fix: another player see your skin!

app/api/meta.py

@@ -4,15 +4,29 @@ router = APIRouter(tags=["Meta"])
 
 @router.get("/")
 def api_root():
+    # Читаем публичный ключ из файла
+    public_key_path = "app/keys/public_key.pem"
+    
+    try:
+        with open(public_key_path, "r") as f:
+            public_key = f.read().strip()
+            
         return {
             "meta": {
-            "serverName": "Your Auth Server",
+                "serverName": "Popa Auth Server",
                 "implementationName": "FastAPI",
                 "implementationVersion": "1.0.0",
                 "links": {
-                "homepage": "https://your-server.com"
+                    "homepage": "https://popa-popa.ru"
-            },
+                }
             },
             "skinDomains": ["147.78.65.214"],
-        "capeDomains": ["147.78.65.214"]
+            "capeDomains": ["147.78.65.214"],
+            # Важно - возвращаем ключ как есть, без дополнительной обработки
+            "signaturePublickey": public_key
+        }
+    except Exception as e:
+        return {
+            "error": str(e),
+            "traceback": str(e)
         }

app/services/auth.py

@@ -108,7 +108,7 @@ class AuthService:
 
         textures = {
             "timestamp": int(datetime.now().timestamp() * 1000),
-            "profileId": user["uuid"],  # UUID с дефисами
+            "profileId": user["uuid"].replace("-", ""),
             "profileName": user["username"],
             "textures": {}
         }
@@ -125,28 +125,66 @@ class AuthService:
         textures_json = json.dumps(textures).encode()
         base64_textures = base64.b64encode(textures_json).decode()
         
+        try:
             # Подписываем текстуры
-        with open("private_key.pem", "rb") as key_file:
+            private_key_path = "app/keys/private_key.pem"
+            with open(private_key_path, "rb") as key_file:
                 private_key = serialization.load_pem_private_key(
                     key_file.read(),
                     password=None
                 )
             
             signature = private_key.sign(
-            textures_json,
+                base64.b64encode(textures_json),
                 padding.PKCS1v15(),
                 hashes.SHA1()
             )
             
-        return JSONResponse({
+            signature_base64 = base64.b64encode(signature).decode()
-            "id": user["uuid"].replace("-", ""),  # Уберите дефисы
+            
+            return {
+                "id": user["uuid"].replace("-", ""),
                 "name": user["username"],
                 "properties": [{
                     "name": "textures",
                     "value": base64_textures,
-                "signature": base64.b64encode(signature).decode()
+                    "signature": signature_base64
                 }]
-        })
+            }
+        except Exception as e:
+            print(f"Error signing textures: {e}")
+            # В случае ошибки возвращаем текстуры без подписи
+            return {
+                "id": user["uuid"].replace("-", ""),
+                "name": user["username"],
+                "properties": [{
+                    "name": "textures",
+                    "value": base64_textures
+                }]
+            }
+
+        # # Подписываем текстуры
+        # with open("private_key.pem", "rb") as key_file:
+        #     private_key = serialization.load_pem_private_key(
+        #         key_file.read(),
+        #         password=None
+        #     )
+        
+        # signature = private_key.sign(
+        #     textures_json,
+        #     padding.PKCS1v15(),
+        #     hashes.SHA1()
+        # )
+
+        # return JSONResponse({
+        #     "id": user["uuid"].replace("-", ""),  # Уберите дефисы
+        #     "name": user["username"],
+        #     "properties": [{
+        #         "name": "textures",
+        #         "value": base64_textures,
+        #         # "signature": base64.b64encode(signature).decode()
+        #     }]
+        # })
         
     async def join_server(self, request_data: dict):
         access_token = request_data.get("accessToken")
@@ -186,24 +224,59 @@ class AuthService:
         if not session:
             raise HTTPException(status_code=403, detail="Not joined this server")
 
-        textures = {}
+        textures = {
-        if user.get("skin_url"):
+            "timestamp": int(datetime.now().timestamp() * 1000),
-            textures["SKIN"] = {"url": user["skin_url"]}
+            "profileId": user["uuid"].replace("-", ""),
-        if user.get("cloak_url"):
+            "profileName": user["username"],
-            textures["CAPE"] = {"url": user["cloak_url"]}
+            "textures": {}
+        }
 
-        textures_value = base64.b64encode(json.dumps({
+        if user.get("skin_url"):
-            "timestamp": int(datetime.now().timestamp()),
+            textures["textures"]["SKIN"] = {
-            "profileId": user["uuid"].replace("-", ""),  # UUID без дефисов
+                "url": user["skin_url"],
-            "profileName": username,
+                "metadata": {"model": user.get("skin_model", "classic")}
-            "textures": textures
+            }
-        }).encode()).decode()
+
+        if user.get("cloak_url"):
+            textures["textures"]["CAPE"] = {"url": user["cloak_url"]}
+
+        textures_json = json.dumps(textures).encode()
+        base64_textures = base64.b64encode(textures_json).decode()
+        
+        try:
+            # Подписываем текстуры
+            private_key_path = "app/keys/private_key.pem"
+            with open(private_key_path, "rb") as key_file:
+                private_key = serialization.load_pem_private_key(
+                    key_file.read(),
+                    password=None
+                )
+            
+            signature = private_key.sign(
+                base64.b64encode(textures_json),
+                padding.PKCS1v15(),
+                hashes.SHA1()
+            )
+            
+            signature_base64 = base64.b64encode(signature).decode()
             
             return {
-            "id": user["uuid"].replace("-", ""),  # UUID без дефисов
+                "id": user["uuid"].replace("-", ""),
-            "name": username,
+                "name": user["username"],
                 "properties": [{
                     "name": "textures",
-                "value": textures_value
+                    "value": base64_textures,
-            }] if textures else []
+                    "signature": signature_base64
+                }]
+            }
+        except Exception as e:
+            print(f"Error signing textures: {e}")
+            # В случае ошибки возвращаем текстуры без подписи
+            return {
+                "id": user["uuid"].replace("-", ""),
+                "name": user["username"],
+                "properties": [{
+                    "name": "textures",
+                    "value": base64_textures
+                }]
             }