Dane Everitt 60eff40a0c
Fix session management on client API requests; closes #3727
Versions of Pterodactyl prior to 1.6.3 used a different throttle pathway for
requests. That pathway found the current request user before continuing on to
other in-app middleware, thus the user was available downstream.

Changes introduced in 1.6.3 changed the throttler logic, therefore removing this
step. As a result, the client API could not always get the currently authenticated
user when cookies were used (aka, requests from the Panel UI, and not API directly).

This change corrects the logic to get the session setup correctly before falling
through to authenticating as a user using the API key. If a cookie is present and a
user is found as a result that session will be used. If an API key is provided it is
ignored when a cookie is also present.

In order to keep the API stateless any session created for an API request stemming
from an API key will have the associated session deleted at the end of the request,
and the 'Set-Cookies' header will be stripped from the response.
2021-11-03 20:51:39 -07:00
2021-10-09 10:31:29 -07:00
2021-01-23 12:33:34 -08:00
2021-10-23 13:11:45 -07:00
2021-01-30 19:12:22 -08:00
2021-09-11 12:02:15 -07:00
2020-06-28 15:26:09 -07:00
2018-07-14 21:16:18 -07:00
2021-05-08 10:37:18 -07:00
2021-08-07 08:46:30 -07:00
2021-08-15 17:20:36 -07:00
2018-03-10 15:15:21 -06:00
2021-03-26 09:50:46 -07:00
2021-03-26 09:50:46 -07:00
2021-08-03 23:33:25 -04:00
2021-03-26 09:30:13 -07:00
2018-07-14 21:16:18 -07:00
2021-01-23 12:12:54 -08:00
2016-12-07 22:46:38 +00:00
2021-05-08 10:37:18 -07:00
2021-05-08 10:37:18 -07:00

Logo Image

GitHub Workflow Status Discord GitHub Releases GitHub contributors

Pterodactyl Panel

Pterodactyl is an open-source game server management panel built with PHP 7, React, and Go. Designed with security in mind, Pterodactyl runs all game servers in isolated Docker containers while exposing a beautiful and intuitive UI to end users.

Stop settling for less. Make game servers a first class citizen on your platform.

Image

Sponsors

I would like to extend my sincere thanks to the following sponsors for helping fund Pterodactyl's developement. Interested in becoming a sponsor?

Company About
WISP Extra features.
MixmlHosting MixmlHosting provides high quality Virtual Private Servers along with game servers, all at a affordable price.
BisectHosting BisectHosting provides Minecraft, Valheim and other server hosting services with the highest reliability and lightning fast support since 2012.
Bloom.host Bloom.host offers dedicated core VPS and Minecraft hosting with Ryzen 9 processors. With owned-hardware, we offer truly unbeatable prices on high-performance hosting.
MineStrator Looking for a French highend hosting company for you minecraft server? More than 14,000 members on our discord, trust us.
DedicatedMC DedicatedMC provides Raw Power hosting at affordable pricing, making sure to never compromise on your performance and giving you the best performance money can buy.
Skynode Skynode provides blazing fast game servers along with a top-notch user experience. Whatever our clients are looking for, we're able to provide it!
XCORE XCORE offers High-End Servers for hosting and gaming since 2012. Fast, excellent and well-known for eSports Gaming.
RoyaleHosting Build your dreams and deploy them with RoyaleHostings reliable servers and network. Easy to use, provisioned in a couple of minutes.
Spill Hosting Spill Hosting is a Norwegian hosting service, which aims for inexpensive services on quality servers. Premium i9-9900K processors will run your game like a dream.
DeinServerHost DeinServerHost offers Dedicated, vps and Gameservers for many popular Games like Minecraft and Rust in Germany since 2013.
HostBend HostBend offers a variety of solutions for developers, students, and others who have a tight budget but don't want to compromise quality and support.
Capitol Hosting Solutions CHS is the budget friendly hosting company for Australian and American gamers, offering a variety of plans from Web Hosting to Game Servers; Custom Solutions too!
ByteAnia ByteAnia offers the best performing and most affordable Ryzen 5000 Series hosting on the market for unbeatable prices!
Aussie Server Hosts No frills Australian Owned and operated High Performance Server hosting for some of the most demanding games serving Australia and New Zealand.
VibeGAMES VibeGAMES is a game server provider that specializes in DDOS protection for the games we offer. We have multiple locations in the US, Brazil, France, Germany, Singapore, Australia and South Africa.
RocketNode RocketNode is a VPS and Game Server provider that offers the best performing VPS and Game hosting Solutions at affordable prices!

Documentation

Supported Games

We support a huge variety of games by utilizing Docker containers to isolate each instance, giving you the power to host your games across the world without having to bloat each physical machine with additional dependencies.

Some of our core supported games include:

  • Minecraft — including Paper, Sponge, Bungeecord, Waterfall, and more
  • Rust
  • Terraria
  • Teamspeak
  • Mumble
  • Team Fortress 2
  • Counter Strike: Global Offensive
  • Garry's Mod
  • ARK: Survival Evolved

In addition to our standard nest of supported games, our community is constantly pushing the limits of this software and there are plenty more games available provided by the community. Some of these games include:

  • Factorio
  • San Andreas: MP
  • Pocketmine MP
  • Squad
  • Xonotic
  • Starmade
  • Discord ATLBot, and most other Node.js/Python discord bots
  • and many more...

License

Copyright (c) 2015 - 2021 Dane Everitt <dane@daneeveritt.com> and Contributors

Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:

The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.

Some Javascript and CSS used within the panel are licensed under a MIT or Apache 2.0 license. Please check their respective header files for more information.

Description
No description provided
Readme 44 MiB
Languages
PHP 97.8%
Blade 1.9%
Dockerfile 0.2%