Login using Api not working #3
Comments
azerpas
added
bug
|
@Mobeen22-creator As I've said in the README.md, the login has been changed by Nike more than a year ago. You need to reverse engineer their new log-in system powered by Akamai. A few leads I can give you:
While a lot of bots are requests based nowadays, I'm sure you'll be able to generate better results with a good webdriver framework. Good luck and let me know if you achieve anything! |
|
Thanks for your response...I will check it if possible.. Also Can you guide me on other api(for checkout,add to card)? |
|
Last time I checked they were not any changes on the checkout part. They track your sensor data through the whole process though. |
Which Senor data?..Because I am working about 15 days ago..Checkout Api working..But now it not working..Can you please check the issue?..I will be very thankful to you. |
|
Will try to check asap |
Thank you so much |
|
fetch("https://api.nike.com/buy/checkouts/v3/ee2c64e3-7fcb-4793-ba50-d7b23585b2ca", { |
|
How are you handling your cookies? |
|
I am get access token from chrome session storage...I am not using cookies.. Because api request for add to cart and checkout api was working without cookies.. |
|
They flag you because of that. This response is returned whenever your cookies are incorrect or absent. |
|
It mean we need cookies..But when I copied it from chrome in postman, issue still exist..Any Solution for it? |
|
I am working in c# |
|
How can I generate cookies for nike? |
|
If you can guide, I will be very helpful for me.. |
|
I gave you everything you need to learn how to generate cookies here. |
|
Thank you so much for helping me out... |
|
So if the login URL isn't "https://unite.nike.com/login?" Then what is it? I cannot find a link that goes api.nike.com for login purposes |
|
You have to generate senor data then it will be easier. |
|
I did generate the sensor data but I still get a 403 error. I even used selenium to get the sensor data from nike. It still did not work. Do you use the same "unite.nike.com/login?" link though?
…________________________________
From: Muhammad Mobeen Ghaffar <notifications@github.com>
Sent: Sunday, January 24, 2021 6:07 AM
To: azerpas/nikeAPI-Py <nikeAPI-Py@noreply.github.com>
Cc: rhkruz03 <rh_curtis@outlook.com>; Comment <comment@noreply.github.com>
Subject: Re: [azerpas/nikeAPI-Py] Login using Api not working (#3)
You have to generate senor data then it will be easier.
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<#3 (comment)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/ASSNVW7PDDNSG7AMZ5TGTFLS3P5PHANCNFSM4UMLOYDQ>.
|
|
Selenium will get you flagged instantly by Akamai. Decode the _bmak file and search for "selenium" or "chromedriver", hopefully you'll start to understand how that works. 😁 |
|
@Mobeen22-creator I'll be happy to hear what you found, please let me know. 😉 |
|
I appreciate the help. I have a script that decodes the bmak file for me. An example of the decoded results can be found here:
http://ddecode.com/hexdecoder/?results=335f2776eaf4ca7eca9953d2240c3316
I'm using python and I am not trying to figure out how do I then take this code and convert it into the sensor data. I have a script that creates sensor data but if nike constantly updates it would make it obsolete. I've searched github to see if anyone has a python script that could convert the decoded bmak file but I have not seen one.
…________________________________
From: Azerpas <notifications@github.com>
Sent: Sunday, January 24, 2021 11:45 AM
To: azerpas/nikeAPI-Py <nikeAPI-Py@noreply.github.com>
Cc: rhkruz03 <rh_curtis@outlook.com>; Comment <comment@noreply.github.com>
Subject: Re: [azerpas/nikeAPI-Py] Login using Api not working (#3)
@Mobeen22-creator<https://github.com/Mobeen22-creator> I'll be happy to hear what you found, please let me know. 😉
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<#3 (comment)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/ASSNVW4NJCRBSVGJ6B4JO3TS3RFBXANCNFSM4UMLOYDQ>.
|
|
The code itself generates the sensor data. You're only half way through with that decoded result, replace all "_ac" vars by its value in the array. Good luck! |
|
I figured out a way to bypass all of that. Which is great news. I am on the final part of checkout. I saw someone mentioned it above as well but it is not clear to me what they did but they seemed to figure it out. I am getting the following error on checkout:
"sec-cp-challenge": "true",
"provider": "crypto",
"branding_url_content": "%2fstatic%2fbot%2fchallenge%2findex.html",
"chlg_duration": 30
…________________________________
From: Azerpas <notifications@github.com>
Sent: Tuesday, January 26, 2021 3:40 AM
To: azerpas/nikeAPI-Py <nikeAPI-Py@noreply.github.com>
Cc: rhkruz03 <rh_curtis@outlook.com>; Comment <comment@noreply.github.com>
Subject: Re: [azerpas/nikeAPI-Py] Login using Api not working (#3)
The code itself generates the sensor data. You're only half way through with that decoded result, replace all "_ac" vars by its value in the array. Good luck!
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<#3 (comment)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/ASSNVW6I2GQODEWAIOLD2LDS3Z5ZFANCNFSM4UMLOYDQ>.
|
I am working on bypassing it.and I have done something in Android app. Maybe we can collaborate. |
|
I've created a discord to share your work: |
|
Has anyone come around this also how senser data is generated pls elaborate.TIA |
|
I HAve Succesed getting the abck cookie but when use my bot in concurrency, akamai detect to me that I use a bot, somebody know how akamai detect to me? |
I am try to login using my email and password.But it always say not authenticate
The text was updated successfully, but these errors were encountered: