Skip to content

Instantly share code, notes, and snippets.

@lukpueh
Created May 24, 2018 10:38
Show Gist options
  • Save lukpueh/a595f74d8edfb512d4f5be7056dfdb1e to your computer and use it in GitHub Desktop.
Save lukpueh/a595f74d8edfb512d4f5be7056dfdb1e to your computer and use it in GitHub Desktop.
Script to help me position my `Alcatel Linkhub HH40v` LTE modem for the best signal strength
#!/usr/bin/env python
"""
<Program Name>
say_lte.py
<Author>
Lukas Puehringer <luk.puehringer@gmail.com>
<Purpose>
Script to help me position my `Alcatel Linkhub HH40v` LTE modem for the
best signal strength.
If a change in signal strength is detected, it uses the OS X command line
tool `say` to say the new signal strength.
<Usage>
1. Connect your computer to your Alcatel Linkhub's WiFi
2. Open a browser and go to the admin page at `192.168.1.1`
3. Open your browser's developer tools, go to the `network` tab and look
for requests to `http://192.168.1.1/jrd/webapi`
4. Take any request, copy the value of the header
`_TclRequestVerificationKey` and assign it to below variable
`REQUEST_KEY`
5. Turn up the volume of your computer and run the script
6. Walk your Alcatel Linkhub around your apartment (long extension cord is
helpful) and place it at where your computer tells you a high signal.
"""
import time
import requests
import subprocess
###############################################################################
# CHANGE REQUIRED !!!
# Add value of you _TclRequestVerificationKey here
###############################################################################
REQUEST_KEY = None
if not REQUEST_KEY:
raise Exception("You need to assign your `_TclRequestVerificationKey` to `REQUEST_KEY`")
URL = "http://192.168.1.1/jrd/webapi"
# JSON rpc request to get information such as signal strength
JSON_REQUEST = {
"id": "1",
"jsonrpc": "2.0",
"method": "GetSystemStatus",
"params": {}
}
# Headers required to authenticate with JSON rpc (assessed by trial and error)
HEADERS = {
"_TclRequestVerificationKey": REQUEST_KEY,
"Referer": "http://192.168.1.1/index.html"
}
def main():
""" Run indefinitely to (at an interval of 1 second)
- print requested signal strength to command line, and
- if signal strength changes, `say` the new strength.
"""
last = None
while True:
r = requests.post(URL, json=JSON_REQUEST, headers=HEADERS)
strength = r.json().get("result", {}).get("SignalStrength")
print "Signal Strength:", strength
if strength != last:
process = subprocess.Popen(["say", str(strength)],
stdout=subprocess.PIPE)
process.communicate()
last = strength
time.sleep(1)
if __name__ == "__main__":
main()
@lukpueh
Copy link
Author

lukpueh commented Mar 3, 2021

Nice reverse engineering. :) Thanks for sharing your insights here, @mortyobnoxious!

@topetmtch
Copy link

Hi! Thanks for all the information! This is what I am looking for.
I can access some pages like GetSystemStatus and GetNetworkInfo which already helps me a lot. However, I would like to send sms (yeah, I know... there is one stupid legacy system I need to contact...) and I cannot get this to work.

@mortyobnoxious, can you please give me a hint how to login? I tried using the code above with Js2Py (cool project BTW, I didn't know this exists!). I can encrypt the username and password but I keep getting 'Authentication Failure'.

I tried to search for familiar strings in build.js but I was unable to find the correct information. Hence I guessed:

JSON_REQUEST_LOGIN = {
    "id": "1",
    "jsonrpc": "2.0",
    "method": "Login",
    "params":{"UserName":<encryptedUser>,"Password":<encryptedPW>}
}

-> also tried "login"

URL_LOGIN = "http://192.168.66.1/jrd/webapi"

HEADERS_LOGIN = {
    "Referer": "http://192.168.66.1/index.html"
}

(The router is changed to .66.)

r = requests.post ( URL_LOGIN, json=JSON_REQUEST_LOGIN, headers=HEADERS_LOGIN)
print ( str ( r.json () ) )

Result printed:

{'jsonrpc': '2.0', 'error': {'code': '-32699', 'message': 'Authentication Failure'}, 'id': '1'}

I was hoping to get a token and be logged in. Any help is very welcome! 😀

@topetmtch
Copy link

Update! It works! 😀

I misread the article above and got mixed up with _TclRequestVerificationToken and _TclRequestVerificationKey. 🙈

I re-added _TclRequestVerificationKeyto the original headers - and received the token.

 HEADERS_LOGIN = {
    "_TclRequestVerificationKey": REQUEST_KEY,
    "Referer": "http://192.168.66.1/index.html"
  }

JSON_REQUEST_LOGINremains as stated above.

I receive the token, encrypt it by the JS-function and add it to the headers. Now, I can receive methods which have been blocked by "login needed".

Thanks to all of you!!

@josedanielr
Copy link

josedanielr commented Jun 28, 2021

This is unrelated, but by any chance, does anyone know if there is an endpoint in the webapi to dial USSD codes? My device is MW41 and it doesn't allow it through the web interface, but I have read that the same device shipped by different operator does allow it.

UPDATE: I found it, for some reason it is hidden by default but you can get directly to it through http://192.168.1.1/default.html#more/ussdSetting.html.

@cipeczka
Copy link

Does it work with HUB71?

@spolette
Copy link

Does it work with HUB71?

Nope, this won't work on HUB71 because this hardware use a different method to generate the _TclRequestVerificationToken.
This however might work with this script: https://github.com/spolette/Alcatel_HH72

@cguillard35
Copy link

@spolette, in your script for HH72, please how have you found the key "e5dl12XYVggihggafXWf0f2YSf2Xngd1" ?
I've tried your script on Alcatel MW45V, it seems that encryption is different between login and password.
Thanks

@spolette
Copy link

@spolette, in your script for HH72, please how have you found the key "e5dl12XYVggihggafXWf0f2YSf2Xngd1" ? I've tried your script on Alcatel MW45V, it seems that encryption is different between login and password. Thanks

@cguillard35, I've found that key by reverse engineering Alcatel's android app (https://play.google.com/store/apps/details?id=com.alcatel.smartlinkv3)

@rigas40
Copy link

rigas40 commented May 30, 2023

@spolette can you made python script for MW40V ?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment