You've already forked UnrealEngineUWP
mirror of
https://github.com/izzy2lost/UnrealEngineUWP.git
synced 2026-03-26 18:15:20 -07:00
c9dc86cb37
* Make TLS a mandatory required library * Redirect human-readable log messages of login and query commands to stderr, while only directing machine-readable messages to stdout #rb none [CL 27471298 by yuriy odonnell in ue5-main branch]
98 lines
2.8 KiB
C++
98 lines
2.8 KiB
C++
// Copyright Epic Games, Inc. All Rights Reserved.
|
|
|
|
#pragma once
|
|
|
|
#include "UnsyncBuffer.h"
|
|
#include "UnsyncCommon.h"
|
|
#include "UnsyncError.h"
|
|
#include "UnsyncHash.h"
|
|
|
|
#include <string>
|
|
|
|
namespace unsync {
|
|
|
|
struct FHttpConnection;
|
|
struct FRemoteDesc;
|
|
|
|
struct FAuthToken
|
|
{
|
|
// Raw data acquired from authentication endpoint
|
|
std::string Raw;
|
|
|
|
// Parsed data for convenience
|
|
std::string Access;
|
|
std::string Refresh;
|
|
int64 ExirationTime = 0; // UNIX timestamp in seconds (0 if unknown)
|
|
};
|
|
|
|
struct FAuthDesc
|
|
{
|
|
// Mandatory configuration
|
|
std::string ServerHost; // only the hostname itself
|
|
std::string ClientId;
|
|
|
|
// Mandatory fields for certain APIs
|
|
std::string AuthorizationEndpoint;
|
|
std::string TokenEndpoint;
|
|
std::string UserInfoEndpoint;
|
|
std::string JwksUri;
|
|
|
|
// Optional configuration
|
|
std::string Audience;
|
|
std::string Callback; // OAuth flow redirection URL
|
|
|
|
// Check that mandatory fields have values
|
|
bool IsValid() const
|
|
{
|
|
return !ServerHost.empty() && !ClientId.empty();
|
|
}
|
|
};
|
|
|
|
// Query OIDC/OAuth2 configuration using server handshake
|
|
TResult<FAuthDesc> GetAuthenticationDesc(const FRemoteDesc& RemoteDesc);
|
|
|
|
// Perform the complete authentication flow:
|
|
// - Attempt use stored refresh token first
|
|
// - If refresh is not possible, use PKCE Authentication flow to get new tokens
|
|
// - Save refresh token in user directory for future use
|
|
// - Skips acquiring new token if remaining valid time is above RefreshThreshold (in seconds)
|
|
TResult<FAuthToken> Authenticate(const FRemoteDesc& RemoteDesc, int32 RefreshThreshold = INT_MAX);
|
|
|
|
// Auth utility functions
|
|
|
|
TResult<FAuthToken> AcquireAuthToken(const FAuthDesc& AuthDesc);
|
|
TResult<FAuthToken> RefreshAuthToken(const FAuthDesc& AuthDesc, const FAuthToken& PreviousToken);
|
|
TResult<FAuthToken> RefreshOrAcquireToken(const FAuthDesc& AuthDesc, const FAuthToken& PreviousToken);
|
|
|
|
struct FAuthUserInfo
|
|
{
|
|
std::string Sub;
|
|
std::string Name;
|
|
std::string Nickname;
|
|
std::string GivenName;
|
|
std::string FamilyName;
|
|
std::string Email;
|
|
};
|
|
TResult<FAuthUserInfo> GetUserInfo(FHttpConnection& HttpConnection, const FAuthDesc& AuthDesc, const FAuthToken& AuthToken);
|
|
|
|
std::string GenerateTokenId(const FRemoteDesc& RemoteDesc);
|
|
|
|
bool SaveAuthToken(const FPath& Path, const FAuthToken& AuthToken);
|
|
TResult<FAuthToken> LoadAuthToken(const FPath& Path);
|
|
|
|
std::string SecureRandomBytesAsHexString(uint32 NumBytes);
|
|
FHash256 HashSha256Bytes(const uint8* Data, uint64 Size);
|
|
std::string EncodeBase64(const uint8* Data, uint64 Size);
|
|
bool DecodeBase64(std::string_view Base64Data, FBuffer& Output);
|
|
|
|
void TransformBase64VanillaToUrlSafe(std::string& Base64Vanilla);
|
|
void TransformBase64UrlSafeToVanilla(std::string& Base64UrlSafe);
|
|
|
|
std::string GetPKCECodeChallenge(std::string_view CodeVerifier);
|
|
|
|
bool TryAddAuthentication(FRemoteDesc& InOutRemoteDesc);
|
|
|
|
int64 GetSecondsFromUnixEpoch();
|
|
|
|
} // namespace unsync
|