steamguard-cli/steamguard/src/lib.rs

use crate::token::TwoFactorSecret;
use accountlinker::RemoveAuthenticatorError;
pub use accountlinker::{AccountLinkError, AccountLinker, FinalizeLinkError};
pub use confirmation::*;
pub use qrapprover::{QrApprover, QrApproverError};
pub use secrecy::{ExposeSecret, SecretString};
use serde::{Deserialize, Serialize};
use std::io::Read;
use token::Tokens;
use transport::{Transport, TransportError};
pub use userlogin::{DeviceDetails, LoginError, UserLogin};

#[macro_use]
extern crate lazy_static;
#[macro_use]
extern crate anyhow;
extern crate maplit;

pub mod accountlinker;
mod api_responses;
mod confirmation;
pub mod phonelinker;
pub mod protobufs;
mod qrapprover;
pub mod refresher;
mod secret_string;
pub mod steamapi;
pub mod token;
pub mod transport;
pub mod userlogin;

extern crate base64;
extern crate cookie;

#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct SteamGuardAccount {
	pub account_name: String,
	pub steam_id: u64,
	pub serial_number: String,
	#[serde(with = "secret_string")]
	pub revocation_code: SecretString,
	pub shared_secret: TwoFactorSecret,
	pub token_gid: String,
	#[serde(with = "secret_string")]
	pub identity_secret: SecretString,
	#[serde(with = "secret_string")]
	pub uri: SecretString,
	pub device_id: String,
	#[serde(with = "secret_string")]
	pub secret_1: SecretString,
	pub tokens: Option<Tokens>,
}

impl Default for SteamGuardAccount {
	fn default() -> Self {
		Self {
			account_name: String::from(""),
			steam_id: 0,
			serial_number: String::from(""),
			revocation_code: String::from("").into(),
			shared_secret: TwoFactorSecret::new(),
			token_gid: String::from(""),
			identity_secret: String::from("").into(),
			uri: String::from("").into(),
			device_id: String::from(""),
			secret_1: String::from("").into(),
			tokens: None,
		}
	}
}

impl SteamGuardAccount {
	pub fn new() -> Self {
		Self::default()
	}

	pub fn from_reader<T>(r: T) -> anyhow::Result<Self>
	where
		T: Read,
	{
		Ok(serde_json::from_reader(r)?)
	}

	pub fn set_tokens(&mut self, tokens: Tokens) {
		self.tokens = Some(tokens);
	}

	pub fn is_logged_in(&self) -> bool {
		self.tokens.is_some()
	}

	pub fn generate_code(&self, time: u64) -> String {
		self.shared_secret.generate_code(time)
	}

	/// Removes the mobile authenticator from the steam account. If this operation succeeds, this object can no longer be considered valid.
	/// Returns whether or not the operation was successful.
	///
	/// A convenience method for [`AccountLinker::remove_authenticator`].
	pub fn remove_authenticator(
		&self,
		transport: impl Transport,
		revocation_code: Option<&String>,
	) -> Result<(), RemoveAuthenticatorError> {
		let Some(tokens) = &self.tokens else {
			return Err(RemoveAuthenticatorError::TransportError(
				TransportError::Unauthorized,
			));
		};
		let revocation_code =
			Some(revocation_code.unwrap_or_else(|| self.revocation_code.expose_secret()));
		let linker = AccountLinker::new(transport, tokens.clone());
		linker.remove_authenticator(revocation_code)
	}
}
remove: move main remove_authenticator request logic into AccountLinker (#353) 2023-12-08 11:39:41 -05:00			`use crate::token::TwoFactorSecret;`
			`use accountlinker::RemoveAuthenticatorError;`
improve error handling in accountlinker 2021-08-09 18:44:42 -04:00			`pub use accountlinker::{AccountLinkError, AccountLinker, FinalizeLinkError};`
trade: refactor how confirmations work so it's more reliable (#245) 2023-06-27 10:20:27 -04:00			`pub use confirmation::*;`
Add qr-login command to be able to approve qr code logins on other devices (#214) - add QrApprover - implement qr-login subcommand closes #197 2023-06-24 13:45:03 -04:00			`pub use qrapprover::{QrApprover, QrApproverError};`
cargo fmt 2022-06-19 14:44:18 -04:00			`pub use secrecy::{ExposeSecret, SecretString};`
Run "cargo fmt" 2021-08-01 12:43:18 +00:00			`use serde::{Deserialize, Serialize};`
trade: refactor how confirmations work so it's more reliable (#245) 2023-06-27 10:20:27 -04:00			`use std::io::Read;`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`use token::Tokens;`
add HTTP proxy support (#264) - allow extracting the http client from web api transport - refactor most commands so that they can accept an external transport - update confirmer to use transport's http client - update remove command - update TwoFactorClient so it doesn't need to be mutable - update get_server_time so it requires a transport - update remove_authenticator - update login proceedure to use given transport - update usages of do_login - update setup - update trade - update code command - update qr-login command - make borrowcheck happy - make WebApiTransport Clone and remove Default impl - remove dead code - fix lints closes #177 2023-07-02 08:57:13 -04:00			`use transport::{Transport, TransportError};`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub use userlogin::{DeviceDetails, LoginError, UserLogin};`

can request trade confirmations, don't know if parsing works 2021-04-04 17:48:44 -04:00			`#[macro_use]`
			`extern crate lazy_static;`
add Confirmation struct, and improve confirmation parsing 2021-07-27 23:49:53 -04:00			`#[macro_use]`
			`extern crate anyhow;`
move most http requests to the steam API into SteamApiClient 2021-08-07 18:47:39 -04:00			`extern crate maplit;`
update SteamGuardAccount struct to make it easier to serialize 2021-03-26 13:32:37 -04:00
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub mod accountlinker;`
reorganize steam api responses 2022-12-06 10:02:07 -05:00			`mod api_responses;`
add Confirmation struct, and improve confirmation parsing 2021-07-27 23:49:53 -04:00			`mod confirmation;`
add PhoneLinker, and the ability to add a phone number to the account during setup (#223) - add proto for IPhoneService - add PhoneClient - add PhoneLinker - fix lints and such - add comments - update phone linker - use phonenumber crate for phone linker - adjust errors for account linker - update setup command to be able to add phone numbers - adjust logging in the setup command - update account linker 2023-06-25 13:11:24 -04:00			`pub mod phonelinker;`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub mod protobufs;`
Add qr-login command to be able to approve qr code logins on other devices (#214) - add QrApprover - implement qr-login subcommand closes #197 2023-06-24 13:45:03 -04:00			`mod qrapprover;`
automatically refresh access token to avoid prompting to log in (#221) 2023-06-24 13:18:22 -04:00			`pub mod refresher;`
cargo fmt 2022-06-19 14:44:18 -04:00			`mod secret_string;`
Run "cargo fmt" 2021-08-01 12:43:18 +00:00			`pub mod steamapi;`
add TwoFactorSecret type, which zeros out memory when deallocated 2021-08-24 21:13:16 -04:00			`pub mod token;`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub mod transport;`
			`pub mod userlogin;`
add working 2fa code generation 2021-03-21 21:21:29 -04:00
			`extern crate base64;`
add working login process 2021-03-30 15:51:26 -04:00			`extern crate cookie;`
add working 2fa code generation 2021-03-21 21:21:29 -04:00
add account selection from arguments 2021-03-27 12:14:34 -04:00			`#[derive(Debug, Clone, Serialize, Deserialize)]`
add working 2fa code generation 2021-03-21 21:21:29 -04:00			`pub struct SteamGuardAccount {`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`pub account_name: String,`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub steam_id: u64,`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`pub serial_number: String,`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`#[serde(with = "secret_string")]`
			`pub revocation_code: SecretString,`
add TwoFactorSecret type, which zeros out memory when deallocated 2021-08-24 21:13:16 -04:00			`pub shared_secret: TwoFactorSecret,`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`pub token_gid: String,`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`#[serde(with = "secret_string")]`
			`pub identity_secret: SecretString,`
			`#[serde(with = "secret_string")]`
			`pub uri: SecretString,`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`pub device_id: String,`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`#[serde(with = "secret_string")]`
			`pub secret_1: SecretString,`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub tokens: Option<Tokens>,`
add working 2fa code generation 2021-03-21 21:21:29 -04:00			`}`

Dead code cleanup, subcommand refactor (#206) - clean up dead code - fix lints - move Session type to legacy module - refactor service names into constants - refactor build_url to be less restrictive for service names - refactor most commands into their own modules 2023-06-23 13:36:23 -04:00			`impl Default for SteamGuardAccount {`
			`fn default() -> Self {`
			`Self {`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`account_name: String::from(""),`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`steam_id: 0,`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`serial_number: String::from(""),`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`revocation_code: String::from("").into(),`
add TwoFactorSecret type, which zeros out memory when deallocated 2021-08-24 21:13:16 -04:00			`shared_secret: TwoFactorSecret::new(),`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`token_gid: String::from(""),`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`identity_secret: String::from("").into(),`
			`uri: String::from("").into(),`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`device_id: String::from(""),`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`secret_1: String::from("").into(),`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`tokens: None,`
Dead code cleanup, subcommand refactor (#206) - clean up dead code - fix lints - move Session type to legacy module - refactor service names into constants - refactor build_url to be less restrictive for service names - refactor most commands into their own modules 2023-06-23 13:36:23 -04:00			`}`
			`}`
			`}`

			`impl SteamGuardAccount {`
			`pub fn new() -> Self {`
			`Self::default()`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`}`

steamguard: add SteamGuardAccount::from_reader 2022-08-13 09:26:23 -04:00			`pub fn from_reader<T>(r: T) -> anyhow::Result<Self>`
			`where`
			`T: Read,`
			`{`
			`Ok(serde_json::from_reader(r)?)`
			`}`

Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub fn set_tokens(&mut self, tokens: Tokens) {`
			`self.tokens = Some(tokens);`
			`}`

			`pub fn is_logged_in(&self) -> bool {`
Dead code cleanup, subcommand refactor (#206) - clean up dead code - fix lints - move Session type to legacy module - refactor service names into constants - refactor build_url to be less restrictive for service names - refactor most commands into their own modules 2023-06-23 13:36:23 -04:00			`self.tokens.is_some()`
protect `Session` memory, values are zeroized when dropped 2022-06-19 14:42:07 -04:00			`}`

get_server_time now returns Result, fixes #152 2022-06-20 20:05:00 -04:00			`pub fn generate_code(&self, time: u64) -> String {`
Dead code cleanup, subcommand refactor (#206) - clean up dead code - fix lints - move Session type to legacy module - refactor service names into constants - refactor build_url to be less restrictive for service names - refactor most commands into their own modules 2023-06-23 13:36:23 -04:00			`self.shared_secret.generate_code(time)`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`}`

add account removal, closes #10 2021-08-11 19:39:29 -04:00			`/// Removes the mobile authenticator from the steam account. If this operation succeeds, this object can no longer be considered valid.`
			`/// Returns whether or not the operation was successful.`
remove: move main remove_authenticator request logic into AccountLinker (#353) 2023-12-08 11:39:41 -05:00			`///`
			/// A convenience method for [`AccountLinker::remove_authenticator`].
			`pub fn remove_authenticator(`
remove: refactor to make it more reliable (#257) fixes #256 2023-06-30 10:53:05 -04:00			`&self,`
remove: move main remove_authenticator request logic into AccountLinker (#353) 2023-12-08 11:39:41 -05:00			`transport: impl Transport,`
remove: refactor to make it more reliable (#257) fixes #256 2023-06-30 10:53:05 -04:00			`revocation_code: Option<&String>,`
			`) -> Result<(), RemoveAuthenticatorError> {`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`let Some(tokens) = &self.tokens else {`
remove `normalize_comments` rustfmt rule (#316) 2023-09-10 17:22:23 -04:00			`return Err(RemoveAuthenticatorError::TransportError(`
			`TransportError::Unauthorized,`
			`));`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`};`
remove: move main remove_authenticator request logic into AccountLinker (#353) 2023-12-08 11:39:41 -05:00			`let revocation_code =`
			`Some(revocation_code.unwrap_or_else(\|\| self.revocation_code.expose_secret()));`
			`let linker = AccountLinker::new(transport, tokens.clone());`
			`linker.remove_authenticator(revocation_code)`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`}`
refactor confirmations parsing, fixes #66 2021-07-31 16:57:51 -04:00			`}`