cmd_neonserv_setaccess.c

   1
   2 #include "cmd_neonserv.h"
   3
   4 /*
   5 * argv[0] - nick / *auth
   6 * argv[1] - global access
   7 */
   8 static AUTHLOOKUP_CALLBACK(neonserv_cmd_setaccess_auth_lookup);
   9 static USERAUTH_CALLBACK(neonserv_cmd_setaccess_nick_lookup);
  10 static void neonserv_cmd_setaccess_async1(struct ClientSocket *client, struct ClientSocket *textclient, struct UserNode *user, struct Event *event, char *nick, char *auth, int access);
  11
  12 struct neonserv_cmd_setaccess_cache {
  13     struct ClientSocket *client, *textclient;
  14     struct UserNode *user;
  15     struct Event *event;
  16     int access;
  17     char *nick;
  18 };
  19
  20 CMD_BIND(neonserv_cmd_setaccess) {
  21     int caccess;
  22     MYSQL_RES *res;
  23     MYSQL_ROW row;
  24     caccess = atoi(argv[1]);
  25     if(caccess < 0 || caccess > 1000) {
  26         reply(getTextBot(), user, "NS_INVALID_ACCESS", caccess);
  27         return;
  28     }
  29     printf_mysql_query("SELECT `user_access` FROM `users` WHERE `user_user` = '%s'", escape_string(user->auth));
  30     res = mysql_use();
  31     if ((row = mysql_fetch_row(res)) == NULL || atoi(row[0]) < caccess) {
  32         reply(getTextBot(), user, "NS_ACCESS_OUTRANKED");
  33         return;
  34     }
  35     if(argv[0][0] == '*') {
  36         //we've got an auth
  37         argv[0]++;
  38         printf_mysql_query("SELECT `user_user` FROM `users` WHERE `user_user` = '%s'", escape_string(argv[0]));
  39         res = mysql_use();
  40         if ((row = mysql_fetch_row(res)) != NULL) {
  41             neonserv_cmd_setaccess_async1(client, getTextBot(), user, event, argv[0], row[0], caccess);
  42         } else {
  43             //we need to create a new user...
  44             //but first lookup the auth to check if it really exists
  45             struct neonserv_cmd_setaccess_cache *cache = malloc(sizeof(*cache));
  46             if (!cache) {
  47                 perror("malloc() failed");
  48                 return;
  49             }
  50             cache->client = client;
  51             cache->textclient = getTextBot();
  52             cache->user = user;
  53             cache->event = event;
  54             cache->access = caccess;
  55             cache->nick = strdup(argv[0]);
  56             lookup_authname(argv[0], neonserv_cmd_setaccess_auth_lookup, cache);
  57         }
  58     } else {
  59         struct UserNode *cuser = getUserByNick(argv[0]);
  60         if(!cuser) {
  61             cuser = createTempUser(argv[0]);
  62             cuser->flags |= USERFLAG_ISTMPUSER;
  63         }
  64         if(cuser->flags & USERFLAG_ISAUTHED) {
  65             neonserv_cmd_setaccess_async1(client, getTextBot(), user, event, argv[0], cuser->auth, caccess);
  66         } else {
  67             struct neonserv_cmd_setaccess_cache *cache = malloc(sizeof(*cache));
  68             if (!cache) {
  69                 perror("malloc() failed");
  70                 return;
  71             }
  72             cache->client = client;
  73             cache->textclient = getTextBot();
  74             cache->user = user;
  75             cache->event = event;
  76             cache->access = caccess;
  77             cache->nick = strdup(argv[0]);
  78             get_userauth(cuser, neonserv_cmd_setaccess_nick_lookup, cache);
  79         }
  80     }
  81 }
  82
  83 static AUTHLOOKUP_CALLBACK(neonserv_cmd_setaccess_auth_lookup) {
  84     struct neonserv_cmd_setaccess_cache *cache = data;
  85     if(!exists) {
  86         //AUTH_DOES_NOT_EXIST
  87         reply(cache->textclient, cache->user, "NS_AUTH_UNKNOWN", cache->nick);
  88     } else
  89         neonserv_cmd_setaccess_async1(cache->client, cache->textclient, cache->user, cache->event, cache->nick, auth, cache->access);
  90     free(cache->nick);
  91     free(cache);
  92 }
  93
  94 static USERAUTH_CALLBACK(neonserv_cmd_setaccess_nick_lookup) {
  95     struct neonserv_cmd_setaccess_cache *cache = data;
  96     if(!user) {
  97         //USER_DOES_NOT_EXIST
  98         reply(cache->textclient, cache->user, "NS_USER_UNKNOWN", cache->nick);
  99     }
 100     else if(!(user->flags & USERFLAG_ISAUTHED)) {
 101         //USER_NOT_AUTHED
 102         reply(cache->textclient, cache->user, "NS_USER_NEED_AUTH", cache->nick);
 103     }
 104     else
 105         neonserv_cmd_setaccess_async1(cache->client, cache->textclient, cache->user, cache->event, user->nick, user->auth, cache->access);
 106     free(cache->nick);
 107     free(cache);
 108 }
 109
 110 static void neonserv_cmd_setaccess_async1(struct ClientSocket *client, struct ClientSocket *textclient, struct UserNode *user, struct Event *event, char *nick, char *auth, int caccess) {
 111     //we've got a valid auth now...
 112     MYSQL_RES *res;
 113     MYSQL_ROW row;
 114     printf_mysql_query("SELECT `user_id`, `user_access` FROM `users` WHERE `user_user` = '%s'", escape_string(auth));
 115     res = mysql_use();
 116     if ((row = mysql_fetch_row(res)) != NULL) {
 117         if(atoi(row[1]) != caccess)
 118             printf_mysql_query("UPDATE `users` SET `user_access` = '%d' WHERE `user_id` = '%s'", caccess, row[0]);
 119     } else {
 120         printf_mysql_query("INSERT INTO `users` (`user_user`, `user_access`) VALUES ('%s', '%d')", escape_string(auth), caccess);
 121     }
 122     reply(textclient, user, "NS_SETACCESS_DONE", auth, caccess);
 123     logEvent(event);
 124 }