-
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathnitter-guest-account.py
352 lines (311 loc) · 11.1 KB
/
nitter-guest-account.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
# nitter-guest-account.py
# cross-platform port of https://github.com/zedeus/nitter/issues/983#issuecomment-1681199357
# thank you!
import sys
import json
import time
import random
import typing
import traceback
from base64 import b64encode
from argparse import ArgumentParser
try:
import requests
except ImportError:
print("\x1b[31m[!] Could not import `requests`.")
print("\x1b[31m[!] This script requires the requests module to be installed.")
print("\x1b[31m[!] We apologize but using plain http.client is way too painful."
" Please reach out with a PR if you would like to change that!")
sys.exit(1)
verbose = False
noprettyprint = False
# Constants
CONSUMER_KEY = "3nVuSoBZnx6U4vzUxf5w"
CONSUMER_SECRET = "Bcs59EFbbsdF6Sl9Ng71smgStWEGwXXKSjYvPVt7qys"
EXPECTED_BEARER_TOKEN = "Bearer AAAAAAAAAAAAAAAAAAAAAFXzAwAAAAAAMHCxpeSDG1gLNLghVe8d74hl6k4%3DRUMF4xAQLsbeBhTSRrCiQpJtxoGWeyHrDb5te2jpGskWDFW82F"
BASE_REQUEST_HEADERS = {
'Content-Type': 'application/json',
'User-Agent': 'TwitterAndroid/9.95.0-release.0 (29950000-r-0) ONEPLUS+A3010/9 (OnePlus;ONEPLUS+A3010;OnePlus;OnePlus3;0;;1;2016)',
'X-Twitter-API-Version': '5',
'X-Twitter-Client': 'TwitterAndroid',
'X-Twitter-Client-Version': '9.95.0-release.0',
'OS-Version': '28',
'System-User-Agent': 'Dalvik/2.1.0 (Linux; U; Android 9; ONEPLUS A3010 Build/PKQ1.181203.001)',
'X-Twitter-Active-User': 'yes',
}
BASE_URL = "https://api.twitter.com"
BEARER_TOKEN_ENDPOINT = "/oauth2/token"
GUEST_TOKEN_ENDPOINT = "/1.1/guest/activate.json"
FLOW_TOKEN_ENDPOINT = "/1.1/onboarding/task.json?flow_name=welcome&api_version=1&known_device_token=&sim_country_code=us"
TASKS_ENDPOINT = "/1.1/onboarding/task.json"
def send_req(method, endpoint, **kwargs) -> requests.Response:
debug(f"attempting `{endpoint}`")
try:
res = requests.request(method, BASE_URL + endpoint, **kwargs)
res.raise_for_status()
except requests.HTTPError:
error("HTTP request failed (non 2xx), unable to proceed.")
error('Please try again in a bit')
debug(f"request headers => {res.request.headers}")
debug(f"response headers => {res.headers}")
debug(f'response body => {res.content}')
sys.exit(1)
except Exception:
error(f"an unhandled error while sending a request to {endpoint} occurred")
raise
debug(f'got response body {res.content}')
return res
B_SUBTASK_VERSIONS = {
"generic_urt": 3,
"standard": 1,
"open_home_timeline": 1,
"app_locale_update": 1,
"enter_date": 1,
"email_verification": 3,
"enter_password": 5,
"enter_text": 5,
"one_tap": 2,
"cta": 7,
"single_sign_on": 1,
"fetch_persisted_data": 1,
"enter_username": 3,
"web_modal": 2,
"fetch_temporary_password": 1,
"menu_dialog": 1,
"sign_up_review": 5,
"interest_picker": 4,
"user_recommendations_urt": 3,
"in_app_notification": 1,
"sign_up": 2,
"typeahead_search": 1,
"user_recommendations_list": 4,
"cta_inline": 1,
"contacts_live_sync_permission_prompt": 3,
"choice_selection": 5,
"js_instrumentation": 1,
"alert_dialog_suppress_client_events": 1,
"privacy_options": 1,
"topics_selector": 1,
"wait_spinner": 3,
"tweet_selection_urt": 1,
"end_flow": 1,
"settings_list": 7,
"open_external_link": 1,
"phone_verification": 5,
"security_key": 3,
"select_banner": 2,
"upload_media": 1,
"web": 2,
"alert_dialog": 1,
"open_account": 2,
"action_list": 2,
"enter_phone": 2,
"open_link": 1,
"show_code": 1,
"update_users": 1,
"check_logged_in_account": 1,
"enter_email": 2,
"select_avatar": 4,
"location_permission_prompt": 2,
"notifications_permission_prompt": 4
}
def get_flow_token_body():
return {
"flow_token": None,
"input_flow_data": {
"country_code": None,
"flow_context": {
"start_location": {
"location": "splash_screen"
}
},
"requested_variant": None,
"target_user_id": 0
},
"subtask_versions": B_SUBTASK_VERSIONS
}
def get_tasks_body(flow_token: str) -> dict:
return {
"flow_token": flow_token,
"subtask_inputs": [{
"open_link": {
"link": "next_link"
},
"subtask_id": "NextTaskOpenLink"
}],
"subtask_versions": B_SUBTASK_VERSIONS
}
# Functions
def format_json(object) -> str:
global noprettyprint
return json.dumps(object, indent=None if noprettyprint else 4)
def debug(msg, *arg, override=False, **kwarg) -> None:
global verbose
if verbose or override:
print("\x1b[37m[*]", msg, *arg, "\x1b[0m", file=sys.stderr, **kwarg)
def info(msg, *arg, **kwarg) -> None:
print("\x1b[34m[i]", msg, *arg, "\x1b[0m", file=sys.stderr, **kwarg)
def success(msg, *arg, **kwarg) -> None:
print("\x1b[32m[i]", msg, *arg, "\x1b[0m", file=sys.stderr, **kwarg)
def warn(msg, *arg, **kwarg) -> None:
print("\x1b[33m[!]", msg, *arg, "\x1b[0m", file=sys.stderr, **kwarg)
def error(msg, *arg, **kwarg) -> None:
print("\x1b[31m[x]", msg, *arg, "\x1b[0m", file=sys.stderr, **kwarg)
def prompt_bool(msg, default: typing.Optional[bool] = True) -> bool:
"""
Prompt the user for a y/n value until a valid input is entered.
:param msg: Message to display
:param default: What should the default value be if the user pressed enter. Pass in None to force user to pick one.
"""
resolved = False
p_string = f"({'Y' if default else 'y'}/{'N' if not default else 'n'})" if default is not None else "(y/n)"
while not resolved:
print("\x1b[35m[?]", msg, f"\x1b[0m{p_string}", file=sys.stderr, end=" ")
try:
r = input()
except EOFError:
debug("^D", override=True)
debug("gracefully handling EOF")
error("invalid input, please try again.")
continue
if default is None and r.strip() == "":
error('a response is required. please enter either y or n.')
continue
if r.strip() == "":
return default
# if r.strip()[0].lower() not in ['y', 'n']:
# error('invalid input. please enter either y or n.')
# continue
match r.strip()[0].lower():
case "y":
return True
case "n":
return False
case _:
error('invalid input. please enter either y or n.')
continue
# Arguments
parser = ArgumentParser()
parser.add_argument('-v', '--verbose', action='store_true', help="be more noisy")
parser.add_argument('-P', '--no-pretty', action='store_true', help="disable pretty-printing of json data")
parser.add_argument(
'outfile',
nargs="?",
default="-",
help="the json output file to put/append received account data to."
)
def main() -> int:
global verbose, noprettyprint
args = parser.parse_args()
verbose = args.verbose
noprettyprint = args.no_pretty
info("nitter-guest-account.py (2023-08-25)")
info("This is free software: you are free to change and redistribute it, under the terms of the Apache-2.0 license")
info("There is NO WARRANTY, to the extent permitted by law.")
info("Fetching bearer token...")
bt_raw = send_req('post', BEARER_TOKEN_ENDPOINT,
auth=requests.auth.HTTPBasicAuth(CONSUMER_KEY, CONSUMER_SECRET),
data={'grant_type': "client_credentials"}
).json()
bearer_token = ' '.join(bt_raw.values())
if bearer_token.lower() != EXPECTED_BEARER_TOKEN.lower():
warn('Received bearer token does not match expected value. Continuing anyways, but beware of errors.')
info(f'bearer token => {bearer_token}')
else:
success('Received bearer token matches expected value.')
info("Fetching guest token...")
guest_token = send_req('post', GUEST_TOKEN_ENDPOINT, headers={'Authorization': bearer_token}).json()['guest_token']
success(f'guest token => {guest_token}')
debug('updating header with acquried credentials')
request_headers = BASE_REQUEST_HEADERS.copy()
request_headers.update({
"authorization": bearer_token,
"X-Guest-Token": guest_token
})
info('Fetching flow token...')
flow_token = send_req('post', FLOW_TOKEN_ENDPOINT, headers=request_headers, json=get_flow_token_body()).json()['flow_token']
success(f'flow token => {flow_token}')
info('Fetching final account object...')
backoff_time = 0
exception = None
for attempt in range(0, 6):
debug(f"Attempt #{attempt + 1}")
tasks = send_req('post', TASKS_ENDPOINT, headers=request_headers, json=get_tasks_body(flow_token)).json()
try:
try:
open_account_task = next(filter(lambda i: i.get('subtask_id') == "OpenAccount", tasks['subtasks']))
account = open_account_task['open_account']
except StopIteration as e:
backoff_time += random.randint(5000,10000) / 1000
exception = e
warn(f"attempt #{attempt + 1} failed to acquire token, retrying in {backoff_time}s.")
time.sleep(backoff_time)
continue
info(f"Attempt #{attempt + 1} succeeded")
if args.outfile == "-":
debug("outfile is `-`, printing to stdout")
print(format_json(account))
return 0
# Sanity checks
try:
debug(f"attempting to read file: {args.outfile}")
with open(args.outfile) as f:
old_data = json.load(f)
except FileNotFoundError:
# that's okay, we might be able to create it later.
old_data = []
except PermissionError:
# that's not okay. we will need to access the file later anyways.
error("unable to read file due to a permission error.")
error("please make sure this script has read and write access to the file.")
print(format_json(account))
return 1
except json.JSONDecodeError:
error("could not parse the provided JSON file.")
if not prompt_bool("Do you want to overwrite the file?", default=None):
warn("Not overwriting file, printing to stdout instead.")
print(format_json(account))
return 1
debug('assuming old data is an empty array because we are overwriting')
old_data = []
if type(old_data) != list:
error("top-level object of the existing JSON file is not a list.")
error("due to the implementation, the file must be overwritten.")
if not (prompt_bool("Do you want to overwrite?", default=None)):
warn("Not overwriting existing data, printing to stdout instead.")
print(format_json(account))
return 1
debug("assuming old data is an empty array because we are overwriting")
old_data = []
old_data.append(account)
try:
debug("attempting to write file")
with open(args.outfile, 'w+') as f:
f.write(format_json(old_data))
success(f"successfully written to file {args.outfile}")
return 0
except PermissionError:
error("unable to write to file due to permission error.")
error("please make sure this script has write access to the file.")
print(format_json(account))
return 1
except Exception as e:
error("Unable to write to file due to an uncaught error:", e)
tb = ''.join(traceback.TracebackException.from_exception(e).format())
debug("exception stacktrace\n" + tb)
print(format_json(account))
except Exception:
debug("resulting tasks =>", format_json(tasks), override=True)
error("an unhandled error occurred. the tasks object is printed to avoid losing otherwise successful data.")
error("please file a bug report and attach the traceback below.")
raise
if exception != None:
debug("resulting tasks =>", format_json(tasks))
error("Unable to acquire guest account credentials with 5 attempts as it isn't present in any of the API responses.")
error("This might be because of a wide variety of reasons, but it most likely is due to your IP being rate-limited.")
error("Try again with a new IP address or in 24 hours after this attempt.")
return 1
return 0
if __name__ == "__main__":
rc = main()
sys.exit(rc)