clientlogin + 2FA #260
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -298,6 +298,7 @@ | |
| <string name="login-ro-title">Switch to read-only</string> | ||
| <string name="login-ro-question">One or more projects ($1) do not allow you to login with edit permissions (reason: $2). Do you want to switch to read-only mode instead?</string> | ||
| <string name="login-ro-info">Project $1 switched to read-only mode</string> | ||
| <string name="not-implemented">This functionality is not yet implemented. Please contact developers at [email protected].</string> | ||
| <string name="main-stat">$1 edits per minute, $2 reverts per minute, level $3</string> | ||
| <string name="main-menu-provider-stop">Stop provider</string> | ||
| <string name="main-menu-provider-resume">Resume provider</string> | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -33,6 +33,7 @@ | |
| #include <QSslSocket> | ||
| #include <QDesktopServices> | ||
| #include <QMessageBox> | ||
| #include <QInputDialog> | ||
|
|
||
| #define LOGINFORM_LOGIN 0 | ||
| #define LOGINFORM_SITEINFO 1 | ||
|
|
@@ -554,21 +555,20 @@ void Login::PerformLoginPart2(WikiSite *site) | |
| this->Statuses[site] = WaitingForToken; | ||
| this->LoginQueries.remove(site); | ||
| query->DecRef(); | ||
| query = new ApiQuery(ClientLogin, site); | ||
|
There was a problem hiding this comment. Are you sure that Bot login can use "ClientLogin"? There was a problem hiding this comment. ... no, i can't log me in with botpassword... so it looks like that we need to leave both connection methods available in parallel :( There was a problem hiding this comment. I actually think that classic login was deprecated for everything except for bot passwords, basically in future it should replace classic login with bot password login only. |
||
| this->LoginQueries.insert(site, query); | ||
| //query->HiddenQuery = true; | ||
| query->IncRef(); | ||
| if (hcfg->SystemConfig_BotPassword) | ||
| { | ||
| query->Parameters = "username=" + QUrl::toPercentEncoding(hcfg->SystemConfig_BotLogin) | ||
| + "&password=" + QUrl::toPercentEncoding(hcfg->TemporaryConfig_Password); | ||
| } else | ||
| { | ||
| query->Parameters = "username=" + QUrl::toPercentEncoding(hcfg->SystemConfig_Username) | ||
| + "&password=" + QUrl::toPercentEncoding(hcfg->TemporaryConfig_Password); | ||
| } | ||
| query->Parameters = query->Parameters + "&loginreturnurl=http://example.com/&rememberMe=1&logintoken=" + QUrl::toPercentEncoding(token); | ||
| query->UsingPOST = true; | ||
| query->Process(); | ||
| } | ||
|
|
@@ -1269,42 +1269,71 @@ bool Login::ProcessOutput(WikiSite *site) | |
| ApiQuery *query = this->LoginQueries[site]; | ||
| // Check what the result was | ||
| ApiQueryResult *result = query->GetApiQueryResult(); | ||
| ApiQueryResultNode *ln = result->GetNode("clientlogin"); | ||
| QString status = ln->GetAttribute("status"); | ||
| if (status.isEmpty()) | ||
| { | ||
| this->DisplayError(_l("api.php-invalid-response")); | ||
| return false; | ||
| } | ||
|
|
||
| if (status == "PASS") | ||
| return true; | ||
| if (status == "UI") { | ||
| // Need a user interaction like captacha or 2FA | ||
| //QString v_id = ln->ChildNodes.at(0)->GetAttribute("id", "unknown"); | ||
| //if (v_id == "TOTPAuthenticationRequest"){ | ||
|
There was a problem hiding this comment. I can't parse the xml tree to get back the |
||
| if (true){ | ||
| // 2FA is requierd (TOTP code needed) | ||
| QString totp = QInputDialog::getText(this, "Two factor authentification", "Please enter the 2FA code from your device:"); | ||
| query = new ApiQuery(ClientLogin, site); | ||
| //query->HiddenQuery = true; | ||
| query->IncRef(); | ||
| query->Parameters = "username=" + QUrl::toPercentEncoding(hcfg->SystemConfig_BotLogin) | ||
| + "&password=" + QUrl::toPercentEncoding(hcfg->TemporaryConfig_Password) | ||
| + "&OATHToken=" + totp + "&loginreturnurl=http://example.com/&rememberMe=1&logintoken=" + QUrl::toPercentEncoding(this->Tokens[site]); | ||
|
There was a problem hiding this comment. Why is loginreturnurl needed at all here There was a problem hiding this comment. yeah I'll use |
||
| query->UsingPOST = true; | ||
| query->Process(); | ||
| ApiQueryResult *result = query->GetApiQueryResult(); | ||
| ApiQueryResultNode *ln = result->GetNode("clientlogin"); | ||
|
There was a problem hiding this comment. We need to execute this second request, but I can't finish it correctly without spending it with other connection requests. |
||
| } | ||
| return false; | ||
| } | ||
| if (status == "REDIRECT") | ||
| // Need to login using another web service | ||
| this->DisplayError(_l("not-implemented")); | ||
| return false; | ||
| if (status == "FAIL") | ||
| { | ||
| QString message = ln->GetAttribute("message"); | ||
| QString message_code = ln->GetAttribute("messagecode"); | ||
| if (message_code == "wrongpassword") { | ||
| /// \bug This sometimes doesn't work properly | ||
| this->ui->lineEdit_password->setFocus(); | ||
| this->DisplayError(_l("login-error-password")); | ||
| return false; | ||
| } | ||
| /// \todo Verify these error codes | ||
| if (message_code == "EmptyPass") | ||
| { | ||
| this->DisplayError(_l("login-password-empty")); | ||
| return false; | ||
| } | ||
| if (message_code == "NoName") | ||
| { | ||
| this->DisplayError(_l("login-fail-wrong-name")); | ||
| return false; | ||
| } | ||
| if (message_code == "NotExists") | ||
| { | ||
| this->DisplayError(_l("login-username-doesnt-exist")); | ||
| return false; | ||
| } | ||
| if (message.isEmpty()) | ||
| message = message_code; | ||
| this->DisplayError(_l("login-api", message)); | ||
| return false; | ||
| } | ||
| } | ||
|
|
||
| void Login::on_ButtonOK_clicked() | ||
|
|
||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This needs to be called ActionClientLogin
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
done