wfc-server/api/kick.go

package api

import (
	"encoding/json"
	"io"
	"net/http"
	"strconv"
	"wwfc/gpcm"
)

func HandleKick(w http.ResponseWriter, r *http.Request) {
	var success bool
	var err string
	var statusCode int

	if r.Method == http.MethodPost {
		success, err, statusCode = handleKickImpl(r)
	} else {
		err = "Incorrect request. POST only."
		statusCode = http.StatusBadRequest
	}

	w.Header().Set("Content-Type", "application/json")
	w.Header().Set("Access-Control-Allow-Origin", "*")

	var jsonData []byte
	if success {
		jsonData, _ = json.Marshal(map[string]string{"success": "true"})
	} else {
		jsonData, _ = json.Marshal(map[string]string{"error": err})
	}

	w.Header().Set("Content-Length", strconv.Itoa(len(jsonData)))
	w.WriteHeader(statusCode)
	w.Write(jsonData)
}

type KickRequestSpec struct {
	Secret string
	Reason string
	Pid    uint32
}

func handleKickImpl(r *http.Request) (bool, string, int) {
	// TODO: Actual authentication rather than a fixed secret

	body, err := io.ReadAll(r.Body)
	if err != nil {
		return false, "Unable to read request body", http.StatusBadRequest
	}

	var req KickRequestSpec
	err = json.Unmarshal(body, &req)
	if err != nil {
		return false, err.Error(), http.StatusBadRequest
	}

	if apiSecret == "" || req.Secret != apiSecret {
		return false, "Invalid API secret in request", http.StatusUnauthorized
	}

	if req.Pid == 0 {
		return false, "pid missing or 0 in request", http.StatusBadRequest
	}

	if req.Reason == "" {
		return false, "Missing kick reason in request", http.StatusBadRequest
	}

	gpcm.KickPlayerCustomMessage(req.Pid, "moderator_kick", gpcm.WWFCErrorMessage{
		ErrorCode: 22004,
		MessageRMC: map[byte]string{
			gpcm.LangEnglish: "" +
				"You have been kicked from\n" +
				"WiiLink WFC by a moderator.\n" +
				"Reason: " + req.Reason + "\n" +
				"Error Code: %[1]d",
		},
	})

	return true, "", http.StatusOK
}