Replace hardcoded version with ldflag usage

[rbdr/mobius] / hotline / account.go

diff --git a/hotline/account.go b/hotline/account.go
index 3da818f1ddf5a59e1312ed5ea1c7697e53c6dd27..3ad068797294c91e5b8e159a64364d0cdf77ac48 100644 (file)
--- a/hotline/account.go
+++ b/hotline/account.go
@@ -2,41 +2,65 @@ package hotline
 
 import (
        "encoding/binary"
 
 import (
        "encoding/binary"

-       "github.com/jhalter/mobius/concat"
+       "fmt"

        "golang.org/x/crypto/bcrypt"
        "golang.org/x/crypto/bcrypt"

+       "io"
+       "log"
+       "slices"

 )
 
 const GuestAccount = "guest" // default account used when no login is provided for a connection
 
 type Account struct {
 )
 
 const GuestAccount = "guest" // default account used when no login is provided for a connection
 
 type Account struct {

-       Login    string  `yaml:"Login"`
-       Name     string  `yaml:"Name"`
-       Password string  `yaml:"Password"`
-       Access   *[]byte `yaml:"Access"` // 8 byte bitmap
+       Login    string       `yaml:"Login"`
+       Name     string       `yaml:"Name"`
+       Password string       `yaml:"Password"`
+       Access   accessBitmap `yaml:"Access"`
+
+       readOffset int // Internal offset to track read progress

 }
 
 }
 

-// MarshalBinary marshals an Account to byte slice
-func (a *Account) MarshalBinary() (out []byte) {
+// Read implements io.Reader interface for Account
+func (a *Account) Read(p []byte) (int, error) {

        fields := []Field{
        fields := []Field{

-               NewField(fieldUserName, []byte(a.Name)),
-               NewField(fieldUserLogin, negateString([]byte(a.Login))),
-               NewField(fieldUserAccess, *a.Access),
+               NewField(FieldUserName, []byte(a.Name)),
+               NewField(FieldUserLogin, encodeString([]byte(a.Login))),
+               NewField(FieldUserAccess, a.Access[:]),

        }
 
        if bcrypt.CompareHashAndPassword([]byte(a.Password), []byte("")) != nil {
        }
 
        if bcrypt.CompareHashAndPassword([]byte(a.Password), []byte("")) != nil {

-               fields = append(fields, NewField(fieldUserPassword, []byte("x")))
+               fields = append(fields, NewField(FieldUserPassword, []byte("x")))

        }
 
        fieldCount := make([]byte, 2)
        binary.BigEndian.PutUint16(fieldCount, uint16(len(fields)))
 
        }
 
        fieldCount := make([]byte, 2)
        binary.BigEndian.PutUint16(fieldCount, uint16(len(fields)))
 

-       var fieldPayload []byte
+       var fieldBytes []byte

        for _, field := range fields {
        for _, field := range fields {

-               fieldPayload = append(fieldPayload, field.Payload()...)
+               b, err := io.ReadAll(&field)
+               if err != nil {
+                       return 0, fmt.Errorf("error reading field: %w", err)
+               }
+               fieldBytes = append(fieldBytes, b...)
+       }
+
+       buf := slices.Concat(fieldCount, fieldBytes)
+       if a.readOffset >= len(buf) {
+               return 0, io.EOF // All bytes have been read
+       }
+
+       n := copy(p, buf[a.readOffset:])
+       a.readOffset += n
+
+       return n, nil
+}
+
+// hashAndSalt generates a password hash from a users obfuscated plaintext password
+func hashAndSalt(pwd []byte) string {
+       hash, err := bcrypt.GenerateFromPassword(pwd, bcrypt.MinCost)
+       if err != nil {
+               log.Println(err)

        }
 
        }
 

-       return concat.Slices(
-               fieldCount,
-               fieldPayload,
-       )
+       return string(hash)

 }
 }