Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
$yx = $this->oauthUtility->getOAuthClientApps(); $jq = null; for..
Decoded Output download
<? $yx = $this->oauthUtility->getOAuthClientApps();
$jq = null;
foreach ($yx as $Rm) {
$Xo = $Rm->getData()["app_name"];
$this->oauthUtility->setSessionData(OAuthConstants::APP_NAME, $Xo);
$this->oauthUtility->setAdminSessionData(OAuthConstants::APP_NAME, $Xo);
$jq = $Rm->getData();
lx:
}
wS:
if (!isset($jq["grant_type"])) {
goto n7;
}
$this->oauthUtility->setAdminSessionData("admin_post_logout", 1);
$Bl = $jq["grant_type"];
$L5 = $jq["clientID"];
$td = $jq["client_secret"];
$wm = $jq["access_token_endpoint"];
$Ys = $jq["scope"];
$zf = $jq["values_in_header"];
$Er = $jq["values_in_body"];
$xX = $this->oauthUtility->getCallBackUrl();
if (!($Bl == "password_grant")) {
goto wQ;
}
$x8 = $this->getRequest()->getParams();
$RP = null;
if (!isset($x8["Response"])) {
goto Bh;
}
$RP = $x8["Response"];
Bh:
$hq = $this->oauthUtility->getAdminBaseUrl();
$this->setrelaystate = $this->oauthUtility->getAdminBaseUrl();
if ($RP) {
goto NU;
}
if ($zf == 0 && $Er == 1) {
goto nE;
}
$vm = (new AccessTokenRequestBodyForPasswordGrant($Bl, $xX, $Ba, $mU, $Ys))->build();
goto sL;
nE:
$vm = (new AccessTokenRequestForPasswordGrant($L5, $td, $Bl, $xX, $Ba, $mU, $Ys))->build();
sL:
$this->oauthUtility->log_debug("ReadAuthorizationResponse: accessTokenRequestForPasswordGrant", $vm);
$RP = Curl::mo_send_access_token_request_for_password_grant($vm, $wm, $L5, $td, $Ba, $mU, $zf, $Er);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: accessTokenResponseForPasswordGrant", $RP);
NU:
$this->setrelaystate = $this->oauthUtility->getAdminBaseUrl();
if (!isset($x8["relayState"])) {
goto jU;
}
$this->setrelaystate = $x8["relayState"];
jU:
$this->mo_send_user_info_request($RP, $jq, $this->setrelaystate);
wQ:
n7:
return [$Ba, $mU];
}
public function execute()
{
if (!$this->oauthUtility->isTrialExpired()) {
goto lm;
}
$this->oauthUtility->log_debug("ProcessUserAction: execute : Your demo account has expired.");
print_r("Your Demo account has expired. Please contact to [email protected]");
exit;
lm:
$x8 = $this->getRequest()->getParams();
$Xo = $this->oauthUtility->getSessionData(OAuthConstants::APP_NAME);
$yx = $this->oauthUtility->getOAuthClientApps();
$jq = null;
foreach ($yx as $Rm) {
if (!($Rm->getData()["app_name"] === $Xo)) {
goto Jz;
}
$jq = $Rm->getData();
Jz:
SZ:
}
Ns:
$Bl = $jq["grant_type"];
$this->oauthUtility->log_debug("ReadAuthorizationResponse: execute");
$L5 = $jq["clientID"];
$td = $jq["client_secret"];
$wm = $jq["access_token_endpoint"];
$Ys = $jq["scope"];
$zf = $jq["values_in_header"];
$Er = $jq["values_in_body"];
$xX = $this->oauthUtility->getCallBackUrl();
$this->oauthUtility->log_debug("ReadAuthorizationResponse: clientID " . $L5);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: clientSecret " . $td);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: grantType " . $Bl);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: redirectURL " . $xX);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: accessTokenURL " . $wm);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: header" . $zf);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: body" . $Er);
if (!is_null($Bl)) {
goto Kp;
}
$Bl = "authorization_code";
Kp:
if ($Bl == "authorization_code") {
goto Dm;
}
if ($Bl == "password_grant") {
goto wC;
}
if ($Bl == "implicit_grant") {
goto h0;
}
if ($Bl == "hybrid_grant") {
goto Y2;
}
if ($Bl == "client_credentials_grant") {
goto F8;
}
goto pg;
Dm:
if (isset($x8["code"])) {
goto g9;
}
$this->oauthUtility->log_debug("ReadAuthorizationResponse: params['code'] not set");
if (!isset($x8["error"])) {
goto lg;
}
return $this->sendHTTPRedirectRequest("?error=" . urlencode($x8["error"]), $this->oauthUtility->getBaseUrl());
lg:
return $this->sendHTTPRedirectRequest("?error=code+not+received", $this->oauthUtility->getBaseUrl());
g9:
$LQ = $x8["code"];
$hq = $x8["state"];
$this->setrelaystate = $x8["state"];
$this->oauthUtility->log_debug("ReadAuthorizationResponse: authorizationCode" . $LQ);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: relayState" . $hq);
$vD = $jq["pkce_flow"] === "1" ? true : false;
$Tk = '';
if (!$vD) {
goto FV;
}
if (isset($_SESSION["mo_code_verifier"])) {
goto C7;
}
return $this->getResponse()->setBody("Something went wrong. PKCE Code verifier not found in session please try again");
C7:
$Tk = $_SESSION["mo_code_verifier"];
FV:
if ($zf == 0 && $Er == 1) {
goto IJ;
}
$vm = (new AccessTokenRequestBody($L5, $Bl, $xX, $LQ, $vD, $Tk))->build();
goto pi;
IJ:
$vm = (new AccessTokenRequest($L5, $td, $Bl, $xX, $LQ, $vD, $Tk))->build();
pi:
$this->oauthUtility->log_debug("ReadAuthorizationResponse: accessTokenRequest" . json_encode($vm));
$RP = Curl::mo_send_access_token_request($vm, $wm, $L5, $td, $zf, $Er);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: accessTokenResponse" . json_encode($RP));
goto pg;
wC:
$x8 = $this->getRequest()->getParams();
$this->setrelaystate = $this->oauthUtility->getBaseUrl();
if (!isset($x8["relayState"])) {
goto Tj;
}
$this->setrelaystate = $x8["relayState"];
Tj:
$RP = null;
$Vq = $this->getRequest()->getPost("login");
$Ba = $this->oauthUtility->getSessionData(OAuthConstants::USERNAME);
$mU = $this->oauthUtility->getSessionData(OAuthConstants::PASSWORD);
$this->oauthUtility->unsetSessionData(OAuthConstants::PASSWORD);
$this->oauthUtility->unsetSessionData(OAuthConstants::USERNAME);
$Ba = $this->oauthUtility->getSessionData(OAuthConstants::USERNAME);
$mU = $this->oauthUtility->getSessionData(OAuthConstants::PASSWORD);
if (!(isset($x8["relayState"]) && $x8["relayState"] == OAuthConstants::TEST_RELAYSTATE)) {
goto qe;
}
$Ba = $x8["username"];
$mU = $x8["password"];
qe:
if ($RP) {
goto mn;
}
if ($zf == 0 && $Er == 1) {
goto Z7;
}
$vm = (new AccessTokenRequestBodyForPasswordGrant($Bl, $xX, $Ba, $mU, $Ys))->build();
goto y1;
Z7:
$vm = (new AccessTokenRequestForPasswordGrant($L5, $td, $Bl, $xX, $Ba, $mU, $Ys))->build();
y1:
$this->oauthUtility->log_debug("ReadAuthorizationResponse: accessTokenRequestForPasswordGrant", $vm);
$RP = Curl::mo_send_access_token_request_for_password_grant($vm, $wm, $L5, $td, $Ba, $mU, $zf, $Er);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: accessTokenResponseForPasswordGrant", $RP);
mn:
goto pg;
h0:
goto pg;
Y2:
goto pg;
F8:
pg:
$this->mo_send_user_info_request($RP, $jq, $this->setrelaystate);
}
public function mo_send_user_info_request($RP, $jq, $hq)
{
$JL = json_decode($RP, "true");
$this->oauthUtility->log_debug("ReadAuthorizationResponse: accessTokenResponseData" . json_encode($JL));
if (!isset($JL["id_token"])) {
goto iG;
}
$c1 = $JL["id_token"];
$this->oauthUtility->log_debug("ReadAuthorizationResponse: idToken: " . $c1);
$this->oauthUtility->setSessionData(OAuthConstants::ID_TOKEN, $c1);
$this->oauthUtility->setAdminSessionData(OAuthConstants::ID_TOKEN, $c1);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: idToken stored: " . $c1);
iG:
$J3 = $jq["user_info_endpoint"];
if (!($J3 == NULL || $J3 == '') && isset($JL["access_token"])) {
goto nz;
}
if (isset($JL["id_token"])) {
goto oJ;
}
if (isset($JL["error"])) {
goto Ft;
}
$this->oauthUtility->log_debug("ReadAuthorizationResponse: accessTokenResponseData", $JL);
$SW = false;
$DH = false;
$DH = $this->oauthUtility->checkIfFlowStartedFromBackend($this->setrelaystate);
if ($DH) {
goto WL;
}
$Ba = $this->oauthUtility->getSessionData(OAuthConstants::USERNAME);
$mU = $this->oauthUtility->getSessionData(OAuthConstants::PASSWORD);
try {
$KA = $this->customerAccountManagement->authenticate($Ba, $mU);
} catch (\Exception $zQ) {
$this->messageManager->addErrorMessage("You did not sign in correctly or your account is temporarily disabled.");
return $this->getResponse()->setRedirect($this->oauthUtility->getBaseUrl() . "customer/account/login")->sendResponse();
}
$this->session->setCustomerDataAsLoggedIn($KA);
$this->session->regenerateId();
return $this->getResponse()->setRedirect($this->oauthUtility->getBaseUrl())->sendResponse();
WL:
return $this->getResponse()->setBody("Invalid response. Please try again.|M002. User Info Responce Data is empty.");
goto NW;
nz:
$this->oauthUtility->log_debug("ReadAuthorizationResponse: accessTokenResponseData['access_token'] is set");
$CA = $JL["access_token"];
$this->oauthUtility->log_debug("ReadAuthorizationResponse: accessToken: " . $CA);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: userInfoURL: " . $J3);
if (!($J3 == NULL || $J3 == '')) {
goto h5;
}
return $this->getResponse()->setBody("Invalid response. Please enter User Info URL.");
h5:
$zf = "Bearer " . $CA;
$lR = ["Authorization: {$zf}"];
$n8 = Curl::mo_send_user_info_request($J3, $lR);
$iK = json_decode($n8, "true");
$this->oauthUtility->log_debug("ReadAuthorizationResponse: userInfoResponse" . json_encode($n8));
goto NW;
oJ:
$this->oauthUtility->log_debug("ReadAuthorizationResponse: if accessTokenResponseData['id_token'] ");
if (empty($c1)) {
goto os;
}
$tF = $jq["jwks_endpoint"];
$DB = explode(".", $c1);
$Bg = $this->decodeJWT($c1);
$this->oauthUtility->log_debug("ReadAuthorizationResponse: idTokenArray", json_encode($DB));
if (sizeof($DB) > 2) {
goto iJ;
}
$this->oauthUtility->log_debug("ReadAuthorizationResponse: idTokenArray" . json_encode($DB));
return $this->getResponse()->setBody("Invalid response. Please try again.|M001. ");
goto OE;
iJ:
if (empty($tF)) {
goto qo;
}
$HC = trim($tF);
$bT = new JWTUtils($c1);
$eB = json_decode(file_get_contents($HC))->keys[0];
if ($bT->verify_from_jwks($HC)) {
goto NG;
}
return $this->getResponse()->setBody("Invalid signature received.");
NG:
qo:
$iK = $DB[1];
$iK = (array) json_decode(base64_decode($iK));
$this->oauthUtility->log_debug("ReadAuthorizationResponse: userInfoResponseData" . json_encode($iK));
OE:
os:
goto NW;
Ft:
if (isset($JL["error_description"])) {
goto vL;
}
return $this->getResponse()->setBody("Invalid response. Please try again.|M001. User Info Responce Data is empty.");
goto X1;
vL:
return $this->getResponse()->setBody($JL["error_description"]);
X1:
NW:
if (!empty($iK)) {
goto Oc;
}
return $this->getResponse()->setBody("Invalid response. Please try again.|M003. User Info Responce Data is empty.");
Oc:
$iK["relayState"] = $hq;
?>
Did this file decode correctly?
Original Code
$yx = $this->oauthUtility->getOAuthClientApps();
$jq = null;
foreach ($yx as $Rm) {
$Xo = $Rm->getData()["\141\160\x70\x5f\x6e\x61\x6d\145"];
$this->oauthUtility->setSessionData(OAuthConstants::APP_NAME, $Xo);
$this->oauthUtility->setAdminSessionData(OAuthConstants::APP_NAME, $Xo);
$jq = $Rm->getData();
lx:
}
wS:
if (!isset($jq["\147\162\141\156\164\137\164\x79\x70\145"])) {
goto n7;
}
$this->oauthUtility->setAdminSessionData("\141\144\x6d\x69\156\137\x70\157\163\x74\x5f\154\157\x67\x6f\x75\x74", 1);
$Bl = $jq["\147\x72\141\156\x74\137\x74\171\x70\x65"];
$L5 = $jq["\143\154\151\145\x6e\x74\111\x44"];
$td = $jq["\x63\x6c\x69\145\156\x74\137\x73\145\x63\x72\x65\x74"];
$wm = $jq["\141\143\143\x65\163\163\x5f\164\x6f\x6b\x65\156\137\145\x6e\144\160\x6f\151\x6e\164"];
$Ys = $jq["\163\x63\x6f\x70\x65"];
$zf = $jq["\166\x61\x6c\165\145\x73\137\151\x6e\x5f\150\x65\x61\144\x65\162"];
$Er = $jq["\x76\141\154\x75\x65\x73\137\x69\156\137\142\157\144\171"];
$xX = $this->oauthUtility->getCallBackUrl();
if (!($Bl == "\x70\141\163\x73\x77\x6f\162\144\137\147\x72\x61\x6e\164")) {
goto wQ;
}
$x8 = $this->getRequest()->getParams();
$RP = null;
if (!isset($x8["\122\145\163\x70\x6f\x6e\x73\x65"])) {
goto Bh;
}
$RP = $x8["\x52\145\163\x70\157\156\163\145"];
Bh:
$hq = $this->oauthUtility->getAdminBaseUrl();
$this->setrelaystate = $this->oauthUtility->getAdminBaseUrl();
if ($RP) {
goto NU;
}
if ($zf == 0 && $Er == 1) {
goto nE;
}
$vm = (new AccessTokenRequestBodyForPasswordGrant($Bl, $xX, $Ba, $mU, $Ys))->build();
goto sL;
nE:
$vm = (new AccessTokenRequestForPasswordGrant($L5, $td, $Bl, $xX, $Ba, $mU, $Ys))->build();
sL:
$this->oauthUtility->log_debug("\122\x65\141\x64\x41\165\164\150\157\162\151\172\x61\x74\151\x6f\x6e\x52\x65\x73\x70\x6f\156\x73\145\72\x20\141\x63\x63\x65\x73\x73\x54\157\x6b\145\x6e\x52\145\161\x75\145\163\x74\106\157\x72\120\x61\x73\x73\167\157\162\x64\107\x72\141\156\x74", $vm);
$RP = Curl::mo_send_access_token_request_for_password_grant($vm, $wm, $L5, $td, $Ba, $mU, $zf, $Er);
$this->oauthUtility->log_debug("\x52\x65\141\144\101\165\164\150\x6f\x72\x69\172\x61\x74\x69\157\x6e\122\145\x73\160\157\156\x73\145\72\40\141\143\143\x65\x73\163\x54\x6f\x6b\x65\x6e\x52\145\x73\x70\x6f\x6e\x73\145\x46\157\162\x50\x61\163\163\167\157\162\x64\x47\x72\141\156\x74", $RP);
NU:
$this->setrelaystate = $this->oauthUtility->getAdminBaseUrl();
if (!isset($x8["\x72\145\154\x61\171\x53\x74\141\x74\145"])) {
goto jU;
}
$this->setrelaystate = $x8["\x72\145\154\x61\171\x53\164\x61\164\x65"];
jU:
$this->mo_send_user_info_request($RP, $jq, $this->setrelaystate);
wQ:
n7:
return [$Ba, $mU];
}
public function execute()
{
if (!$this->oauthUtility->isTrialExpired()) {
goto lm;
}
$this->oauthUtility->log_debug("\120\162\157\143\145\163\x73\125\163\x65\162\x41\x63\x74\151\x6f\156\72\x20\x65\170\145\x63\x75\x74\145\40\x3a\x20\x59\x6f\x75\x72\x20\x64\x65\155\157\40\x61\x63\143\157\165\x6e\x74\x20\150\141\163\40\145\x78\160\151\x72\145\x64\x2e");
print_r("\x59\x6f\165\162\x20\104\145\x6d\157\x20\141\143\x63\x6f\165\x6e\164\x20\x68\x61\163\x20\145\x78\160\151\x72\145\144\56\x20\x50\x6c\145\141\x73\x65\x20\x63\157\x6e\164\141\x63\164\x20\164\x6f\40\x6d\x61\x67\x65\x6e\x74\x6f\x73\x75\x70\x70\157\x72\164\100\x78\x65\x63\165\162\151\146\171\x2e\143\157\x6d");
exit;
lm:
$x8 = $this->getRequest()->getParams();
$Xo = $this->oauthUtility->getSessionData(OAuthConstants::APP_NAME);
$yx = $this->oauthUtility->getOAuthClientApps();
$jq = null;
foreach ($yx as $Rm) {
if (!($Rm->getData()["\x61\160\160\137\x6e\141\155\x65"] === $Xo)) {
goto Jz;
}
$jq = $Rm->getData();
Jz:
SZ:
}
Ns:
$Bl = $jq["\x67\x72\x61\x6e\164\137\164\x79\160\x65"];
$this->oauthUtility->log_debug("\x52\145\x61\144\101\x75\164\x68\x6f\x72\x69\172\x61\164\151\157\156\x52\x65\163\x70\157\x6e\x73\145\x3a\x20\145\x78\x65\143\x75\164\x65");
$L5 = $jq["\x63\x6c\x69\x65\x6e\164\x49\104"];
$td = $jq["\x63\154\x69\145\x6e\x74\137\x73\145\143\x72\x65\x74"];
$wm = $jq["\141\143\143\x65\163\x73\x5f\x74\157\x6b\145\156\x5f\145\x6e\x64\x70\157\151\156\164"];
$Ys = $jq["\163\143\157\160\x65"];
$zf = $jq["\166\x61\154\165\145\163\x5f\151\x6e\137\x68\145\141\x64\x65\x72"];
$Er = $jq["\166\141\x6c\x75\x65\163\x5f\151\x6e\137\142\157\x64\171"];
$xX = $this->oauthUtility->getCallBackUrl();
$this->oauthUtility->log_debug("\x52\x65\141\144\101\165\164\x68\157\x72\x69\x7a\141\x74\x69\x6f\x6e\122\145\163\x70\157\156\x73\x65\x3a\x20\143\154\151\x65\x6e\164\111\x44\40" . $L5);
$this->oauthUtility->log_debug("\122\x65\x61\144\x41\165\164\x68\x6f\x72\151\x7a\141\164\151\157\156\x52\x65\x73\x70\x6f\x6e\x73\x65\72\x20\x63\x6c\x69\x65\x6e\164\123\x65\143\x72\x65\164\40" . $td);
$this->oauthUtility->log_debug("\x52\x65\x61\144\101\x75\164\x68\157\x72\151\172\141\x74\151\x6f\156\x52\145\163\x70\157\x6e\163\x65\72\40\x67\162\141\x6e\x74\x54\171\x70\x65\40" . $Bl);
$this->oauthUtility->log_debug("\122\x65\141\144\101\165\164\x68\157\162\x69\x7a\141\x74\151\157\156\122\145\x73\x70\x6f\x6e\x73\145\x3a\x20\162\x65\x64\151\162\145\143\x74\x55\122\114\40" . $xX);
$this->oauthUtility->log_debug("\122\145\141\144\x41\x75\x74\150\x6f\162\x69\172\x61\x74\x69\157\156\122\x65\163\x70\x6f\x6e\163\x65\72\40\x61\x63\x63\x65\x73\x73\124\157\153\x65\x6e\x55\122\114\40" . $wm);
$this->oauthUtility->log_debug("\122\145\141\x64\101\x75\x74\x68\157\x72\x69\172\x61\x74\x69\157\x6e\122\x65\x73\160\x6f\156\x73\x65\x3a\x20\x68\x65\141\144\x65\162" . $zf);
$this->oauthUtility->log_debug("\122\x65\141\144\x41\x75\x74\x68\157\x72\151\x7a\141\x74\x69\157\156\x52\145\x73\x70\157\x6e\x73\145\x3a\x20\142\x6f\144\171" . $Er);
if (!is_null($Bl)) {
goto Kp;
}
$Bl = "\141\x75\x74\x68\x6f\162\151\x7a\141\164\x69\157\x6e\137\x63\x6f\144\145";
Kp:
if ($Bl == "\x61\x75\x74\x68\x6f\162\x69\x7a\141\164\151\157\x6e\x5f\143\157\x64\x65") {
goto Dm;
}
if ($Bl == "\160\141\163\163\167\157\x72\144\x5f\147\x72\x61\x6e\164") {
goto wC;
}
if ($Bl == "\x69\x6d\160\x6c\x69\x63\151\x74\x5f\147\162\141\x6e\x74") {
goto h0;
}
if ($Bl == "\150\171\x62\162\151\x64\x5f\x67\x72\141\x6e\x74") {
goto Y2;
}
if ($Bl == "\143\x6c\x69\145\x6e\164\137\143\x72\x65\x64\x65\156\x74\x69\141\154\163\x5f\147\x72\x61\156\164") {
goto F8;
}
goto pg;
Dm:
if (isset($x8["\143\x6f\144\x65"])) {
goto g9;
}
$this->oauthUtility->log_debug("\122\x65\141\144\x41\165\164\x68\x6f\x72\151\172\x61\x74\x69\157\156\x52\x65\163\x70\x6f\x6e\163\x65\72\40\160\x61\162\141\x6d\x73\133\47\x63\x6f\x64\145\x27\x5d\40\156\x6f\164\x20\x73\145\164");
if (!isset($x8["\x65\x72\x72\157\162"])) {
goto lg;
}
return $this->sendHTTPRedirectRequest("\77\x65\162\162\x6f\162\x3d" . urlencode($x8["\145\x72\x72\157\x72"]), $this->oauthUtility->getBaseUrl());
lg:
return $this->sendHTTPRedirectRequest("\x3f\145\x72\162\x6f\x72\x3d\x63\157\x64\145\x2b\156\x6f\164\53\162\x65\x63\145\151\x76\x65\x64", $this->oauthUtility->getBaseUrl());
g9:
$LQ = $x8["\143\157\144\145"];
$hq = $x8["\x73\164\141\164\x65"];
$this->setrelaystate = $x8["\163\164\x61\164\145"];
$this->oauthUtility->log_debug("\122\145\x61\x64\101\165\x74\150\x6f\x72\x69\172\x61\164\x69\157\156\122\x65\x73\160\x6f\x6e\x73\x65\72\40\141\165\x74\x68\x6f\x72\x69\x7a\x61\x74\x69\x6f\x6e\103\157\x64\145" . $LQ);
$this->oauthUtility->log_debug("\x52\145\x61\x64\x41\165\x74\x68\x6f\x72\x69\x7a\141\x74\x69\157\x6e\x52\x65\163\160\x6f\156\x73\145\72\40\x72\145\x6c\141\x79\x53\x74\x61\x74\145" . $hq);
$vD = $jq["\160\153\x63\145\137\146\154\x6f\167"] === "\x31" ? true : false;
$Tk = '';
if (!$vD) {
goto FV;
}
if (isset($_SESSION["\155\157\x5f\143\x6f\144\145\137\166\145\x72\151\x66\x69\x65\x72"])) {
goto C7;
}
return $this->getResponse()->setBody("\123\157\155\145\x74\150\151\x6e\x67\40\x77\145\x6e\x74\x20\x77\x72\x6f\x6e\x67\x2e\x20\120\x4b\103\105\40\103\157\x64\x65\40\166\145\x72\151\146\151\145\162\40\x6e\157\164\x20\146\x6f\x75\156\144\x20\151\x6e\40\x73\145\163\163\151\x6f\x6e\x20\160\154\145\141\163\145\x20\x74\x72\x79\x20\141\147\x61\151\x6e");
C7:
$Tk = $_SESSION["\x6d\157\137\x63\157\144\x65\137\166\x65\162\151\x66\x69\x65\162"];
FV:
if ($zf == 0 && $Er == 1) {
goto IJ;
}
$vm = (new AccessTokenRequestBody($L5, $Bl, $xX, $LQ, $vD, $Tk))->build();
goto pi;
IJ:
$vm = (new AccessTokenRequest($L5, $td, $Bl, $xX, $LQ, $vD, $Tk))->build();
pi:
$this->oauthUtility->log_debug("\122\145\141\x64\101\x75\x74\x68\x6f\x72\x69\x7a\141\164\151\x6f\x6e\x52\145\x73\160\x6f\x6e\163\145\x3a\40\x61\x63\143\x65\163\x73\124\157\x6b\x65\x6e\122\x65\x71\165\145\x73\x74" . json_encode($vm));
$RP = Curl::mo_send_access_token_request($vm, $wm, $L5, $td, $zf, $Er);
$this->oauthUtility->log_debug("\122\x65\141\144\101\x75\164\150\157\x72\151\172\141\x74\x69\157\156\122\145\163\160\x6f\x6e\x73\x65\72\x20\141\143\x63\x65\163\x73\124\x6f\x6b\145\156\122\145\x73\160\x6f\x6e\x73\x65" . json_encode($RP));
goto pg;
wC:
$x8 = $this->getRequest()->getParams();
$this->setrelaystate = $this->oauthUtility->getBaseUrl();
if (!isset($x8["\162\x65\154\141\171\123\x74\141\164\145"])) {
goto Tj;
}
$this->setrelaystate = $x8["\162\145\x6c\141\171\123\x74\x61\164\145"];
Tj:
$RP = null;
$Vq = $this->getRequest()->getPost("\154\x6f\x67\151\156");
$Ba = $this->oauthUtility->getSessionData(OAuthConstants::USERNAME);
$mU = $this->oauthUtility->getSessionData(OAuthConstants::PASSWORD);
$this->oauthUtility->unsetSessionData(OAuthConstants::PASSWORD);
$this->oauthUtility->unsetSessionData(OAuthConstants::USERNAME);
$Ba = $this->oauthUtility->getSessionData(OAuthConstants::USERNAME);
$mU = $this->oauthUtility->getSessionData(OAuthConstants::PASSWORD);
if (!(isset($x8["\x72\x65\154\141\x79\x53\164\141\164\145"]) && $x8["\x72\x65\x6c\x61\x79\123\164\141\164\145"] == OAuthConstants::TEST_RELAYSTATE)) {
goto qe;
}
$Ba = $x8["\165\x73\145\162\156\141\x6d\x65"];
$mU = $x8["\160\141\x73\163\167\x6f\162\144"];
qe:
if ($RP) {
goto mn;
}
if ($zf == 0 && $Er == 1) {
goto Z7;
}
$vm = (new AccessTokenRequestBodyForPasswordGrant($Bl, $xX, $Ba, $mU, $Ys))->build();
goto y1;
Z7:
$vm = (new AccessTokenRequestForPasswordGrant($L5, $td, $Bl, $xX, $Ba, $mU, $Ys))->build();
y1:
$this->oauthUtility->log_debug("\x52\145\141\144\x41\x75\x74\150\157\162\151\x7a\141\164\151\157\x6e\x52\145\x73\160\x6f\156\163\x65\72\x20\141\x63\x63\x65\x73\163\x54\157\153\x65\156\x52\x65\161\165\x65\x73\164\x46\157\x72\x50\x61\x73\163\x77\x6f\162\x64\x47\x72\x61\156\164", $vm);
$RP = Curl::mo_send_access_token_request_for_password_grant($vm, $wm, $L5, $td, $Ba, $mU, $zf, $Er);
$this->oauthUtility->log_debug("\122\x65\x61\144\x41\165\164\x68\157\x72\x69\x7a\141\x74\151\157\x6e\x52\145\x73\160\157\x6e\x73\145\x3a\x20\x61\143\143\145\x73\x73\x54\x6f\153\145\156\x52\x65\x73\160\157\156\163\145\x46\157\x72\120\141\x73\163\167\x6f\x72\x64\x47\162\141\x6e\164", $RP);
mn:
goto pg;
h0:
goto pg;
Y2:
goto pg;
F8:
pg:
$this->mo_send_user_info_request($RP, $jq, $this->setrelaystate);
}
public function mo_send_user_info_request($RP, $jq, $hq)
{
$JL = json_decode($RP, "\x74\x72\x75\145");
$this->oauthUtility->log_debug("\122\x65\141\144\101\x75\164\x68\157\x72\151\172\141\164\151\157\156\122\x65\x73\160\157\156\163\x65\x3a\x20\141\143\143\x65\163\163\x54\x6f\153\x65\x6e\122\145\x73\160\157\x6e\163\145\104\x61\x74\x61" . json_encode($JL));
if (!isset($JL["\151\x64\137\164\157\153\x65\x6e"])) {
goto iG;
}
$c1 = $JL["\x69\144\x5f\x74\157\153\145\x6e"];
$this->oauthUtility->log_debug("\x52\145\x61\x64\101\x75\x74\150\157\162\x69\x7a\141\x74\x69\x6f\156\x52\x65\x73\x70\x6f\x6e\163\x65\72\x20\x69\144\124\x6f\x6b\145\156\x3a\40" . $c1);
$this->oauthUtility->setSessionData(OAuthConstants::ID_TOKEN, $c1);
$this->oauthUtility->setAdminSessionData(OAuthConstants::ID_TOKEN, $c1);
$this->oauthUtility->log_debug("\122\x65\x61\x64\x41\165\x74\150\x6f\162\151\x7a\x61\164\x69\x6f\156\122\x65\163\x70\x6f\x6e\x73\x65\72\40\x69\144\x54\157\x6b\145\x6e\40\163\164\157\x72\x65\144\x3a\40" . $c1);
iG:
$J3 = $jq["\x75\x73\145\162\137\x69\156\x66\x6f\x5f\145\156\144\160\157\151\x6e\164"];
if (!($J3 == NULL || $J3 == '') && isset($JL["\x61\143\143\145\163\x73\x5f\164\x6f\153\x65\156"])) {
goto nz;
}
if (isset($JL["\x69\144\x5f\x74\157\x6b\x65\x6e"])) {
goto oJ;
}
if (isset($JL["\145\162\162\157\x72"])) {
goto Ft;
}
$this->oauthUtility->log_debug("\x52\x65\x61\x64\x41\x75\164\x68\157\162\x69\x7a\141\164\151\x6f\156\122\x65\x73\x70\157\156\163\x65\x3a\x20\141\143\143\x65\x73\163\124\157\153\x65\156\x52\145\x73\x70\x6f\x6e\x73\x65\104\x61\x74\x61", $JL);
$SW = false;
$DH = false;
$DH = $this->oauthUtility->checkIfFlowStartedFromBackend($this->setrelaystate);
if ($DH) {
goto WL;
}
$Ba = $this->oauthUtility->getSessionData(OAuthConstants::USERNAME);
$mU = $this->oauthUtility->getSessionData(OAuthConstants::PASSWORD);
try {
$KA = $this->customerAccountManagement->authenticate($Ba, $mU);
} catch (\Exception $zQ) {
$this->messageManager->addErrorMessage("\131\157\165\40\x64\151\x64\40\156\x6f\x74\40\163\151\x67\156\40\151\x6e\x20\143\x6f\x72\x72\x65\x63\164\154\x79\40\x6f\162\40\x79\157\165\x72\x20\141\x63\x63\x6f\x75\x6e\x74\40\151\x73\40\164\x65\x6d\160\157\x72\141\162\x69\154\171\x20\144\151\163\x61\142\154\145\x64\56");
return $this->getResponse()->setRedirect($this->oauthUtility->getBaseUrl() . "\143\165\x73\164\157\155\x65\x72\x2f\x61\x63\x63\x6f\165\x6e\x74\x2f\x6c\157\147\x69\x6e")->sendResponse();
}
$this->session->setCustomerDataAsLoggedIn($KA);
$this->session->regenerateId();
return $this->getResponse()->setRedirect($this->oauthUtility->getBaseUrl())->sendResponse();
WL:
return $this->getResponse()->setBody("\x49\156\166\141\x6c\x69\144\x20\x72\145\x73\x70\x6f\x6e\163\145\x2e\40\120\154\x65\141\x73\x65\40\x74\x72\x79\x20\x61\x67\x61\x69\x6e\56\x7c\x4d\60\60\62\x2e\x20\125\x73\x65\x72\x20\x49\156\x66\157\x20\122\x65\163\160\157\156\x63\x65\x20\104\x61\x74\141\40\151\x73\40\x65\x6d\x70\x74\171\56");
goto NW;
nz:
$this->oauthUtility->log_debug("\x52\145\x61\x64\x41\165\164\150\157\162\x69\172\x61\x74\151\x6f\156\122\x65\163\160\x6f\156\163\145\72\x20\141\x63\x63\145\163\x73\x54\157\x6b\145\156\122\145\163\160\157\156\163\145\104\x61\x74\x61\133\47\141\x63\x63\x65\163\x73\137\164\x6f\x6b\145\x6e\47\x5d\40\151\x73\40\163\x65\164");
$CA = $JL["\x61\143\x63\145\163\x73\137\x74\x6f\153\145\156"];
$this->oauthUtility->log_debug("\x52\145\x61\x64\101\x75\164\x68\x6f\162\x69\172\141\x74\x69\x6f\156\122\145\x73\160\157\156\x73\145\72\40\x61\143\x63\x65\x73\163\124\157\x6b\145\x6e\72\x20" . $CA);
$this->oauthUtility->log_debug("\122\145\141\144\101\165\164\x68\157\x72\x69\172\141\164\x69\157\x6e\122\145\x73\160\157\156\x73\145\x3a\x20\165\x73\145\x72\x49\x6e\x66\x6f\125\122\x4c\x3a\40" . $J3);
if (!($J3 == NULL || $J3 == '')) {
goto h5;
}
return $this->getResponse()->setBody("\x49\x6e\x76\x61\154\x69\x64\x20\x72\x65\163\160\157\156\163\x65\x2e\x20\x50\154\x65\141\163\145\40\145\156\x74\145\162\x20\x55\x73\x65\x72\40\111\156\x66\x6f\40\125\122\x4c\56");
h5:
$zf = "\x42\145\141\x72\145\162\40" . $CA;
$lR = ["\x41\165\164\x68\x6f\x72\151\172\x61\164\x69\157\156\x3a\40{$zf}"];
$n8 = Curl::mo_send_user_info_request($J3, $lR);
$iK = json_decode($n8, "\x74\x72\165\145");
$this->oauthUtility->log_debug("\x52\x65\x61\x64\101\165\x74\150\157\162\x69\x7a\x61\x74\151\x6f\x6e\122\x65\x73\x70\157\x6e\x73\145\x3a\x20\x75\163\145\x72\x49\x6e\146\157\x52\x65\x73\x70\157\x6e\x73\145" . json_encode($n8));
goto NW;
oJ:
$this->oauthUtility->log_debug("\x52\x65\x61\144\x41\x75\x74\150\x6f\162\x69\172\141\164\151\x6f\156\x52\x65\x73\160\157\x6e\163\145\72\x20\151\x66\x20\141\143\x63\145\x73\163\124\157\x6b\x65\156\x52\145\163\160\157\x6e\x73\x65\x44\141\x74\x61\x5b\47\151\x64\x5f\x74\157\x6b\x65\156\x27\x5d\x20");
if (empty($c1)) {
goto os;
}
$tF = $jq["\x6a\x77\x6b\163\x5f\x65\156\144\x70\157\151\156\x74"];
$DB = explode("\x2e", $c1);
$Bg = $this->decodeJWT($c1);
$this->oauthUtility->log_debug("\x52\145\x61\x64\x41\165\164\150\157\162\151\172\x61\164\151\x6f\x6e\x52\145\x73\x70\x6f\156\x73\x65\72\40\x69\x64\x54\x6f\x6b\x65\156\x41\162\162\x61\x79", json_encode($DB));
if (sizeof($DB) > 2) {
goto iJ;
}
$this->oauthUtility->log_debug("\x52\145\x61\x64\101\x75\164\x68\x6f\162\151\x7a\141\x74\x69\x6f\x6e\x52\145\x73\x70\x6f\156\x73\145\72\40\x69\144\124\157\153\x65\x6e\101\162\162\141\x79" . json_encode($DB));
return $this->getResponse()->setBody("\x49\156\166\x61\154\151\144\40\162\x65\x73\160\x6f\156\163\145\x2e\x20\x50\154\x65\x61\x73\x65\40\x74\x72\171\x20\x61\x67\x61\x69\x6e\x2e\174\x4d\60\x30\x31\x2e\x20");
goto OE;
iJ:
if (empty($tF)) {
goto qo;
}
$HC = trim($tF);
$bT = new JWTUtils($c1);
$eB = json_decode(file_get_contents($HC))->keys[0];
if ($bT->verify_from_jwks($HC)) {
goto NG;
}
return $this->getResponse()->setBody("\111\x6e\x76\141\154\151\x64\40\x73\151\147\156\141\x74\165\162\x65\40\x72\145\x63\145\x69\x76\145\x64\56");
NG:
qo:
$iK = $DB[1];
$iK = (array) json_decode(base64_decode($iK));
$this->oauthUtility->log_debug("\x52\x65\x61\144\x41\165\164\x68\x6f\x72\x69\x7a\x61\164\151\x6f\156\x52\145\163\x70\x6f\x6e\x73\145\x3a\40\x75\163\145\162\111\156\x66\x6f\x52\145\163\x70\x6f\156\x73\145\x44\x61\164\141" . json_encode($iK));
OE:
os:
goto NW;
Ft:
if (isset($JL["\145\162\162\x6f\162\x5f\144\x65\x73\x63\162\151\160\x74\151\x6f\156"])) {
goto vL;
}
return $this->getResponse()->setBody("\111\x6e\x76\x61\x6c\x69\x64\x20\162\145\163\x70\x6f\156\x73\x65\x2e\x20\x50\154\x65\x61\x73\145\x20\x74\162\x79\40\141\147\x61\x69\x6e\56\x7c\115\x30\x30\61\x2e\x20\125\x73\x65\x72\x20\x49\156\146\x6f\x20\x52\145\x73\x70\157\156\143\x65\x20\104\x61\164\141\40\151\x73\x20\x65\155\160\164\171\56");
goto X1;
vL:
return $this->getResponse()->setBody($JL["\x65\162\162\x6f\x72\x5f\x64\x65\163\x63\x72\151\x70\x74\x69\157\x6e"]);
X1:
NW:
if (!empty($iK)) {
goto Oc;
}
return $this->getResponse()->setBody("\111\156\x76\141\154\x69\x64\40\x72\145\163\x70\157\x6e\x73\x65\x2e\x20\x50\x6c\145\141\x73\x65\40\x74\x72\171\x20\x61\x67\141\x69\x6e\x2e\x7c\x4d\60\60\x33\56\x20\125\163\x65\162\40\111\156\x66\x6f\40\x52\145\x73\160\157\156\x63\x65\40\104\x61\x74\x61\x20\151\x73\40\x65\x6d\x70\164\x79\x2e");
Oc:
$iK["\162\145\154\141\171\123\x74\x61\164\145"] = $hq;
Function Calls
None |
Stats
MD5 | aeb6df7a762ebafddaf6e7934d83a577 |
Eval Count | 0 |
Decode Time | 76 ms |