import json import aiohttp import logging from urllib.parse import urlparse from lbrynet import conf from lbrynet.extras.daemon.auth.keyring import Keyring, APIKey log = logging.getLogger(__name__) USER_AGENT = "AuthServiceProxy/0.1" TWISTED_SECURE_SESSION = "TWISTED_SECURE_SESSION" TWISTED_SESSION = "TWISTED_SESSION" LBRY_SECRET = "LBRY_SECRET" HTTP_TIMEOUT = 30 class JSONRPCException(Exception): def __init__(self, rpc_error): super().__init__() self.error = rpc_error class UnAuthAPIClient: def __init__(self, host, port, session): self.host = host self.port = port self.session = session def __getattr__(self, method): async def f(*args, **kwargs): return await self.call(method, [args, kwargs]) return f @classmethod async def from_url(cls, url): url_fragment = urlparse(url) host = url_fragment.hostname port = url_fragment.port connector = aiohttp.TCPConnector( ssl=None if not conf.settings['use_https'] else Keyring.load_from_disk().ssl_context ) session = aiohttp.ClientSession(connector=connector) return cls(host, port, session) async def call(self, method, params=None): message = {'method': method, 'params': params} async with self.session.get(conf.settings.get_api_connection_string(), json=message) as resp: return await resp.json() class AuthAPIClient: def __init__(self, key, session, cookies, url, login_url): self.session = session self.__api_key = key self.__login_url = login_url self.__id_count = 0 self.__url = url self.__cookies = cookies def __getattr__(self, name): if name.startswith('__') and name.endswith('__'): raise AttributeError(name) def f(*args, **kwargs): return self.call(name, [args, kwargs]) return f async def call(self, method, params=None): params = params or {} self.__id_count += 1 pre_auth_post_data = { 'version': '2', 'method': method, 'params': params, 'id': self.__id_count } to_auth = json.dumps(pre_auth_post_data, sort_keys=True) auth_msg = self.__api_key.get_hmac(to_auth).decode() pre_auth_post_data.update({'hmac': auth_msg}) post_data = json.dumps(pre_auth_post_data) headers = { 'Host': self.__url.hostname, 'User-Agent': USER_AGENT, 'Content-type': 'application/json' } async with self.session.post(self.__login_url, data=post_data, headers=headers) as resp: if resp is None: raise JSONRPCException({'code': -342, 'message': 'missing HTTP response from server'}) resp.raise_for_status() next_secret = resp.headers.get(LBRY_SECRET, False) if next_secret: self.__api_key.secret = next_secret return await resp.json() @classmethod async def get_client(cls, key_name=None): api_key_name = key_name or "api" keyring = Keyring.load_from_disk() api_key = keyring.api_key login_url = conf.settings.get_api_connection_string(api_key_name, api_key.secret) url = urlparse(login_url) headers = { 'Host': url.hostname, 'User-Agent': USER_AGENT, 'Content-type': 'application/json' } connector = aiohttp.TCPConnector(ssl=None if not conf.settings['use_https'] else keyring.ssl_context) session = aiohttp.ClientSession(connector=connector) async with session.post(login_url, headers=headers) as r: cookies = r.cookies uid = cookies.get(TWISTED_SECURE_SESSION if conf.settings['use_https'] else TWISTED_SESSION).value api_key = APIKey.create(seed=uid.encode()) return cls(api_key, session, cookies, url, login_url) class LBRYAPIClient: @staticmethod def get_client(): return AuthAPIClient.get_client() if conf.settings['use_auth_http'] else \ UnAuthAPIClient.from_url(conf.settings.get_api_connection_string())