From 0ef434573be8214f91b68c402d506aa365ac41d6 Mon Sep 17 00:00:00 2001 From: Eugene Fox Date: Fri, 22 Apr 2022 01:35:20 +0300 Subject: [PATCH] Mock mobile (#1) * Added MockMobile tool --- .github/workflows/mock-mobile.yaml | 35 +++ MockMobile/.gitignore | 455 +++++++++++++++++++++++++++++ MockMobile/MockMobile.csproj | 14 + MockMobile/Program.cs | 190 ++++++++++++ README.md | 10 +- 5 files changed, 702 insertions(+), 2 deletions(-) create mode 100644 .github/workflows/mock-mobile.yaml create mode 100644 MockMobile/.gitignore create mode 100644 MockMobile/MockMobile.csproj create mode 100644 MockMobile/Program.cs diff --git a/.github/workflows/mock-mobile.yaml b/.github/workflows/mock-mobile.yaml new file mode 100644 index 0000000..4b70d18 --- /dev/null +++ b/.github/workflows/mock-mobile.yaml @@ -0,0 +1,35 @@ +name: MockMobile + +on: + push: + branches: [ master ] + paths: + - "MockMobile/*" + workflow_dispatch: + +jobs: + build: + runs-on: windows-latest + + steps: + - uses: actions/checkout@v2 + + - name: Setup .NET + uses: actions/setup-dotnet@v1 + with: + dotnet-version: 6.0.x + + - name: Restore dependencies + run: dotnet restore + + - name: Build + run: dotnet build --no-restore + + - name: Publish + run: dotnet publish -p:PublishSingleFile=true -r win-x64 -c Debug --self-contained true + + - name: Create GitHub Release + uses: ncipollo/release-action@v1 + with: + artifacts: "${GITHUB_REPOSITORY}/bin/Debug/net6.0/win-x64/publish/MockMobile.exe,${GITHUB_REPOSITORY}/bin/Debug/net6.0/win-x64/publish/MockMobile.pdb" + token: ${{ secrets.GH_TOKEN }} \ No newline at end of file diff --git a/MockMobile/.gitignore b/MockMobile/.gitignore new file mode 100644 index 0000000..d73e577 --- /dev/null +++ b/MockMobile/.gitignore @@ -0,0 +1,455 @@ +## Ignore Visual Studio temporary files, build results, and +## files generated by popular Visual Studio add-ons. +## +## Get latest from https://github.com/github/gitignore/blob/master/VisualStudio.gitignore + +# User-specific files +*.rsuser +*.suo +*.user +*.userosscache +*.sln.docstates + +# User-specific files (MonoDevelop/Xamarin Studio) +*.userprefs + +# Mono auto generated files +mono_crash.* + +# Build results +[Dd]ebug/ +[Dd]ebugPublic/ +[Rr]elease/ +[Rr]eleases/ +x64/ +x86/ +[Ww][Ii][Nn]32/ +[Aa][Rr][Mm]/ +[Aa][Rr][Mm]64/ +bld/ +[Bb]in/ +[Oo]bj/ +[Ll]og/ +[Ll]ogs/ + +# Visual Studio 2015/2017 cache/options directory +.vs/ +.vscode/ +# Uncomment if you have tasks that create the project's static files in wwwroot +#wwwroot/ + +# Visual Studio 2017 auto generated files +Generated\ Files/ + +# MSTest test Results +[Tt]est[Rr]esult*/ +[Bb]uild[Ll]og.* + +# NUnit +*.VisualState.xml +TestResult.xml +nunit-*.xml + +# Build Results of an ATL Project +[Dd]ebugPS/ +[Rr]eleasePS/ +dlldata.c + +# Benchmark Results +BenchmarkDotNet.Artifacts/ + +# .NET Core +project.lock.json +project.fragment.lock.json +artifacts/ + +# Tye +.tye/ + +# ASP.NET Scaffolding +ScaffoldingReadMe.txt + +# StyleCop +StyleCopReport.xml + +# Files built by Visual Studio +*_i.c +*_p.c +*_h.h +*.ilk +*.meta +*.obj +*.iobj +*.pch +*.pdb +*.ipdb +*.pgc +*.pgd +*.rsp +*.sbr +*.tlb +*.tli +*.tlh +*.tmp +*.tmp_proj +*_wpftmp.csproj +*.log +*.vspscc +*.vssscc +.builds +*.pidb +*.svclog +*.scc + +# Chutzpah Test files +_Chutzpah* + +# Visual C++ cache files +ipch/ +*.aps +*.ncb +*.opendb +*.opensdf +*.sdf +*.cachefile +*.VC.db +*.VC.VC.opendb + +# Visual Studio profiler +*.psess +*.vsp +*.vspx +*.sap + +# Visual Studio Trace Files +*.e2e + +# TFS 2012 Local Workspace +$tf/ + +# Guidance Automation Toolkit +*.gpState + +# ReSharper is a .NET coding add-in +_ReSharper*/ +*.[Rr]e[Ss]harper +*.DotSettings.user + +# TeamCity is a build add-in +_TeamCity* + +# DotCover is a Code Coverage Tool +*.dotCover + +# AxoCover is a Code Coverage Tool +.axoCover/* +!.axoCover/settings.json + +# Coverlet is a free, cross platform Code Coverage Tool +coverage*.json +coverage*.xml +coverage*.info + +# Visual Studio code coverage results +*.coverage +*.coveragexml + +# NCrunch +_NCrunch_* +.*crunch*.local.xml +nCrunchTemp_* + +# MightyMoose +*.mm.* +AutoTest.Net/ + +# Web workbench (sass) +.sass-cache/ + +# Installshield output folder +[Ee]xpress/ + +# DocProject is a documentation generator add-in +DocProject/buildhelp/ +DocProject/Help/*.HxT +DocProject/Help/*.HxC +DocProject/Help/*.hhc +DocProject/Help/*.hhk +DocProject/Help/*.hhp +DocProject/Help/Html2 +DocProject/Help/html + +# Click-Once directory +publish/ + +# Publish Web Output +*.[Pp]ublish.xml +*.azurePubxml +# Note: Comment the next line if you want to checkin your web deploy settings, +# but database connection strings (with potential passwords) will be unencrypted +*.pubxml +*.publishproj + +# Microsoft Azure Web App publish settings. Comment the next line if you want to +# checkin your Azure Web App publish settings, but sensitive information contained +# in these scripts will be unencrypted +PublishScripts/ + +# NuGet Packages +*.nupkg +# NuGet Symbol Packages +*.snupkg +# The packages folder can be ignored because of Package Restore +**/[Pp]ackages/* +# except build/, which is used as an MSBuild target. +!**/[Pp]ackages/build/ +# Uncomment if necessary however generally it will be regenerated when needed +#!**/[Pp]ackages/repositories.config +# NuGet v3's project.json files produces more ignorable files +*.nuget.props +*.nuget.targets + +# Microsoft Azure Build Output +csx/ +*.build.csdef + +# Microsoft Azure Emulator +ecf/ +rcf/ + +# Windows Store app package directories and files +AppPackages/ +BundleArtifacts/ +Package.StoreAssociation.xml +_pkginfo.txt +*.appx +*.appxbundle +*.appxupload + +# Visual Studio cache files +# files ending in .cache can be ignored +*.[Cc]ache +# but keep track of directories ending in .cache +!?*.[Cc]ache/ + +# Others +ClientBin/ +~$* +*~ +*.dbmdl +*.dbproj.schemaview +*.jfm +*.pfx +*.publishsettings +orleans.codegen.cs + +# Including strong name files can present a security risk +# (https://github.com/github/gitignore/pull/2483#issue-259490424) +#*.snk + +# Since there are multiple workflows, uncomment next line to ignore bower_components +# (https://github.com/github/gitignore/pull/1529#issuecomment-104372622) +#bower_components/ + +# RIA/Silverlight projects +Generated_Code/ + +# Backup & report files from converting an old project file +# to a newer Visual Studio version. Backup files are not needed, +# because we have git ;-) +_UpgradeReport_Files/ +Backup*/ +UpgradeLog*.XML +UpgradeLog*.htm +ServiceFabricBackup/ +*.rptproj.bak + +# SQL Server files +*.mdf +*.ldf +*.ndf + +# Business Intelligence projects +*.rdl.data +*.bim.layout +*.bim_*.settings +*.rptproj.rsuser +*- [Bb]ackup.rdl +*- [Bb]ackup ([0-9]).rdl +*- [Bb]ackup ([0-9][0-9]).rdl + +# Microsoft Fakes +FakesAssemblies/ + +# GhostDoc plugin setting file +*.GhostDoc.xml + +# Node.js Tools for Visual Studio +.ntvs_analysis.dat +node_modules/ + +# Visual Studio 6 build log +*.plg + +# Visual Studio 6 workspace options file +*.opt + +# Visual Studio 6 auto-generated workspace file (contains which files were open etc.) +*.vbw + +# Visual Studio LightSwitch build output +**/*.HTMLClient/GeneratedArtifacts +**/*.DesktopClient/GeneratedArtifacts +**/*.DesktopClient/ModelManifest.xml +**/*.Server/GeneratedArtifacts +**/*.Server/ModelManifest.xml +_Pvt_Extensions + +# Paket dependency manager +.paket/paket.exe +paket-files/ + +# FAKE - F# Make +.fake/ + +# CodeRush personal settings +.cr/personal + +# Python Tools for Visual Studio (PTVS) +__pycache__/ +*.pyc + +# Cake - Uncomment if you are using it +# tools/** +# !tools/packages.config + +# Tabs Studio +*.tss + +# Telerik's JustMock configuration file +*.jmconfig + +# BizTalk build output +*.btp.cs +*.btm.cs +*.odx.cs +*.xsd.cs + +# OpenCover UI analysis results +OpenCover/ + +# Azure Stream Analytics local run output +ASALocalRun/ + +# MSBuild Binary and Structured Log +*.binlog + +# NVidia Nsight GPU debugger configuration file +*.nvuser + +# MFractors (Xamarin productivity tool) working folder +.mfractor/ + +# Local History for Visual Studio +.localhistory/ + +# BeatPulse healthcheck temp database +healthchecksdb + +# Backup folder for Package Reference Convert tool in Visual Studio 2017 +MigrationBackup/ + +# Ionide (cross platform F# VS Code tools) working folder +.ionide/ + +# Fody - auto-generated XML schema +FodyWeavers.xsd + +## +## Visual studio for Mac +## + + +# globs +Makefile.in +*.userprefs +*.usertasks +config.make +config.status +aclocal.m4 +install-sh +autom4te.cache/ +*.tar.gz +tarballs/ +test-results/ + +# Mac bundle stuff +*.dmg +*.app + +# content below from: https://github.com/github/gitignore/blob/master/Global/macOS.gitignore +# General +.DS_Store +.AppleDouble +.LSOverride + +# Icon must end with two \r +Icon + + +# Thumbnails +._* + +# Files that might appear in the root of a volume +.DocumentRevisions-V100 +.fseventsd +.Spotlight-V100 +.TemporaryItems +.Trashes +.VolumeIcon.icns +.com.apple.timemachine.donotpresent + +# Directories potentially created on remote AFP share +.AppleDB +.AppleDesktop +Network Trash Folder +Temporary Items +.apdisk + +# content below from: https://github.com/github/gitignore/blob/master/Global/Windows.gitignore +# Windows thumbnail cache files +Thumbs.db +ehthumbs.db +ehthumbs_vista.db + +# Dump file +*.stackdump + +# Folder config file +[Dd]esktop.ini + +# Recycle Bin used on file shares +$RECYCLE.BIN/ + +# Windows Installer files +*.cab +*.msi +*.msix +*.msm +*.msp + +# Windows shortcuts +*.lnk + +# JetBrains Rider +.idea/ +*.sln.iml + +## +## Visual Studio Code +## +.vscode/* +!.vscode/settings.json +!.vscode/tasks.json +!.vscode/launch.json +!.vscode/extensions.json diff --git a/MockMobile/MockMobile.csproj b/MockMobile/MockMobile.csproj new file mode 100644 index 0000000..5412b51 --- /dev/null +++ b/MockMobile/MockMobile.csproj @@ -0,0 +1,14 @@ + + + + Exe + net6.0 + enable + enable + + + + + + + diff --git a/MockMobile/Program.cs b/MockMobile/Program.cs new file mode 100644 index 0000000..db46de3 --- /dev/null +++ b/MockMobile/Program.cs @@ -0,0 +1,190 @@ +using System.Net.Http.Headers; +using System.Security.Cryptography; +using System.Text; +using Newtonsoft.Json; + +Console.WriteLine("EasyLogon Testing tools"); +Console.WriteLine("Mobile app emulator for Web application"); + +while (true) +{ + string? connectionId, encryptionKey, target = "http://localhost:4000"; + Mode mode = 0; + + while (true) + { + Console.WriteLine("Enter connection ID"); + connectionId = Console.ReadLine(); + + if (string.IsNullOrWhiteSpace(connectionId)) + Console.WriteLine("\nError: Connection ID is required\n"); + else + break; + } + + while (true) + { + Console.WriteLine("Enter encryption key"); + encryptionKey = Console.ReadLine(); + + if (string.IsNullOrWhiteSpace(encryptionKey)) + Console.WriteLine("\nError: Encryption key is required\n"); + else + break; + } + + while (true) + { + Console.WriteLine($"Enter website URL. Press return to keep default ({target})"); + string? input = Console.ReadLine(); + + if (string.IsNullOrWhiteSpace(input)) + break; + + if (!Uri.IsWellFormedUriString(input, UriKind.Absolute)) + Console.WriteLine("\nError: Input is not a well formed URI string\n"); + else + { + target = input; + break; + } + } + + while (true) + { + Console.WriteLine($"Select transmission mode. Press return to keep default"); + Console.WriteLine("0 - Default"); + Console.WriteLine("1 - Malformed model (Password is missing)"); + Console.WriteLine("2 - Malformed data (encrypted data is malformed)"); + + string? input = Console.ReadLine(); + + if (string.IsNullOrWhiteSpace(input)) + break; + + if (!int.TryParse(input, out int result)) + Console.WriteLine("\nError: Input is not a valid integer\n"); + else + { + mode = (Mode)Math.Clamp(result, 0, 2); + break; + } + } + + Uri uri = new(new Uri(target), $"/api/send?id={connectionId}"); + + HttpRequestMessage request = new(HttpMethod.Post, uri); + string? data = EncryptData(encryptionKey, mode); + + if (string.IsNullOrWhiteSpace(data)) + continue; + + request.Content = new StringContent($"\"{data}\"", Encoding.UTF8, "application/json"); + + if (target.Contains("azurewebsites.net")) + try + { + Console.WriteLine("\nObtaining authentication token for the request (Test environment endpoint detected)"); + using HttpClient client = new HttpClient(); + + HttpRequestMessage authRequest = new HttpRequestMessage(HttpMethod.Post, $"https://login.microsoftonline.com/e3382dae-1e6b-4b42-a26d-8cc6c96ee3ba/oauth2/token"); + authRequest.Content = new FormUrlEncodedContent(new Dictionary + { + { "grant_type", "client_credentials" }, + { "client_id", "12dcdd03-f006-412b-b8e0-7beeb1510094" }, + { "client_secret", "9Yy7Q~pkW8Q-9q.40o0FQcop-Zl1FRQtSgrya" }, + { "resource", "api://53894705-c0d7-481a-b308-5d39185fe11c" } + }); + + HttpResponseMessage response = await client.SendAsync(authRequest); + + string content = await response.Content.ReadAsStringAsync(); + + if (!response.IsSuccessStatusCode) + throw new HttpRequestException($"Something went wrong (response from server: {response.StatusCode}\n{content})"); + + Dictionary? json = JsonConvert.DeserializeObject>(content); + + if (string.IsNullOrWhiteSpace(json?["access_token"])) + throw new HttpRequestException($"No access token were received (response from server: {response.StatusCode}\n{content})"); + + request.Headers.Authorization = new("Bearer", json?["access_token"]); + } + catch (Exception e) + { + Console.WriteLine("Exception has been thrown"); + Console.WriteLine($"{e.GetType()}: {e.Message}"); + goto Exit; + } + + Console.Write("Sending data to target... "); + + try + { + using HttpClient client = new(); + HttpResponseMessage response = client.Send(request); + Console.Write("Done.\n"); + + Console.WriteLine("\nRequest details:"); + Console.WriteLine($"Target URL: {request.RequestUri?.AbsoluteUri}"); + Console.WriteLine($"Data: ({request.Content.Headers.ContentType?.ToString()}) \"{data}\""); + + Console.WriteLine("\nResponse details:"); + Console.WriteLine($"Status: {(int)response.StatusCode} {response.StatusCode}"); + } + catch (Exception e) + { + Console.WriteLine("Exception has been thrown"); + Console.WriteLine($"{e.GetType()}: {e.Message}"); + } + + Exit: + Console.WriteLine("\nPress any key to continue..."); + Console.ReadKey(); + Console.Clear(); +} + +string? EncryptData(string encryptionKey, Mode mode) +{ + // Represents CredentialModel data + // https://dev.azure.com/FoxDevStudio/EasyLogon/_wiki/wikis/Documentation/40/Webapp-API-endpoints?anchor=remarks + var mockData = new + { + Id = Guid.NewGuid().ToString(), + Name = "Mock data", + TargetResource = "ezlog.app", + Login = "xfox", + Password = mode == Mode.MalformedModel ? null : "Qwerty123", + UseCount = 3 + }; + + string rawData = JsonConvert.SerializeObject(mockData); + byte[] dataBytes = Encoding.UTF8.GetBytes(rawData); + byte[] keyBytes = Encoding.UTF8.GetBytes(encryptionKey); + + using Aes aes = Aes.Create(); + + aes.Key = keyBytes; + aes.Padding = PaddingMode.PKCS7; + aes.Mode = CipherMode.ECB; + + try + { + using ICryptoTransform encryptor = aes.CreateEncryptor(); + byte[] encryptedBytes = encryptor.TransformFinalBlock(dataBytes, 0, dataBytes.Length); + string data = Convert.ToBase64String(encryptedBytes); + return mode == Mode.MalformedData ? string.Concat(data.Reverse()) : data; + } + catch (Exception e) + { + Console.WriteLine($"Error during encryption: {e.GetType()}: {e.Message}"); + return null; + } +} + +enum Mode +{ + Default = 0, + MalformedModel = 1, + MalformedData = 2 +} \ No newline at end of file diff --git a/README.md b/README.md index 57d63ab..55d7cc0 100644 --- a/README.md +++ b/README.md @@ -1,2 +1,8 @@ -# easylogon-testing-tools -= +# EasyLogon Testing tools +This repository contains binarizes and files required to test EasyLogon components separately + +# EasyLogon.Web +Tools for testing EasyLogon web application + +## MockMobile +Console appliaction used to emulate scanning \ No newline at end of file