kawari/src/login/database.rs

use std::sync::Mutex;

use rand::Rng;
use rand::distr::Alphanumeric;
use rusqlite::Connection;

use crate::ipc::lobby::ServiceAccount;

pub struct LoginDatabase {
    connection: Mutex<Connection>,
}

#[derive(Debug)]
pub enum LoginError {
    WrongUsername,
    WrongPassword,
    InternalError,
}

impl Default for LoginDatabase {
    fn default() -> Self {
        Self::new()
    }
}

impl LoginDatabase {
    pub fn new() -> Self {
        let connection = Connection::open("login.db").expect("Failed to open database!");

        // Create users table
        {
            let query = "CREATE TABLE IF NOT EXISTS users (id INTEGER PRIMARY KEY, username TEXT, password TEXT);";
            connection.execute(query, ()).unwrap();
        }

        // Create active sessions table
        {
            let query =
                "CREATE TABLE IF NOT EXISTS sessions (user_id INTEGER PRIMARY KEY, sid TEXT);";
            connection.execute(query, ()).unwrap();
        }

        // Create service accounts table
        {
            let query = "CREATE TABLE IF NOT EXISTS service_accounts (id INTEGER PRIMARY KEY, user_id INTEGER);";
            connection.execute(query, ()).unwrap();
        }

        Self {
            connection: Mutex::new(connection),
        }
    }

    fn generate_account_id() -> u32 {
        rand::random()
    }

    /// Adds a new user to the database.
    pub fn add_user(&self, username: &str, password: &str) {
        if self.check_username(username) {
            tracing::info!("{username} already taken!");
            return;
        }

        let user_id = Self::generate_account_id();

        // add user
        {
            let connection = self.connection.lock().unwrap();

            tracing::info!("Adding user with username {username}");

            let query = "INSERT INTO users VALUES (?1, ?2, ?3);";
            connection
                .execute(query, (user_id, username, password))
                .expect("Failed to write user to database!");
        }

        // add service account
        {
            let connection = self.connection.lock().unwrap();

            let query = "INSERT INTO service_accounts VALUES (?1, ?2);";
            connection
                .execute(query, (Self::generate_account_id(), user_id))
                .expect("Failed to write service account to database!");
        }
    }

    /// Login as user, returns a session id.
    pub fn login_user(&self, username: &str, password: &str) -> Result<String, LoginError> {
        let selected_row: Result<(u32, String), rusqlite::Error>;

        tracing::info!("Finding user with username {username}");

        {
            let connection = self.connection.lock().unwrap();

            let mut stmt = connection
                .prepare("SELECT id, password FROM users WHERE username = ?1")
                .map_err(|_err| LoginError::WrongUsername)?;
            selected_row = stmt.query_row((username,), |row| Ok((row.get(0)?, row.get(1)?)));
        }

        if let Ok((_id, their_password)) = selected_row {
            if their_password == password {
                return self.create_session(_id).ok_or(LoginError::InternalError);
            } else {
                return Err(LoginError::WrongPassword);
            }
        }

        Err(LoginError::WrongUsername)
    }

    fn generate_sid() -> String {
        let random_id: String = rand::rng()
            .sample_iter(&Alphanumeric)
            .take(56)
            .map(char::from)
            .collect();
        random_id.to_lowercase()
    }

    /// Create a new session for user, which replaces the last one (if any)
    pub fn create_session(&self, user_id: u32) -> Option<String> {
        let connection = self.connection.lock().unwrap();

        let sid = Self::generate_sid();

        connection
            .execute(
                "INSERT OR REPLACE INTO sessions VALUES (?1, ?2);",
                (user_id, &sid),
            )
            .ok()?;

        tracing::info!("Created new session for account {user_id}: {sid}");

        Some(sid)
    }

    /// Gets the service account list
    pub fn check_session(&self, sid: &str) -> Vec<ServiceAccount> {
        let connection = self.connection.lock().unwrap();

        // get user id
        let user_id: u32;
        {
            let mut stmt = connection
                .prepare("SELECT user_id FROM sessions WHERE sid = ?1")
                .ok()
                .unwrap();
            user_id = stmt.query_row((sid,), |row| row.get(0)).unwrap();
        }

        // service accounts
        {
            let mut stmt = connection
                .prepare("SELECT id FROM service_accounts WHERE user_id = ?1")
                .ok()
                .unwrap();
            let accounts = stmt.query_map((user_id,), |row| row.get(0)).unwrap();

            let mut service_accounts = Vec::new();
            for (index, id) in accounts.enumerate() {
                service_accounts.push(ServiceAccount {
                    id: id.unwrap(),
                    unk1: 0,
                    index: index as u32,
                    name: format!("FINAL FANTASY XIV {}", index + 1), // TODO: don't add the "1" if you only have one service account
                });
            }

            service_accounts
        }
    }

    /// Checks if a username is taken
    pub fn check_username(&self, username: &str) -> bool {
        let connection = self.connection.lock().unwrap();

        let mut stmt = connection
            .prepare("SELECT id FROM users WHERE username = ?1")
            .ok()
            .unwrap();
        let selected_row: Result<u32, rusqlite::Error> =
            stmt.query_row((username,), |row| row.get(0));

        selected_row.is_ok()
    }

    pub fn get_user_id(&self, sid: &str) -> u32 {
        let connection = self.connection.lock().unwrap();

        let mut stmt = connection
            .prepare("SELECT user_id FROM sessions WHERE sid = ?1")
            .ok()
            .unwrap();
        stmt.query_row((sid,), |row| row.get(0)).unwrap()
    }

    pub fn get_username(&self, user_id: u32) -> String {
        let connection = self.connection.lock().unwrap();

        let mut stmt = connection
            .prepare("SELECT username FROM users WHERE id = ?1")
            .ok()
            .unwrap();
        stmt.query_row((user_id,), |row| row.get(0)).unwrap()
    }

    /// TODO: only works for one
    pub fn get_service_account(&self, user_id: u32) -> u32 {
        let connection = self.connection.lock().unwrap();

        let mut stmt = connection
            .prepare("SELECT id FROM service_accounts WHERE user_id = ?1")
            .ok()
            .unwrap();
        stmt.query_row((user_id,), |row| row.get(0)).unwrap()
    }
}
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`use std::sync::Mutex;`

			`use rand::Rng;`
Update Cargo dependencies, remove Oodle as a default feature 2025-03-22 21:44:28 -04:00			`use rand::distr::Alphanumeric;`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`use rusqlite::Connection;`

Re-organize IPC segments into the ipc module These were kind of scattered everywhere, instead we should move them into their own module. Kawari's custom IPC is moved here too. 2025-05-02 00:47:11 -04:00			`use crate::ipc::lobby::ServiceAccount;`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`pub struct LoginDatabase {`
			`connection: Mutex<Connection>,`
			`}`

Add barebones account management page This also moves the login pages to the login server, which makes the code slightly a bit more contained. The account management page doesn't allow you to do anything yet, but for future usage. 2025-04-05 22:40:44 -04:00			`#[derive(Debug)]`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`pub enum LoginError {`
			`WrongUsername,`
			`WrongPassword,`
			`InternalError,`
			`}`

Run Clippy auto-fix, disable large enum size warning 2025-03-23 18:14:14 -04:00			`impl Default for LoginDatabase {`
			`fn default() -> Self {`
			`Self::new()`
			`}`
			`}`

Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`impl LoginDatabase {`
			`pub fn new() -> Self {`
			`let connection = Connection::open("login.db").expect("Failed to open database!");`

			`// Create users table`
			`{`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`let query = "CREATE TABLE IF NOT EXISTS users (id INTEGER PRIMARY KEY, username TEXT, password TEXT);";`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`connection.execute(query, ()).unwrap();`
			`}`

			`// Create active sessions table`
			`{`
			`let query =`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`"CREATE TABLE IF NOT EXISTS sessions (user_id INTEGER PRIMARY KEY, sid TEXT);";`
			`connection.execute(query, ()).unwrap();`
			`}`

			`// Create service accounts table`
			`{`
			`let query = "CREATE TABLE IF NOT EXISTS service_accounts (id INTEGER PRIMARY KEY, user_id INTEGER);";`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`connection.execute(query, ()).unwrap();`
			`}`

			`Self {`
			`connection: Mutex::new(connection),`
			`}`
			`}`

Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`fn generate_account_id() -> u32 {`
			`rand::random()`
			`}`

Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`/// Adds a new user to the database.`
			`pub fn add_user(&self, username: &str, password: &str) {`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`if self.check_username(username) {`
			`tracing::info!("{username} already taken!");`
			`return;`
			`}`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`let user_id = Self::generate_account_id();`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`// add user`
			`{`
			`let connection = self.connection.lock().unwrap();`

			`tracing::info!("Adding user with username {username}");`

			`let query = "INSERT INTO users VALUES (?1, ?2, ?3);";`
			`connection`
			`.execute(query, (user_id, username, password))`
			`.expect("Failed to write user to database!");`
			`}`

			`// add service account`
			`{`
			`let connection = self.connection.lock().unwrap();`

			`let query = "INSERT INTO service_accounts VALUES (?1, ?2);";`
			`connection`
			`.execute(query, (Self::generate_account_id(), user_id))`
			`.expect("Failed to write service account to database!");`
			`}`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`}`

			`/// Login as user, returns a session id.`
			`pub fn login_user(&self, username: &str, password: &str) -> Result<String, LoginError> {`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`let selected_row: Result<(u32, String), rusqlite::Error>;`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00
			`tracing::info!("Finding user with username {username}");`

			`{`
			`let connection = self.connection.lock().unwrap();`

			`let mut stmt = connection`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`.prepare("SELECT id, password FROM users WHERE username = ?1")`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`.map_err(\|_err\| LoginError::WrongUsername)?;`
			`selected_row = stmt.query_row((username,), \|row\| Ok((row.get(0)?, row.get(1)?)));`
			`}`

Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`if let Ok((_id, their_password)) = selected_row {`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`if their_password == password {`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`return self.create_session(_id).ok_or(LoginError::InternalError);`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`} else {`
			`return Err(LoginError::WrongPassword);`
			`}`
			`}`

			`Err(LoginError::WrongUsername)`
			`}`

			`fn generate_sid() -> String {`
Update Cargo dependencies, remove Oodle as a default feature 2025-03-22 21:44:28 -04:00			`let random_id: String = rand::rng()`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`.sample_iter(&Alphanumeric)`
			`.take(56)`
			`.map(char::from)`
			`.collect();`
			`random_id.to_lowercase()`
			`}`

			`/// Create a new session for user, which replaces the last one (if any)`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`pub fn create_session(&self, user_id: u32) -> Option<String> {`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`let connection = self.connection.lock().unwrap();`

			`let sid = Self::generate_sid();`

			`connection`
			`.execute(`
			`"INSERT OR REPLACE INTO sessions VALUES (?1, ?2);",`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`(user_id, &sid),`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`)`
			`.ok()?;`

Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`tracing::info!("Created new session for account {user_id}: {sid}");`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00
			`Some(sid)`
			`}`

Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`/// Gets the service account list`
			`pub fn check_session(&self, sid: &str) -> Vec<ServiceAccount> {`
			`let connection = self.connection.lock().unwrap();`

			`// get user id`
			`let user_id: u32;`
			`{`
			`let mut stmt = connection`
			`.prepare("SELECT user_id FROM sessions WHERE sid = ?1")`
			`.ok()`
			`.unwrap();`
Move player stat sending function to ZoneConnection 2025-04-14 16:18:03 -04:00			`user_id = stmt.query_row((sid,), \|row\| row.get(0)).unwrap();`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`}`

			`// service accounts`
			`{`
			`let mut stmt = connection`
			`.prepare("SELECT id FROM service_accounts WHERE user_id = ?1")`
			`.ok()`
			`.unwrap();`
			`let accounts = stmt.query_map((user_id,), \|row\| row.get(0)).unwrap();`

			`let mut service_accounts = Vec::new();`
Fix various Clippy warnings 2025-04-11 08:32:55 -04:00			`for (index, id) in accounts.enumerate() {`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`service_accounts.push(ServiceAccount {`
			`id: id.unwrap(),`
			`unk1: 0,`
Fix various Clippy warnings 2025-04-11 08:32:55 -04:00			`index: index as u32,`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`name: format!("FINAL FANTASY XIV {}", index + 1), // TODO: don't add the "1" if you only have one service account`
			`});`
			`}`

			`service_accounts`
			`}`
			`}`

			`/// Checks if a username is taken`
			`pub fn check_username(&self, username: &str) -> bool {`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`let connection = self.connection.lock().unwrap();`

			`let mut stmt = connection`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`.prepare("SELECT id FROM users WHERE username = ?1")`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`.ok()`
			`.unwrap();`
Integrate Login<->Lobby servers, remove placeholder service account id All accounts were sharing the same character list, but now they should be properly separated. This also modifies the login database to prepare for multiple service accounts, but there's no way to manage them in the web interface yet still. 2025-04-05 21:36:56 -04:00			`let selected_row: Result<u32, rusqlite::Error> =`
Move player stat sending function to ZoneConnection 2025-04-14 16:18:03 -04:00			`stmt.query_row((username,), \|row\| row.get(0));`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00
			`selected_row.is_ok()`
			`}`
Add barebones account management page This also moves the login pages to the login server, which makes the code slightly a bit more contained. The account management page doesn't allow you to do anything yet, but for future usage. 2025-04-05 22:40:44 -04:00
			`pub fn get_user_id(&self, sid: &str) -> u32 {`
			`let connection = self.connection.lock().unwrap();`

			`let mut stmt = connection`
			`.prepare("SELECT user_id FROM sessions WHERE sid = ?1")`
			`.ok()`
			`.unwrap();`
Move player stat sending function to ZoneConnection 2025-04-14 16:18:03 -04:00			`stmt.query_row((sid,), \|row\| row.get(0)).unwrap()`
Add barebones account management page This also moves the login pages to the login server, which makes the code slightly a bit more contained. The account management page doesn't allow you to do anything yet, but for future usage. 2025-04-05 22:40:44 -04:00			`}`

			`pub fn get_username(&self, user_id: u32) -> String {`
			`let connection = self.connection.lock().unwrap();`

			`let mut stmt = connection`
			`.prepare("SELECT username FROM users WHERE id = ?1")`
			`.ok()`
			`.unwrap();`
Move player stat sending function to ZoneConnection 2025-04-14 16:18:03 -04:00			`stmt.query_row((user_id,), \|row\| row.get(0)).unwrap()`
Add barebones account management page This also moves the login pages to the login server, which makes the code slightly a bit more contained. The account management page doesn't allow you to do anything yet, but for future usage. 2025-04-05 22:40:44 -04:00			`}`
Add "character backup import" feature to the account management page We have had an import feature for a while, allowing you to easily recreate your retail character from Auracite backups. But the feature was implemented before we had proper service accounts, and it always assigned it to ID 1. Now it's moved to the user-visible account management page. 2025-05-01 15:34:01 -04:00
			`/// TODO: only works for one`
			`pub fn get_service_account(&self, user_id: u32) -> u32 {`
			`let connection = self.connection.lock().unwrap();`

			`let mut stmt = connection`
			`.prepare("SELECT id FROM service_accounts WHERE user_id = ?1")`
			`.ok()`
			`.unwrap();`
			`stmt.query_row((user_id,), \|row\| row.get(0)).unwrap()`
			`}`
Move login & world database code/logic to their own modules and structs This should remove some of the pollution I added while working on these features. 2025-03-22 16:15:29 -04:00			`}`