Created
February 27, 2024 08:36
-
-
Save kiang/2ea3a05a0ce1420bab310b738c377e70 to your computer and use it in GitHub Desktop.
script for GEAS with HiCOS
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // ==UserScript== | |
| // @name GEAS with HiCOS | |
| // @namespace http://tampermonkey.net/ | |
| // @version 2024021701 | |
| // @description 小幫手 | |
| // @author 周詳 | |
| // @match https://geas.dgbas.gov.tw/* | |
| // @match https://geas.moda.gov.tw/* | |
| // @icon https://www.google.com/s2/favicons?sz=64&domain=gov.tw | |
| // @grant none | |
| // @license MIT | |
| // @downloadURL https://update.greasyfork.org/scripts/486021/GEAS%20with%20HiCOS.user.js | |
| // @updateURL https://update.greasyfork.org/scripts/486021/GEAS%20with%20HiCOS.meta.js | |
| // ==/UserScript== | |
| 'use strict'; | |
| function init() { | |
| var script = document.createElement("script"); | |
| script.src = "https://fido.moi.gov.tw//pt/assets/ChtICToken.js"; | |
| document.head.appendChild(script); | |
| var pkilogin = document.getElementsByClassName("pkilogin")[0]; | |
| var newElementHTML = '<input type="button" id="hicos" value="HiCOS登入">'; | |
| if (pkilogin) { | |
| pkilogin.insertAdjacentHTML('afterend', newElementHTML); | |
| document.getElementById("hicos").addEventListener("click", loginClicked); | |
| } | |
| // register | |
| var registerHTML = '<input type="button" id="new-register" value="跨平台版卡號註冊">'; | |
| var registerInputElem = document.querySelector("body > div > div.content.clear_pdTop > div > form > div.btn > div.left > input") | |
| if (registerInputElem) { | |
| registerInputElem.insertAdjacentHTML('afterend', registerHTML); | |
| document.getElementById("new-register").addEventListener("click", registerClicked); | |
| } | |
| // sign | |
| var poolTable = document.querySelector("table#myTable"); | |
| var signHTML = '<input type="button" id="sign-all" value="簽章">'; | |
| if (poolTable) { | |
| poolTable.insertAdjacentHTML('afterend', signHTML); | |
| document.getElementById("sign-all").addEventListener("click", signClicked); | |
| } | |
| } | |
| function makerandomletter() { | |
| var a = "", | |
| b = new Uint32Array(1); | |
| window.crypto.getRandomValues(b); | |
| for (var c = 0; c < b.length; c++) | |
| a += b[c]; | |
| return a | |
| } | |
| function registerClicked() { | |
| loginClicked({ mode: 'register' }); | |
| } | |
| var dataPool = {}; | |
| function signClicked() { | |
| dataPool = { | |
| idx: {}, | |
| case: {} | |
| }; | |
| $('input', $('table#myTable')).each(function() { | |
| var theId = '' + $(this).attr('id'); | |
| var idParts = theId.split('_'); | |
| if(idParts.length === 2) { | |
| if(!dataPool.idx[idParts[1]]) { | |
| dataPool.idx[idParts[1]] = {}; | |
| } | |
| dataPool.idx[idParts[1]][idParts[0]] = $(this).val(); | |
| } | |
| }); | |
| const requestOptions = { | |
| method: 'POST', | |
| headers: { | |
| 'Content-Type': 'application/x-www-form-urlencoded' | |
| }, | |
| body: new URLSearchParams({ | |
| action: "get" | |
| }).toString() | |
| }; | |
| fetch('/iftwf/ajax_server/get_all_batch.php', requestOptions) | |
| .then(response => response.json()) | |
| .then(data => { | |
| var k = ''; | |
| for(k in dataPool.idx) { | |
| if(dataPool.idx[k]['shtno']) { | |
| dataPool.case[dataPool.idx[k]['shtno']] = dataPool.idx[k]; | |
| } | |
| } | |
| $.each(data.batches, function(k, v) { | |
| $.ajax({ | |
| url: '/iftwf/WF9T08J.php', | |
| data: { | |
| j_ProcType: 'Proc', | |
| j_epno: $('input#f_epno').val(), //處理人epno, ex. 000385 | |
| j_fileno: v, //處理的表單shtno | |
| j_flow_btn_name: 'NewForm', | |
| f_depute: '', | |
| stpname: dataPool.case[v].stepname, // ex. 申請人主管 | |
| prcepno: dataPool.case[v].procepno, // ex. 000047 | |
| procdesc: '' | |
| }, | |
| error: function(xhr) { | |
| console.log('error'); | |
| console.log(xhr); | |
| }, | |
| success: function(response) { | |
| var data_arr = response.split("-_-"); | |
| console.log(data_arr); | |
| } | |
| }); | |
| }) | |
| }); | |
| } | |
| function loginClicked({ mode = 'login' }) { | |
| var cardnum = "", | |
| tbs = "", | |
| B64Signature = ""; | |
| var pkcs1 = ""; | |
| var pkcs7 = ""; | |
| let pin = prompt("請輸入PIN碼", ""); | |
| makeSignature(pin); | |
| function makeSignature(a) { | |
| tbs = batchsign2.random; | |
| getICToken().goodDay(SignDo) | |
| } | |
| function CardNumMsg() { | |
| var l_oToken = getICToken(); | |
| console.log(l_oToken.RetObj); | |
| if (l_oToken.RetObj.RCode == 0) { | |
| console.log(l_oToken.RetObj.RCode); | |
| cardnum = l_oToken.RetObj.CardID; | |
| } else { | |
| consoloe.log(l_oToken.RetObj.RMsg); | |
| //alert("簽章時發生錯誤,錯誤碼:" + l_oToken.RetObj.RCode+", 錯誤原因:" + l_oToken.RetObj.RMsg); | |
| } | |
| var returnCode = l_oToken.RetObj.RCode; | |
| } | |
| function SignDo() { | |
| var a = getICToken(); | |
| if (0 == a.RetObj.RCode) { | |
| var b = btoa(tbs); | |
| //b = encodeURIComponent(b); | |
| a.getSmartCardID(CardNumMsg); | |
| a.sign(b, pin, "SHA1", SignRetMsg, "PKCS1"); | |
| } else | |
| console.log(a.RetObj.RCode, a.RetObj.RMsg); | |
| } | |
| function SignRetMsg() { | |
| var a = getICToken(); | |
| var l_oToken = getICToken(); | |
| if (l_oToken.RetObj.RCode == 0) { | |
| B64Signature = l_oToken.RetObj.B64Signature; | |
| pkcs1 = B64Signature; | |
| console.log("pkcs1: " + pkcs1); | |
| var b = btoa(tbs); | |
| //b = encodeURIComponent(b); | |
| a.getSmartCardID(CardNumMsg); | |
| if (mode === 'login') { | |
| a.sign(b, pin, "SHA1", SignRetMsg2, "PKCS7"); | |
| } else { | |
| a.sign(b, pin, "SHA1", doRegister, "PKCS7"); | |
| } | |
| } else { | |
| console.log(l_oToken.RetObj.RMsg); | |
| } | |
| } | |
| function SignRetMsg2() { | |
| var a = getICToken(); | |
| var l_oToken = getICToken(); | |
| if (l_oToken.RetObj.RCode == 0) { | |
| B64Signature = l_oToken.RetObj.B64Signature; | |
| pkcs7 = B64Signature; | |
| console.log("pkcs7: " + pkcs7); | |
| const req = { | |
| method: 'POST', | |
| headers: { | |
| 'Content-Type': 'application/x-www-form-urlencoded; charset=UTF-8' | |
| }, | |
| body: "action=checkLoginLock&f_id=" | |
| }; | |
| fetch('/iftop/ajax_server/ajax_login.server.php', req); | |
| const requestOptions = { | |
| method: 'POST', | |
| headers: { | |
| 'Content-Type': 'application/x-www-form-urlencoded' | |
| }, | |
| body: new URLSearchParams({ | |
| fun_name: "va_verify_p7", | |
| f_sysno: "EAS", | |
| p7: pkcs7 + pkcs1 | |
| }).toString() | |
| }; | |
| fetch('/iftop/ajax_server/ajax_pki.server.php', requestOptions) | |
| .then(response => response.json()) | |
| .then(data => { | |
| console.log("data"); | |
| console.log(data); | |
| if (data.flag) { | |
| window.location = "/eas/EA13R01.php?f_menuname=%E5%B7%A5%E4%BD%9C%E5%84%80%E8%A1%A8%E6%9D%BF"; | |
| } else { | |
| alert(data.msg); | |
| } | |
| }); | |
| } else { | |
| console.log(l_oToken.RetObj.RMsg); | |
| } | |
| } | |
| function doRegister() { | |
| var a = getICToken(); | |
| var l_oToken = getICToken(); | |
| if (l_oToken.RetObj.RCode == 0) { | |
| B64Signature = l_oToken.RetObj.B64Signature; | |
| pkcs7 = B64Signature; | |
| console.log("pkcs7: " + pkcs7); | |
| const requestOptions = { | |
| method: 'POST', | |
| headers: { | |
| 'Content-Type': 'application/x-www-form-urlencoded' | |
| }, | |
| body: new URLSearchParams({ | |
| action: "register", | |
| organ_code: 'A29000000G', // TODO | |
| idcardno: document.querySelector('[name="f_idcardno"]').value, // TODO | |
| f_id: undefined, | |
| f_pw: undefined, | |
| cardno: a.SmrtCrdID[0], | |
| open_window: 'Y', | |
| mode: '1', | |
| p7: pkcs7 + pkcs1 | |
| }).toString() | |
| }; | |
| fetch('/iftop/ajax_server/OP16T22_ajax.php', requestOptions) | |
| .then(response => response.json()) | |
| .then(data => { | |
| console.log("data"); | |
| console.log(data); | |
| if (data.flag) { | |
| window.location = "/eas/EA13R01.php?f_menuname=%E5%B7%A5%E4%BD%9C%E5%84%80%E8%A1%A8%E6%9D%BF"; | |
| } else { | |
| alert(data.msg); | |
| } | |
| }); | |
| } else { | |
| console.log(l_oToken.RetObj.RMsg); | |
| } | |
| } | |
| } | |
| init(); |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment