]: Verifying {0} against {1}", addressee, externalname);
Make gatekeeper's address check case-insensitive.
2010-11-27 08:18:39 +00:00
HG: Hopefully this fixes the issues with port 80 once and for all.
2012-11-08 03:59:54 +00:00
Uri uri;
try
{
uri = new Uri(addressee);
}
catch
{
m_log.DebugFormat("[GATEKEEPER SERVICE]: Visitor provided malformed service address {0}", addressee);
return false;
}
return string.Equals(uri.GetLeftPart(UriPartial.Authority), m_Uri.GetLeftPart(UriPartial.Authority), StringComparison.OrdinalIgnoreCase) ;
HG 1.5 is in place. Tested in standalone only.
2010-01-29 03:19:42 +00:00
}
* Added missing GatekeeperServiceConnector * Added basic machinery for teleporting users home. Untested.
2010-01-18 18:37:11 +00:00
HG 1.5 is in place. Tested in standalone only.
2010-01-29 03:19:42 +00:00
#endregion
* Added missing GatekeeperServiceConnector * Added basic machinery for teleporting users home. Untested.
2010-01-18 18:37:11 +00:00
#region Misc
More HG 2.0: access control at the Gatekeeper. \o/
2012-09-22 04:03:14 +00:00
private bool IsException(AgentCircuitData aCircuit, List<string> exceptions)
{
bool exception = false;
if (exceptions.Count > 0) // we have exceptions
{
// Retrieve the visitor's origin
string userURL = aCircuit.ServiceURLs["HomeURI"].ToString();
if (!userURL.EndsWith("/"))
userURL += "/";
if (exceptions.Find(delegate(string s)
{
if (!s.EndsWith("/"))
s += "/";
return s == userURL;
}) != null)
exception = true;
}
return exception;
}
* Added missing GatekeeperServiceConnector * Added basic machinery for teleporting users home. Untested.
2010-01-18 18:37:11 +00:00
#endregion
Beginning of rewriting HG. Compiles, and runs, but HG functions not restored yet.
2010-01-17 05:42:44 +00:00
}
}