fediauth/onboard.lua

local FORMNAME = "otp-enable"

minetest.register_chatcommand("otp_disable", {
    privs = { otp_enabled = true },
    func = function(name)
        -- clear priv
        local privs = minetest.get_player_privs(name)
        privs.otp_enabled = true
        minetest.set_player_privs(name, privs)
        return true, "OTP login disabled"
    end
})

minetest.register_chatcommand("otp_enable", {
    func = function(name)
        if name == "singleplayer" then
            return false, "OTP not available in singleplayer"
        end

        -- issuer name
        local issuer = "Minetest"
        if minetest.settings:get("server_name") ~= "" then
            issuer = minetest.settings:get("server_name")
        elseif minetest.settings:get("server_address") ~= "" then
            issuer = minetest.settings:get("server_address")
        end

        local secret_b32 = otp.get_player_secret_b32(name)

        -- url for the qr code
        local url = "otpauth://totp/" .. issuer .. ":" .. name .. "?algorithm=SHA1&" ..
            "digits=6&issuer=" .. issuer .. "&period=30&" ..
            "secret=" .. secret_b32

        local ok, code = otp.qrcode(url)
        if not ok then
            return false, "qr code generation failed"
        end

        local png = otp.create_qr_png(code)
        local formspec = "size[10,10]" ..
            "image[1,0.6;5,5;^[png:" .. minetest.encode_base64(png) .. "]" ..
            "field[1,9;5,1;code;Code;]"

        minetest.show_formspec(name, FORMNAME, formspec)
    end
})

minetest.register_on_player_receive_fields(function(player, formname, fields)
    if formname ~= FORMNAME then
        return
    end

    if fields.code then
        local playername = player:get_player_name()
        local secret_b32 = otp.get_player_secret_b32(playername)
        local expected_code = otp.generate_totp(secret_b32)
        if expected_code == fields.code then
            -- set priv
            local privs = minetest.get_player_privs(playername)
            privs.otp_enabled = true
            minetest.set_player_privs(playername, privs)

            minetest.chat_send_player(playername, "Code validation succeeded, OTP login enabled")
        else
            minetest.chat_send_player(playername, "Code validation failed!")
        end

    end
end)
onobard stub 2023-01-28 19:30:44 +00:00			`local FORMNAME = "otp-enable"`

onboard form and join check 2023-01-29 11:13:50 +00:00			`minetest.register_chatcommand("otp_disable", {`
			`privs = { otp_enabled = true },`
			`func = function(name)`
			`-- clear priv`
			`local privs = minetest.get_player_privs(name)`
			`privs.otp_enabled = true`
			`minetest.set_player_privs(name, privs)`
			`return true, "OTP login disabled"`
			`end`
			`})`
onobard stub 2023-01-28 19:30:44 +00:00
			`minetest.register_chatcommand("otp_enable", {`
			`func = function(name)`
onboard form and join check 2023-01-29 11:13:50 +00:00			`if name == "singleplayer" then`
			`return false, "OTP not available in singleplayer"`
			`end`

			`-- issuer name`
onobard stub 2023-01-28 19:30:44 +00:00			`local issuer = "Minetest"`
			`if minetest.settings:get("server_name") ~= "" then`
			`issuer = minetest.settings:get("server_name")`
			`elseif minetest.settings:get("server_address") ~= "" then`
			`issuer = minetest.settings:get("server_address")`
			`end`

onboard form and join check 2023-01-29 11:13:50 +00:00			`local secret_b32 = otp.get_player_secret_b32(name)`

			`-- url for the qr code`
onobard stub 2023-01-28 19:30:44 +00:00			`local url = "otpauth://totp/" .. issuer .. ":" .. name .. "?algorithm=SHA1&" ..`
			`"digits=6&issuer=" .. issuer .. "&period=30&" ..`
			`"secret=" .. secret_b32`

			`local ok, code = otp.qrcode(url)`
onboard form and join check 2023-01-29 11:13:50 +00:00			`if not ok then`
			`return false, "qr code generation failed"`
			`end`
onobard stub 2023-01-28 19:30:44 +00:00
			`local png = otp.create_qr_png(code)`
			`local formspec = "size[10,10]" ..`
			`"image[1,0.6;5,5;^[png:" .. minetest.encode_base64(png) .. "]" ..`
			`"field[1,9;5,1;code;Code;]"`

			`minetest.show_formspec(name, FORMNAME, formspec)`
			`end`
			`})`

			`minetest.register_on_player_receive_fields(function(player, formname, fields)`
			`if formname ~= FORMNAME then`
			`return`
			`end`

			`if fields.code then`
onboard form and join check 2023-01-29 11:13:50 +00:00			`local playername = player:get_player_name()`
			`local secret_b32 = otp.get_player_secret_b32(playername)`
			`local expected_code = otp.generate_totp(secret_b32)`
onobard stub 2023-01-28 19:30:44 +00:00			`if expected_code == fields.code then`
onboard form and join check 2023-01-29 11:13:50 +00:00			`-- set priv`
			`local privs = minetest.get_player_privs(playername)`
			`privs.otp_enabled = true`
			`minetest.set_player_privs(playername, privs)`

			`minetest.chat_send_player(playername, "Code validation succeeded, OTP login enabled")`
onobard stub 2023-01-28 19:30:44 +00:00			`else`
onboard form and join check 2023-01-29 11:13:50 +00:00			`minetest.chat_send_player(playername, "Code validation failed!")`
onobard stub 2023-01-28 19:30:44 +00:00			`end`

			`end`
			`end)`