Updates and maintenance

Question

Updates and maintenance

AparaV opened this issue 7 years ago · comments

Apara Venkat commented 7 years ago

Hey,

Are you still actively maintaining (and updating) the API and accepting pull requests with new features?

~Apara (fellow CU student)

Ben Williams · Answer 1 · Wed Mar 15 2017 04:16:14 GMT+0800 (China Standard Time)

Hi Apara, I haven't updated the API in about two years.I am always willing to take new pull requests and/or features! Let me know if you have any questions!

Apara Venkat · Answer 2 · Wed Mar 15 2017 06:27:17 GMT+0800 (China Standard Time)

Awesome! I think I have an idea for a new feature. I'll let you know if it goes well with a pull request!

Ben Williams · Answer 3 · Wed Mar 15 2017 06:40:19 GMT+0800 (China Standard Time)

Awesome! Feel free to submit any other changes too, it's an old project and definitely needs some cleaning up!

Apara Venkat · Answer 4 · Mon Mar 20 2017 05:33:37 GMT+0800 (China Standard Time)

I think how the authentication system works has changed a lot in the last 2 years.

For starters, the original 'http://mycuinfo.colorado.edu' has been set up to automatically redirect to the new link. So I edited that part.
Even after editing that (and the payload keys), I cannot get past the login page. I am redirected to a Stale Request page that says something like this:

<p>
You may be seeing this page because you used the Back button while browsing a secure web site or application.
Alternatively, you may have mistakenly bookmarked the web login form instead of the actual web site you wanted to bookmark or used a link created by somebody else who made the same mistake.
</p> <br/>
<p>
Left unchecked, this can cause errors on some browsers or result in you returning to the web site you tried to leave, so this page is presented instead.
</p>

Am I doing something wrong? (or is this hopeless and that's why you stopped updating it? 😞)

Ben Williams · Answer 5 · Mon Mar 20 2017 07:52:27 GMT+0800 (China Standard Time)

Hi Apara,

The authentication probably does not work due to the updates that the University made in the work to unify the IdentiKey login flow across all their sites. However, things are definitely not hopeless (I just stopped working on the project I originally made this for). I probably should have explain this somewhere in the README, but I'll do it here and copy it over later if it still applies to the new system. The basic login flow for mycuinfo.colorado.edu goes through a few steps (pretty sure it's about the same login flow from the error you are getting).

The mycuinfo system is designed so that bots cannot use it. The mycuinfo.colorado.edu is only a redirect for users of the system, it was also this way two years ago, so you have to hit that url first in order to start the login process. After a user hits the mycuinfo.colorado.edu domain, the system registers them with a session token. You are missing a session token (I think it's cookies and POST data, but don't remember) and is the reason you are getting the Stale Request page. The way the system gives you a session token is through multiple javascript redirects. However, the University also supports non-javascript client, which makes things way easier (only for login, the majority of the site when you login doesn't work without javascript). In order to figure out the new login flow, our program needs to step through each step of the login flow like a "real" client would. If at any point you get the error above (or anything like it), you didn't do something a real client would do. So once we figure out the login flow, it's pretty easy to get logged in.

I don't currently have the bandwidth to look into the new system now, but happy to answer any questions you might have about the old one. I should also be able to look into more next week!

Apara Venkat · Answer 6 · Mon Mar 20 2017 09:04:27 GMT+0800 (China Standard Time)

Thanks for the quick reply Ben!

I also noticed something now, after you mentioned the javascript redirects. After disabling javascript in my browser, I couldn't reach the final login page for myCUinfo. Perhaps they made it mandatory to have javascript enabled to login?

This is my first time using requests (properly), so I'm still learning along the way.

Thanks for your help with the new system. In the meantime, I'll also try figuring out the new login flow. I'll let you know if I find something/have any questions

Ben Williams · Answer 7 · Fri May 19 2017 05:34:37 GMT+0800 (China Standard Time)

Hi @AparaV,

I was able to get the login flow working but definatly looking for some help with fixing all the date functions like .books() and .classes() if you want to help out. #6

Apara Venkat · Answer 8 · Fri May 19 2017 10:52:49 GMT+0800 (China Standard Time)

Hey @719ben

Thanks! I'm able to successfully login now!
But, I noticed that the code breaks in the .classes() function. I'd love to help you fix the outdated code!

PR with fixed .classes() coming soon!

Ben Williams · Answer 9 · Fri May 19 2017 11:13:12 GMT+0800 (China Standard Time)

@AparaV I would take a look at #7 also before writing

Apara Venkat · Answer 10 · Fri May 19 2017 11:30:31 GMT+0800 (China Standard Time)

@719ben Thanks for the heads up! I'm modifying a different part of the code (the function .classes()). So, there shouldn't be any conflicts
Tagging @KyleRosenberg to make sure he is aware of this.

Kyle · Answer 11 · Fri May 19 2017 11:41:21 GMT+0800 (China Standard Time)

@AparaV I have already submitted commits for .classes() and .books()

Apara Venkat · Answer 12 · Fri May 19 2017 11:51:08 GMT+0800 (China Standard Time)

@KyleRosenberg oops! Must have missed those commits when I first read it. Sorry about that!