Dekescordes/spacebar
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Captcha checking

Browse Source
This commit is contained in:
Madeline 2022-07-20 15:30:50 +10:00
parent 469e55fffa
commit 45e88be53d
4 changed files with 69 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
api/src/routes/auth/login.ts
View File

@ -1,5 +1,5 @@
import { Request, Response, Router } from "express"; import { Request, Response, Router } from "express";
import { route } from "@fosscord/api"; import { route, getIpAdress, verifyCaptcha } from "@fosscord/api";
import bcrypt from "bcrypt"; import bcrypt from "bcrypt";
import { Config, User, generateToken, adjustEmail, FieldErrors } from "@fosscord/util"; import { Config, User, generateToken, adjustEmail, FieldErrors } from "@fosscord/util";
@ -23,8 +23,8 @@ router.post("/", route({ body: "LoginSchema" }), async (req: Request, res: Respo
const config = Config.get(); const config = Config.get();
if (config.login.requireCaptcha && config.security.captcha.enabled) { if (config.login.requireCaptcha && config.security.captcha.enabled) {
const { sitekey, service } = config.security.captcha;
if (!captcha_key) { if (!captcha_key) {
const { sitekey, service } = config.security.captcha;
return res.status(400).json({ return res.status(400).json({
captcha_key: ["captcha-required"], captcha_key: ["captcha-required"],
captcha_sitekey: sitekey, captcha_sitekey: sitekey,
@ -32,7 +32,15 @@ router.post("/", route({ body: "LoginSchema" }), async (req: Request, res: Respo
}); });
} }
// TODO: check captcha const ip = getIpAdress(req);
const verify = await verifyCaptcha(captcha_key, ip);
if (!verify.success) {
return res.status(400).json({
captcha_key: verify["error-codes"],
captcha_sitekey: sitekey,
captcha_service: service
})
}
} }
const user = await User.findOneOrFail({ const user = await User.findOneOrFail({

15
api/src/routes/auth/register.ts
View File

@ -1,6 +1,6 @@
import { Request, Response, Router } from "express"; import { Request, Response, Router } from "express";
import { Config, generateToken, Invite, FieldErrors, User, adjustEmail, trimSpecial } from "@fosscord/util"; import { Config, generateToken, Invite, FieldErrors, User, adjustEmail } from "@fosscord/util";
import { route, getIpAdress, IPAnalysis, isProxy } from "@fosscord/api"; import { route, getIpAdress, IPAnalysis, isProxy, verifyCaptcha } from "@fosscord/api";
import "missing-native-js-functions"; import "missing-native-js-functions";
import bcrypt from "bcrypt"; import bcrypt from "bcrypt";
import { HTTPError } from "lambert-server"; import { HTTPError } from "lambert-server";
@ -65,8 +65,8 @@ router.post("/", route({ body: "RegisterSchema" }), async (req: Request, res: Re
} }
if (register.requireCaptcha && security.captcha.enabled) { if (register.requireCaptcha && security.captcha.enabled) {
const { sitekey, service } = security.captcha;
if (!body.captcha_key) { if (!body.captcha_key) {
const { sitekey, service } = security.captcha;
return res?.status(400).json({ return res?.status(400).json({
captcha_key: ["captcha-required"], captcha_key: ["captcha-required"],
captcha_sitekey: sitekey, captcha_sitekey: sitekey,
@ -74,7 +74,14 @@ router.post("/", route({ body: "RegisterSchema" }), async (req: Request, res: Re
}); });
} }
// TODO: check captcha const verify = await verifyCaptcha(body.captcha_key, ip);
if (!verify.success) {
return res.status(400).json({
captcha_key: verify["error-codes"],
captcha_sitekey: sitekey,
captcha_service: service
})
}
} }
if (!register.allowMultipleAccounts) { if (!register.allowMultipleAccounts) {

1
api/src/util/index.ts
View File

@ -6,3 +6,4 @@ export * from "./utility/RandomInviteID";
export * from "./handlers/route"; export * from "./handlers/route";
export * from "./utility/String"; export * from "./utility/String";
export * from "./handlers/Voice"; export * from "./handlers/Voice";
export * from "./utility/captcha";

46
api/src/util/utility/captcha.ts Normal file
View File

@ -0,0 +1,46 @@
import { Config } from "@fosscord/util";
import fetch from "node-fetch";
export interface hcaptchaResponse {
success: boolean;
challenge_ts: string;
hostname: string;
credit: boolean;
"error-codes": string[];
score: number; // enterprise only
score_reason: string[]; // enterprise only
}
export interface recaptchaResponse {
success: boolean;
score: number; // between 0 - 1
action: string;
challenge_ts: string;
hostname: string;
"error-codes"?: string[];
}
const verifyEndpoints = {
hcaptcha: "https://hcaptcha.com/siteverify",
recaptcha: "https://www.google.com/recaptcha/api/siteverify",
}
export async function verifyCaptcha(response: string, ip?: string) {
const { security } = Config.get();
const { service, secret, sitekey } = security.captcha;
if (!service) throw new Error("Cannot verify captcha without service");
const res = await fetch(verifyEndpoints[service], {
method: "POST",
headers: {
"Content-Type": "application/x-www-form-urlencoded",
},
body: `response=${encodeURIComponent(response)}`
+ `&secret=${encodeURIComponent(secret!)}`
+ `&sitekey=${encodeURIComponent(sitekey!)}`
+ (ip ? `&remoteip=${encodeURIComponent(ip!)}` : ""),
});
return await res.json() as hcaptchaResponse | recaptchaResponse;
}