Source L2 Acp (Account - Admin Control Panel)

[Elfo]

What's the password hashing setting you are using?

[abumini]

10 minutes ago, .Elfocrash said:

What's the password hashing setting you are using?

I'm not at home now, but I think i left it as default.  Where can I confirm it ?

Im getting error 501 Invalid Password.

[abumini]

22 hours ago, .Elfocrash said:

What's the password hashing setting you are using?

I'ts base64, the default.

 

"PasswordHashType": "Default",

I've tried to debug the code, on login, the password verification, runs this method:
 

        public static string ToL2Password(this string str)
        {
            if (Startup.Configuration.GetValue<string>("TargetServerType") == "L2OFF")
            {
                if (Startup.Configuration.GetValue<string>("PasswordHashType") == "Default")
                {
                    return L2OffCrypto.EncryptLegacyL2Password(str);
                }
                else
                {
                    return L2OffCrypto.EncryptMD5(str);
                }
            }
              /* and it always ends in choosing else, since the server is L2j, login works, change password doesnt*/
            else
            {
                SHA1 shA1 = SHA1.Create();
                byte[] bytes = new ASCIIEncoding().GetBytes(str);
                str = Convert.ToBase64String(shA1.ComputeHash(bytes));
                return str;
            }
        }

and it works for the login, but when it comes to changing the password, it always ends up in error 501 :
 

[HttpPost]
        [Route("changepass")]
        public async Task<IActionResult> ChangePassword([FromBody] ChangePassViewmodel model)
        {
            if (User.Identity.IsAuthenticated)
            {
                var accountName = HttpContext.GetUsername();

                var response = await _requestService.ChangePassword(accountName, model.CurrentPassword.ToLegacyL2Password(), model.NewPassword.ToL2Password());
                switch (response.ResponseCode)
                {
                    case 200:
                        return Content("ok");
                    case 500:
                        return Content(_localizer["Something went wrong!"]);
                    case 501:
                        return Content(_localizer["Invalid password!"]);
                }
            }
            return Unauthorized();
        }

And I don't get any error messages on the console either from the API or from the website.

Edited October 17, 2018 by abumini
extra content ^^

[kslobaosp]

help me please when I try to log on the site of an error in the game server I'll post it here:

 

Exception in thread "Thread-9" java.lang.NoClassDefFoundError: com/google/gson/JsonParser
        at com.elfocrash.l2acp.L2ACPServer$RequestHandler.handle(L2ACPServer.java:71)
        at com.sun.net.httpserver.Filter$Chain.doFilter(Unknown Source)
        at sun.net.httpserver.AuthFilter.doFilter(Unknown Source)
        at com.sun.net.httpserver.Filter$Chain.doFilter(Unknown Source)
        at sun.net.httpserver.ServerImpl$Exchange$LinkHandler.handle(Unknown Source)
        at com.sun.net.httpserver.Filter$Chain.doFilter(Unknown Source)
        at sun.net.httpserver.ServerImpl$Exchange.run(Unknown Source)
        at sun.net.httpserver.ServerImpl$DefaultExecutor.execute(Unknown Source)
        at sun.net.httpserver.ServerImpl$Dispatcher.handle(Unknown Source)
        at sun.net.httpserver.ServerImpl$Dispatcher.run(Unknown Source)
        at java.lang.Thread.run(Unknown Source)
Caused by: java.lang.ClassNotFoundException: com.google.gson.JsonParser
        at java.net.URLClassLoader.findClass(Unknown Source)
        at java.lang.ClassLoader.loadClass(Unknown Source)
        at sun.misc.Launcher$AppClassLoader.loadClass(Unknown Source)
        at java.lang.ClassLoader.loadClass(Unknown Source)
        ... 11 more

[Elfo]

16 hours ago, kslobaosp said:

help me please when I try to log on the site of an error in the game server I'll post it here:

You didn't reference the gson library.

[kslobaosp]

Elfocrash I put the gson inside the gameserver lib and solved it more now I have problem on the web :(

 

[J0hnK1ng]

Only the owner of this file has access nice share thanks!

[webdes27]

On 1/8/2019 at 10:23 PM, kslobaosp said:

Elfocrash Я поместил gson в lib игрового сервера и решил ее больше, теперь у меня проблема в сети :(

 

 

У меня похожая проблема.

 

P.S. I solved the problem using commit 5527abef518d665a4c3be89ca91a3ff57e423609.

The problem appeared after the transition to NetCore2.1

Edited February 2, 2019 by webdes27

[matiasf]

On 5/2/2017 at 7:39 AM, Elfocrash said:

Security
L2ACP uses symmetric encryption for the payloads and an api key validation.
As long as they are changed you will have no problem with security. 
If you want to be 100% secure, make the server accept requests only from the ip that the site is hosted.
If you want to be 101% secure, then host them together and don't expose the api port.
 

 

@Elfocrash Thanks you for the beatiful code. But i have a question to you, and i hope not to offend you. Is the code still secure? i ask because the code was writed a few years ago and i must know if is secure. My apoligies if i offended you. Thanks

Edited February 11, 2019 by matiasf

[Elfo]

5 hours ago, matiasf said:

 

@Elfocrash Thanks you for the beatiful code. But i have a question to you, and i hope not to offend you. Is the code still secure? i ask because the code was writed a few years ago and i must know if is secure. My apoligies if i offended you. Thanks

It is, however I would advice you to change the api key to one of your own. On top of that, I would advice you use SSL on the l2 webserver but this is optional.

[matiasf]

Thank man, all your work is great.

Edited February 11, 2019 by matiasf

[rutake]

hi guys. i've installed L2ACP on my server also. But now i have a problem. 

Edited February 17, 2019 by rutake

[lixxit]

Hello, amazing feature, is it possible to use with l2jsunrise or does the coding vary too much from acis?

Would I only need to adjust imports or need decent java skills to adapt?

Edited February 23, 2019 by lixxit

[valentin]

gj

[Katzolt]

On 16/2/2019 at 11:26, rutake said:

Hola chicos. He instalado L2ACP en mi servidor también. Pero ahora tengo un problema. 

 

Same problem, any solution for this?