TRONITY App

All Honda E related discussions
User avatar
bogga
Posts: 428
Joined: Wed May 20, 2020 2:41 pm

Post by bogga »

Ah, and if you run the docker you get this, which is encouraging

2021-04-08 20_02_31-Clipboard.png

User avatar
bogga
Posts: 428
Joined: Wed May 20, 2020 2:41 pm

Post by bogga »

..and as expected the private deployment only allows Tesla's or BMW's to be added.

2021-04-08 20_09_51-Clipboard.png

User avatar
londiniumperson
Posts: 1816
Joined: Fri Oct 11, 2019 2:37 pm

Post by londiniumperson »

bogga wrote: Thu Apr 08, 2021 6:58 pm So as soon as they open source the Honda integration, and update the docker image, I can run it on my home server.. I guess I just lose the fancy iPhone app?
Honda will never release an API, so what you see now is what you'll ever get.
As for no fancy iPhone app, don't worry, the website states that there's a PWA until the Android app is released.
2020 Advance in Crystal Black Pearl on 17's - 08/2020-Current
2015 VW Tiguan (Pure White) - 04/2018-Current
1991 Honda Beat PP1 (Festival Red) - 11/2022-Current
User avatar
bogga
Posts: 428
Joined: Wed May 20, 2020 2:41 pm

Post by bogga »

londiniumperson wrote: Thu Apr 08, 2021 7:12 pm Honda will never release an API, so what you see now is what you'll ever get.
How are they doing it at the moment then?
User avatar
londiniumperson
Posts: 1816
Joined: Fri Oct 11, 2019 2:37 pm

Post by londiniumperson »

bogga wrote: Thu Apr 08, 2021 8:24 pm
londiniumperson wrote: Thu Apr 08, 2021 7:12 pm Honda will never release an API, so what you see now is what you'll ever get.
How are they doing it at the moment then?
Screen scraping :|
2020 Advance in Crystal Black Pearl on 17's - 08/2020-Current
2015 VW Tiguan (Pure White) - 04/2018-Current
1991 Honda Beat PP1 (Festival Red) - 11/2022-Current
User avatar
bogga
Posts: 428
Joined: Wed May 20, 2020 2:41 pm

Post by bogga »

londiniumperson wrote: Thu Apr 08, 2021 9:00 pm
bogga wrote: Thu Apr 08, 2021 8:24 pm
londiniumperson wrote: Thu Apr 08, 2021 7:12 pm Honda will never release an API, so what you see now is what you'll ever get.
How are they doing it at the moment then?
Screen scraping :|
I asked Tronity when the Honda E would be available in the private deployment and the answer was:

2021-04-09 09_57_58-Window.png

Larbor
Posts: 226
Joined: Wed Aug 19, 2020 7:20 am

Post by Larbor »

RAL7004 wrote: Thu Apr 08, 2021 9:32 am ... or via web browser.
The only thing that bothers me is the fact that you have to enter your password for the Honda+ app. It makes sense to me - but you hand over access to the data to this company...
That is bad security practice. Never hand over your password. In an almost ideal world, Honda would expose an authentication service for third party apps. You log in to Honda and the apps exchange keys. These keys can be revoked at any time by you, the user, and can have permissions attached to them.

If this is not the case here, then do NOT use it.
User avatar
londiniumperson
Posts: 1816
Joined: Fri Oct 11, 2019 2:37 pm

Post by londiniumperson »

renedekat wrote: Sun Apr 11, 2021 8:14 am
RAL7004 wrote: Thu Apr 08, 2021 9:32 am ... or via web browser.
The only thing that bothers me is the fact that you have to enter your password for the Honda+ app. It makes sense to me - but you hand over access to the data to this company...
That is bad security practice. Never hand over your password. In an almost ideal world, Honda would expose an authentication service for third party apps. You log in to Honda and the apps exchange keys. These keys can be revoked at any time by you, the user, and can have permissions attached to them.

If this is not the case here, then do NOT use it.
+1 on this matter.
Especially so when the app developers won't/can't do this because this screams to a lack of technical security knowledge/ability or worse still knows that this is a serious security concern but instead prioritises other areas instead.
A company like this that doesn't employ suitable security measures at the application login method certainly won't be considering good practice elsewhere in their infrastructure and is to be avoided at all costs.
2020 Advance in Crystal Black Pearl on 17's - 08/2020-Current
2015 VW Tiguan (Pure White) - 04/2018-Current
1991 Honda Beat PP1 (Festival Red) - 11/2022-Current
User avatar
RAL7004
Posts: 534
Joined: Wed Jan 01, 2020 8:39 pm
Location: Germany

Post by RAL7004 »

renedekat wrote: Sun Apr 11, 2021 8:14 am That is bad security practice. Never hand over your password. In an almost ideal world, Honda would expose an authentication service for third party apps. You log in to Honda and the apps exchange keys. These keys can be revoked at any time by you, the user, and can have permissions attached to them.

If this is not the case here, then do NOT use it.
Absolutely - won't do that either, of course....
User avatar
bogga
Posts: 428
Joined: Wed May 20, 2020 2:41 pm

Post by bogga »

Post Reply