steamguard-cli/steamguard/src/lib.rs

use crate::protobufs::service_twofactor::CTwoFactor_RemoveAuthenticator_Request;
use crate::steamapi::EResult;
use crate::{
	steamapi::twofactor::TwoFactorClient, token::TwoFactorSecret, transport::WebApiTransport,
};
pub use accountlinker::{AccountLinkError, AccountLinker, FinalizeLinkError};
pub use confirmation::*;
pub use qrapprover::{QrApprover, QrApproverError};
pub use secrecy::{ExposeSecret, SecretString};
use serde::{Deserialize, Serialize};
use std::io::Read;
use token::Tokens;
pub use userlogin::{DeviceDetails, LoginError, UserLogin};

#[macro_use]
extern crate lazy_static;
#[macro_use]
extern crate anyhow;
extern crate maplit;

pub mod accountlinker;
mod api_responses;
mod confirmation;
pub mod phonelinker;
pub mod protobufs;
mod qrapprover;
pub mod refresher;
mod secret_string;
pub mod steamapi;
pub mod token;
pub mod transport;
pub mod userlogin;

extern crate base64;
extern crate cookie;
extern crate hmacsha1;

#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct SteamGuardAccount {
	pub account_name: String,
	pub steam_id: u64,
	pub serial_number: String,
	#[serde(with = "secret_string")]
	pub revocation_code: SecretString,
	pub shared_secret: TwoFactorSecret,
	pub token_gid: String,
	#[serde(with = "secret_string")]
	pub identity_secret: SecretString,
	#[serde(with = "secret_string")]
	pub uri: SecretString,
	pub device_id: String,
	#[serde(with = "secret_string")]
	pub secret_1: SecretString,
	pub tokens: Option<Tokens>,
}

impl Default for SteamGuardAccount {
	fn default() -> Self {
		Self {
			account_name: String::from(""),
			steam_id: 0,
			serial_number: String::from(""),
			revocation_code: String::from("").into(),
			shared_secret: TwoFactorSecret::new(),
			token_gid: String::from(""),
			identity_secret: String::from("").into(),
			uri: String::from("").into(),
			device_id: String::from(""),
			secret_1: String::from("").into(),
			tokens: None,
		}
	}
}

impl SteamGuardAccount {
	pub fn new() -> Self {
		Self::default()
	}

	pub fn from_reader<T>(r: T) -> anyhow::Result<Self>
	where
		T: Read,
	{
		Ok(serde_json::from_reader(r)?)
	}

	pub fn set_tokens(&mut self, tokens: Tokens) {
		self.tokens = Some(tokens);
	}

	pub fn is_logged_in(&self) -> bool {
		self.tokens.is_some()
	}

	pub fn generate_code(&self, time: u64) -> String {
		self.shared_secret.generate_code(time)
	}

	/// Removes the mobile authenticator from the steam account. If this operation succeeds, this object can no longer be considered valid.
	/// Returns whether or not the operation was successful.
	pub fn remove_authenticator(&self, revocation_code: Option<String>) -> anyhow::Result<bool> {
		ensure!(
			matches!(revocation_code, Some(_)) || !self.revocation_code.expose_secret().is_empty(),
			"Revocation code not provided."
		);
		let Some(tokens) = &self.tokens else {
			return Err(anyhow!("Tokens not set, login required"));
		};
		let mut client = TwoFactorClient::new(WebApiTransport::new());
		let mut req = CTwoFactor_RemoveAuthenticator_Request::new();
		req.set_revocation_code(
			revocation_code.unwrap_or(self.revocation_code.expose_secret().to_owned()),
		);
		let resp = client.remove_authenticator(req, tokens.access_token())?;
		if resp.result != EResult::OK {
			Err(anyhow!("Failed to remove authenticator: {:?}", resp.result))
		} else {
			Ok(true)
		}
	}
}
Dead code cleanup, subcommand refactor (#206) - clean up dead code - fix lints - move Session type to legacy module - refactor service names into constants - refactor build_url to be less restrictive for service names - refactor most commands into their own modules 2023-06-23 13:36:23 -04:00			`use crate::protobufs::service_twofactor::CTwoFactor_RemoveAuthenticator_Request;`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`use crate::steamapi::EResult;`
			`use crate::{`
			`steamapi::twofactor::TwoFactorClient, token::TwoFactorSecret, transport::WebApiTransport,`
			`};`
improve error handling in accountlinker 2021-08-09 18:44:42 -04:00			`pub use accountlinker::{AccountLinkError, AccountLinker, FinalizeLinkError};`
trade: refactor how confirmations work so it's more reliable (#245) 2023-06-27 10:20:27 -04:00			`pub use confirmation::*;`
Add qr-login command to be able to approve qr code logins on other devices (#214) - add QrApprover - implement qr-login subcommand closes #197 2023-06-24 13:45:03 -04:00			`pub use qrapprover::{QrApprover, QrApproverError};`
cargo fmt 2022-06-19 14:44:18 -04:00			`pub use secrecy::{ExposeSecret, SecretString};`
Run "cargo fmt" 2021-08-01 12:43:18 +00:00			`use serde::{Deserialize, Serialize};`
trade: refactor how confirmations work so it's more reliable (#245) 2023-06-27 10:20:27 -04:00			`use std::io::Read;`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`use token::Tokens;`
			`pub use userlogin::{DeviceDetails, LoginError, UserLogin};`

can request trade confirmations, don't know if parsing works 2021-04-04 17:48:44 -04:00			`#[macro_use]`
			`extern crate lazy_static;`
add Confirmation struct, and improve confirmation parsing 2021-07-27 23:49:53 -04:00			`#[macro_use]`
			`extern crate anyhow;`
move most http requests to the steam API into SteamApiClient 2021-08-07 18:47:39 -04:00			`extern crate maplit;`
update SteamGuardAccount struct to make it easier to serialize 2021-03-26 13:32:37 -04:00
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub mod accountlinker;`
reorganize steam api responses 2022-12-06 10:02:07 -05:00			`mod api_responses;`
add Confirmation struct, and improve confirmation parsing 2021-07-27 23:49:53 -04:00			`mod confirmation;`
add PhoneLinker, and the ability to add a phone number to the account during setup (#223) - add proto for IPhoneService - add PhoneClient - add PhoneLinker - fix lints and such - add comments - update phone linker - use phonenumber crate for phone linker - adjust errors for account linker - update setup command to be able to add phone numbers - adjust logging in the setup command - update account linker 2023-06-25 13:11:24 -04:00			`pub mod phonelinker;`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub mod protobufs;`
Add qr-login command to be able to approve qr code logins on other devices (#214) - add QrApprover - implement qr-login subcommand closes #197 2023-06-24 13:45:03 -04:00			`mod qrapprover;`
automatically refresh access token to avoid prompting to log in (#221) 2023-06-24 13:18:22 -04:00			`pub mod refresher;`
cargo fmt 2022-06-19 14:44:18 -04:00			`mod secret_string;`
Run "cargo fmt" 2021-08-01 12:43:18 +00:00			`pub mod steamapi;`
add TwoFactorSecret type, which zeros out memory when deallocated 2021-08-24 21:13:16 -04:00			`pub mod token;`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub mod transport;`
			`pub mod userlogin;`
add working 2fa code generation 2021-03-21 21:21:29 -04:00
			`extern crate base64;`
add working login process 2021-03-30 15:51:26 -04:00			`extern crate cookie;`
Run "cargo fmt" 2021-08-01 12:43:18 +00:00			`extern crate hmacsha1;`
add working 2fa code generation 2021-03-21 21:21:29 -04:00
add account selection from arguments 2021-03-27 12:14:34 -04:00			`#[derive(Debug, Clone, Serialize, Deserialize)]`
add working 2fa code generation 2021-03-21 21:21:29 -04:00			`pub struct SteamGuardAccount {`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`pub account_name: String,`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub steam_id: u64,`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`pub serial_number: String,`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`#[serde(with = "secret_string")]`
			`pub revocation_code: SecretString,`
add TwoFactorSecret type, which zeros out memory when deallocated 2021-08-24 21:13:16 -04:00			`pub shared_secret: TwoFactorSecret,`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`pub token_gid: String,`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`#[serde(with = "secret_string")]`
			`pub identity_secret: SecretString,`
			`#[serde(with = "secret_string")]`
			`pub uri: SecretString,`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`pub device_id: String,`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`#[serde(with = "secret_string")]`
			`pub secret_1: SecretString,`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub tokens: Option<Tokens>,`
add working 2fa code generation 2021-03-21 21:21:29 -04:00			`}`

Dead code cleanup, subcommand refactor (#206) - clean up dead code - fix lints - move Session type to legacy module - refactor service names into constants - refactor build_url to be less restrictive for service names - refactor most commands into their own modules 2023-06-23 13:36:23 -04:00			`impl Default for SteamGuardAccount {`
			`fn default() -> Self {`
			`Self {`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`account_name: String::from(""),`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`steam_id: 0,`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`serial_number: String::from(""),`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`revocation_code: String::from("").into(),`
add TwoFactorSecret type, which zeros out memory when deallocated 2021-08-24 21:13:16 -04:00			`shared_secret: TwoFactorSecret::new(),`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`token_gid: String::from(""),`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`identity_secret: String::from("").into(),`
			`uri: String::from("").into(),`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`device_id: String::from(""),`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`secret_1: String::from("").into(),`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`tokens: None,`
Dead code cleanup, subcommand refactor (#206) - clean up dead code - fix lints - move Session type to legacy module - refactor service names into constants - refactor build_url to be less restrictive for service names - refactor most commands into their own modules 2023-06-23 13:36:23 -04:00			`}`
			`}`
			`}`

			`impl SteamGuardAccount {`
			`pub fn new() -> Self {`
			`Self::default()`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`}`

steamguard: add SteamGuardAccount::from_reader 2022-08-13 09:26:23 -04:00			`pub fn from_reader<T>(r: T) -> anyhow::Result<Self>`
			`where`
			`T: Read,`
			`{`
			`Ok(serde_json::from_reader(r)?)`
			`}`

Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`pub fn set_tokens(&mut self, tokens: Tokens) {`
			`self.tokens = Some(tokens);`
			`}`

			`pub fn is_logged_in(&self) -> bool {`
Dead code cleanup, subcommand refactor (#206) - clean up dead code - fix lints - move Session type to legacy module - refactor service names into constants - refactor build_url to be less restrictive for service names - refactor most commands into their own modules 2023-06-23 13:36:23 -04:00			`self.tokens.is_some()`
protect `Session` memory, values are zeroized when dropped 2022-06-19 14:42:07 -04:00			`}`

get_server_time now returns Result, fixes #152 2022-06-20 20:05:00 -04:00			`pub fn generate_code(&self, time: u64) -> String {`
Dead code cleanup, subcommand refactor (#206) - clean up dead code - fix lints - move Session type to legacy module - refactor service names into constants - refactor build_url to be less restrictive for service names - refactor most commands into their own modules 2023-06-23 13:36:23 -04:00			`self.shared_secret.generate_code(time)`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`}`

add account removal, closes #10 2021-08-11 19:39:29 -04:00			`/// Removes the mobile authenticator from the steam account. If this operation succeeds, this object can no longer be considered valid.`
			`/// Returns whether or not the operation was successful.`
			`pub fn remove_authenticator(&self, revocation_code: Option<String>) -> anyhow::Result<bool> {`
			`ensure!(`
protect top level secrets in SteamGuardAccount except for session 2022-06-19 14:09:08 -04:00			`matches!(revocation_code, Some(_)) \|\| !self.revocation_code.expose_secret().is_empty(),`
add account removal, closes #10 2021-08-11 19:39:29 -04:00			`"Revocation code not provided."`
			`);`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`let Some(tokens) = &self.tokens else {`
			`return Err(anyhow!("Tokens not set, login required"));`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`};`
Use IAuthenticationService for login, account migrations, other major refactors (#194) fixes #193 fixes #192 fixes #107 - [x] Implement the new login process - [x] Tested - [x] Update the authenticator setup process - [x] Tested - [x] Update the authenticator remove process - [x] Tested - [x] Manifest format migrator - [x] Tested - [x] Make it possible to import SDA accounts - [x] Make sure confirmations still work - [x] Fetching - [x] Responding - [x] Make it so that the login process doesn't prompt for which method to use - [x] Make it so that device confirmation and email confirmation auth session guards work 2023-06-22 16:20:15 -04:00			`let mut client = TwoFactorClient::new(WebApiTransport::new());`
			`let mut req = CTwoFactor_RemoveAuthenticator_Request::new();`
			`req.set_revocation_code(`
			`revocation_code.unwrap_or(self.revocation_code.expose_secret().to_owned()),`
			`);`
			`let resp = client.remove_authenticator(req, tokens.access_token())?;`
			`if resp.result != EResult::OK {`
			`Err(anyhow!("Failed to remove authenticator: {:?}", resp.result))`
			`} else {`
			`Ok(true)`
			`}`
add rustfmt.toml and run cargo fmt 2021-08-08 12:54:46 -04:00			`}`
refactor confirmations parsing, fixes #66 2021-07-31 16:57:51 -04:00			`}`