mirror of
https://github.com/ergochat/ergo.git
synced 2024-11-15 08:29:31 +01:00
parent
dcfd8d8fe8
commit
46572b871f
@ -15,6 +15,8 @@ import (
|
|||||||
"time"
|
"time"
|
||||||
"unicode"
|
"unicode"
|
||||||
|
|
||||||
|
"github.com/ergochat/irc-go/ircutils"
|
||||||
|
|
||||||
"github.com/ergochat/ergo/irc/connection_limits"
|
"github.com/ergochat/ergo/irc/connection_limits"
|
||||||
"github.com/ergochat/ergo/irc/email"
|
"github.com/ergochat/ergo/irc/email"
|
||||||
"github.com/ergochat/ergo/irc/migrations"
|
"github.com/ergochat/ergo/irc/migrations"
|
||||||
@ -460,7 +462,7 @@ func (am *AccountManager) Register(client *Client, account string, callbackNames
|
|||||||
code, err := am.dispatchCallback(client, account, callbackNamespace, callbackValue)
|
code, err := am.dispatchCallback(client, account, callbackNamespace, callbackValue)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
am.Unregister(casefoldedAccount, true)
|
am.Unregister(casefoldedAccount, true)
|
||||||
return errCallbackFailed
|
return ®istrationCallbackError{underlying: err}
|
||||||
} else {
|
} else {
|
||||||
return am.server.store.Update(func(tx *buntdb.Tx) error {
|
return am.server.store.Update(func(tx *buntdb.Tx) error {
|
||||||
_, _, err = tx.Set(verificationCodeKey, code, setOptions)
|
_, _, err = tx.Set(verificationCodeKey, code, setOptions)
|
||||||
@ -469,6 +471,28 @@ func (am *AccountManager) Register(client *Client, account string, callbackNames
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
type registrationCallbackError struct {
|
||||||
|
underlying error
|
||||||
|
}
|
||||||
|
|
||||||
|
func (r *registrationCallbackError) Error() string {
|
||||||
|
return `Account verification could not be sent`
|
||||||
|
}
|
||||||
|
|
||||||
|
func registrationCallbackErrorText(config *Config, client *Client, err error) string {
|
||||||
|
if callbackErr, ok := err.(*registrationCallbackError); ok {
|
||||||
|
// only expose a user-visible error if we are doing direct sending
|
||||||
|
if config.Accounts.Registration.EmailVerification.DirectSendingEnabled() {
|
||||||
|
errorText := ircutils.SanitizeText(callbackErr.underlying.Error(), 350)
|
||||||
|
return fmt.Sprintf(client.t("Could not dispatch registration e-mail: %s"), errorText)
|
||||||
|
} else {
|
||||||
|
return client.t("Could not dispatch registration e-mail")
|
||||||
|
}
|
||||||
|
} else {
|
||||||
|
return ""
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
// validatePassphrase checks whether a passphrase is allowed by our rules
|
// validatePassphrase checks whether a passphrase is allowed by our rules
|
||||||
func validatePassphrase(passphrase string) error {
|
func validatePassphrase(passphrase string) error {
|
||||||
// sanity check the length
|
// sanity check the length
|
||||||
|
@ -15,7 +15,7 @@ import (
|
|||||||
|
|
||||||
var (
|
var (
|
||||||
ErrBlacklistedAddress = errors.New("Email address is blacklisted")
|
ErrBlacklistedAddress = errors.New("Email address is blacklisted")
|
||||||
ErrInvalidAddress = errors.New("Email address is blacklisted")
|
ErrInvalidAddress = errors.New("Email address is invalid")
|
||||||
ErrNoMXRecord = errors.New("Couldn't resolve MX record")
|
ErrNoMXRecord = errors.New("Couldn't resolve MX record")
|
||||||
)
|
)
|
||||||
|
|
||||||
@ -73,6 +73,11 @@ func (config *MailtoConfig) Postprocess(heloDomain string) (err error) {
|
|||||||
return config.DKIM.Postprocess()
|
return config.DKIM.Postprocess()
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// are we sending email directly, as opposed to deferring to an MTA?
|
||||||
|
func (config *MailtoConfig) DirectSendingEnabled() bool {
|
||||||
|
return config.MTAReal.Server == ""
|
||||||
|
}
|
||||||
|
|
||||||
// get the preferred MX record hostname, "" on error
|
// get the preferred MX record hostname, "" on error
|
||||||
func lookupMX(domain string) (server string) {
|
func lookupMX(domain string) (server string) {
|
||||||
var minPref uint16
|
var minPref uint16
|
||||||
@ -104,7 +109,7 @@ func SendMail(config MailtoConfig, recipient string, msg []byte) (err error) {
|
|||||||
|
|
||||||
var addr string
|
var addr string
|
||||||
var auth smtp.Auth
|
var auth smtp.Auth
|
||||||
if config.MTAReal.Server != "" {
|
if !config.DirectSendingEnabled() {
|
||||||
addr = fmt.Sprintf("%s:%d", config.MTAReal.Server, config.MTAReal.Port)
|
addr = fmt.Sprintf("%s:%d", config.MTAReal.Server, config.MTAReal.Port)
|
||||||
if config.MTAReal.Username != "" && config.MTAReal.Password != "" {
|
if config.MTAReal.Username != "" && config.MTAReal.Password != "" {
|
||||||
auth = smtp.PlainAuth("", config.MTAReal.Username, config.MTAReal.Password, config.MTAReal.Server)
|
auth = smtp.PlainAuth("", config.MTAReal.Username, config.MTAReal.Password, config.MTAReal.Server)
|
||||||
|
@ -34,7 +34,6 @@ var (
|
|||||||
errAccountUpdateFailed = errors.New(`Error while updating your account information`)
|
errAccountUpdateFailed = errors.New(`Error while updating your account information`)
|
||||||
errAccountMustHoldNick = errors.New(`You must hold that nickname in order to register it`)
|
errAccountMustHoldNick = errors.New(`You must hold that nickname in order to register it`)
|
||||||
errAuthzidAuthcidMismatch = errors.New(`authcid and authzid must be the same`)
|
errAuthzidAuthcidMismatch = errors.New(`authcid and authzid must be the same`)
|
||||||
errCallbackFailed = errors.New("Account verification could not be sent")
|
|
||||||
errCertfpAlreadyExists = errors.New(`An account already exists for your certificate fingerprint`)
|
errCertfpAlreadyExists = errors.New(`An account already exists for your certificate fingerprint`)
|
||||||
errChannelNotOwnedByAccount = errors.New("Channel not owned by the specified account")
|
errChannelNotOwnedByAccount = errors.New("Channel not owned by the specified account")
|
||||||
errChannelTransferNotOffered = errors.New(`You weren't offered ownership of that channel`)
|
errChannelTransferNotOffered = errors.New(`You weren't offered ownership of that channel`)
|
||||||
|
@ -63,14 +63,16 @@ func parseCallback(spec string, config *Config) (callbackNamespace string, callb
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
func registrationErrorToMessage(err error) (message string) {
|
func registrationErrorToMessage(config *Config, client *Client, err error) (message string) {
|
||||||
|
if emailError := registrationCallbackErrorText(config, client, err); emailError != "" {
|
||||||
|
return emailError
|
||||||
|
}
|
||||||
|
|
||||||
switch err {
|
switch err {
|
||||||
case errAccountAlreadyRegistered, errAccountAlreadyVerified, errAccountAlreadyUnregistered, errAccountAlreadyLoggedIn, errAccountCreation, errAccountMustHoldNick, errAccountBadPassphrase, errCertfpAlreadyExists, errFeatureDisabled, errAccountBadPassphrase:
|
case errAccountAlreadyRegistered, errAccountAlreadyVerified, errAccountAlreadyUnregistered, errAccountAlreadyLoggedIn, errAccountCreation, errAccountMustHoldNick, errAccountBadPassphrase, errCertfpAlreadyExists, errFeatureDisabled, errAccountBadPassphrase:
|
||||||
message = err.Error()
|
message = err.Error()
|
||||||
case errLimitExceeded:
|
case errLimitExceeded:
|
||||||
message = `There have been too many registration attempts recently; try again later`
|
message = `There have been too many registration attempts recently; try again later`
|
||||||
case errCallbackFailed:
|
|
||||||
message = `Could not dispatch verification email`
|
|
||||||
default:
|
default:
|
||||||
// default response: let's be risk-averse about displaying internal errors
|
// default response: let's be risk-averse about displaying internal errors
|
||||||
// to the clients, especially for something as sensitive as accounts
|
// to the clients, especially for something as sensitive as accounts
|
||||||
@ -2548,10 +2550,12 @@ func registerHandler(server *Server, client *Client, msg ircmsg.Message, rb *Res
|
|||||||
rb.Add(nil, server.name, "FAIL", "REGISTER", "USERNAME_EXISTS", accountName, client.t("Username is already registered or otherwise unavailable"))
|
rb.Add(nil, server.name, "FAIL", "REGISTER", "USERNAME_EXISTS", accountName, client.t("Username is already registered or otherwise unavailable"))
|
||||||
case errAccountBadPassphrase:
|
case errAccountBadPassphrase:
|
||||||
rb.Add(nil, server.name, "FAIL", "REGISTER", "INVALID_PASSWORD", accountName, client.t("Password was invalid"))
|
rb.Add(nil, server.name, "FAIL", "REGISTER", "INVALID_PASSWORD", accountName, client.t("Password was invalid"))
|
||||||
case errCallbackFailed:
|
|
||||||
rb.Add(nil, server.name, "FAIL", "REGISTER", "UNACCEPTABLE_EMAIL", accountName, client.t("Could not dispatch verification e-mail"))
|
|
||||||
default:
|
default:
|
||||||
rb.Add(nil, server.name, "FAIL", "REGISTER", "UNKNOWN_ERROR", accountName, client.t("Could not register"))
|
if emailError := registrationCallbackErrorText(config, client, err); emailError != "" {
|
||||||
|
rb.Add(nil, server.name, "FAIL", "REGISTER", "UNACCEPTABLE_EMAIL", accountName, emailError)
|
||||||
|
} else {
|
||||||
|
rb.Add(nil, server.name, "FAIL", "REGISTER", "UNKNOWN_ERROR", accountName, client.t("Could not register"))
|
||||||
|
}
|
||||||
}
|
}
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
@ -900,7 +900,7 @@ func nsRegisterHandler(service *ircService, server *Server, client *Client, comm
|
|||||||
}
|
}
|
||||||
} else {
|
} else {
|
||||||
// details could not be stored and relevant numerics have been dispatched, abort
|
// details could not be stored and relevant numerics have been dispatched, abort
|
||||||
message := registrationErrorToMessage(err)
|
message := registrationErrorToMessage(config, client, err)
|
||||||
service.Notice(rb, client.t(message))
|
service.Notice(rb, client.t(message))
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
Loading…
Reference in New Issue
Block a user