packages feed

kevin-0.11.0: src/Kevin/Util/Token.hs

{-# LANGUAGE OverloadedStrings #-}

module Kevin.Util.Token (
    getToken
) where

import           Control.Arrow
import           Crypto.Random.AESCtr             (makeSystem)
import qualified Data.ByteString.Char8 as B
import qualified Data.ByteString.Lazy.Char8 as LB
import           Data.List
import           Data.Monoid
import qualified Data.Text as T
import           Data.Text.Encoding               (decodeUtf8)
import           Network.HTTP.Base
import           Network.TLS
import           Network.TLS.Extra
import           Text.Printf

recvUntil :: TLSCtx -> B.ByteString -> IO B.ByteString
recvUntil ctx str = do
    line <- recvData ctx
    if str `B.isInfixOf` line
        then return line
        else fmap (line <>) $ recvUntil ctx str

concatHeaders :: [(String,String)] -> String
concatHeaders = intercalate "\r\n" . map (\(x,y) -> x ++ ": " ++ y)

scrapeFormValue :: String -> B.ByteString -> B.ByteString
scrapeFormValue key bs = B.takeWhile (/='"') . B.drop 7 . head
                       . filter (\l -> "value=" `B.isPrefixOf` l) . B.words . head
                       . filter (\l -> B.pack key `B.isInfixOf` l) . B.lines $ bs

scrapeCookies :: B.ByteString -> B.ByteString
scrapeCookies bs = B.intercalate ";" . map snd
                 . filter ((== "Set-Cookie") . fst)
                 . map (second (B.drop 2 . B.takeWhile (/=';'))
                       . B.breakSubstring ": ")
                 . B.lines $ bs

getToken :: T.Text -> T.Text -> IO (Maybe T.Text)
getToken uname pass = do
    let params = defaultParamsClient {
                     pCiphers = ciphersuite_all
                   , onCertificatesRecv = certificateChecks
                         [return . certificateVerifyDomain "chat.deviantart.com"]
                   }
        headers :: [(String, String)]
        headers = [("Connection", "closed"), ("Content-Type", "application/x-www-form-urlencoded")]
    gen <- makeSystem
    ctv <- connectionClient "www.deviantart.com" "443" params gen
    handshake ctv
    sendData ctv . LB.pack $ "GET /users/login HTTP/1.1\r\nHost: www.deviantart.com\r\n\r\n"
    bl <- recvUntil ctv "validate_key"
    bye ctv
    let payload = urlEncodeVars [ ("username", T.unpack uname)
                                , ("password", T.unpack pass)
                                , ("validate_token", B.unpack (scrapeFormValue "validate_token" bl))
                                , ("validate_key", B.unpack (scrapeFormValue "validate_key" bl))
                                , ("remember_me","1")
                                ]
    ctx <- connectionClient "www.deviantart.com" "443" params gen
    handshake ctx
    sendData ctx . LB.pack $ printf
        "POST /users/login HTTP/1.1\r\n%s\r\ncookie: %s\r\nContent-Length: %d\r\n\r\n%s"
        (concatHeaders $ ("Host", "www.deviantart.com"):headers)
        (B.unpack (scrapeCookies bl))
        (length payload)
        payload
    bs <- recvData ctx
    if "wrong-password" `B.isInfixOf` bs
       then return Nothing
       else do
           let s = printf "GET /chat/Botdom HTTP/1.1\r\n%s\r\ncookie: %s\r\n\r\n"
                       (concatHeaders [("Host", "chat.deviantart.com")])
                       (B.unpack (scrapeCookies bs))
           sendData ctx $ LB.pack s
           bq <- recvUntil ctx "dAmnChat_Init"
           return . (Just . decodeUtf8 . B.take 32 . B.tail
                    . B.dropWhile (/='"') . B.dropWhile (/=',') . snd)
                  . B.breakSubstring "dAmn_Login" $ bq