create: new email_scan category fitness and add 2 new modules

kaifcodec · kaifcodec · commit 4fe8c44bee25 · 2026-03-18T14:59:15.000+05:30
diff --git a/user_scanner/email_scan/fitness/__init__.py b/user_scanner/email_scan/fitness/__init__.py
diff --git a/user_scanner/email_scan/fitness/fitnessblender.py b/user_scanner/email_scan/fitness/fitnessblender.py
@@ -0,0 +1,83 @@
+import httpx
+import json
+import re
+from user_scanner.core.result import Result
+
+async def _check(email: str) -> Result:
+    base_url = "https://www.fitnessblender.com"
+    api_url = "https://www.fitnessblender.com/api/v1/validate/unique-email"
+    show_url = "https://www.fitnessblender.com"
+
+    headers = {
+        'User-Agent': "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Mobile Safari/537.36",
+        'Accept': "application/json, text/plain, */*",
+        'Accept-Encoding': "identity",
+        'sec-ch-ua-platform': '"Android"',
+        'Origin': "https://www.fitnessblender.com",
+        'Referer': "https://www.fitnessblender.com/join",
+        'X-Requested-With': "XMLHttpRequest",
+        'Priority': "u=1, i"
+    }
+
+    try:
+        async with httpx.AsyncClient(timeout=20.0, follow_redirects=True) as client:
+            # Step 1: Visit homepage to get cookies (XSRF-TOKEN and FB_SESSION)
+            # Laravel sets these in the Set-Cookie header
+            r_init = await client.get(base_url, headers=headers)
+            
+            if r_init.status_code != 200:
+                return Result.error(f"Handshake failed: {r_init.status_code}")
+
+            # Get the CSRF token from the cookies
+            # Laravel allows using the XSRF-TOKEN cookie value as the x-csrf-token header
+            csrf_token = client.cookies.get("XSRF-TOKEN")
+
+            # If not in cookies, try to extract from the HTML script tag as a backup
+            if not csrf_token:
+                match = re.search(r'csrfToken:\s*"([^"]+)"', r_init.text)
+                if match:
+                    csrf_token = match.group(1)
+
+            if not csrf_token:
+                return Result.error("CSRF token not found")
+
+            # Step 2: Post to the validation API
+            headers['x-csrf-token'] = csrf_token
+            headers['Content-Type'] = "application/json"
+
+            payload = {
+                "email": email,
+                "force": 0
+            }
+
+            response = await client.post(
+                api_url, 
+                content=json.dumps(payload), 
+                headers=headers
+            )
+
+            if response.status_code == 403:
+                return Result.error("Caught by WAF (403)")
+
+            if response.status_code == 419:
+                return Result.error("CSRF Mismatch/Expired (419)")
+
+            data = response.json()
+            status = data.get("status")
+            message = data.get("message", "").lower()
+
+            # Logic: error + "already registered" = TAKEN
+            if status == "error" and "already registered" in message:
+                return Result.taken(url=show_url)
+
+            # Logic: success + "ok" = AVAILABLE
+            elif status == "success" and message == "ok":
+                return Result.available(url=show_url)
+
+            return Result.error(f"Unexpected response: {message}")
+
+    except Exception as e:
+        return Result.error(e)
+
+async def validate_fitnessblender(email: str) -> Result:
+    return await _check(email)
diff --git a/user_scanner/email_scan/fitness/myfitnesspal.py b/user_scanner/email_scan/fitness/myfitnesspal.py
@@ -0,0 +1,57 @@
+import httpx
+from user_scanner.core.result import Result
+
+
+async def _check(email: str) -> Result:
+    url = "https://www.myfitnesspal.com/api/idm/user-exists"
+    show_url = "https://www.myfitnesspal.com"
+
+    headers = {
+        'User-Agent': "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Mobile Safari/537.36",
+        'Accept': "application/json, text/plain, */*",
+        'Accept-Encoding': "identity",
+        'sec-ch-ua-platform': '"Android"',
+        'sec-ch-ua': '"Not:A-Brand";v="99", "Google Chrome";v="145", "Chromium";v="145"',
+        'Referer': "https://www.myfitnesspal.com/account/create",
+        'Accept-Language': "en-US,en;q=0.9",
+        'Priority': "u=1, i"
+    }
+
+    params = {
+        'email': email
+    }
+
+    try:
+        async with httpx.AsyncClient(timeout=10.0) as client:
+            response = await client.get(url, params=params, headers=headers)
+
+            if response.status_code == 403:
+                return Result.error("Caught by WAF or IP Block (403)")
+
+            if response.status_code == 429:
+                return Result.error("Rate limited by MyFitnessPal (429)")
+
+            if response.status_code != 200:
+                return Result.error(f"HTTP Error: {response.status_code}")
+
+            data = response.json()
+
+            # Use the emailExists key for validation
+            if data.get("emailExists") is True:
+                return Result.taken(url=show_url)
+
+            elif data.get("emailExists") is False:
+                return Result.available(url=show_url)
+
+            return Result.error("Unexpected response body structure")
+
+    except httpx.ConnectTimeout:
+        return Result.error("Connection timed out! maybe region blocks")
+    except httpx.ReadTimeout:
+        return Result.error("Server took too long to respond (Read Timeout)")
+    except Exception as e:
+        return Result.error(e)
+
+
+async def validate_myfitnesspal(email: str) -> Result:
+    return await _check(email)
