18 var _0x1a75=['nonce','API\x20access\x20key\x20is\x20not\x20valid\x20anymore','disabled','blockDuration','blockedAt','add','minutes','Invalid\x20API\x20access\x20key','catch','User\x20object\x20not\x20found.','canUpdate','getLicense','update','Forbidden','isMiddleware','cookie','motion.token','/dashboards/general','send','retrieveApiKey','isNil','generateApiKey','apiKeyIat','Please\x20use\x20the\x20previous\x20API\x20access\x20key\x20to\x20generate\x20a\x20new\x20one','validatePasswordPattern','test','Sequelize','ValidationError','split','toLowerCase','format','The\x20password\x20must\x20be\x20different\x20from\x20the\x20previous\x20%d\x20passwords.\x20Please\x20choose\x20another\x20one.','The\x20password\x20must\x20be\x20different\x20from\x20the\x20last\x20one.\x20Please\x20choose\x20another\x20one.','decryptString','length','splice','encryptString','join','promisify','sign','options','verify','randomBytes','floor','now','toString','../../mysqldb','../../config/license/hardware','../../config/license/util','lodash','jsonwebtoken','express-jwt','composable-middleware','basic-auth','crypto','bluebird','util','moment','secrets','session','role','fullname','name','email','permissions','md5secret','voicePause','chatPause','faxPause','lastLoginAt','allowmessenger','alias','phoneBarAutoAnswer','phoneBarAutoAnswerDelay','phoneBarDnd','phoneBarEnableRecording','phoneBarPrefixRequired','phoneBarRemoteControlPort','hotdesk','interface','userProfileId','privacyEnabled','wssPort','downloadVoiceRecordings','downloadOmnichannelInteractions','downloadAttachments','ignorePauseForPreviewCalls','selectRecallMeCampaign','chatAutoanswer','chatAutoanswerDelay','emailAutoanswer','emailAutoanswerDelay','smsAutoanswer','smsAutoanswerDelay','openchannelAutoanswerDelay','faxAutoanswer','whatsappAutoanswerDelay','messengerSoundNotification','isChatInteractionAuthorized','isAuthenticated','use','user','ChatInteraction','findOne','params','closed','disposition','query','forceDownload','status','unmanaged','json','Unmanaged.','Forbidden.','startsWith','headers','authorization','User','then','authenticate','pass','Bearer','Unknown\x20authorization\x20format','apikey','getUuid','find','sub','Setting','allowedLoginAttempts','apiKeyNonce'];(function(_0x4b2436,_0x452299){var _0x4f5ab2=function(_0x5c6679){while(--_0x5c6679){_0x4b2436['push'](_0x4b2436['shift']());}};_0x4f5ab2(++_0x452299);}(_0x1a75,0x132));var _0x51a7=function(_0x780034,_0x3f6b5b){_0x780034=_0x780034-0x0;var _0x7d5ba4=_0x1a75[_0x780034];return _0x7d5ba4;};'use strict';var db=require(_0x51a7('0x0'))['db'];var config=require('../../config/environment');var hardwareConf=require(_0x51a7('0x1'));var licenseUtil=require(_0x51a7('0x2'));var encryptor=require('../encryptor');var _=require(_0x51a7('0x3'));var jwt=require(_0x51a7('0x4'));var expressJwt=require(_0x51a7('0x5'));var compose=require(_0x51a7('0x6'));var basicAuth=require(_0x51a7('0x7'));var crypto=require(_0x51a7('0x8'));var BPromise=require(_0x51a7('0x9'));var util=require(_0x51a7('0xa'));var moment=require(_0x51a7('0xb'));var validateJwt=expressJwt({'secret':config[_0x51a7('0xc')][_0x51a7('0xd')]});var userAttributes=['id',_0x51a7('0xe'),_0x51a7('0xf'),_0x51a7('0x10'),'internal',_0x51a7('0x11'),'userpic',_0x51a7('0x12'),_0x51a7('0x13'),_0x51a7('0x14'),_0x51a7('0x15'),'mailPause',_0x51a7('0x16'),'smsPause','openchannelPause','pauseType','showWebBar',_0x51a7('0x17'),'lastPauseAt','crudPermissions',_0x51a7('0x18'),'passwordResetAt',_0x51a7('0x19'),_0x51a7('0x1a'),_0x51a7('0x1b'),_0x51a7('0x1c'),_0x51a7('0x1d'),'phoneBarEnableDtmfTone','phoneBarEnableSettings','phoneBarExpires',_0x51a7('0x1e'),'phoneBarRemoteControl',_0x51a7('0x1f'),_0x51a7('0x20'),_0x51a7('0x21'),_0x51a7('0x22'),_0x51a7('0x23'),'settingsEnabled',_0x51a7('0x24'),_0x51a7('0x25'),_0x51a7('0x26'),_0x51a7('0x27'),_0x51a7('0x28'),_0x51a7('0x29'),_0x51a7('0x2a'),_0x51a7('0x2b'),_0x51a7('0x2c'),_0x51a7('0x2d'),_0x51a7('0x2e'),_0x51a7('0x2f'),'openchannelAutoanswer',_0x51a7('0x30'),_0x51a7('0x31'),'faxAutoanswerDelay','whatsappAutoanswer',_0x51a7('0x32'),_0x51a7('0x33')];exports[_0x51a7('0x34')]=function(){return this[_0x51a7('0x35')](!![])[_0x51a7('0x36')](function(_0x406ddd,_0x4a2dbe,_0x13f6b3){if(_0x406ddd[_0x51a7('0x37')]){_0x13f6b3();}else{return db[_0x51a7('0x38')][_0x51a7('0x39')]({'where':{'id':_0x406ddd[_0x51a7('0x3a')]['id']},'attributes':['id',_0x51a7('0x3b'),_0x51a7('0x3c')],'raw':!![]})['then'](function(_0x4bcd2a){if(_0x4bcd2a&&_0x4bcd2a[_0x51a7('0x3b')]&&!_0x406ddd[_0x51a7('0x3d')][_0x51a7('0x3e')]){return _0x4a2dbe[_0x51a7('0x3f')](_0x4bcd2a[_0x51a7('0x3c')]===_0x51a7('0x40')?0x195:0x193)[_0x51a7('0x41')]({'message':_0x4bcd2a[_0x51a7('0x3c')]===_0x51a7('0x40')?_0x51a7('0x42'):_0x51a7('0x43')});}else{_0x13f6b3();}})['catch'](function(_0x3d8efa){_0x13f6b3(_0x3d8efa);});}});};exports[_0x51a7('0x35')]=function isAuthenticated(_0x150463){return compose()[_0x51a7('0x36')](function(_0x53fa81,_0x83d178,_0x64f316){var _0x266cef;if(_0x53fa81['headers']['authorization']){if(_[_0x51a7('0x44')](_0x53fa81[_0x51a7('0x45')][_0x51a7('0x46')],'Basic')){var _0x2b4483=basicAuth(_0x53fa81);db[_0x51a7('0x47')]['find']({'where':{'name':_0x2b4483['name']}})[_0x51a7('0x48')](function(_0x131a8a){if(!_0x131a8a||!_0x131a8a[_0x51a7('0x49')](_0x2b4483[_0x51a7('0x4a')])){return _0x83d178['status'](0x191)[_0x51a7('0x41')]({'message':'Wrong\x20credentials.'});}_0x53fa81['user']={'id':_0x131a8a['id']};_0x64f316();})['catch'](function(_0xaff216){_0x64f316(_0xaff216);});}else if(_[_0x51a7('0x44')](_0x53fa81[_0x51a7('0x45')]['authorization'],_0x51a7('0x4b'))){validateJwt(_0x53fa81,_0x83d178,_0x64f316);}else{if(_0x150463){_0x64f316();}else{return _0x83d178[_0x51a7('0x3f')](0x193)[_0x51a7('0x41')]({'message':_0x51a7('0x4c')});}}}else if(_0x53fa81[_0x51a7('0x3d')][_0x51a7('0x4d')]){try{var _0x516fbf={'audience':hardwareConf[_0x51a7('0x4e')](),'issuer':hardwareConf[_0x51a7('0x4e')]()};verifyJwt(_0x53fa81[_0x51a7('0x3d')][_0x51a7('0x4d')],_0x516fbf)['then'](function(_0x2d9961){return db[_0x51a7('0x47')][_0x51a7('0x4f')]({'where':{'id':_0x2d9961[_0x51a7('0x50')]}})[_0x51a7('0x48')](function(_0x3c2fad){_0x266cef=_0x3c2fad;return db[_0x51a7('0x51')][_0x51a7('0x39')]({'where':{'id':0x1},'attributes':[_0x51a7('0x52'),'blockDuration'],'raw':!![]});})[_0x51a7('0x48')](function(_0x45bbd7){if(!_0x266cef||!_['isEqual'](_0x266cef[_0x51a7('0x53')],_0x2d9961[_0x51a7('0x54')])){return _0x83d178[_0x51a7('0x3f')](0x191)[_0x51a7('0x41')]({'message':_0x51a7('0x55')});}if(_0x266cef[_0x51a7('0x56')]){return _0x83d178['status'](0x191)['json']({'message':'Invalid\x20API\x20access\x20key'});}if(_0x266cef['blocked']){if(_0x45bbd7[_0x51a7('0x57')]>0x0){if(moment(_0x266cef[_0x51a7('0x58')])[_0x51a7('0x59')](_0x45bbd7[_0x51a7('0x57')],_0x51a7('0x5a'))>moment()){return _0x83d178[_0x51a7('0x3f')](0x191)[_0x51a7('0x41')]({'message':_0x51a7('0x5b')});}}else{return _0x83d178['status'](0x191)[_0x51a7('0x41')]({'message':_0x51a7('0x5b')});}}_0x53fa81['user']={'id':_0x266cef['id']};_0x64f316();});})[_0x51a7('0x5c')](function(){return _0x83d178[_0x51a7('0x3f')](0x191)['json']({'message':_0x51a7('0x5b')});});}catch(_0x316387){_0x64f316(_0x316387);}}else if(_0x150463){_0x64f316();}else{return _0x83d178[_0x51a7('0x3f')](0x193)[_0x51a7('0x41')]({'message':_0x51a7('0x4c')});}})[_0x51a7('0x36')](function(_0x2245a6,_0x191cc5,_0x4ad2ac){if(_0x2245a6[_0x51a7('0x37')]){db[_0x51a7('0x47')]['find']({'where':{'id':_0x2245a6[_0x51a7('0x37')]['id']},'attributes':userAttributes})[_0x51a7('0x48')](function(_0x2c0040){if(!_0x2c0040){return _0x191cc5[_0x51a7('0x3f')](0x194)['json']({'message':'User\x20not\x20found.'});}_0x2245a6[_0x51a7('0x37')]=_0x2c0040;_0x4ad2ac();})['catch'](function(_0x21baca){_0x4ad2ac(_0x21baca);});}else if(_0x150463){_0x4ad2ac();}else{return _0x191cc5['status'](0x194)[_0x51a7('0x41')]({'message':_0x51a7('0x5d')});}});};exports[_0x51a7('0x5e')]=function canUpdate(){return compose()['use'](function(_0x24f9fd,_0x55200d,_0x5ad667){return licenseUtil[_0x51a7('0x5f')]()['then'](function(_0x2d2231){if(_0x2d2231[_0x51a7('0x60')]){_0x5ad667();}else{return _0x55200d['status'](0x193)[_0x51a7('0x41')]({'message':_0x51a7('0x61')});}})[_0x51a7('0x5c')](function(_0x51fbc2){_0x5ad667(_0x51fbc2);});});};exports['isWebrtcLicence']=function isWebrtcLicence(){return compose()[_0x51a7('0x36')](function(_0x22b9c4,_0x5422ed,_0x3a0a3c){return licenseUtil['getLicense']()[_0x51a7('0x48')](function(_0xff7fd){if(_0xff7fd['webrtc']){_0x3a0a3c();}else{return _0x5422ed['status'](0x193)[_0x51a7('0x41')]({'message':'Forbidden'});}})[_0x51a7('0x5c')](function(_0x1d3e49){_0x3a0a3c(_0x1d3e49);});});};exports['isMiddleware']=function(_0x487ad3,_0x52a5db,_0x2d1ce0){_0x487ad3[_0x51a7('0x62')]=!![];return _0x2d1ce0();};exports['signToken']=function signToken(_0x4ede98){return signJwt(_0x4ede98);};exports['setTokenCookie']=function(_0x310f80,_0x213a26){if(!_0x310f80[_0x51a7('0x37')]){return _0x213a26['status'](0x194)[_0x51a7('0x41')]({'message':'It\x20looks\x20like\x20you\x20aren\x27t\x20logged\x20in,\x20please\x20try\x20again.'});}var _0x7c14={'payload':{'id':_0x310f80[_0x51a7('0x37')]['id'],'role':_0x310f80[_0x51a7('0x37')][_0x51a7('0xe')]},'options':{'expiresIn':0x15180}};return signJwt(_0x7c14)[_0x51a7('0x48')](function(_0x6668d){_0x213a26[_0x51a7('0x63')](_0x51a7('0x64'),_0x6668d);_0x213a26['redirect'](_0x51a7('0x65'));})[_0x51a7('0x5c')](function(_0x3f2ca3){return _0x213a26[_0x51a7('0x3f')](0x1f4)[_0x51a7('0x66')](_0x3f2ca3);});};exports[_0x51a7('0x67')]=function(_0x218e53){if(_[_0x51a7('0x68')](_0x218e53[_0x51a7('0x53')])||_[_0x51a7('0x68')](_0x218e53['apiKeyIat'])){return null;}else{return createJwt(_0x218e53);}};exports[_0x51a7('0x69')]=function(_0x277421){_0x277421[_0x51a7('0x53')]=generateNonce();_0x277421['apiKeyIat']=generateIssuedAt();return createJwt(_0x277421);};exports['regenerateApiKey']=function(_0xd23cb0,_0x1c4d93){var _0x3092f1=_0xd23cb0[_0x51a7('0x3d')]['apikey'];if(_0x3092f1){var _0x2fa7df={'nonce':_0x1c4d93[_0x51a7('0x53')],'iat':_0x1c4d93[_0x51a7('0x6a')],'audience':hardwareConf[_0x51a7('0x4e')](),'issuer':hardwareConf['getUuid']()};return verifyJwt(_0x3092f1,_0x2fa7df)[_0x51a7('0x48')](function(){return generateApiKey(_0x1c4d93);});}else{throw{'message':_0x51a7('0x6b')};}};exports[_0x51a7('0x6c')]=function(_0x1c34da){var _0x4283e0=new RegExp(/(?=.*[a-z])(?=.*[A-Z])(?=.*[0-9])(?=.*[?!@#\$%\^&\*~\-_=+[{\]\}])(?=.{8,})/);if(!_0x4283e0[_0x51a7('0x6d')](_0x1c34da))throw new db[(_0x51a7('0x6e'))][(_0x51a7('0x6f'))]('The\x20password\x20must\x20be\x20at\x20least\x208\x20characters\x20long\x20and\x20have\x201\x20lowercase\x20character,\x201\x20uppercase\x20character,\x201\x20number\x20and\x201\x20special\x20character\x20~!@#$%^&-_=+[{]}.');return;};exports['validatePasswordHistory']=function(_0x155d58,_0x2e6ee1,_0x242aa3){var _0x452e4e=encryptor['decryptString'](_0x2e6ee1)[_0x51a7('0x70')](',');for(var _0xc92bb0=0x0;_0xc92bb0<_0x242aa3;_0xc92bb0++){if(!_0x452e4e[_0xc92bb0])break;if(_0x155d58[_0x51a7('0x71')]()===_0x452e4e[_0xc92bb0]['toLowerCase']()){var _0x566b18=util[_0x51a7('0x72')](_0x51a7('0x73'),_0x242aa3);if(_0x242aa3===0x1){_0x566b18=_0x51a7('0x74');}throw new db[(_0x51a7('0x6e'))]['ValidationError'](_0x566b18);}}return;};exports['updatePasswordsHistory']=function(_0x135ce3,_0x3752c3){var _0x309ef1=_0x3752c3?encryptor[_0x51a7('0x75')](_0x3752c3)[_0x51a7('0x70')](','):[];if(_0x309ef1[_0x51a7('0x76')]===0x5){_0x309ef1[_0x51a7('0x77')](-0x1,0x1);}_0x309ef1['unshift'](_0x135ce3);return encryptor[_0x51a7('0x78')](_0x309ef1[_0x51a7('0x79')](','));};function signJwt(_0x585445){var _0x438cb2=BPromise[_0x51a7('0x7a')](jwt[_0x51a7('0x7b')],{'context':jwt});var _0x29c436=_0x585445['secret']||config['secrets'][_0x51a7('0xd')];return new BPromise(function(_0x2b2f94,_0xfeff73){_0x438cb2(_0x585445['payload'],_0x29c436,_0x585445[_0x51a7('0x7c')])[_0x51a7('0x48')](function(_0x4a87f3){_0x2b2f94(_0x4a87f3);})[_0x51a7('0x5c')](function(_0x5d544d){_0xfeff73(_0x5d544d);});});}function verifyJwt(_0x328499,_0x2702ec,_0x5b1cce){var _0x51045d=BPromise['promisify'](jwt[_0x51a7('0x7d')],{'context':jwt});var _0x1678f2=_0x5b1cce||config[_0x51a7('0xc')][_0x51a7('0xd')];return new BPromise(function(_0x2e51b5,_0xa05aa0){_0x51045d(_0x328499,_0x1678f2,_0x2702ec)[_0x51a7('0x48')](function(_0x1ab7df){_0x2e51b5(_0x1ab7df);})['catch'](function(_0x12c600){_0xa05aa0(_0x12c600);});});}function generateNonce(){return crypto[_0x51a7('0x7e')](0x10)['toString']('hex');}function generateIssuedAt(){return Math[_0x51a7('0x7f')](Date[_0x51a7('0x80')]()/0x3e8)[_0x51a7('0x81')]();}function createJwt(_0x405dda){var _0x53af0b={'payload':{'iat':_0x405dda[_0x51a7('0x6a')],'nonce':_0x405dda['apiKeyNonce']},'options':{'algorithm':'HS512','subject':_0x405dda['id']['toString'](),'issuer':hardwareConf[_0x51a7('0x4e')](),'audience':hardwareConf['getUuid']()}};return signJwt(_0x53af0b)['then'](function(_0x3a19c7){return{'iat':_0x405dda[_0x51a7('0x6a')],'nonce':_0x405dda[_0x51a7('0x53')],'token':_0x3a19c7};});}
git://repos.xcallymotion.com / motion2.git / blob