SoDOff-Project/sodoff
1
0
Fork 1
mirror of https://github.com/SoDOff-Project/sodoff.git synced 2025-10-11 08:18:49 -07:00
Code Issues Packages Projects Releases Wiki Activity

Prevent logging into accounts from different games (#13)

Browse Source 
[Originally authored by AlanMoonbase](1e9ca7e19c (diff-bb10d4643a2fa54d983a574662f579e09c056f29837397a10cd9300a98fbcc7cR171))
This commit is contained in:
HaiFire3344 2024-12-29 11:15:42 -05:00 committed by GitHub
parent 4b6f782e21
commit d56c492eb1
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 15 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
src/Controllers/Common/AuthenticationController.cs
View File

@ -168,7 +168,7 @@ public class AuthenticationController : Controller {
[Route("AuthenticationWebService.asmx/LoginChild")] [Route("AuthenticationWebService.asmx/LoginChild")]
[DecryptRequest("childUserID")] [DecryptRequest("childUserID")]
[EncryptResponse] [EncryptResponse]
public IActionResult LoginChild([FromForm] Guid parentApiToken) { public IActionResult LoginChild([FromForm] Guid parentApiToken, [FromForm] string apiKey) {
User? user = ctx.Sessions.FirstOrDefault(e => e.ApiToken == parentApiToken)?.User; User? user = ctx.Sessions.FirstOrDefault(e => e.ApiToken == parentApiToken)?.User;
if (user is null) { if (user is null) {
return Unauthorized(); return Unauthorized();
@ -181,6 +181,19 @@ public class AuthenticationController : Controller {
return Unauthorized(); return Unauthorized();
} }
uint gameVersion = ClientVersion.GetVersion(apiKey);
if (viking.GameVersion is null)
viking.GameVersion = gameVersion;
if (
(viking.GameVersion != gameVersion) &&
!(viking.GameVersion >= ClientVersion.Min_SoD && gameVersion >= ClientVersion.Min_SoD) &&
!(viking.GameVersion >= ClientVersion.WoJS && gameVersion >= ClientVersion.WoJS && viking.GameVersion < ClientVersion.WoJS_NewAvatar && gameVersion < ClientVersion.WoJS_NewAvatar)
)
return Unauthorized();
// do not let players log into users from other games, exceptions:
// 1) different version of SoD
// 2) WoJS with old avatar and lands
// Check if user is viking parent // Check if user is viking parent
if (user != viking.User) { if (user != viking.User) {
return Unauthorized(); return Unauthorized();

1
src/Model/Viking.cs
View File

@ -44,4 +44,5 @@ public class Viking {
public DateTime? CreationDate { get; set; } public DateTime? CreationDate { get; set; }
public DateTime? BirthDate { get; set; } public DateTime? BirthDate { get; set; }
public Gender? Gender { get; set; } public Gender? Gender { get; set; }
public uint? GameVersion { get; set; }
} }