|
| 1 | +import json |
| 2 | +import os |
| 3 | +from datetime import datetime, timedelta |
| 4 | +import time |
| 5 | +from hashlib import sha256 |
| 6 | +from typing import Dict, Union |
| 7 | +from urllib.parse import urljoin |
| 8 | + |
| 9 | +from .webmaster import WebMaster |
| 10 | + |
| 11 | +from .argparse import ArgParser, ArgHolder, ParseResult |
| 12 | +from .argparse.argtype import * |
| 13 | +from . import sv, cb_cmd, cb_prefix |
| 14 | +from . import cb_cmd |
| 15 | +from kokkoro import config |
| 16 | +from kokkoro.common_interface import KokkoroBot, EventInterface |
| 17 | +from kokkoro.service import Service |
| 18 | +from kokkoro.priv import ADMIN, SUPERUSER |
| 19 | +from kokkoro.util import rand_string, add_salt_and_hash |
| 20 | + |
| 21 | +svweb = Service('web') |
| 22 | +@svweb.scheduled_job('cron', hour='5') |
| 23 | +async def drop_expired_logins(): |
| 24 | + now = datetime.now() |
| 25 | + wm = WebMaster() |
| 26 | + wm.del_login_by_time(now) |
| 27 | + |
| 28 | +EXPIRED_TIME = 7 * 24 * 60 * 60 # 7 days |
| 29 | +LOGIN_AUTH_COOKIE_NAME = 'yobot_login' |
| 30 | +# this need be same with static/password.js |
| 31 | +FRONTEND_SALT = '14b492a3-a40a-42fc-a236-e9a9307b47d2' |
| 32 | + |
| 33 | + |
| 34 | +@cb_cmd(('登录', 'login'), ArgParser('!登录')) |
| 35 | +async def login(bot:KokkoroBot, ev:EventInterface, args:ParseResult): |
| 36 | + if False and "this message is from group": # FIXME |
| 37 | + return '请私聊使用' |
| 38 | + |
| 39 | + wm = WebMaster() |
| 40 | + uid = ev.get_author_id() |
| 41 | + gid = ev.get_group_id() |
| 42 | + auth = ev.get_author().get_priv() |
| 43 | + |
| 44 | + member = wm.get_member(uid, gid) |
| 45 | + if member is None: |
| 46 | + await bot.kkr_send(ev, '请先加入公会') |
| 47 | + return |
| 48 | + member['authority_group'] = 100 |
| 49 | + if auth == SUPERUSER: |
| 50 | + member['authority_group'] = 1 |
| 51 | + elif auth == ADMIN: |
| 52 | + member['authority_group'] = 10 |
| 53 | + wm.mod_member(member) |
| 54 | + |
| 55 | + user = wm.get_or_add_user(uid, rand_string(16)) |
| 56 | + login_code = rand_string(6) |
| 57 | + user['login_code'] = login_code |
| 58 | + user['login_code_available'] = True |
| 59 | + user['login_code_expire_time'] = int(time.time()) + 60 |
| 60 | + wm.mod_user(user) |
| 61 | + |
| 62 | + url = urljoin( |
| 63 | + config.PUBLIC_ADDRESS, |
| 64 | + '{}login/c/#uid={}&key={}'.format( |
| 65 | + config.PUBLIC_BASEPATH, |
| 66 | + user['uid'], |
| 67 | + login_code, |
| 68 | + ) |
| 69 | + ) |
| 70 | + await bot.kkr_send_dm(uid, url) |
| 71 | + |
| 72 | +@cb_cmd(('重置密码', 'reset-password'), ArgParser('!重置密码')) |
| 73 | +async def reset_password(bot:KokkoroBot, ev:EventInterface, args:ParseResult): |
| 74 | + if False and "this message is from group": # FIXME |
| 75 | + return '请私聊使用' |
| 76 | + reply = f'您的临时密码是:{reset_pwd(ev)}' |
| 77 | + await bot.kkr_send_dm(ev.get_author_id(), reply) |
| 78 | + |
| 79 | +def reset_pwd(ev:EventInterface): |
| 80 | + wm = WebMaster() |
| 81 | + user = wm.get_or_add_user(ev.get_author_id(), rand_string(16)) |
| 82 | + raw_pwd = rand_string(8) |
| 83 | + frontend_salted_pwd = add_salt_and_hash(raw_pwd + user['uid'], FRONTEND_SALT) |
| 84 | + user['password'] = add_salt_and_hash(frontend_salted_pwd, user['salt']) |
| 85 | + user['privacy'] = 0 |
| 86 | + user['must_change_password'] = 1 |
| 87 | + wm.mod_user(user) |
| 88 | + wm.del_login(user['uid']) |
| 89 | + return raw_pwd |
0 commit comments