Protocols/auth
this is a list of the auth protocol rednet data
AUTH Server: variable: _G.authserver
login procedure:
client:"AUTH-LOGIN" [request login]
server:"AUTH-ACK" [request confirmed]
client: string - login [send username]
client: string - password [send password]
server: string - login [bounce username]
server: string - password[bounce password]
client: "AUTH-SYNC" / "AUTH-SYNC-FAIL" [we respond if the bounced values match yes or no]
server:"AUTH-ADMIN" / "AUTH-ACCEPT" / "AUTH-DENIED" [values speak for themself]
reset user password:
client:string, "AUTH-USR-PSW" [request user password change]
server:string, "AUTH-USR-SYNC" [ request confirmed, server available]
client:string, login [ the currently logged in user]
client:string, pass [ the current logged in password]
client:string, username [target username]
client:string, password [target password]
server:string, login [bounce]
server:string, pass [bounce]
server:string, username [bounce]
server:string, password [bounce]
client:string, "AUTH-SYNC" / "AUTH-FALSE" [data verified or not]
server:string, "AUTH-GRANTED" / "AUTH-DENIED" / "AUTH-NOEXIST" [response, granted means success]
this changes a user's password on the auth server. only the user itself and admins can do this.
add auth user:
client: string, "AUTH-USR-ADD" [request user add]
server:string, "AUTH-USR-SYNC" [request confirmed, server available]
client:string, login [ the currently logged in user]
client:string, pass [ the current logged in password]
client:string, username [target username]
client:string, password [target password]
client:bool, isadmin [ are we trying to make an admin?]
server:string, login [bounce]
server:string, pass [bounce]
server:string, username [bounce]
server:string, password [bounce]
server:string, isadmin [bounce]
client:string, "AUTH-SYNC" / "AUTH-FALSE" [data verified or not]
server:string, "AUTH-GRANTED" / "AUTH-DENIED" / "AUTH-EXIST" [response, granted means success]
adds a user on the auth network, only admins can do this.
delete auth user:
client: string, "AUTH-USR-DEL" [request user delete]
server:string, "AUTH-USR-SYNC" [request confirmed, server available]
client:string, login [ the currently logged in user]
client:string, pass [ the current logged in password]
client:string, username [target username]
server:string, login [bounce]
server:string, pass [bounce]
server:string, username [bounce]
client:string, "AUTH-SYNC" / "AUTH-FALSE" [data verified or not]
server:string, "AUTH-GRANTED" / "AUTH-DENIED" / "AUTH-NOEXIST" [response, granted means success]
delete a user on the auth network, only admins can do this.
request system owner:
client:string, "AUTH-OWN-REQ" [request ownership information]
server:string, "AUTH-OWN-ACK" [request confirmed, server available]
client:int, sysid [the system's ID]
server:int, sysid [bounce]
client:string, "AUTH-SYNC" / "AUTH-FALSE" [data verified or not]
server:string, "AUTH-OWN-NOEXIST" / owner [if it doesn't exist, this is the last message]
server:string, ownergroup [the group that acts as a whitelist for this system]
server:string, systemname [ the name of this system]
this allows a system or user to request system ownership details from the AUTH server
set system ownership:
client: string, "AUTH-OWN-SET" [request ownership claim]
server:string, "AUTH-OWN-ACK" [request confirmed, server available]
client:string, sysid [ the system's id]
client:string, sysname [ the system's name]
client:string, login [ the currently logged in user]
client:string, pass [ the current logged in password]
client:string, sysgroup [ the group that will be whitelisted as users]
server:string, sysid [bounce]
server:string, sysname [bounce]
server:string, login [bounce]
server:string, pass [bounce]
server:string, sysgroup [bounce]
client:string, "AUTH-SYNC" / "AUTH-FALSE" [data verified or not]
server:string, "AUTH-GRANTED" / "AUTH-DENIED" / "AUTH-EXIST" [response, granted means success]
this allows a user to claim a system as it's own, making it an admin on that system and whitelisting the selected group as users.
the group is optional as a setting, but must still be communicated, use "NONE" for no group data.
delete system ownership:
client: string, "AUTH-OWN-DEL" [request ownership removal]
server:string, "AUTH-OWN-ACK" [request confirmed, server available]
client:string, sysid [ the system's id]
client:string, login [ the currently logged in user]
client:string, pass [ the current logged in password]
server:string, sysid [bounce]
server:string, login [bounce]
server:string, pass [bounce]
client:string, "AUTH-SYNC" / "AUTH-FALSE" [data verified or not]
server:string, "AUTH-GRANTED" / "AUTH-DENIED" / "AUTH-NOEXIST" [response, granted means success]
removes an ownership claim on a computer, only the owner or admins can do this.
check if a user is member of a group:
client:string, "AUTH-GRP-CHK"[request group check]
server:string, "AUTH-GRP-ACK" [request confirmed, server available]
client:string, groupname [ the target group]
client:string, username [ the target user]
server:string, groupname [bounce]
server:string, username [bounce]
client:string, "AUTH-GRP-SYNC" / "AUTH-FALSE" [data verified or not]
server:bool, isgroupmember [ boolian, true or false]
this is used to check if a user is a member of a group, in use for the login script if a system is owned to grant access to whitelisted group users.
create a new group:
client: string, "AUTH-GRP-MAKE" [request group creation]
server:string, "AUTH-GRP-ACK" [request confirmed, server available]
client:string, groupname [ the target group]
client:string, username [ the currently logged in user]
client:string, password [ the the currently logged in password]
server:string, groupname [bounce]
server:string, username [bounce]
server:string, password [bounce]
client: string, "AUTH-OWN-SYNC" [data verified]
server:string, "AUTH-GRP-DENIED" / "AUTH-GRP-EXIST" / "AUTH-GRP-ACCEPT" [server response, accept means success, denied means alert]
this is used to create a new group on the auth server wich can be used to make a list of users for programs to use.
everyone can make a group, the maker gets marked as such allowing them to add users to it.
delete a group:
client: string, "AUTH-GRP-DELE" [request group deletion]
server:string, "AUTH-GRP-ACK" [request confirmed, server available]
client:string, groupname [ the target group]
client:string, username [ the currently logged in user]
client:string, password [ the the currently logged in password]
server:string, groupname [bounce]
server:string, username [bounce]
server:string, password [bounce]
client: string, "AUTH-OWN-SYNC" [data verified]
server:string, "AUTH-GRP-DENIED" / "AUTH-GRP-NOEXIST" / "AUTH-GRP-ACCEPT" /"AUTH-GRP-NOACCEPT" [server response, accept means success, denied means alert, noaccept means normal denied]
this is used to delete a group, only an admin or group maker can delete a group.
add a user to a group:
client:string,"AUTH-GRP-UADD" [request user add to group]
server:string, "AUTH-GRP-ACK" [request confirmed, server available]
client:string, groupname [ the target group]
client:string, username [ target username ]
client:string, login [ the currently logged in user]
client:string, password [ the the currently logged in password]
server:string, groupname [bounce]
server:string, username [bounce]
server:string, login [bounce]
server:string, password [bounce]
client: string, "AUTH-OWN-SYNC" [data verified, anything else is false]
server:string, "AUTH-GRP-DENIED" / "AUTH-GRP-UNOEXIST" / "AUTH-GRP-NOEXIST" / "AUTH-GRP-NOACCEPT" / "AUTH-GRP-ACCEPT"
[denied means alert, unoexist = user no exist, noexist = group no exist, noaccept = acces denied, accept = success]
used to add a user to a group, only maker and admin can do this.
delete a user from a group:
client:string,"AUTH-GRP-UDEL" [request user delete from group]
server:string, "AUTH-GRP-ACK" [request confirmed, server available]
client:string, groupname [ the target group]
client:string, username [ target username ]
client:string, login [ the currently logged in user]
client:string, password [ the the currently logged in password]
server:string, groupname [bounce]
server:string, username [bounce]
server:string, login [bounce]
server:string, password [bounce]
client: string, "AUTH-OWN-SYNC" [data verified, anything else is false]
server:string, "AUTH-GRP-DENIED" / "AUTH-GRP-UNOEXIST" / "AUTH-GRP-NOEXIST" / "AUTH-GRP-NOACCEPT" / "AUTH-GRP-ACCEPT"
[denied means alert, unoexist = user no exist, noexist = group no exist, noaccept = acces denied, accept = success]
used to delete a user from a group, only maker and admin can do this.