/// <summary>
/// Perform a new CGI login request which will emulate a user logging into the web portal
/// </summary>
/// <param name="auth"></param>
/// <param name="waitWindow"></param>
/// <param name="warningMode"></param>
/// <param name="silent"></param>
/// <returns></returns>
public static bool DoLogin(ArcCredential auth = null, bool waitWindow = true, bool warningMode = false, bool silent = false)
{
//waitwindow activation
if (waitWindow && !silent)
{
//offloads to another thread and returns the result once it's done
return((bool)ArcWaitWindow.ArcWaitWindow.Show(DoLogin, @"Authenticating...", auth, warningMode));
}
try
{
//this will trigger a secondary request
var arcToken = new ArcToken();
//verify authentication token
if (!string.IsNullOrWhiteSpace(arcToken.Token))
{
//authentication credentials (they get hashed when loaded into the Credential object)
var unEncoded = auth?.Username;
var pwEncoded = auth?.Password;
//data to send alongside request
var requestBody =
new FormUrlEncodedContent(
new Dictionary <string, string>
{
{ @"httoken", arcToken.Token },
{ @"usr", unEncoded },
{ @"pws", pwEncoded }
});
//request handler
Global.GlobalHandler = new HttpClientHandler
{
AutomaticDecompression = ~DecompressionMethods.None,
AllowAutoRedirect = false,
CookieContainer = new CookieContainer()
};
//request client
Global.GlobalClient = new HttpClient(Global.GlobalHandler)
{
Timeout = TimeSpan.FromMilliseconds(Global.RequestTimeout)
};
//add request credentials
var request = new HttpRequestMessage(new HttpMethod(@"POST"), Endpoints.LoginCgi)
{
Content = requestBody
};
//create the needed headers
request.Headers.TryAddWithoutValidation(@"Accept",
@"text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8");
request.Headers.TryAddWithoutValidation(@"Accept-Language", @"en-US,en;q=0.5");
request.Headers.TryAddWithoutValidation(@"Connection", @"keep-alive");
request.Headers.TryAddWithoutValidation(@"Upgrade-Insecure-Requests", @"1");
request.Headers.TryAddWithoutValidation(@"Cookie", @"disableLogout=0");
request.Headers.TryAddWithoutValidation(@"User-Agent", Global.UserAgent);
request.Headers.TryAddWithoutValidation(@"Referer", Endpoints.LoginHtm);
request.Headers.TryAddWithoutValidation(@"Host", Endpoints.GatewayAddress);
request.Headers.TryAddWithoutValidation(@"Origin", Endpoints.Origin);
//receive and format response
var response = Global.GlobalClient.SendAsync(request).Result;
var locationHeader =
response.Headers.Location != null
? response.Headers.Location.ToString()
: @"";
//null validation
if (string.IsNullOrWhiteSpace(locationHeader))
{
return(false);
}
//header return page validation
if (locationHeader.StartsWith(@"/login.htm"))
{
//figure out what the error code was
var parameters = ParametersFromUrl(locationHeader);
//null validation
if (parameters != null)
{
//convert NameValueCollection to generic IDictionary
var dict = parameters.AllKeys.ToDictionary(t => t, t => parameters[t]);
//verify if the 'err' (error code) parameter exists
if (dict.ContainsKey(@"err"))
{
//parse out error code
var err = dict[@"err"];
//ensure we can display error messages
if (!silent)
{
//figure out what error message to display via a switch-case
switch (err)
{
case @"4":
UiMessages.Error("Modem login error:\n\nYou are not allowed to login device's GUI now,\nsince the user number had reached its limit.");
break;
case @"3":
UiMessages.Error("Modem login error:\n\nYour session has timed out or login status has changed.\nPlease sign in again.");
break;
case @"2":
UiMessages.Error("Modem login error:\n\nAnother user has already login.");
break;
case @"1":
UiMessages.Error("Modem login error:\n\nInvalid Username/Password.");
break;
}
}
}
}
}
else if (locationHeader == @"/index.htm")
{
//download home page
var homeGrab = ResourceGrab.GrabString(Endpoints.HomeHtm, Endpoints.IndexHtm);
//make sure we didn't get redirected to the login page
var success = !homeGrab.Contains(@"Telstra Login") && !homeGrab.Contains(@"login.htm");
//apply global token if successful
if (success)
{
Global.InitToken = arcToken;
}
//report status
return(success);
}
}
else
{
UiMessages.Warning(@"Authentication error; CSRF token was invalid.");
}
}
catch (Exception ex)
{
if (!silent)
{
if (!warningMode)
{
UiMessages.Error($"Login error\n\n{ex}");
}
else
{
UiMessages.Warning("We couldn't authenticate the application; this will affect your " +
"ability to connect to the modem's CGI pages. Please verify if the modem is reachable.");
}
}
}
//default
return(false);
}
public bool Revoke(bool waitWindow = true)
{
if (waitWindow)
{
return((bool)ArcWaitWindow.ArcWaitWindow.Show(Revoke, @"Logging out..."));
}
try
{
//important information for the request
var t = DateTime.UtcNow.ConvertToUnixTimestamp();
var referrer = $@"{Endpoints.Origin}/logout.htm?t={t}&m=";
var logout = $@"{Endpoints.Origin}/logout.cgi";
//download logout.htm for the access token
var logoutToken = new ArcToken(referrer);
if (!string.IsNullOrEmpty(logoutToken.Token))
{
//data to send alongside request
var requestBody =
new FormUrlEncodedContent(
new Dictionary <string, string>
{
{ @"httoken", logoutToken.Token }
});
//session handler for cookies
var cookies = new CookieContainer();
//request handlers
var handler = new HttpClientHandler();
var client = new HttpClient(handler);
//set global client
Global.GlobalClient = client;
//not fazed by Location headers
//handler.AllowAutoRedirect = false;
//add request credentials
var request = new HttpRequestMessage(new HttpMethod(@"POST"), logout)
{
Content = requestBody
};
request.Headers.TryAddWithoutValidation(@"Accept",
@"text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8");
request.Headers.TryAddWithoutValidation(@"Accept-Language", @"en-US,en;q=0.5");
request.Headers.TryAddWithoutValidation(@"Connection", @"keep-alive");
request.Headers.TryAddWithoutValidation(@"Upgrade-Insecure-Requests", @"1");
request.Headers.TryAddWithoutValidation(@"Cookie", @"disableLogout=0");
request.Headers.TryAddWithoutValidation(@"User-Agent", Global.UserAgent);
request.Headers.TryAddWithoutValidation(@"Referrer", referrer);
request.Headers.TryAddWithoutValidation(@"Host", Endpoints.GatewayAddress);
request.Headers.TryAddWithoutValidation(@"Origin", Endpoints.Origin);
//apply cookie container
handler.CookieContainer = cookies;
//now fazed by location headers
handler.AllowAutoRedirect = false;
//receive and format response
var response = client.SendAsync(request).Result;
var locationHeader =
response.Headers.Contains(@"Location")
? response.Headers.Location.ToString()
: @"";
//on success, logout redirects user to login page
return(locationHeader == @"/login.htm");
}
MessageBox.Show("Logout token was empty; revocation failed.", @"Revoke Error",
MessageBoxButtons.OK, MessageBoxIcon.Error);
}
catch (Exception ex)
{
MessageBox.Show($"Token revocation error\n\n{ex}", @"Revoke Error",
MessageBoxButtons.OK, MessageBoxIcon.Error);
}
//default
return(false);
}
