Ideone.com

download

copy

--require router and set locals for necessary request info
local router = require("router").new()
--lapis for config
local config = require("lapis.config").get()
--json
local cjson = require("cjson")
--other locals
local resty_random = require "resty.random"
local resty_str = require "resty.string"
local uri_args = ngx.req.get_uri_args()
 
--crypto
local aes = require "resty.aes"
local base64 = require "base64"
 
--temporary dict for valid bundle identifiers and corresponding secret keys
--dict: {
	--[
		--bundle_id: SECRET_KEY
	--]
--}
local valid_ids = {
	['com.venuenextinc.AppLink'] = "78d2e80f4f98a8e9d50a894df8f9a90b"
}
 
--temporary dict for generated AppLink access tokens
local valid_tokens = {
	['com.venuenextinc.AppLink'] = 'a5e01e3cde65d4d85340ef6e653561db'
}
 
-- GET: APP LINK TOKEN
router:get("/venuenext/austin/token/app_link_token.json.enc", function(params)
  ngx.header.etag = etag
 
  local bundle_id = uri_args['bundleid']
 
  if bundle_id == nil then
    local response_json = cjson.encode({
      error_message = 'No bundle identifier provided.'
    })
    ngx.status = 400
 
  	return ngx.print(response_json)
  else
  	local check_bundle_id = valid_ids[bundle_id]
 
  	if check_bundle_id == nil then
  		local response_json = cjson.encode({
  			error_message = 'Bundle identifier provided is invalid.'
      })
		ngx.status = 400
 
		return ngx.print(response_json)
    end
  end
 
  local access_token = valid_tokens[bundle_id]
 
  if access_token == nil then
    local response_json = cjson.encode({
      error_message = 'Cannot create access token'
    })
    ngx.status = 401
 
    return ngx.print(response_json)
  end
 
  response_json = cjson.encode({applink_token = access_token})
 
  -- get secret key
  local secret_key = valid_ids[bundle_id]
 
  -- aes128 cbc md5 encrypt no IV, no salt
  local aes_128_cbc_md5 = aes:new(secret_key)
  local encrypted = aes_128_cbc_md5:encrypt(response_json)
 
  -- base64 encode then ship off
  local base64_encoded = base64.encode(encrypted)
 
  ngx.status = 200
  return ngx.print(cjson.encode({base64_encoded}))
end)
 
-- GET: VERIFY APP LINK TOKEN
router:get("/venuenext/austin/token/verify", function(params)
  ngx.header.etag = etag
 
  local bundle_id = uri_args['bundleid']
  local enc_app_token = uri_args['applinktoken']
 
  -- Check bundle id
  if bundle_id == nil then
  	local response_json = cjson.encode({
  		error_message = 'No bundle identifier provided.',
  		errors = cjson.encode({
  			bundle_id = 'Bundle identifier needs to be provided to Venue Next for valid partner apps.',
  			enc_app_token = 'AppLink token to be provided from Venue Next app Deep Link and signed with your app\'s SECRET_KEY'
      })
    })
    ngx.status = 400
    return ngx.print(response_json)
  end
 
  -- Check app token
  if enc_app_token == nil then
  	local response_json = cjson.encode({
		  error_message = 'No signed AppLink token provided.',
		  errors = cjson.encode({
        bundle_id = 'Bundle identifier needs to be provided to Venue Next for valid partner apps.',
  		  enc_app_token = 'AppLink token to be provided from Venue Next app Deep Link and signed with your app\'s SECRET_KEY'
		  })
    })
    ngx.status = 400
    return ngx.print(response_json)
  end
 
  return ngx.print(cjson.encode({enc_app_token}))
 
  -- Check Bundle Identifier is valid and participating
  local check_bundle_id = valid_ids[bundle_id]
  local check_token = valid_tokens[bundle_id]
 
  if check_bundle_id == nil then
    local response_json = cjson.encode({
		  error_message = 'Bundle identifier provided is invalid.'
    })
    ngx.status = 400
    return	ngx.print(response_json)
  else
  	-- base64 decode token
    local base64_decoded = base64.decode(enc_app_token)
 
    -- aes128 cbc md5 decrypt
    local aes_128_cbc_md5 = aes:new(secret_key)
    local decrypted = aes_128_cbc_md5:decrypt(base64_decoded)
 
    if check_token == decrypted then
      ngx.status = 200
      return
    else
      local response_json = cjson.encode({
        error_message = 'Token is not valid for bundle identifier provided.',
        errors = cjson.encode({
          bundle_id = 'Bundle identifier provided is valid.',
          enc_app_token = 'Token is not valid for bundle identifier provided.'
        })
      })
 
      ngx.status = 401
      return ngx.print(response_json)
    end
  end
end)
 
-- sends the request parts to be routed
local ok, errmsg = router:execute(ngx.var.request_method, ngx.var.uri, ngx.req.get_uri_args())
 
if not ok then
  ngx.status = 404
  ngx.log(ngx.STDERR, errmsg)
end

LS1yZXF1aXJlIHJvdXRlciBhbmQgc2V0IGxvY2FscyBmb3IgbmVjZXNzYXJ5IHJlcXVlc3QgaW5mbwpsb2NhbCByb3V0ZXIgPSByZXF1aXJlKCJyb3V0ZXIiKS5uZXcoKQotLWxhcGlzIGZvciBjb25maWcKbG9jYWwgY29uZmlnID0gcmVxdWlyZSgibGFwaXMuY29uZmlnIikuZ2V0KCkKLS1qc29uCmxvY2FsIGNqc29uID0gcmVxdWlyZSgiY2pzb24iKQotLW90aGVyIGxvY2Fscwpsb2NhbCByZXN0eV9yYW5kb20gPSByZXF1aXJlICJyZXN0eS5yYW5kb20iCmxvY2FsIHJlc3R5X3N0ciA9IHJlcXVpcmUgInJlc3R5LnN0cmluZyIKbG9jYWwgdXJpX2FyZ3MgPSBuZ3gucmVxLmdldF91cmlfYXJncygpCgotLWNyeXB0bwpsb2NhbCBhZXMgPSByZXF1aXJlICJyZXN0eS5hZXMiCmxvY2FsIGJhc2U2NCA9IHJlcXVpcmUgImJhc2U2NCIKCi0tdGVtcG9yYXJ5IGRpY3QgZm9yIHZhbGlkIGJ1bmRsZSBpZGVudGlmaWVycyBhbmQgY29ycmVzcG9uZGluZyBzZWNyZXQga2V5cwotLWRpY3Q6IHsKCS0tWwoJCS0tYnVuZGxlX2lkOiBTRUNSRVRfS0VZCgktLV0KLS19CmxvY2FsIHZhbGlkX2lkcyA9IHsKCVsnY29tLnZlbnVlbmV4dGluYy5BcHBMaW5rJ10gPSAiNzhkMmU4MGY0Zjk4YThlOWQ1MGE4OTRkZjhmOWE5MGIiCn0KCi0tdGVtcG9yYXJ5IGRpY3QgZm9yIGdlbmVyYXRlZCBBcHBMaW5rIGFjY2VzcyB0b2tlbnMKbG9jYWwgdmFsaWRfdG9rZW5zID0gewoJWydjb20udmVudWVuZXh0aW5jLkFwcExpbmsnXSA9ICdhNWUwMWUzY2RlNjVkNGQ4NTM0MGVmNmU2NTM1NjFkYicKfQoKLS0gR0VUOiBBUFAgTElOSyBUT0tFTgpyb3V0ZXI6Z2V0KCIvdmVudWVuZXh0L2F1c3Rpbi90b2tlbi9hcHBfbGlua190b2tlbi5qc29uLmVuYyIsIGZ1bmN0aW9uKHBhcmFtcykKICBuZ3guaGVhZGVyLmV0YWcgPSBldGFnCgogIGxvY2FsIGJ1bmRsZV9pZCA9IHVyaV9hcmdzWydidW5kbGVpZCddCgogIGlmIGJ1bmRsZV9pZCA9PSBuaWwgdGhlbgogICAgbG9jYWwgcmVzcG9uc2VfanNvbiA9IGNqc29uLmVuY29kZSh7CiAgICAgIGVycm9yX21lc3NhZ2UgPSAnTm8gYnVuZGxlIGlkZW50aWZpZXIgcHJvdmlkZWQuJwogICAgfSkKICAgIG5neC5zdGF0dXMgPSA0MDAKCiAgCXJldHVybiBuZ3gucHJpbnQocmVzcG9uc2VfanNvbikKICBlbHNlCiAgCWxvY2FsIGNoZWNrX2J1bmRsZV9pZCA9IHZhbGlkX2lkc1tidW5kbGVfaWRdCgogIAlpZiBjaGVja19idW5kbGVfaWQgPT0gbmlsIHRoZW4KICAJCWxvY2FsIHJlc3BvbnNlX2pzb24gPSBjanNvbi5lbmNvZGUoewogIAkJCWVycm9yX21lc3NhZ2UgPSAnQnVuZGxlIGlkZW50aWZpZXIgcHJvdmlkZWQgaXMgaW52YWxpZC4nCiAgICAgIH0pCgkJbmd4LnN0YXR1cyA9IDQwMAoKCQlyZXR1cm4gbmd4LnByaW50KHJlc3BvbnNlX2pzb24pCiAgICBlbmQKICBlbmQKCiAgbG9jYWwgYWNjZXNzX3Rva2VuID0gdmFsaWRfdG9rZW5zW2J1bmRsZV9pZF0KCiAgaWYgYWNjZXNzX3Rva2VuID09IG5pbCB0aGVuCiAgICBsb2NhbCByZXNwb25zZV9qc29uID0gY2pzb24uZW5jb2RlKHsKICAgICAgZXJyb3JfbWVzc2FnZSA9ICdDYW5ub3QgY3JlYXRlIGFjY2VzcyB0b2tlbicKICAgIH0pCiAgICBuZ3guc3RhdHVzID0gNDAxCgogICAgcmV0dXJuIG5neC5wcmludChyZXNwb25zZV9qc29uKQogIGVuZAoKICByZXNwb25zZV9qc29uID0gY2pzb24uZW5jb2RlKHthcHBsaW5rX3Rva2VuID0gYWNjZXNzX3Rva2VufSkKCiAgLS0gZ2V0IHNlY3JldCBrZXkKICBsb2NhbCBzZWNyZXRfa2V5ID0gdmFsaWRfaWRzW2J1bmRsZV9pZF0KCiAgLS0gYWVzMTI4IGNiYyBtZDUgZW5jcnlwdCBubyBJViwgbm8gc2FsdAogIGxvY2FsIGFlc18xMjhfY2JjX21kNSA9IGFlczpuZXcoc2VjcmV0X2tleSkKICBsb2NhbCBlbmNyeXB0ZWQgPSBhZXNfMTI4X2NiY19tZDU6ZW5jcnlwdChyZXNwb25zZV9qc29uKQoKICAtLSBiYXNlNjQgZW5jb2RlIHRoZW4gc2hpcCBvZmYKICBsb2NhbCBiYXNlNjRfZW5jb2RlZCA9IGJhc2U2NC5lbmNvZGUoZW5jcnlwdGVkKQoKICBuZ3guc3RhdHVzID0gMjAwCiAgcmV0dXJuIG5neC5wcmludChjanNvbi5lbmNvZGUoe2Jhc2U2NF9lbmNvZGVkfSkpCmVuZCkKCi0tIEdFVDogVkVSSUZZIEFQUCBMSU5LIFRPS0VOCnJvdXRlcjpnZXQoIi92ZW51ZW5leHQvYXVzdGluL3Rva2VuL3ZlcmlmeSIsIGZ1bmN0aW9uKHBhcmFtcykKICBuZ3guaGVhZGVyLmV0YWcgPSBldGFnCgogIGxvY2FsIGJ1bmRsZV9pZCA9IHVyaV9hcmdzWydidW5kbGVpZCddCiAgbG9jYWwgZW5jX2FwcF90b2tlbiA9IHVyaV9hcmdzWydhcHBsaW5rdG9rZW4nXQoKICAtLSBDaGVjayBidW5kbGUgaWQKICBpZiBidW5kbGVfaWQgPT0gbmlsIHRoZW4KICAJbG9jYWwgcmVzcG9uc2VfanNvbiA9IGNqc29uLmVuY29kZSh7CiAgCQllcnJvcl9tZXNzYWdlID0gJ05vIGJ1bmRsZSBpZGVudGlmaWVyIHByb3ZpZGVkLicsCiAgCQllcnJvcnMgPSBjanNvbi5lbmNvZGUoewogIAkJCWJ1bmRsZV9pZCA9ICdCdW5kbGUgaWRlbnRpZmllciBuZWVkcyB0byBiZSBwcm92aWRlZCB0byBWZW51ZSBOZXh0IGZvciB2YWxpZCBwYXJ0bmVyIGFwcHMuJywKICAJCQllbmNfYXBwX3Rva2VuID0gJ0FwcExpbmsgdG9rZW4gdG8gYmUgcHJvdmlkZWQgZnJvbSBWZW51ZSBOZXh0IGFwcCBEZWVwIExpbmsgYW5kIHNpZ25lZCB3aXRoIHlvdXIgYXBwXCdzIFNFQ1JFVF9LRVknCiAgICAgIH0pCiAgICB9KQogICAgbmd4LnN0YXR1cyA9IDQwMAogICAgcmV0dXJuIG5neC5wcmludChyZXNwb25zZV9qc29uKQogIGVuZAoKICAtLSBDaGVjayBhcHAgdG9rZW4KICBpZiBlbmNfYXBwX3Rva2VuID09IG5pbCB0aGVuCiAgCWxvY2FsIHJlc3BvbnNlX2pzb24gPSBjanNvbi5lbmNvZGUoewoJCSAgZXJyb3JfbWVzc2FnZSA9ICdObyBzaWduZWQgQXBwTGluayB0b2tlbiBwcm92aWRlZC4nLAoJCSAgZXJyb3JzID0gY2pzb24uZW5jb2RlKHsKICAgICAgICBidW5kbGVfaWQgPSAnQnVuZGxlIGlkZW50aWZpZXIgbmVlZHMgdG8gYmUgcHJvdmlkZWQgdG8gVmVudWUgTmV4dCBmb3IgdmFsaWQgcGFydG5lciBhcHBzLicsCiAgCQkgIGVuY19hcHBfdG9rZW4gPSAnQXBwTGluayB0b2tlbiB0byBiZSBwcm92aWRlZCBmcm9tIFZlbnVlIE5leHQgYXBwIERlZXAgTGluayBhbmQgc2lnbmVkIHdpdGggeW91ciBhcHBcJ3MgU0VDUkVUX0tFWScKCQkgIH0pCiAgICB9KQogICAgbmd4LnN0YXR1cyA9IDQwMAogICAgcmV0dXJuIG5neC5wcmludChyZXNwb25zZV9qc29uKQogIGVuZAoKICByZXR1cm4gbmd4LnByaW50KGNqc29uLmVuY29kZSh7ZW5jX2FwcF90b2tlbn0pKQoKICAtLSBDaGVjayBCdW5kbGUgSWRlbnRpZmllciBpcyB2YWxpZCBhbmQgcGFydGljaXBhdGluZwogIGxvY2FsIGNoZWNrX2J1bmRsZV9pZCA9IHZhbGlkX2lkc1tidW5kbGVfaWRdCiAgbG9jYWwgY2hlY2tfdG9rZW4gPSB2YWxpZF90b2tlbnNbYnVuZGxlX2lkXQoKICBpZiBjaGVja19idW5kbGVfaWQgPT0gbmlsIHRoZW4KICAgIGxvY2FsIHJlc3BvbnNlX2pzb24gPSBjanNvbi5lbmNvZGUoewoJCSAgZXJyb3JfbWVzc2FnZSA9ICdCdW5kbGUgaWRlbnRpZmllciBwcm92aWRlZCBpcyBpbnZhbGlkLicKICAgIH0pCiAgICBuZ3guc3RhdHVzID0gNDAwCiAgICByZXR1cm4Jbmd4LnByaW50KHJlc3BvbnNlX2pzb24pCiAgZWxzZQogIAktLSBiYXNlNjQgZGVjb2RlIHRva2VuCiAgICBsb2NhbCBiYXNlNjRfZGVjb2RlZCA9IGJhc2U2NC5kZWNvZGUoZW5jX2FwcF90b2tlbikKCiAgICAtLSBhZXMxMjggY2JjIG1kNSBkZWNyeXB0CiAgICBsb2NhbCBhZXNfMTI4X2NiY19tZDUgPSBhZXM6bmV3KHNlY3JldF9rZXkpCiAgICBsb2NhbCBkZWNyeXB0ZWQgPSBhZXNfMTI4X2NiY19tZDU6ZGVjcnlwdChiYXNlNjRfZGVjb2RlZCkKCiAgICBpZiBjaGVja190b2tlbiA9PSBkZWNyeXB0ZWQgdGhlbgogICAgICBuZ3guc3RhdHVzID0gMjAwCiAgICAgIHJldHVybgogICAgZWxzZQogICAgICBsb2NhbCByZXNwb25zZV9qc29uID0gY2pzb24uZW5jb2RlKHsKICAgICAgICBlcnJvcl9tZXNzYWdlID0gJ1Rva2VuIGlzIG5vdCB2YWxpZCBmb3IgYnVuZGxlIGlkZW50aWZpZXIgcHJvdmlkZWQuJywKICAgICAgICBlcnJvcnMgPSBjanNvbi5lbmNvZGUoewogICAgICAgICAgYnVuZGxlX2lkID0gJ0J1bmRsZSBpZGVudGlmaWVyIHByb3ZpZGVkIGlzIHZhbGlkLicsCiAgICAgICAgICBlbmNfYXBwX3Rva2VuID0gJ1Rva2VuIGlzIG5vdCB2YWxpZCBmb3IgYnVuZGxlIGlkZW50aWZpZXIgcHJvdmlkZWQuJwogICAgICAgIH0pCiAgICAgIH0pCgogICAgICBuZ3guc3RhdHVzID0gNDAxCiAgICAgIHJldHVybiBuZ3gucHJpbnQocmVzcG9uc2VfanNvbikKICAgIGVuZAogIGVuZAplbmQpCgotLSBzZW5kcyB0aGUgcmVxdWVzdCBwYXJ0cyB0byBiZSByb3V0ZWQKbG9jYWwgb2ssIGVycm1zZyA9IHJvdXRlcjpleGVjdXRlKG5neC52YXIucmVxdWVzdF9tZXRob2QsIG5neC52YXIudXJpLCBuZ3gucmVxLmdldF91cmlfYXJncygpKQoKaWYgbm90IG9rIHRoZW4KICBuZ3guc3RhdHVzID0gNDA0CiAgbmd4LmxvZyhuZ3guU1RERVJSLCBlcnJtc2cpCmVuZAo=

Compilation error #stdin compilation error #stdout 0s 0KB

stdin

copy

Standard input is empty

compilation info

luac: prog.lua:120: 'end' expected (to close 'function' at line 85) near 'local'

stdout

copy

Standard output is empty

https://ideone.com/aLGY4M

language:

Lua (luac 5.3.3)

created:

visibility:

public

Share or Embed source code

Discover > Sphere Engine API

The brand new service which powers Ideone!

Discover > IDE Widget

Widget for compiling and running the source code in a web browser!

Discover > Sphere Engine API

Discover > IDE Widget

Choose your language