modify:pass encrypt via client only

Author: xengine-qyt

XEngine_Release/XEngine_Config/XEngine_Config.json

@@ -29,10 +29,6 @@
             "tszKeyFile":"./APPVer.key",
             "tszKeyPass":"123123qa"
         },
-        "st_PassCrypto":{
-            "bEnable":false,
-            "nCodec":2
-        },
         "st_XToken":{
             "bAutoRenewal":false,
             "nRenewalTime":-1

XEngine_Source/AuthorizeModule_Client/AuthClient_Connector/AuthClient_Connector.cpp

@@ -140,12 +140,17 @@ bool CAuthClient_Connector::AuthClient_Connector_GetAuth(bool* pbAuth /* = NULL
   类型：句柄型
   可空：Y
   意思：输入动态码绑定的句柄
+ 参数.五：dwCryption
+  In/Out：In
+  类型：整数型
+  可空：Y
+  意思：输入密码加密类型
 返回值
   类型：逻辑型
   意思：是否成功
 备注：
 *********************************************************************/
-bool CAuthClient_Connector::AuthClient_Connector_Login(LPCXSTR lpszUser, LPCXSTR lpszPass, int nDYCode /* = 0 */, XNETHANDLE xhToken /* = 0 */)
+bool CAuthClient_Connector::AuthClient_Connector_Login(LPCXSTR lpszUser, LPCXSTR lpszPass, int nDYCode /* = 0 */, XNETHANDLE xhToken /* = 0 */, XLONG dwCryption /* = 0 */)
 {
 	AuthClient_IsErrorOccur = false;
 
@@ -174,7 +179,18 @@ bool CAuthClient_Connector::AuthClient_Connector_Login(LPCXSTR lpszUser, LPCXSTR
 	st_AuthUser.enDeviceType = ENUM_PROTOCOL_FOR_DEVICE_TYPE_PC_MACOS;
 #endif
 	_tcsxcpy(st_AuthUser.tszUserName, lpszUser);
-	_tcsxcpy(st_AuthUser.tszUserPass, lpszPass);
+
+	if (dwCryption > 0)
+	{
+		int nPLen = _tcsxlen(lpszPass);
+		XBYTE byMD5Buffer[MAX_PATH] = {};
+		Cryption_Api_Digest(lpszPass, byMD5Buffer, &nPLen, false, dwCryption);
+		BaseLib_String_StrToHex((LPCXSTR)byMD5Buffer, nPLen, st_AuthUser.tszUserPass);
+	}
+	else
+	{
+		_tcsxcpy(st_AuthUser.tszUserPass, lpszPass);
+	}
 	//是否有动态码
 	if (nDYCode > 0)
 	{

XEngine_Source/AuthorizeModule_Client/AuthClient_Connector/AuthClient_Connector.h

@@ -26,7 +26,7 @@ class CAuthClient_Connector
 	bool AuthClient_Connector_Connect(LPCXSTR lpszClientAddr, int nPort, LPCXSTR lpszPass = NULL);
 	bool AuthClient_Connector_Close();
 	bool AuthClient_Connector_GetAuth(bool* pbAuth = NULL);
-	bool AuthClient_Connector_Login(LPCXSTR lpszUser, LPCXSTR lpszPass, int nDYCode = 0, XNETHANDLE xhToken = 0);
+	bool AuthClient_Connector_Login(LPCXSTR lpszUser, LPCXSTR lpszPass, int nDYCode = 0, XNETHANDLE xhToken = 0, XLONG dwCryption = 0);
 	bool AuthClient_Connector_Heart(bool bEnable = true);
 protected:
 	static XHTHREAD CALLBACK AuthClient_Connector_Thread(XPVOID lParam);

XEngine_Source/AuthorizeModule_Client/AuthClient_Define.h

@@ -87,12 +87,17 @@ extern "C" bool AuthClient_Connector_GetAuth(bool* pbAuth = NULL);
   类型：句柄型
   可空：Y
   意思：输入动态码绑定的句柄
+ 参数.五：dwCryption
+  In/Out：In
+  类型：整数型
+  可空：Y
+  意思：输入密码加密类型
 返回值
   类型：逻辑型
   意思：是否成功
 备注：
 *********************************************************************/
-extern "C" bool AuthClient_Connector_Login(LPCXSTR lpszUser, LPCXSTR lpszPass, int nDYCode = 0, XNETHANDLE xhToken = 0);
+extern "C" bool AuthClient_Connector_Login(LPCXSTR lpszUser, LPCXSTR lpszPass, int nDYCode = 0, XNETHANDLE xhToken = 0, XLONG dwCryption = 0);
 /********************************************************************
 函数名称：AuthClient_Connector_Heart
 函数功能：启用禁用客户端心跳

XEngine_Source/AuthorizeModule_Client/pch.cpp

@@ -43,9 +43,9 @@ extern "C" bool AuthClient_Connector_GetAuth(bool* pbAuth)
 {
 	return m_Connector.AuthClient_Connector_GetAuth(pbAuth);
 }
-extern "C" bool AuthClient_Connector_Login(LPCXSTR lpszUser, LPCXSTR lpszPass, int nDYCode, XNETHANDLE xhToken)
+extern "C" bool AuthClient_Connector_Login(LPCXSTR lpszUser, LPCXSTR lpszPass, int nDYCode, XNETHANDLE xhToken, XLONG dwCryption)
 {
-	return m_Connector.AuthClient_Connector_Login(lpszUser, lpszPass, nDYCode, xhToken);
+	return m_Connector.AuthClient_Connector_Login(lpszUser, lpszPass, nDYCode, xhToken, dwCryption);
 }
 extern "C" bool AuthClient_Connector_Heart(bool bEnable)
 {

XEngine_Source/AuthorizeModule_Configure/Config_Define.h

@@ -45,11 +45,6 @@ typedef struct
 			XCHAR tszKeyFile[MAX_PATH];                         //本地CDKEY文件地址
 			XCHAR tszKeyPass[MAX_PATH];                         //本地CDKEY密码
 		}st_XCDKey;
-		struct  
-		{
-			bool bEnable;                                   //是否启用
-			int nCodec;                                     //加密方法:ENUM_XENGINE_OPENSSL_DIGEST
-		}st_PassCrypto;
 		struct
 		{
 			bool bAutoRenewal;                              //自动续期

XEngine_Source/AuthorizeModule_Configure/ModuleConfigure_Json/ModuleConfigure_Json.cpp

@@ -113,7 +113,7 @@ bool CModuleConfigure_Json::ModuleConfigure_Json_File(LPCXSTR lpszConfigFile, XE
 	pSt_ServerConfig->st_XTime.nWSTime = st_JsonXTime["nWSTime"].asInt();
 	pSt_ServerConfig->st_XTime.nHTTPTime = st_JsonXTime["nHTTPTime"].asInt();
 	//验证配置
-	if (st_JsonRoot["XVerification"].empty() || (9 != st_JsonRoot["XVerification"].size()))
+	if (st_JsonRoot["XVerification"].empty() || (8 != st_JsonRoot["XVerification"].size()))
 	{
 		Config_IsErrorOccur = true;
 		Config_dwErrorCode = ERROR_AUTHORIZE_MODULE_CONFIGURE_XVER;
@@ -130,9 +130,6 @@ bool CModuleConfigure_Json::ModuleConfigure_Json_File(LPCXSTR lpszConfigFile, XE
 	_tcsxcpy(pSt_ServerConfig->st_XVerification.st_XCDKey.tszKeyFile, st_JsonXVerification["st_XCDKey"]["tszKeyFile"].asCString());
 	_tcsxcpy(pSt_ServerConfig->st_XVerification.st_XCDKey.tszKeyPass, st_JsonXVerification["st_XCDKey"]["tszKeyPass"].asCString());
 
-	pSt_ServerConfig->st_XVerification.st_PassCrypto.bEnable = st_JsonXVerification["st_PassCrypto"]["bEnable"].asBool();
-	pSt_ServerConfig->st_XVerification.st_PassCrypto.nCodec = st_JsonXVerification["st_PassCrypto"]["nCodec"].asInt();
-
 	pSt_ServerConfig->st_XVerification.st_XToken.bAutoRenewal = st_JsonXVerification["st_XToken"]["bAutoRenewal"].asBool();
 	pSt_ServerConfig->st_XVerification.st_XToken.nRenewalTime = st_JsonXVerification["st_XToken"]["nRenewalTime"].asInt();
 	//登录配置

XEngine_Source/XEngine_APPService/XEngine_AuthorizeService/AuthorizeHTTP_Post/AuthorizeHTTP_Client.cpp

@@ -107,15 +107,6 @@ bool XEngine_AuthorizeHTTP_Client(LPCXSTR lpszClientAddr, LPCXSTR lpszAPIName, L
 		memset(&st_UserTable, '\0', sizeof(AUTHREG_USERTABLE));
 
 		Protocol_Parse_HttpParseTable(lpszMsgBuffer, nMsgLen, &st_UserTable);
-
-		if (st_AuthConfig.st_XVerification.st_PassCrypto.bEnable)
-		{
-			int nPLen = _tcsxlen(st_UserTable.st_UserInfo.tszUserPass);
-			XBYTE byMD5Buffer[MAX_PATH] = {};
-			Cryption_Api_Digest(st_UserTable.st_UserInfo.tszUserPass, byMD5Buffer, &nPLen, false, st_AuthConfig.st_XVerification.st_PassCrypto.nCodec);
-			memset(st_UserTable.st_UserInfo.tszUserPass, '\0', sizeof(st_UserTable.st_UserInfo.tszUserPass));
-			BaseLib_String_StrToHex((LPCXSTR)byMD5Buffer, nPLen, st_UserTable.st_UserInfo.tszUserPass);
-		}
 		bool bSuccess = false;
 		if (0 == st_AuthConfig.st_XSql.nDBType) 
 		{

XEngine_Source/XEngine_APPService/XEngine_AuthorizeService/AuthorizeHTTP_Post/AuthorizeHTTP_User.cpp

@@ -132,16 +132,6 @@ bool XEngine_AuthorizeHTTP_User(XNETHANDLE xhToken, LPCXSTR lpszClientAddr, LPCX
 			return false;
 		}
 		bSuccess = false;
-
-		if (st_AuthConfig.st_XVerification.st_PassCrypto.bEnable)
-		{
-			int nPLen = _tcsxlen(st_UserTable.st_UserInfo.tszUserPass);
-			XBYTE byMD5Buffer[MAX_PATH] = {};
-			Cryption_Api_Digest(st_UserTable.st_UserInfo.tszUserPass, byMD5Buffer, &nPLen, false, st_AuthConfig.st_XVerification.st_PassCrypto.nCodec);
-			memset(st_UserTable.st_UserInfo.tszUserPass, '\0', sizeof(st_UserTable.st_UserInfo.tszUserPass));
-			BaseLib_String_StrToHex((LPCXSTR)byMD5Buffer, nPLen, st_UserTable.st_UserInfo.tszUserPass);
-		}
-
 		if (0 == st_AuthConfig.st_XSql.nDBType) 
 		{
 			bSuccess = DBModule_SQLite_UserRegister(&st_UserTable);
@@ -247,32 +237,23 @@ bool XEngine_AuthorizeHTTP_User(XNETHANDLE xhToken, LPCXSTR lpszClientAddr, LPCX
 			XLOG_PRINT(xhLog, XENGINE_HELPCOMPONENTS_XLOG_IN_LOGLEVEL_ERROR, _X("HTTP客户端：%s，用户名：%s，找回重置密码失败，验证信息失败"), lpszClientAddr, st_UserInfo.tszUserName);
 			return false;
 		}
-		//是否开启了密码加密
-		if (st_AuthConfig.st_XVerification.st_PassCrypto.bEnable)
-		{
-			//开启了,密码重置
-			int nPLen = _tcsxlen(st_UserInfo.tszUserPass);
-			XBYTE byMD5Buffer[MAX_PATH] = {};
-			Cryption_Api_Digest(st_UserInfo.tszUserPass, byMD5Buffer, &nPLen, false, st_AuthConfig.st_XVerification.st_PassCrypto.nCodec);
-			memset(st_UserTable.st_UserInfo.tszUserPass, '\0', sizeof(st_UserTable.st_UserInfo.tszUserPass));
-			BaseLib_String_StrToHex((LPCXSTR)byMD5Buffer, nPLen, st_UserTable.st_UserInfo.tszUserPass);
-			//重置密码
-			if (0 == st_AuthConfig.st_XSql.nDBType)
-			{
-				bSuccess = DBModule_SQLite_UserSet(&st_UserTable);
-			}
-			else
-			{
-				bSuccess = DBModule_MySQL_UserSet(&st_UserTable);
-			}
-			if (!bSuccess)
-			{
-				Protocol_Packet_HttpComm(tszSDBuffer, &nSDLen, ERROR_AUTHORIZE_PROTOCOL_NOTFOUND, "not found client");
-				XEngine_Client_TaskSend(lpszClientAddr, tszSDBuffer, nSDLen, XENGINE_AUTH_APP_NETTYPE_HTTP);
-				XLOG_PRINT(xhLog, XENGINE_HELPCOMPONENTS_XLOG_IN_LOGLEVEL_ERROR, _X("HTTP客户端:%s,请求修改密码失败:%s 错误码:%lX"), lpszClientAddr, st_UserTable.st_UserInfo.tszUserName, DBModule_GetLastError());
-				return false;
-			}
+		//重置密码
+		if (0 == st_AuthConfig.st_XSql.nDBType)
+		{
+			bSuccess = DBModule_SQLite_UserSet(&st_UserTable);
+		}
+		else
+		{
+			bSuccess = DBModule_MySQL_UserSet(&st_UserTable);
 		}
+		if (!bSuccess)
+		{
+			Protocol_Packet_HttpComm(tszSDBuffer, &nSDLen, ERROR_AUTHORIZE_PROTOCOL_SERVER, "server set db failed");
+			XEngine_Client_TaskSend(lpszClientAddr, tszSDBuffer, nSDLen, XENGINE_AUTH_APP_NETTYPE_HTTP);
+			XLOG_PRINT(xhLog, XENGINE_HELPCOMPONENTS_XLOG_IN_LOGLEVEL_ERROR, _X("HTTP客户端:%s,请求修改密码失败:%s 错误码:%lX"), lpszClientAddr, st_UserTable.st_UserInfo.tszUserName, DBModule_GetLastError());
+			return false;
+		}
+
 		XENGINE_PROTOCOL_USERAUTH st_AuthProtocol = {};
 		_tcsxcpy(st_AuthProtocol.tszUserName, st_UserTable.st_UserInfo.tszUserName);
 		_tcsxcpy(st_AuthProtocol.tszUserPass, st_UserTable.st_UserInfo.tszUserPass);

XEngine_Source/XEngine_APPService/XEngine_AuthorizeService/Authorize_Net.cpp

@@ -197,16 +197,9 @@ bool XEngine_SendMsg(LPCXSTR lpszClientAddr, LPCXSTR lpszMsgBuffer, int nMsgLen,
 		}
 		else
 		{
-			XCHAR* ptszCodecBuffer = (XCHAR*)ManagePool_Memory_Alloc(xhMemPool, XENGINE_MEMORY_SIZE_MAX);
-			if (NULL == ptszCodecBuffer)
-			{
-				XLOG_PRINT(xhLog, XENGINE_HELPCOMPONENTS_XLOG_IN_LOGLEVEL_ERROR, _X("客户端：%s，网络类型:%d 发送数据失败,内存申请失败,错误码:%d"), lpszClientAddr, nNetType, errno);
-				return false;
-			}
-
-			Cryption_XCrypto_Encoder(lpszMsgBuffer, &nMsgLen, (XBYTE*)ptszCodecBuffer, lpszPass);
-			HttpProtocol_Server_SendMsgEx(xhHttpPacket, m_HTTPMemory.get(), &nSDSize, &st_HDRParam, ptszCodecBuffer, nMsgLen);
-			ManagePool_Memory_Free(xhMemPool, ptszCodecBuffer);
+			CHttpMemory_PoolEx m_CodecMemory(XENGINE_MEMORY_SIZE_MAX);
+			Cryption_XCrypto_Encoder(lpszMsgBuffer, &nMsgLen, (XBYTE*)m_CodecMemory.get(), lpszPass);
+			HttpProtocol_Server_SendMsgEx(xhHttpPacket, m_HTTPMemory.get(), &nSDSize, &st_HDRParam, m_CodecMemory.get(), nMsgLen);
 		}
 		NetCore_TCPXCore_SendEx(xhHttpSocket, lpszClientAddr, m_HTTPMemory.get(), nSDSize);
 		SocketOpt_HeartBeat_ActiveAddrEx(xhHTTPHeart, lpszClientAddr);