arkenfox
can't login to Twitch with RFP [1805101]
I went through the steps and everything seems to work fine, however when i try to login to Twitch I get met with something went wrong. I have backed up my previous FireFox Config and went back to it, and it still works. I can login for youtube, or emails, or anything else, but twitch seems to not let me in. I have 0 extensions running when I tried it, and I am running the latest FireFox 106.0 (64-bit) ArchLinux-1.0
🟥 https://github.com/arkenfox/user.js/wiki/5.2-Troubleshooting
- [ ] I have read the troubleshooting guide, done the checks and confirmed this is caused by arkenfox
- unchecked issues ~~may~~ will be closed as invalid
🟪 REQUIRED INFO
- Browser version & OS:
- Steps to Reproduce (STR):
- Expected result:
- Actual result:
- Console errors and warnings:
- Anything else you deem worth mentioning:
I've yet to confirm this but it seems like it's Linux only; last time I tried I couldn't reproduce it on macOS but I could on Fedora, even in a brand new stock profile.
Yea I actually removed firefox and deleted the directory and just went back to my old settings. some of the settings I changed and went through one by one privacy.resistFingerprinting = True when i changed this to true, I had an issue with Twitch. So i left it at the default and continued on. I followed a guide on Reddit here https://www.reddit.com/r/privacytoolsIO/comments/mqy5u1/firefox_privacy_tweaks/ - Which was a lot of the things I tweaked, but i am a twitch head, so I went one by one making changes. Just like to know where I need to reset something back to its original state if I need to.
My suggestion for "popular" websites is just to have dedicated profiles, with FF are a breeze to setup.
Little tip: save a bookmark with URL pointing to about:profiles and you have all your profiles listed for quick opening and switching. Also about:about page has lots of neat stuff.
Even with a "relaxed" profile, you can benefit from lots of privacy wise improvements with just ETP strict and ublock origin. Add on top of that containers with MAC/TC and you are really getting rid of basically all the commercial nastiness on the common interwebz.
Fingerprinting is another big topic, but since you are logging in to the service the problem is moot I think.
Concluding, the various guides online are many times incomplete and/or outdated, the configs are constantly evolving and that guide is 2 years old.
Do read and learn, but ultimately if you are very interested in this, I think Arkenfox user.js + wiki and the issue section here are some of the best resources to follow.
I've tested on "relaxed" profile FF 106 on Windows (ETP strict + uBO) and login worked. Tested again on same profile with RFP ON and login worked.
I managed to fix this by making two changes in about:config awhile ago, one of them was disabling privacy.firstparty.isolate, and I think the second was disabling one of the privacy.trackingprotection.* settings. I know that arkenfox suggests against running Custom instead of Strict but this was the only way I could solve it. Things might have changed since I last had this issue a month or so back.
I managed to fix this by making two changes in
about:configawhile ago, one of them was disablingprivacy.firstparty.isolate, and I think the second was disabling one of theprivacy.trackingprotection.*settings. I know that arkenfox suggests against runningCustominstead ofStrictbut this was the only way I could solve it. Things might have changed since I last had this issue a month or so back.
Thank you. Yea when I went through a guide one by one I noticed the trackingprotection caused the problem and I stopped there. I did what GlassGruber mentioned above. I made a 2nd profile which I honestly didn't even know was a thing. For Login Accounts for the most part with my real emails. and then I have like my Junk Emails and Random Logins like Youtube and stuff on an ArkenProfile as is. I am just tired of the Data Hungry sites and all the sharing of information and trying to learn my way to keep things to a minimal. I even set up my Old Cell phone to use for a cell Phone number if I need one on certain sites. Tello 4$ a month lol. Which is where I think a lot of spam calls I was getting was coming from. Because when I create an account with this number it tends to get a lot of spoofy calls and noone has this number except for me and the Company.
https://github.com/arkenfox/user.js/blob/f4187632faef76df4de0cbb0cdc7199f22fadd76/user.js#L722
https://github.com/arkenfox/user.js/blob/f4187632faef76df4de0cbb0cdc7199f22fadd76/user.js#L719-L720
https://github.com/arkenfox/user.js/blob/f4187632faef76df4de0cbb0cdc7199f22fadd76/user.js#L719-L720
A not perfect alternative could be to use TC to isolate the domain where you set ETP off, so that at least out of that container other sites are not snatching "relevant" data.
But I guess that if ETP is off a dedicated profile is the best scenario to operate in.
@randomscumbag please check the checkbox in OP or I will be forced to do the following, as stated: "unchecked issues ~~may~~ will be closed as invalid"
I want to add something: apparently now, when you use the referer policy from arkenfox
user_pref("network.http.referer.XOriginPolicy", 2); user_pref("network.http.referer.XOriginTrimmingPolicy", 2);
Twitch says my browser is too old. By setting those to 0 i can login to Twitch with RFP on.
I test on a naked Firefox profile, and this is definitely one of those two, or those two the culprit(s).
A dirty workaround for now that I tried is simply adding https://twitch.tv/ to Settings(about:preferences) > Privacy & Security > Cookies and Site Data > Manage Exceptions..., then disabling RFP once so that Twitch doesn't complain about not using recommended browsers, then simply logging in on Twitch and after this just re-enable RFP, while making sure that the Twitch cookies are still there. Apparently, Twitch only complains on the login screen, it won't annoy you again once you get past the login process. Only RFP seems to be causing the issue in my case, ETP and other settings caused troubles only when I was trying to disable my account but disabling ETP did the trick on account disable page, so now I am free from vtuber hellhole, yes.
Apparently, Twitch only complains on the login screen
that's what the issue says ... can't login to twitch :)
This is getting worst. If i activate RFP after being logged, i cant send PM they are erased and no one can read them.
One or more GraphQL errors were detected on request 0************ Whispers_MarkThreadMessageRead: failed integrity check
Toggling RFP off allowed to to send PM. Seriously Twitch what are you smoking?
Sending a PM isn't the only thing that gets restricted, I've noticed things like being unable to remove notifications, being unable to gain channel points, bet, and redeeming rewards will not work. There are a couple more basic features that get restricted that I can't entirely remember, but like 50% of the buttons on the platform don't do anything with RFP re-enabled.
That said i apparently can login with RFP on. Must be confirmed in the long time.
I found that it's the tracking protection/isolation messing with the cookie Twitch sets giving me the "unsupported browser" message on log in. Temporary whitelist on FireFox tracking protection/uBlock Origin/I don't care about cookies was neccessary to click "Accept Cookies" then it'll let me log in.
this isnt on linux only, im on windows 10 and for me its from the browser settings but i dont know which one exactly it is. when i use default firefox it works fine but when i use arkenfox, some setting makes twitch rage i still have yet to find the issue
https://bugzilla.mozilla.org/show_bug.cgi?id=1805101 has landed .. lets see if it sticks and solves the problem
It would be nice if some of you twitchers could install Nightly, enable RFP and verify that the issue is fixed :-)
That and I can't wait for https://bugzilla.mozilla.org/show_bug.cgi?id=1610762 / https://bugzilla.mozilla.org/show_bug.cgi?id=1826098#c2 to happen - i.e in FF don't spoof the HTTP header in linux and mac to windows (but we do still limit it to four tuples, i.e windows 10, android 11, etc). And with the performance.mark fixed, things are starting to unbreak
https://bugzilla.mozilla.org/show_bug.cgi?id=1805101 has landed .. lets see if it sticks and solves the problem
I'm not really paying attention, and twitch has always had issues with FF on and off ... but https://bugzilla.mozilla.org/show_bug.cgi?id=1835987#c1
What we fixed in Bug 1805101 is to make it possible to successfully opt-out of fingerprinting protection for this specific site so that it starts working again. (At least I hope this works, I haven't tested it again) ...
Well it finally happened, I can no longer watch twitch streams without user_pref("privacy.resistFingerprinting", false);, instead I just get a black screen. Works flawlessly when disabling it though.
Edit: also VODs seem to still work
https://old.reddit.com/r/firefox/search/?q=twitch&sort=new&restrict_sr=on ... at the time of posting ... 25 threads on twitch in the last month. Twitch has always been ~~an asshole~~ glitchy. Not all those are directly twitch issue though, just pointing out that it gets a large share of the problems
how I feel about twitch ... https://old.reddit.com/r/firefox/comments/13e4fic/twitch_not_supporting_firefox/jjo32n9/
This is just Twitch being Twitch. [snip] It just.. breaks sometimes.
I can perfectly login on Twitch with RFP on apparently. Turn out its random and some people are not affected?
Strange, just as I found a fix for videos not loading, twitch rolledback and I can now watch streams, but I can no longer login, even with RFP off.
Slightly off-topic, but this thread might help debug why logins wont work with rfp streamlink/streamlink#5370. They managed to bypass the black screen I previously mentioned by spoofing the Client_ID to nintendo switch's Client_ID when sending headers (I've got some shoddy addon to help with this temporarily). The thread also mentions other ways twitch does integrity checks, might be worth checking out? rfp probably spoofs one of those variables which is what's preventing logins.
Seems like twitch is doing a lot of changes to their backend these past days as I heard adblock stopped working for some users as well. I might wait a couple of days until I fiddle with it again since who knows what twitch will do.
I think you should just clear all your twitch cookies and try logging-in again, IIRC they set a cookie which contains some kind of sanity check so if you failed it, it'll stay that way for a few hours until that cookie expires.
Twitch now blocks you from logging in if you're behind a VPN, as if the shadowban wasn't enough... Still managed to fix it with some SmartProxy configuration.
I also found a way to login without needing to (fully) disable rfp; it appears that twitch only checks for a "bad" User-Agent, AKA the one rfp gives you. I reversed my User-Agent (for twitch only, probably a lot of ways to do this) back to its original value, and I can now login.
I was having the same problem, but I finally managed to log in to Twitch. First of all, I am using Firefox Nightly 115.0a1 (2023-06-03) (64-bit). And here are some changes I made in user.js:
user_pref("network.http.referer.XOriginPolicy", 0);
user_pref("privacy.resistFingerprinting", false);
user_pref("privacy.resistFingerprinting.letterboxing", false);
I don't know if these changes can result in any solution, but here I'm not having the problem anymore.
