Sneed-Group/Poodletooth-iLand
2
0
Fork 0
mirror of https://github.com/Sneed-Group/Poodletooth-iLand synced 2025-01-09 17:53:50 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

tokens: add some token checks

Browse source
This commit is contained in:
Master Jumblespeed 2015-08-16 15:12:23 -04:00
parent 398ede7a85
commit 1f21d7053f
1 changed files with 8 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
toontown/uberdog/ClientServicesManagerUD.py
View file

@ -241,7 +241,12 @@ class RemoteAccountDB:
Token = BASE64(H + X) Token = BASE64(H + X)
''' '''
cookie_check = executeHttpRequest('cookie', cookie=token)
try: try:
check = json.loads(cookie_check)
if check['success'] is not True:
raise ValueError(check['error'])
token = token.decode('base64') token = token.decode('base64')
hash, token = token[:hashSize], token[hashSize:] hash, token = token[:hashSize], token[hashSize:]
correctHash = hashAlgo(token + accountServerSecret).digest() correctHash = hashAlgo(token + accountServerSecret).digest()
@ -256,6 +261,9 @@ class RemoteAccountDB:
raise ValueError('Invalid hash.') raise ValueError('Invalid hash.')
token = json.loads(token.decode('base64')[::-1].decode('rot13')) token = json.loads(token.decode('base64')[::-1].decode('rot13'))
if token['notAfter'] < int(time.time()):
raise ValueError('Expired token.')
except: except:
resp = {'success': False} resp = {'success': False}
callback(resp) callback(resp)