Wrong manual for session token

[warnspread]

Hey there,

after accessing https://account.battle.net/login/en/?ref=localhost and logging in, the URL got some token like in the manual "ST=XX-...` (e.g., 'US-abc...')" but this one was not working: "Error during attach process: HTTP error 401 from https://oauth.battle.net/oauth/sso. Server Response: {"error":"invalid_token","error_description":"Invalid SSO token."}"

I added the Cookie Editor Addon to the Browser (enabled it for private windows), did it again and got the "BA-tassadar" named cookie, there was a different value with the same format but different numbers. This one was working.

I don't know if there probably was some change, but in case this is true, you might need to adjust the manual. In any case for the people looking for the issue they hopefully find the solution here :)

[Nighthawk42]

I refactored the project and incorporated the API changes over on the dev branch. After a few weeks of nobody having issues with it I'll push it out to the main branch.

Give it a try. https://github.com/Nighthawk42/bnet_auth_tool/blob/dev/bnet_auth_tool.py

You'll have to run the .py script directly with python bnet_auth_tool.py from your command line or terminal.

Thanks for letting me know!

[EKE00372]

Give it a try. https://github.com/Nighthawk42/bnet_auth_tool/blob/dev/bnet_auth_tool.py

It works fine, thanks.

[EKE00372]

I restore again today and get error 401, seems Blizzard update again......

Warning: HTTP 401 https://oauth.battle.net/oauth/sso: 401 Client Error: for url: https://oauth.battle.net/oauth/sso. Server: {"error": "invalid_token", "error_description": "Invalid SSO token."} Warning: HTTP 401 https://us.oauth.battle.net/oauth/sso: 401 Client Error: for url: https://us.oauth.battle.net/oauth/sso. Server: {"error": "invalid_token", "error_description": "Invalid SSO token."} Warning: HTTP 401 https://eu.oauth.battle.net/oauth/sso: 401 Client Error: for url: https://eu.oauth.battle.net/oauth/sso. Server: {"error": "invalid_token", "error_description": "Invalid SSO token."}

[Nighthawk42]

I restore again today and get error 401, seems Blizzard update again......

Warning: HTTP 401 https://oauth.battle.net/oauth/sso: 401 Client Error: for url: https://oauth.battle.net/oauth/sso. Server: {"error": "invalid_token", "error_description": "Invalid SSO token."} Warning: HTTP 401 https://us.oauth.battle.net/oauth/sso: 401 Client Error: for url: https://us.oauth.battle.net/oauth/sso. Server: {"error": "invalid_token", "error_description": "Invalid SSO token."} Warning: HTTP 401 https://eu.oauth.battle.net/oauth/sso: 401 Client Error: for url: https://eu.oauth.battle.net/oauth/sso. Server: {"error": "invalid_token", "error_description": "Invalid SSO token."}

Thanks for letting me know. I'll take a look again when I have time. No ETA at the moment.

[Thaldan]

Hello, when I try too use it with the 1.4.0 version of the script, for "Retrieve existing device secret" I follow all the instruction and I've got this error

Requesting Bearer Token (SSO fallback)...
Bearer Token obtained.
Retrieving device secret for EUxxxxxxxxxxxx (API fallback)...
Warning: HTTP 400 https://authenticator-rest-api.bnet-identity.blizzard.net/v1/authenticator/device: 400 Client Error:  for url: https://authenticator-rest-api.bnet-identity.blizzard.net/v1/authenticator/device. Server: {"errorCode": "BLZBNTARA10000102", "message": "Failed to attach authenticator; invalid restore code."}
Warning: Network error https://us.authenticator-rest-api.bnet-identity.blizzard.net/v1/authenticator/device: HTTPSConnectionPool(host='us.authenticator-rest-api.bnet-identity.blizzard.net', port=443): Max retries exceeded with url: /v1/authenticator/device (Caused by NameResolutionError("<urllib3.connection.HTTPSConnection object at 0x0000028C71004050>: Failed to resolve 'us.authenticator-rest-api.bnet-identity.blizzard.net' ([Errno 11001] getaddrinfo failed)"))
Warning: Network error https://eu.authenticator-rest-api.bnet-identity.blizzard.net/v1/authenticator/device: HTTPSConnectionPool(host='eu.authenticator-rest-api.bnet-identity.blizzard.net', port=443): Max retries exceeded with url: /v1/authenticator/device (Caused by NameResolutionError("<urllib3.connection.HTTPSConnection object at 0x0000028C6FE7F9D0>: Failed to resolve 'eu.authenticator-rest-api.bnet-identity.blizzard.net' ([Errno 11001] getaddrinfo failed)"))

Retrieve error: Network error https://eu.authenticator-rest-api.bnet-identity.blizzard.net/v1/authenticator/device: HTTPSConnectionPool(host='eu.authenticator-rest-api.bnet-identity.blizzard.net', port=443): Max retries exceeded with url: /v1/authenticator/device (Caused by NameResolutionError("<urllib3.connection.HTTPSConnection object at 0x0000028C6FE7F9D0>: Failed to resolve 'eu.authenticator-rest-api.bnet-identity.blizzard.net' ([Errno 11001] getaddrinfo failed)"))

Can you think you can solve this one day or have I to make me a reason and abandoning bitwarden for blizzard TOTP?

Anyway thx for your work and time for this thing

Take care :)

[Nighthawk42]

Hello, when I try too use it with the 1.4.0 version of the script, for "Retrieve existing device secret" I follow all the instruction and I've got this error

Requesting Bearer Token (SSO fallback)...
Bearer Token obtained.
Retrieving device secret for EUxxxxxxxxxxxx (API fallback)...
Warning: HTTP 400 https://authenticator-rest-api.bnet-identity.blizzard.net/v1/authenticator/device: 400 Client Error:  for url: https://authenticator-rest-api.bnet-identity.blizzard.net/v1/authenticator/device. Server: {"errorCode": "BLZBNTARA10000102", "message": "Failed to attach authenticator; invalid restore code."}
Warning: Network error https://us.authenticator-rest-api.bnet-identity.blizzard.net/v1/authenticator/device: HTTPSConnectionPool(host='us.authenticator-rest-api.bnet-identity.blizzard.net', port=443): Max retries exceeded with url: /v1/authenticator/device (Caused by NameResolutionError("<urllib3.connection.HTTPSConnection object at 0x0000028C71004050>: Failed to resolve 'us.authenticator-rest-api.bnet-identity.blizzard.net' ([Errno 11001] getaddrinfo failed)"))
Warning: Network error https://eu.authenticator-rest-api.bnet-identity.blizzard.net/v1/authenticator/device: HTTPSConnectionPool(host='eu.authenticator-rest-api.bnet-identity.blizzard.net', port=443): Max retries exceeded with url: /v1/authenticator/device (Caused by NameResolutionError("<urllib3.connection.HTTPSConnection object at 0x0000028C6FE7F9D0>: Failed to resolve 'eu.authenticator-rest-api.bnet-identity.blizzard.net' ([Errno 11001] getaddrinfo failed)"))

Retrieve error: Network error https://eu.authenticator-rest-api.bnet-identity.blizzard.net/v1/authenticator/device: HTTPSConnectionPool(host='eu.authenticator-rest-api.bnet-identity.blizzard.net', port=443): Max retries exceeded with url: /v1/authenticator/device (Caused by NameResolutionError("<urllib3.connection.HTTPSConnection object at 0x0000028C6FE7F9D0>: Failed to resolve 'eu.authenticator-rest-api.bnet-identity.blizzard.net' ([Errno 11001] getaddrinfo failed)"))

Can you think you can solve this one day or have I to make me a reason and abandoning bitwarden for blizzard TOTP?

Anyway thx for your work and time for this thing

Take care :)

Sorry, but Blizard seems to have changed their endpoints and I have no way to divining them. Sadly, this project is likely to stall unless someone else who has more knowledge then me can deduce the new addresses. This was built off the previous works of other projects such as python-bna.

With that said, if you have an authenticator attached to a service like BitWarden, etc. it'll still work. But you ought to secure your keys safely, otherwise expect to have to call Blizzard CS to remove it if at some time they remove the option for physical authenticators as most of them are now at their dying age.

I'll look around a little, but I give no promises of an update.