Bug

[0juni]

Browser Version

Chrome

Exension Version

1.4.2

Actual behaviour

Sometimes the extention bugs out and it shows the paywall unless I reinstall the plugin. Still happens right now.

Also how does the extension work?

Reproduction steps

No response

Expected behaviour

No response

[rospino74]

Hi, Do you see any error in the console (except something about browser_specific_settings)?

Issues apart, the extension works pretty much this way:

1. The extension determines that you are on Quizlet
   

   Quizlet-Bypass/src/frontend/quizlet/structure.json

   Lines 10 to 12 in e905a84

   	"matches": [
   	"*://*.quizlet.com/*"
   	],

2. It makes a new account in the background simulating the user signing in
   

   Quizlet-Bypass/src/foreground/quizlet/import/accountMaker.js

   Lines 29 to 47 in 481a1e8

   	const request = await fetch('https://quizlet.com/webapi/3.2/direct-signup', {
   	credentials: 'include',
   	headers: {
   	'User-Agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:92.0) Gecko/20100101 Firefox/92.0',
   	Accept: 'application/json',
   	'Accept-Language': 'it-IT,it;q=0.8,en;q=0.3',
   	'CS-Token': token,
   	'X-Requested-With': 'XMLHttpRequest',
   	'Content-Type': 'application/json',
   	Pragma: 'no-cache',
   	'Cache-Control': 'no-cache',
   	},
   	referrer: 'https://quizlet.com/login',
   	body: `{"TOS":true,"birth_day":"${birthDay.getDate()}","birth_month":"${birthDay.getMonth()}","birth_year":"${birthDay.getFullYear()}","email":"${email}","is_free_teacher":"0","is_parent":false,"password1":"nrka6TWF86FPScH","redir":"https://quizlet.com/","signupOrigin":"signup-tab-on-login-modal","screenName":"Logout/logoutMobileSplash","username":"${randomizer.name().replaceAll(' ', '_').slice(0, 15)}_${birthDay.getFullYear()}","marketing_opt_out":true}`,
   	method: 'POST',
   	mode: 'cors',
   	});
   	return request.json();

3. Then it logs in and gets new session cookies
4. Finally, it replaces existing cookies with the new ones
   

   Quizlet-Bypass/src/frontend/quizlet/index.ts

   Lines 52 to 56 in e905a84

   	// Copy the account auth cookies
   	chrome.runtime.sendMessage({
   	action: 'copyCookies',
   	value: document.cookie,
   	});

This way you always have a new account to see textbook solutions (because that's the only thing unlocked by this extension).
Please note that we don't have to worry about IP blacklisting because account creation happens on the user's computer with his own IP address.

[yenuGH]

From what I can see, v1.5.4 doesn't seem to be signing into a new account when it detects that a solution has been paywalled. It just sticks to the same account, making the loop infinite, triggering the CloudFlare security