Skip to content

S
shadowban-eu-backend
Commit 776b7673 authored by root's avatar root
Browse files
Options

persistent cookie storage

parent 93d1d0ff
Hide whitespace changes
Inline Side-by-side
Showing with 57 additions and 25 deletions
.env.example
View file @ 776b7673
ACCOUNT_FILE=./.htaccounts ACCOUNT_FILE=./.htaccounts
COOKIE_DIR=./.htcookies
LOG_FILE=./logs/results.log LOG_FILE=./logs/results.log
DEBUG_FILE=./logs/debug.log DEBUG_FILE=./logs/debug.log
PORT=4040 PORT=4040
......
backend.py
View file @ 776b7673
import os
import aiohttp import aiohttp
import argparse import argparse
import asyncio import asyncio
import daemon
import json import json
import os
import re import re
import traceback import traceback
import urllib.parse import urllib.parse
...@@ -56,26 +57,45 @@ class TwitterSession: ...@@ -56,26 +57,45 @@ class TwitterSession:
if cookie.key == 'ct0': if cookie.key == 'ct0':
self._headers['X-Csrf-Token'] = cookie.value self._headers['X-Csrf-Token'] = cookie.value
async def login(self, username = None, password = None, email = None): async def login(self, username = None, password = None, email = None, cookie_dir=None):
self._session = aiohttp.ClientSession() self._session = aiohttp.ClientSession()
if password is not None: if password is not None:
async with self._session.get("https://twitter.com/login", headers=self._headers) as r: login_required = True
login_page = await r.text() cookie_file = None
form_data = {} if cookie_dir is not None:
soup = BeautifulSoup(login_page, 'html.parser') cookie_file = os.path.join(cookie_dir, username)
form_data["authenticity_token"] = soup.find('input', {'name': 'authenticity_token'}).get('value') if os.path.isfile(cookie_file):
form_data["session[username_or_email]"] = email log("Use cookie file for %s" % username)
form_data["session[password]"] = password self._session.cookie_jar.load(cookie_file)
form_data["remember_me"] = "1" login_required = False
async with self._session.post('https://twitter.com/sessions', data=form_data, headers=self._headers) as r:
await r.text() if login_required:
if str(r.url) == "https://twitter.com/": async with self._session.get("https://twitter.com/login", headers=self._headers) as r:
log("Login of %s successful" % username) login_page = await r.text()
else: form_data = {}
log("Error logging in %s" % username) soup = BeautifulSoup(login_page, 'html.parser')
form_data["authenticity_token"] = soup.find('input', {'name': 'authenticity_token'}).get('value')
form_data["session[username_or_email]"] = email
form_data["session[password]"] = password
form_data["remember_me"] = "1"
async with self._session.post('https://twitter.com/sessions', data=form_data, headers=self._headers) as r:
await r.text()
if str(r.url) == "https://twitter.com/":
log("Login of %s successful" % username)
else:
log("Error logging in %s" % username)
else:
async with self._session.get('https://twitter.com', headers=self._headers) as r:
await r.text()
self.set_csrf_header() self.set_csrf_header()
self.username = username self.username = username
if cookie_file is not None:
self._session.cookie_jar.save(cookie_file)
else: else:
self._headers['Authorization'] = 'Bearer ' + self._auth self._headers['Authorization'] = 'Bearer ' + self._auth
async with self._session.post("https://api.twitter.com/1.1/guest/activate.json", headers=self._headers) as r: async with self._session.post("https://api.twitter.com/1.1/guest/activate.json", headers=self._headers) as r:
...@@ -115,7 +135,7 @@ class TwitterSession: ...@@ -115,7 +135,7 @@ class TwitterSession:
cursor = "&cursor=" + urllib.parse.quote(cursor) cursor = "&cursor=" + urllib.parse.quote(cursor)
async with self._session.get("https://api.twitter.com/2/timeline/conversation/" + tweet_id + ".json?include_reply_count=1&send_error_codes=true&count="+str(count)+ cursor, headers=self._headers) as r: async with self._session.get("https://api.twitter.com/2/timeline/conversation/" + tweet_id + ".json?include_reply_count=1&send_error_codes=true&count="+str(count)+ cursor, headers=self._headers) as r:
result = await r.json() result = await r.json()
# debug('Tweet request ' + tweet_id + ':\n' + str(r) + '\n\n' + json.dumps(result) + '\n\n\n') debug('Tweet request ' + tweet_id + ':\n' + str(r) + '\n\n' + json.dumps(result) + '\n\n\n')
self.set_csrf_header() self.set_csrf_header()
if self.username is not None: if self.username is not None:
self.monitor_rate_limit(r.headers) self.monitor_rate_limit(r.headers)
...@@ -390,18 +410,22 @@ async def hello(request): ...@@ -390,18 +410,22 @@ async def hello(request):
await session.close() await session.close()
return web.json_response(result) return web.json_response(result)
async def login_accounts(accounts): async def login_accounts(accounts, cookie_dir=None):
if cookie_dir is not None and not os.path.isdir(cookie_dir):
os.mkdir(cookie_dir, 0o700)
coroutines = [] coroutines = []
for acc in accounts: for acc in accounts:
session = TwitterSession() session = TwitterSession()
coroutines.append(session.login(*acc)) coroutines.append(session.login(*acc, cookie_dir=cookie_dir))
account_sessions.append(session) account_sessions.append(session)
await asyncio.gather(*coroutines) await asyncio.gather(*coroutines)
parser = argparse.ArgumentParser(description='Twitter Shadowban Tester') parser = argparse.ArgumentParser(description='Twitter Shadowban Tester')
parser.add_argument('--account-file', type=str, default='.htaccounts', help='json file with reference account credentials') parser.add_argument('--account-file', type=str, default='.htaccounts', help='json file with reference account credentials')
parser.add_argument('--cookie-dir', type=str, default=None, help='directory for session account storage')
parser.add_argument('--log', type=str, default=None, help='log file where test results are written to') parser.add_argument('--log', type=str, default=None, help='log file where test results are written to')
parser.add_argument('--daemon', action='store_true', help='run in background')
parser.add_argument('--debug', type=str, default=None, help='debug log file') parser.add_argument('--debug', type=str, default=None, help='debug log file')
parser.add_argument('--port', type=int, default=8080, help='port which to listen on') parser.add_argument('--port', type=int, default=8080, help='port which to listen on')
parser.add_argument('--mongo-host', type=str, default='localhost', help='hostname or IP of mongoDB service to connect to') parser.add_argument('--mongo-host', type=str, default='localhost', help='hostname or IP of mongoDB service to connect to')
...@@ -426,9 +450,15 @@ if args.debug is not None: ...@@ -426,9 +450,15 @@ if args.debug is not None:
print("Logging debug output to %s", args.debug) print("Logging debug output to %s", args.debug)
debug_file = open(args.debug, "a") debug_file = open(args.debug, "a")
def run():
loop = asyncio.get_event_loop() loop = asyncio.get_event_loop()
loop.run_until_complete(login_accounts(accounts)) loop.run_until_complete(login_accounts(accounts, args.cookie_dir))
app = web.Application() app = web.Application()
app.add_routes(routes) app.add_routes(routes)
web.run_app(app, host='127.0.0.1', port=args.port) web.run_app(app, host='127.0.0.1', port=args.port)
if args.daemon:
with daemon.DaemonContext():
run()
else:
run()
run.sh
View file @ 776b7673
...@@ -17,6 +17,7 @@ source $EXPECTED_ENV_FILE ...@@ -17,6 +17,7 @@ source $EXPECTED_ENV_FILE
echo "Starting server..." echo "Starting server..."
python3 ./backend.py \ python3 ./backend.py \
--account-file $ACCOUNT_FILE \ --account-file $ACCOUNT_FILE \
--cookie-dir $COOKIE_DIR \
--log $LOG_FILE \ --log $LOG_FILE \
--debug $DEBUG_FILE \ --debug $DEBUG_FILE \
--port "$PORT" \ --port "$PORT" \
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment