Hugging Face's logo

Spaces:
trytax
/
try1
Sleeping

App Files Community
try1 / register.py
trytax's picture
trytax
Upload 5 files
d12c7eb verified
raw
history blame contribute delete
28.7 kB
#!/usr/bin/env python3
# -*- coding: utf-8 -*-
"""
OpenAI 自动注册脚本(异步最终版,含弹窗关闭)
"""
import json
import os
import re
import sys
import time
import random
import string
import secrets
import hashlib
import base64
import argparse
import asyncio
from pathlib import Path
from datetime import datetime, timedelta
from dataclasses import dataclass
from typing import Any, Dict, Optional, List, Tuple
import urllib.parse
import urllib.request
import urllib.error
from curl_cffi import requests
from playwright.async_api import async_playwright
# ==========================================
# 常量配置
# ==========================================
OUT_DIR = Path(__file__).parent.resolve()
TOKEN_DIR = OUT_DIR / "tokens"
TOKEN_DIR.mkdir(parents=True, exist_ok=True)
AUTH_URL = "https://auth.openai.com/oauth/authorize"
TOKEN_URL = "https://auth.openai.com/oauth/token"
CLIENT_ID = "app_EMoamEEZ73f0CkXaXp7hrann"
DEFAULT_REDIRECT_URI = "http://localhost:1455/auth/callback"
DEFAULT_SCOPE = "openid email profile offline_access"
# ==========================================
# 辅助函数
# ==========================================
def _gen_password() -> str:
alphabet = string.ascii_letters + string.digits
special = "!@#$%^&*.-"
base = [
random.choice(string.ascii_lowercase),
random.choice(string.ascii_uppercase),
random.choice(string.digits),
random.choice(special),
]
base += [random.choice(alphabet + special) for _ in range(12)]
random.shuffle(base)
return "".join(base)
def _random_name() -> str:
letters = string.ascii_lowercase
n = random.randint(5, 9)
s = ''.join(random.choice(letters) for _ in range(n))
return s.capitalize()
def _random_birthdate() -> str:
start = datetime(1970,1,1); end = datetime(1999,12,31)
delta = end - start
d = start + timedelta(days=random.randrange(delta.days + 1))
return d.strftime('%Y-%m-%d')
def _b64url_no_pad(raw: bytes) -> str:
return base64.urlsafe_b64encode(raw).decode("ascii").rstrip("=")
def _sha256_b64url_no_pad(s: str) -> str:
return _b64url_no_pad(hashlib.sha256(s.encode("ascii")).digest())
def _random_state(nbytes: int = 16) -> str:
return secrets.token_urlsafe(nbytes)
def _pkce_verifier() -> str:
return secrets.token_urlsafe(64)
def _parse_callback_url(callback_url: str) -> Dict[str, Any]:
candidate = callback_url.strip()
if not candidate:
return {"code": "","state": "","error": "","error_description": ""}
if "://" not in candidate:
if candidate.startswith("?"):
candidate = f"http://localhost{candidate}"
elif any(ch in candidate for ch in "/?#") or ":" in candidate:
candidate = f"http://{candidate}"
elif "=" in candidate:
candidate = f"http://localhost/?{candidate}"
parsed = urllib.parse.urlparse(candidate)
query = urllib.parse.parse_qs(parsed.query, keep_blank_values=True)
fragment = urllib.parse.parse_qs(parsed.fragment, keep_blank_values=True)
for key, values in fragment.items():
if key not in query or not query[key] or not (query[key][0] or "").strip():
query[key] = values
def get1(k: str) -> str:
v = query.get(k, [""])
return (v[0] or "").strip()
code = get1("code"); state = get1("state")
error = get1("error"); error_description = get1("error_description")
if code and not state and "#" in code:
code, state = code.split("#",1)
if not error and error_description:
error, error_description = error_description, ""
return {"code": code,"state": state,"error": error,"error_description": error_description}
def _jwt_claims_no_verify(id_token: str) -> Dict[str, Any]:
if not id_token or id_token.count(".") < 2:
return {}
payload_b64 = id_token.split(".")[1]
pad = "=" * ((4 - (len(payload_b64) % 4)) % 4)
try:
payload = base64.urlsafe_b64decode((payload_b64 + pad).encode("ascii"))
return json.loads(payload.decode("utf-8"))
except Exception:
return {}
def _decode_jwt_segment(seg: str) -> Dict[str, Any]:
raw = (seg or "").strip()
if not raw: return {}
pad = "=" * ((4 - (len(raw) % 4)) % 4)
try:
decoded = base64.urlsafe_b64decode((raw + pad).encode("ascii"))
return json.loads(decoded.decode("utf-8"))
except Exception:
return {}
def _to_int(v: Any) -> int:
try: return int(v)
except (TypeError, ValueError): return 0
def _post_form(url: str, data: Dict[str, str], timeout: int = 30) -> Dict[str, Any]:
body = urllib.parse.urlencode(data).encode("utf-8")
req = urllib.request.Request(
url, data=body, method="POST",
headers={"Content-Type": "application/x-www-form-urlencoded","Accept": "application/json"},
)
try:
with urllib.request.urlopen(req, timeout=timeout) as resp:
raw = resp.read()
if resp.status != 200:
raise RuntimeError(f"token exchange failed: {resp.status}: {raw.decode('utf-8','replace')}")
return json.loads(raw.decode("utf-8"))
except urllib.error.HTTPError as exc:
raw = exc.read()
raise RuntimeError(f"token exchange failed: {exc.code}: {raw.decode('utf-8','replace')}") from exc
@dataclass(frozen=True)
class OAuthStart:
auth_url: str
state: str
code_verifier: str
redirect_uri: str
def generate_oauth_url(*, redirect_uri: str = DEFAULT_REDIRECT_URI, scope: str = DEFAULT_SCOPE) -> OAuthStart:
state = _random_state()
code_verifier = _pkce_verifier()
code_challenge = _sha256_b64url_no_pad(code_verifier)
params = {
"client_id": CLIENT_ID,
"response_type": "code",
"redirect_uri": redirect_uri,
"scope": scope,
"state": state,
"code_challenge": code_challenge,
"code_challenge_method": "S256",
"prompt": "login",
"id_token_add_organizations": "true",
"codex_cli_simplified_flow": "true",
}
auth_url = f"{AUTH_URL}?{urllib.parse.urlencode(params)}"
return OAuthStart(auth_url=auth_url, state=state, code_verifier=code_verifier, redirect_uri=redirect_uri)
def fetch_sentinel_token(*, flow: str, did: str, proxies: Any = None) -> Optional[str]:
try:
body = json.dumps({"p": "", "id": did, "flow": flow})
resp = requests.post(
"https://sentinel.openai.com/backend-api/sentinel/req",
headers={
"origin": "https://sentinel.openai.com",
"referer": "https://sentinel.openai.com/backend-api/sentinel/frame.html?sv=20260219f9f6",
"content-type": "text/plain;charset=UTF-8",
},
data=body,
proxies=proxies,
impersonate="chrome",
timeout=15,
)
if resp.status_code != 200:
print(f"[Error] Sentinel flow={flow} 状态码: {resp.status_code}")
try:
print(resp.text)
except Exception:
pass
return None
return resp.json().get("token")
except Exception as e:
print(f"[Error] Sentinel flow={flow} 获取失败: {e}")
return None
def submit_callback_url(*, callback_url: str, expected_state: str, code_verifier: str, redirect_uri: str = DEFAULT_REDIRECT_URI) -> str:
cb = _parse_callback_url(callback_url)
if cb["error"]:
desc = cb["error_description"]
raise RuntimeError(f"oauth error: {cb['error']}: {desc}".strip())
if not cb["code"]:
raise ValueError("callback url missing ?code=")
if not cb["state"]:
raise ValueError("callback url missing ?state=")
if cb["state"] != expected_state:
raise ValueError("state mismatch")
token_resp = _post_form(
TOKEN_URL,
{
"grant_type": "authorization_code",
"client_id": CLIENT_ID,
"code": cb["code"],
"redirect_uri": redirect_uri,
"code_verifier": code_verifier,
},
)
access_token = (token_resp.get("access_token") or "").strip()
refresh_token = (token_resp.get("refresh_token") or "").strip()
id_token = (token_resp.get("id_token") or "").strip()
expires_in = _to_int(token_resp.get("expires_in"))
claims = _jwt_claims_no_verify(id_token)
email = str(claims.get("email") or "").strip()
auth_claims = claims.get("https://api.openai.com/auth") or {}
account_id = str(auth_claims.get("chatgpt_account_id") or "").strip()
now = int(time.time())
expired_rfc3339 = time.strftime("%Y-%m-%dT%H:%M:%SZ", time.gmtime(now + max(expires_in, 0)))
now_rfc3339 = time.strftime("%Y-%m-%dT%H:%M:%SZ", time.gmtime(now))
config = {
"id_token": id_token,
"access_token": access_token,
"refresh_token": refresh_token,
"account_id": account_id,
"last_refresh": now_rfc3339,
"email": email,
"type": "codex",
"expired": expired_rfc3339,
}
return json.dumps(config, ensure_ascii=False, separators=(",", ":"))
# ==========================================
# Playwright 邮箱功能(含弹窗关闭)
# ==========================================
async def generate_email_by_click(mail_page) -> Tuple[str, str]:
"""关闭“我知道了”弹窗,然后点击生成按钮,返回 (email, token)"""
try:
close_btn = await mail_page.query_selector('button.announcement-close-btn, button:has-text("我知道了")')
if close_btn:
is_visible = await close_btn.is_visible()
if is_visible:
await close_btn.click()
print("[*] 已点击“我知道了”关闭按钮")
await asyncio.sleep(1)
except Exception as e:
print(f"[*] 关闭弹窗异常(可忽略): {e}")
button_selectors = [
'button.action-btn',
'button:has-text("随机生成")',
'button:has-text("Generate")',
'button:has-text("刷新")',
'button:has-text("新邮箱")',
'.generate-btn',
'#generate'
]
button = None
for selector in button_selectors:
try:
button = await mail_page.wait_for_selector(selector, timeout=5000)
print(f"找到按钮: {selector}")
break
except:
continue
if not button:
raise RuntimeError("未找到生成按钮,请检查页面元素")
async with mail_page.expect_response(lambda response: "/api/generate-email" in response.url and response.status == 200) as response_info:
await button.click()
response = await response_info.value
data = await response.json()
if data.get('success'):
email = data['data']['email']
token = data['auth']['token']
return email, token
else:
raise RuntimeError(f"生成邮箱失败: {data.get('error')}")
async def playwright_fetch_code(mail_page, email: str, token: str, timeout: int = 180) -> str:
"""在邮箱页面轮询获取验证码,返回验证码字符串(增强版)"""
try:
await mail_page.evaluate("""
if (typeof refreshInbox === 'function') {
refreshInbox();
}
""")
refresh_btn = await mail_page.query_selector('button:has-text("手动刷新")')
if refresh_btn:
await refresh_btn.click()
print("[*] 点击了手动刷新按钮")
await asyncio.sleep(2)
except Exception as e:
print(f"[*] 首次刷新异常: {e}")
start_time = time.time()
attempt = 0
while time.time() - start_time < timeout:
attempt += 1
try:
await mail_page.evaluate("refreshInbox?.()")
refresh_btn = await mail_page.query_selector('button:has-text("手动刷新")')
if refresh_btn:
await refresh_btn.click()
except:
pass
result = await mail_page.evaluate("""
async ([email, token]) => {
try {
const response = await fetch(`/api/emails?email=${encodeURIComponent(email)}`, {
method: 'GET',
headers: {
'Accept': 'application/json',
'X-Inbox-Token': token
}
});
if (!response.ok) {
return { success: false, error: `HTTP ${response.status}` };
}
return await response.json();
} catch (error) {
return { success: false, error: error.toString() };
}
}
""", [email, token])
if not result.get('success'):
print(f"[*] 第 {attempt} 次获取邮件列表失败: {result.get('error')}")
await asyncio.sleep(3)
continue
emails = result.get('data', {}).get('emails', [])
emails.sort(key=lambda x: x.get('timestamp', 0), reverse=True)
print(f"[*] 第 {attempt} 次获取到 {len(emails)} 封邮件")
for idx, mail in enumerate(emails):
subject = mail.get('subject', '')
content = mail.get('html_content', '') or mail.get('content', '') or mail.get('text', '')
print(f" 邮件 {idx+1} 主题: {subject[:50]}")
print(f" 内容预览: {content[:100].replace(chr(10), ' ')}")
patterns = [
(r'(?<!\d)(\d{6})(?!\d)', 1),
(r'代码为\s*(\d{6})', 1),
(r'verification code[:\s]*(\d{6})', 1),
(r'is[:\s]*(\d{6})', 1),
(r'<[^>]*>(\d)[^>]*>(\d)[^>]*>(\d)[^>]*>(\d)[^>]*>(\d)[^>]*>(\d)', 6),
]
for pattern, group_count in patterns:
if group_count == 6:
match = re.search(pattern, content, re.DOTALL)
if match:
code = ''.join(match.groups())
if len(code) == 6 and code.isdigit():
print(f"[✓] 从分隔数字中提取验证码: {code}")
return code
else:
match = re.search(pattern, subject + ' ' + content, re.IGNORECASE)
if match:
code = match.group(1)
if len(code) == 6 and code.isdigit():
print(f"[✓] 提取验证码: {code}")
return code
print("[*] 未找到验证码,等待后重试...")
await asyncio.sleep(3)
return ""
# ==========================================
# 核心注册函数
# ==========================================
async def async_run_registration(proxy: Optional[str]) -> Optional[Tuple[str, str, str]]:
proxies = None
if proxy:
proxies = {"http": proxy, "https": proxy}
async with async_playwright() as p:
launch_args = [
'--disable-blink-features=AutomationControlled',
'--no-sandbox',
'--disable-gpu',
'--disable-dev-shm-usage',
]
browser = await p.chromium.launch(headless=True, args=launch_args)
context_kwargs = {}
if proxy:
context_kwargs["proxy"] = {"server": proxy}
context = await browser.new_context(**context_kwargs)
mail_page = await context.new_page()
await mail_page.goto("https://mail.chatgpt.org.uk/", timeout=60000)
await mail_page.wait_for_load_state("networkidle")
email, token = await generate_email_by_click(mail_page)
print(f"[*] 成功获取临时邮箱: {email}")
s = requests.Session(proxies=proxies, impersonate="chrome")
s.headers.update({"user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36"})
try:
trace = s.get("https://cloudflare.com/cdn-cgi/trace", timeout=10)
loc_re = re.search(r"^loc=(.+)$", trace.text, re.MULTILINE)
loc = loc_re.group(1) if loc_re else None
print(f"[*] 当前 IP 所在地: {loc}")
if loc in ("CN", "HK"):
raise RuntimeError("代理所在地不支持 CN/HK")
except Exception as e:
print(f"[Error] 网络连接检查失败: {e}")
await browser.close()
return None
oauth = generate_oauth_url()
url = oauth.auth_url
try:
resp = s.get(url, timeout=15)
did = s.cookies.get("oai-did")
print(f"[*] Device ID: {did}")
signup_body = json.dumps({"username": {"value": email, "kind": "email"}, "screen_hint": "signup"})
sen_req_body = json.dumps({"p": "", "id": did, "flow": "authorize_continue"})
sen_resp = requests.post(
"https://sentinel.openai.com/backend-api/sentinel/req",
headers={
"origin": "https://sentinel.openai.com",
"referer": "https://sentinel.openai.com/backend-api/sentinel/frame.html?sv=20260219f9f6",
"content-type": "text/plain;charset=UTF-8",
"user-agent": s.headers["user-agent"],
},
data=sen_req_body,
proxies=proxies,
impersonate="chrome",
timeout=15,
)
print(f"[*] sentinel authorize_continue 状态: {sen_resp.status_code}")
if sen_resp.status_code != 200:
print(f"[Error] Sentinel 异常拦截")
await browser.close()
return None
sen_token = sen_resp.json().get("token")
sentinel = json.dumps({"p": "", "t": "", "c": sen_token, "id": did, "flow": "authorize_continue"}) if sen_token else None
so_token = fetch_sentinel_token(flow="oauth_create_account", did=did, proxies=proxies)
print(f"[*] sentinel oauth_create_account token: {bool(so_token)}")
signup_headers = {
"referer": "https://auth.openai.com/create-account",
"accept": "application/json",
"content-type": "application/json",
}
if sentinel:
signup_headers["openai-sentinel-token"] = sentinel
signup_resp = s.post(
"https://auth.openai.com/api/accounts/authorize/continue",
headers=signup_headers,
data=signup_body,
)
print(f"[*] authorize/continue 状态: {signup_resp.status_code}")
if signup_resp.status_code != 200:
print("[Error] 注册表单提交失败")
await browser.close()
return None
password = _gen_password()
register_headers = {
"referer": "https://auth.openai.com/create-account/password",
"accept": "application/json",
"content-type": "application/json",
}
if sentinel:
register_headers["openai-sentinel-token"] = sentinel
reg_resp = s.post(
"https://auth.openai.com/api/accounts/user/register",
headers=register_headers,
data=json.dumps({"password": password, "username": email}),
)
print(f"[*] 设置密码状态: {reg_resp.status_code}")
if reg_resp.status_code != 200:
print("[Error] 设置密码失败")
await browser.close()
return None
for attempt in range(3):
try:
send_headers = {
"referer": "https://auth.openai.com/create-account/password",
"accept": "application/json",
}
send_resp = s.get(
"https://auth.openai.com/api/accounts/email-otp/send",
headers=send_headers,
timeout=30,
)
print(f"[*] 触发发送验证码状态: {send_resp.status_code}")
if send_resp.status_code == 200:
break
except Exception as e:
print(f"[Warn] send 调用异常 (尝试 {attempt+1}/3): {e}")
await asyncio.sleep(2)
else:
print("[Error] 触发验证码发送失败,重试耗尽")
await browser.close()
return None
code = await playwright_fetch_code(mail_page, email, token, timeout=180)
if not code:
print("[Error] 未能收到验证码")
await browser.close()
return None
print(f"[*] 收到验证码: {code}")
code_body = json.dumps({"code": code})
validate_headers = {
"referer": "https://auth.openai.com/email-verification",
"accept": "application/json",
"content-type": "application/json",
}
if sentinel:
validate_headers["openai-sentinel-token"] = sentinel
code_resp = s.post(
"https://auth.openai.com/api/accounts/email-otp/validate",
headers=validate_headers,
data=code_body,
)
print(f"[*] 验证码校验状态: {code_resp.status_code}")
if code_resp.status_code != 200:
print("[Error] 验证码校验失败")
await browser.close()
return None
create_account_body = json.dumps({"name": _random_name(), "birthdate": _random_birthdate()})
create_headers = {
"referer": "https://auth.openai.com/about-you",
"accept": "application/json",
"content-type": "application/json",
}
if so_token:
create_headers["openai-sentinel-so-token"] = so_token
create_account_resp = s.post(
"https://auth.openai.com/api/accounts/create_account",
headers=create_headers,
data=create_account_body,
)
print(f"[*] 账户创建状态: {create_account_resp.status_code}")
if create_account_resp.status_code != 200:
print("[Error] 账户创建失败")
await browser.close()
return None
auth_cookie = s.cookies.get("oai-client-auth-session")
if not auth_cookie:
print("[Error] 未能获取到授权 Cookie")
await browser.close()
return None
auth_json = _decode_jwt_segment(auth_cookie.split(".")[0])
workspaces = auth_json.get("workspaces") or []
if not workspaces:
print("[Error] 授权 Cookie 里没有 workspace 信息")
await browser.close()
return None
workspace_id = str((workspaces[0] or {}).get("id") or "").strip()
if not workspace_id:
print("[Error] 无法解析 workspace_id")
await browser.close()
return None
select_body = json.dumps({"workspace_id": workspace_id})
select_resp = s.post(
"https://auth.openai.com/api/accounts/workspace/select",
headers={
"referer": "https://auth.openai.com/sign-in-with-chatgpt/codex/consent",
"content-type": "application/json",
},
data=select_body,
)
if select_resp.status_code != 200:
print(f"[Error] 选择 workspace 失败")
await browser.close()
return None
continue_url = str((select_resp.json() or {}).get("continue_url") or "").strip()
if not continue_url:
print("[Error] workspace/select 响应缺少 continue_url")
await browser.close()
return None
current_url = continue_url
for _ in range(6):
final_resp = s.get(current_url, allow_redirects=False, timeout=15)
location = final_resp.headers.get("Location") or ""
if final_resp.status_code not in [301, 302, 303, 307, 308]:
break
if not location:
break
next_url = urllib.parse.urljoin(current_url, location)
if "code=" in next_url and "state=" in next_url:
token_json = submit_callback_url(
callback_url=next_url,
code_verifier=oauth.code_verifier,
redirect_uri=oauth.redirect_uri,
expected_state=oauth.state,
)
await browser.close()
return token_json, email, password
current_url = next_url
print("[Error] 未能在重定向链中捕获到最终 Callback URL")
await browser.close()
return None
except Exception as e:
print(f"[Error] 运行时发生错误: {e}")
await browser.close()
return None
# ==========================================
# 主函数
# ==========================================
async def main():
parser = argparse.ArgumentParser(description="OpenAI 自动注册脚本(异步最终版)")
parser.add_argument("--proxy", default=None, help="代理地址,如 http://127.0.0.1:7890")
parser.add_argument("--once", action="store_true", help="只运行一次")
parser.add_argument("--sleep-min", type=int, default=5, help="循环模式最短等待秒数")
parser.add_argument("--sleep-max", type=int, default=30, help="循环模式最长等待秒数")
args = parser.parse_args()
sleep_min = max(1, args.sleep_min)
sleep_max = max(sleep_min, args.sleep_max)
count = 0
print("[Info] OpenAI 自动注册脚本 (异步最终版) 启动")
OUT_DIR.mkdir(parents=True, exist_ok=True)
while True:
count += 1
print(f"\n[{datetime.now().strftime('%H:%M:%S')}] >>> 开始第 {count} 次注册流程 <<<")
try:
result = await async_run_registration(args.proxy)
if result:
token_json, email, password = result
try:
t_data = json.loads(token_json)
fname_email = t_data.get("email", "unknown").replace("@", "_")
except Exception:
fname_email = "unknown"
file_path = TOKEN_DIR / f"token_{fname_email}_{int(time.time())}.json"
try:
file_path.write_text(token_json, encoding="utf-8")
print(f"[*] 成功! Token 已保存至: {file_path}")
except Exception as e:
print(f"[Error] 保存 token 失败: {e}")
acc_file = TOKEN_DIR / "accounts.txt"
try:
with open(acc_file, "a", encoding="utf-8") as f:
f.write(f"{email}----{password}\n")
except Exception as e:
print(f"[Error] 保存账号信息失败: {e}")
else:
print("[-] 本次注册失败。")
except Exception as e:
print(f"[Error] 发生未捕获异常: {e}")
if args.once:
break
wait_time = random.randint(sleep_min, sleep_max)
print(f"[*] 休息 {wait_time} 秒...")
await asyncio.sleep(wait_time)
if __name__ == "__main__":
asyncio.run(main())