-
Notifications
You must be signed in to change notification settings - Fork 81
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
❗❗❗Invalid cloud password on firmware build 230921 and higher #551
Comments
I am using the iOS app and everything is working fine. My camera is a Tapo C110 with Firmware Version 1.3.11 Build 231117 Rel. 47346n(5553) and as of today is not working. // image removed. |
@reypm have you opened and used the app just before it stopped working or only after? |
@JurajNyiri Yes, everything is working as expected and nothing has changed on my end with the app, I do keep my iOS apps up to date most of the time, not sure when the Tapo app did update to the latest |
This comment was marked as duplicate.
This comment was marked as duplicate.
Operating System: Android pytapo output is: "Exception: Invalid authentication data" I'm really hoping tp-link is calling you soon ;) |
@JurajNyiri I am using this other custom component repository as well and today I noticed it disconnected some of my Tapo devices, upon research some people reported issues in their issues and the problem was fixed with version 3.1.0. I updated the component today and is working fine, I am using the very same creds I am using with your component, you can maybe take something from there or just take a look
|
@petretiandrea any idea if this might be related? I know your integration uses different communication method completely. |
I have 3x C200 with 1.3.11 sice December (#472 (comment)) with blocked DNS (only NTP is enabled - otherwise they are in zombie state) and so far no major issues. |
@scetu what does this mean? is there a guide for this? |
Blocking the access after having the issue will not help — and I am not sure if it helps at all even when not having issue as the update might be pushed through the app. In order to use the camera you will either need to wait or follow steps in main post in this issue - downgrade firmware. |
Hi @JurajNyiri José |
5.4.17PSA Has nothing new. It’s a way how to get the information to the end users and help them prevent having issues. |
Thanks for pushing the PSA as an "update". I would have missed this if it wasn't for it. I block internet access to all my cameras but from time to time I update the firmware just to keep them up-to-date. It would be a lot of work to factory reset them just to get them to work again. I see you have the "help wanted" tag, I have a C200 that I can use for testing, and I might be able to do some python debugging if that helps. |
Use AdGuard Home or Pi-Hole and add custom rules for filtering
|
hello, |
Thanks for this "update", I would have missed the issue without it. I'm using a Tapo C200 with firmware 1.3.9 Build 231019 according to the integration. I've just blocked updates with AdGuard filters, and I haven't launched the Android app. So far, everything is still working perfectly. |
Hi, actually I'm not calling the "cloud", so no "cloud password". My integration is completely based on local communication. |
Just to be entierly precise : this doesn't block their internet access per se, if the firmware contains direct IP address Pi-Hole won't be able to block it. Hence, why I'd try to block their internet access at the router level. Most consumer router from ISP comes with a "child protection mode" to block internet from specific devices at specific time, which is what I would do if I didn't have a "true" configurable router. However, this would also block NTP (Server to which the device request to, to get current time and date) requests too. That's the solution I use at my mom's house, and it works perfectly fine, with an automation to force sync date / time from HA to Tapo devices.
|
Mine are still working (well - as "well" as they always have). Have now blocked their internet access in my router, just because there is no need for them to have internet access. Cams: Tapo C200 (two of them) |
I believe accessing (or not) cameras from mobile Tapo application might explain why some cameras still operates well. I manage 3 locations with different set of users, all having same Tapo C100/C110 cameras, with same firmware versions (1.3.9 & 1.3.11, depending on the camera model). Two locations are "broken" since last few days - HA claiming authorization errors. 3rd one still works smoothly. The difference is that in two broken locations users use Android Tapo application to monitor cameras. 3rd location is only integrated with HA. I made some experiments in this 3rd location - resetting camera, resetting HA, even removing and adding integration in HA - everything still works smoothly. All locations & cameras has an Internet access so this factor does not seems to explain the phenomenon in my case. |
2024? ......otherwise I'll start to worry :-) |
I got another update from TPLink. (Deleting above recent update since it has less / duplicate info to keep this thread clean). TPLink is preparing a new cloud API endpoint for this integration in order to get the cloud token without the need to go through their cloud exactly like the app and my currently prepared solution. They estimate this will be done by end of June but they are not certain and the deadline might change. This is good and bad news for us. It means we will have to wait longer for a solution and all the work (weeks) I spent working on it is now not going to be able to be used and released for everyone here, which makes me sad, but I learned a lot in the process. However, this is also very good in my opinion. It means, they are indeed trying to keep this integration working well. Which is in my opinion very good news for open source and TP-Link products and their customers. To me, it shows their intent to work with open source projects and open home. What to do now?For the affected users, at this point your option is to downgrade the firmware if you wish to use this integration in the meantime. If you are not affected with this issue yet, and are running the recent firmware higher than build 230921 block internet access of the camera now. Next stepsOnce I receive an update from TPLink I will work on integrating it and releasing it ASAP. If I do not get an update by July 1st, I will send a reminder. |
Oh man, I feel for ya - appreciate all your hard work on this! |
Thx a lot for your work!👍🏻🚀 |
@MLammerding these are not tracked or maintained by me. I do not know where and how the author got them. In any case, you do not want firmware newer than 7 months for this integration. You need build before 230921. |
Thanks for your work @JurajNyiri! Much appreciated, and I think an official interface from TP-link is best in the long run. Not sure this has been mentioned before (at least it wasn't clear to me), but the downgrade process was very easy and I didn't need to factory reset the camera (which means I didn't have to reconfigure anything, all settings was preserved after the downgrade). The process I did (with my two C320WS cameras):
|
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as off-topic.
This comment was marked as off-topic.
This comment was marked as off-topic.
This comment was marked as off-topic.
This comment was marked as off-topic.
This comment was marked as off-topic.
This comment was marked as off-topic.
This comment was marked as off-topic.
This comment was marked as off-topic.
This comment was marked as off-topic.
Unfortunately I was forced to lock this due to too many off topic and duplicate posts sending notifications out to everyone watching this issue. This was after more than 3 warnings were sent previously and users ignoring these. Every information you need regarding this issue is in the main post at the top. If you have anything new and valuable to share feel free to email me. |
I saw an increase of messages on Discord talking about inactivity on this issue. If you are wondering what is new, I am waiting for TPLink to send me instructions about endpoint they are developing specifically for this and this integration that should be done around end of June the last I heard from them. See this message for more details and how to get your camera working in the meantime. |
I have sent an email to TPLink asking for an update on the new API endpoint they are developing. |
Thread for invalid cloud password on firmware build 230921 and higher
There has been reports of users on firmwares 1.3.8, and newer, or on some cameras other firmwares with build 230921 and newer of integration stopping to work. This shows as cloud password not being accepted.
I have been in touch with tplink regarding a security vulnerability I reported in the past and this is most probably a fix for it.
This currently only affects some users, not all and most probably requires camera to be connected to the internet in order to receive the update for authorization, given that it affects older firmwares as well, or possibly an interaction with the official app.
I have a solution and I am waiting for a permission for integration to connect to cloud.
Users reported this problem in numerous issues, this issue will serve for tracking the progress on the fix and group all the conversation under one issue.
Workarounds
If you need to use the camera with this integration until this is resolved you can either:
This issue has been locked due to too many users ignoring the request to read first before posting duplicate and off topic content after more than 3 warnings.
This post will stay uptodate with the most recent updates below.
2024-04-11:
First report of the issue at #549
2024-04-12:
Second report of the issue at #550 along with more users confirming the issue.
2024-04-13:
This thread has been created.
From my side, I have unblocked one of my camera on the latest firmware to reach the internet, so that hopefully I can get this update soon and work on a fix. I hope TPLink will provide detailed instructions on what has been changed so that I can work on a fix.
2024-04-19:
Added instructions about build number as some cameras have different versioning of firmwares.
I reached out to TP-Link after 7 days for any updates.
2024-04-23:
@reypm found a solution how to workaround this issue without downgrading the firmware:
TPLink is working on providing me with the solution, got a reply today that I need to wait a bit more.
2024-05-08:
I have some very good news and a little bit of concerning news.
Good news:
Now the concerning news:
2024-05-15:
See #551 (comment)
2024-05-18:
See #551 (comment)
2024-05-29:
See #551 (comment)
2024-06-25:
See #551 (comment)
2024-07-03:
See #551 (comment)
The text was updated successfully, but these errors were encountered: