login: implement logging in via browser

2026-01-07 18:50:02 -08:00
parent 8a28fa0f95
commit b764f489de
2 changed files with 163 additions and 0 deletions
--- a/pkg/connector/login.go
+++ b/pkg/connector/login.go
@@ -27,6 +27,11 @@ const LoginStepIDComplete = "fi.mau.discord.login.complete"
 func (d *DiscordConnector) GetLoginFlows() []bridgev2.LoginFlow {
 	return []bridgev2.LoginFlow{
 		{
 			ID:          LoginFlowIDBrowser,
 			Name:        "Browser",
 			Description: "Log in to your Discord account in a web browser.",
 		},
 		{
 			ID:          LoginFlowIDRemoteAuth,
 			Name:        "QR Code",
@@ -46,6 +51,8 @@ func (d *DiscordConnector) CreateLogin(ctx context.Context, user *bridgev2.User,
 		return &DiscordTokenLogin{connector: d, User: user}, nil
 	case LoginFlowIDRemoteAuth:
 		return &DiscordRemoteAuthLogin{connector: d, User: user}, nil
 	case LoginFlowIDBrowser:
 		return &DiscordBrowserLogin{connector: d, User: user}, nil
 	default:
 		return nil, fmt.Errorf("unknown discord login flow id")
 	}
--- a/pkg/connector/login_browser.go
+++ b/pkg/connector/login_browser.go
@@ -0,0 +1,156 @@
 // mautrix-discord - A Matrix-Discord puppeting bridge.
 // Copyright (C) 2024 Tulir Asokan
 //
 // This program is free software: you can redistribute it and/or modify
 // it under the terms of the GNU Affero General Public License as published by
 // the Free Software Foundation, either version 3 of the License, or
 // (at your option) any later version.
 //
 // This program is distributed in the hope that it will be useful,
 // but WITHOUT ANY WARRANTY; without even the implied warranty of
 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 // GNU Affero General Public License for more details.
 //
 // You should have received a copy of the GNU Affero General Public License
 // along with this program.  If not, see <https://www.gnu.org/licenses/>.
 package connector
 import (
 	"context"
 	"fmt"
 	"github.com/bwmarrin/discordgo"
 	"github.com/rs/zerolog"
 	"maunium.net/go/mautrix/bridgev2"
 	"maunium.net/go/mautrix/bridgev2/database"
 	"maunium.net/go/mautrix/bridgev2/networkid"
 )
 const LoginFlowIDBrowser = "fi.mau.discord.login.browser"
 type DiscordBrowserLogin struct {
 	connector *DiscordConnector
 	User      *bridgev2.User
 	Session *discordgo.Session
 }
 var _ bridgev2.LoginProcessCookies = (*DiscordBrowserLogin)(nil)
 func (dl *DiscordBrowserLogin) softlyCloseSession() {
 	dl.User.Log.Debug().Msg("Closing session")
 	err := dl.Session.Close()
 	if err != nil {
 		dl.User.Log.Err(err).Msg("Couldn't close Discord session in response to login cancellation")
 	}
 }
 func (dl *DiscordBrowserLogin) Cancel() {
 }
 const ExtractDiscordTokenJS = `
 new Promise((resolve) => {
 	let mautrixDiscordTokenCheckInterval
 	const iframe = document.createElement('iframe')
 	document.head.append(iframe)
 	mautrixDiscordTokenCheckInterval = setInterval(() => {
 	  const token = iframe.contentWindow.localStorage.token
 	  if (token) {
 		resolve({ token: token.slice(1, -1) })
 		clearInterval(mautrixDiscordTokenCheckInterval)
 	  }
 	}, 200)
 })
 `
 func (dl *DiscordBrowserLogin) Start(ctx context.Context) (*bridgev2.LoginStep, error) {
 	return &bridgev2.LoginStep{
 		Type:         bridgev2.LoginStepTypeCookies,
 		StepID:       "fi.mau.discord.cookies",
 		Instructions: "Log in with Discord.",
 		CookiesParams: &bridgev2.LoginCookiesParams{
 			URL:       "https://discord.com/login",
 			UserAgent: "",
 			Fields: []bridgev2.LoginCookieField{{
 				ID:       "token",
 				Required: true,
 				Sources: []bridgev2.LoginCookieFieldSource{{
 					Type: bridgev2.LoginCookieTypeSpecial,
 					Name: "fi.mau.discord.token",
 				}},
 			}},
 			ExtractJS: ExtractDiscordTokenJS,
 		},
 	}, nil
 }
 func (dl *DiscordBrowserLogin) SubmitCookies(ctx context.Context, cookies map[string]string) (*bridgev2.LoginStep, error) {
 	log := zerolog.Ctx(ctx)
 	token := cookies["token"]
 	if token == "" {
 		log.Error().Msg("Received empty token")
 		return nil, fmt.Errorf("received empty token")
 	}
 	log.Debug().Msg("Logging in with submitted cookie")
 	// FIXME FIXME: The rest of this method is basically copy and pasted from
 	// DiscordTokenLogin, so find a way to tidy this up.
 	session, err := NewDiscordSession(ctx, token)
 	if err != nil {
 		return nil, fmt.Errorf("couldn't create discord session: %w", err)
 	}
 	client := DiscordClient{
 		connector: dl.connector,
 		Session:   session,
 	}
 	client.SetUp(ctx, nil)
 	err = client.connect(ctx)
 	if err != nil {
 		dl.softlyCloseSession()
 		return nil, err
 	}
 	// At this point we've opened a WebSocket connection to the gateway, received
 	// a READY packet, and know who we are.
 	user := session.State.User
 	dl.Session = session
 	ul, err := dl.User.NewLogin(ctx, &database.UserLogin{
 		ID: networkid.UserLoginID(user.ID),
 		Metadata: &UserLoginMetadata{
 			Token:            token,
 			HeartbeatSession: session.HeartbeatSession,
 		},
 	}, &bridgev2.NewLoginParams{
 		LoadUserLogin: func(ctx context.Context, login *bridgev2.UserLogin) error {
 			login.Client = &client
 			client.UserLogin = login
 			// Only now that we have a UserLogin can we begin syncing.
 			client.BeginSyncingIfUserLoginPresent(ctx)
 			return nil
 		},
 		DeleteOnConflict:  true,
 		DontReuseExisting: false,
 	})
 	if err != nil {
 		dl.softlyCloseSession()
 		return nil, fmt.Errorf("couldn't create login: %w", err)
 	}
 	zerolog.Ctx(ctx).Info().Str("user_id", user.ID).Str("user_username", user.Username).Msg("Connected to Discord during login")
 	return &bridgev2.LoginStep{
 		Type:         bridgev2.LoginStepTypeComplete,
 		StepID:       LoginStepIDComplete,
 		Instructions: fmt.Sprintf("Logged in as %s", user),
 		CompleteParams: &bridgev2.LoginCompleteParams{
 			UserLoginID: ul.ID,
 			UserLogin:   ul,
 		},
 	}, nil
 }