2023-08-29 00:42:47 +00:00
|
|
|
--[[
|
|
|
|
bank.lua is the central bank server code, which runs 24/7 on a single computer
|
|
|
|
that is globally available via wireless connectivity (ender modem). It keeps a
|
|
|
|
persistent record of all accounts, and all transactions for accounts.
|
|
|
|
|
|
|
|
This program essentially serves as a simplified REST API for ingame clients,
|
|
|
|
like pocket computers and ATMs, for managing funds.
|
|
|
|
]]--
|
|
|
|
|
|
|
|
local USERS_DIR = "users"
|
|
|
|
local USER_DATA_FILE = "data.json"
|
|
|
|
local ACCOUNTS_FILE = "accounts.json"
|
|
|
|
|
2023-08-29 13:07:05 +00:00
|
|
|
local HOST = "central-bank"
|
|
|
|
|
2023-08-29 13:21:24 +00:00
|
|
|
local RUNNING = true
|
|
|
|
|
2023-08-29 13:07:05 +00:00
|
|
|
local g = require("simple-graphics")
|
|
|
|
local W, H = term.getSize()
|
|
|
|
g.clear(term, colors.black)
|
2023-08-29 13:08:43 +00:00
|
|
|
g.drawTextCenter(term, W/2, 1, "BANK Server @ " .. HOST, colors.lime, colors.black)
|
2023-08-29 13:07:05 +00:00
|
|
|
g.drawXLine(term, 1, W, 2, colors.black, colors.gray, "-")
|
2023-08-29 13:21:24 +00:00
|
|
|
g.drawText(term, W-3, 1, "Quit", colors.white, colors.red)
|
2023-08-29 13:07:05 +00:00
|
|
|
local console = g.createConsole(W, H-2, colors.white, colors.black, "DOWN")
|
|
|
|
|
|
|
|
local function log(msg)
|
|
|
|
g.appendAndDrawConsole(term, console, textutils.formatTime(os.time()) .. ": " .. msg, 1, 3)
|
|
|
|
end
|
|
|
|
|
2023-08-29 15:26:33 +00:00
|
|
|
-- Helper functions
|
|
|
|
|
|
|
|
local function readJSON(filename)
|
|
|
|
local f = io.open(filename, "r")
|
|
|
|
if not f then error("Cannot open file " .. filename .. " to read JSON data.") end
|
|
|
|
local data = textutils.unserializeJSON(f:read("*a"))
|
|
|
|
f:close()
|
|
|
|
return data
|
|
|
|
end
|
|
|
|
|
|
|
|
local function writeJSON(filename, data)
|
|
|
|
local f = io.open(filename, "w")
|
|
|
|
if not f then error("Cannot open file " .. filename .. " to write JSON data.") end
|
|
|
|
f:write(textutils.serializeJSON(data))
|
|
|
|
f:close()
|
|
|
|
end
|
|
|
|
|
2023-08-29 00:42:47 +00:00
|
|
|
-- Basic account functions:
|
|
|
|
|
|
|
|
local function validateUsername(name)
|
|
|
|
local i, j = string.find(name, "%a%a%a+")
|
|
|
|
return (
|
|
|
|
i == 1 and
|
|
|
|
j == #name and
|
|
|
|
j <= 12
|
|
|
|
)
|
|
|
|
end
|
|
|
|
|
2023-08-29 19:36:53 +00:00
|
|
|
local function validateTransactionDescription(desc)
|
|
|
|
return string.find(desc, "^%w+[ !%.%w]*$") ~= nil and #desc <= 64
|
|
|
|
end
|
|
|
|
|
2023-08-29 00:42:47 +00:00
|
|
|
local function userDir(name)
|
|
|
|
return fs.combine(USERS_DIR, name)
|
|
|
|
end
|
|
|
|
|
|
|
|
local function userDataFile(name)
|
|
|
|
return fs.combine(USERS_DIR, name, USER_DATA_FILE)
|
|
|
|
end
|
|
|
|
|
|
|
|
local function userAccountsFile(name)
|
|
|
|
return fs.combine(USERS_DIR, name, ACCOUNTS_FILE)
|
|
|
|
end
|
|
|
|
|
2023-08-29 15:26:33 +00:00
|
|
|
local function accountTransactionsFile(username, accountId)
|
|
|
|
return fs.combine(USERS_DIR, username, "tx_" .. accountId .. ".txt")
|
|
|
|
end
|
|
|
|
|
2023-08-29 00:42:47 +00:00
|
|
|
local function userExists(name)
|
|
|
|
return validateUsername(name) and fs.exists(userDir(name))
|
|
|
|
end
|
|
|
|
|
|
|
|
local function validatePassword(password)
|
|
|
|
return #password >= 8
|
|
|
|
end
|
|
|
|
|
|
|
|
local function randomAccountId()
|
|
|
|
local id = ""
|
|
|
|
for i = 1, 16 do
|
2023-08-29 15:26:33 +00:00
|
|
|
id = id .. tostring(math.random(0, 9))
|
2023-08-29 00:42:47 +00:00
|
|
|
if i % 4 == 0 and i < 16 then
|
|
|
|
id = id .. "-"
|
|
|
|
end
|
|
|
|
end
|
|
|
|
return id
|
|
|
|
end
|
|
|
|
|
2023-08-29 15:26:33 +00:00
|
|
|
local function getUserData(name)
|
|
|
|
return readJSON(userDataFile(name))
|
|
|
|
end
|
|
|
|
|
2023-08-29 00:42:47 +00:00
|
|
|
local function getAccounts(name)
|
2023-08-29 15:26:33 +00:00
|
|
|
return readJSON(userAccountsFile(name))
|
2023-08-29 00:42:47 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
local function saveAccounts(name, accounts)
|
2023-08-29 15:26:33 +00:00
|
|
|
writeJSON(userAccountsFile(name), accounts)
|
|
|
|
end
|
|
|
|
|
2023-08-29 19:36:53 +00:00
|
|
|
local function findAccountById(accounts, id)
|
|
|
|
for i, account in pairs(accounts) do
|
|
|
|
if account.id == id then
|
|
|
|
return account
|
|
|
|
end
|
|
|
|
end
|
|
|
|
return nil
|
|
|
|
end
|
|
|
|
|
|
|
|
local function findAccountByName(accounts, name)
|
2023-08-29 15:26:33 +00:00
|
|
|
for i, account in pairs(accounts) do
|
2023-08-29 19:36:53 +00:00
|
|
|
if account.name == name then
|
|
|
|
return account
|
2023-08-29 15:26:33 +00:00
|
|
|
end
|
|
|
|
end
|
2023-08-29 19:36:53 +00:00
|
|
|
return nil
|
|
|
|
end
|
|
|
|
|
|
|
|
local function createAccount(username, accountName)
|
|
|
|
local accounts = getAccounts(username)
|
|
|
|
if findAccountByName(accounts, accountName) then
|
|
|
|
return false, "Duplicate account name"
|
|
|
|
end
|
2023-08-29 15:26:33 +00:00
|
|
|
local newAccount = {
|
|
|
|
id = randomAccountId(),
|
|
|
|
name = accountName,
|
|
|
|
balance = 0,
|
|
|
|
createdAt = os.epoch("utc")
|
|
|
|
}
|
|
|
|
table.insert(accounts, newAccount)
|
|
|
|
saveAccounts(username, accounts)
|
|
|
|
log("Created account " .. newAccount.id .. " for user " .. username)
|
2023-08-29 16:27:38 +00:00
|
|
|
return true, newAccount
|
2023-08-29 15:26:33 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
local function deleteAccount(username, accountId)
|
|
|
|
local accounts = getAccounts(username)
|
|
|
|
local targetIndex = nil
|
|
|
|
for i, account in pairs(accounts) do
|
|
|
|
if account.id == accountId then
|
|
|
|
targetIndex = i
|
|
|
|
end
|
|
|
|
end
|
|
|
|
if targetIndex then
|
|
|
|
table.remove(accounts, targetIndex)
|
|
|
|
saveAccounts(username, accounts)
|
|
|
|
log("Deleted user " .. username .. " account " .. accountId)
|
|
|
|
return true
|
|
|
|
end
|
|
|
|
return false
|
|
|
|
end
|
|
|
|
|
|
|
|
local function renameAccount(username, accountId, newName)
|
|
|
|
local accounts = getAccounts(username)
|
2023-08-29 19:36:53 +00:00
|
|
|
local targetAccount = findAccountById(accounts, accountId)
|
2023-08-29 15:26:33 +00:00
|
|
|
if not targetAccount then return false, "Account not found" end
|
2023-08-29 19:36:53 +00:00
|
|
|
if findAccountByName(accounts, newName) ~= nil then
|
|
|
|
return false, "Duplicate account name"
|
|
|
|
end
|
2023-08-29 15:26:33 +00:00
|
|
|
targetAccount.name = newName
|
|
|
|
saveAccounts(accounts)
|
|
|
|
log("Renamed user " .. username .. " account " .. accountId .. " to " .. newName)
|
|
|
|
return true
|
2023-08-29 00:42:47 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
local function createUser(name, password)
|
|
|
|
if not validateUsername(name) then return false, "Invalid username" end
|
|
|
|
if not validatePassword(password) then return false, "Invalid password" end
|
|
|
|
if userExists(name) then return false, "Username taken" end
|
|
|
|
local userData = {
|
2023-08-29 12:03:06 +00:00
|
|
|
password = password,
|
|
|
|
createdAt = os.epoch("utc")
|
2023-08-29 00:42:47 +00:00
|
|
|
}
|
|
|
|
fs.makeDir(userDir(name))
|
2023-08-29 15:26:33 +00:00
|
|
|
writeJSON(userDataFile(name), userData) -- Flush user data file.
|
2023-08-29 16:47:35 +00:00
|
|
|
saveAccounts(name, {}) -- Flush initial accounts file.
|
2023-08-29 15:26:33 +00:00
|
|
|
createAccount(name, "Checking")
|
|
|
|
createAccount(name, "Savings")
|
|
|
|
log("Created new user: " .. name)
|
2023-08-29 00:42:47 +00:00
|
|
|
return true
|
|
|
|
end
|
|
|
|
|
|
|
|
local function deleteUser(name)
|
|
|
|
if not userExists(name) then return false end
|
|
|
|
fs.delete(userDir(name))
|
2023-08-29 15:26:33 +00:00
|
|
|
log("Deleted user \"" .. name .. "\".")
|
2023-08-29 00:42:47 +00:00
|
|
|
return true
|
|
|
|
end
|
|
|
|
|
|
|
|
local function renameUser(oldName, newName)
|
2023-08-29 15:26:33 +00:00
|
|
|
if not validateUsername(newName) then return false, "Invalid new username" end
|
2023-08-29 00:42:47 +00:00
|
|
|
if not userExists(oldName) then return false, "User doesn't exist" end
|
|
|
|
if userExists(newName) then return false, "New username is taken" end
|
|
|
|
fs.move(userDir(oldName), userDir(newName))
|
2023-08-29 15:26:33 +00:00
|
|
|
log("Renamed user \"" .. oldName .. "\" to \"" .. newName .. "\".")
|
2023-08-29 00:42:47 +00:00
|
|
|
return true
|
|
|
|
end
|
|
|
|
|
2023-08-29 19:36:53 +00:00
|
|
|
local function recordTransaction(username, accountId, amount, description)
|
|
|
|
if not validateTransactionDescription(description) then return false, "Invalid transaction description" end
|
|
|
|
if not userExists(username) then return false, "User doesn't exist" end
|
|
|
|
local accounts = getAccounts(username)
|
|
|
|
local account = findAccountById(accounts, accountId)
|
|
|
|
if account == nil then return false, "Account doesn't exist" end
|
|
|
|
if account.balance + amount < 0 then return false, "Insufficient funds" end
|
|
|
|
-- Everything is OK, record the transaction.
|
|
|
|
local tx = {
|
|
|
|
amount = amount,
|
|
|
|
description = description,
|
|
|
|
timestamp = os.epoch("utc")
|
|
|
|
}
|
|
|
|
local f = io.open(accountTransactionsFile(username, accountId), "a")
|
|
|
|
local txStr = tostring(tx.amount)..";"..tostring(tx.timestamp)..";"..tx.description
|
|
|
|
f:write(txStr .. string.rep(" ", 99 - #txStr) .. "\n")
|
|
|
|
f:close()
|
|
|
|
if fs.getSize(accountTransactionsFile(username, accountId)) % 100 ~= 0 then
|
|
|
|
log("WARNING! Transaction file for account " .. accountId .. " is not consistent!")
|
|
|
|
end
|
|
|
|
account.balance = account.balance + amount
|
|
|
|
saveAccounts(username, accounts)
|
|
|
|
os.queueEvent("bank_account_balance", username, accountId, account.balance)
|
|
|
|
return true, tx
|
|
|
|
end
|
|
|
|
|
2023-08-29 16:33:51 +00:00
|
|
|
local function initSecurityKey()
|
|
|
|
-- Initialize security key
|
|
|
|
local SECURITY_KEY_FILE = "key.txt"
|
|
|
|
local SECURITY_KEY = nil
|
|
|
|
if not fs.exists(SECURITY_KEY_FILE) then
|
|
|
|
local f = io.open(SECURITY_KEY_FILE, "w")
|
|
|
|
SECURITY_KEY = randomAccountId() .. "-" .. randomAccountId() .. "-" .. randomAccountId() .. "-" .. randomAccountId()
|
|
|
|
f:write(SECURITY_KEY)
|
|
|
|
f:close()
|
|
|
|
log("Generated new security key.")
|
|
|
|
else
|
|
|
|
local f = io.open(SECURITY_KEY_FILE, "r")
|
|
|
|
SECURITY_KEY = f:read("*a")
|
|
|
|
f:close()
|
|
|
|
log("Loaded stored security key.")
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2023-08-29 15:26:33 +00:00
|
|
|
-- EVENT HANDLING
|
|
|
|
-----------------
|
|
|
|
|
|
|
|
-- Helper function to wrap another function in an authentication check.
|
2023-08-29 16:27:38 +00:00
|
|
|
local function authProtect(func, secure)
|
2023-08-29 15:26:33 +00:00
|
|
|
return function (msg)
|
|
|
|
if (
|
|
|
|
not msg.auth or
|
|
|
|
not msg.auth.username or
|
|
|
|
not msg.auth.password or
|
|
|
|
not userExists(msg.auth.username) or
|
|
|
|
getUserData(msg.auth.username).password ~= msg.auth.password
|
|
|
|
) then
|
|
|
|
return {success = false, error = "Invalid credentials"}
|
|
|
|
end
|
2023-08-29 19:45:16 +00:00
|
|
|
if secure then
|
|
|
|
if not msg.auth.key then
|
|
|
|
return {success = false, error = "Missing security key"}
|
|
|
|
elseif msg.auth.key ~= SECURITY_KEY then
|
|
|
|
return {success = false, error = "Invalid security key"}
|
|
|
|
end
|
2023-08-29 16:27:38 +00:00
|
|
|
end
|
2023-08-29 15:26:33 +00:00
|
|
|
return func(msg)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2023-08-29 16:27:38 +00:00
|
|
|
local function handleGetStatus(msg)
|
|
|
|
return {success = true}
|
|
|
|
end
|
|
|
|
|
2023-08-29 15:26:33 +00:00
|
|
|
local function handleCreateUser(msg)
|
|
|
|
if not msg.data or not msg.data.username or not msg.data.password then
|
|
|
|
return {success = false, error = "Invalid request. Requires data.username and data.password."}
|
|
|
|
end
|
2023-08-29 16:47:35 +00:00
|
|
|
local success, errorMsg = createUser(msg.data.username, msg.data.password)
|
2023-08-29 15:26:33 +00:00
|
|
|
if not success then
|
|
|
|
return {success = false, error = errorMsg}
|
|
|
|
end
|
|
|
|
return {success = true}
|
|
|
|
end
|
|
|
|
|
|
|
|
local function handleDeleteUser(msg)
|
|
|
|
deleteUser(msg.auth.username)
|
|
|
|
return {success = true}
|
|
|
|
end
|
|
|
|
|
|
|
|
local function handleRenameUser(msg)
|
|
|
|
if not msg.data or not msg.data.newUsername then
|
|
|
|
return {success = false, error = "Invalid request. Requires data.newUsername."}
|
|
|
|
end
|
|
|
|
local success, errorMsg = renameUser(msg.auth.username, msg.data.newUsername)
|
|
|
|
if not success then
|
|
|
|
return {success = false, error = errorMsg}
|
|
|
|
end
|
|
|
|
return {success = true}
|
|
|
|
end
|
|
|
|
|
|
|
|
local function handleGetUserAccounts(msg)
|
|
|
|
return {success = true, data = getAccounts(msg.auth.username)}
|
|
|
|
end
|
|
|
|
|
2023-08-29 16:27:38 +00:00
|
|
|
local function handleCreateUserAccount(msg)
|
|
|
|
if not msg.data or not msg.data.name then
|
|
|
|
return {success = false, error = "Invalid request. Requires data.name."}
|
|
|
|
end
|
|
|
|
local success, errorOrAccount = createAccount(msg.auth.username, msg.data.name)
|
|
|
|
if not success then
|
|
|
|
return {success = false, error = errorOrAccount}
|
|
|
|
end
|
|
|
|
return {success = true, data = errorOrAccount}
|
|
|
|
end
|
|
|
|
|
2023-08-29 15:26:33 +00:00
|
|
|
local function handleDeleteUserAccount(msg)
|
|
|
|
if not msg.data or not msg.data.accountId then
|
|
|
|
return {success = false, error = "Invalid request. Requires data.accountId."}
|
|
|
|
end
|
|
|
|
deleteAccount(msg.auth.username, msg.data.accountId)
|
|
|
|
return {success = true}
|
|
|
|
end
|
|
|
|
|
|
|
|
local function handleRenameUserAccount(msg)
|
|
|
|
if not msg.data or not msg.data.accountId or not msg.data.newName then
|
|
|
|
return {success = false, error = "Invalid request. Requires data.accountId and data.newName."}
|
|
|
|
end
|
|
|
|
local success, errorMsg = renameAccount(msg.auth.username, msg.data.accountid, msg.data.newName)
|
|
|
|
return {success = success, error = errorMsg}
|
|
|
|
end
|
|
|
|
|
2023-08-29 19:36:53 +00:00
|
|
|
local function handleRecordTransactionToAccount(msg)
|
|
|
|
if not msg.data or not msg.data.amount or not msg.data.description or not msg.data.accountId then
|
|
|
|
return {success = false, error = "Invalid request. Requires data.amount and data.description and data.accountId."}
|
|
|
|
end
|
|
|
|
local success, errorMsgOrTx = recordTransaction(msg.auth.username, msg.data.accountId, msg.data.amount, msg.data.description)
|
|
|
|
if not success then
|
|
|
|
return {success = false, error = errorMsgOrTx}
|
|
|
|
end
|
|
|
|
return {success = true, data = errorMsgOrTx}
|
|
|
|
end
|
|
|
|
|
2023-08-29 16:27:38 +00:00
|
|
|
-- A registry of all possible BANK requests, and their handler functions.
|
|
|
|
local BANK_REQUESTS = {
|
|
|
|
["STATUS"] = handleGetStatus,
|
2023-08-29 15:26:33 +00:00
|
|
|
["CREATE_USER"] = handleCreateUser,
|
2023-08-29 16:27:38 +00:00
|
|
|
["DELETE_USER"] = authProtect(handleDeleteUser),
|
|
|
|
["RENAME_USER"] = authProtect(handleRenameUser),
|
|
|
|
["GET_ACCOUNTS"] = authProtect(handleGetUserAccounts),
|
|
|
|
["CREATE_ACCOUNT"] = authProtect(handleCreateUserAccount),
|
|
|
|
["DELETE_ACCOUNT"] = authProtect(handleDeleteUserAccount),
|
2023-08-29 19:36:53 +00:00
|
|
|
["RENAME_ACCOUNT"] = authProtect(handleRenameUserAccount),
|
|
|
|
["RECORD_TRANSACTION"] = authProtect(handleRecordTransactionToAccount, true)
|
2023-08-29 15:26:33 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
local function handleBankMessage(remoteId, msg)
|
|
|
|
if msg == nil or msg.command == nil or type(msg.command) ~= "string" then
|
|
|
|
return {success = false, error = "Invalid BANK request. Message is nil or missing \"command\" string property."}
|
|
|
|
end
|
|
|
|
if BANK_REQUESTS[msg.command] then
|
|
|
|
return BANK_REQUESTS[msg.command](msg)
|
|
|
|
end
|
|
|
|
return {success = false, error = "Unknown command: \"" .. msg.command .. "\""}
|
|
|
|
end
|
|
|
|
|
2023-08-29 13:21:24 +00:00
|
|
|
local function handleNetworkEvents()
|
|
|
|
log("Initializing Rednet hosting...")
|
|
|
|
rednet.open("top")
|
|
|
|
rednet.host("BANK", HOST)
|
|
|
|
log("Opened Rednet and hosted BANK at host \"" .. HOST .. "\".")
|
|
|
|
log("Now receiving requests.")
|
|
|
|
while RUNNING do
|
|
|
|
local remoteId, msg = rednet.receive("BANK", 3)
|
|
|
|
if remoteId ~= nil then
|
2023-08-29 16:47:35 +00:00
|
|
|
log("Received message from computer ID " .. remoteId)
|
2023-08-29 15:26:33 +00:00
|
|
|
local success, response = pcall(handleBankMessage, remoteId, msg)
|
|
|
|
if not success then
|
|
|
|
response = {success = false, error = "An error occurred: " .. response}
|
|
|
|
end
|
|
|
|
rednet.send(remoteId, response, "BANK")
|
2023-08-29 13:21:24 +00:00
|
|
|
end
|
|
|
|
end
|
|
|
|
rednet.unhost("BANK")
|
|
|
|
rednet.close()
|
|
|
|
end
|
|
|
|
|
|
|
|
local function handleGuiEvents()
|
|
|
|
while RUNNING do
|
|
|
|
local event, button, x, y = os.pullEvent("mouse_click")
|
|
|
|
if button == 1 and y == 1 and x > W - 4 then
|
2023-08-29 15:26:33 +00:00
|
|
|
log("Quitting...")
|
2023-08-29 13:21:24 +00:00
|
|
|
RUNNING = false
|
|
|
|
end
|
|
|
|
end
|
2023-08-29 15:26:33 +00:00
|
|
|
term.setBackgroundColor(colors.black)
|
|
|
|
term.setTextColor(colors.white)
|
|
|
|
term.clear()
|
|
|
|
term.setCursorPos(1, 1)
|
2023-08-29 13:21:24 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
local function handleEvents()
|
|
|
|
parallel.waitForAll(
|
|
|
|
handleNetworkEvents,
|
|
|
|
handleGuiEvents
|
|
|
|
)
|
|
|
|
end
|
|
|
|
|
2023-08-29 12:03:06 +00:00
|
|
|
local args = {...}
|
|
|
|
if args[1] == "-i" then
|
|
|
|
print("Reinstalling from GitHub.")
|
|
|
|
fs.delete("bank.lua")
|
|
|
|
shell.execute("wget", "https://raw.githubusercontent.com/andrewlalis/kp-bank/main/bank.lua")
|
2023-08-29 16:47:35 +00:00
|
|
|
return
|
2023-08-29 12:03:06 +00:00
|
|
|
end
|
|
|
|
|
2023-08-29 16:33:51 +00:00
|
|
|
initSecurityKey()
|
2023-08-29 13:21:24 +00:00
|
|
|
handleEvents()
|