From 999a374f5139c6f89d4d7fa39f218be064f05afe Mon Sep 17 00:00:00 2001
From: CRIMINAL <datahoarders@protonmail.com>
Date: Wed, 5 May 2021 21:49:35 +0100
Subject: [PATCH] Dynamic Rules

Script will grab signed_header rules from github so the end user won't have to keep updating the script.

OF's goal is to create download fatigue on the end user so they won't use scripts to archive data.

Right now the script uses inefficient logic to assign the rules. I'll update the script later, but I just wanted to put this out now.

Logic being used right now, is that on every request to a OnlyFans' api the script sends a request to Github to grab the rules, and then proceed with the request.
---
 apis/api_helper.py        |  4 ++--
 apis/onlyfans/onlyfans.py | 20 ++++++++------------
 2 files changed, 10 insertions(+), 14 deletions(-)

diff --git a/apis/api_helper.py b/apis/api_helper.py
index 28a5d8488..1b8c0ba23 100644
--- a/apis/api_helper.py
+++ b/apis/api_helper.py
@@ -96,7 +96,7 @@ def process_links(link, session):
         t1 = threading.Thread(target=do, args=[self])
         t1.start()
 
-    def json_request(self, link: str, session: Union[Session] = None, method="GET", stream=False, json_format=True, data={}, sleep=True, timeout=20, ignore_rules=False) -> Any:
+    def json_request(self, link: str, session: Union[Session] = None, method="GET", stream=False, json_format=True, data={}, sleep=True, timeout=20, ignore_rules=False, force_json=False) -> Any:
         headers = {}
         if not session:
             session = self.sessions[0]
@@ -126,7 +126,7 @@ def json_request(self, link: str, session: Union[Session] = None, method="GET",
                 if json_format:
                     content_type = r.headers['Content-Type']
                     matches = ["application/json;", "application/vnd.api+json"]
-                    if all(match not in content_type for match in matches):
+                    if not force_json and all(match not in content_type for match in matches):
                         continue
                     text = r.text
                     if not text:
diff --git a/apis/onlyfans/onlyfans.py b/apis/onlyfans/onlyfans.py
index 6c606a4d1..a273eb228 100644
--- a/apis/onlyfans/onlyfans.py
+++ b/apis/onlyfans/onlyfans.py
@@ -24,31 +24,25 @@ def create_headers(auth_id, user_agent="", x_bc="", sess="", link="https://onlyf
     headers["referer"] = link
     headers["user-id"] = auth_id
     headers["x-bc"] = x_bc
-    a = [link, auth_id]
-    headers2 = create_signed_headers(*a)
-    headers |= headers2
     return headers
 
 
-def create_signed_headers(link: str,  auth_id: int):
+def create_signed_headers(link: str,  auth_id: int, dynamic_rules: dict):
     # Users: 300000 | Creators: 301000
     time2 = str(int(round(time.time())))
     path = urlparse(link).path
     query = urlparse(link).query
     path = path if not query else f"{path}?{query}"
-    static_param = "cyo3uhuZp5tqYuEAhaVMuXMmPpRRsBq1"
-    a = [static_param, time2, path, str(auth_id)]
+    a = [dynamic_rules["static_param"], time2, path, str(auth_id)]
     msg = "\n".join(a)
     message = msg.encode("utf-8")
     hash_object = hashlib.sha1(message)
     sha_1_sign = hash_object.hexdigest()
     sha_1_b = sha_1_sign.encode("ascii")
-    checksum = sum([sha_1_b[25], sha_1_b[35], sha_1_b[26], sha_1_b[34], sha_1_b[32], sha_1_b[35], sha_1_b[32], sha_1_b[6], sha_1_b[21], sha_1_b[2], sha_1_b[15], sha_1_b[9], sha_1_b[3], sha_1_b[14], sha_1_b[26], sha_1_b[26],
-                    sha_1_b[5], sha_1_b[34], sha_1_b[30], sha_1_b[34], sha_1_b[30], sha_1_b[23], sha_1_b[12], sha_1_b[20],
-                    sha_1_b[20], sha_1_b[26], sha_1_b[17], sha_1_b[35],
-                    sha_1_b[5], sha_1_b[16], sha_1_b[37], sha_1_b[1]]) - 956
+    checksum = sum([sha_1_b[number] for number in dynamic_rules["checksum_indexes"]]
+                   )+dynamic_rules["checksum_constant"]
     headers = {}
-    headers["sign"] = "7:{}:{:x}:6092b93d".format(
+    headers["sign"] = dynamic_rules["format"].format(
         sha_1_sign, abs(checksum))
     headers["time"] = time2
     return headers
@@ -57,9 +51,11 @@ def create_signed_headers(link: str,  auth_id: int):
 def session_rules(session_manager: api_helper.session_manager, link) -> dict:
     headers = session_manager.headers
     if "https://onlyfans.com/api2/v2/" in link:
+        dr_link = "https://raw.githubusercontent.com/DATAHOARDERS/dynamic-rules/main/onlyfans.json"
+        dynamic_rules = session_manager.json_request(dr_link, force_json=True)
         headers["app-token"] = "33d57ade8c02dbc5a333db99ff9ae26a"
         auth_id = headers["user-id"]
-        a = [link, auth_id]
+        a = [link, auth_id, dynamic_rules]
         headers2 = create_signed_headers(*a)
         headers |= headers2
     return headers