New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
How do you obtain valid x-august-api-key and x-kease-api-key #5
Comments
Use the x-kease-api-key You will get a response like:
and an x-august-access-token header set the api key environment variable to the value of this header. Then run The response will again include a x-august-access-token header that you should use as the api key environment variable. Then run The response will again include a x-august-access-token header that you should use as the api key environment variable. after this you will be set. |
It looks like august may have changed this part of the api i will get back to you. |
ok in the request bodies for verify phone and verify email where is says
it should be
august changed their apis. |
@jmaxxz excellent! I was able to obtained the x-august-api-key with the information provided. |
@jmaxxz Thanks for putting this Postman JSON together. I followed your instructions from Jan 23rd above as follows: (1) Sign-in using my credentials and x-august-api-key "14445b6a2dba". At Step 2, there's a long stall and then no response. Any ideas here? POST /session { which differs from your example above in that "vPassword" is true. Not sure if that's an issue or not... Then, using the x-august-access-token from the response header: POST /validation/email Headers: Body: Received "Could not get any response". |
Yeah i get the same long pause...not sure whats up with that. |
@jmaxxz this is decoded token I'm now getting with my homebridge plugin as well as your API ... { |
How are you updating the token you are using? As for as I can tell everything works as it did before. If you are using postman be sure you are setting the authorization token to be used after each step in the login process. |
What I posted is decoded token returned from your API. I refresh/use returned token every time, same as your code does. It appears that token remains “anonymous”. I observed that subscribing August in different apps (like ifttt) ends with “agree” page, which is not what either of us do. Posibble that’s the one returning cache-able user token? Thanks! |
I don't have an API, the tools in this repo interact directly with August's servers. |
Ok, sorry, my bad. I meant tools from your repo using August rest api are returning the token I posted. |
Post the raw token |
So it is not as you said, that token had a user id specified and works just fine. However, from the token I can tell that you did not follow the directions and verify your email address. Verify your email address. I would use https://lostphone.august.com/ to invalidate the token you previously shared as it was a working token, and would grant access to your account. |
This was is the decoded contents of the token you posted. In pretty much every way this token is functional.
|
Thank you very much @jmaxxz! Apparently I was not able to sign in with phone number, only email when using iPhone app. After I "reset" my login as suggested, appears that token is now working as you said. Thank you very much again! |
@msutara remember JWT tokens will grant access to your account, so be careful when you share them. I only asked for the raw token because in your previous post you said the userId was empty. (This would have been a very interesting token that was not specific to your account.) Treat JWT tokens that are for your accounts as if they were your password. |
Yes, I understood that, thanks for deleting that ... |
Hi Guys specially my friend @jmaxxz ! How did you manage to get the x-kease-api-key 14445b6a2dba it doesn't seems to be valid anymore. |
@federice use |
Man you are a genius !!! How come you managed to get that so quickly ?
it's working fine.
Well done!! Many thanks
…__________________
*Fabio Federice*
*E*: fabio@federice.net
On Fri, 22 Jun 2018 at 00:04, Jmaxxz ***@***.***> wrote:
@federice <https://github.com/federice> use
79fd0eb6-381d-4adf-95a0-47721289d1d9
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#5 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/Al2FMgWa_txp7XrXETIf-kG5N_WJXNa0ks5t_F6-gaJpZM4Q8SW0>
.
|
@federice simply capture traffic between the august app and their webservers. The long form version:
For most mobile apps or IoT things this is one of the best ways to get a practical understanding of how they work. |
I have been trying to get this to work but am stuck on the "validate" email or phone. I posted /validation/email and got a valid code sent to my e-mail. I tried posting this to the following validate/email. {
"email":"email-addresss",
"code": "code-from-email"
} and I am getting the following error in the body: {
"userId": "user-id",
"_value": "email:email-address",
"resolution": "token_incomplete"
} Does anyone have any idea what I'm doing wrong? I am using the x-august-access-token from the validation/email response header. |
This message is actually what you get when its working. You just copy the access token you get in response and use it in the rest of the API calls. The token is now considered valid |
Trying to POST /session using postman but the return is "Could not get any response"
There was an error connecting to https://api-production.august.com/session.
Headers:
Body:
The text was updated successfully, but these errors were encountered: