AstralTransRocketries/drasl
1
0
Fork 0
mirror of https://github.com/unmojang/drasl.git synced 2025-08-03 19:06:04 -04:00
Code Issues Packages Projects Releases Wiki Activity

Punycode IDNs while reading config file

Browse Source 
It's safest to work with punycoded IDNs everywhere. Neither
authlib-injector nor Minecraft's `-Dminecraft.api.*.host` arguments play
nice with Unicode IDNs. Related:
https://github.com/yushijinhun/authlib-injector/issues/270
This commit is contained in:
Evan Goode 2025-03-24 17:21:09 -04:00
parent 258abe0df2
commit 6fe35be090
2 changed files with 144 additions and 52 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

168
config.go
View File

@ -9,6 +9,8 @@ import (
"github.com/BurntSushi/toml" "github.com/BurntSushi/toml"
mapset "github.com/deckarep/golang-set/v2" mapset "github.com/deckarep/golang-set/v2"
"github.com/dgraph-io/ristretto" "github.com/dgraph-io/ristretto"
"github.com/samber/mo"
"golang.org/x/net/idna"
"log" "log"
"net/url" "net/url"
"os" "os"
@ -207,21 +209,70 @@ func DefaultConfig() Config {
} }
} }
func cleanURL(key string, required mo.Option[string], urlString string, trimTrailingSlash bool) (string, error) {
if urlString == "" {
if example, ok := required.Get(); ok {
return "", fmt.Errorf("%s must be set. Example: %s", key, example)
}
return urlString, nil
}
parsedURL, err := url.Parse(urlString)
if err != nil {
return "", fmt.Errorf("Invalid %s: %s", key, err)
}
punycodeHost, err := idna.ToASCII(parsedURL.Host)
if err != nil {
return "", fmt.Errorf("Invalid %s: %s", key, err)
}
parsedURL.Host = punycodeHost
if trimTrailingSlash {
parsedURL.Path = strings.TrimSuffix(parsedURL.Path, "/")
}
return parsedURL.String(), nil
}
func cleanDomain(key string, required mo.Option[string], domain string) (string, error) {
if domain == "" {
if example, ok := required.Get(); ok {
return "", fmt.Errorf("%s must be set. Example: %s", key, example)
}
return domain, nil
}
punycoded, err := idna.ToASCII(domain)
if err != nil {
return "", fmt.Errorf("Invalid %s: %s", key, err)
}
return punycoded, nil
}
func CleanConfig(config *Config) error { func CleanConfig(config *Config) error {
if config.BaseURL == "" { var err error
return errors.New("BaseURL must be set. Example: https://drasl.example.com") config.BaseURL, err = cleanURL("BaseURL", mo.Some("https://drasl.example.com"), config.BaseURL, true)
if err != nil {
return err
} }
if _, err := url.Parse(config.BaseURL); err != nil {
return fmt.Errorf("Invalid BaseURL: %s", err)
}
config.BaseURL = strings.TrimRight(config.BaseURL, "/")
if !IsValidPreferredLanguage(config.DefaultPreferredLanguage) { if !IsValidPreferredLanguage(config.DefaultPreferredLanguage) {
return fmt.Errorf("Invalid DefaultPreferredLanguage %s", config.DefaultPreferredLanguage) return fmt.Errorf("Invalid DefaultPreferredLanguage %s", config.DefaultPreferredLanguage)
} }
if config.Domain == "" { if config.Domain == "" {
return errors.New("Domain must be set to a valid fully qualified domain name") return errors.New("Domain must be set to a valid fully qualified domain name")
} }
config.Domain, err = cleanDomain(
"Domain",
mo.Some("drasl.example.com"),
config.Domain,
)
if err != nil {
return err
}
if config.InstanceName == "" { if config.InstanceName == "" {
return errors.New("InstanceName must be set") return errors.New("InstanceName must be set")
} }
@ -257,66 +308,99 @@ func CleanConfig(config *Config) error {
if config.ImportExistingPlayer.Nickname == "" { if config.ImportExistingPlayer.Nickname == "" {
return errors.New("ImportExistingPlayer.Nickname must be set") return errors.New("ImportExistingPlayer.Nickname must be set")
} }
if config.ImportExistingPlayer.SessionURL == "" {
return errors.New("ImportExistingPlayer.SessionURL must be set. Example: https://sessionserver.mojang.com")
}
if _, err := url.Parse(config.ImportExistingPlayer.SessionURL); err != nil {
return fmt.Errorf("Invalid ImportExistingPlayer.SessionURL: %s", err)
}
config.ImportExistingPlayer.SessionURL = strings.TrimRight(config.ImportExistingPlayer.SessionURL, "/")
if config.ImportExistingPlayer.AccountURL == "" { config.ImportExistingPlayer.SessionURL, err = cleanURL(
return errors.New("ImportExistingPlayer.AccountURL must be set. Example: https://api.mojang.com") "ImportExistingPlayer.SessionURL",
mo.Some("https://sessionserver.mojang.com"),
config.ImportExistingPlayer.SessionURL, true,
)
if err != nil {
return err
} }
if _, err := url.Parse(config.ImportExistingPlayer.AccountURL); err != nil {
return fmt.Errorf("Invalid ImportExistingPlayer.AccountURL: %s", err) config.ImportExistingPlayer.AccountURL, err = cleanURL(
"ImportExistingPlayer.AccountURL",
mo.Some("https://api.mojang.com"),
config.ImportExistingPlayer.AccountURL, true,
)
if err != nil {
return err
} }
config.ImportExistingPlayer.AccountURL = strings.TrimRight(config.ImportExistingPlayer.AccountURL, "/")
config.ImportExistingPlayer.SetSkinURL, err = cleanURL(
"ImportExistingPlayer.SetSkinURL",
mo.None[string](),
config.ImportExistingPlayer.SetSkinURL, true,
)
if err != nil {
return err
} }
}
fallbackAPIServerNames := mapset.NewSet[string]()
for _, fallbackAPIServer := range PtrSlice(config.FallbackAPIServers) { for _, fallbackAPIServer := range PtrSlice(config.FallbackAPIServers) {
if fallbackAPIServer.Nickname == "" { if fallbackAPIServer.Nickname == "" {
return errors.New("FallbackAPIServer Nickname must be set") return errors.New("FallbackAPIServer Nickname must be set")
} }
if fallbackAPIServerNames.Contains(fallbackAPIServer.Nickname) {
return fmt.Errorf("Duplicate FallbackAPIServer Nickname: %s", fallbackAPIServer.Nickname)
}
fallbackAPIServerNames.Add(fallbackAPIServer.Nickname)
if fallbackAPIServer.AccountURL == "" { fallbackAPIServer.SessionURL, err = cleanURL(
return errors.New("FallbackAPIServer AccountURL must be set") fmt.Sprintf("FallbackAPIServer %s SessionURL", fallbackAPIServer.Nickname),
mo.Some("https://sessionserver.mojang.com"),
fallbackAPIServer.SessionURL, true,
)
if err != nil {
return err
} }
if _, err := url.Parse(fallbackAPIServer.AccountURL); err != nil {
return fmt.Errorf("Invalid FallbackAPIServer AccountURL %s: %s", fallbackAPIServer.AccountURL, err)
}
fallbackAPIServer.AccountURL = strings.TrimRight(fallbackAPIServer.AccountURL, "/")
if fallbackAPIServer.SessionURL == "" { fallbackAPIServer.AccountURL, err = cleanURL(
return errors.New("FallbackAPIServer SessionURL must be set") fmt.Sprintf("FallbackAPIServer %s AccountURL", fallbackAPIServer.Nickname),
mo.Some("https://api.mojang.com"),
fallbackAPIServer.AccountURL, true,
)
if err != nil {
return err
} }
if _, err := url.Parse(fallbackAPIServer.SessionURL); err != nil {
return fmt.Errorf("Invalid FallbackAPIServer SessionURL %s: %s", fallbackAPIServer.ServicesURL, err)
}
fallbackAPIServer.SessionURL = strings.TrimRight(fallbackAPIServer.SessionURL, "/")
if fallbackAPIServer.ServicesURL == "" { fallbackAPIServer.ServicesURL, err = cleanURL(
return errors.New("FallbackAPIServer ServicesURL must be set") fmt.Sprintf("FallbackAPIServer %s ServicesURL", fallbackAPIServer.Nickname),
mo.Some("https://api.minecraftservices.com"),
fallbackAPIServer.ServicesURL, true,
)
if err != nil {
return err
} }
if _, err := url.Parse(fallbackAPIServer.ServicesURL); err != nil {
return fmt.Errorf("Invalid FallbackAPIServer ServicesURL %s: %s", fallbackAPIServer.ServicesURL, err) for _, skinDomain := range PtrSlice(fallbackAPIServer.SkinDomains) {
} *skinDomain, err = cleanDomain(
fallbackAPIServer.ServicesURL = strings.TrimRight(fallbackAPIServer.ServicesURL, "/") fmt.Sprintf("FallbackAPIServer %s SkinDomain", fallbackAPIServer.Nickname),
for _, skinDomain := range fallbackAPIServer.SkinDomains { mo.Some("textures.minecraft.net"),
if skinDomain == "" { *skinDomain,
return fmt.Errorf("SkinDomain can't be blank for FallbackAPIServer \"%s\"", fallbackAPIServer.Nickname) )
if err != nil {
return err
} }
} }
} }
oidcNames := mapset.NewSet[string]() oidcNames := mapset.NewSet[string]()
for _, oidcConfig := range PtrSlice(config.RegistrationOIDC) { for _, oidcConfig := range PtrSlice(config.RegistrationOIDC) {
if oidcConfig.Name == "" {
return errors.New("RegistrationOIDC Name must be set")
}
if oidcNames.Contains(oidcConfig.Name) { if oidcNames.Contains(oidcConfig.Name) {
return fmt.Errorf("Duplicate RegistrationOIDC Name: %s", oidcConfig.Name) return fmt.Errorf("Duplicate RegistrationOIDC Name: %s", oidcConfig.Name)
} }
if _, err := url.Parse(oidcConfig.Issuer); err != nil {
return fmt.Errorf("Invalid RegistrationOIDC URL %s: %s", oidcConfig.Issuer, err)
}
oidcNames.Add(oidcConfig.Name) oidcNames.Add(oidcConfig.Name)
oidcConfig.Issuer, err = cleanURL(
fmt.Sprintf("RegistrationOIDC %s Issuer", oidcConfig.Name),
mo.Some("https://idm.example.com/oauth2/openid/drasl"),
oidcConfig.Issuer,
false,
)
} }
return nil return nil
} }

28
config_test.go
View File

@ -23,9 +23,11 @@ func TestConfig(t *testing.T) {
assert.Nil(t, CleanConfig(config)) assert.Nil(t, CleanConfig(config))
config = configTestConfig(sd) config = configTestConfig(sd)
config.BaseURL = "https://drasl.example.com/" config.BaseURL = "https://δρασλ.example.com/"
config.Domain = "δρασλ.example.com"
assert.Nil(t, CleanConfig(config)) assert.Nil(t, CleanConfig(config))
assert.Equal(t, "https://drasl.example.com", config.BaseURL) assert.Equal(t, "https://xn--mxafwwl.example.com", config.BaseURL)
assert.Equal(t, "xn--mxafwwl.example.com", config.Domain)
config = configTestConfig(sd) config = configTestConfig(sd)
config.BaseURL = "" config.BaseURL = ""
@ -72,10 +74,10 @@ func TestConfig(t *testing.T) {
config.RegistrationExistingPlayer.Allow = true config.RegistrationExistingPlayer.Allow = true
config.ImportExistingPlayer.Allow = true config.ImportExistingPlayer.Allow = true
config.ImportExistingPlayer.Nickname = "Example" config.ImportExistingPlayer.Nickname = "Example"
config.ImportExistingPlayer.SessionURL = "https://drasl.example.com/" config.ImportExistingPlayer.SessionURL = "https://δρασλ.example.com/"
config.ImportExistingPlayer.AccountURL = "https://drasl.example.com/" config.ImportExistingPlayer.AccountURL = "https://drasl.example.com/"
assert.Nil(t, CleanConfig(config)) assert.Nil(t, CleanConfig(config))
assert.Equal(t, "https://drasl.example.com", config.ImportExistingPlayer.SessionURL) assert.Equal(t, "https://xn--mxafwwl.example.com", config.ImportExistingPlayer.SessionURL)
assert.Equal(t, "https://drasl.example.com", config.ImportExistingPlayer.AccountURL) assert.Equal(t, "https://drasl.example.com", config.ImportExistingPlayer.AccountURL)
config = configTestConfig(sd) config = configTestConfig(sd)
@ -96,16 +98,22 @@ func TestConfig(t *testing.T) {
config = configTestConfig(sd) config = configTestConfig(sd)
testFallbackAPIServer := FallbackAPIServer{ testFallbackAPIServer := FallbackAPIServer{
Nickname: "Nickname", Nickname: "Nickname",
SessionURL: "https://drasl.example.com/", SessionURL: "https://δρασλ.example.com/",
AccountURL: "https://drasl.example.com/", AccountURL: "https://δρασλ.example.com/",
ServicesURL: "https://drasl.example.com/", ServicesURL: "https://δρασλ.example.com/",
SkinDomains: []string{"δρασλ.example.com"},
} }
fb := testFallbackAPIServer fb := testFallbackAPIServer
config.FallbackAPIServers = []FallbackAPIServer{fb} config.FallbackAPIServers = []FallbackAPIServer{fb}
assert.Nil(t, CleanConfig(config)) assert.Nil(t, CleanConfig(config))
assert.Equal(t, "https://drasl.example.com", config.FallbackAPIServers[0].SessionURL)
assert.Equal(t, "https://drasl.example.com", config.FallbackAPIServers[0].AccountURL) assert.Equal(t, []FallbackAPIServer{{
assert.Equal(t, "https://drasl.example.com", config.FallbackAPIServers[0].ServicesURL) Nickname: fb.Nickname,
SessionURL: "https://xn--mxafwwl.example.com",
AccountURL: "https://xn--mxafwwl.example.com",
ServicesURL: "https://xn--mxafwwl.example.com",
SkinDomains: []string{"xn--mxafwwl.example.com"},
}}, config.FallbackAPIServers)
fb = testFallbackAPIServer fb = testFallbackAPIServer
fb.Nickname = "" fb.Nickname = ""