steam-trade 0.0.2

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: c75d03399a096ddb7e68a6448c37ab5265f307d8
+  data.tar.gz: 032e2ec9c6d382c5cea3b394026f714c1ef3ad93
+SHA512:
+  metadata.gz: c7e7a5f5fe23cccc2ec4caf4bb1dad525bbbed6f52aff2f082c0eba1d6ce2cf0027d88dd47493a7ba688fd739759f9182cdcd3a1652a9f96d275004b1b0c741d
+  data.tar.gz: 222366d1f7da9df8d3730602edd6b807c103dbaeb98b20314309a9dc4f23445588d6f815b983aabd89f46f4d00219f29a536fcbc8fe15fcb55db03234ff439b5

data/.gitignore

@@ -0,0 +1,10 @@
+/.bundle/
+/.yardoc
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+*gem
+git.txt

data/Gemfile

@@ -0,0 +1,6 @@
+source "https://rubygems.org"
+
+git_source(:github) {|repo_name| "https://github.com/#{repo_name}" }
+
+# Specify your gem's dependencies in steam-trade.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2018 Adam Boulila
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,51 @@
+# steam-trade
+
+This gem simplifes/allows sending steam trade offers programmatically
+
+## Installation
+in your commandline :
+
+`gem install steam-trade`
+
+## Usage
+First you need to require the gem:
+```ruby
+require 'steam-trade'
+```
+
+then you need to login and optionally set your shared_secret and identity_secret:
+- `shared_secret` is used to generate steam authentication codes so you won't have to write them manually each time you login.
+- `identity_secret` is used to confirm trade offers automatically.
+```ruby
+require 'steam-trade'
+
+account = Handler.new('username','password','shared_secret') # share secret is optional
+#username and password are required, shared_secret is optional
+
+
+account.mobile_info('identity_secret')
+#identity_secret is requred
+
+```
+
+then you can send your offer 
+- `Myarray` is an array which contains hashes of selected items to send in the offer. (currently you must get this alone)
+- `Theirarray` is an array which contains hashes of selected items to receive in the offer. (currently you must get this alone)
+- `trade_offer_link` is the trade link of you partner `ex: https://steamcommunity.com/tradeoffer/new/?partner=410155236&token=H-yK-GFt`
+- `message` is the comment you want to include in the trade offer
+
+- `Myarray`, `Theirarray`, `trade_offer_link` are required, `message` is optional
+```ruby
+require 'steam-trade'
+
+account = Handler.new('username','password','shared_secret')
+account.mobile_info('identity_secret')
+
+
+account.send_offer(Myarray,Theirarray,trade_offer_link,message)
+```
+
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).

data/Rakefile

@@ -0,0 +1,2 @@
+require "bundler/gem_tasks"
+task :default => :spec

data/bin/console

@@ -0,0 +1,13 @@
+#!/usr/bin/env ruby
+
+
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start(__FILE__)

data/bin/setup

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/lib/Confirmation.rb

@@ -0,0 +1,106 @@
+require 'Guard.rb'
+
+
+module ConfirmationCommands
+      include GuardCommands
+
+
+
+
+      def send_trade_allow_request(trade_id) ###FIRST
+            confirmations = get_confirmations() ###second
+            confirmationhash = select_trade_offer_confirmation(trade_id, confirmations) #seventh
+            send_confirmation(confirmationhash) #tenth
+      end
+
+      private
+      def get_confirmations() ##SECOND
+            confirmations = []
+            confirmations_page = fetch_confirmations_page()
+            Nokogiri::HTML(confirmations_page).css('#mobileconf_list').css('.mobileconf_list_entry').each { |trade|
+                  add = {
+                        'id' => trade['id'].sub('conf', ''),
+                        'data_confid' => trade['data-confid'],
+                        'data_key' => trade['data-key']
+                  }
+                  confirmations <<  add
+            }
+            return confirmations
+      end
+
+      def create_confirmation_params(tag_string) #FOURTH FINISHED
+            timestamp = Time.new.to_i
+            confirmation_key = generate_confirmation_key(tag_string,timestamp) # FIFTH other  FILE FINISHED
+            android_id = generate_device_id() # SIXTH other  FILE FINISHED
+            res = {
+                  'p' => android_id,
+                  'a' => @steamid,
+                  'k' => confirmation_key,
+                  't' => timestamp,
+                  'm' => 'android',
+                  'tag' => tag_string
+            }
+            return res
+      end
+
+      def fetch_confirmations_page() ## THIRD FINISHED
+            tag = 'conf'
+            params =   create_confirmation_params(tag) ## FOURTH FIISHED
+            headers = {'X-Requested-With' => 'com.valvesoftware.android.steam.community'}
+            #@session.pre_connect_hooks << lambda do |agent, request|
+            #      request['X-Requested-With'] = 'com.valvesoftware.android.steam.community'
+             #end
+            no = nil
+            response = @session.get('https://steamcommunity.com/mobileconf/conf', params, no, headers)
+            html = response.content
+            if html.include?('Steam Guard Mobile Authenticator is providing incorrect Steam Guard codes.')
+                  puts "invalid steammguard"
+                  exit
+            end
+            return html
+      end
+
+
+
+
+      def select_trade_offer_confirmation(trade_id, confirmations) ## seventh
+            confirmations.each { |confirmhash|
+                  confirmation_details_page = fetch_confirmation_details_page(confirmhash) ## eighteth
+                  confirm_id = get_confirmation_trade_offer_id(confirmation_details_page) ## nineth
+                  if confirm_id == trade_id
+                        return confirmhash
+                  end
+            }
+            puts "did not find a confirmation"
+            exit
+      end
+
+      def fetch_confirmation_details_page(hash) ##eigth
+            var = hash['id']
+            tag = 'details' + var
+            params = create_confirmation_params(tag) ## EXISTS
+            response = @session.get("https://steamcommunity.com/mobileconf/details/#{var}", params)
+            return JSON.parse(response.content)["html"]
+      end
+
+      def get_confirmation_trade_offer_id(html) ## nineth
+            full_offer_id = Nokogiri::HTML(html).css('.tradeoffer')[0]['id']
+            return full_offer_id.split('_', 2)[1]
+      end
+
+      def send_confirmation(confirmationhash) ## tenth
+            tag = 'allow'
+            params = create_confirmation_params(tag) ## EXISTS
+            params['op'] = tag
+            params['cid'] = confirmationhash["data_confid"]
+            params['ck'] = confirmationhash["data_key"]
+            headers = {'X-Requested-With' => 'XMLHttpRequest'}
+            #@session.pre_connect_hooks << lambda do |agent, request|
+            #     request['X-Requested-With'] = 'XMLHttpRequest'
+            #end
+            no = nil
+            page = @session.get('https://steamcommunity.com/mobileconf/ajaxop', params,no ,headers)
+            return JSON.parse(page.content)
+      end
+
+end

data/lib/Guard.rb

@@ -0,0 +1,44 @@
+module GuardCommands
+
+
+
+
+
+      def fa()
+            timestamp = Time.new.to_i
+            math = timestamp / 30
+            math = math.to_i
+            time_buffer =[math].pack('Q>')
+
+            hmac = OpenSSL::HMAC.digest('sha1', Base64.decode64(@secret), time_buffer)
+
+            start = hmac[19].ord & 0xf
+            last = start + 4
+            pre = hmac[start..last]
+            fullcode = pre.unpack('I>')[0] & 0x7fffffff
+
+            chars = '23456789BCDFGHJKMNPQRTVWXY'
+            code= ''
+            for looper in 0..4 do
+                  copy = fullcode #divmod
+                  i = copy % chars.length #divmod
+                  fullcode = copy / chars.length #divmod
+                  code = code + chars[i]
+            end
+            return code
+
+      end
+
+      def generate_confirmation_key(tag_string, time_stamp)
+            buffer = [time_stamp].pack('Q>') + tag_string.encode('ascii')
+            return Base64.encode64(OpenSSL::HMAC.digest('sha1', Base64.decode64(@identity_secret), buffer))
+      end
+
+
+      def generate_device_id()
+            hexed = Digest::SHA1.hexdigest(@steamid.to_s)
+            res = 'android:' + [hexed[0..7],hexed[8..11],hexed[12..15],hexed[16..19],hexed[20..31]].join('-')
+            return res
+      end
+
+end

data/lib/LoginExecutor.rb

@@ -0,0 +1,99 @@
+module LoginCommands
+
+########################################################################################
+      def login
+            data = pass_stamp()
+            encrypted_password = data["password"]
+            timestamp = data["timestamp"]
+            repeater = 0
+            until repeater == true
+                  if @secret != nil
+                        guardcode = fa()
+                  else
+                        puts "please write your 2FA code"
+                        guardcode = gets.chomp
+                  end
+
+
+                  send = {
+                        'password' => encrypted_password,
+                        'username' => @username,
+                        'twofactorcode' =>guardcode, #update
+                        'emailauth' => '',
+                        'loginfriendlyname' => '',
+                        'captchagid' => '-1',
+                        'captcha_text' => '',
+                        'emailsteamid' => '',
+                        'rsatimestamp' => timestamp,
+                        'remember_login' => 'false'
+                  }
+
+                  login = @session.post('https://store.steampowered.com/login/dologin', send )
+                  response = JSON::parse(login.body)
+
+                  if response["success"] == true
+                        repeater = true
+                        puts response
+                  elsif repeater == 3
+                        puts "Could not login"
+                        puts "exiting"
+                       exit
+                 else
+                       puts "re-trying to login"
+                       puts "sleeping for 6 seconds"
+                       sleep(6)
+                       repeater = repeater + 1
+                 end
+
+
+            end
+            if @steamid != nil && @steamid != response["transfer_parameters"]["steamid"]
+                  puts "the steamid you provided does not belong to the account you entered"
+                  puts "steamid will be overwritten"
+                  @steamid = response["transfer_parameters"]["steamid"]
+
+            else
+                  @steamid = response["transfer_parameters"]["steamid"]
+            end
+
+
+            response["transfer_urls"].each { |url|
+                  @session.post(url, response["transfer_parameters"])
+            }
+
+
+
+            steampowered_sessionid = ''
+            @session.cookies.each { |c|
+                  if c.name == "sessionid"
+                         steampowered_sessionid = c.value
+                   end
+            }
+
+            cookie = Mechanize::Cookie.new :domain => 'steamcommunity.com', :name =>'sessionid', :value =>steampowered_sessionid, :path => '/'
+            @session.cookie_jar << cookie
+            puts "logged-in with steamid: #{@steamid}"
+      end
+########################################################################################
+
+
+########################################################################################
+      private
+      def pass_stamp()
+            response = @session.post('https://store.steampowered.com/login/getrsakey/', {'username' => @username})
+
+            data = JSON::parse(response.body)
+            mod = data["publickey_mod"].hex
+            exp = data["publickey_exp"].hex
+            timestamp = data["timestamp"]
+
+            key   = OpenSSL::PKey::RSA.new
+            key.e = OpenSSL::BN.new(exp)
+            key.n = OpenSSL::BN.new(mod)
+            ep = Base64.encode64(key.public_encrypt(@password.force_encoding("utf-8"))).gsub("\n", '')
+            return {'password' => ep, 'timestamp' => timestamp }
+      end
+########################################################################################
+
+
+end

data/lib/Misc.rb

@@ -0,0 +1,50 @@
+module Abilites
+      ########################################################################################
+      def copy_session
+            return @session
+      end
+########################################################################################
+      def overwrite_session(new_session)
+            if new_session.class == Mechanize
+                  @session = new_session
+            end
+      end
+########################################################################################
+      def sessionid_cookie()
+            value = nil
+            begin
+                  value = @session.cookie_jar.jar["steamcommunity.com"]["/"]["sessionid"].value
+            rescue
+                  value = nil
+            end
+            if value == nil
+                  begin
+                        @session.cookie_jar.jar["store.steampowered.com"]["/"]["sessionid"].value
+                  rescue
+                        value = nil
+                  end
+            end
+
+            if value == nil
+                  @session.cookies.each { |c|
+                        if c.name == "sessionid"
+                               value = c.value
+                         end
+                  }
+            end
+            return value
+      end
+
+
+
+      private
+      def partner_id_to_steam_id(account_id)
+            unknown_constant = 17825793 # or 0x1100001 idk wtf is this but ....
+            first_bytes = [account_id.to_i].pack('i>')
+            last_bytes = [unknown_constant].pack('i>')
+            collect = last_bytes + first_bytes
+            return collect.unpack('Q>')[0].to_s
+      end
+
+
+end

data/lib/Trade.rb

@@ -0,0 +1,73 @@
+module TradeCommands
+
+
+      def clean_items(items)
+            items.each { |t|
+                  t["amount"] = t["amount"].to_i
+                  t.delete_if {|k,v|   k != 'appid' && k != 'contextid' && k != 'assetid' && k != "amount"}
+            }
+            return items
+      end
+
+
+      def send_offer(mine, they, link, message = '')
+            partner_raw = link.split('partner=',2)[1].split('&',2)[0]
+
+
+            token = link.split('token=', 2)[1]
+
+
+            theirs = clean_items(they)
+
+
+            me = clean_items(mine)
+
+            partner_steamid = partner_id_to_steam_id(partner_raw)
+
+
+            sessionid = sessionid_cookie()
+
+            params = {
+                  'sessionid' => sessionid,
+                  'serverid' => 1,
+                  'partner' => partner_steamid,
+                  'tradeoffermessage' => message,
+                  'json_tradeoffer' => {
+                        "newversion" => true,
+                       "version" => 4,
+                       "me" => {
+                            "assets" => mine, #create this array
+                            "currency" => [],
+                            "ready" => false
+                       },
+                       "them" => {
+                            "assets" => theirs, #create this array
+                            "currency" => [],
+                            "ready" => false
+                        }
+                  }.to_json, ###ADDED TO JSON FIX
+                  'captcha' => '',
+                  'trade_offer_create_params' => {'trade_offer_access_token' => token}.to_json ## ADDED TO JSON FIX
+            }
+
+            send = @session.post(
+                  'https://steamcommunity.com/tradeoffer/new/send',
+                  params,
+                  {'Referer' =>  'https://steamcommunity.com/tradeoffer/new', 'Origin' => 'https://steamcommunity.com'}
+            )
+            response = JSON.parse(send.body)
+            puts "trade offer sent" + response["tradeofferid"])
+            if response["needs_mobile_confirmation"] == true
+                  if @identity_secret != nil && @steamid != nil
+                        responsehash = response.merge(send_trade_allow_request(response["tradeofferid"]))
+                        puts "offer confirmed" + response["tradeofferid"])
+                  else
+                        puts "cannot confirm trade automatically, informations missing"
+                        puts "Please confirm the trade offer manually #{response["tradeofferid"]} "
+                  end
+            end
+
+      end
+
+
+end

data/lib/steam-trade.rb

@@ -0,0 +1,42 @@
+require 'mechanize'
+require 'json'
+require 'openssl'
+require 'base64'
+
+require 'LoginExecutor.rb'
+require 'Misc.rb'
+require 'Trade.rb'
+require 'Confirmation.rb'
+require 'Trade.rb'
+
+class Handler
+      include LoginCommands
+      include TradeCommands
+      include ConfirmationCommands
+      include GuardCommands
+      include Abilites
+
+      def initialize(username,password,secret = nil)
+            @username = username
+            @password = password
+            @secret = secret
+
+            @steamid = nil # will be initialized once you login and can be initialized with mobile_info
+            @identity_secret = nil # can and should be initialized using mobile_info
+            @confirmator = nil # will be initialized once steamid and identity secret are set
+
+            @session = Mechanize.new { |agent|
+                  agent.user_agent_alias = 'Windows Mozilla'
+                  agent.follow_meta_refresh = true
+            }
+            login
+      end
+
+      def mobile_info(identity_secret, steamid = nil)
+            @identity_secret = identity_secret
+            if @steamid == nil && steamid != nil
+                  @steamid = steamid
+            end
+      end
+
+end

data/steam-trade.gemspec

@@ -0,0 +1,30 @@
+
+lib = File.expand_path("../lib", __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+
+
+Gem::Specification.new do |spec|
+  spec.name          = "steam-trade"
+  spec.version       = '0.0.2'
+  spec.date             = '2018-04-21'
+  spec.authors       = ["OmG3r"]
+  spec.email         = ["adam.boulila@live.fr"]
+  spec.files            = Dir['lib/   *.rb'] + Dir['bin/*']
+  spec.summary       = %q{Manage steam trading offers. }
+  spec.description   = %q{Send steam trading offers, generate steam 2FA codes, confirm steam trade offers}
+  spec.homepage      = "https://github.com/OmG3r/steam-trade/"
+  spec.license       = "MIT"
+
+
+
+  spec.files         = `git ls-files -z`.split("\x0").reject do |f|
+    f.match(%r{^(test|spec|features)/})
+  end
+  spec.bindir        = "exe"
+  spec.executables   = []
+  spec.require_paths = ["lib"]
+
+  spec.add_development_dependency "bundler", "~> 1.16"
+  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_runtime_dependency "mechanize", '~> 2.7', '>= 2.7.0'
+end

metadata

@@ -0,0 +1,107 @@
+--- !ruby/object:Gem::Specification
+name: steam-trade
+version: !ruby/object:Gem::Version
+  version: 0.0.2
+platform: ruby
+authors:
+- OmG3r
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2018-04-21 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.16'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.16'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: mechanize
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.7'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.7.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.7'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.7.0
+description: Send steam trading offers, generate steam 2FA codes, confirm steam trade
+  offers
+email:
+- adam.boulila@live.fr
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/console
+- bin/setup
+- lib/Confirmation.rb
+- lib/Guard.rb
+- lib/LoginExecutor.rb
+- lib/Misc.rb
+- lib/Trade.rb
+- lib/steam-trade.rb
+- steam-trade.gemspec
+homepage: https://github.com/OmG3r/steam-trade/
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.5.2
+signing_key: 
+specification_version: 4
+summary: Manage steam trading offers.
+test_files: []