API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 15th, 2016
240
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.39 KB | None | 0 0
raw download clone embed print report
  1. var SteamCommunity = require('steamcommunity');
  2. var SteamTotp = require('steam-totp');
  3. var mysql = require('mysql');
  4. var log4js = require('log4js');
  5. var SteamTradeOffers = require('steam-tradeoffers');
  6. var async = require('async');
  7.  
  8. var pool = mysql.createPool({
  9. connectionLimit : 10,
  10. database: '',
  11. host: '',
  12. user: '',
  13. password: ''
  14. });
  15.  
  16. var community = new SteamCommunity();
  17. var offers = new SteamTradeOffers();
  18. log4js.configure({
  19. appenders: [
  20. { type: 'console' },
  21. { type: 'file', filename: 'logs/bot_'+process.argv[2]+'.log' }
  22. ]
  23. });
  24. var logger = log4js.getLogger();
  25.  
  26. var express = require('express');
  27. var app = express();
  28.  
  29. app.get('/sendTrade/', function (req, res) {
  30. var assetids = req.query['assetids'];
  31. assetids = assetids.split(',');
  32. var partner = req.query['partner'];
  33. var token = req.query['token'];
  34. var checksum = req.query['checksum'];
  35. var steamid = req.query['steamid'];
  36. var stoken = req.query['token'];
  37. if (stoken.indexOf("secret_code_123") == -1) {
  38. return false;
  39. }
  40.  
  41. var senditems = [];
  42. for(var i = 0; i < assetids.length; i++) {
  43. if(assetids[i] == "") continue;
  44. senditems.push({
  45. appid: 730,
  46. contextid: 2,
  47. assetid: assetids[i]
  48. });
  49. }
  50. var code = makecode();
  51. console.log(partner, token, checksum, assetids, senditems);
  52. offers.makeOffer({
  53. partnerAccountId: partner,
  54. accessToken: token,
  55. itemsFromThem: senditems,
  56. itemsFromMe: [],
  57. message: 'Code: '+code
  58. }, function(err, r) {
  59. if(err) {
  60. logger.error('Error sending trade');
  61. logger.debug(err);
  62. res.json({
  63. success: false,
  64. error: err.toString()
  65. });
  66. } else {
  67. offers.loadPartnerInventory({
  68. partnerSteamId: steamid,
  69. tradeOfferId: r.tradeofferid,
  70. appId: 730,
  71. contextId: 2,
  72. language: 'russian'
  73. }, function(err, rr) {
  74. if(err) {
  75. logger.debug(err);
  76. res.json({
  77. success: false,
  78. error: err.toString()
  79. });
  80. } else {
  81. var names = [];
  82. for(var i = 0; i < senditems.length; i++) {
  83. for(var a = 0; a < rr.length; a++) {
  84. if((senditems[i].assetid == rr[a].id) && (!rr[a].ss)) {
  85. names.push({market_hash_name: rr[a].market_hash_name, icon_url: rr[a].icon_url});
  86. rr[a].ss = 1;
  87. continue;
  88. }
  89. }
  90. }
  91. res.json({
  92. success: true,
  93. code: code,
  94. amount: checksum,
  95. tid: r.tradeofferid,
  96. items: names
  97. });
  98. }
  99. });
  100. }
  101. });
  102. });
  103.  
  104. app.get('/sendTradeMe/', function (req, res) {
  105. var names = req.query['names'];
  106. names = names.split(',');
  107. var partner = req.query['partner'];
  108. var token = req.query['token'];
  109. var checksum = req.query['checksum'];
  110. var stoken = req.query['token'];
  111. if (stoken.indexOf("secret_code_123") == -1) {
  112. return false;
  113. }
  114.  
  115. offers.loadMyInventory({
  116. appId: 730,
  117. contextId: 2
  118. }, function(err, items) {
  119. if(err) {
  120. logger.error('Error sending trade');
  121. logger.debug(err);
  122. res.json({
  123. success: false,
  124. error: err.toString()
  125. });
  126. } else {
  127. var senditems = [];
  128. for(var i = 0; i < names.length; i++) {
  129. for(var a = 0; a < items.length; a++) {
  130. if((names[i] == items[a].market_hash_name) && (!items[a].ss)) {
  131. senditems.push({
  132. appid: 730,
  133. contextid: 2,
  134. assetid: items[a].id
  135. });
  136. if(senditems.length == names.length-1) break;
  137. items[a].ss = 1;
  138. continue;
  139. }
  140. if(senditems.length == names.length-1) break;
  141. }
  142. };
  143. var code = makecode();
  144. console.log(partner, token, checksum, names, senditems);
  145. offers.makeOffer({
  146. partnerAccountId: partner,
  147. accessToken: token,
  148. itemsFromThem: [],
  149. itemsFromMe: senditems,
  150. message: 'Code: '+code
  151. }, function(err, r) {
  152. if(err) {
  153. logger.error('Error sending trade');
  154. logger.debug(err);
  155. res.json({
  156. success: false,
  157. error: err.toString()
  158. });
  159. } else {
  160. res.json({
  161. success: true,
  162. code: code,
  163. amount: -checksum,
  164. tid: r.tradeofferid,
  165. state: 2
  166. });
  167. }
  168. });
  169. }
  170. });
  171. });
  172.  
  173. app.get('/checkTrade/', function (req, res) {
  174. var tid = req.query['tid'];
  175. offers.getOffer({
  176. tradeofferid: tid
  177. }, function(err, trade) {
  178. if(err) {
  179. logger.error('Error checking trade');
  180. logger.debug(err);
  181. res.json({
  182. success: false,
  183. error: err.toString()
  184. });
  185. } else {
  186. logger.debug(trade);
  187. if(trade.response.offer.trade_offer_state == 3) {
  188. res.json({
  189. success: true,
  190. action: 'accept',
  191. result: 'Coins have been added to your balance'
  192. });
  193. } else if(trade.response.offer.trade_offer_state == 7) {
  194. res.json({
  195. success: true,
  196. result: 'You are declined trade',
  197. action: 'cross'
  198. });
  199. } else {
  200. res.json({
  201. success: false,
  202. error: 'You are not accept trade'
  203. });
  204. }
  205. }
  206. });
  207. });
  208.  
  209. function cancelTrade(offerid) {
  210. offers.declineOffer({
  211. tradeOfferId: offerid
  212. }, function(err, log) {
  213. if (err) {
  214. logger.error('Не смогли отменить трейд #'+offerid);
  215. logger.debug(err);
  216. return;
  217. }
  218. logger.debug(log);
  219. logger.trace('Offer #'+offerid+' canceled');
  220. });
  221. }
  222.  
  223. query('SELECT * FROM `bots` WHERE `id` = '+pool.escape(process.argv[2]), function(err, res) {
  224. if((err) || (!res[0])) {
  225. logger.error('Cant find account');
  226. process.exit(0);
  227. return;
  228. }
  229. account = res[0];
  230. app.listen(3000+account.id);
  231. logger.trace('We got account info');
  232. account.twoFactorCode = SteamTotp.generateAuthCode(account.shared_secret);
  233. account.auth = false;
  234. logger.debug(account);
  235. community.login(account, login);
  236. });
  237.  
  238. community.on('confKeyNeeded', function(tag, callback) {
  239. callback(null, time, SteamTotp.getConfirmationKey(account.identity_secret, time(), tag));
  240. });
  241.  
  242. community.on('newConfirmation', function(confirmation) {
  243. var time = time();
  244. var key = SteamTotp.getConfirmationKey(account.identity_secret, time, 'allow');
  245. confirmation.respond(time, key, true, function(err) {
  246. if(err) {
  247. logger.error('Error on mobile auth');
  248. logger.debug(err);
  249. return;
  250. }
  251. logger.trace('Trade sucesfully confirmed');
  252. });
  253. });
  254.  
  255. function query(sql, callback) {
  256. if (typeof callback === 'undefined') {
  257. callback = function() {};
  258. }
  259. pool.getConnection(function(err, connection) {
  260. if(err) return callback(err);
  261. logger.info('DB connection ID: '+connection.threadId);
  262. connection.query(sql, function(err, rows) {
  263. if(err) return callback(err);
  264. connection.release();
  265. return callback(null, rows);
  266. });
  267. });
  268. }
  269.  
  270. function login(err, sessionID, cookies, steamguard) {
  271. if(err) {
  272. logger.error('Auth error');
  273. logger.debug(err);
  274. if(err.message == "SteamGuardMobile") {
  275. account.twoFactorCode = SteamTotp.generateAuthCode(account.shared_secret);
  276. logger.warn('Error in auth: '+account.twoFactorCode);
  277. setTimeout(function() {
  278. community.login(account, login);
  279. }, 5000);
  280. return;
  281. }
  282. process.exit(0);
  283. }
  284. logger.trace('Sucesfully auth');
  285. account.sessionID = sessionID;
  286. account.cookies = cookies;
  287. community.getWebApiKey('csgobananas.com', webApiKey);
  288. community.startConfirmationChecker(10000, account.identity_secret);
  289. }
  290.  
  291. function webApiKey(err, key) {
  292. if(err) {
  293. logger.error('Cant make apikey')
  294. logger.debug(err);
  295. process.exit(0);
  296. return;
  297. }
  298. account.key = key;
  299. logger.trace('API key bot '+account.accountName+' '+account.key);
  300. offersSetup();
  301. community.loggedIn(checkLoggedIn);
  302. }
  303.  
  304. function offersSetup() {
  305. logger.trace('Loaded steam-tradeoffers');
  306. offers.setup({
  307. sessionID: account.sessionID,
  308. webCookie: account.cookies,
  309. APIKey: account.key
  310. });
  311. }
  312.  
  313. function checkLoggedIn(err, loggedIn, familyView) {
  314. if((err) || (!loggedIn)) {
  315. logger.error('We arent logged in')
  316. process.exit(0);
  317. } else {
  318. logger.trace('Logged in');
  319. account.auth = true;
  320. }
  321. }
  322.  
  323. function makecode() {
  324. var text = "";
  325. var possible = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789";
  326.  
  327. for(var i=0; i < 5; i++)
  328. text += possible.charAt(Math.floor(Math.random() * possible.length));
  329.  
  330. return text;
  331. }
  332.  
  333. function time() {
  334. return parseInt(new Date().getTime()/1000)
  335. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!