From c118430bf58b5fc96fc78e09b95da1d9b23034b1 Mon Sep 17 00:00:00 2001
From: games647 <games647@users.noreply.github.com>
Date: Fri, 24 Jun 2022 17:08:27 +0200
Subject: [PATCH] Kick players using an invalid public key

---
 .../bukkit/listener/protocollib/ProtocolLibListener.java     | 1 +
 core/src/main/resources/messages.yml                         | 5 ++++-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/bukkit/src/main/java/com/github/games647/fastlogin/bukkit/listener/protocollib/ProtocolLibListener.java b/bukkit/src/main/java/com/github/games647/fastlogin/bukkit/listener/protocollib/ProtocolLibListener.java
index f8273292..5b4fb135 100644
--- a/bukkit/src/main/java/com/github/games647/fastlogin/bukkit/listener/protocollib/ProtocolLibListener.java
+++ b/bukkit/src/main/java/com/github/games647/fastlogin/bukkit/listener/protocollib/ProtocolLibListener.java
@@ -179,6 +179,7 @@ public class ProtocolLibListener extends PacketAdapter {
         WrappedProfileKeyData profileKey = packet.getOptionals(BukkitConverters.getWrappedPublicKeyDataConverter())
             .read(0).orElse(null);
         if (profileKey != null && !verifyPublicKey(profileKey)) {
+            player.kickPlayer(plugin.getCore().getMessage("invalid-public-key"));
             plugin.getLog().warn("Invalid public key from player {}", username);
             return;
         }
diff --git a/core/src/main/resources/messages.yml b/core/src/main/resources/messages.yml
index 33cadaad..e8c8bae5 100644
--- a/core/src/main/resources/messages.yml
+++ b/core/src/main/resources/messages.yml
@@ -80,7 +80,7 @@ error-kick: '&4Error occurred'
 
 # The server sends a verify-token within the premium authentication request. If this doesn't match on response,
 # it could be another client sending malicious packets
-invalid-verify-token: '&4Invalid token'
+invalid-verify-token: '&4Invalid nonce token. Please verify you are using the correct server address'
 
 # The client sent no request join server request to the mojang servers which would proof that it's owner of that
 # account. Only modified clients would do this.
@@ -96,6 +96,9 @@ not-started: '&cServer is not fully started yet. Please retry'
 premium-warning: '&c&lWARNING: &6This command should&l only&6 be invoked if you are the owner of this paid Minecraft account
 Type &a/premium&6 again to confirm'
 
+# Invalid client public key that will be used in the future to send authenticated chat messages from clients
+invalid-public-key: '&cInvalid client public key. Please try to restart your game.'
+
 # ========= Bungee/Waterfall only ================================