Jump to content
McKay Development

startWithCredentials no longer working with sentryfile hashes?

SpacePumpkin

By SpacePumpkin
in node-steam-session

 Share

Recommended Posts

SpacePumpkin Newbie

SpacePumpkin

Posted
Posted (edited)

I was hoping to be able to login using my old sentryfile through steam-session and then grab a JWT for use going forward but it looks like requests made with the sentryhash are still triggering a steamguard email code. Anything obvious I'm doing wrong here? I know Steam are phasing out sentry files, maybe I'm too late to do this. This sentry file works on an old Steam client from 2022 

```ts
function readSentryFile() {
  const sentry = readFileSync(argv.sentry)
  let hash = createHash('sha1');
  hash.update(sentry);
  return hash.digest(); // buffer contains a Buffer
}

async function getAuthToken(accountName: string, password: string) {

let session = new LoginSession(EAuthTokenPlatformType.SteamClient)

let startResult = await session.startWithCredentials({ accountName, password, steamGuardMachineToken: readSentryFile()}) 

console.log(startResult)

}

```

is still returning with 

```

{
  actionRequired: true,
  validActions: [ { type: 2, detail: 'gmail.com' } ]
}

```

EDIT: node-steam-user had been happy with the sentry file up until about a week ago (17th October I predict). The bot was using an out of date version of node-steam-user and was seemingly just hanging on login attempt, after updating to the last v4 version it prompted for a steam code (although I see in the documentation you've removed support for this). I was just hoping node-steam-session might help me migrate away from the sentryfile for good

Edited by SpacePumpkin
Dr. McKay Grand Master

Dr. McKay

Posted
Posted

I very much wouldn't be surprised if Valve removed the ability to use sentry files with the auth server last week. They're seemingly cleaning up deprecated transitional code.

Why can't you just get a machine auth token going forward?

SpacePumpkin Newbie

SpacePumpkin

Posted
  • Author
Posted

Thanks, yeah I just wanted a second opinion on if I've missed the boat on this. I have a lot and didn't want to manually authenticate them with an email code and potentially risk a temporary trade restriction for a "new device". Looks like this will be what's needed.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
 Share
Go to topic listing
×
×
  • Create New...