GeyserMC-Mirror/Geyser
1
0
Fork 0
mirror of https://github.com/GeyserMC/Geyser.git synced 2025-12-19 14:59:27 +00:00
Code Issues Releases Activity

Add base-denied-permissions section to standalone command manager (#5672)

Browse Source 
* Add base-denied-permissions section to standalone command manager

* Address review
This commit is contained in:
chris
2025-09-11 01:24:54 +02:00
committed by GitHub
parent 175794e06f
commit 7dcdf5cbe6
3 changed files with 30 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
core/src/main/java/org/geysermc/geyser/command/standalone/PermissionConfiguration.java
View File

@@ -39,4 +39,7 @@ public class PermissionConfiguration {
@JsonProperty("default-permissions") @JsonProperty("default-permissions")
private Set<String> defaultPermissions = Collections.emptySet(); private Set<String> defaultPermissions = Collections.emptySet();
@JsonProperty("default-denied-permissions")
private Set<String> defaultDeniedPermissions = Collections.emptySet();
} }

21
core/src/main/java/org/geysermc/geyser/command/standalone/StandaloneCloudCommandManager.java
View File

@@ -59,6 +59,11 @@ public class StandaloneCloudCommandManager extends CommandManager<GeyserCommandS
*/ */
private final Set<String> basePermissions = new ObjectOpenHashSet<>(); private final Set<String> basePermissions = new ObjectOpenHashSet<>();
/**
* Any permissions that all connections do not have
*/
private final Set<String> baseDeniedPermissions = new ObjectOpenHashSet<>();
public StandaloneCloudCommandManager(GeyserImpl geyser) { public StandaloneCloudCommandManager(GeyserImpl geyser) {
super(ExecutionCoordinator.simpleCoordinator(), CommandRegistrationHandler.nullCommandRegistrationHandler()); super(ExecutionCoordinator.simpleCoordinator(), CommandRegistrationHandler.nullCommandRegistrationHandler());
// simpleCoordinator: execute commands immediately on the calling thread. // simpleCoordinator: execute commands immediately on the calling thread.
@@ -74,6 +79,7 @@ public class StandaloneCloudCommandManager extends CommandManager<GeyserCommandS
FileUtils.fileOrCopiedFromResource(permissionsFile, "permissions.yml", geyser.getBootstrap()); FileUtils.fileOrCopiedFromResource(permissionsFile, "permissions.yml", geyser.getBootstrap());
PermissionConfiguration config = FileUtils.loadConfig(permissionsFile, PermissionConfiguration.class); PermissionConfiguration config = FileUtils.loadConfig(permissionsFile, PermissionConfiguration.class);
basePermissions.addAll(config.getDefaultPermissions()); basePermissions.addAll(config.getDefaultPermissions());
baseDeniedPermissions.addAll(config.getDefaultDeniedPermissions());
} catch (Exception e) { } catch (Exception e) {
geyser.getLogger().error("Failed to load permissions.yml - proceeding without it", e); geyser.getLogger().error("Failed to load permissions.yml - proceeding without it", e);
} }
@@ -88,11 +94,19 @@ public class StandaloneCloudCommandManager extends CommandManager<GeyserCommandS
Objects.requireNonNull(permission, "permission"); Objects.requireNonNull(permission, "permission");
Objects.requireNonNull(def, "permission default for " + permission); Objects.requireNonNull(def, "permission default for " + permission);
if (permission.isBlank()) { if (permission.isBlank() || def == TriState.NOT_SET) {
return; return;
} }
GeyserImpl.getInstance().getLogger().debug("Registering permission %s with permission default %s", permission, def);
if (def == TriState.TRUE) { if (def == TriState.TRUE) {
// The last caller gets to override earlier set defaults
baseDeniedPermissions.remove(permission);
basePermissions.add(permission); basePermissions.add(permission);
} else {
basePermissions.remove(permission);
baseDeniedPermissions.add(permission);
} }
}); });
} }
@@ -119,6 +133,11 @@ public class StandaloneCloudCommandManager extends CommandManager<GeyserCommandS
} }
// undefined - try the next checker to see if it has a defined value // undefined - try the next checker to see if it has a defined value
} }
if (baseDeniedPermissions.contains(permission)) {
return false;
}
// fallback to our list of default permissions // fallback to our list of default permissions
// note that a PermissionChecker may in fact override any values set here by returning FALSE // note that a PermissionChecker may in fact override any values set here by returning FALSE
return basePermissions.contains(permission); return basePermissions.contains(permission);

9
core/src/main/resources/permissions.yml
View File

@@ -1,9 +1,14 @@
# Add any permissions here that all players should have. # Add any permissions here that all players should have.
# Permissions for builtin Geyser commands do not have to be listed here. # Permissions for builtin Geyser commands do not have to be listed here,
# unless you want to override their default value.
# If an extension/plugin registers their permissions with default values, entries here are typically unnecessary. # If an extension/plugin registers their permissions with default values, entries here are typically unnecessary.
# If extensions don't register their permissions, permissions that everyone should have must be added here manually. # If extensions don't register their permissions, permissions that everyone should (not) have must be added here manually.
# If a permission is both lists, default-denied permissions takes precedence
default-permissions: default-permissions:
- geyser.command.help # this is unnecessary - geyser.command.help # this is unnecessary
default-denied-permissions:
- geyser.command.stop # also unnecessary