Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Your Apple ID was used to sign in to iCloud via a web browser. #292

Closed
3 tasks done
lonevvolf opened this issue Jul 9, 2023 · 8 comments
Closed
3 tasks done

Your Apple ID was used to sign in to iCloud via a web browser. #292

lonevvolf opened this issue Jul 9, 2023 · 8 comments
Labels
class(improvement) Indicates work related to improve an existing feature status(in progress) This item is currently in scope for the next release

Comments

@lonevvolf
Copy link

Checklist before opening an issue

Describe the bug

Every time the sync runs, I get an email from Apple saying:
"Your Apple ID was used to sign in to iCloud via a web browser."

I checked the docs, but didn't see any way to indicate to Apple that the "browser" should be trusted.

Error code

NA

Logs

NA

Operating environment

  • OS: Synology
  • Version: 1.1.1-beta3
  • Execution environment: docker
@steilerDev
Copy link
Owner

steilerDev commented Jul 9, 2023
edited

See PR #240.

As a workaround, you can configure server side rules in your email provider to move them out of the way (this is how I'm currently handling those emails)

@steilerDev steilerDev added status(backlog) This item is considered for future development class(improvement) Indicates work related to improve an existing feature labels Jul 9, 2023
@steilerDev
Copy link
Owner

HeaderJar and global NetworkManager are now persisting cookies between scheduled sync executions. It seems the aasp cookie in connection with the sessionToken are suppressing this email. This was added with 1.2.0-nightly.6.

Currently those cookies are not persisted between process restarts (not sure if it should) - please check it out and provide feedback.

@steilerDev steilerDev mentioned this issue Aug 6, 2023
Closed
@steilerDev steilerDev added status(in progress) This item is currently in scope for the next release and removed status(backlog) This item is considered for future development labels Aug 6, 2023
@steilerDev
Copy link
Owner

v1.2.0 only sends this notification after a restart and/or after the session expires (after what appears to be thirty days) - closing this

@lonevvolf
Copy link
Author

I am still getting this when running a manual sync command on an already running container in v.1.2.0. Is this expected behavior?

@steilerDev
Copy link
Owner

Yes, session info is held in memory - so not shared between processes.

Only daemon mode shares between sync executions

@undaunt
Copy link

undaunt commented Oct 9, 2023

@steilerDev Is it possible to persist this to disk similar to the implementation by icloud-photos-downloader? In the event I need to reboot the host or similar keeping it in memory will cause it to re-trigger prior to 30 days.

@steilerDev
Copy link
Owner

It's technically possible, but I think I don't want to circumvent this security feature. If someone would be able to access your resource file, they could login and authenticate unnoticed - by keeping this information only in memory you would get notified in case someone logs in using your trust token.

@undaunt
Copy link

undaunt commented Oct 10, 2023 via email

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
class(improvement) Indicates work related to improve an existing feature status(in progress) This item is currently in scope for the next release
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@lonevvolf @steilerDev @undaunt