A library for the private Deezer API ("Gateway API") and other private APIs. By default, the library doesn't come with keys to decrypt audio streams, nor does it come with API access keys for the mobile API. You will have to find these yourself.
You will need Node 16 or later. Simply clone the repo and run npm install.
Node 20+ uses OpenSSL 3+, which removes Blowfish from its standard crypto providers. As songs are Blowfish-encrypted, Diezel currently uses a pure JavaScript Blowfish library if it detects OpenSSL does not have Blowfish support. This works, but performance may be worse. Passing the NODE_OPTIONS=--openssl-legacy-provider environment variable will enable Blowfish in OpenSSL, but be aware that this may enable security vulnerabilities.
Due to Deezer's habit of sending DMCA requests to similar repositories, the keys that are hardcoded into various Deezer platforms are not included here.
When the library is required, it will try and load a file named keys.json from its directory. keys.json exports an object in this format:
| Key | Explanation |
|---|---|
LEGACY_URL_KEY |
Private key for generating legacy URLs |
TRACK_XOR_KEY |
Key used to derive a decryption key for an encrypted song |
MOBILE_GW_KEY |
(MobileClient only) Private key for decrypting an encrypted gateway token |
MOBILE_API_KEY |
(MobileClient only) API key for the mobile gateway API |
Alternatively you can set the keys as soon as the library is required:
const diezel = require('diezel');
diezel.setKeys(/* key object */);
For core Deezer services, Diezel implements a "mobile" client (as implemented in the Deezer mobile apps) and a "web" client (as implemented on the desktop site). Both clients have their advantages and disadvantages in terms of key availability.
This is the most complete client that is currently implemented. Unlike many other implementations of the Deezer private API it doesn't rely on the web client for getting an SID or ARL. This means the user can sign in without having to pass a captcha. One major caveat of using this client is it requires two hardcoded keys - the API key, which is easily obtainable, and the gateway key, which is not. The client is already set up to impersonate an Android device so it would be wise to start there if you wish to obtain the keys.
This client is still a work in progress. It doesn't require any keys but it requires passing a captcha for logging in.
Client for getting a song stream URL. Also a work in progress.
Once you have all the relevant keys:
const diezel = require('diezel');
const { MobileClient } = diezel.clients;
const { ImageUrl, SongAsset, LegacyFormat } = diezel.content;
// Create client
const mobileClient = new MobileClient();
// Sign in
const result = await mobileClient.signInWithEmail('[email protected]', 'password')
if (result) {
console.log('Signed in!');
} else {
console.error('Incorrect credentials!');
}
// Restore session
const userInfo = mobileClient.userInfo;
// ...
const newClient = new MobileClient(userInfo);
await newClient.restoreSession();
// Get an album
const album = await mobileClient.getAlbum(122475762);
// Get album art URL
const albumArtUrl = ImageUrl.forObject(album.DATA).toString({dimensions: {width: 500, height: 500}});
// Get song stream
const song = album.SONGS.data[5];
const stream = await SongAsset.forLegacyStream(song, LegacyFormat.MP3_128).getDecryptedStream();
// Pipe it to a file
const fs = require('fs');
const file = fs.openWriteStream('song.mp3');
stream.pipe(file);
Testing requires that keys be present. See readme.md in the test/ directory.