pyhOn/pyhon/connection/auth.py

import json
import logging
import re
import secrets
import urllib
from contextlib import suppress
from dataclasses import dataclass
from datetime import datetime, timedelta
from typing import Dict, Optional
from urllib import parse
from urllib.parse import quote

from aiohttp import ClientResponse
from yarl import URL

from pyhon import const, exceptions
from pyhon.connection.handler.auth import HonAuthConnectionHandler

_LOGGER = logging.getLogger(__name__)


@dataclass
class HonLoginData:
    url: str = ""
    email: str = ""
    password: str = ""
    fw_uid: str = ""
    loaded: Optional[Dict] = None


class HonAuth:
    _TOKEN_EXPIRES_AFTER_HOURS = 8
    _TOKEN_EXPIRE_WARNING_HOURS = 7

    def __init__(self, session, email, password, device) -> None:
        self._session = session
        self._request = HonAuthConnectionHandler(session)
        self._login_data = HonLoginData()
        self._login_data.email = email
        self._login_data.password = password
        self._access_token = ""
        self._refresh_token = ""
        self._cognito_token = ""
        self._id_token = ""
        self._device = device
        self._expires: datetime = datetime.utcnow()

    @property
    def cognito_token(self) -> str:
        return self._cognito_token

    @property
    def id_token(self) -> str:
        return self._id_token

    @property
    def access_token(self) -> str:
        return self._access_token

    @property
    def refresh_token(self) -> str:
        return self._refresh_token

    def _check_token_expiration(self, hours: int) -> bool:
        return datetime.utcnow() >= self._expires + timedelta(hours=hours)

    @property
    def token_is_expired(self) -> bool:
        return self._check_token_expiration(self._TOKEN_EXPIRES_AFTER_HOURS)

    @property
    def token_expires_soon(self) -> bool:
        return self._check_token_expiration(self._TOKEN_EXPIRE_WARNING_HOURS)

    async def _error_logger(self, response: ClientResponse, fail: bool = True) -> None:
        output = "hOn Authentication Error\n"
        for i, (status, url) in enumerate(self._request.called_urls):
            output += f" {i + 1: 2d}     {status} - {url}\n"
        output += f"ERROR - {response.status} - {response.request_info.url}\n"
        output += f"{15 * '='} Response {15 * '='}\n{await response.text()}\n{40 * '='}"
        _LOGGER.error(output)
        if fail:
            raise exceptions.HonAuthenticationError("Can't login")

    @staticmethod
    def _generate_nonce() -> str:
        nonce = secrets.token_hex(16)
        return f"{nonce[:8]}-{nonce[8:12]}-{nonce[12:16]}-{nonce[16:20]}-{nonce[20:]}"

    async def _load_login(self) -> bool:
        login_url = await self._introduce()
        login_url = await self._handle_redirects(login_url)
        return await self._login_url(login_url)

    async def _introduce(self) -> str:
        redirect_uri = urllib.parse.quote(f"{const.APP}://mobilesdk/detect/oauth/done")
        params = {
            "response_type": "token+id_token",
            "client_id": const.CLIENT_ID,
            "redirect_uri": redirect_uri,
            "display": "touch",
            "scope": "api openid refresh_token web",
            "nonce": self._generate_nonce(),
        }
        params_encode = "&".join([f"{k}={v}" for k, v in params.items()])
        url = f"{const.AUTH_API}/services/oauth2/authorize/expid_Login?{params_encode}"
        async with self._request.get(url) as response:
            text = await response.text()
            self._expires = datetime.utcnow()
            if not (login_url := re.findall("url = '(.+?)'", text)):
                if "oauth/done#access_token=" in text:
                    self._parse_token_data(text)
                    raise exceptions.HonNoAuthenticationNeeded()
                await self._error_logger(response)
        return login_url[0]

    async def _manual_redirect(self, url: str) -> str:
        async with self._request.get(url, allow_redirects=False) as response:
            if not (new_location := response.headers.get("Location", "")):
                await self._error_logger(response)
        return new_location

    async def _handle_redirects(self, login_url) -> str:
        redirect1 = await self._manual_redirect(login_url)
        redirect2 = await self._manual_redirect(redirect1)
        return f"{redirect2}&System=IoT_Mobile_App&RegistrationSubChannel=hOn"

    async def _login_url(self, login_url: str) -> bool:
        headers = {"user-agent": const.USER_AGENT}
        url = URL(login_url, encoded=True)
        async with self._request.get(url, headers=headers) as response:
            text = await response.text()
            if context := re.findall('"fwuid":"(.*?)","loaded":(\\{.*?})', text):
                fw_uid, loaded_str = context[0]
                self._login_data.fw_uid = fw_uid
                self._login_data.loaded = json.loads(loaded_str)
                self._login_data.url = login_url.replace(const.AUTH_API, "")
                return True
            await self._error_logger(response)
        return False

    async def _login(self) -> str:
        start_url = self._login_data.url.rsplit("startURL=", maxsplit=1)[-1]
        start_url = parse.unquote(start_url).split("%3D")[0]
        action = {
            "id": "79;a",
            "descriptor": "apex://LightningLoginCustomController/ACTION$login",
            "callingDescriptor": "markup://c:loginForm",
            "params": {
                "username": self._login_data.email,
                "password": self._login_data.password,
                "startUrl": start_url,
            },
        }
        data = {
            "message": {"actions": [action]},
            "aura.context": {
                "mode": "PROD",
                "fwuid": self._login_data.fw_uid,
                "app": "siteforce:loginApp2",
                "loaded": self._login_data.loaded,
                "dn": [],
                "globals": {},
                "uad": False,
            },
            "aura.pageURI": self._login_data.url,
            "aura.token": None,
        }
        params = {"r": 3, "other.LightningLoginCustom.login": 1}
        async with self._request.post(
            const.AUTH_API + "/s/sfsites/aura",
            headers={"Content-Type": "application/x-www-form-urlencoded"},
            data="&".join(f"{k}={quote(json.dumps(v))}" for k, v in data.items()),
            params=params,
        ) as response:
            if response.status == 200:
                with suppress(json.JSONDecodeError, KeyError):
                    result = await response.json()
                    return result["events"][0]["attributes"]["values"]["url"]
            await self._error_logger(response)
            return ""

    def _parse_token_data(self, text: str) -> bool:
        if access_token := re.findall("access_token=(.*?)&", text):
            self._access_token = access_token[0]
        if refresh_token := re.findall("refresh_token=(.*?)&", text):
            self._refresh_token = refresh_token[0]
        if id_token := re.findall("id_token=(.*?)&", text):
            self._id_token = id_token[0]
        return True if access_token and refresh_token and id_token else False

    async def _get_token(self, url: str) -> bool:
        async with self._request.get(url) as response:
            if response.status != 200:
                await self._error_logger(response)
                return False
            url_search = re.findall(
                "href\\s*=\\s*[\"'](.+?)[\"']", await response.text()
            )
            if not url_search:
                await self._error_logger(response)
                return False
        if "ProgressiveLogin" in url_search[0]:
            async with self._request.get(url_search[0]) as response:
                if response.status != 200:
                    await self._error_logger(response)
                    return False
                url_search = re.findall(
                    "href\\s*=\\s*[\"'](.*?)[\"']", await response.text()
                )
        url = const.AUTH_API + url_search[0]
        async with self._request.get(url) as response:
            if response.status != 200:
                await self._error_logger(response)
                return False
            if not self._parse_token_data(await response.text()):
                await self._error_logger(response)
                return False
        return True

    async def _api_auth(self) -> bool:
        post_headers = {"id-token": self._id_token}
        data = self._device.get()
        async with self._request.post(
            f"{const.API_URL}/auth/v1/login", headers=post_headers, json=data
        ) as response:
            try:
                json_data = await response.json()
            except json.JSONDecodeError:
                await self._error_logger(response)
                return False
            self._cognito_token = json_data.get("cognitoUser", {}).get("Token", "")
            if not self._cognito_token:
                _LOGGER.error(json_data)
                raise exceptions.HonAuthenticationError()
        return True

    async def authenticate(self) -> None:
        self.clear()
        try:
            if not await self._load_login():
                raise exceptions.HonAuthenticationError("Can't open login page")
            if not (url := await self._login()):
                raise exceptions.HonAuthenticationError("Can't login")
            if not await self._get_token(url):
                raise exceptions.HonAuthenticationError("Can't get token")
            if not await self._api_auth():
                raise exceptions.HonAuthenticationError("Can't get api token")
        except exceptions.HonNoAuthenticationNeeded:
            return

    async def refresh(self) -> bool:
        params = {
            "client_id": const.CLIENT_ID,
            "refresh_token": self._refresh_token,
            "grant_type": "refresh_token",
        }
        async with self._request.post(
            f"{const.AUTH_API}/services/oauth2/token", params=params
        ) as response:
            if response.status >= 400:
                await self._error_logger(response, fail=False)
                return False
            data = await response.json()
        self._expires = datetime.utcnow()
        self._id_token = data["id_token"]
        self._access_token = data["access_token"]
        return await self._api_auth()

    def clear(self) -> None:
        self._session.cookie_jar.clear_domain(const.AUTH_API.split("/")[-2])
        self._request.called_urls = []
        self._cognito_token = ""
        self._id_token = ""
        self._access_token = ""
        self._refresh_token = ""
Init commit 2023-02-13 01:41:38 +01:00			`import json`
			`import logging`
			`import re`
			`import secrets`
			`import urllib`
Add mypy checks 2023-04-15 15:55:22 +02:00			`from contextlib import suppress`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`from dataclasses import dataclass`
Refresh token workaround because expires to fast 2023-04-14 23:15:07 +02:00			`from datetime import datetime, timedelta`
Fix code depts 2023-04-15 23:02:37 +02:00			`from typing import Dict, Optional`
Init commit 2023-02-13 01:41:38 +01:00			`from urllib import parse`
Encode username/password 2023-04-12 02:09:41 +02:00			`from urllib.parse import quote`
Init commit 2023-02-13 01:41:38 +01:00
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`from aiohttp import ClientResponse`
Clean up authentication 2023-03-17 01:56:04 +01:00			`from yarl import URL`
Init commit 2023-02-13 01:41:38 +01:00
Fix unclear session errors 2023-04-12 19:14:14 +02:00			`from pyhon import const, exceptions`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`from pyhon.connection.handler.auth import HonAuthConnectionHandler`
Init commit 2023-02-13 01:41:38 +01:00
Fix login issue 2023-04-10 20:31:55 +02:00			`_LOGGER = logging.getLogger(__name__)`
Init commit 2023-02-13 01:41:38 +01:00

Use dataclass for login data 2023-04-15 14:37:27 +02:00			`@dataclass`
			`class HonLoginData:`
			`url: str = ""`
			`email: str = ""`
			`password: str = ""`
			`fw_uid: str = ""`
			`loaded: Optional[Dict] = None`


Init commit 2023-02-13 01:41:38 +01:00			`class HonAuth:`
Refresh token workaround because expires to fast 2023-04-14 23:15:07 +02:00			`_TOKEN_EXPIRES_AFTER_HOURS = 8`
			`_TOKEN_EXPIRE_WARNING_HOURS = 7`

Use connection handler 2023-04-09 18:13:50 +02:00			`def __init__(self, session, email, password, device) -> None:`
			`self._session = session`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`self._request = HonAuthConnectionHandler(session)`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`self._login_data = HonLoginData()`
			`self._login_data.email = email`
			`self._login_data.password = password`
Clean up authentication 2023-03-17 01:56:04 +01:00			`self._access_token = ""`
			`self._refresh_token = ""`
Init commit 2023-02-13 01:41:38 +01:00			`self._cognito_token = ""`
			`self._id_token = ""`
Use connection handler 2023-04-09 18:13:50 +02:00			`self._device = device`
Refresh token workaround because expires to fast 2023-04-14 23:15:07 +02:00			`self._expires: datetime = datetime.utcnow()`
Init commit 2023-02-13 01:41:38 +01:00
			`@property`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`def cognito_token(self) -> str:`
Init commit 2023-02-13 01:41:38 +01:00			`return self._cognito_token`

			`@property`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`def id_token(self) -> str:`
Init commit 2023-02-13 01:41:38 +01:00			`return self._id_token`

Clean up authentication 2023-03-17 01:56:04 +01:00			`@property`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`def access_token(self) -> str:`
Clean up authentication 2023-03-17 01:56:04 +01:00			`return self._access_token`

			`@property`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`def refresh_token(self) -> str:`
Clean up authentication 2023-03-17 01:56:04 +01:00			`return self._refresh_token`

Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`def _check_token_expiration(self, hours: int) -> bool:`
Refresh token workaround because expires to fast 2023-04-14 23:15:07 +02:00			`return datetime.utcnow() >= self._expires + timedelta(hours=hours)`

			`@property`
			`def token_is_expired(self) -> bool:`
			`return self._check_token_expiration(self._TOKEN_EXPIRES_AFTER_HOURS)`

			`@property`
			`def token_expires_soon(self) -> bool:`
			`return self._check_token_expiration(self._TOKEN_EXPIRE_WARNING_HOURS)`

Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`async def _error_logger(self, response: ClientResponse, fail: bool = True) -> None:`
			`output = "hOn Authentication Error\n"`
			`for i, (status, url) in enumerate(self._request.called_urls):`
			`output += f" {i + 1: 2d} {status} - {url}\n"`
			`output += f"ERROR - {response.status} - {response.request_info.url}\n"`
			`output += f"{15 * '='} Response {15 * '='}\n{await response.text()}\n{40 * '='}"`
			`_LOGGER.error(output)`
Improve logging for authentication errors 2023-04-11 00:59:00 +02:00			`if fail:`
Fix unclear session errors 2023-04-12 19:14:14 +02:00			`raise exceptions.HonAuthenticationError("Can't login")`
Improve logging for authentication errors 2023-04-11 00:59:00 +02:00
Add mypy checks 2023-04-15 15:55:22 +02:00			`@staticmethod`
			`def _generate_nonce() -> str:`
Clean up authentication 2023-03-17 01:56:04 +01:00			`nonce = secrets.token_hex(16)`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`return f"{nonce[:8]}-{nonce[8:12]}-{nonce[12:16]}-{nonce[16:20]}-{nonce[20:]}"`

Add mypy checks 2023-04-15 15:55:22 +02:00			`async def _load_login(self) -> bool:`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`login_url = await self._introduce()`
			`login_url = await self._handle_redirects(login_url)`
Add mypy checks 2023-04-15 15:55:22 +02:00			`return await self._login_url(login_url)`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00
			`async def _introduce(self) -> str:`
			`redirect_uri = urllib.parse.quote(f"{const.APP}://mobilesdk/detect/oauth/done")`
Clean up authentication 2023-03-17 01:56:04 +01:00			`params = {`
			`"response_type": "token+id_token",`
			`"client_id": const.CLIENT_ID,`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`"redirect_uri": redirect_uri,`
Clean up authentication 2023-03-17 01:56:04 +01:00			`"display": "touch",`
			`"scope": "api openid refresh_token web",`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`"nonce": self._generate_nonce(),`
Clean up authentication 2023-03-17 01:56:04 +01:00			`}`
Add mypy checks 2023-04-15 15:55:22 +02:00			`params_encode = "&".join([f"{k}={v}" for k, v in params.items()])`
			`url = f"{const.AUTH_API}/services/oauth2/authorize/expid_Login?{params_encode}"`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`async with self._request.get(url) as response:`
Fix unclear session errors 2023-04-12 19:14:14 +02:00			`text = await response.text()`
Refresh token workaround because expires to fast 2023-04-14 23:15:07 +02:00			`self._expires = datetime.utcnow()`
Fix unclear session errors 2023-04-12 19:14:14 +02:00			`if not (login_url := re.findall("url = '(.+?)'", text)):`
			`if "oauth/done#access_token=" in text:`
			`self._parse_token_data(text)`
			`raise exceptions.HonNoAuthenticationNeeded()`
Improve logging for authentication errors 2023-04-11 00:59:00 +02:00			`await self._error_logger(response)`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`return login_url[0]`

			`async def _manual_redirect(self, url: str) -> str:`
			`async with self._request.get(url, allow_redirects=False) as response:`
Add mypy checks 2023-04-15 15:55:22 +02:00			`if not (new_location := response.headers.get("Location", "")):`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`await self._error_logger(response)`
			`return new_location`

			`async def _handle_redirects(self, login_url) -> str:`
			`redirect1 = await self._manual_redirect(login_url)`
			`redirect2 = await self._manual_redirect(redirect1)`
			`return f"{redirect2}&System=IoT_Mobile_App&RegistrationSubChannel=hOn"`

Use dataclass for login data 2023-04-15 14:37:27 +02:00			`async def _login_url(self, login_url: str) -> bool:`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`headers = {"user-agent": const.USER_AGENT}`
			`url = URL(login_url, encoded=True)`
			`async with self._request.get(url, headers=headers) as response:`
			`text = await response.text()`
			`if context := re.findall('"fwuid":"(.?)","loaded":(\\{.?})', text):`
Clean up authentication 2023-03-17 01:56:04 +01:00			`fw_uid, loaded_str = context[0]`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`self._login_data.fw_uid = fw_uid`
			`self._login_data.loaded = json.loads(loaded_str)`
Fix changed hOn login 2023-06-07 02:27:02 +02:00			`self._login_data.url = login_url.replace(const.AUTH_API, "")`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`return True`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`await self._error_logger(response)`
Add mypy checks 2023-04-15 15:55:22 +02:00			`return False`
Clean up authentication 2023-03-17 01:56:04 +01:00
Add mypy checks 2023-04-15 15:55:22 +02:00			`async def _login(self) -> str:`
			`start_url = self._login_data.url.rsplit("startURL=", maxsplit=1)[-1]`
			`start_url = parse.unquote(start_url).split("%3D")[0]`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`action = {`
			`"id": "79;a",`
			`"descriptor": "apex://LightningLoginCustomController/ACTION$login",`
			`"callingDescriptor": "markup://c:loginForm",`
			`"params": {`
Fix changed hOn login 2023-06-07 02:27:02 +02:00			`"username": self._login_data.email,`
			`"password": self._login_data.password,`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`"startUrl": start_url,`
Init commit 2023-02-13 01:41:38 +01:00			`},`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`}`
			`data = {`
			`"message": {"actions": [action]},`
Init commit 2023-02-13 01:41:38 +01:00			`"aura.context": {`
			`"mode": "PROD",`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`"fwuid": self._login_data.fw_uid,`
Init commit 2023-02-13 01:41:38 +01:00			`"app": "siteforce:loginApp2",`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`"loaded": self._login_data.loaded,`
Init commit 2023-02-13 01:41:38 +01:00			`"dn": [],`
			`"globals": {},`
Format with black 2023-04-09 20:55:36 +02:00			`"uad": False,`
			`},`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`"aura.pageURI": self._login_data.url,`
Format with black 2023-04-09 20:55:36 +02:00			`"aura.token": None,`
			`}`
Init commit 2023-02-13 01:41:38 +01:00			`params = {"r": 3, "other.LightningLoginCustom.login": 1}`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`async with self._request.post(`
Format with black 2023-04-09 20:55:36 +02:00			`const.AUTH_API + "/s/sfsites/aura",`
			`headers={"Content-Type": "application/x-www-form-urlencoded"},`
Fix changed hOn login 2023-06-07 02:27:02 +02:00			`data="&".join(f"{k}={quote(json.dumps(v))}" for k, v in data.items()),`
Format with black 2023-04-09 20:55:36 +02:00			`params=params,`
Init commit 2023-02-13 01:41:38 +01:00			`) as response:`
Clean up authentication 2023-03-17 01:56:04 +01:00			`if response.status == 200:`
Add mypy checks 2023-04-15 15:55:22 +02:00			`with suppress(json.JSONDecodeError, KeyError):`
			`result = await response.json()`
			`return result["events"][0]["attributes"]["values"]["url"]`
Improve logging for authentication errors 2023-04-11 00:59:00 +02:00			`await self._error_logger(response)`
Clean up authentication 2023-03-17 01:56:04 +01:00			`return ""`
Init commit 2023-02-13 01:41:38 +01:00
Raise error if missing token 2023-04-24 21:50:25 +02:00			`def _parse_token_data(self, text: str) -> bool:`
Fix unclear session errors 2023-04-12 19:14:14 +02:00			`if access_token := re.findall("access_token=(.*?)&", text):`
			`self._access_token = access_token[0]`
			`if refresh_token := re.findall("refresh_token=(.*?)&", text):`
			`self._refresh_token = refresh_token[0]`
			`if id_token := re.findall("id_token=(.*?)&", text):`
			`self._id_token = id_token[0]`
Raise error if missing token 2023-04-24 21:50:25 +02:00			`return True if access_token and refresh_token and id_token else False`
Fix unclear session errors 2023-04-12 19:14:14 +02:00
Add mypy checks 2023-04-15 15:55:22 +02:00			`async def _get_token(self, url: str) -> bool:`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`async with self._request.get(url) as response:`
Fix login issue 2023-04-10 20:31:55 +02:00			`if response.status != 200:`
Improve logging for authentication errors 2023-04-11 00:59:00 +02:00			`await self._error_logger(response)`
Clean up authentication 2023-03-17 01:56:04 +01:00			`return False`
Add mypy checks 2023-04-15 15:55:22 +02:00			`url_search = re.findall(`
			`"href\\s=\\s[\"'](.+?)[\"']", await response.text()`
			`)`
			`if not url_search:`
Improve logging for authentication errors 2023-04-11 00:59:00 +02:00			`await self._error_logger(response)`
			`return False`
Add mypy checks 2023-04-15 15:55:22 +02:00			`if "ProgressiveLogin" in url_search[0]:`
			`async with self._request.get(url_search[0]) as response:`
Fix login issue 2023-04-10 20:31:55 +02:00			`if response.status != 200:`
Improve logging for authentication errors 2023-04-11 00:59:00 +02:00			`await self._error_logger(response)`
Fix login issue 2023-04-10 20:31:55 +02:00			`return False`
Add mypy checks 2023-04-15 15:55:22 +02:00			`url_search = re.findall(`
			`"href\\s=\\s[\"'](.*?)[\"']", await response.text()`
			`)`
Fix changed hOn login 2023-06-07 02:27:02 +02:00			`url = const.AUTH_API + url_search[0]`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`async with self._request.get(url) as response:`
Fix login issue 2023-04-10 20:31:55 +02:00			`if response.status != 200:`
Improve logging for authentication errors 2023-04-11 00:59:00 +02:00			`await self._error_logger(response)`
Init commit 2023-02-13 01:41:38 +01:00			`return False`
Raise error if missing token 2023-04-24 21:50:25 +02:00			`if not self._parse_token_data(await response.text()):`
			`await self._error_logger(response)`
			`return False`
Init commit 2023-02-13 01:41:38 +01:00			`return True`

Add mypy checks 2023-04-15 15:55:22 +02:00			`async def _api_auth(self) -> bool:`
Get new token via refresh-token #10 2023-04-09 18:43:57 +02:00			`post_headers = {"id-token": self._id_token}`
Use connection handler 2023-04-09 18:13:50 +02:00			`data = self._device.get()`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`async with self._request.post(`
Format with black 2023-04-09 20:55:36 +02:00			`f"{const.API_URL}/auth/v1/login", headers=post_headers, json=data`
Fix login issue 2023-04-10 20:31:55 +02:00			`) as response:`
Use connection handler 2023-04-09 18:13:50 +02:00			`try:`
Fix login issue 2023-04-10 20:31:55 +02:00			`json_data = await response.json()`
Use connection handler 2023-04-09 18:13:50 +02:00			`except json.JSONDecodeError:`
Improve logging for authentication errors 2023-04-11 00:59:00 +02:00			`await self._error_logger(response)`
Use connection handler 2023-04-09 18:13:50 +02:00			`return False`
Add log for empty token 2023-04-21 23:34:10 +02:00			`self._cognito_token = json_data.get("cognitoUser", {}).get("Token", "")`
			`if not self._cognito_token:`
			`_LOGGER.error(json_data)`
			`raise exceptions.HonAuthenticationError()`
Init commit 2023-02-13 01:41:38 +01:00			`return True`
Get new token via refresh-token #10 2023-04-09 18:43:57 +02:00
Add mypy checks 2023-04-15 15:55:22 +02:00			`async def authenticate(self) -> None:`
Fix unclear session errors 2023-04-12 19:14:14 +02:00			`self.clear()`
			`try:`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`if not await self._load_login():`
Fix unclear session errors 2023-04-12 19:14:14 +02:00			`raise exceptions.HonAuthenticationError("Can't open login page")`
Use dataclass for login data 2023-04-15 14:37:27 +02:00			`if not (url := await self._login()):`
Fix unclear session errors 2023-04-12 19:14:14 +02:00			`raise exceptions.HonAuthenticationError("Can't login")`
			`if not await self._get_token(url):`
			`raise exceptions.HonAuthenticationError("Can't get token")`
			`if not await self._api_auth():`
			`raise exceptions.HonAuthenticationError("Can't get api token")`
			`except exceptions.HonNoAuthenticationNeeded:`
			`return`

Add mypy checks 2023-04-15 15:55:22 +02:00			`async def refresh(self) -> bool:`
Get new token via refresh-token #10 2023-04-09 18:43:57 +02:00			`params = {`
			`"client_id": const.CLIENT_ID,`
			`"refresh_token": self._refresh_token,`
Format with black 2023-04-09 20:55:36 +02:00			`"grant_type": "refresh_token",`
Get new token via refresh-token #10 2023-04-09 18:43:57 +02:00			`}`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`async with self._request.post(`
Format with black 2023-04-09 20:55:36 +02:00			`f"{const.AUTH_API}/services/oauth2/token", params=params`
Fix login issue 2023-04-10 20:31:55 +02:00			`) as response:`
			`if response.status >= 400:`
Improve logging for authentication errors 2023-04-11 00:59:00 +02:00			`await self._error_logger(response, fail=False)`
Get new token via refresh-token #10 2023-04-09 18:43:57 +02:00			`return False`
Fix login issue 2023-04-10 20:31:55 +02:00			`data = await response.json()`
Refresh token workaround because expires to fast 2023-04-14 23:15:07 +02:00			`self._expires = datetime.utcnow()`
Improve logging 2023-04-10 06:42:40 +02:00			`self._id_token = data["id_token"]`
			`self._access_token = data["access_token"]`
Fix token refresh problems 2023-04-11 17:09:02 +02:00			`return await self._api_auth()`
Fix unclear session errors 2023-04-12 19:14:14 +02:00
Add mypy checks 2023-04-15 15:55:22 +02:00			`def clear(self) -> None:`
Fix unclear session errors 2023-04-12 19:14:14 +02:00			`self._session.cookie_jar.clear_domain(const.AUTH_API.split("/")[-2])`
Refactor, add hon auth handler 2023-04-15 14:22:04 +02:00			`self._request.called_urls = []`
Fix unclear session errors 2023-04-12 19:14:14 +02:00			`self._cognito_token = ""`
			`self._id_token = ""`
			`self._access_token = ""`
			`self._refresh_token = ""`