diff options
| author | Svein Ove Aas <svein.ove@aas.no> | 2016-08-14 23:47:00 +0100 |
|---|---|---|
| committer | Robin Gloster <mail@glob.in> | 2016-08-14 22:47:00 +0000 |
| commit | cbe8832cd7ad4c57eec43e0a66b782004bafa4ee (patch) | |
| tree | 268d78ceac0bf3b92c504b7de4e3eb53d1fcc4cb /pkgs/games/factorio | |
| parent | 226cba764fd6f9463995534ff9c0168ab0ae3b30 (diff) | |
| download | nixpkgs-cbe8832cd7ad4c57eec43e0a66b782004bafa4ee.tar nixpkgs-cbe8832cd7ad4c57eec43e0a66b782004bafa4ee.tar.gz nixpkgs-cbe8832cd7ad4c57eec43e0a66b782004bafa4ee.tar.bz2 nixpkgs-cbe8832cd7ad4c57eec43e0a66b782004bafa4ee.tar.lz nixpkgs-cbe8832cd7ad4c57eec43e0a66b782004bafa4ee.tar.xz nixpkgs-cbe8832cd7ad4c57eec43e0a66b782004bafa4ee.tar.zst nixpkgs-cbe8832cd7ad4c57eec43e0a66b782004bafa4ee.zip | |
factorio: Fix the fetch script (#17741)
Diffstat (limited to 'pkgs/games/factorio')
| -rw-r--r-- | pkgs/games/factorio/fetch.nix | 4 | ||||
| -rw-r--r-- | pkgs/games/factorio/fetch.sh | 21 |
2 files changed, 18 insertions, 7 deletions
diff --git a/pkgs/games/factorio/fetch.nix b/pkgs/games/factorio/fetch.nix index 78c7faf018c..04b31ac10d3 100644 --- a/pkgs/games/factorio/fetch.nix +++ b/pkgs/games/factorio/fetch.nix @@ -1,4 +1,4 @@ -{ stdenv, curl, cacert +{ stdenv, curl, xidel, cacert # Begin download parameters , username ? "" , password ? "" @@ -18,7 +18,7 @@ stdenv.mkDerivation { name = "factorio.tar.gz"; - buildInputs = [ curl ]; + buildInputs = [ curl xidel ]; inherit url loginUrl username password cacert; diff --git a/pkgs/games/factorio/fetch.sh b/pkgs/games/factorio/fetch.sh index d6549c0a676..30d9c9fdefe 100644 --- a/pkgs/games/factorio/fetch.sh +++ b/pkgs/games/factorio/fetch.sh @@ -9,23 +9,34 @@ curl="curl \ --max-redirs 20 \ --retry 3 \ --cacert $cacert/etc/ssl/certs/ca-bundle.crt \ + -b cookies \ + -c cookies \ $curlOpts \ $NIX_CURL_FLAGS" # We don't want the password to be on any program's argv, as it may be # visible in /proc. Writing it to file with echo should be safe, since # it's a shell builtin. -echo "password=$password" > password +echo -n "$password" > password # Might as well hide the username as well. -echo "username-or-email=$username" > username +echo -n "$username" > username + +# Get a CSRF token. +csrf=$($curl $loginUrl | xidel - -e '//input[@id="csrf_token"]/@value') # Log in. We don't especially care about the result, but let's check if login failed. -$curl -c cookies -d @username -d @password $loginUrl -D headers > /dev/null +$curl --data-urlencode csrf_token="$csrf" \ + --data-urlencode username_or_email@username \ + --data-urlencode password@password \ + -d action=Login \ + $loginUrl -D headers > /dev/null -if grep -q 'Location: /' headers; then +if grep -q 'Location: https://' headers; then # Now download. We need --insecure for this, but the sha256 should cover us. - $curl -b cookies --insecure --location $url > $out + $curl --insecure --location $url > $out + set +x else + set +x echo 'Login failed' echo 'Please set username and password with config.nix,' echo 'or /etc/nix/nixpkgs-config.nix if on NixOS.' |