benleb · December 19, 2025 14:35
diff --git a/39c3-ticket-buyer.js b/39c3-ticket-buyer.js
 // --- Configuration ---
 const CHECK_INTERVAL_MS = 3337; // Check every 2 seconds

 function checkForTicket() {
    console.log(`[${new Date().toLocaleTimeString()}] 🔄 Checking for tickets in background...`);
    
    // Fetch the current page content in the background
    fetch(window.location.href)
        .then(response => response.text())
        .then(html => {
            // We use Regex instead of DOMParser to avoid Content Security Policy (CSP) errors
            // The site blocks inline styles which DOMParser might trigger when parsing the full HTML
            
            // 1. Check if we have a "Buy" button indicator
            // Looking for the specific button class and text "Buy"
            const hasBuyButton = html.includes('btn-success') && html.includes('Buy');

            if (hasBuyButton) {
                
                // 2. Extract the form action URL
                // We look for an action URL that contains '/buy/'
                const actionMatch = html.match(/action="([^"]*\/buy\/[^"]*)"/);
                
                // 3. Extract the CSRF token
                const csrfMatch = html.match(/name="csrfmiddlewaretoken" value="([^"]+)"/);

                if (actionMatch && csrfMatch) {
                    console.log("!!! 🎫 TICKET FOUND !!! Attempting to buy...");
                    
                    const action = actionMatch[1];
                    const csrfToken = csrfMatch[1];

                    // Create a form in the current page to submit
                    const submitForm = document.createElement('form');
                    submitForm.method = 'POST';
                    submitForm.action = action;
                    
                    // NOTE: We do NOT set style.display = 'none' here because it violates the site's CSP.
                    // The form is appended and submitted immediately, so it won't be visible for long.

                    const tokenField = document.createElement('input');
                    tokenField.type = 'hidden';
                    tokenField.name = 'csrfmiddlewaretoken';
                    tokenField.value = csrfToken;
                    submitForm.appendChild(tokenField);

                    document.body.appendChild(submitForm);
                    
                    console.log("🚀 Submitting buy request...");
                    submitForm.submit();
                    
                    // Stop the loop
                    return; 
                } else {
                     // Found indicators but couldn't extract exact details. 
                     // This might happen if the HTML structure is slightly different than expected.
                     console.warn("⚠️ Found 'Buy' button indicators but couldn't extract form details. Retrying...");
                     setTimeout(checkForTicket, CHECK_INTERVAL_MS);
                }
            } else {
                // No ticket found, schedule next check
                setTimeout(checkForTicket, CHECK_INTERVAL_MS);
            }
        })
        .catch(err => {
            console.error("❌ Error fetching page:", err);
            // Retry even on error
            setTimeout(checkForTicket, CHECK_INTERVAL_MS);
        });
 }

 // Start the process
 console.log("🚀 Ticket Auto-Buyer started! Keep this tab open.");
 checkForTicket();
	// --- Configuration ---
	const CHECK_INTERVAL_MS = 3337; // Check every 2 seconds

	function checkForTicket() {
	console.log(`[${new Date().toLocaleTimeString()}] 🔄 Checking for tickets in background...`);

	// Fetch the current page content in the background
	fetch(window.location.href)
	.then(response => response.text())
	.then(html => {
	// We use Regex instead of DOMParser to avoid Content Security Policy (CSP) errors
	// The site blocks inline styles which DOMParser might trigger when parsing the full HTML

	// 1. Check if we have a "Buy" button indicator
	// Looking for the specific button class and text "Buy"
	const hasBuyButton = html.includes('btn-success') && html.includes('Buy');

	if (hasBuyButton) {

	// 2. Extract the form action URL
	// We look for an action URL that contains '/buy/'
	const actionMatch = html.match(/action="([^"]\/buy\/[^"])"/);

	// 3. Extract the CSRF token
	const csrfMatch = html.match(/name="csrfmiddlewaretoken" value="([^"]+)"/);

	if (actionMatch && csrfMatch) {
	console.log("!!! 🎫 TICKET FOUND !!! Attempting to buy...");

	const action = actionMatch[1];
	const csrfToken = csrfMatch[1];

	// Create a form in the current page to submit
	const submitForm = document.createElement('form');
	submitForm.method = 'POST';
	submitForm.action = action;

	// NOTE: We do NOT set style.display = 'none' here because it violates the site's CSP.
	// The form is appended and submitted immediately, so it won't be visible for long.

	const tokenField = document.createElement('input');
	tokenField.type = 'hidden';
	tokenField.name = 'csrfmiddlewaretoken';
	tokenField.value = csrfToken;
	submitForm.appendChild(tokenField);

	document.body.appendChild(submitForm);

	console.log("🚀 Submitting buy request...");
	submitForm.submit();

	// Stop the loop
	return;
	} else {
	// Found indicators but couldn't extract exact details.
	// This might happen if the HTML structure is slightly different than expected.
	console.warn("⚠️ Found 'Buy' button indicators but couldn't extract form details. Retrying...");
	setTimeout(checkForTicket, CHECK_INTERVAL_MS);
	}
	} else {
	// No ticket found, schedule next check
	setTimeout(checkForTicket, CHECK_INTERVAL_MS);
	}
	})
	.catch(err => {
	console.error("❌ Error fetching page:", err);
	// Retry even on error
	setTimeout(checkForTicket, CHECK_INTERVAL_MS);
	});
	}

	// Start the process
	console.log("🚀 Ticket Auto-Buyer started! Keep this tab open.");
	checkForTicket();
No results found