Further auth requests consistency fixes (#1149)

* Further auth requests consistency fixes - Generated device UUIDs are lowercase, whereas they're uppercase in MCL - TitleId in SISU authenticate is supposed to be a string (it is in MCL) - UseModernGamertag in SISU authorize, on the other hand, is a boolean - Clarified charset of our requests like MCL does - Specified rng gen call to generate u8 to fix compile error (???) * Enable deflate, gzip and brotli compression support
modrinth · Apr 25, 2024 · 4de64d9 · 4de64d9
1 parent deedf4f
commit 4de64d9
Show file tree

Hide file tree

Showing 3 changed files with 34 additions and 10 deletions.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/theseus/Cargo.toml b/theseus/Cargo.toml
@@ -46,7 +46,7 @@ indicatif = { version = "0.17.3", optional = true }
 
 async-tungstenite = { version = "0.25.1", features = ["tokio-runtime", "tokio-native-tls"] }
 futures = "0.3"
-reqwest = { version = "0.12.3", features = ["json", "stream"] }
+reqwest = { version = "0.12.3", features = ["json", "stream", "deflate", "gzip", "brotli"] }
 tokio = { version = "1", features = ["full"] }
 tokio-stream = { version = "0.1", features = ["fs"] }
 async-recursion = "1.0.4"

diff --git a/theseus/src/state/minecraft_auth.rs b/theseus/src/state/minecraft_auth.rs
@@ -434,7 +434,7 @@ async fn sisu_authenticate(
           "RedirectUri": REDIRECT_URL,
           "Sandbox": "RETAIL",
           "TokenType": "code",
-          "TitleId": 1794566092,
+          "TitleId": "1794566092",
         }),
         key,
         MinecraftAuthStep::SisuAuthenicate,
@@ -581,7 +581,7 @@ async fn sisu_authorize(
             "SessionId": session_id,
             "SiteName": "user.auth.xboxlive.com",
             "RelyingParty": "http://xboxlive.com",
-            "UseModernGamertag": "true"
+            "UseModernGamertag": true
         }),
         key,
         MinecraftAuthStep::SisuAuthorize,
@@ -781,7 +781,7 @@ pub struct DeviceTokenKey {
 
 #[tracing::instrument]
 fn generate_key() -> Result<DeviceTokenKey, MinecraftAuthenticationError> {
-    let id = Uuid::new_v4().to_string();
+    let id = Uuid::new_v4().to_string().to_uppercase();
 
     let signing_key = SigningKey::random(&mut OsRng);
     let public_key = VerifyingKey::from(&signing_key);
@@ -879,9 +879,9 @@ async fn send_signed_request<T: DeserializeOwned>(
     let res = auth_retry(|| {
         let mut request = REQWEST_CLIENT
             .post(url)
-            .header("Content-Type", "application/json")
+            .header("Content-Type", "application/json; charset=utf-8")
             .header("Accept", "application/json")
-            .header("signature", &signature);
+            .header("Signature", &signature);
 
         if url != "https://sisu.xboxlive.com/authorize" {
             request = request.header("x-xbl-contract-version", "1");
@@ -915,6 +915,6 @@ async fn send_signed_request<T: DeserializeOwned>(
 fn generate_oauth_challenge() -> String {
     let mut rng = rand::thread_rng();
 
-    let bytes: Vec<u8> = (0..64).map(|_| rng.gen()).collect();
+    let bytes: Vec<u8> = (0..64).map(|_| rng.gen::<u8>()).collect();
     bytes.iter().map(|byte| format!("{:02x}", byte)).collect()
 }