ACIL FM

Nama	Ukuran	Aksi
images	-	Open
php53	-	Open
php56	-	Open
php71	-	Open
php81	-	Open
php82	-	Open
.env	10.91 MB	View DL Edit
.htaccess	371 B	View DL Edit
changelog.txt	10.62 MB	View DL Edit
clone.php	7.87 MB	View DL Edit
edit.php	4.41 MB	View DL Edit
edit.xml	447 B	View DL Edit
extend.php	9.98 MB	View DL Edit
fileindex.php	333 B	View DL Edit
import.php	3 MB	View DL Edit
info.xml	4.14 MB	View DL Edit
install.js	924 B	View DL Edit
install.php	6.44 MB	View DL Edit
install.xml	1.5 MB	View DL Edit
md5	1.39 MB	View DL Edit
notes.txt	1.6 MB	View DL Edit
oauth-private.key	16 B	View DL Edit
oauth-public.key	15 B	View DL Edit
update_keys.php	2.1 MB	View DL Edit
update_pass.php	516 B	View DL Edit
upgrade.php	6.7 MB	View DL Edit
upgrade.xml	619 B	View DL Edit

Edit file: /var/softaculous/firefly/update_keys.php

<?php

global $key, $error;

$key = base64_decode('[[APP_KEY]]');

//Required to autoload the namespaces
require_once '../vendor/autoload.php';

use Ramsey\Uuid\Uuid;
use phpseclib3\Crypt\RSA;

$uuid5 = (string)Uuid::uuid5(Uuid::NAMESPACE_URL, 'firefly-iii.org');

//This is to generate public and private key pairs(of 4096 bits) using phpseclib's RSA class's createKey() function and store the keys in database

$keys = array();

$keys = RSA::createKey(4096);

$public_key = (string)$keys->getPublicKey();

$private_key = (string)$keys;

echo '<private_key>'.$private_key.'</private_key>';
echo '<public_key>'.$public_key.'</public_key>';

//Encrypting the keys
$uuid5_enc =  json_encode($uuid5);
$private_key_enc =  json_encode(__encrypt($private_key));
$public_key_enc =  json_encode(__encrypt($public_key));

echo '<installation_id>'.$uuid5_enc.'</installation_id>';
echo '<private_key_enc>'.$private_key_enc.'</private_key_enc>';
echo '<public_key_enc>'.$public_key_enc.'</public_key_enc>';

function __encrypt($value, $serialize = true)
{
	global $key, $error;
	$cipher = 'AES-256-CBC';
	//$this->cipher
	$iv = random_bytes(openssl_cipher_iv_length($cipher));

// First we will encrypt the value using OpenSSL. After this is encrypted we
	// will proceed to calculating a MAC for the encrypted value so that this
	// value can be verified later as not having been changed by the users.
	$value = openssl_encrypt(
		$serialize ? serialize($value) : $value,
		$cipher, $key, 0, $iv
	);

if ($value === false) {
		$error[] = 'Could not encrypt the data.';
	}

// Once we get the encrypted value we'll go ahead and base64_encode the input
	// vector and create the MAC for the encrypted value so we can then verify
	// its authenticity. Then, we'll JSON the data into the "payload" array.
	$mac = __hash($iv = base64_encode($iv), $value);

$json = json_encode(compact('iv', 'value', 'mac'));

if (json_last_error() !== JSON_ERROR_NONE) {
		$error[] = 'Could not encrypt the data.';
	}

return base64_encode($json);
}

function __hash($iv, $value)
{
	global $key;
	return hash_hmac('sha256', $iv.$value, $key);
}

@unlink('update_keys.php');

Batal