linkedin-api icon indicating copy to clipboard operation
linkedin-api copied to clipboard

Published 20 hours ago verified publisher icon tomquirk

security concerns with authentication

Open SwapnilSoni1999 opened this issue 4 years ago • 5 comments

when we log in in with email and password, And whenever if we visit linkedin.com on browser then it asks to reset password by asking to confirm identity. So seems quite risky for the particular account What else can be done to prevent such issues

SwapnilSoni1999 avatar Jul 08 '21 12:07 SwapnilSoni1999

Same issue here, when I deploy got app engine, then I get the server error and linkedin email to with security concerns. Running and working on it locally is working 100

PMLS3 avatar Jul 11 '21 05:07 PMLS3

Same issue here.

The python script is throwing the following error;

line 157, in _do_authentication_request raise ChallengeException(data["login_result"]) linkedin_api.client.ChallengeException: CHALLENGE

then refresh the linkedin page and it boots me out to a password reset

australianresearchgroup avatar Jul 14 '21 04:07 australianresearchgroup

A sort of workaround is discussed in #109 .

abinpaul1 avatar Jul 31 '21 04:07 abinpaul1

A sort of workaround is discussed in #109 .

Interesting but the thing is that module is based on selenium Still if we can inject those cookies with this commandline tool then it would be pretty good

SwapnilSoni1999 avatar Aug 16 '21 11:08 SwapnilSoni1999

That's true. Some work was actually done on this and mentioned in the same thread #109 .

Also, the workaround I was talking about refers to https://github.com/tomquirk/linkedin-api/issues/109#issuecomment-853808258 . It doesn't seem to make use of selenium and it's something that had to be run just once as well.

abinpaul1 avatar Aug 16 '21 15:08 abinpaul1