EnAccess
diff --git a/‎.github/workflows/ci-cd.yml‎
Lines changed: 17 additions & 0 deletions b/‎.github/workflows/ci-cd.yml‎
Lines changed: 17 additions & 0 deletions
diff --git a/‎.gitignore‎
Lines changed: 3 additions & 0 deletions b/‎.gitignore‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎LICENSE‎
Lines changed: 1 addition & 1 deletion b/‎LICENSE‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎README.md‎
Lines changed: 152 additions & 2 deletions b/‎README.md‎
Lines changed: 152 additions & 2 deletions
diff --git a/‎openpaygo/__init__.py‎
Lines changed: 11 additions & 0 deletions b/‎openpaygo/__init__.py‎
Lines changed: 11 additions & 0 deletions
diff --git a/‎openpaygo/decode_token.py‎
Lines changed: 150 additions & 0 deletions b/‎openpaygo/decode_token.py‎
Lines changed: 150 additions & 0 deletions
@@ -0,0 +1,17 @@
+# .github/workflows/ci-cd.yml
+name: PyPI Publish
+on: push
+jobs:
+  pypi-publish:
+    name: Upload release to PyPI
+    if: github.ref == 'refs/heads/master' # On main only
+    runs-on: ubuntu-latest
+    environment:
+      name: pypi
+      url: https://pypi.org/p/openpaygo
+    permissions:
+      id-token: write  # IMPORTANT: this permission is mandatory for trusted publishing
+    steps:
+      # retrieve your distributions here
+      - name: Publish package distributions to PyPI
+        uses: pypa/gh-action-pypi-publish@release/v1
@@ -0,0 +1,3 @@
+*.pyc
+dist
+openpaygo.egg-info
@@ -1,6 +1,6 @@
 MIT License
 
-Copyright (c) 2023 OpenPAYGO
+Copyright (c) 2023 Eternum Ltd T/A Solaris Offgrid
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
 
@@ -1,2 +1,152 @@
-# openpaygo-python
-A Python library for adding support for OpenPAYGO technologies on servers. 
+# OpenPAYGOToken - Python Lib
+
+This repository contains the Python library for using implementing the different OpenPAYGOToken Suite technologies on your server (for generating tokens and decoding openpaygo metrics payloads) or device (for decoding tokens and making openpaygo metrics payloads).  
+
+<p align="center">
+  <img
+    alt="Project Status"
+    src="https://img.shields.io/badge/Project%20Status-beta-orange"
+  >
+  <a href="https://github.com/openpaygo/metrics/blob/main/LICENSE" target="_blank">
+    <img
+      alt="License"
+      src="https://img.shields.io/github/license/openpaygo/openpaygo-python"
+    >
+  </a>
+</p>
+
+This open-source project was sponsored by: 
+- Solaris Offgrid
+- EnAccess
+
+## Table of Contents
+
+  - [Installing the library](#installing-the-library)
+  - [Getting Started - Generating Tokens](#getting-started---generating-tokens)
+  - [Getting Started - Decoding a Token](#getting-started---decoding-a-token)
+
+
+## Installing the library
+
+You can install the library by running `pip install openpaygo` or adding `openpaygo` in your requirements.txt file and running `pip install -r requirements.txt`. 
+
+## Getting Started - Generating Tokens
+
+You can use the `generate_token()` function to generate an OpenPAYGOToken Token. The function takes the following parameters, and they should match the configuration in the hardware of the device: 
+
+- `secret_key` (required): The secret key of the device. Must be passed as an hexadecimal string (with 32 characters). 
+- `count` (required): The token count used to make the last token.
+- `value` (optional): The value to be passed in the token (typically the number of days of activation). Optional if the `token_type` is Disable PAYG or Counter Sync. The value must be between 0 and 995. 
+- `token_type` (optional): Used to set the type of token (default is Add Time). Token types can be found in the `TokenType` class: ADD_TIME, SET_TIME, DISABLE_PAYG, COUNTER_SYNC. 
+- `starting_code` (optional): If not provided, it is generated according to the method defined in the standard (SipHash-2-4 of the key, transformed to digit by the same method as the token generation).
+- `value_divider` (optional): The dividing factor used for the value. 
+- `restricted_digit_set` (optional): If set to `true`, the the restricted digit set will be used (only digits from 1 to 4). 
+- `extended_token` (optional): If set to `true` then a larger token will be generated, able to contain values up to 999999. This is for special use cases of each device, such as settings change, and is not set in the standard. 
+
+The function returns the `updated_count` as a number as well as the `token` as a string, in that order. The function will raise a `ValueError` if the key is in the wrong format or the value invalid. 
+
+
+**Example 1 - Add 7 days:**
+
+```
+from openpaygo import generate_token
+from myexampleproject import device_getter
+
+# We get a device with the parameters we need from our database, this will be specific to your project
+device = device_getter(serial=1234)
+
+# We get the new token and update the count
+device.count, new_token = generate_token(
+  secret_key=device.secret_key,
+  value=7,
+  count=device.count
+)
+
+print('Token: '+new_token)
+device.save() # We save the new count that we set for the device
+```
+
+**Example 2 - Disable PAYG (unlock forever):**
+
+```
+from openpaygo import generate_token, TokenType
+
+...
+
+# We get the new token and update the count
+device.count, new_token = generate_token(
+  secret_key=device.secret_key,
+  token_type=TokenType.DISABLE_PAYG,
+  count=device.count
+)
+
+print('Token: '+new_token)
+device.save() # We save the new count that we set for the device
+```
+
+
+## Getting Started - Decoding a Token
+
+You can use the `decode_token()` function to generate an OpenPAYGOToken Token. The function takes the following parameters, and they should match the configuration in the hardware of the device: 
+
+- `token` (required): The token that was given by the user
+- `secret_key` (required): The secret key of the device
+- `count` (required): The token count of the last valid token. When a device is new, this is 1. 
+- `used_counts` (optional): An array of recently used token counts, as returned by the function itself after the last valid token was decoded. This allows for handling unordered token entry. 
+- `starting_code` (optional): If not provided, it is generated according to the method defined in the standard (SipHash-2-4 of the key, transformed to digit by the same method as the token generation).
+- `value_divider` (optional): The dividing factor used for the value. 
+- `restricted_digit_set` (optional): If set to `true`, the the restricted digit set will be used (only digits from 1 to 4). 
+
+
+The function returns the following variable in this order: 
+- `value`: The value associated with the token (if the token is ADD_TIME or SET_TIME). 
+- `token_type`: The type of the token that was provided. Token types can be found in the `TokenType` class: ADD_TIME, SET_TIME, DISABLE_PAYG, COUNTER_SYNC or ALREADY_USED (if the token is valid but already used), INVALID (if the token was invalid). 
+- `updated_count`: The token count of the token, if it was valid. 
+- `updated_used_counts`: The updated array of recently used token, if the token was valid. 
+
+The function will raise a `ValueError` if the key is in the wrong format, but will not raise an error if the token is invalid (as it is a common expected behaviour), to check the validity of the token you must check the return `token_type` and proceed accordingly depending on the type of token. 
+
+
+**Example:**
+
+```
+from openpaygo import decode_token
+
+# We assume the users enters a token and that the device state is saved in my_device_state
+...
+
+# We decode the token
+value, token_type, updated_count, updated_used_counts = decode_token(
+  token=token_input,
+  secret_key=my_device_state.secret_key,
+  count=my_device_state.count,
+  used_counts=my_device_state.used_counts
+)
+
+# If the token is valid, we update our count in the device state
+if token_type not in [TokenType.ALREADY_USED, TokenType.INVALID]:
+  my_device_state.count = updated_count
+  my_device_state.used_counts = updated_used_counts
+
+# We perform the appropriate behaviour based on the token data
+if token_type == TokenType.ADD_TIME:
+  my_device_state.days_remaining += value
+  print(f'Added {value} days remaining')
+elif token_type == TokenType.SET_TIME:
+  my_device_state.days_remaining = value
+  print(f'Set to {value} days remaining')
+elif token_type == TokenType.DISABLE_PAYG:
+  my_device_state.unlocked_forever = True
+elif token_type == TokenType.COUNTER_SYNC:
+  print('Counter Synced')
+elif token_type == TokenType.ALREADY_USED:
+  print('Token was already used')
+elif token_type == TokenType.INVALID:
+  print('Token is invalid')
+```
+
+
+## Changelog
+
+### 2023-10-03 - v0.1.2
+- First working version published on PyPi
@@ -0,0 +1,11 @@
+from .encode_token import OpenPAYGOTokenEncoder
+from .decode_token import OpenPAYGOTokenDecoder
+from .shared import TokenType
+
+
+def generate_token(**kwargs):
+    return OpenPAYGOTokenEncoder.generate_token(**kwargs)
+
+
+def decode_token(**kwargs):
+    return OpenPAYGOTokenDecoder.decode_token(**kwargs)
@@ -0,0 +1,150 @@
+from .shared import OpenPAYGOTokenShared, TokenType
+from .shared_extended import OpenPAYGOTokenSharedExtended
+
+
+class OpenPAYGOTokenDecoder(object):
+    MAX_TOKEN_JUMP = 64
+    MAX_TOKEN_JUMP_COUNTER_SYNC = 100
+    MAX_UNUSED_OLDER_TOKENS = 8*2
+
+    @classmethod
+    def decode_token(cls, token, secret_key, count, used_counts=None, starting_code=None, value_divider=1, restricted_digit_set=False):
+        secret_key = OpenPAYGOTokenShared.load_secret_key_from_hex(secret_key)
+        if not starting_code:
+            # We generate the starting code from the key if not provided
+            starting_code = OpenPAYGOTokenShared.generate_starting_code(secret_key)
+        if not restricted_digit_set:
+            if len(token) <= 9:
+                extended_token = False
+            elif len(token) <= 12:
+                extended_token = True
+            else:
+                raise ValueError("Token is too long")
+        elif restricted_digit_set:
+            if len(token) <= 15:
+                extended_token = False
+            elif len(token) <= 20:
+                extended_token = True
+            else:
+                raise ValueError("Token is too long")
+        if not extended_token:
+            value, token_type, count, updated_counts = cls.get_activation_value_count_and_type_from_token(token, starting_code, secret_key, count, restricted_digit_set, used_counts)
+        else:
+            value, token_type, count, updated_counts = cls.get_activation_value_count_from_extended_token(token, starting_code, secret_key, count, restricted_digit_set, used_counts)
+        if value and value_divider:
+            value = value / value_divider
+        return value, token_type, count, updated_counts
+
+    @classmethod
+    def get_activation_value_count_and_type_from_token(cls, token, starting_code, key, last_count,
+                                                       restricted_digit_set=False, used_counts=None):
+        if restricted_digit_set:
+            token = OpenPAYGOTokenShared.convert_from_4_digit_token(token)
+        valid_older_token = False
+        token_base = OpenPAYGOTokenShared.get_token_base(token)  # We get the base of the token
+        current_code = OpenPAYGOTokenShared.put_base_in_token(starting_code, token_base)  # We put it into the starting code
+        starting_code_base = OpenPAYGOTokenShared.get_token_base(starting_code)  # We get the base of the starting code
+        value = cls._decode_base(starting_code_base, token_base)  # If there is a match we get the value from the token
+        # We try all combination up until last_count + TOKEN_JUMP, or to the larger jump if syncing counter
+        # We could start directly the loop at the last count if we kept the token value for the last count
+        if value == OpenPAYGOTokenShared.COUNTER_SYNC_VALUE:
+            max_count_try = last_count + cls.MAX_TOKEN_JUMP_COUNTER_SYNC + 1
+        else:
+            max_count_try = last_count + cls.MAX_TOKEN_JUMP + 1
+        for count in range(0, max_count_try):
+            masked_token = OpenPAYGOTokenShared.put_base_in_token(current_code, token_base)
+            if count % 2:
+                if value == OpenPAYGOTokenShared.COUNTER_SYNC_VALUE:
+                    this_type = TokenType.COUNTER_SYNC
+                elif value == OpenPAYGOTokenShared.PAYG_DISABLE_VALUE:
+                    this_type = TokenType.DISABLE_PAYG
+                else:
+                    this_type = TokenType.SET_TIME
+            else:
+                this_type = TokenType.ADD_TIME
+            if masked_token == token:
+                if cls._count_is_valid(count, last_count, value, this_type, used_counts):
+                    updated_counts = cls.update_used_counts(used_counts, value, count, this_type)
+                    return value, this_type, count, updated_counts
+                else:
+                    valid_older_token = True
+            current_code = OpenPAYGOTokenShared.generate_next_token(current_code, key)  # If not we go to the next token
+        if valid_older_token:
+            return None, TokenType.ALREADY_USED, None, None
+        return None, TokenType.INVALID, None, None
+
+    @classmethod
+    def _count_is_valid(cls, count, last_count, value, type, used_counts):
+        if value == OpenPAYGOTokenShared.COUNTER_SYNC_VALUE:
+            if count > (last_count - cls.MAX_TOKEN_JUMP):
+                return True
+        elif count > last_count:
+            return True
+        elif cls.MAX_UNUSED_OLDER_TOKENS > 0:
+            if count > last_count - cls.MAX_UNUSED_OLDER_TOKENS:
+                if count not in used_counts and type == TokenType.ADD_TIME:
+                    return True
+        return False
+
+    @classmethod
+    def update_used_counts(cls, past_used_counts, value, new_count, type):
+        if not past_used_counts:
+            return None
+        highest_count = max(past_used_counts) if past_used_counts else 0
+        if new_count > highest_count:
+            highest_count = new_count
+        bottom_range = highest_count-cls.MAX_UNUSED_OLDER_TOKENS
+        used_counts = []
+        if type != TokenType.ADD_TIME or value == OpenPAYGOTokenShared.COUNTER_SYNC_VALUE or value == OpenPAYGOTokenShared.PAYG_DISABLE_VALUE:
+            # If it is not an Add-Time token, we mark all the past tokens as used in the range
+            for count in range(bottom_range, highest_count+1):
+                used_counts.append(count)
+        else:
+            # If it is an Add-Time token, we just mark the tokens actually used in the range
+            for count in range(bottom_range, highest_count+1):
+                if count == new_count or count in past_used_counts:
+                    used_counts.append(count)
+        return used_counts
+
+    @classmethod
+    def _decode_base(cls, starting_code_base, token_base):
+        decoded_value = token_base - starting_code_base
+        if decoded_value < 0:
+            return decoded_value + 1000
+        else:
+            return decoded_value
+
+    @classmethod
+    def get_activation_value_count_from_extended_token(cls, token, starting_code, key, last_count,
+                                                       restricted_digit_set=False, used_counts=None):
+        if restricted_digit_set:
+            token = OpenPAYGOTokenSharedExtended.convert_from_4_digit_token(token)
+        token_base = OpenPAYGOTokenSharedExtended.get_token_base(token) # We get the base of the token
+        current_code = OpenPAYGOTokenSharedExtended.put_base_in_token(starting_code, token_base) # We put it into the starting code
+        starting_code_base = OpenPAYGOTokenSharedExtended.get_token_base(starting_code) # We get the base of the starting code
+        value = cls._decode_base_extended(starting_code_base, token_base)  # If there is a match we get the value from the token
+        max_count_try = last_count + cls.MAX_TOKEN_JUMP + 1
+        for count in range(0, max_count_try):
+            masked_token = OpenPAYGOTokenSharedExtended.put_base_in_token(current_code, token_base)
+            if count % 2:
+                this_type = TokenType.SET_TIME
+            else:
+                this_type = TokenType.ADD_TIME
+            if masked_token == token:
+                if cls._count_is_valid(count, last_count, value, this_type, used_counts):
+                    updated_counts = cls.update_used_counts(used_counts, value, count, this_type)
+                    return value, this_type, count, updated_counts
+                else:
+                    valid_older_token = True
+            current_code = OpenPAYGOTokenSharedExtended.generate_next_token(current_code, key) # If not we go to the next token
+        if valid_older_token:
+            return None, TokenType.ALREADY_USED, None, None
+        return None, TokenType.INVALID, None, None
+
+    @classmethod
+    def _decode_base_extended(cls, starting_code_base, token_base):
+        decoded_value = token_base - starting_code_base
+        if decoded_value < 0:
+            return decoded_value + 1000000
+        else:
+            return decoded_value
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+*.pyc`
	`2`	`+dist`
	`3`	`+openpaygo.egg-info`