freitdav / BDRthermostatHA

BDR (Baxi, De Dietrich, Remeha) thermostat custom component integration for Home Assistant
GNU General Public License v3.0
48 stars 21 forks source link

Can't login #7

Closed pawelhulek closed 1 year ago

pawelhulek commented 2 years ago

Hi, I have a Smart TC thermostat and DeDietrich device, also I have access to my Smart TC app, however, my credentials are not recognized by this component. I am getting 401 from server. I am also not sure which brand should I use? Is it baxi or remeha. Please help. I was trying to reset my password to a simpler one, but it still doesn't help.

machv commented 1 year ago

Hi @pawelhulek, I had the same issue. after changing line https://github.com/freitdav/BDRthermostatHA/blob/main/custom_components/bdr_thermostat/config_schema.py#L25 to

    ): vol.In(["baxi", "remeha", "dedietrich"])}

and selecting dedietrich during component setup, I can successfully authenticate, but on my device, I can see only water pressure as a detected sensor in HA. I will need to do more verbose packet capture from my paier Smart TC app as it seems there are some differences in API output from the remoteapp.bdrthermea.com when dedietrich device is used.

pawelhulek commented 1 year ago

Well yeah I figured it out already. Also I add some small changes locally to enable climate sensor. I can share if you are intersted.

I was also trying to do some package capture of the app, but there is certificate pinning used so it is not really easy to hack it with a man in the middle. How are tackling that? What are you using to sniff the traffic?

machv commented 1 year ago

Great!

For me changes I proposed in this https://github.com/freitdav/BDRthermostatHA/pull/9 pull request helped me to control my boiler.

What changes were needed on your end?

freitdav commented 1 year ago

Well yeah I figured it out already. Also I add some small changes locally to enable climate sensor. I can share if you are intersted.

I was also trying to do some package capture of the app, but there is certificate pinning used so it is not really easy to hack it with a man in the middle. How are tackling that? What are you using to sniff the traffic?

I reversed the APK.