You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I did a bit of research and while I still don't fully understand how auth works I have some additional information. I'm creating an issue instead of a PR, as this isn't finished yet.
Can be changed: Unknown. Site reports 400 Bad Request when changing content. Probably a whitelist (TODO: Find other valid themes).
Use: Site theme
Response: HTML Site
Redirects to new URI after successful login:
URI: redirect_uri parameter
Parameters:
session_state:
Format: hex
Length: 65 bytes
Generation: static or user dependent. Has to be tested
Value: Not sure if this can be public
Use: Unknown. Maybe local use only
session_token_code:
Format: JSON web token (3 parts separated by dots. Signature algorithm, content and signature. All as base64url)
Generation: 1st part static, rest serverside
Value: 1st part {"alg":"HS256"}
Use: Key for future authentication
state:
Same as state parameter in request
TL;DR: We can't use the AUTH api, as redirect_uri seems to be using a whitelist. We don't know how state is generated, but it probably doesn't matter (I haven't tested making requests with a random state yet, but the login works)
EDIT: I don't know a lot about web Authentication, but I would guess that it uses OAuth 2.0, in which case the state would be random.
EDIT2: Added some values from the Switch Parental Control app
The text was updated successfully, but these errors were encountered:
freundTech
changed the title
More into on Authentication
More info on Authentication
Aug 17, 2017
I did a bit of research and while I still don't fully understand how auth works I have some additional information. I'm creating an issue instead of a PR, as this isn't finished yet.
URL: https://accounts.nintendo.com/connect/1.0.0/authorize
Method: GET
Parameters:
npf54789befb391a838://auth (Nintendo Switch Parental Controls)
54789befb391a838 (Nintendo Switch Parental Controls)
openid user user.mii moonUser:administration moonDevice:create moonOwnedDevice:administration moonParentalControlSetting moonParentalControlSetting:update moonParentalControlSettingState moonPairingState moonSmartDevice:administration moonDailySummary moonMonthlySummary (Nintendo Switch Parental Controls)
Response: HTML Site
Redirects to new URI after successful login:
URI: redirect_uri parameter
Parameters:
TL;DR: We can't use the AUTH api, as redirect_uri seems to be using a whitelist. We don't know how state is generated, but it probably doesn't matter (I haven't tested making requests with a random state yet, but the login works)
EDIT: I don't know a lot about web Authentication, but I would guess that it uses OAuth 2.0, in which case the state would be random.
EDIT2: Added some values from the Switch Parental Control app
The text was updated successfully, but these errors were encountered: