New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Login process has been changed #79
Comments
I didn't have any problem getting it with Charles |
@modulebaan how does tinderjs do it? that seems to still work. |
@charliewolf @h-2-0 |
If it's any clue; around the same time I stopped being able to log in via the app on 4G, but could over wifi... cannot imagine how it could be related but it does correlate. |
@modulebaan I just tested and got the right token using Charles while login into tinder from my mobile. I didn't see any problem. |
I seem to have the issue of the token expiring either after the time is up or I log out on the mobile app. |
@h-2-0 |
@h-2-0 I can get a token using the above link and substituting fbconnect://success as the redirect_uri and looking at the response payload; can that be substituted into your method using webview? Would you be able to share? |
@ SirWhiteHat I am not familiar with webview. I use Charles Proxy to intercept traffic between my phone and Tinder to get the long duration FB_TOKEN. @ Jackojc |
@modulebaan Is your app phone based? Because with Pynder (desktop based) I can login in without problems (although I'm not sure if the token is short or long term). |
Sorry @h-2-0 , I meant to address @modulebaan. I can get a token using the above link when substituting fbconnect://success as the redirect_uri and looking at the response payload; can that be substituted into your method using webview? Would you be able to share? |
Can you give the full url you use ? |
@modulebaan Token comes back after clicking "OK'. Haven't automated this bit (hoping that you might have with webview). I use this to get a token without having to set up a proxy etc. |
Nice! Yes I automate this by reading the URL everytime it changes and as soon the auth token is available I save it. |
@modulebaan Glad it worked for you. I don't follow; I don't think the token is returned as part of an URL with this link, does that mean that your automation method does not work here? |
care to explain more on how to get the token after clicking ok on the url page? @SirWhiteHat |
@SirWhiteHat After clicking OK the token is hidden in the url where you're redirected to. @flyfj |
It works @SirWhiteHat |
duration is listed in seconds in the url 'expires in' |
At the moment I'm not at home but in my browser of my Jolla smatphone it works. |
Any guide or suggestion to get the app secret? |
I suggest you start with Charles proxy to see how the Tinder app the long token request |
Just a shortened link to the URL above – in case, anyone wants to try it: |
Just tested it at home in Firefox and it works great! Thank you all 👍 |
So, I can do this by using the developer console and picking out the token from a hand-picked response after loading the above link and submitting the form; has anybody found a way to automate this from python? i.e. something that can be called if it fails to authenticate, that will return a new token as a string and use it to log in, transparently? Doesn't have to be a non-expiring one as it can always poll for a new one! Thanks |
I did it with a webview but pure in Python I don't know how (emulating the browser would be an option) |
I'm struggling to get it to work with a webview. Please could you share a code snippet on this? :) Sent from my iPhone
|
Yes I can :) if you promise not to publish it public online. |
Yeah, Dude I completely understand if you don't want to make it public. Anyway, My email is "jackojc@gmail.com" |
Hi @modulebaan , you can get me at olliehawkerrandom@gmail.com Thanks a lot! I've been stuck on this for a while. |
Check your e-mail guys ;) |
@modulebaan Thank you! |
Check your e-mail :p |
Thanks so much, @modulebaan ! |
Not sure I agree that emailing this is the best method. @modulebaan People are using the same method you are using (including you) in publicly available apps. Tinder is no doubt well aware. I'd love if we could keep in the spirit of open source and make this work public. Thoughts? |
@charliewolf
|
`import QtQuick 2.2 Page {
} |
@modulebaan Thanks for sharing the code. But to be honest, I don't understand it! :/ I just know Python :) Do you know a way to get the this from python (i.e. not from Webview)? EDIT: What I would like to to is create a web app (say with Django) to be used by other users. Then I guess I would get the long duration token when they sign up into their Facebook. For the moment I'm getting my long durations tokens using Charles for my own personal use. Thanks! |
@h-2-0 |
I use selenium python and it works for me: Some problems you can have is that the version of Firefox don't work with selenium (try FF 45) |
@modulebaan Thanks! I'll definitively check that out Oh, wow! That's great! Time to learn Selenium! Thanks! |
@enric1994 Is there any Python 3 compatible version of selenium? |
I wanted to use selenium but it's not supported on mobile platforms like Sailfish OS which I use for my apps and as mobile OS on my smartphone. |
But wait a minute..It seems the selenium script requires the FB credentials. So how could this possible work for me to get the token from a visitor to my webapp? I wouldn't dare to ask them to fill out a form to submit their Facebook username and email. Or am I missing something? |
The whole point of using Charles is to get the long term token. If you are getting the token from it twice a day it means you are getting the short term one. The one I got from Charles hasn't expired in more than 3 months. |
Hi! I tried your code but I'm getting this error...
|
I'm interested in the long token, @h-2-0 how does those requests look like? |
To make it work I changed this: ...to this: @modulebaan However I haven't found an quick and efficient way to get the short term token using Python on behalf of others accessing my client for desktop (unless they are insane enough to provide me with their FB credentials). I'm probably missing something/doing something wrong because there are several desktop and mobile clients out there. |
Can you provide where (urls/...) you have retrieved the long access token @h-2-0 I haven't found it yet with Charles with my accounts... |
@modulebaan , Sure. I will outline my process using an Android phone and Debian Linux in case someone else needs it. . 2. Open Charles Proxy 3. Go to your mobile's WiFi options and press the current network connection for 2 seconds to access its proxy settings 4. Open Phone's browser and go to... 5. Open and login into Tinder from mobile 6. Back in Charles Proxy look for 'auth' inside https://api.gotinder.com to get your LONG TERM Facebook token. To see it click on the Contents tab on the right panel (next to the Overview one). |
@modulebaan Ops! I screw up the step order. I edited my previous post to fix it. Hope it helps! |
@h-2-0 |
@h-2-0 What would work is to emulate the requests that the FB Android SDK makes to get a long live one. |
@modulebaan
Hmmm...Didn't you mean to emulate Tinder requests to FB? But anyway, how difficult is to create an emulator? How can I start building one? Any pointers, ideas? It looks like some serious hacking job. My mind boggles. I am still trying to understand 😖 |
@h-2-0
The Tinder token expires in 1-2 days while the FB token from a webview expieres in 1-2 hours. You can get a long token if you knew the Tinder app-secret which is unknown. |
Hi there! Using desktop pyhon 2.7 and pynder 0.0.12 get token from calling the url http://rs.gs/FBTK and search the token id in the source code. Run the code: import pynder FBID="" session = pynder.Session(FBID, FBTOKEN) GET always the following error: Traceback (most recent call last): |
Use Fiddler to get the FB_ID and Auth_Token, but getting this error ? FBID = '...' |
The method used to get a Facebook token to login into Tinder doesn't work anymore.
https://www.facebook.com/dialog/oauth?client_id=464891386855067&redirect_uri=https://www.facebook.com/connect/login_success.html&scope=basic_info,email,public_profile,user_about_me,user_activities,user_birthday,user_education_history,user_friends,user_interests,user_likes,user_location,user_photos,user_relationship_details&response_type=token
Tinder blocked all the login clients except their own methods. I tried to proxy their traffic with Charles but Facebook uses CA cert validating which reject the Charles cert.
Has anyone a better idea to get a FB token?
The text was updated successfully, but these errors were encountered: