VIAaaS/README.md

106 lines
5.7 KiB
Markdown
Raw Normal View History

2020-08-15 23:02:35 +02:00
VIAaaS
---
2021-01-27 16:20:43 +01:00
2021-01-27 16:21:28 +01:00
VIAaaS - ViaVersion ~~acetylsalicylic acid~~ as a Service - Standalone ViaVersion proxy
2021-01-27 16:20:43 +01:00
2021-03-26 02:34:44 +01:00
Public instances: https://github.com/ViaVersion/VIAaaS/wiki/List-of-Public-Instances
2021-03-26 14:12:40 +01:00
Discord: https://viaversion.com/discord
2021-03-30 23:42:22 +02:00
Version translation:
![Supported Versions Chart](https://camo.githubusercontent.com/3c4710d9240ba56d5dea6638f3d2d1f736949b98825492f47a7ba5cdfe950ce8/68747470733a2f2f692e696d6775722e636f6d2f307532305932752e706e67)
2021-02-18 23:08:42 +01:00
## How does it work?
2021-03-30 23:42:22 +02:00
- [ViaVersion](https://viaversion.com), [ViaBackwards](https://viaversion.com/backwards) and [ViaRewind](https://viaversion.com/rewind) translates the connections to backend server.
2021-03-16 21:19:03 +01:00
- VIAaaS auth page stores account credentials in the player's browser local storage. Check for XSS vulnerabilities on your domain.
2021-02-18 23:08:42 +01:00
- Due to technical/security reasons, it requires a CORS Proxy for calling Mojang APIs, which may make Mojang see that
as suspicious and reset/block your account password if the IP address seems suspect.
2021-02-18 23:21:41 +01:00
- Account credentials aren't sent to VIAaaS instance, though it's intermediated by CORS Proxy.
2021-02-18 23:08:42 +01:00
- VIAaaS receives a session hash from instance and then authenticates the session hash with Mojang.
## Setting up server instance
2021-02-19 12:48:25 +01:00
Download: [GitHub Actions](https://github.com/ViaVersion/VIAaaS/actions) (needs to be logged into GitHub) or [JitPack](https://jitpack.io/com/github/viaversion/viaaas/master-SNAPSHOT/viaaas-master-SNAPSHOT-all.jar)
2020-11-15 15:44:13 +01:00
2021-01-28 20:32:05 +01:00
How to start VIAaaS server:
2021-02-24 00:03:17 +01:00
```sh
java -jar VIAaaS-all.jar
```
2021-02-18 23:08:42 +01:00
- Requires Java 11
- Default Minecraft: ```viaaas.localhost``` with port 25565
- Default WS URL: ```wss://localhost:25543/ws```
2021-01-28 20:32:05 +01:00
2021-02-18 23:08:42 +01:00
## CORS Proxy
2021-02-18 23:21:41 +01:00
- For less chance of Mojang seeing the login as suspect, you (the player) should set up a CORS proxy on your machine.
- Note the ending slash in cors-anywhere address
Setting up [cors-anywhere](https://www.npmjs.com/package/cors-anywhere) on local machine:
2021-02-24 00:03:17 +01:00
```sh
git clone https://github.com/Rob--W/cors-anywhere
cd cors-anywhere
npm install
node server.js
```
2021-02-18 23:21:41 +01:00
- It will be available at ```http://localhost:8080/```
2021-02-17 15:12:28 +01:00
My cors-anywhere instance:
2021-02-24 00:03:17 +01:00
- If you trust me, you can use https://crp123-cors.herokuapp.com/ ([source](https://github.com/creeper123123321/cors-anywhere/))
2021-02-17 15:12:28 +01:00
2021-02-18 23:08:42 +01:00
## Usage for players
Usage for offline mode:
- Connect to ```mc.example.com.viaaas.localhost```
Usage for online mode:
2021-02-24 00:03:17 +01:00
- You can use two accounts (avoids Bad Login error), the same account for front-end and back-end connections, or use ```_of``` (offline mode in frontend, unencrypted and with no username verification).
- Go to [VIAaaS auth webpage](https://localhost:25543/)
2021-02-18 23:21:41 +01:00
- Configure CORS proxy, see above in "CORS Proxy" section
- Listen to the username A you'll use to connect to the proxy.
- Add the account B to VIAaaS page which you'll use in ```_u(account B)``` parameter below.
- Connect to ```mc.example.com._u(account B).viaaas.localhost``` (```_u``` parameter can be removed if you are using the same username)
- Approve the login in auth webpage
- If you use the same online mode account, your client may show Bad Login. You can use a mod like
2021-02-17 15:12:28 +01:00
[Auth Me](https://www.curseforge.com/minecraft/mc-mods/auth-me) or [ReAuth](https://www.curseforge.com/minecraft/mc-mods/reauth) for reauthenticating the client.
2020-11-21 10:51:01 +01:00
2021-02-24 00:03:17 +01:00
Example address: ```server.example.com._p25565._v1_12_2._of._uBACKUSERNAME.viaaas.example.com``` (similar to [Tor2web](https://www.tor2web.org/) proxies)
2021-02-18 23:08:42 +01:00
Address parts:
- ```server.example.com```: backend server address
- ```_p```: backend port
- ```_v```: backend version ([protocol id](https://wiki.vg/Protocol_version_numbers) or name with underline instead of dots). ```AUTO``` is default and 1.8 is fallback if it fails.
- ```_o```: ```t``` to force online mode in frontend, ```f``` to disable online mode in frontend. If not set, it will be based on backend online mode.
- ```_u```: username to use in backend connection
- ```viaaas.example.com```: hostname suffix (defined in config)
2020-11-21 10:51:01 +01:00
## WARNING
2021-02-18 23:08:42 +01:00
- VIAaaS may trigger anti-cheats, due to block, item, movement and other differences between versions. USE AT OWN RISK
- VIAaaS server instance may have security vulnerabilities, make sure to block the ports in firewall
2021-03-16 21:22:32 +01:00
- Take care of browser local storage. Check for XSS vulnerabilities on your domain.
2021-02-18 23:08:42 +01:00
- Check the security of CORS proxy, it will intermediate Mojang API calls.
- Mojang may lock your account when API is called from a suspect IP address
2020-12-24 11:11:29 +01:00
## FAQ
VIAaaS is stuck when connecting with online mode:
- Your system may have low entropy, see https://wiki.archlinux.org/index.php/Rng-tools
2021-02-09 17:38:47 +01:00
My Microsoft account <18 years old is not able to log in, it's giving XSTS error:
- Add your account to a family (see https://wiki.vg/Microsoft_Authentication_Scheme#Authenticate_with_XSTS)
2021-02-10 23:58:03 +01:00
Why a online webpage for online mode?:
- It's easier to maintain in that way, because providing a chat with login requires encoding and decoding more packets which change through versions.
- It allows your account password and token to be kept with you
2021-02-19 15:06:56 +01:00
How to use IPv6?:
- When listening to 0.0.0.0, it should listen on IPv6 too.
- To use IPv6 in backend address, you need to use a instance with IPv6 connectivity. The hostname parser currently doesn't support direct IPv6, but you can use a DNS name.
2021-02-21 01:18:47 +01:00
How to use with Geyser?
- Currently you need to set the parameters (at least the hostname) in Geyser's `address` field:
```yml
remote:
# The IP address of the remote (Java Edition) server
address: 2b2t.org._v1_12_2.viaaas.localhost
```
2021-02-21 15:11:51 +01:00
- If you are using a public GeyserConnect instance: connect to a publicly available VIAaaS instance, like ```mc.example.com.viaaas.example.net``` as a Java Edition server.
2021-03-18 15:05:07 +01:00
How to connect to 1.7.10 and lower servers with a newer client?
- Use [DirtMultiVersion](https://github.com/DirtPowered/DirtMultiversion)