[twitter] implement 'csrf' option (#2676)

mikf · Jun 13, 2022 · 9c8d895 · 9c8d895
1 parent 08db843
commit 9c8d895
Show file tree

Hide file tree

Showing 2 changed files with 18 additions and 2 deletions.
diff --git a/docs/configuration.rst b/docs/configuration.rst
@@ -2271,6 +2271,19 @@ Description
     <https://help.twitter.com/en/using-twitter/twitter-conversations>`__.
 
 
+extractor.twitter.csrf
+----------------------
+Type
+    ``string``
+Default
+    ``"cookies"``
+Description
+    Controls how to handle Cross Site Request Forgery (CSRF) tokens.
+
+    * ``"auto"``: Always auto-generate a token.
+    * ``"cookies"``: Use token given by the ``ct0`` cookie if present.
+
+
 extractor.twitter.size
 ----------------------
 Type

diff --git a/gallery_dl/extractor/twitter.py b/gallery_dl/extractor/twitter.py
@@ -873,8 +873,11 @@ def __init__(self, extractor):
         cookies = extractor.session.cookies
         cookiedomain = extractor.cookiedomain
 
-        # CSRF
-        csrf_token = cookies.get("ct0", domain=cookiedomain)
+        csrf = extractor.config("csrf")
+        if csrf is None or csrf == "cookies":
+            csrf_token = cookies.get("ct0", domain=cookiedomain)
+        else:
+            csrf_token = None
         if not csrf_token:
             csrf_token = util.generate_token()
             cookies.set("ct0", csrf_token, domain=cookiedomain)