Skip to content

Instantly share code, notes, and snippets.

@kiang

kiang/hi.js

Created February 27, 2024 08:36
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save kiang/2ea3a05a0ce1420bab310b738c377e70 to your computer and use it in GitHub Desktop.
Save kiang/2ea3a05a0ce1420bab310b738c377e70 to your computer and use it in GitHub Desktop.
Download ZIP
script for GEAS with HiCOS
Raw
hi.js
// ==UserScript==
// @name GEAS with HiCOS
// @namespace http://tampermonkey.net/
// @version 2024021701
// @description 小幫手
// @author 周詳
// @match https://geas.dgbas.gov.tw/*
// @match https://geas.moda.gov.tw/*
// @icon https://www.google.com/s2/favicons?sz=64&domain=gov.tw
// @grant none
// @license MIT
// @downloadURL https://update.greasyfork.org/scripts/486021/GEAS%20with%20HiCOS.user.js
// @updateURL https://update.greasyfork.org/scripts/486021/GEAS%20with%20HiCOS.meta.js
// ==/UserScript==
'use strict';
function init() {
var script = document.createElement("script");
script.src = "https://fido.moi.gov.tw//pt/assets/ChtICToken.js";
document.head.appendChild(script);
var pkilogin = document.getElementsByClassName("pkilogin")[0];
var newElementHTML = '<input type="button" id="hicos" value="HiCOS登入">';
if (pkilogin) {
pkilogin.insertAdjacentHTML('afterend', newElementHTML);
document.getElementById("hicos").addEventListener("click", loginClicked);
}
// register
var registerHTML = '<input type="button" id="new-register" value="跨平台版卡號註冊">';
var registerInputElem = document.querySelector("body > div > div.content.clear_pdTop > div > form > div.btn > div.left > input")
if (registerInputElem) {
registerInputElem.insertAdjacentHTML('afterend', registerHTML);
document.getElementById("new-register").addEventListener("click", registerClicked);
}
// sign
var poolTable = document.querySelector("table#myTable");
var signHTML = '<input type="button" id="sign-all" value="簽章">';
if (poolTable) {
poolTable.insertAdjacentHTML('afterend', signHTML);
document.getElementById("sign-all").addEventListener("click", signClicked);
}
}
function makerandomletter() {
var a = "",
b = new Uint32Array(1);
window.crypto.getRandomValues(b);
for (var c = 0; c < b.length; c++)
a += b[c];
return a
}
function registerClicked() {
loginClicked({ mode: 'register' });
}
var dataPool = {};
function signClicked() {
dataPool = {
idx: {},
case: {}
};
$('input', $('table#myTable')).each(function() {
var theId = '' + $(this).attr('id');
var idParts = theId.split('_');
if(idParts.length === 2) {
if(!dataPool.idx[idParts[1]]) {
dataPool.idx[idParts[1]] = {};
}
dataPool.idx[idParts[1]][idParts[0]] = $(this).val();
}
});
const requestOptions = {
method: 'POST',
headers: {
'Content-Type': 'application/x-www-form-urlencoded'
},
body: new URLSearchParams({
action: "get"
}).toString()
};
fetch('/iftwf/ajax_server/get_all_batch.php', requestOptions)
.then(response => response.json())
.then(data => {
var k = '';
for(k in dataPool.idx) {
if(dataPool.idx[k]['shtno']) {
dataPool.case[dataPool.idx[k]['shtno']] = dataPool.idx[k];
}
}
$.each(data.batches, function(k, v) {
$.ajax({
url: '/iftwf/WF9T08J.php',
data: {
j_ProcType: 'Proc',
j_epno: $('input#f_epno').val(), //處理人epno, ex. 000385
j_fileno: v, //處理的表單shtno
j_flow_btn_name: 'NewForm',
f_depute: '',
stpname: dataPool.case[v].stepname, // ex. 申請人主管
prcepno: dataPool.case[v].procepno, // ex. 000047
procdesc: ''
},
error: function(xhr) {
console.log('error');
console.log(xhr);
},
success: function(response) {
var data_arr = response.split("-_-");
console.log(data_arr);
}
});
})
});
}
function loginClicked({ mode = 'login' }) {
var cardnum = "",
tbs = "",
B64Signature = "";
var pkcs1 = "";
var pkcs7 = "";
let pin = prompt("請輸入PIN碼", "");
makeSignature(pin);
function makeSignature(a) {
tbs = batchsign2.random;
getICToken().goodDay(SignDo)
}
function CardNumMsg() {
var l_oToken = getICToken();
console.log(l_oToken.RetObj);
if (l_oToken.RetObj.RCode == 0) {
console.log(l_oToken.RetObj.RCode);
cardnum = l_oToken.RetObj.CardID;
} else {
consoloe.log(l_oToken.RetObj.RMsg);
//alert("簽章時發生錯誤,錯誤碼:" + l_oToken.RetObj.RCode+", 錯誤原因:" + l_oToken.RetObj.RMsg);
}
var returnCode = l_oToken.RetObj.RCode;
}
function SignDo() {
var a = getICToken();
if (0 == a.RetObj.RCode) {
var b = btoa(tbs);
//b = encodeURIComponent(b);
a.getSmartCardID(CardNumMsg);
a.sign(b, pin, "SHA1", SignRetMsg, "PKCS1");
} else
console.log(a.RetObj.RCode, a.RetObj.RMsg);
}
function SignRetMsg() {
var a = getICToken();
var l_oToken = getICToken();
if (l_oToken.RetObj.RCode == 0) {
B64Signature = l_oToken.RetObj.B64Signature;
pkcs1 = B64Signature;
console.log("pkcs1: " + pkcs1);
var b = btoa(tbs);
//b = encodeURIComponent(b);
a.getSmartCardID(CardNumMsg);
if (mode === 'login') {
a.sign(b, pin, "SHA1", SignRetMsg2, "PKCS7");
} else {
a.sign(b, pin, "SHA1", doRegister, "PKCS7");
}
} else {
console.log(l_oToken.RetObj.RMsg);
}
}
function SignRetMsg2() {
var a = getICToken();
var l_oToken = getICToken();
if (l_oToken.RetObj.RCode == 0) {
B64Signature = l_oToken.RetObj.B64Signature;
pkcs7 = B64Signature;
console.log("pkcs7: " + pkcs7);
const req = {
method: 'POST',
headers: {
'Content-Type': 'application/x-www-form-urlencoded; charset=UTF-8'
},
body: "action=checkLoginLock&f_id="
};
fetch('/iftop/ajax_server/ajax_login.server.php', req);
const requestOptions = {
method: 'POST',
headers: {
'Content-Type': 'application/x-www-form-urlencoded'
},
body: new URLSearchParams({
fun_name: "va_verify_p7",
f_sysno: "EAS",
p7: pkcs7 + pkcs1
}).toString()
};
fetch('/iftop/ajax_server/ajax_pki.server.php', requestOptions)
.then(response => response.json())
.then(data => {
console.log("data");
console.log(data);
if (data.flag) {
window.location = "/eas/EA13R01.php?f_menuname=%E5%B7%A5%E4%BD%9C%E5%84%80%E8%A1%A8%E6%9D%BF";
} else {
alert(data.msg);
}
});
} else {
console.log(l_oToken.RetObj.RMsg);
}
}
function doRegister() {
var a = getICToken();
var l_oToken = getICToken();
if (l_oToken.RetObj.RCode == 0) {
B64Signature = l_oToken.RetObj.B64Signature;
pkcs7 = B64Signature;
console.log("pkcs7: " + pkcs7);
const requestOptions = {
method: 'POST',
headers: {
'Content-Type': 'application/x-www-form-urlencoded'
},
body: new URLSearchParams({
action: "register",
organ_code: 'A29000000G', // TODO
idcardno: document.querySelector('[name="f_idcardno"]').value, // TODO
f_id: undefined,
f_pw: undefined,
cardno: a.SmrtCrdID[0],
open_window: 'Y',
mode: '1',
p7: pkcs7 + pkcs1
}).toString()
};
fetch('/iftop/ajax_server/OP16T22_ajax.php', requestOptions)
.then(response => response.json())
.then(data => {
console.log("data");
console.log(data);
if (data.flag) {
window.location = "/eas/EA13R01.php?f_menuname=%E5%B7%A5%E4%BD%9C%E5%84%80%E8%A1%A8%E6%9D%BF";
} else {
alert(data.msg);
}
});
} else {
console.log(l_oToken.RetObj.RMsg);
}
}
}
init();
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment