TrinityCore
Loading...
Searching...
No Matches
cs_rbac.cpp
Go to the documentation of this file.
1/*
2 * This file is part of the TrinityCore Project. See AUTHORS file for Copyright information
3 *
4 * This program is free software; you can redistribute it and/or modify it
5 * under the terms of the GNU General Public License as published by the
6 * Free Software Foundation; either version 2 of the License, or (at your
7 * option) any later version.
8 *
9 * This program is distributed in the hope that it will be useful, but WITHOUT
10 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
11 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
12 * more details.
13 *
14 * You should have received a copy of the GNU General Public License along
15 * with this program. If not, see <http://www.gnu.org/licenses/>.
16 */
17
18/* ScriptData
19Name: rbac_commandscript
20%Complete: 100
21Comment: All role based access control related commands (including account related)
22Category: commandscripts
23EndScriptData */
24
25#include "ScriptMgr.h"
26#include "AccountMgr.h"
27#include "Chat.h"
28#include "ChatCommand.h"
29#include "Config.h"
30#include "Language.h"
31#include "Player.h"
32#include "RealmList.h"
33#include "World.h"
34#include "WorldSession.h"
35
36struct RBACCommandData
37{
38 RBACCommandData(rbac::RBACData* rbac_, bool needDelete_) : rbac(rbac_), needDelete(needDelete_) { }
39 RBACCommandData(RBACCommandData const&) = delete;
40 ~RBACCommandData()
41 {
42 if (needDelete)
43 delete rbac;
44 }
45
46 rbac::RBACData* rbac = nullptr;
47 bool needDelete = false;
48};
49
50using namespace Trinity::ChatCommands;
51
52class rbac_commandscript : public CommandScript
53{
54public:
55 rbac_commandscript() : CommandScript("rbac_commandscript") { }
56
57 std::span<ChatCommandBuilder const> GetCommands() const override
58 {
59 static ChatCommandTable rbacAccountCommandTable =
60 {
61 { "list", HandleRBACPermListCommand, rbac::RBAC_PERM_COMMAND_RBAC_ACC_PERM_LIST, Console::Yes },
62 { "grant", HandleRBACPermGrantCommand, rbac::RBAC_PERM_COMMAND_RBAC_ACC_PERM_GRANT, Console::Yes },
63 { "deny", HandleRBACPermDenyCommand, rbac::RBAC_PERM_COMMAND_RBAC_ACC_PERM_DENY, Console::Yes },
64 { "revoke", HandleRBACPermRevokeCommand, rbac::RBAC_PERM_COMMAND_RBAC_ACC_PERM_REVOKE, Console::Yes },
65 };
66
67 static ChatCommandTable rbacCommandTable =
68 {
69 { "account", rbacAccountCommandTable },
70 { "list", HandleRBACListPermissionsCommand, rbac::RBAC_PERM_COMMAND_RBAC_LIST, Console::Yes },
71 };
72
73 static ChatCommandTable commandTable =
74 {
75 { "rbac", rbacCommandTable },
76 };
77
78 return commandTable;
79 }
80
81 static RBACCommandData GetRBACData(AccountIdentifier account)
82 {
83 if (account.IsConnected())
84 return { account.GetConnectedSession()->GetRBACData(), false };
85
86 uint32 realmId = sRealmList->GetCurrentRealmId().Realm;
87 rbac::RBACData* rbac = new rbac::RBACData(account.GetID(), account.GetName(), realmId, AccountMgr::GetSecurity(account.GetID(), realmId));
88 rbac->LoadFromDB();
89
90 return { rbac, true };
91 }
92
93 static bool HandleRBACPermGrantCommand(ChatHandler* handler, Optional<AccountIdentifier> account, uint32 permId, Optional<int32> realmId)
94 {
95 if (!account)
96 account = AccountIdentifier::FromTarget(handler);
97 if (!account)
98 return false;
99
100 if (handler->HasLowerSecurityAccount(nullptr, account->GetID(), true))
101 return false;
102
103 if (!realmId)
104 realmId = -1;
105
106 RBACCommandData data = GetRBACData(*account);
107
108 rbac::RBACCommandResult result = data.rbac->GrantPermission(permId, *realmId);
109 rbac::RBACPermission const* permission = sAccountMgr->GetRBACPermission(permId);
110
111 switch (result)
112 {
113 case rbac::RBAC_CANT_ADD_ALREADY_ADDED:
114 handler->PSendSysMessage(LANG_RBAC_PERM_GRANTED_IN_LIST, permId, permission->GetName(),
115 *realmId, account->GetID(), account->GetName());
116 break;
117 case rbac::RBAC_IN_DENIED_LIST:
118 handler->PSendSysMessage(LANG_RBAC_PERM_GRANTED_IN_DENIED_LIST, permId, permission->GetName(),
119 *realmId, account->GetID(), account->GetName());
120 break;
121 case rbac::RBAC_OK:
122 handler->PSendSysMessage(LANG_RBAC_PERM_GRANTED, permId, permission->GetName(),
123 *realmId, account->GetID(), account->GetName());
124 break;
125 case rbac::RBAC_ID_DOES_NOT_EXISTS:
126 handler->PSendSysMessage(LANG_RBAC_WRONG_PARAMETER_ID, permId);
127 break;
128 default:
129 break;
130 }
131
132 return true;
133 }
134
135 static bool HandleRBACPermDenyCommand(ChatHandler* handler, Optional<AccountIdentifier> account, uint32 permId, Optional<int32> realmId)
136 {
137 if (!account)
138 account = AccountIdentifier::FromTarget(handler);
139 if (!account)
140 return false;
141
142 if (handler->HasLowerSecurityAccount(nullptr, account->GetID(), true))
143 return false;
144
145 if (!realmId)
146 realmId = -1;
147
148 RBACCommandData data = GetRBACData(*account);
149
150 rbac::RBACCommandResult result = data.rbac->DenyPermission(permId, *realmId);
151 rbac::RBACPermission const* permission = sAccountMgr->GetRBACPermission(permId);
152
153 switch (result)
154 {
155 case rbac::RBAC_CANT_ADD_ALREADY_ADDED:
156 handler->PSendSysMessage(LANG_RBAC_PERM_DENIED_IN_LIST, permId, permission->GetName(),
157 *realmId, account->GetID(), account->GetName());
158 break;
159 case rbac::RBAC_IN_GRANTED_LIST:
160 handler->PSendSysMessage(LANG_RBAC_PERM_DENIED_IN_GRANTED_LIST, permId, permission->GetName(),
161 *realmId, account->GetID(), account->GetName());
162 break;
163 case rbac::RBAC_OK:
164 handler->PSendSysMessage(LANG_RBAC_PERM_DENIED, permId, permission->GetName(),
165 *realmId, account->GetID(), account->GetName());
166 break;
167 case rbac::RBAC_ID_DOES_NOT_EXISTS:
168 handler->PSendSysMessage(LANG_RBAC_WRONG_PARAMETER_ID, permId);
169 break;
170 default:
171 break;
172 }
173
174 return true;
175 }
176
177 static bool HandleRBACPermRevokeCommand(ChatHandler* handler, Optional<AccountIdentifier> account, uint32 permId, Optional<int32> realmId)
178 {
179 if (!account)
180 account = AccountIdentifier::FromTarget(handler);
181 if (!account)
182 return false;
183
184 if (handler->HasLowerSecurityAccount(nullptr, account->GetID(), true))
185 return false;
186
187 if (!realmId)
188 realmId = -1;
189
190 RBACCommandData data = GetRBACData(*account);
191
192 rbac::RBACCommandResult result = data.rbac->RevokePermission(permId, *realmId);
193 rbac::RBACPermission const* permission = sAccountMgr->GetRBACPermission(permId);
194
195 switch (result)
196 {
197 case rbac::RBAC_CANT_REVOKE_NOT_IN_LIST:
198 handler->PSendSysMessage(LANG_RBAC_PERM_REVOKED_NOT_IN_LIST, permId, permission->GetName(),
199 *realmId, account->GetID(), account->GetName());
200 break;
201 case rbac::RBAC_OK:
202 handler->PSendSysMessage(LANG_RBAC_PERM_REVOKED, permId, permission->GetName(),
203 *realmId, account->GetID(), account->GetName());
204 break;
205 case rbac::RBAC_ID_DOES_NOT_EXISTS:
206 handler->PSendSysMessage(LANG_RBAC_WRONG_PARAMETER_ID, permId);
207 break;
208 default:
209 break;
210 }
211
212 return true;
213 }
214
215 static bool HandleRBACPermListCommand(ChatHandler* handler, Optional<AccountIdentifier> account)
216 {
217 if (!account)
218 account = AccountIdentifier::FromTarget(handler);
219 if (!account)
220 return false;
221
222 RBACCommandData data = GetRBACData(*account);
223
224 handler->PSendSysMessage(LANG_RBAC_LIST_HEADER_GRANTED, data.rbac->GetId(), data.rbac->GetName());
225 rbac::RBACPermissionContainer const& granted = data.rbac->GetGrantedPermissions();
226 if (granted.empty())
227 handler->PSendSysMessage("%s", handler->GetTrinityString(LANG_RBAC_LIST_EMPTY));
228 else
229 {
230 for (uint32 grantedId : granted)
231 {
232 rbac::RBACPermission const* permission = sAccountMgr->GetRBACPermission(grantedId);
233 handler->PSendSysMessage(LANG_RBAC_LIST_ELEMENT, permission->GetId(), permission->GetName());
234 }
235 }
236
237 handler->PSendSysMessage(LANG_RBAC_LIST_HEADER_DENIED, data.rbac->GetId(), data.rbac->GetName());
238 rbac::RBACPermissionContainer const& denied = data.rbac->GetDeniedPermissions();
239 if (denied.empty())
240 handler->PSendSysMessage("%s", handler->GetTrinityString(LANG_RBAC_LIST_EMPTY));
241 else
242 {
243 for (uint32 deniedId : denied)
244 {
245 rbac::RBACPermission const* permission = sAccountMgr->GetRBACPermission(deniedId);
246 handler->PSendSysMessage(LANG_RBAC_LIST_ELEMENT, permission->GetId(), permission->GetName());
247 }
248 }
249 handler->PSendSysMessage(LANG_RBAC_LIST_HEADER_BY_SEC_LEVEL, data.rbac->GetId(), data.rbac->GetName(), data.rbac->GetSecurityLevel());
250 rbac::RBACPermissionContainer const& defaultPermissions = sAccountMgr->GetRBACDefaultPermissions(data.rbac->GetSecurityLevel());
251 if (defaultPermissions.empty())
252 handler->PSendSysMessage("%s", handler->GetTrinityString(LANG_RBAC_LIST_EMPTY));
253 else
254 {
255 for (uint32 defaultPermission : defaultPermissions)
256 {
257 rbac::RBACPermission const* permission = sAccountMgr->GetRBACPermission(defaultPermission);
258 handler->PSendSysMessage(LANG_RBAC_LIST_ELEMENT, permission->GetId(), permission->GetName());
259 }
260 }
261
262 return true;
263 }
264
265 static bool HandleRBACListPermissionsCommand(ChatHandler* handler, Optional<uint32> permId)
266 {
267 if (!permId)
268 {
269 rbac::RBACPermissionsContainer const& permissions = sAccountMgr->GetRBACPermissionList();
270 handler->PSendSysMessage("%s", handler->GetTrinityString(LANG_RBAC_LIST_PERMISSIONS_HEADER));
271 for (auto const& [_, permission] : permissions)
272 {
273 handler->PSendSysMessage(LANG_RBAC_LIST_ELEMENT, permission->GetId(), permission->GetName());
274 }
275 }
276 else
277 {
278 rbac::RBACPermission const* permission = sAccountMgr->GetRBACPermission(*permId);
279 if (!permission)
280 {
281 handler->PSendSysMessage(LANG_RBAC_WRONG_PARAMETER_ID, *permId);
282 handler->SetSentErrorMessage(true);
283 return false;
284 }
285
286 handler->PSendSysMessage("%s", handler->GetTrinityString(LANG_RBAC_LIST_PERMISSIONS_HEADER));
287 handler->PSendSysMessage(LANG_RBAC_LIST_ELEMENT, permission->GetId(), permission->GetName());
288 handler->PSendSysMessage("%s", handler->GetTrinityString(LANG_RBAC_LIST_PERMS_LINKED_HEADER));
289 for (uint32 linkedPerm : permission->GetLinkedPermissions())
290 if (rbac::RBACPermission const* rbacPermission = sAccountMgr->GetRBACPermission(linkedPerm))
291 handler->PSendSysMessage(LANG_RBAC_LIST_ELEMENT, rbacPermission->GetId(), rbacPermission->GetName());
292 }
293
294 return true;
295 }
296};
297
sAccountMgr
#define sAccountMgr
Definition AccountMgr.h:104
uint32
uint32_t uint32
Definition Define.h:154
LANG_RBAC_PERM_GRANTED_IN_LIST
@ LANG_RBAC_PERM_GRANTED_IN_LIST
Definition Language.h:104
LANG_RBAC_PERM_GRANTED
@ LANG_RBAC_PERM_GRANTED
Definition Language.h:106
LANG_RBAC_LIST_PERMISSIONS_HEADER
@ LANG_RBAC_LIST_PERMISSIONS_HEADER
Definition Language.h:100
LANG_RBAC_PERM_DENIED
@ LANG_RBAC_PERM_DENIED
Definition Language.h:109
LANG_RBAC_PERM_DENIED_IN_GRANTED_LIST
@ LANG_RBAC_PERM_DENIED_IN_GRANTED_LIST
Definition Language.h:108
LANG_RBAC_LIST_HEADER_BY_SEC_LEVEL
@ LANG_RBAC_LIST_HEADER_BY_SEC_LEVEL
Definition Language.h:99
LANG_RBAC_PERM_REVOKED_NOT_IN_LIST
@ LANG_RBAC_PERM_REVOKED_NOT_IN_LIST
Definition Language.h:111
LANG_RBAC_LIST_PERMS_LINKED_HEADER
@ LANG_RBAC_LIST_PERMS_LINKED_HEADER
Definition Language.h:101
LANG_RBAC_PERM_DENIED_IN_LIST
@ LANG_RBAC_PERM_DENIED_IN_LIST
Definition Language.h:107
LANG_RBAC_PERM_REVOKED
@ LANG_RBAC_PERM_REVOKED
Definition Language.h:110
LANG_RBAC_LIST_ELEMENT
@ LANG_RBAC_LIST_ELEMENT
Definition Language.h:103
LANG_RBAC_LIST_HEADER_DENIED
@ LANG_RBAC_LIST_HEADER_DENIED
Definition Language.h:98
LANG_RBAC_PERM_GRANTED_IN_DENIED_LIST
@ LANG_RBAC_PERM_GRANTED_IN_DENIED_LIST
Definition Language.h:105
LANG_RBAC_LIST_EMPTY
@ LANG_RBAC_LIST_EMPTY
Definition Language.h:102
LANG_RBAC_WRONG_PARAMETER_ID
@ LANG_RBAC_WRONG_PARAMETER_ID
Definition Language.h:95
LANG_RBAC_LIST_HEADER_GRANTED
@ LANG_RBAC_LIST_HEADER_GRANTED
Definition Language.h:97
Optional
std::optional< T > Optional
Optional helper class to wrap optional values within.
Definition Optional.h:25
sRealmList
#define sRealmList
Definition RealmList.h:93
AccountMgr::GetSecurity
static uint32 GetSecurity(uint32 accountId, int32 realmId)
Definition AccountMgr.cpp:297
ChatHandler::SetSentErrorMessage
void SetSentErrorMessage(bool val)
Definition Chat.h:127
ChatHandler::PSendSysMessage
void PSendSysMessage(char const *fmt, Args &&... args)
Definition Chat.h:62
ChatHandler::HasLowerSecurityAccount
bool HasLowerSecurityAccount(WorldSession *target, uint32 account, bool strong=false)
Definition Chat.cpp:81
ChatHandler::GetTrinityString
virtual char const * GetTrinityString(uint32 entry) const
Definition Chat.cpp:46
WorldSession::GetRBACData
rbac::RBACData * GetRBACData()
Definition WorldSession.cpp:1414
rbac::RBACData::GetDeniedPermissions
RBACPermissionContainer const & GetDeniedPermissions() const
Returns all the denied permissions.
Definition RBAC.h:852
rbac::RBACData::GrantPermission
RBACCommandResult GrantPermission(uint32 permissionId, int32 realmId=0)
Definition RBAC.cpp:56
rbac::RBACData::GetId
uint32 GetId() const
Gets the Id of the Object.
Definition RBAC.h:823
rbac::RBACData::GetGrantedPermissions
RBACPermissionContainer const & GetGrantedPermissions() const
Returns all the granted permissions.
Definition RBAC.h:850
rbac::RBACData::DenyPermission
RBACCommandResult DenyPermission(uint32 permissionId, int32 realmId=0)
Definition RBAC.cpp:100
rbac::RBACData::GetSecurityLevel
uint8 GetSecurityLevel() const
Returns the security level assigned.
Definition RBAC.h:940
rbac::RBACData::GetName
std::string const & GetName() const
Gets the Name of the Object.
Definition RBAC.h:821
rbac::RBACData::RevokePermission
RBACCommandResult RevokePermission(uint32 permissionId, int32 realmId=0)
Definition RBAC.cpp:154
rbac::RBACPermission::GetName
std::string const & GetName() const
Gets the Name of the Object.
Definition RBAC.h:782
rbac::RBACPermission::GetLinkedPermissions
RBACPermissionContainer const & GetLinkedPermissions() const
Gets the Permissions linked to this permission.
Definition RBAC.h:787
rbac::RBACPermission::GetId
uint32 GetId() const
Gets the Id of the Object.
Definition RBAC.h:784
rbac_commandscript
Definition cs_rbac.cpp:53
rbac_commandscript::HandleRBACPermRevokeCommand
static bool HandleRBACPermRevokeCommand(ChatHandler *handler, Optional< AccountIdentifier > account, uint32 permId, Optional< int32 > realmId)
Definition cs_rbac.cpp:177
rbac_commandscript::GetCommands
std::span< ChatCommandBuilder const > GetCommands() const override
Definition cs_rbac.cpp:57
rbac_commandscript::HandleRBACPermListCommand
static bool HandleRBACPermListCommand(ChatHandler *handler, Optional< AccountIdentifier > account)
Definition cs_rbac.cpp:215
rbac_commandscript::HandleRBACPermGrantCommand
static bool HandleRBACPermGrantCommand(ChatHandler *handler, Optional< AccountIdentifier > account, uint32 permId, Optional< int32 > realmId)
Definition cs_rbac.cpp:93
rbac_commandscript::HandleRBACListPermissionsCommand
static bool HandleRBACListPermissionsCommand(ChatHandler *handler, Optional< uint32 > permId)
Definition cs_rbac.cpp:265
rbac_commandscript::HandleRBACPermDenyCommand
static bool HandleRBACPermDenyCommand(ChatHandler *handler, Optional< AccountIdentifier > account, uint32 permId, Optional< int32 > realmId)
Definition cs_rbac.cpp:135
rbac_commandscript::rbac_commandscript
rbac_commandscript()
Definition cs_rbac.cpp:55
rbac_commandscript::GetRBACData
static RBACCommandData GetRBACData(AccountIdentifier account)
Definition cs_rbac.cpp:81
AddSC_rbac_commandscript
void AddSC_rbac_commandscript()
Definition cs_rbac.cpp:298
Trinity::ChatCommands::ChatCommandTable
ChatCommandBuilder const [] ChatCommandTable
Definition ChatCommand.h:49
rbac::RBACPermissionsContainer
std::map< uint32, rbac::RBACPermission * > RBACPermissionsContainer
Definition AccountMgr.h:49
rbac::RBAC_PERM_COMMAND_RBAC_ACC_PERM_GRANT
@ RBAC_PERM_COMMAND_RBAC_ACC_PERM_GRANT
Definition RBAC.h:117
rbac::RBAC_PERM_COMMAND_RBAC_ACC_PERM_DENY
@ RBAC_PERM_COMMAND_RBAC_ACC_PERM_DENY
Definition RBAC.h:118
rbac::RBAC_PERM_COMMAND_RBAC_ACC_PERM_REVOKE
@ RBAC_PERM_COMMAND_RBAC_ACC_PERM_REVOKE
Definition RBAC.h:119
rbac::RBAC_PERM_COMMAND_RBAC_ACC_PERM_LIST
@ RBAC_PERM_COMMAND_RBAC_ACC_PERM_LIST
Definition RBAC.h:116
rbac::RBAC_PERM_COMMAND_RBAC_LIST
@ RBAC_PERM_COMMAND_RBAC_LIST
Definition RBAC.h:120
rbac::RBACCommandResult
RBACCommandResult
Definition RBAC.h:760
rbac::RBAC_OK
@ RBAC_OK
Definition RBAC.h:761
rbac::RBAC_CANT_ADD_ALREADY_ADDED
@ RBAC_CANT_ADD_ALREADY_ADDED
Definition RBAC.h:762
rbac::RBAC_IN_GRANTED_LIST
@ RBAC_IN_GRANTED_LIST
Definition RBAC.h:764
rbac::RBAC_ID_DOES_NOT_EXISTS
@ RBAC_ID_DOES_NOT_EXISTS
Definition RBAC.h:766
rbac::RBAC_IN_DENIED_LIST
@ RBAC_IN_DENIED_LIST
Definition RBAC.h:765
rbac::RBAC_CANT_REVOKE_NOT_IN_LIST
@ RBAC_CANT_REVOKE_NOT_IN_LIST
Definition RBAC.h:763
rbac::RBACPermissionContainer
std::set< uint32 > RBACPermissionContainer
Definition RBAC.h:769
RBACCommandData::RBACCommandData
RBACCommandData(rbac::RBACData *rbac_, bool needDelete_)
Definition cs_rbac.cpp:38
RBACCommandData::rbac
rbac::RBACData * rbac
Definition cs_rbac.cpp:46
RBACCommandData::RBACCommandData
RBACCommandData(RBACCommandData const &)=delete
Trinity::ChatCommands::AccountIdentifier::FromTarget
static Optional< AccountIdentifier > FromTarget(ChatHandler *handler)
Definition ChatCommandTags.cpp:116