I am a hacker in the dark of a very cold night
path :/var/www/html/vorne.webheaydemo.com
upload file:
List of files:
| name file |
size |
edit |
permission |
action |
| .editorconfig | 276 KB | March 05 2024 07:12:34 | 0666 |
|
| .env | 1385 KB | May 24 2024 16:43:55 | 0666 |
|
| .env.example | 1088 KB | March 05 2024 07:12:34 | 0666 |
|
| .gitattributes | 190 KB | March 05 2024 07:12:34 | 0666 |
|
| .gitignore | 245 KB | March 05 2024 07:12:34 | 0666 |
|
| .htaccess | 947 KB | July 04 2023 21:25:08 | 0664 |
|
| .rnd | 1024 KB | March 13 2024 04:51:14 | 0666 |
|
| README.md | 472 KB | March 22 2024 10:35:00 | 0666 |
|
| app | - | March 05 2024 07:12:34 | 0777 |
|
| artisan | 1739 KB | March 05 2024 07:12:34 | 0666 |
|
| bootstrap | - | March 05 2024 07:12:34 | 0777 |
|
| composer.json | 2829 KB | May 13 2024 12:10:04 | 0666 |
|
| composer.lock | 417205 KB | March 19 2024 12:13:14 | 0666 |
|
| config | - | July 03 2025 02:53:36 | 0777 |
|
| database | - | March 05 2024 07:12:34 | 0777 |
|
| index.php | 1816 KB | May 13 2024 10:32:36 | 0666 |
|
| lang | - | May 13 2024 14:53:26 | 0777 |
|
| manifest.json | 913 KB | May 14 2024 03:57:26 | 0664 |
|
| package.json | 398 KB | March 05 2024 07:12:34 | 0666 |
|
| phpunit.xml | 1206 KB | March 05 2024 07:12:34 | 0666 |
|
| public | - | July 03 2025 02:37:20 | 0777 |
|
| resources | - | May 13 2024 12:09:36 | 0777 |
|
| routes | - | March 05 2024 07:12:34 | 0777 |
|
| service-worker.js | 924 KB | March 05 2024 07:12:34 | 0666 |
|
| storage | - | March 05 2024 10:03:52 | 0777 |
|
| symlink.php | 218 KB | March 05 2024 07:12:34 | 0666 |
|
| tests | - | March 05 2024 07:12:34 | 0777 |
|
| vendor | - | March 19 2024 12:13:14 | 0777 |
|
| vite.config.js | 326 KB | March 05 2024 07:12:34 | 0666 |
|
output;
$credentials = $this->getFlutterCredentials($output);
$this->flutterwaveSetSecreteKey($credentials);
//This generates a payment reference
$reference = Flutterwave::generateReference();
$amount = $output['amount']->total_amount ? number_format($output['amount']->total_amount,2,'.','') : 0;
if(auth()->guard(get_auth_guard())->check()){
$user = auth()->guard(get_auth_guard())->user();
$user_email = $user->email;
$user_phone = $user->full_mobile ?? '';
$user_name = $user->firstname.' '.$user->lastname ?? '';
}else{
$user_email = $output['request_data']['email'];
$user_phone = $output['request_data']['phone'];
$user_name = $output['request_data']['name'];
}
if($output['request_data']['payment_type'] == PaymentGatewayConst::TYPEDONATION){
$return_url = route('donation.flutterwave.callback');
$redirect_route = [
'common' => 'campaign.details',
'id' => $output['request_data']['campaign_id'],
'slug' => $output['request_data']['campaign_slug'],
];
Session::put('redirect_route', $redirect_route);
}else{
$return_url = route('user.add.money.flutterwave.callback');
}
// Enter the details of the payment
$data = [
'payment_options' => 'card,banktransfer',
'amount' => $amount,
'email' => $user_email,
'tx_ref' => $reference,
'currency' => $output['currency']['currency_code']??"NGN",
'redirect_url' => $return_url,
'customer' => [
'email' => $user_email,
"phone_number" => $user_phone,
"name" => $user_name
],
"customizations" => [
"title" => $output['request_data']['payment_type'],
"description" => dateFormat('d M Y', Carbon::now()),
]
];
$payment = Flutterwave::initializePayment($data);
$this->flutterWaveJunkInsert($data);
if ($payment['status'] !== 'success') {
return;
}
return redirect($payment['data']['link']);
}
public function flutterWaveJunkInsert($response) {
$output = $this->output;
$user = auth()->guard(get_auth_guard())->user();
$creator_table = $creator_id = $wallet_table = $wallet_id = null;
if($user != null) {
$creator_table = auth()->guard(get_auth_guard())->user()->getTable();
$creator_id = auth()->guard(get_auth_guard())->user()->id;
$wallet_table = $output['wallet']->getTable();
$wallet_id = $output['wallet']->id;
}
if (Auth::guard(get_auth_guard())->check()) {
$user_type = PaymentGatewayConst::AUTHENTICATED;
} else {
$user_type = PaymentGatewayConst::GUEST;
}
// If the condition true then it will be perform for DONATION other wise ADDMONEY
if($output['request_data']['payment_type'] == PaymentGatewayConst::TYPEDONATION){
$data = [
'gateway' => $output['gateway']->id,
'payment_type' => $output['request_data']['payment_type'],
'currency' => $output['currency']->id,
'amount' => json_decode(json_encode($output['amount']),true),
'response' => $response,
'campaign_id' => $output['request_data']['campaign_id'],
'wallet_table' => $wallet_table,
'wallet_id' => $wallet_id,
'creator_table' => $creator_table,
'creator_id' => $creator_id,
'user_type' => $user_type,
'creator_guard' => get_auth_guard(),
];
}else{
$data = [
'gateway' => $output['gateway']->id,
'payment_type' => $output['request_data']['payment_type'],
'currency' => $output['currency']->id,
'amount' => json_decode(json_encode($output['amount']),true),
'response' => $response,
'wallet_table' => $wallet_table,
'wallet_id' => $wallet_id,
'creator_table' => $creator_table,
'creator_id' => $creator_id,
'user_type' => $user_type,
'creator_guard' => get_auth_guard(),
];
}
Session::put('identifier',$response['tx_ref']);
Session::put('output',$output);
return TemporaryData::create([
'type' => PaymentGatewayConst::FLUTTER_WAVE,
'identifier' => $response['tx_ref'],
'data' => $data,
]);
}
// Get Flutter wave credentials
public function getFlutterCredentials($output) {
$gateway = $output['gateway'] ?? null;
if(!$gateway) throw new Exception("Payment gateway not available");
$public_key_sample = ['api key','api_key','client id','primary key', 'public key'];
$secret_key_sample = ['client_secret','client secret','secret','secret key','secret id'];
$encryption_key_sample = ['encryption_key','encryption secret','encryption key','secret hash', 'encryption id'];
$public_key = '';
$outer_break = false;
foreach($public_key_sample as $item) {
if($outer_break == true) {
break;
}
$modify_item = $this->flutterwavePlainText($item);
foreach($gateway->credentials ?? [] as $gatewayInput) {
$label = $gatewayInput->label ?? "";
$label = $this->flutterwavePlainText($label);
if($label == $modify_item) {
$public_key = $gatewayInput->value ?? "";
$outer_break = true;
break;
}
}
}
$secret_key = '';
$outer_break = false;
foreach($secret_key_sample as $item) {
if($outer_break == true) {
break;
}
$modify_item = $this->flutterwavePlainText($item);
foreach($gateway->credentials ?? [] as $gatewayInput) {
$label = $gatewayInput->label ?? "";
$label = $this->flutterwavePlainText($label);
if($label == $modify_item) {
$secret_key = $gatewayInput->value ?? "";
$outer_break = true;
break;
}
}
}
$encryption_key = '';
$outer_break = false;
foreach($encryption_key_sample as $item) {
if($outer_break == true) {
break;
}
$modify_item = $this->flutterwavePlainText($item);
foreach($gateway->credentials ?? [] as $gatewayInput) {
$label = $gatewayInput->label ?? "";
$label = $this->flutterwavePlainText($label);
if($label == $modify_item) {
$encryption_key = $gatewayInput->value ?? "";
$outer_break = true;
break;
}
}
}
return (object) [
'public_key' => $public_key,
'secret_key' => $secret_key,
'encryption_key' => $encryption_key,
];
}
public function flutterwavePlainText($string) {
$string = Str::lower($string);
return preg_replace("/[^A-Za-z0-9]/","",$string);
}
public function flutterwaveSetSecreteKey($credentials){
Config::set('flutterwave.secretKey',$credentials->secret_key);
Config::set('flutterwave.publicKey',$credentials->public_key);
Config::set('flutterwave.secretHash',$credentials->encryption_key);
}
public function flutterwaveSuccess($output = null) {
if(!$output) $output = $this->output;
$token = $this->output['tempData']['identifier'] ?? "";
if(empty($token)) throw new Exception('Transaction faild. Record didn\'t saved properly. Please try again.');
return $this->createTransactionFlutterwave($output);
}
public function createTransactionFlutterwave($output) {
$inserted_id = $this->insertRecordFlutterwave($output);
$this->insertChargesFlutterwace($output,$inserted_id);
$this->insertDeviceFlutterWave($output,$inserted_id);
$this->removeTempDataFlutterWave($output);
if($this->requestIsApiUser()) {
// logout user
$api_user_login_guard = $this->output['api_login_guard'] ?? null;
if($api_user_login_guard != null) {
auth()->guard($api_user_login_guard)->logout();
}
}
}
public function updateWalletBalanceFlutterWave($output) {
$update_amount = $output['wallet']->balance + $output['amount']->requested_amount;
$output['wallet']->update([
'balance' => $update_amount,
]);
}
public function insertRecordFlutterwave($output) {
$token = $this->output['tempData']['identifier'] ?? "";
DB::beginTransaction();
try{
if(Auth::guard(get_auth_guard())->check()){
$user_id = auth()->guard(get_auth_guard())->user()->id;
}else{
$user_id = null;
}
// Condintion for type wise payment
if($output['type'] == PaymentGatewayConst::TYPEDONATION){
if(Auth::guard(get_auth_guard())->check()){
// Campaign donation
$trx_id = generateTrxString("transactions","trx_id",'D',9);
$id = DB::table("transactions")->insertGetId([
'user_id' => $user_id,
'user_wallet_id' => $output['wallet']->id,
'payment_gateway_currency_id' => $output['currency']->id,
'campaign_id' => $output['tempData']['data']->campaign_id,
'type' => $output['type'],
'trx_id' => $trx_id,
'request_amount' => $output['amount']->requested_amount,
'payable' => $output['amount']->total_amount,
'available_balance' => $output['wallet']->balance,
'remark' => ucwords(remove_speacial_char($output['type']," ")) . " With " . $output['gateway']->name,
'details' => 'Flutter Wave Payment Successfull',
'status' => true,
'created_at' => now(),
]);
$this->updateCampaign($output);
}else{
// Campaign donation
$trx_id = generateTrxString("transactions","trx_id",'D',9);
$id = DB::table("transactions")->insertGetId([
'payment_gateway_currency_id' => $output['currency']->id,
'type' => $output['type'],
'campaign_id' => $output['tempData']['data']->campaign_id,
'trx_id' => $trx_id,
'request_amount' => $output['amount']->requested_amount,
'payable' => $output['amount']->total_amount,
'remark' => ucwords(remove_speacial_char($output['type']," ")) . " With " . $output['gateway']->name,
'details' => 'Flutter Wave Payment Successfull',
'status' => true,
'created_at' => now(),
]);
$this->updateCampaign($output);
}
}else{
// Add money
$trx_id = generateTrxString("transactions","trx_id",'AM',8);
$id = DB::table("transactions")->insertGetId([
'user_id' => $user_id,
'user_wallet_id' => $output['wallet']->id,
'payment_gateway_currency_id' => $output['currency']->id,
'type' => $output['type'],
'trx_id' => $trx_id,
'request_amount' => $output['amount']->requested_amount,
'payable' => $output['amount']->total_amount,
'available_balance' => $output['wallet']->balance + $output['amount']->requested_amount,
'remark' => ucwords(remove_speacial_char($output['type']," ")) . " With " . $output['gateway']->name,
'details' => 'Flutter Wave Payment Successfull',
'status' => true,
'created_at' => now(),
]);
$this->updateWalletBalanceFlutterWave($output);
}
DB::commit();
}catch(Exception $e) {
DB::rollBack();
throw new Exception($e->getMessage());
}
return $id;
}
public function insertChargesFlutterwace($output,$id) {
DB::beginTransaction();
try{
DB::table('transaction_charges')->insert([
'transaction_id' => $id,
'percent_charge' => $output['amount']->percent_charge,
'fixed_charge' => $output['amount']->fixed_charge,
'total_charge' => $output['amount']->total_charge,
'created_at' => now(),
]);
DB::commit();
if(Auth::guard(get_auth_guard())->check()){
$user_id = auth()->guard(get_auth_guard())->user()->id;
}else{
$user_id = null;
}
if(Auth::guard(get_auth_guard())->check()){
$notification_content = [
'title' => "Add Money",
'message' => "Your Wallet (".$output['wallet']->currency->code.") balance has been added ".$output['amount']->requested_amount.' '. $output['wallet']->currency->code,
'time' => Carbon::now()->diffForHumans(),
'image' => files_asset_path('profile-default'),
];
UserNotification::create([
'type' => NotificationConst::BALANCE_ADDED,
'user_id' => $user_id,
'message' => $notification_content,
]);
}
DB::commit();
}catch(Exception $e) {
DB::rollBack();
throw new Exception($e->getMessage());
}
}
public function insertDeviceFlutterWave($output,$id) {
$client_ip = request()->ip() ?? false;
$location = geoip()->getLocation($client_ip);
$agent = new Agent();
// $mac = exec('getmac');
// $mac = explode(" ",$mac);
// $mac = array_shift($mac);
$mac = "";
DB::beginTransaction();
try{
DB::table("transaction_devices")->insert([
'transaction_id'=> $id,
'ip' => $client_ip,
'mac' => $mac,
'city' => $location['city'] ?? "",
'country' => $location['country'] ?? "",
'longitude' => $location['lon'] ?? "",
'latitude' => $location['lat'] ?? "",
'timezone' => $location['timezone'] ?? "",
'browser' => $agent->browser() ?? "",
'os' => $agent->platform() ?? "",
]);
DB::commit();
}catch(Exception $e) {
DB::rollBack();
throw new Exception($e->getMessage());
}
}
public function removeTempDataFlutterWave($output) {
TemporaryData::where("identifier",$output['tempData']['identifier'])->delete();
}
// ********* For API **********
public function flutterwaveInitApi($output = null) {
if(!$output) $output = $this->output;
$credentials = $this->getFlutterCredentials($output);
$this->flutterwaveSetSecreteKey($credentials);
//This generates a payment reference
$reference = Flutterwave::generateReference();
$amount = $output['amount']->total_amount ? number_format($output['amount']->total_amount,2,'.','') : 0;
if(auth()->guard(get_auth_guard())->check()){
$user = auth()->guard(get_auth_guard())->user();
$user_email = $user->email;
$user_phone = $user->full_mobile ?? '';
$user_name = $user->firstname.' '.$user->lastname ?? '';
}else{
$user_email = $output['request_data']['email'];
$user_phone = $output['request_data']['phone'] ?? '';
$user_name = $output['request_data']['name'] ?? '';
}
if($output['request_data']['payment_type'] == PaymentGatewayConst::TYPEDONATION){
$return_url = route('api.v1.user.flutterwave.callback', "r-source=".PaymentGatewayConst::APP);
}else{
$return_url = route('api.v1.user.add-money.flutterwave.callback', "r-source=".PaymentGatewayConst::APP);
}
// Enter the details of the payment
$data = [
'payment_options' => 'card,banktransfer',
'amount' => $amount,
'email' => $user_email,
'tx_ref' => $reference,
'currency' => $output['currency']['currency_code']??"NGN",
'redirect_url' => $return_url,
'customer' => [
'email' => $user_email,
"phone_number" => $user_phone,
"name" => $user_name
],
"customizations" => [
"title" => 'Movie Ticket',
"description" => "20th October"
]
];
$payment = Flutterwave::initializePayment($data);
$data['link'] = $payment['data']['link'];
$data['trx'] = $data['tx_ref'];
$this->flutterWaveJunkInsert($data);
if ($payment['status'] !== 'success') {
// notify something went wrong
return;
}
return $data;
// return redirect($payment['data']['link']);
}
}