public static ServerMessage Compose(BanDetails Details)
{
ServerMessage message;
switch (Details.BanType)
{
case 0:
message = new ServerMessage(FlagcodesOut.BAN, 0, false);
message.AppendParameter((uint)(((uint)Details.TimestampEx) - ((uint)UnixTimestamp.GetCurrent())), false);
message.AppendParameter(Details.Reason, false);
return(message);
case 1:
message = new ServerMessage(FlagcodesOut.USER, ItemcodesOut.LANDING_LOGIN, false);
message.AppendParameter(4, false);
message.AppendParameter(Details.Reason, false);
message.AppendParameter(0, false);
return(message);
case 2:
message = new ServerMessage(FlagcodesOut.USER, ItemcodesOut.LANDING_LOGIN, false);
message.AppendParameter(4, false);
message.AppendParameter(Details.Reason, false);
message.AppendParameter(1, false);
return(message);
}
message = new ServerMessage(FlagcodesOut.USER, ItemcodesOut.LANDING_LOGIN, false);
message.AppendParameter(4, false);
message.AppendParameter(Details.Reason, false);
message.AppendParameter(0, false);
return(message);
}
/// <summary>
/// Initializes a new instance of the <see cref="BannedEventArgs"/> class.
/// </summary>
/// <param name="target">The banned player.</param>
/// <param name="issuer">The issuer player.</param>
/// <param name="details">The ban details.</param>
/// <param name="type"><inheritdoc cref="Type"/></param>
public BannedEventArgs(Player target, Player issuer, BanDetails details, BanHandler.BanType type)
{
Target = target;
Details = details;
Type = type;
Issuer = issuer;
}
public async Task <bool> DoBan(BanningEventArgs ev)
{
string banned_user_id = ev.Target.UserId;
string banned_nickname = ev.Target.Nickname;
string banned_ip_address = ev.Target.IPAddress;
int banduration = ev.Duration;
Player adminHub = ev.Issuer;
Log.Info("--------------------------------------");
Log.Info("Ban detected, plugin taking over:");
Log.Info($"Banned Name: {banned_nickname}");
Log.Info($"Banned ID: {banned_user_id}");
Log.Info($"Banned IP: {banned_ip_address}");
Log.Info($"Admin Name: {adminHub.Nickname}");
Log.Info($"Admin ID: {adminHub.UserId}");
Log.Info($"Duration: {banduration}");
if (banduration.ToString().Contains("1576800000"))
{
banduration = 0;
Log.Info($"Duration: UPDATED TO PERM!");
}
string reason = ev.Reason;
if (reason == "")
{
reason = "No reason provided. Please contact a Head Administrator for further details.";
}
if (await WebTask.IssueBan(plugin.Config.APIKey, banned_user_id, banned_nickname, banned_ip_address, adminHub.UserId, banduration, reason, ev.Target.ReferenceHub.serverRoles.DoNotTrack))
{
Log.Info($"Successfully pushed ban for {banned_user_id} ({banned_ip_address}) to the web API!");
Log.Info("--------------------------------------");
SendClientToServer(ev.Target, 7790);
// We can safely remove the ban since the web client will handle it from here.
//BanHandler.RemoveBan(ev.Target.UserId, ev.);
return(true);
}
else
{
// Error out to requesting admin
adminHub.Broadcast(15, $"ERROR while adding ban to web API for: {banned_nickname}({banned_user_id})");
Log.Error($"FATAL BANNING ERROR! WebTask.IssueBan() Failed to push to web API");
// Actually ban them since the webapi decided to do the funny...
BanDetails ban = new BanDetails
{
OriginalName = ev.Target.Nickname,
Id = ev.Target.UserId,
IssuanceTime = TimeBehaviour.CurrentTimestamp(),
Expires = DateTime.UtcNow.AddMinutes((double)ev.Duration).Ticks,
Reason = ev.Reason,
Issuer = ev.Issuer.UserId
};
BanHandler.IssueBan(ban, BanHandler.BanType.UserId);
Log.Info("Pushed manual server-side ban.");
Log.Info("--------------------------------------");
return(false);
}
return(false);
}
public void BanIdentifier(string identifier, string reason)
{
BanDetails details = new BanDetails();
details.Reason = reason;
details.Expiration = Time.CurrentTime + (30 * 60 * 1000);
m_bannedIdentifiers.AddOrUpdate(identifier, details, (key, oldValue) => details);
}
public static void Postfix(BanDetails ban, BanHandler.BanType banType)
{
try
{
Events.InvokePlayerBanned(ban, banType);
}
catch (Exception exception)
{
Log.Error($"PlayerBannedEvent error: {exception}");
}
}
public static void InvokePlayerBanned(BanDetails banDetails, BanType banType)
{
if (PlayerBannedEvent == null)
{
return;
}
PlayerBannedEvent ev = new PlayerBannedEvent()
{
Details = banDetails,
Type = banType
};
PlayerBannedEvent.Invoke(ev);
}
public static void InvokePlayerBanned(BanDetails details, BanType type)
{
PlayerBanned playerBanned = PlayerBannedEvent;
if (playerBanned == null)
{
return;
}
PlayerBannedEvent ev = new PlayerBannedEvent()
{
Details = details,
Type = type
};
PlayerBannedEvent?.Invoke(ev);
}
private static void Postfix(BanDetails ban, BanHandler.BanType banType)
{
var ev = new BannedEventArgs(string.IsNullOrEmpty(ban.Id) ? null : API.Features.Player.Get(ban.Id), ban, banType);
Player.OnBanned(ev);
}
/// <summary>
/// Initializes a new instance of the <see cref="BannedEventArgs"/> class.
/// </summary>
/// <param name="player">The banned player.</param>
/// <param name="details">The ban details.</param>
/// <param name="type"><inheritdoc cref="Type"/></param>
public BannedEventArgs(Player player, BanDetails details, BanHandler.BanType type)
{
Player = player;
Details = details;
Type = type;
}
private static void HandleConnection(ConnectionRequest request)
{
NetDataWriter rejectData = new NetDataWriter();
try
{
byte result1;
byte result2;
int position = request.Data.Position;
if (!request.Data.TryGetByte(out result1) || !request.Data.TryGetByte(out result2) || result1 != CustomNetworkManager.Major || result2 != CustomNetworkManager.Minor)
{
rejectData.Reset();
rejectData.Put(3);
request.Reject(rejectData);
}
else
{
if (CustomLiteNetLib4MirrorTransport.IpRateLimiting)
{
if (CustomLiteNetLib4MirrorTransport.IpRateLimit.Contains(request.RemoteEndPoint.Address.ToString()))
{
ServerConsole.AddLog(string.Format("Incoming connection from endpoint {0} rejected due to exceeding the rate limit.", request.RemoteEndPoint));
ServerLogs.AddLog(ServerLogs.Modules.Networking, string.Format("Incoming connection from endpoint {0} rejected due to exceeding the rate limit.", request.RemoteEndPoint), ServerLogs.ServerLogType.RateLimit);
rejectData.Reset();
rejectData.Put(12);
request.Reject(rejectData);
return;
}
CustomLiteNetLib4MirrorTransport.IpRateLimit.Add(request.RemoteEndPoint.Address.ToString());
}
if (!CharacterClassManager.OnlineMode)
{
KeyValuePair <BanDetails, BanDetails> keyValuePair = BanHandler.QueryBan(null, request.RemoteEndPoint.Address.ToString());
if (keyValuePair.Value != null)
{
ServerConsole.AddLog(string.Format("Player tried to connect from banned endpoint {0}.", request.RemoteEndPoint));
rejectData.Reset();
rejectData.Put(6);
rejectData.Put(keyValuePair.Value.Expires);
rejectData.Put(keyValuePair.Value?.Reason ?? string.Empty);
request.Reject(rejectData);
}
else
{
request.Accept();
}
}
else
{
string result3;
if (!request.Data.TryGetString(out result3) || result3 == string.Empty)
{
rejectData.Reset();
rejectData.Put(5);
request.Reject(rejectData);
}
else
{
ulong result4;
byte result5;
string result6;
byte[] result7;
if (!request.Data.TryGetULong(out result4) || !request.Data.TryGetByte(out result5) || !request.Data.TryGetString(out result6) || !request.Data.TryGetBytesWithLength(out result7))
{
rejectData.Reset();
rejectData.Put(4);
request.Reject(rejectData);
}
else
{
CentralAuthPreauthFlags flags = (CentralAuthPreauthFlags)result5;
try
{
if (!ECDSA.VerifyBytes(string.Format("{0};{1};{2};{3}", result3, result5, result6, result4), result7, ServerConsole.PublicKey))
{
ServerConsole.AddLog(string.Format("Player from endpoint {0} sent preauthentication token with invalid digital signature.", request.RemoteEndPoint));
rejectData.Reset();
rejectData.Put(2);
request.Reject(rejectData);
}
else if (TimeBehaviour.CurrentUnixTimestamp > result4)
{
ServerConsole.AddLog(string.Format("Player from endpoint {0} sent expired preauthentication token.", request.RemoteEndPoint));
ServerConsole.AddLog("Make sure that time and timezone set on server is correct. We recommend synchronizing the time.");
rejectData.Reset();
rejectData.Put(11);
request.Reject(rejectData);
}
else
{
if (CustomLiteNetLib4MirrorTransport.UserRateLimiting)
{
if (CustomLiteNetLib4MirrorTransport.UserRateLimit.Contains(result3))
{
ServerConsole.AddLog(string.Format("Incoming connection from {0} ({1}) rejected due to exceeding the rate limit.", result3, request.RemoteEndPoint));
ServerLogs.AddLog(ServerLogs.Modules.Networking, string.Format("Incoming connection from endpoint {0} ({1}) rejected due to exceeding the rate limit.", result3, request.RemoteEndPoint), ServerLogs.ServerLogType.RateLimit);
rejectData.Reset();
rejectData.Put(12);
request.Reject(rejectData);
return;
}
CustomLiteNetLib4MirrorTransport.UserRateLimit.Add(result3);
}
if (!flags.HasFlagFast(CentralAuthPreauthFlags.IgnoreBans) || !ServerStatic.GetPermissionsHandler().IsVerified)
{
KeyValuePair <BanDetails, BanDetails> keyValuePair = BanHandler.QueryBan(result3, request.RemoteEndPoint.Address.ToString());
if (keyValuePair.Key != null || keyValuePair.Value != null)
{
ServerConsole.AddLog(string.Format("{0} {1} tried to connect from {2} endpoint {3}.", keyValuePair.Key == null ? "Player" : "Banned player", result3, keyValuePair.Value == null ? "" : "banned ", request.RemoteEndPoint));
ServerLogs.AddLog(ServerLogs.Modules.Networking, string.Format("{0} {1} tried to connect from {2} endpoint {3}.", keyValuePair.Key == null ? "Player" : "Banned player", result3, keyValuePair.Value == null ? "" : "banned ", request.RemoteEndPoint), ServerLogs.ServerLogType.ConnectionUpdate);
rejectData.Reset();
rejectData.Put(6);
NetDataWriter netDataWriter1 = rejectData;
BanDetails key = keyValuePair.Key;
netDataWriter1.Put(key != null ? key.Expires : keyValuePair.Value.Expires);
NetDataWriter netDataWriter2 = rejectData;
string str;
if ((str = keyValuePair.Key?.Reason) == null)
{
str = keyValuePair.Value?.Reason ?? string.Empty;
}
netDataWriter2.Put(str);
request.Reject(rejectData);
return;
}
}
if (flags.HasFlagFast(CentralAuthPreauthFlags.GloballyBanned) && !ServerStatic.GetPermissionsHandler().IsVerified)
{
bool useGlobalBans = CustomLiteNetLib4MirrorTransport.UseGlobalBans;
}
if ((!flags.HasFlagFast(CentralAuthPreauthFlags.IgnoreWhitelist) || !ServerStatic.GetPermissionsHandler().IsVerified) && !WhiteList.IsWhitelisted(result3))
{
ServerConsole.AddLog(string.Format("Player {0} tried joined from endpoint {1}, but is not whitelisted.", result3, request.RemoteEndPoint));
rejectData.Reset();
rejectData.Put(7);
request.Reject(rejectData);
}
else if (CustomLiteNetLib4MirrorTransport.Geoblocking != GeoblockingMode.None && (!flags.HasFlagFast(CentralAuthPreauthFlags.IgnoreGeoblock) || !ServerStatic.GetPermissionsHandler().BanTeamBypassGeo) && (!CustomLiteNetLib4MirrorTransport.GeoblockIgnoreWhitelisted || !WhiteList.IsOnWhitelist(result3)) && (CustomLiteNetLib4MirrorTransport.Geoblocking == GeoblockingMode.Whitelist && !CustomLiteNetLib4MirrorTransport.GeoblockingList.Contains(result6.ToUpper()) || CustomLiteNetLib4MirrorTransport.Geoblocking == GeoblockingMode.Blacklist && CustomLiteNetLib4MirrorTransport.GeoblockingList.Contains(result6.ToUpper())))
{
ServerConsole.AddLog(string.Format("Player {0} ({1}) tried joined from blocked country {2}.", result3, request.RemoteEndPoint, result6.ToUpper()));
rejectData.Reset();
rejectData.Put(9);
request.Reject(rejectData);
}
else
{
int num = CustomNetworkManager.slots;
if (flags.HasFlagFast(CentralAuthPreauthFlags.ReservedSlot) && ServerStatic.GetPermissionsHandler().BanTeamSlots)
{
num = LiteNetLib4MirrorNetworkManager.singleton.maxConnections;
}
else if (ConfigFile.ServerConfig.GetBool("use_reserved_slots", true) && ReservedSlot.HasReservedSlot(result3))
{
num += CustomNetworkManager.reservedSlots;
}
if (LiteNetLib4MirrorCore.Host.PeersCount < num)
{
if (CustomLiteNetLib4MirrorTransport.UserIds.ContainsKey(request.RemoteEndPoint))
{
CustomLiteNetLib4MirrorTransport.UserIds[request.RemoteEndPoint].SetUserId(result3);
}
else
{
CustomLiteNetLib4MirrorTransport.UserIds.Add(request.RemoteEndPoint, new PreauthItem(result3));
}
bool allow = true;
Events.InvokePreAuth(result3, request, position, result5, result6, ref allow);
if (allow)
{
request.Accept();
ServerConsole.AddLog(string.Format("Player {0} preauthenticated from endpoint {1}.", result3, request.RemoteEndPoint));
ServerLogs.AddLog(ServerLogs.Modules.Networking, string.Format("{0} preauthenticated from endpoint {1}.", result3, request.RemoteEndPoint), ServerLogs.ServerLogType.ConnectionUpdate);
}
else
{
ServerConsole.AddLog(string.Format("Player {0} tried to preauthenticate from endpoint {1}, but the request has been rejected by a plugin.", result3, request.RemoteEndPoint));
ServerLogs.AddLog(ServerLogs.Modules.Networking, string.Format("{0} tried to preauthenticate from endpoint {1}, but the request has been rejected by a plugin.", result3, request.RemoteEndPoint), ServerLogs.ServerLogType.ConnectionUpdate);
}
}
else
{
rejectData.Reset();
rejectData.Put(1);
request.Reject(rejectData);
}
}
}
}
catch (Exception exception)
{
ServerConsole.AddLog(string.Format("Player from endpoint {0} sent an invalid preauthentication token. {1}", request.RemoteEndPoint, exception.Message));
rejectData.Reset();
rejectData.Put(2);
request.Reject(rejectData);
}
}
}
}
}
}
catch (Exception exception)
{
ServerConsole.AddLog(string.Format("Player from endpoint {0} failed to preauthenticate: {1}", request.RemoteEndPoint, exception.Message));
rejectData.Reset();
rejectData.Put(4);
request.Reject(rejectData);
}
}
public static void Postfix(BanDetails ban, BanHandler.BanType banType) => Events.InvokePlayerBanned(ban, banType);
private static void Prefix(BanDetails ban, BanHandler.BanType banType, out string __state)
{
__state = ban.Issuer;
}
