LCL: fit the new authentification scheme

Signed-off-by: Pierre Mazière <pierre.maziere@gmail.com> Signed-off-by: Romain Bignon <romain@peerfuse.org>
2011-10-30 01:30:48 +02:00 · 2011-10-30 01:30:48 +02:00 · 4f7fe4f843
commit 4f7fe4f843
parent 07d7233685
2 changed files with 72 additions and 6 deletions
--- a/weboob/backends/lcl/browser.py
+++ b/weboob/backends/lcl/browser.py
@ -33,7 +33,7 @@ class LCLBrowser(BaseBrowser):
    ENCODING = 'utf-8'
    USER_AGENT = BaseBrowser.USER_AGENTS['wget']
    PAGES = {
-        'https://particuliers.secure.lcl.fr/index.html':   LoginPage,
+        'https://particuliers.secure.lcl.fr/everest/UWBI/UWBIAccueil\?DEST=PAGEIDENT': LoginPage,
        'https://particuliers.secure.lcl.fr/everest/UWBI/UWBIAccueil\?DEST=IDENTIFICATION': LoginResultPage,
        'https://particuliers.secure.lcl.fr/outil/UWSP/Synthese/accesSynthese': AccountsPage,
        'https://particuliers.secure.lcl.fr/outil/UWB2/Accueil\?DEST=INIT': FramePage,
@ -55,7 +55,8 @@ class LCLBrowser(BaseBrowser):
        assert self.agency.isdigit()

        if not self.is_on_page(LoginPage):
-            self.location('%s://%s/index.html' % (self.PROTOCOL, self.DOMAIN),\
+            self.location('%s://%s/everest/UWBI/UWBIAccueil?DEST=PAGEIDENT' \
+                          % (self.PROTOCOL, self.DOMAIN),
                          no_login=True)

        if not self.page.login(self.agency, self.username, self.password) or \
--- a/weboob/backends/lcl/pages.py
+++ b/weboob/backends/lcl/pages.py
@ -17,18 +17,83 @@
 # You should have received a copy of the GNU Affero General Public License
 # along with weboob. If not, see <http://www.gnu.org/licenses/>.

-
+import base64
 from datetime import date
 from weboob.capabilities.bank import Operation
 from weboob.capabilities.bank import Account
 from weboob.tools.browser import BasePage, BrowserUnavailable
+from weboob.tools.virtkeyboard import VirtKeyboard, VirtKeyboardError
+from logging import error

 class LoginPage(BasePage):
+    def myXOR(self,value,seed):
+        s=''
+        for i in xrange(len(value)):
+            s+=chr(seed^ord(value[i]))
+        return s
+
    def login(self, agency, login, passwd):
+        symbols={'0':'9da2724133f2221482013151735f033c',
+                 '1':'873ab0087447610841ae1332221be37b',
+                 '2':'93ce6c330393ff5980949d7b6c800f77',
+                 '3':'b2d70c69693784e1bf1f0973d81223c0',
+                 '4':'498c8f5d885611938f94f1c746c32978',
+                 '5':'359bcd60a9b8565917a7bf34522052c3',
+                 '6':'aba912172f21f78cd6da437cfc4cdbd0',
+                 '7':'f710190d6b947869879ec02d8e851dfa',
+                 '8':'b42cc25e1539a15f767aa7a641f3bfec',
+                 '9':'cc60e5894a9d8e12ee0c2c104c1d5490'
+                }
+
+        map=self.document.find("//map[@id='claviermap']")
+
+        coords={}
+        for area in map.getiterator("area"):
+            code=area.attrib.get("onclick")[-5:-3]
+            area_coords=[]
+            for coord in area.attrib.get("coords").split(','):
+                area_coords.append(int(coord))
+            coords[code]=tuple(area_coords)
+        try:
+            vk=VirtKeyboard(self.browser.openurl("/UWBI/UWBIAccueil?DEST=GENERATION_CLAVIER"),
+                            coords,(255,255,255,255))
+        except VirtKeyboardError,err:
+            error("Error: %s"%err)
+            return False
+
+        for s in symbols.keys():
+            try:
+                value=vk.get_symbol_code(symbols[s])
+            except VirtKeyboardError:
+                if self.browser.responses_dirname is None:
+                    self.browser.responses_dirname = \
+                            tempfile.mkdtemp(prefix='weboob_session_')
+                vk.generate_MD5(self.browser.responses_dirname)
+                error("Error: Symbol '%s' not found; all symbol hashes are available in %s" \
+                      % (s,self.browser.responses_dirname))
+                return False
+
+        password=''
+        for c in passwd:
+            password+=vk.get_symbol_code(symbols[c])
+        seed=-1
+        str="var aleatoire = "
+        for script in self.document.findall("/head/script"):
+            if(script.text is None or len(script.text)==0):
+                continue
+            offset=script.text.find(str)
+            if offset!=-1:
+                seed=int(script.text[offset+len(str):offset+len(str)+1])
+                break
+        if seed==-1:
+            error("Variable 'aleatoire' not found")
+            return False
+
        self.browser.select_form(nr=0)
-        self.browser['agenceId'] = agency
-        self.browser['compteId'] = login
-        self.browser['CodeId'] = passwd
+        self.browser.form.set_all_readonly(False)
+        self.browser['agenceId'] = base64.b64encode(self.myXOR(agency,seed))
+        self.browser['compteId'] = base64.b64encode(self.myXOR(login,seed))
+        self.browser['postClavier'] = base64.b64encode(self.myXOR(password,seed))
        try:
            self.browser.submit()
        except BrowserUnavailable: