+ def _perform_login(self, username, password):
+ app_version = random.choice((
+ '1.2.88 build 15306',
+ '1.2.174 build 18469',
+ ))
+ android_version = random.randrange(8, 14)
+ phone_model = random.choice((
+ # x-kom.pl top selling Android smartphones, as of 2022-12-26
+ # https://www.x-kom.pl/g-4/c/1590-smartfony-i-telefony.html?f201-system-operacyjny=61322-android
+ 'ASUS ZenFone 8',
+ 'Motorola edge 20 5G',
+ 'Motorola edge 30 neo 5G',
+ 'Motorola moto g22',
+ 'OnePlus Nord 2T 5G',
+ 'Samsung Galaxy A32 SM‑A325F',
+ 'Samsung Galaxy M13',
+ 'Samsung Galaxy S20 FE 5G',
+ 'Xiaomi 11T',
+ 'Xiaomi POCO M4 Pro',
+ 'Xiaomi Redmi 10',
+ 'Xiaomi Redmi 10C',
+ 'Xiaomi Redmi 9C NFC',
+ 'Xiaomi Redmi Note 10 Pro',
+ 'Xiaomi Redmi Note 11 Pro',
+ 'Xiaomi Redmi Note 11',
+ 'Xiaomi Redmi Note 11S 5G',
+ 'Xiaomi Redmi Note 11S',
+ 'realme 10',
+ 'realme 9 Pro+',
+ 'vivo Y33s',
+ ))
+ self._API_HEADERS['User-Agent'] = f'pl.cda 1.0 (version {app_version}; Android {android_version}; {phone_model})'
+
+ cached_bearer = self.cache.load(self._BEARER_CACHE, username) or {}
+ if cached_bearer.get('valid_until', 0) > dt.datetime.now().timestamp() + 5:
+ self._API_HEADERS['Authorization'] = f'Bearer {cached_bearer["token"]}'
+ return
+
+ password_hash = base64.urlsafe_b64encode(hmac.new(
+ b's01m1Oer5IANoyBXQETzSOLWXgWs01m1Oer5bMg5xrTMMxRZ9Pi4fIPeFgIVRZ9PeXL8mPfXQETZGUAN5StRZ9P',
+ ''.join(f'{bytes((bt & 255, )).hex():0>2}'
+ for bt in hashlib.md5(password.encode()).digest()).encode(),
+ hashlib.sha256).digest()).decode().replace('=', '')
+
+ token_res = self._download_json(
+ f'{self._BASE_API_URL}/oauth/token', None, 'Logging in', data=b'',
+ headers={**self._API_HEADERS, 'Authorization': self._LOGIN_REQUEST_AUTH},
+ query={
+ 'grant_type': 'password',
+ 'login': username,
+ 'password': password_hash,
+ })
+ self.cache.store(self._BEARER_CACHE, username, {
+ 'token': token_res['access_token'],
+ 'valid_until': token_res['expires_in'] + dt.datetime.now().timestamp(),
+ })
+ self._API_HEADERS['Authorization'] = f'Bearer {token_res["access_token"]}'
+