galene/group/client.go

package group

import (
	"bytes"
	"crypto/sha256"
	"encoding/hex"
	"encoding/json"
	"errors"
	"hash"
	"net"

	"golang.org/x/crypto/bcrypt"
	"golang.org/x/crypto/pbkdf2"

	"github.com/jech/galene/conn"
)

type RawPassword struct {
	Type       string  `json:"type,omitempty"`
	Hash       string  `json:"hash,omitempty"`
	Key        *string `json:"key,omitempty"`
	Salt       string  `json:"salt,omitempty"`
	Iterations int     `json:"iterations,omitempty"`
}

type Password RawPassword

func (p Password) Match(pw string) (bool, error) {
	switch p.Type {
	case "":
		return false, nil
	case "plain":
		if p.Key == nil {
			return false, errors.New("missing key")
		}
		return *p.Key == pw, nil
	case "wildcard":
		return true, nil
	case "pbkdf2":
		if p.Key == nil {
			return false, errors.New("missing key")
		}
		key, err := hex.DecodeString(*p.Key)
		if err != nil {
			return false, err
		}
		salt, err := hex.DecodeString(p.Salt)
		if err != nil {
			return false, err
		}
		var h func() hash.Hash
		switch p.Hash {
		case "sha-256":
			h = sha256.New
		default:
			return false, errors.New("unknown hash type")
		}
		theirKey := pbkdf2.Key(
			[]byte(pw), salt, p.Iterations, len(key), h,
		)
		return bytes.Equal(key, theirKey), nil
	case "bcrypt":
		if p.Key == nil {
			return false, errors.New("missing key")
		}
		err := bcrypt.CompareHashAndPassword([]byte(*p.Key), []byte(pw))
		if errors.Is(err, bcrypt.ErrMismatchedHashAndPassword) {
			return false, nil
		}
		return err == nil, err
	default:
		return false, errors.New("unknown password type")
	}
}

func (p *Password) UnmarshalJSON(b []byte) error {
	var k string
	err := json.Unmarshal(b, &k)
	if err == nil {
		*p = Password{
			Type: "plain",
			Key:  &k,
		}
		return nil
	}
	var r RawPassword
	err = json.Unmarshal(b, &r)
	if err == nil {
		*p = Password(r)
	}
	return err
}

func (p Password) MarshalJSON() ([]byte, error) {
	if p.Type == "plain" && p.Hash == "" && p.Salt == "" && p.Iterations == 0 {
		return json.Marshal(p.Key)
	}
	return json.Marshal(RawPassword(p))
}

type ClientPattern struct {
	Username string    `json:"username,omitempty"`
	Password *Password `json:"password,omitempty"`
}

type ClientCredentials struct {
	System   bool
	Username *string
	Password string
	Token    string
}

type Client interface {
	Group() *Group
	Addr() net.Addr
	Id() string
	Username() string
	SetUsername(string)
	Permissions() []string
	SetPermissions([]string)
	Data() map[string]interface{}
	PushConn(g *Group, id string, conn conn.Up, tracks []conn.UpTrack, replace string) error
	RequestConns(target Client, g *Group, id string) error
	Joined(group, kind string) error
	PushClient(group, kind, id, username string, perms []string, data map[string]interface{}) error
	Kick(id string, user *string, message string) error
}
Move group and client to their own package. 2020-09-13 11:56:35 +02:00			`package group`

			`import (`
Implement hashed passwords. 2020-11-29 14:26:42 +01:00			`"bytes"`
			`"crypto/sha256"`
			`"encoding/hex"`
			`"encoding/json"`
			`"errors"`
			`"hash"`
Add method Addr to client. 2024-04-30 18:17:00 +02:00			`"net"`
Implement hashed passwords. 2020-11-29 14:26:42 +01:00
Add support for hashing password with BCrypt. 2023-11-23 13:57:37 +01:00			`"golang.org/x/crypto/bcrypt"`
Implement hashed passwords. 2020-11-29 14:26:42 +01:00			`"golang.org/x/crypto/pbkdf2"`
SFU is now called Galène. 2020-12-06 19:43:17 +01:00
Move to github. 2020-12-19 17:37:48 +01:00			`"github.com/jech/galene/conn"`
Move group and client to their own package. 2020-09-13 11:56:35 +02:00			`)`

Implement hashed passwords. 2020-11-29 14:26:42 +01:00			`type RawPassword struct {`
Distinguish empty key in password from absence of key. 2024-04-12 01:05:48 +02:00			Type string `json:"type,omitempty"`
			Hash string `json:"hash,omitempty"`
			Key *string `json:"key,omitempty"`
			Salt string `json:"salt,omitempty"`
			Iterations int `json:"iterations,omitempty"`
Implement hashed passwords. 2020-11-29 14:26:42 +01:00			`}`

			`type Password RawPassword`

			`func (p Password) Match(pw string) (bool, error) {`
			`switch p.Type {`
			`case "":`
Don't return error when matching empty password. This avoids displaying "internal server error" when a username is disabled. 2024-05-02 17:41:50 +02:00			`return false, nil`
Rework configuration file format. The "users" entry is now a dictionary mapping user names to passwords and permissions. In order to allow for wildcards, there is a new type of password, the wildcard password, and an extra array called "fallback-users". The field "allow-anonymous" no longer exists, this is now the default behaviour. The field "allow-subgroups" has been renamed to "auto-subgroups". We provide backwards compatibility for group definition files, but not for the config.json file, where the old "admin" array is simply ignored. 2024-01-02 18:36:09 +01:00			`case "plain":`
Distinguish empty key in password from absence of key. 2024-04-12 01:05:48 +02:00			`if p.Key == nil {`
			`return false, errors.New("missing key")`
			`}`
			`return *p.Key == pw, nil`
Rework configuration file format. The "users" entry is now a dictionary mapping user names to passwords and permissions. In order to allow for wildcards, there is a new type of password, the wildcard password, and an extra array called "fallback-users". The field "allow-anonymous" no longer exists, this is now the default behaviour. The field "allow-subgroups" has been renamed to "auto-subgroups". We provide backwards compatibility for group definition files, but not for the config.json file, where the old "admin" array is simply ignored. 2024-01-02 18:36:09 +01:00			`case "wildcard":`
			`return true, nil`
Implement hashed passwords. 2020-11-29 14:26:42 +01:00			`case "pbkdf2":`
Distinguish empty key in password from absence of key. 2024-04-12 01:05:48 +02:00			`if p.Key == nil {`
			`return false, errors.New("missing key")`
			`}`
			`key, err := hex.DecodeString(*p.Key)`
Implement hashed passwords. 2020-11-29 14:26:42 +01:00			`if err != nil {`
			`return false, err`
			`}`
			`salt, err := hex.DecodeString(p.Salt)`
			`if err != nil {`
			`return false, err`
			`}`
			`var h func() hash.Hash`
			`switch p.Hash {`
			`case "sha-256":`
			`h = sha256.New`
			`default:`
			`return false, errors.New("unknown hash type")`
			`}`
			`theirKey := pbkdf2.Key(`
			`[]byte(pw), salt, p.Iterations, len(key), h,`
			`)`
Minor cleanups. 2022-04-23 18:22:28 +02:00			`return bytes.Equal(key, theirKey), nil`
Add support for hashing password with BCrypt. 2023-11-23 13:57:37 +01:00			`case "bcrypt":`
Distinguish empty key in password from absence of key. 2024-04-12 01:05:48 +02:00			`if p.Key == nil {`
			`return false, errors.New("missing key")`
			`}`
			`err := bcrypt.CompareHashAndPassword([]byte(*p.Key), []byte(pw))`
Use errors.Is in Password.Match. 2024-05-27 23:00:45 +02:00			`if errors.Is(err, bcrypt.ErrMismatchedHashAndPassword) {`
Add support for hashing password with BCrypt. 2023-11-23 13:57:37 +01:00			`return false, nil`
			`}`
			`return err == nil, err`
Implement hashed passwords. 2020-11-29 14:26:42 +01:00			`default:`
			`return false, errors.New("unknown password type")`
			`}`
			`}`

			`func (p *Password) UnmarshalJSON(b []byte) error {`
			`var k string`
			`err := json.Unmarshal(b, &k)`
			`if err == nil {`
			`*p = Password{`
Rework configuration file format. The "users" entry is now a dictionary mapping user names to passwords and permissions. In order to allow for wildcards, there is a new type of password, the wildcard password, and an extra array called "fallback-users". The field "allow-anonymous" no longer exists, this is now the default behaviour. The field "allow-subgroups" has been renamed to "auto-subgroups". We provide backwards compatibility for group definition files, but not for the config.json file, where the old "admin" array is simply ignored. 2024-01-02 18:36:09 +01:00			`Type: "plain",`
Distinguish empty key in password from absence of key. 2024-04-12 01:05:48 +02:00			`Key: &k,`
Implement hashed passwords. 2020-11-29 14:26:42 +01:00			`}`
			`return nil`
			`}`
			`var r RawPassword`
			`err = json.Unmarshal(b, &r)`
			`if err == nil {`
			`*p = Password(r)`
			`}`
			`return err`
			`}`

			`func (p Password) MarshalJSON() ([]byte, error) {`
Rework configuration file format. The "users" entry is now a dictionary mapping user names to passwords and permissions. In order to allow for wildcards, there is a new type of password, the wildcard password, and an extra array called "fallback-users". The field "allow-anonymous" no longer exists, this is now the default behaviour. The field "allow-subgroups" has been renamed to "auto-subgroups". We provide backwards compatibility for group definition files, but not for the config.json file, where the old "admin" array is simply ignored. 2024-01-02 18:36:09 +01:00			`if p.Type == "plain" && p.Hash == "" && p.Salt == "" && p.Iterations == 0 {`
Implement hashed passwords. 2020-11-29 14:26:42 +01:00			`return json.Marshal(p.Key)`
			`}`
			`return json.Marshal(RawPassword(p))`
			`}`

Move password checking into group.go. It used to be delegated to clients. 2021-10-27 04:15:44 +02:00			`type ClientPattern struct {`
Implement hashed passwords. 2020-11-29 14:26:42 +01:00			Username string `json:"username,omitempty"`
			Password *Password `json:"password,omitempty"`
Move group and client to their own package. 2020-09-13 11:56:35 +02:00			`}`

Move password checking into group.go. It used to be delegated to clients. 2021-10-27 04:15:44 +02:00			`type ClientCredentials struct {`
			`System bool`
Distinguish between no username and empty username. 2023-03-22 17:41:16 +01:00			`Username *string`
Move password checking into group.go. It used to be delegated to clients. 2021-10-27 04:15:44 +02:00			`Password string`
Implement token authentication. 2021-10-29 23:37:05 +02:00			`Token string`
Implement hashed passwords. 2020-11-29 14:26:42 +01:00			`}`

Move group and client to their own package. 2020-09-13 11:56:35 +02:00			`type Client interface {`
			`Group() *Group`
Add method Addr to client. 2024-04-30 18:17:00 +02:00			`Addr() net.Addr`
Move group and client to their own package. 2020-09-13 11:56:35 +02:00			`Id() string`
Move password checking into group.go. It used to be delegated to clients. 2021-10-27 04:15:44 +02:00			`Username() string`
Set the username in the server when using tokens. This avoids the need to pass the username in the URL without requiring the client to parse tokens. 2022-02-20 15:32:18 +01:00			`SetUsername(string)`
Replace ClientPermissions with a list of strings. Now that we support external auth, the permissions list is open-ended. Make it a list for simplicity. 2022-02-19 23:43:44 +01:00			`Permissions() []string`
			`SetPermissions([]string)`
Rename client status to data, add group data. We now distinguish between status, which is maintained by the server, and data, which is provided by the client. In addition to client data, we now support group data. 2022-01-29 22:54:44 +01:00			`Data() map[string]interface{}`
Rework connection replacement. We used to signal connection replacement by reusing the same connection id. This turned out to be racy, as we couldn't reliably discard old answers after a connection id was refused. We now use a new id for every new connection, and explicitly signal stream replacement in the offer message. This requires maintaining a local id on the client side. 2021-01-31 19:00:09 +01:00			`PushConn(g *Group, id string, conn conn.Up, tracks []conn.UpTrack, replace string) error`
Rename pushConns to requestConns, move into Client interface. Also allow selecting just a single connection. 2021-05-14 19:20:56 +02:00			`RequestConns(target Client, g *Group, id string) error`
Implement group status. We now inform clients of the status of a group (locked, etc.). Also cleans up the handling of administrative messages, which solves the issue of receiving "user" before "joined". 2021-07-16 19:41:00 +02:00			`Joined(group, kind string) error`
Replace ClientPermissions with a list of strings. Now that we support external auth, the permissions list is open-ended. Make it a list for simplicity. 2022-02-19 23:43:44 +01:00			`PushClient(group, kind, id, username string, perms []string, data map[string]interface{}) error`
Distinguish between no username and empty username. 2023-03-22 17:41:16 +01:00			`Kick(id string, user *string, message string) error`
Move group and client to their own package. 2020-09-13 11:56:35 +02:00			`}`