- Jun 01, 2023
-
-
We looked for a value written in french in a JSON response to add or not the actual device as trusted. The value is now in english. Also added an empty POST on a URL at the end of the login process to validate login.
-
- May 02, 2023
-
-
OTP handling can still be needed for esalia. This OTP method was using finalizing_login method which was removed when OTP handling wasn't useful anymore. Also simplified it to be closer to what the website does now. Plus, explained what a specific request after logging was doing.
-
For a moment, we did not need to register our device. It seems now that it's back for esalia. We can still login through erehsbc without having to register any device.
-
- Mar 28, 2023
-
-
esalia will inherit of erehsbc because login are shared
-
It seems like we are now whitelisted and the fingerprints process is outdated for our usage if we try to do it, it lead us to a 403.
-
- Mar 13, 2023
-
-
- Mar 04, 2023
-
-
'goto' is now found in a param and not in a fragment anymore.
-
- Aug 08, 2022
-
- Jul 07, 2022
-
- May 11, 2022
-
-
- May 05, 2022
-
-
S2E children have all the exact same login except erehsbc which has now a whole new login. The login is a javascript app so we need to mimic the website as close as we can by encrypting the password and doing many posts on the same URL to get different JSON callback responses. There's an OTP because the website asks for the user to enter the code he has received by email if the device connecting to the account is not a trusted one. Everything after the login is left untouched.
-
- Apr 04, 2021
-
-
- Mar 16, 2019
-
-
Romain Bignon authored
All copyright holders have given their consent.
-
- Feb 24, 2019
-
-
Romain Bignon authored
-
- Mar 11, 2017
-
-
-
Romain Bignon authored
-