yahooquery
yahooquery copied to clipboard
dpguthrie
API calls returning 'Invalid Cookie'
Describe the bug API calls returning 'Invalid Cookie'
To Reproduce
from yahooquery import Ticker aapl = Ticker('aapl') x = aapl.price print(x) {'aapl': 'Invalid Cookie'}
Desktop (please complete the following information):
- OS: Linux
- Browser: None
- Version 2.3.1
I can confirm I have the same issue (macOS 13.4.1, Python 3.9.10 and yahooquery 2.3.1).
Looks about the same with me as well. Didn't have this issue yesterday. Also made sure that yahooquery is up-to-date (2.3.1).
Same here too. Yesterday it was fine. However, the day before yesterday, yahooquery was very unstable. Sometimes it returned correct results, sometimes no attributes were returned. The whole yahoo service is becoming unreliable. Any suggestions?
same, here's the smallest code I have to reproduce
#! /usr/bin/python3
import json
from yahooquery import Ticker
tickers = Ticker(["JD.L","TSLA"])
print(json.dumps(tickers.price,indent=3))
this outputs
{
"JD.L": "Invalid Cookie",
"TSLA": "Invalid Cookie"
}
Seemed ok till about 8pm UTC
Looks like it's back, at least using the examples from above. Curious if you're all seeing that now? Pretty disconcerting though nonetheless as it appears they're most likely phasing these APIs out for requests without proper cookies set by the browser. I could come up with a workaround but it would most likely require selenium, which is less than ideal.
Still not working for me either. I have a long list of queries on various stocks and it returns the "invalid cookie" message to the very first one.
Hello. I just tried to connect and I also get the error "Invalid Cookie" . I have linux 6.1, python 3.11.3 and yahooquery 2.3.1. I think it is a general bug in yahoo service. I await further news. I really appreciate your project and dedication.
python 3.7, yahooquery 2.3.1, no browser, windows 11 here. Location: Greece.
Given code works for @dpguthrie, I think it will be helpful if everyone adds their location to their report. Maybe Yahoo is slowly rolling out across globe. Just edit your post, don't spam the thread.
Me: UK, Invalid Cookie, Linux & everything up-to-date
Same issue since yesterday (but yesterday only 10% of the requests failed) python 3.9.2, linux, python 3.10.6, macOS, yahooquery 2.3.1, Location: Germany.
Still not working for me too - as before 100% failure since about 8pm yesterday Python 3.11.3, yq v2.3.1, Alpine Linux v3.18.0, UK
{
"JD.L": "Invalid Cookie",
"TSLA": "Invalid Cookie"
}
same for me
Python 3.9.16 - location austria
{
"JD.L": "Invalid Cookie",
"TSLA": "Invalid Cookie"
}
I use my account cookie already for requesting other depot data calling yahoo api directly - could I use it for the calls for yahooquery as well
as prev mentioned a selenium impl might not be ideal and a bit of an overkill - I read the cookie out of firefox db and just log in from time to time - its valid for a good number of days
same for me Python 3.9.0, yq v2.3.1, location Indonesia
{'aapl': 'Invalid Cookie'}
Ya, I'm not super stoked on adding selenium either - if anyone has a better idea for getting the appropriate cookies, I'm all ears. I do think that the library itself should be responsible for setting up the request in a way that makes valid requests, which means obtaining cookies and a crumb without intervention from the user. I guess it could certainly be another argument to the Ticker initialization but I'm less enthused about that (but definitely open to the idea if others think it's valuable).
The alternative that I mentioned above is using selenium. I put together a short loom video on what that might look like (it adds a little less than 5 seconds to the Ticker initialization, which isn't terrible). You can see that after I've obtained both cookies and a crumb, I'm now able to hit the quotes endpoint, which is something they recently made unavailable to requests without cookies and/or crumb.
Also, I think using the webdriver-manager package abstracts away the requirement of a user having to download chromedriver themselves, which makes it a little bit easier to stomach.
@kajdo So cookie could be cached, but what about the crumb?
@ValueRaider I messed around with crumb for the api calls ... also with the cookie itself which i see in the dev console in ff / brave
the call i make is basically against "/v7/finance/desktop/portfolio?formatted=true" and i ended up using just header
- authority
- user-agent
- accept
- sec-gpc
- origin
- sec-fetch-site
- sec-fetch-mode
- sec-fetch-dest
- referer
- accept-language
- COOKIE
urlparams:
- lang
- region
- userId
- pfIds
- fields
- corsDomains
to call the /portfolio endpoint it seems to be fine without crumb
@dpguthrie i do agree that its much better if the library handles it .... to reduce the +5sec the lib could cache/persist it in a .env file and load it via dotenv (https://pypi.org/project/python-dotenv/) or something like that .... so it only gets a new token with the browser-simulation if really needed ...... as mentioned the cookie is valid for days - not sure how long but for my script, i think i have to change it once every 2 weeks max
don't really have a better suggestion .... messed around a bit, but ended up reading it out from ff cookie db because i'm online on yahoo finance anyway often enough to not redo the tocken manually
Me since today 13th July: UK, Invalid Cookie, Python 3.8, Mac OS Mohave 10.14.6, yfinance version: 0.2.22, yahooquery version: 2.3.0
It appears that the Yahooquery library attempts to access the Yahoo Finance API using authentication cookies. However, Yahoo Finance has made changes to its API, and it's possible that the authentication cookies are no longer valid or need to be updated.
We are still in the dark it seems. Sorry I don't have the necessary skills to contribute to the discussion, but I sincerely hope that we will soon have a practical solution accompanied by a comprehensive explanation and we can return to our trading habits. I wish to thank Doug in advance for his superb work and his commitment to yahooquery.
just encountered this issue. utc+8.
From yfinance repo, users are also discussing this issue. Some said that "A1 and the crumb URL parameter" are needed at least for the call. I don't know how to get the crumb and cookie through python without additional libraries or tools. I would be really appreciate if anyone could give me some hints.
ps. I notice the 'https://dpguthrie-yahooquery-streamlit-app-eydpjo.streamlit.app/' website still works. I am not sure how can it still work if it is using yahooquery's api? Would anyone mind giving me some hints?
I think selenium is the right choice to adopt since yahoo is making it harder and harder for programmatic crawling. Finally, we will reach a point where crawling with a fake browser is the only choice.
Thanks a lot for the work!
**the request response now changed from 401 to 404. Also, the 'https://dpguthrie-yahooquery-streamlit-app-eydpjo.streamlit.app/' website starts getting 'invalid cookies' respond now.
If they are rolling out the breaking change regionally, it hit EST / UTC-5 sometime between ~18:00 and ~21:00 UTC-5
I was manually running a job which I halted at 17:40 UTC-5 - upon just resuming to finish the job at 21:00 UTC-5 I now encounter this error.
import yahooquery
tub=yahooquery.Ticker("TUB.MC")
historial = tub.history(period="1d")
print (historial)
open high low close volume adjclose
symbol date
TUB.MC 2023-07-14 11:27:47+02:00 2.89 2.94 2.89 2.93 21885 2.93
tub.price
{'TUB.MC': 'Invalid Cookie'}
If you ask history it works perfectly!! But if you ask for price "Invalid Cookie".
I think this is a very unstable way of getting data. After the try is triggered, you can add the code of yfinance to the exception, so that the data can still be obtained when the exception occurs. This may require code changes, but will not delay daily backtesting.
@dpguthrie maybe a crazy idea - but what if we could make the login process work with mechanize (https://mechanize.readthedocs.io/en/latest/) ... the benefit would be that no seperate browser is needed and it would run on a vps without desktop environment as well
something like:
import mechanize
# Create a browser instance
browser = mechanize.Browser()
# Open the login URL
login_url = 'https://login.yahoo.com/?done=https%3A%2F%2Fwww.yahoo.com%2F&add=1'
response = browser.open(login_url)
# Read the HTML response and decode it as a string
html = response.read().decode('utf-8')
# Find the login form with id="login-username-form"
forms = [form for form in browser.forms() if form.attrs.get('id') == 'login-username-form']
if forms:
# Select the first form found
form = forms[0]
# Find the username input field
username_field = form.find_control('username')
if username_field:
# Assign the value to the username input field
username_field.value = 'USERNAME'
# Find the submit button and directly submit the form
submit_button = form.find_control(id='login-signin', type='submit')
if submit_button:
browser.form = form # Set the form explicitly
try:
browser.submit()
# Print the current URL after submitting the form
print("Current URL:", browser.geturl())
except mechanize.HTTPError as e:
print(f"Failed to submit the form: {e.code} {e.msg}")
except mechanize.URLError as e:
print(f"Failed to submit the form: {e.reason}")
else:
print("The submit button was not found in the form.")
else:
print("The username input field was not found in the form.")
else:
print("The form with id='login-username-form' was not found in the HTML.")
# Close the browser
browser.close()
just as an example ... it still ends up in Failed to submit the form: 403 b'request disallowed by robots.txt', but i guess i'd need to add more parameters to the form to make it work correct