DifferentDirection/Relay
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
b62ceb19499f4181e493b61780fc4c0b6481b69b
Relay/RelayServer/Services/Chat/ChatSocketBehavior.cs

675 lines
22 KiB
C#
Raw Blame History

using System.Net.Http.Headers;
using System.Text.Json;
using RelayServer.Models;
using RelayServer.Services.Crypto;
using RelayServer.Services.Data;
using RelayServer.Services.Rtc;
using WebSocketSharp;
using WebSocketSharp.Server;
using ErrorEventArgs = WebSocketSharp.ErrorEventArgs;
using RelayShared.Services;
namespace RelayServer.Services.Chat;
/// <summary>
/// Handles websocket-based chat operations including authentication, client key
/// registration, server key retrieval, channel listing, channel history loading,
/// and encrypted channel message relay.
/// </summary>
public class ChatSocketBehavior : WebSocketBehavior
{
public static ClientKeyService? ClientKeyService { get; set; }
public static string? ServerPublicKey { get; set; }
public static string? ServerPrivateKey { get; set; }
public static string? ChannelDbKey { get; set; }
public static ChannelCryptoService? ChannelCryptoService { get; set; }
public static SurrealDb.Net.SurrealDbClient? Db { get; set; }
/// <summary>
/// Routes incoming websocket messages to the appropriate handler via JSON dispatch.
/// Control messages carry an <c>Action</c> property; data messages carry a <c>Type</c> property.
/// </summary>
protected override void OnMessage(MessageEventArgs e)
{
var msg = e.Data;
try
{
using var doc = JsonDocument.Parse(msg);
var root = doc.RootElement;
if (root.TryGetProperty("Action", out var actionProp))
{
var action = (WsAction)actionProp.GetInt32();
var control = JsonSerializer.Deserialize<WsControlMessage>(msg)!;
DispatchControl(action, control);
return;
}
if (root.TryGetProperty("Type", out var typeProp))
{
var type = (SignalType)typeProp.GetInt32();
switch (type)
{
case SignalType.EncryptedSignal:
HandleEncryptedRtcSignal(msg);
return;
case SignalType.ClientEncryptedChat:
HandleEncryptedChatMessage(msg);
return;
}
}
Console.WriteLine($"Unrecognised WebSocket message from session={ID}: {msg[..Math.Min(200, msg.Length)]}");
}
catch (Exception ex)
{
Console.WriteLine($"WebSocket message error: session={ID}, error={ex.Message}");
}
}
/// <summary>
/// Dispatches a control message to the correct handler based on its action.
/// </summary>
private void DispatchControl(WsAction action, WsControlMessage control)
{
switch (action)
{
case WsAction.Authenticate:
HandleAuthenticate(control);
break;
case WsAction.RegisterKey:
HandleRegisterKey(control);
break;
case WsAction.GetServerKey:
HandleGetServerKey();
break;
case WsAction.GetChannels:
HandleGetChannels();
break;
case WsAction.GetHistory:
HandleGetHistory(control);
break;
case WsAction.RtcJoin:
HandleRtcJoinChannel(control);
break;
case WsAction.RtcLeave:
HandleRtcLeaveChannel(control);
break;
default:
Console.WriteLine($"Unknown WsAction {action} from session={ID}");
break;
}
}
// -------------------------------------------------------------------------
// Control handlers
// -------------------------------------------------------------------------
/// <summary>
/// Verifies a user token with the Core service. The HTTP call is wrapped in
/// a try-catch so that a network failure never crashes the WebSocket session.
/// </summary>
private async void HandleAuthenticate(WsControlMessage control)
{
if (string.IsNullOrWhiteSpace(control.Username) || string.IsNullOrWhiteSpace(control.Token))
{
Console.WriteLine("Invalid Authenticate payload.");
return;
}
try
{
using var core = new HttpClient { BaseAddress = new Uri("http://127.0.0.1:1337") };
core.DefaultRequestHeaders.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));
core.DefaultRequestHeaders.Add("User-Agent", "RelayServer");
var response = await core.PostAsJsonAsync("/server/verify/user", new AuthUserVerify
{
Username = control.Username,
Token = control.Token
});
Console.WriteLine($"Auth response for {control.Username}: {await response.Content.ReadAsStringAsync()}");
}
catch (Exception ex)
{
Console.WriteLine($"Auth verification failed for {control.Username}: {ex.Message}");
}
var result = new WsEventMessage { Event = WsEvent.Authenticated, Detail = control.Username };
Send(JsonSerializer.Serialize(result));
}
/// <summary>
/// Stores (or updates) the client's public key and registers the session in
/// <see cref="ConnectedClientService"/> so targeted delivery can resolve session ids.
/// </summary>
private void HandleRegisterKey(WsControlMessage control)
{
if (string.IsNullOrWhiteSpace(control.Username) || string.IsNullOrWhiteSpace(control.PublicKey))
{
Console.WriteLine("Invalid RegisterKey payload.");
return;
}
if (ClientKeyService is null)
{
Console.WriteLine("ClientKeyService is not initialized.");
return;
}
RegisterOrUpdateClientKeySync(control.Username, control.PublicKey);
ConnectedClientService.Register(ID, control.Username);
Console.WriteLine($"Registered key and session for {control.Username} (session={ID})");
var result = new WsEventMessage { Event = WsEvent.KeyRegistered, Detail = control.Username };
Send(JsonSerializer.Serialize(result));
}
/// <summary>
/// Sends the server's public key to the requesting client.
/// </summary>
private void HandleGetServerKey()
{
if (string.IsNullOrWhiteSpace(ServerPublicKey))
{
Console.WriteLine("Server public key is not initialized.");
return;
}
var payload = new ServerPublicKeyMessage
{
Type = SignalType.ServerPublicKey,
PublicKey = ServerPublicKey
};
Send(JsonSerializer.Serialize(payload));
}
/// <summary>
/// Sends the current list of channels to the connected client.
/// </summary>
private void HandleGetChannels()
{
if (Db is null)
{
Console.WriteLine("Db is not initialized.");
return;
}
var channels = GetChannelsSync()
.OrderBy(c => c.CreatedAt)
.Select(c => new ChannelItem
{
ChannelId = GetRecordId(c.Id),
Name = c.Name,
CreatedAt = c.CreatedAt
})
.ToList();
var payload = new SocketChannelList
{
Type = SignalType.ChannelList,
Channels = channels
};
Send(JsonSerializer.Serialize(payload));
}
/// <summary>
/// Loads stored channel history for a specific channel, decrypts it from
/// database storage format, and sends it back encrypted for the requesting client.
/// </summary>
private void HandleGetHistory(WsControlMessage control)
{
var username = control.Username;
var channelId = control.ChannelId;
if (string.IsNullOrWhiteSpace(username) || string.IsNullOrWhiteSpace(channelId))
{
Console.WriteLine("Invalid GetHistory payload.");
return;
}
if (!EnsureCoreReady() || ChannelCryptoService is null || string.IsNullOrWhiteSpace(ChannelDbKey))
{
Console.WriteLine("History dependencies are not initialized.");
return;
}
var targetClient = GetClientPublicKeyByUsernameSync(username);
if (targetClient is null)
{
Console.WriteLine($"No public key found for history request user {username}");
return;
}
var allMessages = GetChannelMessagesSync();
var channelMessages = allMessages
.Where(m => m.ChannelId == channelId)
.OrderBy(m => m.CreatedAt)
.ToList();
Console.WriteLine($"Sending {channelMessages.Count} history messages to {username}");
foreach (var dbMessage in channelMessages)
{
string plainText;
try
{
plainText = ChannelCryptoService.Decrypt(
dbMessage.CipherText,
dbMessage.Nonce,
dbMessage.Tag,
ChannelDbKey
);
}
catch (Exception ex)
{
Console.WriteLine($"Failed to decrypt DB history row {dbMessage.Id}: {ex.Message}");
continue;
}
var encrypted = E2EeHelper.EncryptForRecipient(plainText, targetClient.PublicKey);
var outbound = new SocketEncryptedMessage
{
Type = SignalType.EncryptedChat,
SenderUsername = ExtractUsernameFromUserId(dbMessage.SenderUserId),
RecipientUsername = username,
ChannelId = channelId,
CipherText = encrypted.CipherText,
Nonce = encrypted.Nonce,
Tag = encrypted.Tag,
EncryptedKey = encrypted.EncryptedKey
};
Send(JsonSerializer.Serialize(outbound));
}
}
private void HandleRtcJoinChannel(WsControlMessage control)
{
var username = control.Username;
var channelId = control.ChannelId;
if (string.IsNullOrWhiteSpace(username) || string.IsNullOrWhiteSpace(channelId))
{
Console.WriteLine("Invalid RtcJoin payload.");
return;
}
RtcChannelPresenceService.SetUser(ID, username);
RtcChannelPresenceService.JoinChannel(ID, channelId);
Console.WriteLine($"RTC presence joined: session={ID}, user={username}, channel={channelId}");
}
private void HandleRtcLeaveChannel(WsControlMessage control)
{
var username = control.Username;
var channelId = control.ChannelId;
if (string.IsNullOrWhiteSpace(channelId))
{
Console.WriteLine("Invalid RtcLeave payload.");
return;
}
if (RtcChannelPresenceService.IsInChannel(ID, channelId))
RtcChannelPresenceService.LeaveChannel(ID);
Console.WriteLine($"RTC presence left: session={ID}, user={username}, channel={channelId}");
}
// -------------------------------------------------------------------------
// Data message handlers
// -------------------------------------------------------------------------
/// <summary>
/// Decrypts an incoming encrypted RTC signal and re-encrypts it for every
/// other session in the same RTC channel.
/// </summary>
private void HandleEncryptedRtcSignal(string msg)
{
Console.WriteLine("RTC SIGNAL HIT");
SocketRtcSignalMessage? clientPayload;
try
{
clientPayload = JsonSerializer.Deserialize<SocketRtcSignalMessage>(msg);
}
catch
{
Console.WriteLine("Failed to parse encrypted RTC signal payload.");
return;
}
if (clientPayload is null || clientPayload.Type != SignalType.EncryptedSignal)
return;
if (string.IsNullOrWhiteSpace(clientPayload.ChannelId))
{
Console.WriteLine("Encrypted RTC signal missing channel id.");
return;
}
string plainText;
try
{
plainText = E2EeHelper.DecryptForRecipient(
new EncryptedPayload
{
CipherText = clientPayload.CipherText,
Nonce = clientPayload.Nonce,
Tag = clientPayload.Tag,
EncryptedKey = clientPayload.EncryptedKey
},
ServerPrivateKey
);
}
catch (Exception ex)
{
Console.WriteLine($"Failed to decrypt RTC signal: {ex.Message}");
return;
}
var sessionIds = RtcChannelPresenceService.GetSessionsInChannel(clientPayload.ChannelId);
foreach (var sessionId in sessionIds)
{
if (sessionId == ID)
continue;
var username = RtcChannelPresenceService.GetUsernameForSession(sessionId);
if (string.IsNullOrWhiteSpace(username))
continue;
var clientKey = GetClientPublicKeyByUsernameSync(username);
if (clientKey is null)
continue;
var encrypted = E2EeHelper.EncryptForRecipient(plainText, clientKey.PublicKey);
var outbound = new SocketRtcSignalMessage
{
Type = SignalType.EncryptedSignal,
SenderUsername = clientPayload.SenderUsername,
ChannelId = clientPayload.ChannelId,
CipherText = encrypted.CipherText,
Nonce = encrypted.Nonce,
Tag = encrypted.Tag,
EncryptedKey = encrypted.EncryptedKey
};
Sessions.SendTo(JsonSerializer.Serialize(outbound), sessionId);
}
Console.WriteLine($"Forwarded encrypted RTC signal from {clientPayload.SenderUsername} to channel {clientPayload.ChannelId}");
}
/// <summary>
/// Decrypts an incoming encrypted chat message, stores it in the database,
/// then re-encrypts and delivers it individually to every connected server member.
/// Messages are never broadcast — each recipient receives their own encrypted copy.
/// </summary>
private void HandleEncryptedChatMessage(string msg)
{
SocketEncryptedMessage? clientPayload;
try
{
clientPayload = JsonSerializer.Deserialize<SocketEncryptedMessage>(msg);
}
catch
{
Console.WriteLine("Failed to parse encrypted client payload.");
return;
}
if (clientPayload is null || clientPayload.Type != SignalType.ClientEncryptedChat)
return;
if (!EnsureCoreReady() || !EnsureCryptoReady())
return;
string plainText;
try
{
plainText = E2EeHelper.DecryptForRecipient(
new EncryptedPayload
{
CipherText = clientPayload.CipherText,
Nonce = clientPayload.Nonce,
Tag = clientPayload.Tag,
EncryptedKey = clientPayload.EncryptedKey
},
ServerPrivateKey
);
}
catch (Exception ex)
{
Console.WriteLine($"Failed to decrypt client payload: {ex.Message}");
return;
}
Console.WriteLine($"Server decrypted message from {clientPayload.SenderUsername}: {plainText}");
try
{
var dbEncrypted = ChannelCryptoService!.Encrypt(plainText, ChannelDbKey);
var savedMessage = CreateChannelMessageSync(new ChannelMessages
{
ChannelId = clientPayload.ChannelId,
SenderUserId = $"users:{clientPayload.SenderUsername.ToLower()}",
CipherText = dbEncrypted.cipherText,
Nonce = dbEncrypted.nonce,
Tag = dbEncrypted.tag,
CreatedAt = DateTime.UtcNow
});
Console.WriteLine($"Live message saved to DB: {JsonSerializer.Serialize(savedMessage)}");
}
catch (Exception ex)
{
Console.WriteLine($"Failed to save live message to DB: {ex.Message}");
return;
}
// Deliver to every connected server member individually.
var members = GetServerMembersSync();
foreach (var member in members)
{
// Derive the lowercase username from the stored record id (e.g. "users:keeper317").
var rawUsername = ExtractUsernameFromUserId(member.UserId);
// Find all active sessions for this member (supports multi-device).
var sessionIds = ConnectedClientService.GetSessionsForUser(rawUsername);
if (sessionIds.Count == 0)
continue;
// Resolve the correctly-cased username as the client registered it.
var properUsername = sessionIds
.Select(ConnectedClientService.GetUsernameForSession)
.FirstOrDefault(u => u is not null) ?? rawUsername;
var clientKey = GetClientPublicKeyByUsernameSync(properUsername);
if (clientKey is null)
{
Console.WriteLine($"No public key for {properUsername}, skipping.");
continue;
}
var encrypted = E2EeHelper.EncryptForRecipient(plainText, clientKey.PublicKey);
Console.WriteLine($"Encrypting outbound message from {clientPayload.SenderUsername} for {properUsername}");
var outbound = new SocketEncryptedMessage
{
Type = SignalType.EncryptedChat,
SenderUsername = clientPayload.SenderUsername,
RecipientUsername = properUsername,
ChannelId = clientPayload.ChannelId,
CipherText = encrypted.CipherText,
Nonce = encrypted.Nonce,
Tag = encrypted.Tag,
EncryptedKey = encrypted.EncryptedKey
};
var json = JsonSerializer.Serialize(outbound);
foreach (var sessionId in sessionIds)
Sessions.SendTo(json, sessionId);
}
}
// -------------------------------------------------------------------------
// Lifecycle
// -------------------------------------------------------------------------
protected override void OnClose(CloseEventArgs e)
{
ConnectedClientService.Unregister(ID);
RtcChannelPresenceService.RemoveSession(ID);
Console.WriteLine($"WebSocket closed: session={ID}, code={e.Code}, reason={e.Reason}");
base.OnClose(e);
}
protected override void OnError(ErrorEventArgs e)
{
Console.WriteLine($"WebSocket error: session={ID}, message={e.Message}");
base.OnError(e);
}
// -------------------------------------------------------------------------
// Sync DB helpers
// -------------------------------------------------------------------------
private void RegisterOrUpdateClientKeySync(string username, string publicKey)
{
Task.Run(async () => await ClientKeyService!.RegisterOrUpdateKeyAsync(username, publicKey))
.GetAwaiter()
.GetResult();
}
private List<Channels> GetChannelsSync()
{
return Task.Run(async () => await Db!.Select<Channels>("channels"))
.GetAwaiter()
.GetResult()
.ToList();
}
private ClientPublicKeys? GetClientPublicKeyByUsernameSync(string username)
{
return Task.Run(async () => await ClientKeyService!.GetByUsernameAsync(username))
.GetAwaiter()
.GetResult();
}
private List<ChannelMessages> GetChannelMessagesSync()
{
return Task.Run(async () => await Db!.Select<ChannelMessages>("channel_messages"))
.GetAwaiter()
.GetResult()
.ToList();
}
private ChannelMessages CreateChannelMessageSync(ChannelMessages message)
{
return Task.Run(async () => await Db!.Create("channel_messages", message))
.GetAwaiter()
.GetResult();
}
private List<ServerMembers> GetServerMembersSync()
{
return Task.Run(async () => await Db!.Select<ServerMembers>("server_members"))
.GetAwaiter()
.GetResult()
.ToList();
}
// -------------------------------------------------------------------------
// Utilities
// -------------------------------------------------------------------------
/// <summary>
/// Extracts a display username from a stored user record id value
/// (e.g. "users:keeper317" → "keeper317").
/// </summary>
private static string ExtractUsernameFromUserId(string senderUserId)
{
if (string.IsNullOrWhiteSpace(senderUserId))
return "Unknown";
var parts = senderUserId.Split(':', 2);
return parts.Length == 2 ? parts[1] : senderUserId;
}
/// <summary>
/// Converts a SurrealDB record id object into a "table:id" string.
/// </summary>
private static string GetRecordId(object? id)
{
if (id is null)
return string.Empty;
var json = JsonSerializer.Serialize(id);
using var doc = JsonDocument.Parse(json);
var root = doc.RootElement;
var recordId = root.GetProperty("Id").GetString() ?? string.Empty;
var table = root.GetProperty("Table").GetString() ?? string.Empty;
return $"{table}:{recordId}";
}
private bool EnsureCoreReady()
{
if (ClientKeyService is null || Db is null)
{
Console.WriteLine("Core services not initialized.");
return false;
}
return true;
}
private bool EnsureCryptoReady()
{
if (string.IsNullOrWhiteSpace(ServerPrivateKey) || string.IsNullOrWhiteSpace(ChannelDbKey))
{
Console.WriteLine("Crypto keys not initialized.");
return false;
}
if (ChannelCryptoService is null)
{
Console.WriteLine("ChannelCryptoService is not initialized.");
return false;
}
return true;
}
}
Reference in New Issue View Git Blame Copy Permalink