Mrixs/MrixsCraft-server
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
35 Commits 1 Branch 0 Tags
6a8213a234b343ff97de1eb67d31cb318fc0f28a
Commit Graph

8 Commits

Author SHA1 Message Date
Vladimir Zagainov
e94cd4c23c fix: remove duplicate route for sessionProfile
All checks were successful
CI / lint (push) Successful in 1m3s
Details
CI / test (push) Successful in 26s
Details
CI / build (push) Successful in 20s
Details
CI / docker (push) Successful in 1m22s
Details 
Remove conflicting 'GET /sessionserver/session/minecraft/profile/{unsigned}'
route that panicked due to identical pattern matching as '{uuid}'.
The 'unsigned' variant is now handled via ?unsigned=true query parameter.
 2026-06-03 18:43:41 +03:00
Vladimir Zagainov
4efcc770ac fix: format all Go files with gofmt
All checks were successful
CI / lint (push) Successful in 9m54s
Details
CI / test (push) Successful in 10m19s
Details
CI / build (push) Successful in 9m58s
Details
CI / docker (push) Has been skipped
Details 
- Fix alignment in struct fields (sessionProfileResponse, textureInfo, Handler)
- Align struct field values in internal/templates/templates.go, internal/api/api.go
 2026-05-30 20:00:54 +03:00
Vladimir Zagainov
e1cc999ea8 refactor: deduplicate sha1Hex/writeJSON/writeError into pkg/utils 
- admin.go: replace local sha1Hex, sha256Hex, writeJSON, writeError with pkg/utils equivalents
- auth.go: replace local writeJSON with utils.WriteJSON; rewrite writeError as thin wrapper
- cas.go: remove local sha1Hex and unused writeJSON; use utils.SHA1Bytes
- pkg/utils.go: add WriteJSON, WriteError; reorder imports
 2026-05-29 23:53:33 +03:00
Vladimir Zagainov
81c42e1a9a feat: migrate passwords from SHA-256 to bcrypt 
- Replace SHA-256 hex hashing with bcrypt (cost 10) for password storage
- VerifyPassword now uses bcrypt.CompareHashAndPassword
- HashPassword returns (string, error) instead of string
- Add IsBcryptHash helper to detect legacy hashes for future migration
- Remove duplicate verifyPassword from api.go (already done in prev commit)
- Promote golang.org/x/crypto to direct dependency
 2026-05-27 16:31:38 +03:00
Vladimir Zagainov
01cce981c5 feat: implement skins/capes, profile endpoints, session server 
Skins & capes:
- Fix uploadSkin auth: Bearer token instead of user_id form hack
- Add POST /api/web/profile/cape (upload cape)
- Add DELETE /api/web/profile/skin and DELETE /api/web/profile/cape
- Validate skin PNG dimensions (64x32, 64x64, 128x128, 128x64)
- Add size limits: 1 MB for skins, 2 MB for capes
- Add basic email validation on register

Profile & session server:
- Add GET /api/web/profile/{uuid} — public profile with skin/cape hashes
- Add GET /sessionserver/session/minecraft/profile/{uuid} — Mojang-compatible
  texture response for game client
- Add POST /authserver/invalidate and POST /authserver/signout
- Export VerifyPassword and ExtractBearer from auth package
- Remove duplicate verifyPassword from api.go
- Add PlayerTextures model to database.go
 2026-05-27 11:45:33 +03:00
Vladimir Zagainov
d205320e0e refactor: export GenerateToken for use by api package 2026-05-26 13:30:39 +03:00
Vladimir Zagainov
aa7d3a8509 feat: add server foundation (config, database, auth, main) 
- config: Load from env vars (SERVER_PORT, DATABASE_URL, JWT_SECRET, CAS_DIR, etc.)
- database: pgx/v5 connection pool, models (User, YggdrasilSession, Modpack, GlobalFile, LauncherRelease)
- auth: Yggdrasil endpoints (authenticate, refresh, validate) with SHA-256 password hashing, token rotation
- main: graceful shutdown, HTTP server on configured port
- go.mod: module gitea.mrixs.me/Mrixs/MrixsCraft-server, pgx/v5 dependency

Co-Authored-By: OWL <noreply@anthropic.com>
 2026-05-26 13:03:21 +03:00
Vladimir Zagainov
551c75a232 chore: initial project structure 2026-05-23 17:57:37 +03:00