4049_1572836826

1st GET reuquest : https://store.steampowered.com/api/addtocart/?packageids=281301,132236,306952,316818,74002,63210
2nd GET request : https://store.steampowered.com/cart

Ta Da u have cart with this games on all sessions.

I'll leave the checkout up to you.

U can set cookie jar for reqest or extract from steamstore and GET request on https://store.steampowered.com/api/addtocart/
And another steps u must reverse yourself cuz its against TOS I think

This code up add games to cart in bulk, and from now on they will be visible between devices.
https://store.steampowered.com/news/collection/steam/?emclan=103582791457287600&emgid=4149575031731807335
News: One cart across all devices

Enjoy 

query params for api get request : packageids with numbers, coma divided

I found this : https://github.com/ost056/SteamAuthTool

Yes its : LoginApprover thats one ❤️ Thanks I see on documentation

yes I know about this one, but I need to flip the logic  scan QR code with node.js or auth code from qr. e.g. scan steam browser QR with node.js.

Hey, its possible auth QR session by scanning ? with some of this modules ? Like u are logged in steam-user modul and idk function scann QR and auth QR session 😅 Thanks.

v. 2.3.0

 I don't know, I temporarily replaced the function, with request post (last image) and this is works. 

Hey, I also tried adding a free license through the steam store but it keeps returning me an error  Malformed response

steamStore.steamID contains the correct ID

subId get from working (200) request, response is empty

Any Help ?

Im try "manual" request : and this working 

Mail guard is activated after the first steam-user / steam app logOn, this refresh_token is only for web uses.

Loggin to steam-user with this WebBrowser type refreshtoken.

and is there any way to use it with steam-user ?

with steam community it works but I need use it with steam-user 

steamcommunity solutions : 
 

  const session = new LoginSession(EAuthTokenPlatformType.WebBrowser)

  session.refreshToken = refreshToken

  const cookies = await session.getWebCookies()

  steamcommunity.setCookies(cookies)

  return new Promise((resolve) => {
  	steamcommunity.loggedIn((err, loggedIn) => {
		resolve(steamcommunity.steamID.getSteamID64())
  	})
  })

 

And, Im try use session.getWebCookies(); with this JWT ... and cookies is working with steam websites

Hi, I got my hands on a new refreshroken which brings back store.steam ... but when I put it into steam-user it error me on validation
 

Error: This refreshToken is not valid for logging in to the Steam client
    at /Users/xxxxxxx/node_modules/.pnpm/[email protected]/node_modules/steam-user/components/08-logon.js:133:16
    at process.processTicksAndRejections (node:internal/process/task_queues:77:11) {
  tokenAudiences: [ 'web', 'renew', 'derive' ]
}

Here is JWT decode

{
  iss: 'steam',
  sub: '765611995xxxxx',
  aud: [ 'web', 'renew', 'derive' ],
  exp: 1700350xxx,
  nbf: 1689078xxx,
  iat: 1697718xxx,
  jti: '0D52_xxxx_xxx',
  oat: 1697xxxx,
  per: 0,
  ip_subject: 'xx.xx.xx.xx',
  ip_confirmer: 'xx.xx.xx.xx'
}

 

Im, try with steam-session - EAuthTokenPlatformType.WebBrowser- renewRefreshToken()
got: Error: AccessDenied

hmmm, where is the data from ?

I used to think that email guard was set after calling the setupProfile function, but it doesn't happen to me anymore.

is there any other way to set it up or verify it ?

 

Use steam-session > login > store refresh token (exp ~200d) > and regenerate cookie when you need it with same module > setup with setcookies in the browser 
 

 

check this 👇🏼 here is working example with "check" steamUser.bot.publicIP
 

 

const storeRes = await fetch(`https://store.steampowered.com/app/${game.appId}`)

if (storeRes.url === 'https://store.steampowered.com/') game.storeRemoved = true

 

https://en.wikipedia.org/wiki/Session_hijacking , insecure Wi-Fi, Free VPN, extension with backdoors, etc...

Items under 1€ are without confirmation.

If I have multiple accounts where I want to skip queue once per day is it better to keep them logged in or log in and out on each event? Logging in is via refreshtoken.

I'm currently logging in and logging out.

Browser script:

document.cookie = 'steamLoginSecure=xxxxxxxxxxxxxxxxxxxxxxx; expires=Fri, 02 Jun 2023 10:14:12 GMT; path=/';

 

Node script with steam-session

      log(`Generating cookie: ${token}`, 'info', 'steam-session', true, id)

      const session = new LoginSession(EAuthTokenPlatformType.WebBrowser)
      session.refreshToken = token
      const cookie = await session.getWebCookies()

      log(`Cookie: ${cookie}`, 'info', 'steam-session', true, id)

Try call after emit loggedOn event.

Try call getProduct after emmit loggedOn see my code

oh wow thanks you

Yes Thanks it works and interesting that what is in points shop is 10 times shorter.

and can also be obtained with an existing refresh token or only when emit evemt authenticated ?

Hi its possible get access_token with packages ?