personalcapital icon indicating copy to clipboard operation
personalcapital copied to clipboard

Published 20 hours ago verified publisher icon haochi

Bugfixes to handle changes to Personal Capital CSRF token parsing

Open hammem opened this issue 2 years ago • 5 comments

Fixes to get login working again for this API.

  • updated regex parsing of the CSRF token
  • change the user-agent header to get through Cloudflare filtering
  • raise useful exceptions to aid in future debugging
  • set device name to Personal Capital Python API, to make identifying session in the account easier

hammem avatar Jul 03 '22 20:07 hammem

@haochi , are you able to review this PR? PersonalCapital made some slight changes to how they store the CSRF token that prevents the API currently in master from functioning.

hammem avatar Jul 20 '22 18:07 hammem

@hammem Did you ever run into an authenticate_password error: "Authorization required."? Not exactly sure what to do with it. I don't have 2FA. On __identify_user() I am getting back a "USER_IDENTIFIED" auth_level, not a "USER_REMEMBERED". Wondering if there's a simple explanation. Ty!

deanjgoldman avatar Oct 10 '22 13:10 deanjgoldman

just wanted to add feedback about how this branch resolved my issues. I had to go reset my password to get my account unlocked before it would work.

Dabnsky avatar Nov 18 '22 00:11 Dabnsky

@deanjgoldman @hammem I'm having the same issue with auth_level = USER_IDENTIFIED instead of USER_REMEMBERED, any ideas?

mjm2z avatar Nov 23 '22 00:11 mjm2z

The lib was broken the last 1-2 weeks for me. This branch fixed it.

I'm wondering what will happen when/if "empower" full takes over the domain and page. The domain is still personalcapital for now.

konecnyna avatar Mar 06 '23 15:03 konecnyna