mirror of
https://github.com/thorsten-gehrig/alexa-remote-control.git
synced 2025-01-09 16:20:03 +01:00
Added support for Multi-Factor Authentication
Optionally support Multi-Factor Authentication by allowing (SET_)MFA_SECRET to be configured to contain the Amazon MFA secret. Some general tidying up to make string literals consistent (single- quotes) and match whitespace because I'm fussy. ;-)
This commit is contained in:
parent
05a7bb8fcf
commit
81ec828170
@ -39,6 +39,7 @@
|
|||||||
# 2019-02-03: v0.11a fixed string escape for automation and speak commands
|
# 2019-02-03: v0.11a fixed string escape for automation and speak commands
|
||||||
# 2019-02-10: v0.12 added "-d ALL" to the plain version, lastalexa now checks for SUCCESS activityStatus
|
# 2019-02-10: v0.12 added "-d ALL" to the plain version, lastalexa now checks for SUCCESS activityStatus
|
||||||
# 2019-02-14: v0.12a reduced the number of replaced characters for TTS and automation
|
# 2019-02-14: v0.12a reduced the number of replaced characters for TTS and automation
|
||||||
|
# 2019-03-24: v0.13 added support for Multi-Factor Authentication
|
||||||
#
|
#
|
||||||
###
|
###
|
||||||
#
|
#
|
||||||
@ -46,14 +47,16 @@
|
|||||||
# - requires cURL for web communication
|
# - requires cURL for web communication
|
||||||
# - (GNU) sed and awk for extraction
|
# - (GNU) sed and awk for extraction
|
||||||
# - jq as command line JSON parser (optional for the fancy bits)
|
# - jq as command line JSON parser (optional for the fancy bits)
|
||||||
|
# - oathtool as OATH one-time password tool (optional for two-factor authentication)
|
||||||
#
|
#
|
||||||
##########################################
|
##########################################
|
||||||
|
|
||||||
SET_EMAIL='amazon_account@email.address'
|
SET_EMAIL='amazon_account@email.address'
|
||||||
SET_PASSWORD='Very_Secret_Amazon_Account_Password'
|
SET_PASSWORD='Very_Secret_Amazon_Account_Password'
|
||||||
|
#SET_MFA_SECRET='1234 5678 9ABC DEFG HIJK LMNO PQRS TUVW XYZ0 1234 5678 9ABC DEFG'
|
||||||
|
|
||||||
SET_LANGUAGE="de,en-US;q=0.7,en;q=0.3"
|
SET_LANGUAGE='de,en-US;q=0.7,en;q=0.3'
|
||||||
#SET_LANGUAGE="en-US"
|
#SET_LANGUAGE='en-US'
|
||||||
|
|
||||||
SET_TTS_LOCALE='de-DE'
|
SET_TTS_LOCALE='de-DE'
|
||||||
|
|
||||||
@ -87,6 +90,7 @@ SET_TMP="/tmp"
|
|||||||
# retrieving environment variables if any are set
|
# retrieving environment variables if any are set
|
||||||
EMAIL=${EMAIL:-$SET_EMAIL}
|
EMAIL=${EMAIL:-$SET_EMAIL}
|
||||||
PASSWORD=${PASSWORD:-$SET_PASSWORD}
|
PASSWORD=${PASSWORD:-$SET_PASSWORD}
|
||||||
|
MFA_SECRET=${MFA_SECRET:-$SET_MFA_SECRET}
|
||||||
AMAZON=${AMAZON:-$SET_AMAZON}
|
AMAZON=${AMAZON:-$SET_AMAZON}
|
||||||
ALEXA=${ALEXA:-$SET_ALEXA}
|
ALEXA=${ALEXA:-$SET_ALEXA}
|
||||||
LANGUAGE=${LANGUAGE:-$SET_LANGUAGE}
|
LANGUAGE=${LANGUAGE:-$SET_LANGUAGE}
|
||||||
@ -397,6 +401,14 @@ ${CURL} ${OPTS} -s -D "${TMP}/.alexa.header" -c ${COOKIE} -b ${COOKIE} -A "${BRO
|
|||||||
${CURL} ${OPTS} -s -c ${COOKIE} -b ${COOKIE} -A "${BROWSER}" -H "Accept-Language: ${LANGUAGE}" -H "DNT: 1" -H "Connection: keep-alive" -H "Upgrade-Insecure-Requests: 1" -L\
|
${CURL} ${OPTS} -s -c ${COOKIE} -b ${COOKIE} -A "${BROWSER}" -H "Accept-Language: ${LANGUAGE}" -H "DNT: 1" -H "Connection: keep-alive" -H "Upgrade-Insecure-Requests: 1" -L\
|
||||||
-H "$(grep 'Location: ' ${TMP}/.alexa.header | sed 's/Location: /Referer: /')" -d "@${TMP}/.alexa.postdata" https://www.${AMAZON}/ap/signin | grep "hidden" | sed 's/hidden/\n/g' | grep "value=\"" | sed -r 's/^.*name="([^"]+)".*value="([^"]+)".*/\1=\2\&/g' > "${TMP}/.alexa.postdata2"
|
-H "$(grep 'Location: ' ${TMP}/.alexa.header | sed 's/Location: /Referer: /')" -d "@${TMP}/.alexa.postdata" https://www.${AMAZON}/ap/signin | grep "hidden" | sed 's/hidden/\n/g' | grep "value=\"" | sed -r 's/^.*name="([^"]+)".*value="([^"]+)".*/\1=\2\&/g' > "${TMP}/.alexa.postdata2"
|
||||||
|
|
||||||
|
#
|
||||||
|
# add HOTP if using MFA
|
||||||
|
#
|
||||||
|
if [ ! -z "${MFA_SECRET}" ] ; then
|
||||||
|
OTP=$(oathtool --base32 --totp "${MFA_SECRET}")
|
||||||
|
PASSWORD="${PASSWORD}${OTP}"
|
||||||
|
fi
|
||||||
|
|
||||||
#
|
#
|
||||||
# login with filled out form
|
# login with filled out form
|
||||||
# !!! referer now contains session in URL
|
# !!! referer now contains session in URL
|
||||||
@ -411,6 +423,11 @@ if [ -z "$(grep 'Location: https://alexa.*html' ${TMP}/.alexa.header2)" ] ; then
|
|||||||
echo " make sure to have all Amazon related cookies deleted and Javascript disabled!"
|
echo " make sure to have all Amazon related cookies deleted and Javascript disabled!"
|
||||||
echo
|
echo
|
||||||
echo " (For more information have a look at ${TMP}/.alexa.login)"
|
echo " (For more information have a look at ${TMP}/.alexa.login)"
|
||||||
|
echo
|
||||||
|
echo " To avoid issues with captcha, try using Multi-Factor Authentication."
|
||||||
|
echo " To do so, first set up Two-Step Verification on your Amazon account, then"
|
||||||
|
echo " configure this script (or the environment) with your MFA secret."
|
||||||
|
echo " Support for Multi-Factor Authentication requires 'oathtool' to be installed."
|
||||||
|
|
||||||
rm -f ${COOKIE}
|
rm -f ${COOKIE}
|
||||||
rm -f "${TMP}/.alexa.header"
|
rm -f "${TMP}/.alexa.header"
|
||||||
@ -526,7 +543,7 @@ if [ -n "${SEQUENCECMD}" ]
|
|||||||
ALEXACMD="{\"behaviorId\":\"PREVIEW\",\"sequenceJson\":\"{\\\"@type\\\":\\\"com.amazon.alexa.behaviors.model.Sequence\\\",\\\"startNode\\\":{\\\"@type\\\":\\\"com.amazon.alexa.behaviors.model.OpaquePayloadOperationNode\\\",\\\"type\\\":\\\"${SEQUENCECMD}\\\",\\\"operationPayload\\\":{\\\"deviceType\\\":\\\"${DEVICETYPE}\\\",\\\"deviceSerialNumber\\\":\\\"${DEVICESERIALNUMBER}\\\",\\\"locale\\\":\\\"${TTS_LOCALE}\\\",\\\"customerId\\\":\\\"${MEDIAOWNERCUSTOMERID}\\\"${TTS}}}}\",\"status\":\"ENABLED\"}"
|
ALEXACMD="{\"behaviorId\":\"PREVIEW\",\"sequenceJson\":\"{\\\"@type\\\":\\\"com.amazon.alexa.behaviors.model.Sequence\\\",\\\"startNode\\\":{\\\"@type\\\":\\\"com.amazon.alexa.behaviors.model.OpaquePayloadOperationNode\\\",\\\"type\\\":\\\"${SEQUENCECMD}\\\",\\\"operationPayload\\\":{\\\"deviceType\\\":\\\"${DEVICETYPE}\\\",\\\"deviceSerialNumber\\\":\\\"${DEVICESERIALNUMBER}\\\",\\\"locale\\\":\\\"${TTS_LOCALE}\\\",\\\"customerId\\\":\\\"${MEDIAOWNERCUSTOMERID}\\\"${TTS}}}}\",\"status\":\"ENABLED\"}"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# Due to some weird shell-escape-behavior the command has t be written to a file before POSTing it
|
# Due to some weird shell-escape-behavior the command has to be written to a file before POSTing it
|
||||||
echo $ALEXACMD > "${TMP}/.alexa.cmd"
|
echo $ALEXACMD > "${TMP}/.alexa.cmd"
|
||||||
|
|
||||||
${CURL} ${OPTS} -s -b ${COOKIE} -A "${BROWSER}" -H "DNT: 1" -H "Connection: keep-alive" -L\
|
${CURL} ${OPTS} -s -b ${COOKIE} -A "${BROWSER}" -H "DNT: 1" -H "Connection: keep-alive" -L\
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
# Amazon Alexa Remote Control (PLAIN shell)
|
# Amazon Alexa Remote Control (PLAIN shell)
|
||||||
# alex(at)loetzimmer.de
|
# alex(at)loetzimmer.de
|
||||||
#
|
#
|
||||||
# 2019-02-14: v0.12a (for updates see http://blog.loetzimmer.de/2017/10/amazon-alexa-hort-auf-die-shell-echo.html)
|
# 2019-03-24: v0.13 (for updates see http://blog.loetzimmer.de/2017/10/amazon-alexa-hort-auf-die-shell-echo.html)
|
||||||
#
|
#
|
||||||
###
|
###
|
||||||
#
|
#
|
||||||
@ -13,12 +13,12 @@
|
|||||||
#
|
#
|
||||||
##########################################
|
##########################################
|
||||||
|
|
||||||
|
|
||||||
SET_EMAIL='amazon_account@email.address'
|
SET_EMAIL='amazon_account@email.address'
|
||||||
SET_PASSWORD='Very_Secret_Amazon_Account_Password'
|
SET_PASSWORD='Very_Secret_Amazon_Account_Password'
|
||||||
|
#SET_MFA_SECRET='1234 5678 9ABC DEFG HIJK LMNO PQRS TUVW XYZ0 1234 5678 9ABC DEFG'
|
||||||
|
|
||||||
SET_LANGUAGE="de,en-US;q=0.7,en;q=0.3"
|
SET_LANGUAGE='de,en-US;q=0.7,en;q=0.3'
|
||||||
#SET_LANGUAGE="en-US"
|
#SET_LANGUAGE='en-US'
|
||||||
|
|
||||||
SET_TTS_LOCALE='de-DE'
|
SET_TTS_LOCALE='de-DE'
|
||||||
|
|
||||||
@ -52,6 +52,7 @@ SET_TMP="/tmp"
|
|||||||
# retrieving environment variables if any are set
|
# retrieving environment variables if any are set
|
||||||
EMAIL=${EMAIL:-$SET_EMAIL}
|
EMAIL=${EMAIL:-$SET_EMAIL}
|
||||||
PASSWORD=${PASSWORD:-$SET_PASSWORD}
|
PASSWORD=${PASSWORD:-$SET_PASSWORD}
|
||||||
|
MFA_SECRET=${MFA_SECRET:-$SET_MFA_SECRET}
|
||||||
AMAZON=${AMAZON:-$SET_AMAZON}
|
AMAZON=${AMAZON:-$SET_AMAZON}
|
||||||
ALEXA=${ALEXA:-$SET_ALEXA}
|
ALEXA=${ALEXA:-$SET_ALEXA}
|
||||||
LANGUAGE=${LANGUAGE:-$SET_LANGUAGE}
|
LANGUAGE=${LANGUAGE:-$SET_LANGUAGE}
|
||||||
@ -343,6 +344,14 @@ ${CURL} ${OPTS} -s -D "${TMP}/.alexa.header" -c ${COOKIE} -b ${COOKIE} -A "${BRO
|
|||||||
${CURL} ${OPTS} -s -c ${COOKIE} -b ${COOKIE} -A "${BROWSER}" -H "Accept-Language: ${LANGUAGE}" -H "DNT: 1" -H "Connection: keep-alive" -H "Upgrade-Insecure-Requests: 1" -L\
|
${CURL} ${OPTS} -s -c ${COOKIE} -b ${COOKIE} -A "${BROWSER}" -H "Accept-Language: ${LANGUAGE}" -H "DNT: 1" -H "Connection: keep-alive" -H "Upgrade-Insecure-Requests: 1" -L\
|
||||||
-H "$(grep 'Location: ' ${TMP}/.alexa.header | sed 's/Location: /Referer: /')" -d "@${TMP}/.alexa.postdata" https://www.${AMAZON}/ap/signin | grep "hidden" | sed 's/hidden/\n/g' | grep "value=\"" | sed -r 's/^.*name="([^"]+)".*value="([^"]+)".*/\1=\2\&/g' > "${TMP}/.alexa.postdata2"
|
-H "$(grep 'Location: ' ${TMP}/.alexa.header | sed 's/Location: /Referer: /')" -d "@${TMP}/.alexa.postdata" https://www.${AMAZON}/ap/signin | grep "hidden" | sed 's/hidden/\n/g' | grep "value=\"" | sed -r 's/^.*name="([^"]+)".*value="([^"]+)".*/\1=\2\&/g' > "${TMP}/.alexa.postdata2"
|
||||||
|
|
||||||
|
#
|
||||||
|
# add HOTP if using MFA
|
||||||
|
#
|
||||||
|
if [ ! -z "${MFA_SECRET}" ] ; then
|
||||||
|
OTP=$(oathtool --base32 --totp "${MFA_SECRET}")
|
||||||
|
PASSWORD="${PASSWORD}${OTP}"
|
||||||
|
fi
|
||||||
|
|
||||||
#
|
#
|
||||||
# login with filled out form
|
# login with filled out form
|
||||||
# !!! referer now contains session in URL
|
# !!! referer now contains session in URL
|
||||||
@ -357,6 +366,11 @@ if [ -z "$(grep 'Location: https://alexa.*html' ${TMP}/.alexa.header2)" ] ; then
|
|||||||
echo " make sure to have all Amazon related cookies deleted and Javascript disabled!"
|
echo " make sure to have all Amazon related cookies deleted and Javascript disabled!"
|
||||||
echo
|
echo
|
||||||
echo " (For more information have a look at ${TMP}/.alexa.login)"
|
echo " (For more information have a look at ${TMP}/.alexa.login)"
|
||||||
|
echo
|
||||||
|
echo " To avoid issues with captcha, try using Multi-Factor Authentication."
|
||||||
|
echo " To do so, first set up Two-Step Verification on your Amazon account, then"
|
||||||
|
echo " configure this script (or the environment) with your MFA secret."
|
||||||
|
echo " Support for Multi-Factor Authentication requires 'oathtool' to be installed."
|
||||||
|
|
||||||
rm -f ${COOKIE}
|
rm -f ${COOKIE}
|
||||||
rm -f "${TMP}/.alexa.header"
|
rm -f "${TMP}/.alexa.header"
|
||||||
@ -531,7 +545,7 @@ if [ -n "${SEQUENCECMD}" ]
|
|||||||
then
|
then
|
||||||
ALEXACMD="{\"behaviorId\":\"PREVIEW\",\"sequenceJson\":\"{\\\"@type\\\":\\\"com.amazon.alexa.behaviors.model.Sequence\\\",\\\"startNode\\\":{\\\"@type\\\":\\\"com.amazon.alexa.behaviors.model.OpaquePayloadOperationNode\\\",\\\"type\\\":\\\"${SEQUENCECMD}\\\",\\\"operationPayload\\\":{\\\"deviceType\\\":\\\"${DEVICETYPE}\\\",\\\"deviceSerialNumber\\\":\\\"${DEVICESERIALNUMBER}\\\",\\\"locale\\\":\\\"${TTS_LOCALE}\\\",\\\"customerId\\\":\\\"${MEDIAOWNERCUSTOMERID}\\\"${TTS}}}}\",\"status\":\"ENABLED\"}"
|
ALEXACMD="{\"behaviorId\":\"PREVIEW\",\"sequenceJson\":\"{\\\"@type\\\":\\\"com.amazon.alexa.behaviors.model.Sequence\\\",\\\"startNode\\\":{\\\"@type\\\":\\\"com.amazon.alexa.behaviors.model.OpaquePayloadOperationNode\\\",\\\"type\\\":\\\"${SEQUENCECMD}\\\",\\\"operationPayload\\\":{\\\"deviceType\\\":\\\"${DEVICETYPE}\\\",\\\"deviceSerialNumber\\\":\\\"${DEVICESERIALNUMBER}\\\",\\\"locale\\\":\\\"${TTS_LOCALE}\\\",\\\"customerId\\\":\\\"${MEDIAOWNERCUSTOMERID}\\\"${TTS}}}}\",\"status\":\"ENABLED\"}"
|
||||||
|
|
||||||
# Due to some weird shell-escape-behavior the command has t be written to a file before POSTing it
|
# Due to some weird shell-escape-behavior the command has to be written to a file before POSTing it
|
||||||
echo $ALEXACMD > "${TMP}/.alexa.cmd"
|
echo $ALEXACMD > "${TMP}/.alexa.cmd"
|
||||||
|
|
||||||
${CURL} ${OPTS} -s -b ${COOKIE} -A "${BROWSER}" -H "DNT: 1" -H "Connection: keep-alive" -L\
|
${CURL} ${OPTS} -s -b ${COOKIE} -A "${BROWSER}" -H "DNT: 1" -H "Connection: keep-alive" -L\
|
||||||
|
Loading…
Reference in New Issue
Block a user