1 /*
2 * SkypeWeb Plugin for libpurple/Pidgin
3 * Copyright (c) 2014-2020 Eion Robb
4 *
5 * This program is free software: you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation, either version 3 of the License, or
8 * (at your option) any later version.
9 *
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
14 *
15 * You should have received a copy of the GNU General Public License
16 * along with this program. If not, see <http://www.gnu.org/licenses/>.
17 */
18
19 #include "skypeweb_login.h"
20 #include "skypeweb_util.h"
21
22
23 static void
skypeweb_login_did_auth(PurpleHttpConnection * http_conn,PurpleHttpResponse * response,gpointer user_data)24 skypeweb_login_did_auth(PurpleHttpConnection *http_conn, PurpleHttpResponse *response, gpointer user_data)
25 {
26 gchar *refresh_token = NULL;
27 SkypeWebAccount *sa = user_data;
28 const gchar *data;
29 gsize len;
30
31 data = purple_http_response_get_data(response, &len);
32
33 if (data != NULL) {
34 refresh_token = skypeweb_string_get_chunk(data, len, "=\"skypetoken\" value=\"", "\"");
35 } else {
36 purple_connection_error(sa->pc,
37 PURPLE_CONNECTION_ERROR_NETWORK_ERROR,
38 _("Failed getting Skype Token, please try logging in via browser first"));
39 return;
40 }
41
42 if (refresh_token == NULL) {
43 purple_account_set_string(sa->account, "refresh-token", NULL);
44 if (g_strstr_len(data, len, "recaptcha_response_field")) {
45 purple_connection_error(sa->pc,
46 PURPLE_CONNECTION_ERROR_AUTHENTICATION_FAILED,
47 _("Captcha required.\nTry logging into web.skype.com and try again."));
48 return;
49 } else {
50 purple_debug_info("skypeweb", "login response was %s\r\n", data);
51 purple_connection_error(sa->pc,
52 PURPLE_CONNECTION_ERROR_AUTHENTICATION_FAILED,
53 _("Failed getting Skype Token, please try logging in via browser first"));
54 return;
55 }
56 }
57
58 sa->skype_token = refresh_token;
59
60 if (purple_account_get_remember_password(sa->account)) {
61 purple_account_set_string(sa->account, "refresh-token", purple_http_cookie_jar_get(sa->cookie_jar, "refresh-token"));
62 }
63
64 skypeweb_do_all_the_things(sa);
65 }
66
67 static void
skypeweb_login_got_pie(PurpleHttpConnection * http_conn,PurpleHttpResponse * response,gpointer user_data)68 skypeweb_login_got_pie(PurpleHttpConnection *http_conn, PurpleHttpResponse *response, gpointer user_data)
69 {
70 SkypeWebAccount *sa = user_data;
71 PurpleAccount *account = sa->account;
72 gchar *pie;
73 gchar *etm;
74 const gchar *login_url = "https://" SKYPEWEB_LOGIN_HOST "/login?client_id=578134&redirect_uri=https%3A%2F%2Fweb.skype.com";
75 GString *postdata;
76 struct timeval tv;
77 struct timezone tz;
78 gint tzhours, tzminutes;
79 int tmplen;
80 PurpleHttpRequest *request;
81 const gchar *data;
82 gsize len;
83
84 if (!purple_http_response_is_successful(response)) {
85 purple_connection_error(sa->pc, PURPLE_CONNECTION_ERROR_NETWORK_ERROR, purple_http_response_get_error(response));
86 return;
87 }
88
89 data = purple_http_response_get_data(response, &len);
90
91 gettimeofday(&tv, &tz);
92 (void) tv;
93 tzminutes = tz.tz_minuteswest;
94 if (tzminutes < 0) tzminutes = -tzminutes;
95 tzhours = tzminutes / 60;
96 tzminutes -= tzhours * 60;
97
98 pie = skypeweb_string_get_chunk(data, len, "=\"pie\" value=\"", "\"");
99 if (!pie) {
100 purple_connection_error(sa->pc, PURPLE_CONNECTION_ERROR_AUTHENTICATION_FAILED, _("Failed getting PIE value, please try logging in via browser first"));
101 return;
102 }
103
104 etm = skypeweb_string_get_chunk(data, len, "=\"etm\" value=\"", "\"");
105 if (!etm) {
106 purple_connection_error(sa->pc, PURPLE_CONNECTION_ERROR_AUTHENTICATION_FAILED, _("Failed getting ETM value, please try logging in via browser first"));
107 return;
108 }
109
110
111 postdata = g_string_new("");
112 g_string_append_printf(postdata, "username=%s&", purple_url_encode(purple_account_get_username(account)));
113 g_string_append_printf(postdata, "password=%s&", purple_url_encode(purple_connection_get_password(sa->pc)));
114 g_string_append_printf(postdata, "timezone_field=%c|%d|%d&", (tz.tz_minuteswest < 0 ? '+' : '-'), tzhours, tzminutes);
115 g_string_append_printf(postdata, "pie=%s&", purple_url_encode(pie));
116 g_string_append_printf(postdata, "etm=%s&", purple_url_encode(etm));
117 g_string_append_printf(postdata, "js_time=%" G_GINT64_FORMAT "&", skypeweb_get_js_time());
118 g_string_append(postdata, "client_id=578134&");
119 g_string_append(postdata, "redirect_uri=https://web.skype.com/");
120
121 tmplen = postdata->len;
122 if (postdata->len > INT_MAX) tmplen = INT_MAX;
123
124 request = purple_http_request_new(login_url);
125 purple_http_request_set_method(request, "POST");
126 purple_http_request_set_cookie_jar(request, sa->cookie_jar);
127 purple_http_request_header_set(request, "Content-Type", "application/x-www-form-urlencoded; charset=UTF-8");
128 purple_http_request_header_set(request, "Accept", "*/*");
129 purple_http_request_header_set(request, "BehaviorOverride", "redirectAs404");
130 purple_http_request_set_contents(request, postdata->str, tmplen);
131 purple_http_request(sa->pc, request, skypeweb_login_did_auth, sa);
132 purple_http_request_unref(request);
133
134 g_string_free(postdata, TRUE);
135 g_free(pie);
136 g_free(etm);
137
138 purple_connection_update_progress(sa->pc, _("Authenticating"), 2, 4);
139 }
140
141 void
skypeweb_begin_web_login(SkypeWebAccount * sa)142 skypeweb_begin_web_login(SkypeWebAccount *sa)
143 {
144 const gchar *login_url = "https://" SKYPEWEB_LOGIN_HOST "/login?method=skype&client_id=578134&redirect_uri=https%3A%2F%2Fweb.skype.com";
145
146 purple_http_get(sa->pc, skypeweb_login_got_pie, sa, login_url);
147
148 purple_connection_set_state(sa->pc, PURPLE_CONNECTION_CONNECTING);
149 purple_connection_update_progress(sa->pc, _("Connecting"), 1, 4);
150 }
151
152 static void
skypeweb_login_got_t(PurpleHttpConnection * http_conn,PurpleHttpResponse * response,gpointer user_data)153 skypeweb_login_got_t(PurpleHttpConnection *http_conn, PurpleHttpResponse *response, gpointer user_data)
154 {
155 SkypeWebAccount *sa = user_data;
156 const gchar *login_url = "https://" SKYPEWEB_LOGIN_HOST "/login/microsoft";
157 PurpleHttpRequest *request;
158 GString *postdata;
159 gchar *magic_t_value; // T is for tasty
160 gchar *error_code;
161 gchar *error_text;
162 int tmplen;
163 const gchar *data;
164 gsize len;
165
166 data = purple_http_response_get_data(response, &len);
167
168 // <input type="hidden" name="t" id="t" value="...">
169 error_text = skypeweb_string_get_chunk(data, len, ",sErrTxt:'", "',Am:'");
170 error_code = skypeweb_string_get_chunk(data, len, ",sErrorCode:'", "',Ag:");
171 magic_t_value = skypeweb_string_get_chunk(data, len, "=\"t\" value=\"", "\"");
172
173 if (!magic_t_value) {
174 //No Magic T???? Maybe it be the mighty 2fa-beast
175
176 if (FALSE)
177 /*if (g_strnstr(data, len, "Set-Cookie: LOpt=0;"))*/ {
178 //XX - Would this be better retrieved with JSON decoding the "var ServerData = {...}" code?
179 // <script type="text/javascript">var ServerData = {...};</script>
180 gchar *session_state = skypeweb_string_get_chunk(data, len, ":'https://login.live.com/GetSessionState.srf?", "',");
181 if (session_state) {
182 //These two appear to have different object keys each request :(
183 /*
184 gchar *PPFT = skypeweb_string_get_chunk(data, len, ",sFT:'", "',");
185 gchar *SLK = skypeweb_string_get_chunk(data, len, ",aB:'", "',");
186 gchar *ppauth_cookie = skypeweb_string_get_chunk(data, len, "Set-Cookie: PPAuth=", ";");
187 gchar *mspok_cookie = skypeweb_string_get_chunk(data, len, "Set-Cookie: MSPOK=", "; domain=");
188 */
189
190 //Poll https://login.live.com/GetSessionState.srv?{session_state} to retrieve GIF(!!) of 2fa status
191 //1x1 size GIF means pending, 2x2 rejected, 1x2 approved
192 //Then re-request the MagicT, if approved with a slightly different GET parameters
193 //purpose=eOTT_OneTimePassword&PPFT={ppft}&login={email}&SLK={slk}
194 return;
195 }
196 }
197
198 if (error_text) {
199 GString *new_error;
200 new_error = g_string_new("");
201 g_string_append_printf(new_error, "%s: ", error_code);
202 g_string_append_printf(new_error, "%s", error_text);
203
204 gchar *error_msg = g_string_free(new_error, FALSE);
205
206 purple_connection_error(sa->pc, PURPLE_CONNECTION_ERROR_AUTHENTICATION_FAILED, error_msg);
207 g_free (error_msg);
208 return;
209 }
210
211 purple_connection_error(sa->pc, PURPLE_CONNECTION_ERROR_AUTHENTICATION_FAILED, _("Failed getting Magic T value, please try logging in via browser first"));
212
213 return;
214 }
215
216 // postdata: t=...&oauthPartner=999&client_id=578134&redirect_uri=https%3A%2F%2Fweb.skype.com
217 postdata = g_string_new("");
218 g_string_append_printf(postdata, "t=%s&", purple_url_encode(magic_t_value));
219 g_string_append(postdata, "site_name=lw.skype.com&");
220 g_string_append(postdata, "oauthPartner=999&");
221 g_string_append(postdata, "client_id=578134&");
222 g_string_append(postdata, "redirect_uri=https%3A%2F%2Fweb.skype.com");
223
224 tmplen = postdata->len;
225 if (postdata->len > INT_MAX) tmplen = INT_MAX;
226
227 // post the t to https://login.skype.com/login/oauth?client_id=578134&redirect_uri=https%3A%2F%2Fweb.skype.com
228
229 request = purple_http_request_new(login_url);
230 purple_http_request_set_method(request, "POST");
231 purple_http_request_set_cookie_jar(request, sa->cookie_jar);
232 purple_http_request_header_set(request, "Content-Type", "application/x-www-form-urlencoded; charset=UTF-8");
233 purple_http_request_header_set(request, "Accept", "*/*");
234 purple_http_request_header_set(request, "BehaviorOverride", "redirectAs404");
235 purple_http_request_set_contents(request, postdata->str, tmplen);
236 purple_http_request_set_max_redirects(request, 0);
237 purple_http_request(sa->pc, request, skypeweb_login_did_auth, sa);
238 purple_http_request_unref(request);
239
240 g_string_free(postdata, TRUE);
241 g_free(magic_t_value);
242
243 purple_connection_update_progress(sa->pc, _("Verifying"), 3, 4);
244 }
245
246 static void
skypeweb_login_got_opid(PurpleHttpConnection * http_conn,PurpleHttpResponse * response,gpointer user_data)247 skypeweb_login_got_opid(PurpleHttpConnection *http_conn, PurpleHttpResponse *response, gpointer user_data)
248 {
249 SkypeWebAccount *sa = user_data;
250 const gchar *live_login_url = "https://login.live.com" "/ppsecure/post.srf?wa=wsignin1.0&wp=MBI_SSL&wreply=https%3A%2F%2Flw.skype.com%2Flogin%2Foauth%2Fproxy%3Fsite_name%3Dlw.skype.com";
251 gchar *ppft;
252 gchar *opid;
253 GString *postdata;
254 PurpleHttpRequest *request;
255 int tmplen;
256 const gchar *data;
257 gsize len;
258
259 data = purple_http_response_get_data(response, &len);
260
261 ppft = skypeweb_string_get_chunk(data, len, ",sFT:'", "',");
262 if (!ppft) {
263 purple_connection_error(sa->pc, PURPLE_CONNECTION_ERROR_AUTHENTICATION_FAILED, _("Failed getting PPFT value, please try logging in via browser first"));
264 return;
265 }
266 opid = skypeweb_string_get_chunk(data, len, "&opid=", "'");
267 if (!opid) {
268 purple_connection_error(sa->pc, PURPLE_CONNECTION_ERROR_AUTHENTICATION_FAILED, _("Failed getting opid value, try using 'Alternate Auth Method' settings"));
269 return;
270 }
271 postdata = g_string_new("");
272 g_string_append_printf(postdata, "opid=%s&", purple_url_encode(opid));
273 g_string_append(postdata, "site_name=lw.skype.com&");
274 g_string_append(postdata, "oauthPartner=999&");
275 g_string_append(postdata, "client_id=578134&");
276 g_string_append(postdata, "redirect_uri=https%3A%2F%2Fweb.skype.com&");
277 g_string_append_printf(postdata, "PPFT=%s&", purple_url_encode(ppft));
278 g_string_append(postdata, "type=28&");
279
280 tmplen = postdata->len;
281 if (postdata->len > INT_MAX) tmplen = INT_MAX;
282
283 request = purple_http_request_new(live_login_url);
284 purple_http_request_set_method(request, "POST");
285 purple_http_request_set_cookie_jar(request, sa->cookie_jar);
286 purple_http_request_header_set(request, "Content-Type", "application/x-www-form-urlencoded; charset=UTF-8");
287 purple_http_request_header_set(request, "Accept", "*/*");
288 purple_http_request_set_contents(request, postdata->str, tmplen);
289 purple_http_request(sa->pc, request, skypeweb_login_got_t, sa);
290 purple_http_request_unref(request);
291
292 g_string_free(postdata, TRUE);
293
294 g_free(ppft);
295 g_free(opid);
296
297 purple_connection_update_progress(sa->pc, _("Authenticating"), 2, 4);
298 }
299
300 static void
skypeweb_login_got_ppft(PurpleHttpConnection * http_conn,PurpleHttpResponse * response,gpointer user_data)301 skypeweb_login_got_ppft(PurpleHttpConnection *http_conn, PurpleHttpResponse *response, gpointer user_data)
302 {
303 SkypeWebAccount *sa = user_data;
304 const gchar *live_login_url = "https://login.live.com" "/ppsecure/post.srf?wa=wsignin1.0&wp=MBI_SSL&wreply=https%3A%2F%2Flw.skype.com%2Flogin%2Foauth%2Fproxy%3Fsite_name%3Dlw.skype.com";
305 gchar *cktst_cookie;
306 gchar *ppft;
307 GString *postdata;
308 PurpleHttpRequest *request;
309 int tmplen;
310 const gchar *data;
311 gsize len;
312
313 data = purple_http_response_get_data(response, &len);
314
315 // <input type="hidden" name="PPFT" id="i0327" value="..."/>
316 ppft = skypeweb_string_get_chunk(data, len, "name=\"PPFT\" id=\"i0327\" value=\"", "\"");
317 if (!ppft) {
318 purple_connection_error(sa->pc, PURPLE_CONNECTION_ERROR_AUTHENTICATION_FAILED, _("Failed getting PPFT value, please try logging in via browser first"));
319 return;
320 }
321 // CkTst=G + timestamp e.g. G1422309314913
322 cktst_cookie = g_strdup_printf("G%" G_GINT64_FORMAT, skypeweb_get_js_time());
323 purple_http_cookie_jar_set(sa->cookie_jar, "CkTst", cktst_cookie);
324
325 // postdata: login={username}&passwd={password}&PPFT={ppft value}
326 postdata = g_string_new("");
327 g_string_append_printf(postdata, "login=%s&", purple_url_encode(purple_account_get_username(sa->account)));
328 g_string_append_printf(postdata, "passwd=%s&", purple_url_encode(purple_connection_get_password(sa->pc)));
329 g_string_append_printf(postdata, "PPFT=%s&", purple_url_encode(ppft));
330 g_string_append(postdata, "loginoptions=3&");
331
332 tmplen = postdata->len;
333 if (postdata->len > INT_MAX) tmplen = INT_MAX;
334
335 // POST to https://login.live.com/ppsecure/post.srf?wa=wsignin1.0&wreply=https%3A%2F%2Fsecure.skype.com%2Flogin%2Foauth%2Fproxy%3Fclient_id%3D578134%26redirect_uri%3Dhttps%253A%252F%252Fweb.skype.com
336
337 request = purple_http_request_new(live_login_url);
338 purple_http_request_set_method(request, "POST");
339 purple_http_request_set_cookie_jar(request, sa->cookie_jar);
340 purple_http_request_header_set(request, "Content-Type", "application/x-www-form-urlencoded; charset=UTF-8");
341 purple_http_request_header_set(request, "Accept", "*/*");
342 purple_http_request_set_contents(request, postdata->str, tmplen);
343 purple_http_request(sa->pc, request, skypeweb_login_got_opid, sa);
344 purple_http_request_unref(request);
345
346 g_string_free(postdata, TRUE);
347
348 g_free(cktst_cookie);
349 g_free(ppft);
350
351 purple_connection_update_progress(sa->pc, _("Authenticating"), 2, 4);
352 }
353
354 void
skypeweb_begin_oauth_login(SkypeWebAccount * sa)355 skypeweb_begin_oauth_login(SkypeWebAccount *sa)
356 {
357 const gchar *login_url = "https://" SKYPEWEB_LOGIN_HOST "/login/oauth/microsoft?client_id=578134&redirect_uri=https%3A%2F%2Fweb.skype.com";
358 PurpleHttpRequest *request;
359
360 request = purple_http_request_new(login_url);
361 purple_http_request_set_cookie_jar(request, sa->cookie_jar);
362 purple_http_request(sa->pc, request, skypeweb_login_got_ppft, sa);
363 purple_http_request_unref(request);
364
365 purple_connection_set_state(sa->pc, PURPLE_CONNECTION_CONNECTING);
366 purple_connection_update_progress(sa->pc, _("Connecting"), 1, 4);
367 }
368
369 void
skypeweb_logout(SkypeWebAccount * sa)370 skypeweb_logout(SkypeWebAccount *sa)
371 {
372 skypeweb_post_or_get(sa, SKYPEWEB_METHOD_GET | SKYPEWEB_METHOD_SSL, SKYPEWEB_LOGIN_HOST, "/logout", NULL, NULL, NULL, TRUE);
373 }
374
375
376
377 void
skypeweb_refresh_token_login(SkypeWebAccount * sa)378 skypeweb_refresh_token_login(SkypeWebAccount *sa)
379 {
380 PurpleAccount *account = sa->account;
381 const gchar *login_url = "https://" SKYPEWEB_LOGIN_HOST "/login?client_id=578134&redirect_uri=https%3A%2F%2Fweb.skype.com";
382 PurpleHttpRequest *request;
383
384 request = purple_http_request_new(login_url);
385 purple_http_request_set_method(request, "GET");
386 purple_http_request_set_keepalive_pool(request, sa->keepalive_pool);
387 purple_http_request_header_set(request, "Accept", "*/*");
388 purple_http_request_header_set(request, "BehaviorOverride", "redirectAs404");
389 purple_http_request_header_set_printf(request, "Cookie", "refresh-token=%s", purple_account_get_string(account, "refresh-token", ""));
390 purple_http_request(sa->pc, request, skypeweb_login_did_auth, sa);
391 purple_http_request_unref(request);
392
393 purple_connection_update_progress(sa->pc, _("Authenticating"), 2, 4);
394 }
395
396
397 static void
skypeweb_login_did_got_api_skypetoken(PurpleHttpConnection * http_conn,PurpleHttpResponse * response,gpointer user_data)398 skypeweb_login_did_got_api_skypetoken(PurpleHttpConnection *http_conn, PurpleHttpResponse *response, gpointer user_data)
399 {
400 SkypeWebAccount *sa = user_data;
401 const gchar *data;
402 gsize len;
403 JsonParser *parser = NULL;
404 JsonNode *node;
405 JsonObject *obj;
406 gchar *error = NULL;
407 PurpleConnectionError error_type = PURPLE_CONNECTION_ERROR_NETWORK_ERROR;
408
409 data = purple_http_response_get_data(response, &len);
410
411 purple_debug_misc("skypeweb", "Full skypetoken response: %s\n", data);
412
413 parser = json_parser_new();
414 if (!json_parser_load_from_data(parser, data, len, NULL)) {
415 goto fail;
416 }
417
418 node = json_parser_get_root(parser);
419 if (node == NULL || json_node_get_node_type(node) != JSON_NODE_OBJECT) {
420 goto fail;
421 }
422 obj = json_node_get_object(node);
423
424 if (!json_object_has_member(obj, "skypetoken")) {
425 JsonObject *status = json_object_get_object_member(obj, "status");
426 if (status) {
427 //{"status":{"code":40120,"text":"Authentication failed. Bad username or password."}}
428 error = g_strdup_printf(_("Login error: %s (code %" G_GINT64_FORMAT ")"),
429 json_object_get_string_member(status, "text"),
430 json_object_get_int_member(status, "code")
431 );
432 error_type = PURPLE_CONNECTION_ERROR_AUTHENTICATION_FAILED;
433 }
434 goto fail;
435 }
436
437 sa->skype_token = g_strdup(json_object_get_string_member(obj, "skypetoken"));
438
439 skypeweb_do_all_the_things(sa);
440
441 g_object_unref(parser);
442 return;
443 fail:
444 if (parser) {
445 g_object_unref(parser);
446 }
447
448 purple_connection_error(sa->pc, error_type,
449 error ? error : _("Failed getting Skype Token (alt)"));
450
451 g_free(error);
452 }
453
454 static void
skypeweb_login_get_api_skypetoken(SkypeWebAccount * sa,const gchar * url,const gchar * username,const gchar * password)455 skypeweb_login_get_api_skypetoken(SkypeWebAccount *sa, const gchar *url, const gchar *username, const gchar *password)
456 {
457 PurpleHttpRequest *request;
458 JsonObject *obj;
459 gchar *postdata;
460
461 obj = json_object_new();
462
463 if (username) {
464 json_object_set_string_member(obj, "username", username);
465 json_object_set_string_member(obj, "passwordHash", password);
466 } else {
467 json_object_set_int_member(obj, "partner", 999);
468 json_object_set_string_member(obj, "access_token", password);
469 }
470 json_object_set_string_member(obj, "scopes", "client");
471 postdata = skypeweb_jsonobj_to_string(obj);
472
473 request = purple_http_request_new(url);
474 purple_http_request_set_method(request, "POST");
475 purple_http_request_set_contents(request, postdata, -1);
476 purple_http_request_header_set(request, "Accept", "application/json; ver=1.0");
477 purple_http_request_header_set(request, "Content-Type", "application/json");
478 purple_http_request(sa->pc, request, skypeweb_login_did_got_api_skypetoken, sa);
479 purple_http_request_unref(request);
480
481 g_free(postdata);
482 json_object_unref(obj);
483 }
484
485 static void
skypeweb_login_soap_got_token(SkypeWebAccount * sa,gchar * token)486 skypeweb_login_soap_got_token(SkypeWebAccount *sa, gchar *token)
487 {
488 const gchar *login_url = "https://edge.skype.com/rps/v1/rps/skypetoken";
489
490 skypeweb_login_get_api_skypetoken(sa, login_url, NULL, token);
491 }
492
493 static void
skypeweb_login_did_soap(PurpleHttpConnection * http_conn,PurpleHttpResponse * response,gpointer user_data)494 skypeweb_login_did_soap(PurpleHttpConnection *http_conn, PurpleHttpResponse *response, gpointer user_data)
495 {
496 SkypeWebAccount *sa = user_data;
497 const gchar *data;
498 gsize len;
499 PurpleXmlNode *envelope, *main_node, *node, *fault;
500 gchar *token;
501 const char *error = NULL;
502
503 data = purple_http_response_get_data(response, &len);
504 envelope = purple_xmlnode_from_str(data, len);
505
506 if (!data) {
507 error = _("Error parsing SOAP response");
508 goto fail;
509 }
510
511 main_node = purple_xmlnode_get_child(envelope, "Body/RequestSecurityTokenResponseCollection/RequestSecurityTokenResponse");
512
513 if ((fault = purple_xmlnode_get_child(envelope, "Fault")) ||
514 (main_node && (fault = purple_xmlnode_get_child(main_node, "Fault")))) {
515 gchar *code, *string, *error_;
516
517 code = purple_xmlnode_get_data(purple_xmlnode_get_child(fault, "faultcode"));
518 string = purple_xmlnode_get_data(purple_xmlnode_get_child(fault, "faultstring"));
519
520 if (purple_strequal(code, "wsse:FailedAuthentication")) {
521 error_ = g_strdup_printf(_("Login error: Bad username or password (%s)"), string);
522 } else {
523 error_ = g_strdup_printf(_("Login error: %s - %s"), code, string);
524 }
525
526 purple_connection_error(sa->pc, PURPLE_CONNECTION_ERROR_AUTHENTICATION_FAILED, error_);
527
528 g_free(code);
529 g_free(string);
530 g_free(error_);
531 goto fail;
532 }
533
534 node = purple_xmlnode_get_child(main_node, "RequestedSecurityToken/BinarySecurityToken");
535
536 if (!node) {
537 error = _("Error getting BinarySecurityToken");
538 goto fail;
539 }
540
541 token = purple_xmlnode_get_data(node);
542 skypeweb_login_soap_got_token(sa, token);
543 g_free(token);
544
545 fail:
546 if (error) {
547 purple_connection_error(sa->pc, PURPLE_CONNECTION_ERROR_NETWORK_ERROR, error);
548 }
549 purple_xmlnode_free(envelope);
550 return;
551 }
552
553 #define SIMPLE_OBJECT_ACCESS_PROTOCOL \
554 "<Envelope xmlns='http://schemas.xmlsoap.org/soap/envelope/'\n" \
555 " xmlns:wsse='http://schemas.xmlsoap.org/ws/2003/06/secext'\n" \
556 " xmlns:wsp='http://schemas.xmlsoap.org/ws/2002/12/policy'\n" \
557 " xmlns:wsa='http://schemas.xmlsoap.org/ws/2004/03/addressing'\n" \
558 " xmlns:wst='http://schemas.xmlsoap.org/ws/2004/04/trust'\n" \
559 " xmlns:ps='http://schemas.microsoft.com/Passport/SoapServices/PPCRL'>\n" \
560 " <Header>\n" \
561 " <wsse:Security>\n" \
562 " <wsse:UsernameToken Id='user'>\n" \
563 " <wsse:Username>%s</wsse:Username>\n" \
564 " <wsse:Password>%s</wsse:Password>\n" \
565 " </wsse:UsernameToken>\n" \
566 " </wsse:Security>\n" \
567 " </Header>\n" \
568 " <Body>\n" \
569 " <ps:RequestMultipleSecurityTokens Id='RSTS'>\n" \
570 " <wst:RequestSecurityToken Id='RST0'>\n" \
571 " <wst:RequestType>http://schemas.xmlsoap.org/ws/2004/04/security/trust/Issue</wst:RequestType>\n" \
572 " <wsp:AppliesTo>\n" \
573 " <wsa:EndpointReference>\n" \
574 " <wsa:Address>wl.skype.com</wsa:Address>\n" \
575 " </wsa:EndpointReference>\n" \
576 " </wsp:AppliesTo>\n" \
577 " <wsse:PolicyReference URI='MBI_SSL'></wsse:PolicyReference>\n" \
578 " </wst:RequestSecurityToken>\n" \
579 " </ps:RequestMultipleSecurityTokens>\n" \
580 " </Body>\n" \
581 "</Envelope>" \
582
583 void
skypeweb_begin_soapy_login(SkypeWebAccount * sa)584 skypeweb_begin_soapy_login(SkypeWebAccount *sa)
585 {
586 PurpleAccount *account = sa->account;
587 const gchar *login_url = "https://login.live.com/RST.srf";
588 const gchar *template = SIMPLE_OBJECT_ACCESS_PROTOCOL;
589 gchar *postdata;
590 PurpleHttpRequest *request;
591
592 postdata = g_markup_printf_escaped(template,
593 purple_account_get_username(account),
594 purple_connection_get_password(sa->pc)
595 );
596
597 request = purple_http_request_new(login_url);
598 purple_http_request_set_method(request, "POST");
599 purple_http_request_set_contents(request, postdata, -1);
600 purple_http_request_header_set(request, "Accept", "*/*");
601 purple_http_request_header_set(request, "Content-Type", "text/xml; charset=UTF-8");
602 purple_http_request(sa->pc, request, skypeweb_login_did_soap, sa);
603 purple_http_request_unref(request);
604
605 purple_connection_update_progress(sa->pc, _("Authenticating"), 2, 4);
606
607 g_free(postdata);
608 }
609