How to decompile apk from Play Store

-
This is how you can decompile an application you have installed on your phone. My phone is rooted, uses RootBox 3.5 and has BusyBox installed. You may need to have that too if you want to follow my steps completly. Let's start: 1. Install application from market 2. Download apk to computer First you need to locate the apk on the phone. Connect to the phone: adb shell Find the apk in the folder the apk are downloaded to. It is ussualy in '/data/app/' or '/system/app/'. The apk is called as the id from the Play Store, for example 'com.something.someapp.apk'. You can see this in the url from Play. Next you need to pull it to the computer. Once you have located the apk and know it's name exit adb. On your PC execute: adb pull /data/app/com.something.someapp.apk 3. Transform apk to jar I use dex2jar dex2jar-0.0.9.11/d2j-dex2jar.sh com.something.someapp.apk 4. See the code inside the jar I use Java Decompiler Just open the ...
Post a Comment

JSecurity and active directory in grails

-
This was done as a way to force domain users to log in before using the applications.
The old implementation used the jcifs library with jetty, but after upgrading to glashfish, jcifs started to fail randomly, especially when the application was accessed using IE.
And, after reading on their web site that the httpfilter is no longer supported, I started looking for free alternatives to Jcifs.
On the JSecurity plugin home it said it works with ldap, but the configuration they gave seemed complicated and I didn't really get it.
On the other hand I found this nice blog entry of how to use java/jndi and active directory.
http://mhimu.wordpress.com/2009/03/18/active-directory-authentication-using-javajndi/

This is how o put them together:

1. install the jsecurity plugin in your grails app

grails install-plugin jsecurity


2. generate the ldap realm and the auth controller. This comes default with jsecurity.

grails create-ldap-realm
grails create-auth-controller


3. Create a filter to redirect all the anonymous request to the login.
It might look like this and should be placed in your-app/grails-app/conf

public class SecurityADFilters {

  def filters = {
    loginCheck(controller: '*', action: '*') {
      before = {
         if (controllerName == "auth") return true
        accessControl { true }
      }

    }
  }
}


4. Modify the generated JsecLdapRealm based on the example above. It could look like this. This is a mock, some lines of code can be removed, if you don't need to get info about the user.


class JsecLdapRealm {
  static authTokenClass = org.jsecurity.authc.UsernamePasswordToken

  def grailsApplication

  def authenticate(authToken) {
    log.info "Attempting to authenticate ${authToken.username} in LDAP realm..."
    def username = authToken.username
    def password = new String(authToken.password)

    // Get LDAP config for application. Use defaults when no config
    // is provided.
    def appConfig = grailsApplication.config
    def ldapHost = appConfig.ldap.ldapHost ?: ["ldap://localhost:389/"]
    def searchBase = appConfig.ldap.searchBase ?: ""
    def domain = appConfig.ldap.domain ?: ""
    def usernameAttribute = appConfig.ldap.username.attribute ?: "uid"
    def skipAuthc = appConfig.ldap.skip.authentication ?: false
    def skipCredChk = appConfig.ldap.skip.credentialsCheck ?: false
    def allowEmptyPass = appConfig.ldap.allowEmptyPasswords != [:] ? appConfig.ldap.allowEmptyPasswords : true

    // Skip authentication ?
    if (skipAuthc) {
      log.info "Skipping authentication in development mode."
      return username
    }

    // Null username is invalid
    if (username == null) {
      throw new AccountException("Null usernames are not allowed by this realm.")
    }

    // Empty username is invalid
    if (username == "") {
      throw new AccountException("Empty usernames are not allowed by this realm.")
    }

    // Allow empty passwords ?
    if (!allowEmptyPass) {
      // Null password is invalid
      if (password == null) {
        throw new CredentialsException("Null password are not allowed by this realm.")
      }

      // empty password is invalid
      if (password == "") {
        throw new CredentialsException("Empty passwords are not allowed by this realm.")
      }
    }

    String[] returnedAtts = ["sn", "givenName", "mail"];
    String searchFilter = "(&(objectClass=user)(sAMAccountName=" + username + "))";

    //Create the search controls
    SearchControls searchCtls = new SearchControls();
    searchCtls.setReturningAttributes(returnedAtts);

    //Specify the search scope
    searchCtls.setSearchScope(SearchControls.SUBTREE_SCOPE);

    Hashtable env = new Hashtable();
    env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
    env.put(Context.PROVIDER_URL, ldapHost);
    env.put(Context.SECURITY_AUTHENTICATION, "simple");
    env.put(Context.SECURITY_PRINCIPAL, username + "@" + domain);
    env.put(Context.SECURITY_CREDENTIALS, password);

    LdapContext ctxGC = null;
    try {
      ctxGC = new InitialLdapContext(env, null);
      //Search objects in GC using filters
      NamingEnumeration answer = ctxGC.search(searchBase, searchFilter, searchCtls);
      while (answer.hasMoreElements()) {
        SearchResult sr = (SearchResult) answer.next();
        Attributes attrs = sr.getAttributes();
        Map amap = null;
        if (attrs != null) {
          amap = new HashMap();
          NamingEnumeration ne = attrs.getAll();
          while (ne.hasMore()) {
            Attribute attr = (Attribute) ne.next();
            amap.put(attr.getID(), attr.get());
          }
          ne.close();
        }
        if (amap != null) return username
        else return false
      }
    }
    catch (NamingException ex) {
      ex.printStackTrace();
    }
}
}


5. Notice that above we are using some properties from appConfig so we shall add them. In grails-app/conf/Config.groovy add

// configure the ldap realm

ldap.domain = 'domain'
ldap.ldapHost = 'ldap://ldaphost'
ldap.searchBase = 'DC=***,DC=***' //or whatever is suitable for you

ldap.skip.authentication = false
ldap.skip.credentialsCheck = false
ldap.allowEmptyPasswords = false

//consult your LDAP admin

jsecurity.authentication.strategy = new org.jsecurity.authc.pam.AtLeastOneSuccessfulModularAuthenticationStrategy()


That is about it. I hope I did not forget anything.
Now every time you access the application you will have to log in using your domain account.

Comments

Post a Comment

Popular posts from this blog

Update: Intellij 12 + Android Annotations 2.7 + maven

-
Image
This is my previous post updated for the new versions of intelliJ Idea 12 and Android Annotations 2.7 1. Create your project with Android Maven Plugin Read the GettingStarted You can run this command to get the basic structure: mvn archetype:generate \ -DarchetypeArtifactId=android-quickstart \ -DarchetypeGroupId=de.akquinet.android.archetypes \ -DarchetypeVersion=1.0.9 \ -DgroupId=com.tagonsoft \ -DartifactId=ExampleApp Add/Edit the dependency to android: With android from central mvn repository: com.google.android android 4.1.1.4 Or with android from maven-android-sdk-deployer : android android 4.2_r1 provided Run 'mvn idea:idea' to get the basic idea project to start with. 2. Add AndroidAnnotations to maven pom.xml com.googlecode.androidannotations androidannotations 2.7.1 provided com.googlecode.androidannotations androidannotations-api 2.7.1 ...
Read more

Ways to map and query many-to-many in GORM

-
I played with many-to-many relations in grails and found some interesting ways to work with them. First the domain definitions. For the purpose of this demo I chose the classic example with books and authors. A book may have many authors and an author may have many books. class Author { String name } class Book { String name } What I consider the silliest way to define your domains I found here http://www.grails.org/Many-to-Many+Mapping+without+Hibernate+XML They suggest mapping the join table using a domain object and creating the links by hand. On 'books and authors' it would look like class Book { String name static hasMany = [ memberships: Membership] List authors() { return memberships.collect {it.author} } List addToAuthors(Author author) { Membership.link(this, author) return authors() } List removeFromAuthors(Author author) { Membership.unlink(this, author) return authors() } } class Author { String name static hasMany = [memb...
Read more

How to decompile apk from Play Store

-
This is how you can decompile an application you have installed on your phone. My phone is rooted, uses RootBox 3.5 and has BusyBox installed. You may need to have that too if you want to follow my steps completly. Let's start: 1. Install application from market 2. Download apk to computer First you need to locate the apk on the phone. Connect to the phone: adb shell Find the apk in the folder the apk are downloaded to. It is ussualy in '/data/app/' or '/system/app/'. The apk is called as the id from the Play Store, for example 'com.something.someapp.apk'. You can see this in the url from Play. Next you need to pull it to the computer. Once you have located the apk and know it's name exit adb. On your PC execute: adb pull /data/app/com.something.someapp.apk 3. Transform apk to jar I use dex2jar dex2jar-0.0.9.11/d2j-dex2jar.sh com.something.someapp.apk 4. See the code inside the jar I use Java Decompiler Just open the ...
Read more