-
Notifications
You must be signed in to change notification settings - Fork 191
app_ids:add does not seem to work #179
Comments
I'm seeing this too. And the --trace is here: /Library/Ruby/Gems/2.0.0/gems/mechanize-2.5.1/lib/mechanize/http/agent.rb:304:in |
I am getting the same error |
So I've been messing around with this this evening, and I noticed a few things that are odd.
Still investigating. |
Thanks for looking into this. My webdev/Ruby is too weak to help :) |
So I've finally figured out the weird patterns that this gem has and was able to tracedown and stub out the proper steps. Unfortunately I don't see what's wrong with my code, so I'm not doing a PR for it. Anyone's willing to chime in... Note that our fork has other resources in it. |
So I've actually encountered what I think is the core problem, which is the inclusion of CSRF headers in the final JSON ajax form submission. Not all of their forms have it (creating certificates don't) but I believe adding app_ids and creating provisioning profiles both do. I'm investigating a way to overcome this now, as it's not designed to protect against XSS (no captchas) so I should be able to overcome it. |
See sparklemotion/mechanize#408 for some more details and discussion. |
Good news, this is finally fixed. I was missing the CSRF technique that Apple implemented (not XSS, so I think we're still in the clear). I'll submit a PR after I work out a cleaner pattern, return some proper ID codes (instead of just assuming it works) and automate the last few things that are interactive (team selection, ew.) |
Here's a link to a fix incase anyone needs it before next week (or if I spontaneously combust) - https://github.com/QueueSoftwareInc/cupertino/commit/8edb126f75217e798ae3f401e05463da607275fa |
Hmmm. @toobulkeh did you spontaneously combust? :) I may try your fork if this is fixed over there |
Oops! Sorry about that @RocketPop -- I did a PR for our fork which works: #185 You might also want to check out this suite of tools, I haven't personally tried it, but it looks promising: |
I'm getting an error when I try to use app_ids:add Name=SomeName
421 => for https://developer.apple.com/services-account/XXXXXX/account/ios/identifiers/addAppId.action?content-type=application/x-www-form-urlencoded&accept=application/json&requestId=XXXXXXXXXXX-XXXX-XXXX-XXXX-XXXXXX&userLocale=en_US&teamId=XXXXXXXXX -- unhandled response. Use --trace to view backtrace
The text was updated successfully, but these errors were encountered: