#!/bin/bash # common.sh - common functions for OPS app # get_auth_string() function get_auth_string() { if ! session_verify "${cookies[sh_session]}"; then exit 0 fi user="$(session_get_username ${cookies[sh_session]})" echo "Authorization: Bearer $(cat secret/authTokens.dat | grep -P "^$user:" | sed -s "s/$user://")" } function get_refresh_token() { if ! session_verify "${cookies[sh_session]}"; then exit 0 fi user="$(session_get_username ${cookies[sh_session]})" echo "$(cat secret/refreshTokens.dat | grep -P "^$user:" | sed -s "s/$user://")" } # check_if_user_exists(file) function check_if_user_exists() { if ! session_verify "${cookies[sh_session]}"; then exit 0 fi user=$(session_get_username ${cookies[sh_session]}) [[ $1 == "refreshToken" ]] && [[ $(cat secret/refreshTokens.dat | grep -P "^$user:") != "" ]] && return 1 [[ $1 == "authToken" ]] && [[ $(cat secret/authTokens.dat | grep -P "^$user:") != "" ]] && return 1 return 0 } # add_account_refreshtoken(refreshtoken) function add_account_refreshtoken() { if ! session_verify "${cookies[sh_session]}"; then exit 0 fi if check_if_user_exists refreshToken; then echo "$(session_get_username ${cookies[sh_session]}):$1" >> secret/refreshTokens.dat fi } # add_account_authtoken(authtoken) function add_account_authtoken() { if ! session_verify "${cookies[sh_session]}"; then exit 0 fi if check_if_user_exists authToken; then echo "$(session_get_username ${cookies[sh_session]}):$1" >> secret/authTokens.dat fi } # update_account_authtoken(username) function update_account_authtoken() { a=$(cat secret/refreshTokens.dat | grep -P "^$1\:") token=$(awk -F: '{print $2}' <<< $a); while true; do if [[ "$auth" == '' ]]; then auth=$(curl -s -X POST -H "Content-type: application/json" --data '{"phoneOS": "Android", "refreshToken": "'"$token"'"}' https://api-inmobile-pl.easypack24.net/v1/authenticate | jq -r .authToken | sed -s 's/Bearer //g') sleep 1 else break fi done sed -E -i 's/^'"$1"':.*/'"$1:$auth"'/g' secret/authTokens.dat } # check_mail(mail) function check_mail() { if [[ $(cat secret/mail.dat | grep ":$1:") == '' ]]; then return 0 else return 1 fi } #get_account_mail(username) function get_account_mail() { [[ $1 == '' ]] && return cat secret/mail.dat | grep "^$1:" | awk -F: '{print $2}' } #account_verified(username) function account_verified() { [[ $1 == '' ]] && return if [[ "$(cat secret/mail.dat | grep -P "^$1:" | awk -F: '{print $4}')" != "yes" ]]; then return 0 else return 1 fi } #account_gen_reset_code(username, force) function account_gen_reset_code() { [[ "$1" == '' ]] && return if ! account_verified "$1"; then data="$(cat secret/mail.dat | grep -P "^$1:")" user="$1" mail="$(awk -F: '{print $2}' <<< "$data")" old_code="$(awk -F: '{print $3}' <<< "$data")" timestamp="$(awk -F: '{print $5}' <<< "$data")" new_timestamp="$(date "+%s")" new_code="$RANDOM" if [[ $(date "+%s") -gt $((timestamp+3600)) || $2 == true ]]; then sed -i "s/$user:$mail:$old_code:yes:$timestamp/$user:$mail:$new_code:yes:$new_timestamp/" secret/mail.dat echo -n "$new_code"$(date "+%d%m%y") | sha1sum | awk '{print $1}' | cut -c 1-10 return 0 else return 2 fi else return 1 fi } #reset_pwd(username, hash, password) function reset_pwd() { [[ "$1" == '' || "$2" == '' || "$3" == '' ]] && return user="$1" hash="$2" pass="$3" if [[ "$(echo -n $(cat secret/mail.dat | grep -P "^$user:" | awk -F: '{print $3}')$(date "+%d%m%y") | sha1sum | awk '{print $1}' | cut -c 1-10)" == "$hash" ]]; then delete_account "$user" register "$user" "$pass" # prevents resetting the password with the same hash twice account_gen_reset_code "$user" true >> /dev/null return 0 else return 1 fi }