Accueil Explorer Aide
S'inscrire Connexion
Apq
/
fscarmen_warp
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Branche: main
Branches Tags
fscarmen_warp
/
api.sh

api.sh 8.7 KB
Lien permanent Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259 
  1. #!/usr/bin/env bash
    2. 

  2. 

  3. # 只允许root运行
    4. 

  4. [[ "$EUID" -ne '0' ]] && echo "Error:This script must be run as root!" && exit 1;
    5. 

  5. 

  6. # 帮助
    7. 

  7. help() {
    8. 

  8.   echo -ne " Usage:\n\tbash api.sh\t-h/--help\t\thelp\n\t\t\t-f/--file string\tConfiguration file (default "warp-account.conf")\n\t\t\t-r/--registe\t\tRegiste an account\n\t\t\t-t/--token\t\tRegiste with a team token\n\t\t\t-d/--device\t\tGet the devices information and plus traffic quota\n\t\t\t-a/--app\t\tFetch App information\n\t\t\t-b/--bind\t\tGet the account blinding devices\n\t\t\t-n/--name\t\tChange the device name\n\t\t\t-l/--license\t\tChange the license\n\t\t\t-u/--unbind\t\tUnbine a device from the account\n\t\t\t-c/--cancle\t\tCancle the account\n\t\t\t-i/--id\t\t\tShow the client id and reserved\n\n"
    9. 

  9. }
    10. 

  10. 

  11. # 获取账户信息
    12. 

  12. fetch_account_information() {
    13. 

  13.   # 如不使用账户信息文件,则手动填写 Device id 和 Api token
    14. 

  14.   if [ -s "$registe_path" ]; then
    15. 

  15.     # 官方 api 文件
    16. 

  16.     if grep -q 'client_id' $registe_path; then
    17. 

  17.       id=$(grep -m1 '"id' "$registe_path" | cut -d\" -f4)
    18. 

  18.       token=$(grep '"token' "$registe_path" | cut -d\" -f4)
    19. 

  19.       client_id=$(grep 'client_id' "$registe_path" | cut -d\" -f4)
    20. 

  20.     # client 文件,默认存放路径为 /var/lib/cloudflare-warp/reg.json
    21. 

  21.     elif grep -q 'registration_id' $registe_path; then
    22. 

  22.       id=$(cut -d\" -f4 "$registe_path")
    23. 

  23.       token=$(cut -d\" -f8 "$registe_path")
    24. 

  24.     # wgcf 文件,默认存放路径为 /etc/wireguard/wgcf-account.toml
    25. 

  25.     elif grep -q 'access_token' $registe_path; then
    26. 

  26.       id=$(grep 'device_id' "$registe_path" | cut -d\' -f2)
    27. 

  27.       token=$(grep 'access_token' "$registe_path" | cut -d\' -f2)
    28. 

  28.     # warp-go 文件,默认存放路径为 /opt/warp-go/warp.conf
    29. 

  29.     elif grep -q 'PrivateKey' $registe_path; then
    30. 

  30.       id=$(awk -F' *= *' '/^Device/{print $2}' "$registe_path")
    31. 

  31.       token=$(awk -F' *= *' '/^Token/{print $2}' "$registe_path")
    32. 

  32.     else
    33. 

  33.       echo " There is no registered account information, please check the content. " && exit 1
    34. 

  34.     fi
    35. 

  35.   else
    36. 

  36.     read -rp " Input device id: " id
    37. 

  37.     local i=5
    38. 

  38.     until [[ "$id" =~ ^(t\.)?[A-F0-9a-f]{8}-[A-F0-9a-f]{4}-[A-F0-9a-f]{4}-[A-F0-9a-f]{4}-[A-F0-9a-f]{12}$ ]]; do
    39. 

  39.       (( i-- )) || true
    40. 

  40.       [ "$i" = 0 ] && echo " Input errors up to 5 times. The script is aborted. " && exit 1 || read -rp " Device id should be 36 or 38 characters, please re-enter (${i} times remaining): " id
    41. 

  41.     done
    42. 

  42. 

  43.     read -rp " Input api token: " token
    44. 

  44.     local i=5
    45. 

  45.     until [[ "$token" =~ ^[A-F0-9a-f]{8}-[A-F0-9a-f]{4}-[A-F0-9a-f]{4}-[A-F0-9a-f]{4}-[A-F0-9a-f]{12}$ ]]; do
    46. 

  46.       (( i-- )) || true
    47. 

  47.       [ "$i" = 0 ] && echo " Input errors up to 5 times. The script is aborted. " && exit 1 || read -rp " Api token should be 36 characters, please re-enter (${i} times remaining): " token
    48. 

  48.     done
    49. 

  49.   fi
    50. 

  50. }
    51. 

  51. 

  52. # 注册warp账户
    53. 

  53. registe_account() {
    54. 

  54.   # 生成 wireguard 公私钥,并且补上 private key
    55. 

  55.   if [ $(type -p wg) ]; then
    56. 

  56.     private_key=$(wg genkey)
    57. 

  57.     public_key=$(wg pubkey <<< "$private_key")
    58. 

  58.   else
    59. 

  59.     wg_api=$(curl -sSL https://wg.cloudflare.now.cc)
    60. 

  60.     private_key=$(echo "$wg_api" | awk 'NR==2 {print $2}')
    61. 

  61.     public_key=$(echo "$wg_api" | awk 'NR==1 {print $2}')
    62. 

  62.   fi
    63. 

  63. 

  64.   registe_path=${registe_path:-warp-account.conf}
    65. 

  65.   [[ "$(dirname "$registe_path")" != '.' ]] && mkdir -p $(dirname "$registe_path")
    66. 

  66.   install_id=$(tr -dc 'A-Za-z0-9' </dev/urandom | head -c 22)
    67. 

  67.   fcm_token="${install_id}:APA91b$(tr -dc 'A-Za-z0-9' </dev/urandom | head -c 134)"
    68. 

  68. 

  69.   curl --request POST 'https://api.cloudflareclient.com/v0a2158/reg' \
    70. 

  70.   --silent \
    71. 

  71.   --location \
    72. 

  72.   --tlsv1.3 \
    73. 

  73.   --header 'User-Agent: okhttp/3.12.1' \
    74. 

  74.   --header 'CF-Client-Version: a-6.10-2158' \
    75. 

  75.   --header 'Content-Type: application/json' \
    76. 

  76.   --header "Cf-Access-Jwt-Assertion: ${team_token}" \
    77. 

  77.   --data '{"key":"'${public_key}'","install_id":"'${install_id}'","fcm_token":"'${fcm_token}'","tos":"'$(date +"%Y-%m-%dT%H:%M:%S.000Z")'","model":"PC","serial_number":"'${install_id}'","locale":"zh_CN"}' \
    78. 

  78.   | python3 -m json.tool | sed "/\"account_type\"/i\        \"private_key\": \"$private_key\"," > $registe_path
    79. 

  79. 

  80.    [[ ! -s $registe_path || $(grep 'error' $registe_path) ]] && { rm -f $registe_path; exit 1; } || { cat $registe_path; exit 0; }
    81. 

  81. }
    82. 

  82. 

  83. # 获取设备信息
    84. 

  84. device_information() {
    85. 

  85.   [[ -z "$id" && -z "$token" ]] && fetch_account_information
    86. 

  86. 

  87.   curl --request GET "https://api.cloudflareclient.com/v0a2158/reg/${id}" \
    88. 

  88.   --silent \
    89. 

  89.   --location \
    90. 

  90.   --header 'User-Agent: okhttp/3.12.1' \
    91. 

  91.   --header 'CF-Client-Version: a-6.10-2158' \
    92. 

  92.   --header 'Content-Type: application/json' \
    93. 

  93.   --header "Authorization: Bearer ${token}" \
    94. 

  94.   | python3 -m json.tool
    95. 

  95. }
    96. 

  96. 

  97. # 获取账户APP信息
    98. 

  98. app_information() {
    99. 

  99.   [[ -z "$id" && -z "$token" ]] && fetch_account_information
    100. 

  100. 

  101.   curl --request GET "https://api.cloudflareclient.com/v0a2158/client_config" \
    102. 

  102.   --silent \
    103. 

  103.   --location \
    104. 

  104.   --header 'User-Agent: okhttp/3.12.1' \
    105. 

  105.   --header 'CF-Client-Version: a-6.10-2158' \
    106. 

  106.   --header 'Content-Type: application/json' \
    107. 

  107.   --header "Authorization: Bearer ${token}" \
    108. 

  108.   | python3 -m json.tool
    109. 

  109. }
    110. 

  110. 

  111. # 查看账户绑定设备
    112. 

  112. account_binding_devices() {
    113. 

  113.   [[ -z "$id" && -z "$token" ]] && fetch_account_information
    114. 

  114. 

  115.   curl --request GET "https://api.cloudflareclient.com/v0a2158/reg/${id}/account/devices" \
    116. 

  116.   --silent \
    117. 

  117.   --location \
    118. 

  118.   --header 'User-Agent: okhttp/3.12.1' \
    119. 

  119.   --header 'CF-Client-Version: a-6.10-2158' \
    120. 

  120.   --header 'Content-Type: application/json' \
    121. 

  121.   --header "Authorization: Bearer ${token}" \
    122. 

  122.   | python3 -m json.tool
    123. 

  123. }
    124. 

  124. 

  125. # 添加或者更改设备名
    126. 

  126. change_device_name() {
    127. 

  127.   [[ -z "$id" && -z "$token" ]] && fetch_account_information
    128. 

  128. 

  129.   curl --request PATCH "https://api.cloudflareclient.com/v0a2158/reg/${id}/account/reg/${id}" \
    130. 

  130.   --silent \
    131. 

  131.   --location \
    132. 

  132.   --header 'User-Agent: okhttp/3.12.1' \
    133. 

  133.   --header 'CF-Client-Version: a-6.10-2158' \
    134. 

  134.   --header 'Content-Type: application/json' \
    135. 

  135.   --header "Authorization: Bearer ${token}" \
    136. 

  136.   --data '{"name":"'$device_name'"}' \
    137. 

  137.   | python3 -m json.tool
    138. 

  138. }
    139. 

  139. 

  140. # 更换 license
    141. 

  141. change_license() {
    142. 

  142.   [[ -z "$id" && -z "$token" ]] && fetch_account_information
    143. 

  143. 

  144.   curl --request PUT "https://api.cloudflareclient.com/v0a2158/reg/${id}/account" \
    145. 

  145.   --silent \
    146. 

  146.   --location \
    147. 

  147.   --header 'User-Agent: okhttp/3.12.1' \
    148. 

  148.   --header 'CF-Client-Version: a-6.10-2158' \
    149. 

  149.   --header 'Content-Type: application/json' \
    150. 

  150.   --header "Authorization: Bearer ${token}" \
    151. 

  151.   --data '{"license": "'$license'"}' \
    152. 

  152.   | python3 -m json.tool
    153. 

  153. }
    154. 

  154. 

  155. # 删除绑定设备
    156. 

  156. unbind_devide() {
    157. 

  157.   [[ -z "$id" && -z "$token" ]] && fetch_account_information
    158. 

  158. 

  159.   curl --request PATCH "https://api.cloudflareclient.com/v0a2158/reg/${id}/account/reg/${id}" \
    160. 

  160.   --silent \
    161. 

  161.   --location \
    162. 

  162.   --header 'User-Agent: okhttp/3.12.1' \
    163. 

  163.   --header 'CF-Client-Version: a-6.10-2158' \
    164. 

  164.   --header 'Content-Type: application/json' \
    165. 

  165.   --header "Authorization: Bearer ${token}" \
    166. 

  166.   --data '{"active":false}' \
    167. 

  167.   | python3 -m json.tool
    168. 

  168. }
    169. 

  169. 

  170. # 删除账户
    171. 

  171. cancle_account() {
    172. 

  172.   [[ -z "$id" && -z "$token" ]] && fetch_account_information
    173. 

  173. 

  174.   local result=$(curl --request DELETE "https://api.cloudflareclient.com/v0a2158/reg/${id}" \
    175. 

  175.   --silent \
    176. 

  176.   --location \
    177. 

  177.   --header 'User-Agent: okhttp/3.12.1' \
    178. 

  178.   --header 'CF-Client-Version: a-6.10-2158' \
    179. 

  179.   --header 'Content-Type: application/json' \
    180. 

  180.   --header "Authorization: Bearer ${token}")
    181. 

  181. 

  182.   [ -z "$result" ] && echo " Success. The account has been cancelled. " || echo " Failure. The account is not available. "
    183. 

  183. }
    184. 

  184. 

  185. # reserved 解码
    186. 

  186. decode_reserved() {
    187. 

  187.   [[ -z "$id" && -z "$token" ]] && fetch_account_information
    188. 

  188.   [ -z "$client_id" ] && { fetch_client_id=$(device_information); client_id=$(expr " $fetch_client_id" | awk -F'"' '/client_id/{print $4}'); }
    189. 

  189.   reserved=$(echo "$client_id" | base64 -d | xxd -p | fold -w2 | while read HEX; do printf '%d ' "0x${HEX}"; done | awk '{print "["$1", "$2", "$3"]"}')
    190. 

  190.   echo -e "client id: $client_id\nreserved : $reserved"
    191. 

  191. }
    192. 

  192. 

  193. [[ "$#" -eq '0' ]] && help && exit;
    194. 

  194. 

  195. while [[ $# -ge 1 ]]; do
    196. 

  196.   case $1 in
    197. 

  197.     -f|--file)
    198. 

  198.       shift
    199. 

  199.       registe_path="$1"
    200. 

  200.       shift
    201. 

  201.       ;;
    202. 

  202.     -r|--registe)
    203. 

  203.       run=registe_account
    204. 

  204.       shift
    205. 

  205.       ;;
    206. 

  206.     -d|--device)
    207. 

  207.       run=device_information
    208. 

  208.       shift
    209. 

  209.       ;;
    210. 

  210.     -a|--app)
    211. 

  211.       run=app_information
    212. 

  212.       shift
    213. 

  213.       ;;
    214. 

  214.     -b|--bind)
    215. 

  215.       run=account_binding_devices
    216. 

  216.       shift
    217. 

  217.       ;;
    218. 

  218.     -n|--name)
    219. 

  219.       shift
    220. 

  220.       device_name="$1"
    221. 

  221.       run=change_device_name
    222. 

  222.       shift
    223. 

  223.       ;;
    224. 

  224.     -l|--license)
    225. 

  225.       shift
    226. 

  226.       license="$1"
    227. 

  227.       run=change_license
    228. 

  228.       shift
    229. 

  229.       ;;
    230. 

  230.     -u|--unbind)
    231. 

  231.       run=unbind_devide
    232. 

  232.       shift
    233. 

  233.       ;;
    234. 

  234.     -c|--cancle)
    235. 

  235.       run=cancle_account
    236. 

  236.       shift
    237. 

  237.       ;;
    238. 

  238.     -i|--id)
    239. 

  239.       run=decode_reserved
    240. 

  240.       shift
    241. 

  241.       ;;
    242. 

  242.     -t|--token)
    243. 

  243.       shift
    244. 

  244.       team_token="$1"
    245. 

  245.       shift
    246. 

  246.       ;;
    247. 

  247.     -h|--help)
    248. 

  248.       help
    249. 

  249.       exit
    250. 

  250.       ;;
    251. 

  251.     *)
    252. 

  252.       help
    253. 

  253.       exit
    254. 

  254.       ;;
    255. 

  255.   esac
    256. 

  256. done
    257. 

  257. 

  258. # 根据参数运行
    259. 

  259. $run
    260.