diff --git a/twitter_oauth.sh b/twitter_oauth.sh new file mode 100644 index 0000000..f7cfba0 --- /dev/null +++ b/twitter_oauth.sh @@ -0,0 +1,36 @@ +#!/bin/bash +# Grab oauth token for use with Nitter (requires Twitter account). +# results: {"oauth_token":"xxxxxxxxxx-xxxxxxxxx","oauth_token_secret":"xxxxxxxxxxxxxxxxxxxxx"} + +username="" +password="" + +if [[ -z "$username" || -z "$password" ]]; then + echo "needs username and password" + exit 1 +fi + +bearer_token='AAAAAAAAAAAAAAAAAAAAAFXzAwAAAAAAMHCxpeSDG1gLNLghVe8d74hl6k4%3DRUMF4xAQLsbeBhTSRrCiQpJtxoGWeyHrDb5te2jpGskWDFW82F' +guest_token=$(curl -s -XPOST https://api.twitter.com/1.1/guest/activate.json -H "Authorization: Bearer ${bearer_token}" | jq -r '.guest_token') +base_url='https://api.twitter.com/1.1/onboarding/task.json' +header=(-H "Authorization: Bearer ${bearer_token}" -H "User-Agent: TwitterAndroid/10.21.1" -H "Content-Type: application/json" -H "X-Guest-Token: ${guest_token}") + +# start flow +flow_1=$(curl -si -XPOST "${base_url}?flow_name=login" "${header[@]}") + +# get 'att', now needed in headers, and 'flow_token' from flow_1 +att=$(sed -En 's/^att: (.*)\r/\1/p' <<< "${flow_1}") +flow_token=$(sed -n '$p' <<< "${flow_1}" | jq -r .flow_token) + +# username +token_2=$(curl -s -XPOST "${base_url}" -H "att: ${att}" "${header[@]}" \ + -d '{"flow_token":"'"${flow_token}"'","subtask_inputs":[{"subtask_id":"LoginEnterUserIdentifierSSO","settings_list":{"setting_responses":[{"key":"user_identifier","response_data":{"text_data":{"result":"'"${username}"'"}}}],"link":"next_link"}}]}' | jq -r .flow_token) + +# password +token_3=$(curl -s -XPOST "${base_url}" -H "att: ${att}" "${header[@]}" \ + -d '{"flow_token":"'"${token_2}"'","subtask_inputs":[{"enter_password":{"password":"'"${password}"'","link":"next_link"},"subtask_id":"LoginEnterPassword"}]}' | jq -r .flow_token) + +# finally print oauth_token and secret +curl -s -XPOST "${base_url}" -H "att: ${att}" "${header[@]}" \ + -d '{"flow_token":"'"${token_3}"'","subtask_inputs":[{"check_logged_in_account":{"link":"AccountDuplicationCheck_false"},"subtask_id":"AccountDuplicationCheck"}]}' | \ + jq -c '.subtasks[0]|if(.open_account) then {oauth_token: .open_account.oauth_token, oauth_token_secret: .open_account.oauth_token_secret} else empty end' \ No newline at end of file