From 6c67ea6fa04207dd3596dbb6200caf6bf4aa509a Mon Sep 17 00:00:00 2001 From: James Quinley Date: Sat, 11 Feb 2023 22:23:52 -0800 Subject: [PATCH] Remove session requirement from web /auth/ request. --- .../DelegationServices/delegationServices.java | 18 ++++++++++++++++-- 1 file changed, 16 insertions(+), 2 deletions(-) diff --git a/src/main/java/com/jamesquinley/DelegationServices/delegationServices.java b/src/main/java/com/jamesquinley/DelegationServices/delegationServices.java index 2b0b894..fefae1e 100644 --- a/src/main/java/com/jamesquinley/DelegationServices/delegationServices.java +++ b/src/main/java/com/jamesquinley/DelegationServices/delegationServices.java @@ -1835,7 +1835,17 @@ public class delegationServices { System.out.println("Login Request (USR&PASS)"); String username = (String) Lrequest.get("user"); String password = (String) Lrequest.get("password"); - String session = (String) Lrequest.get("sessionID"); + String session; + String sourcet = "ABCDEFGHIJKLMNOPQRSTUVWXYZ"; + StringBuilder sbt = new StringBuilder(); + Random srandom = new Random(); + int sidl = 100; + for (int i = 0; i < sidl; i++) { + int index = srandom.nextInt(sourcet.length()); + char randomChar = sourcet.charAt(index); + sbt.append(randomChar); + } + session = sbt.toString(); Object objid = Lrequest.get("_id"); System.out.println(objid); Document accountServer; @@ -1927,6 +1937,7 @@ public class delegationServices { BasicDBObject updateQuery6 = new BasicDBObject(); BasicDBObject updateQuery7 = new BasicDBObject(); BasicDBObject updateQuery8 = new BasicDBObject(); + BasicDBObject updateQuery9 = new BasicDBObject(); BasicDBObject updateQueryAD = new BasicDBObject(); updateQuery.append("$set", new BasicDBObject().append("type", 8)); @@ -1944,6 +1955,8 @@ public class delegationServices { new BasicDBObject().append("status", true)); updateQuery8.append("$set", new BasicDBObject().append("keychainUUID", keychainUUID)); + updateQuery9.append("$set", + new BasicDBObject().append("session", session)); updateQueryAD.append("$set", new BasicDBObject().append("websession", session)); System.out.println("3"); @@ -1952,9 +1965,10 @@ public class delegationServices { dCollection.updateOne(searchQuery, updateQuery2); dCollection.updateOne(searchQuery, updateQuery3); dCollection.updateOne(searchQuery, updateQuery4); - dCollection.updateOne(searchQuery, updateQuery6); + dCollection.updateOne(searchQuery, updateQuery9); dCollection.updateOne(searchQuery, updateQuery7); dCollection.updateOne(searchQuery, updateQuery8); + dCollection.updateOne(searchQuery, updateQuery6); accountS.updateOne(searchQueryAD,updateQueryAD); /*The last update allows the server to add the current authed web session, home page will verify session staus, if it is invalid the user will be pushed to create a new session.