Skip to content

Instantly share code, notes, and snippets.

@bewest

bewest/medtronic-2020-sso-eu.md

Created June 29, 2020 01:27
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save bewest/47ad913fdd571531604dc23942d73b94 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save bewest/47ad913fdd571531604dc23942d73b94 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
medtronic-2020-sso-eu.md

Medtronic SSO Resource Ownership

Get Access Code

Select Locale

GET https://carelink.minimed.eu/patient/sso/login?country=gb&lang=en

The country and lang parameters are required. The response includes a redirect to begin their resource owner flow internally.

The Location header will look like this:

Location https://mdtlogin.medtronic.com/mmcl/auth/oauth/v2/authorize?client_id=b330fa11-0fc1-4284-800e-d51a4a5a5a0e&response_type=code&redirect_uri=https://carelink.minimed.eu/patient/sso/auth&scope=openid%20profile%20roles&state=auth&lang=en&country=gb&code_challenge=ilztarntIWmpM2SdMyfKfZbjR4Pjv0H4p_VKzrqzwWQ&code_challenge_method=S256

And sets a cookie, codeVerifier.

Set-Cookie: codeVerifier=wFZtaBxlNHBEv94dzptEIuuP3fndpDZxCOxppuHMjm8; path=/; secure; HttpOnly

Generate session for grant

https://mdtlogin.medtronic.com/mmcl/auth/oauth/v2/authorize?client_id=b330fa11-0fc1-4284-800e-d51a4a5a5a0e&response_type=code&redirect_uri=https://carelink.minimed.eu/patient/sso/auth&scope=openid%20profile%20roles&state=auth&lang=en&country=gb&code_challenge=ilztarntIWmpM2SdMyfKfZbjR4Pjv0H4p_VKzrqzwWQ&code_challenge_method=S256

These required query string parameters

client_id b330fa11-0fc1-4284-800e-d51a4a5a5a0e
response_type code
redirect_uri https://carelink.minimed.eu/patient/sso/auth
scope openid profile roles
state auth
lang en
country gb
code_challenge ilztarntIWmpM2SdMyfKfZbjR4Pjv0H4p_VKzrqzwWQ
code_challenge_method S256

This in turn redirects to a webform, hosted mdtlogin.minimed.com.

Location:  https://mdtlogin.medtronic.com/mmcl/auth/oauth/v2/authorize/login?action=display&sessionID=695af3ca-2ebf-48e6-8ed2-bbdb2d291dae&sessionData=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.kejeptgDGRxmpn8aLHR5YBxiTDB5rgSYdMEy8p81iG0&locale=en&countrycode=gb

Get Grant Session

GET https://mdtlogin.medtronic.com/mmcl/auth/oauth/v2/authorize/login?action=display&sessionID=695af3ca-2ebf-48e6-8ed2-bbdb2d291dae&sessionData=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.kejeptgDGRxmpn8aLHR5YBxiTDB5rgSYdMEy8p81iG0&locale=en&countrycode=gb

Here are the parameters:

action display
sessionID 695af3ca-2ebf-48e6-8ed2-bbdb2d291dae
sessionData eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.kejeptgDGRxmpn8aLHR5YBxiTDB5rgSYdMEy8p81iG0
locale en
countrycode gb

sessionData looks to be a JWT usable as an Access Codeassociated with this session, although it hasn't been granted any permissions yet.

Log in with credentials

The login form is posted with username and password, sessionID, and sessionData from earlier.

POST https://mdtlogin.medtronic.com/mmcl/auth/oauth/v2/authorize/login?locale=en&country=gb

For example, there does not appear to be any cookie going in to medtronic.com.

Content-Type application/x-www-form-urlencoded

POST body (pretty printed, the newlines are added)

sessionID=695af3ca-2ebf-48e6-8ed2-bbdb2d291dae&
sessionData=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.kejeptgDGRxmpn8aLHR5YBxiTDB5rgSYdMEy8p81iG0&
locale=en&
action=login&
username=nstesteu&
password=ournightscouteutest&
actionButton=Log in

The response sets some new cookies, as well as this helpful form for people who may not have javascript. New cookies, ssoCookie, and sessionCookie.

Set-Cookie ssoCookie=85b78b6c-41e4-48f7-9971-4042830ec271%7C1593639138%7CjltqW7gD8m4WE3YmTdzbkATqoI; Expires=Wed, 01 Jul 20 21:32:18 UTC; Path=/; Secure; HttpOnly
Set-Cookie sessionCookie=bbb4a895-604c-46d9-9252-c6c82a11930a%7C1593466338%7CtCxYX0SILOxPGGxOewiuTh6MJEo; Expires=Mon, 29 Jun 20 21:32:18 UTC; Path=/; Secure; HttpOnly



<html>
<HEAD>
    
<META HTTP-EQUIV='PRAGMA' CONTENT='NO-CACHE'>
    
<META HTTP-EQUIV='CACHE-CONTROL' CONTENT='NO-CACHE'>
    
<TITLE>Login Auto-POST form</TITLE>
</HEAD>
<body onLoad="document.forms[0].submit()">
<NOSCRIPT>Your browser does not support JavaScript. Please click the 'Continue' button below to proceed.</NOSCRIPT>
<br/>
<form action="https://mdtlogin.medtronic.com/mmcl/auth/oauth/v2/authorize/consent" method="POST" enctype="application/x-www-form-urlencoded">
    <input type="hidden" name="action" value="consent">
    <input type="hidden" name="sessionID" value="695af3ca-2ebf-48e6-8ed2-bbdb2d291dae">
    <input type="hidden" name="sessionData" value="eyJ0eXAiOiJKV1QiLCJjdHkiOiJKV1QiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..uAWqfgeIkYLC9XWPmhBP7g.HlOe7C64JB8X92eplqXihdsEcxSKzIo7dG-jB81yZ74QzqpYe-j0vfSJvmTkD3Cun0avuRpjyrv-QzjFKuUpVuyN_ohYEXqjeCYHYKnaTFEh7F4v6nfBpP2Vrz9jAVCkEsJPDZy8CIowKhPkRafudePMV3vbUS7xEbUVneeX_UPE5bv-qU01FkU5CDgVZ_94COiiLwpwmWpH2iegl71a_A2aGtHuZHjFVSlmDKusn9ifF-_td5uMsjPQOCQfw9arn41MraKfesfP95FTovcf0MeaFxIMSJVqzJ5hV4yHHj4xMDnHEinejDbNSRgP8DTXxSJoaEl7u_dIFLNltSANdRU9DUDfno18I4iTjnpT7c8Wd2muOrZpQFIo4uE6WoJ13h38fgjhZcGazmtrm_lob5XYAOE3jtoykr_zI1BvoG6vpx6T4sawdJXftR3KDps3KMYW5PoQC0PadgMmA6x18lffCoQ8WwlEcuymZ2rVGCv_lWC_-n18KRSHQhYIImJ_dKowhIP9yxqSYEKPJfNUYfM6Q2oUhepF390qoOyDIebzAA5gF_Dp8c3HdAo0t194MUqk-mVmVEt2WsRZTVo2PSH5K9cjaUwlAY4D5YdSnybmknYmdj2IpEGMsRSiRjxnsSRgTLCdfMCNgpzkrgvN8JRUVuRlq_rZ_PdtcIHp10qb9Gg_3sL07_pe0-gaoROjdHt8Ic-xjIxHgxConkG3puHPTFHM9hoihCrfRvw6II2HRefkS2Nm6TndEEwQAFvMq7BExAjI_9GS_vjK8_6ub3x6EzQLolf82cOaJvPY7-Qbl1pBAHltFrI0HSs3Z43FC1_VoXK7jLQUN-N94Dspcbg4OWRc1EHB3iD-8VP3Liizp1FPQnfUbq7gOApwDqVqwDyXrUBZzPeMiOcQQvhDky4n6y5ho7_YfuNgYdSrsku1tabUQe17elGNTPVWcEYloTB36oZV_XWQJ9IHQywWfJ4IkNsGtPJrQR3l3ok9rwPnvo_8oYadApqhZPFS0BfWh8S0jADzEPLOzBjaLKjQOKfvk_-5uWq_TRPXAOa-bVJVtZzbF8EQLmQn96HJBM_cSWwzbxH_pJlql_YsrRI8Hs1qsdnHIXWkgzj9cu_SWSOzn0tx7B5hBuV3ve02tMQ1M3fjkCmR4AEkeZYKKtT1VBLKcON-YwLPS-LcK_yhLQZJq80o_WUElxDZLxdVbhH-zls2YKE6Q63bvYVmLu4zDyBLPYddbqtmTG6P1cAFqunSqyvNV13oh7RpLIZwDm97qWwaOnY6otd2jtAt-rriNHYdrKYOY7XWs-mHLGFzxoHCaTB0UCgDTjhVby-iNzG0Y7IkZ-IoOL0KwlfFE35O6Ff4N5CiPNTXygPTxKBTuRBLIA7Zm_YFeTjMUCmnzM-ExpWjxkIT-wXyYddzCq2IGl6ZNEiTpf5PrjP-2yh8qWwGlnQssTgtQqLffRfAIoxAYJF0e6V9whWiPvrnyj3aTzc49bFwm5KX8yqZBgKZyICMVSzNeHe6ZfblMnccmSfj92En0Abo19aZfCq5wfYUNyEMpf3Pu2wZb0p5yPDTpAJNdWSkiULFwQYrX0jy_tDEk-v-k9Q09DufATcfyVNSoClVSmKfWznyzu4NewXHCgGurBBLl0nqUl6M8QIbnatRQgxgWj3NL1ff7huPuxUPNFoSMbIl5Id9Lazp-Dmz2nYF2NiYKuCn7vYPcgPx_HxGScKHJ5UrRoh1nKygF-eyiy5DpH63fSJy3bEnkfRGoskc5LFxbBd5VRllkIzdP3FccpEQ4nX9lmrqMvY-B3R0AfKbXdNDh0cr5rKtJKQfMheNYgZ_iltyZp2yuHNPakkIirQKUFzM84vpKSw5Q9e5HWSFibNYFzIJRPpjLLcNoBSZATMThrVZgBW7HVANCudfYVGrgb8MuJVIruQB9-QGxF6Oqxk86wjKSXQgoClZDfjD8aVGZZC0si5Um8Oj1sPnJJH08gjx6LOBmV6gvsoBh-MPVv_GTbxm08oYzJi6aETQFfCICeJ6zTYZUcqE9xA1u7mpW45I62UJNJjhYZDNVYeQO9nqAGeLtKNumC3af6M_3a8gs72Ecl7QEShGdWnPIeoKkPlyyYtn9UW-Fy2TBPYKjMxb4xEN-6A4bkH1dI8.1Rk5TaxbUrCTWwCMFF6CnQ">
    <input type="hidden" name="response_type" value="code">
    <input type="hidden" name="response_mode" value="query">
    
<NOSCRIPT><INPUT TYPE="SUBMIT" VALUE="Continue"></NOSCRIPT>
</form>
</body>
</html>

Grant Consent

The form above is automatically submitted, creating a post.

https://mdtlogin.medtronic.com/mmcl/auth/oauth/v2/authorize/consent

The previous cookies are sent along with urlencoded form data

Cookie ssoCookie=85b78b6c-41e4-48f7-9971-4042830ec271%7C1593639138%7CjltqW7gD8m4WE3YmTdzbkATqoI; sessionCookie=bbb4a895-604c-46d9-9252-c6c82a11930a%7C1593466338%7CtCxYX0SILOxPGGxOewiuTh6MJEo

Urlencoded, newlines added after & for prettier reading.

action=consent&
sessionID=695af3ca-2ebf-48e6-8ed2-bbdb2d291dae&
sessionData=eyJ0eXAiOiJKV1QiLCJjdHkiOiJKV1QiLCJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..uAWqfgeIkYLC9XWPmhBP7g.HlOe7C64JB8X92eplqXihdsEcxSKzIo7dG-jB81yZ74QzqpYe-j0vfSJvmTkD3Cun0avuRpjyrv-QzjFKuUpVuyN_ohYEXqjeCYHYKnaTFEh7F4v6nfBpP2Vrz9jAVCkEsJPDZy8CIowKhPkRafudePMV3vbUS7xEbUVneeX_UPE5bv-qU01FkU5CDgVZ_94COiiLwpwmWpH2iegl71a_A2aGtHuZHjFVSlmDKusn9ifF-_td5uMsjPQOCQfw9arn41MraKfesfP95FTovcf0MeaFxIMSJVqzJ5hV4yHHj4xMDnHEinejDbNSRgP8DTXxSJoaEl7u_dIFLNltSANdRU9DUDfno18I4iTjnpT7c8Wd2muOrZpQFIo4uE6WoJ13h38fgjhZcGazmtrm_lob5XYAOE3jtoykr_zI1BvoG6vpx6T4sawdJXftR3KDps3KMYW5PoQC0PadgMmA6x18lffCoQ8WwlEcuymZ2rVGCv_lWC_-n18KRSHQhYIImJ_dKowhIP9yxqSYEKPJfNUYfM6Q2oUhepF390qoOyDIebzAA5gF_Dp8c3HdAo0t194MUqk-mVmVEt2WsRZTVo2PSH5K9cjaUwlAY4D5YdSnybmknYmdj2IpEGMsRSiRjxnsSRgTLCdfMCNgpzkrgvN8JRUVuRlq_rZ_PdtcIHp10qb9Gg_3sL07_pe0-gaoROjdHt8Ic-xjIxHgxConkG3puHPTFHM9hoihCrfRvw6II2HRefkS2Nm6TndEEwQAFvMq7BExAjI_9GS_vjK8_6ub3x6EzQLolf82cOaJvPY7-Qbl1pBAHltFrI0HSs3Z43FC1_VoXK7jLQUN-N94Dspcbg4OWRc1EHB3iD-8VP3Liizp1FPQnfUbq7gOApwDqVqwDyXrUBZzPeMiOcQQvhDky4n6y5ho7_YfuNgYdSrsku1tabUQe17elGNTPVWcEYloTB36oZV_XWQJ9IHQywWfJ4IkNsGtPJrQR3l3ok9rwPnvo_8oYadApqhZPFS0BfWh8S0jADzEPLOzBjaLKjQOKfvk_-5uWq_TRPXAOa-bVJVtZzbF8EQLmQn96HJBM_cSWwzbxH_pJlql_YsrRI8Hs1qsdnHIXWkgzj9cu_SWSOzn0tx7B5hBuV3ve02tMQ1M3fjkCmR4AEkeZYKKtT1VBLKcON-YwLPS-LcK_yhLQZJq80o_WUElxDZLxdVbhH-zls2YKE6Q63bvYVmLu4zDyBLPYddbqtmTG6P1cAFqunSqyvNV13oh7RpLIZwDm97qWwaOnY6otd2jtAt-rriNHYdrKYOY7XWs-mHLGFzxoHCaTB0UCgDTjhVby-iNzG0Y7IkZ-IoOL0KwlfFE35O6Ff4N5CiPNTXygPTxKBTuRBLIA7Zm_YFeTjMUCmnzM-ExpWjxkIT-wXyYddzCq2IGl6ZNEiTpf5PrjP-2yh8qWwGlnQssTgtQqLffRfAIoxAYJF0e6V9whWiPvrnyj3aTzc49bFwm5KX8yqZBgKZyICMVSzNeHe6ZfblMnccmSfj92En0Abo19aZfCq5wfYUNyEMpf3Pu2wZb0p5yPDTpAJNdWSkiULFwQYrX0jy_tDEk-v-k9Q09DufATcfyVNSoClVSmKfWznyzu4NewXHCgGurBBLl0nqUl6M8QIbnatRQgxgWj3NL1ff7huPuxUPNFoSMbIl5Id9Lazp-Dmz2nYF2NiYKuCn7vYPcgPx_HxGScKHJ5UrRoh1nKygF-eyiy5DpH63fSJy3bEnkfRGoskc5LFxbBd5VRllkIzdP3FccpEQ4nX9lmrqMvY-B3R0AfKbXdNDh0cr5rKtJKQfMheNYgZ_iltyZp2yuHNPakkIirQKUFzM84vpKSw5Q9e5HWSFibNYFzIJRPpjLLcNoBSZATMThrVZgBW7HVANCudfYVGrgb8MuJVIruQB9-QGxF6Oqxk86wjKSXQgoClZDfjD8aVGZZC0si5Um8Oj1sPnJJH08gjx6LOBmV6gvsoBh-MPVv_GTbxm08oYzJi6aETQFfCICeJ6zTYZUcqE9xA1u7mpW45I62UJNJjhYZDNVYeQO9nqAGeLtKNumC3af6M_3a8gs72Ecl7QEShGdWnPIeoKkPlyyYtn9UW-Fy2TBPYKjMxb4xEN-6A4bkH1dI8.1Rk5TaxbUrCTWwCMFF6CnQ&
response_type=code&
response_mode=query

The response is a 302 redirect:

Location: https://carelink.minimed.eu/patient/sso/auth?code=61a52f40-dbab-4a65-a315-8fcd7a6130f6&state=auth

Claim the Grant on Carelink with nonce

Following this redirect and fetching results in a 307 Temporary redirect.

GET https://carelink.minimed.eu/patient/sso/auth?code=61a52f40-dbab-4a65-a315-8fcd7a6130f6&state=auth

Importantly, it issues a cookie.

cure; HttpOnly
Set-Cookie auth_tmp_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImRlZmF1bHRfc3NsX2tleSJ9.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.aHA4SakXP8uikvaoqaHVQLEFX4nh3fo-pwuCa357-Gqqx05n12Mzci-XBn05Mq9M97etQkGB1I-q94RXFe6yBEwgzAZ0feX1XQaDqoezjel2naLP1a7fvNjSPRrKKLdjHP9aUTrz_5ihNz8nWdpu_niv361mzJZQ1B4mW6NQcTwQfuWxbgD96dknxn1K2npERRgYkM6tQzluSIpHLT8YB9EFTyrRpy9y7kpWiFVOGlADpyNLw4Rf_BFrs4RClUFSTfDZLu7M2E38hdBedTD6aHz7no_LcOa0Mwdq8VW1GGG3fnpa2Q656nBVC5RXMFweFSkdoZY5BkdQItTWbxmmkQ; path=/

Use API

EG: https://carelink.minimed.eu/patient/users/me


https://carelink.minimed.eu/patient/users/me
Accept application/json, text/plain, */*
Authorization Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImRlZmF1bHRfc3NsX2tleSJ9.ew0KICAiaXNzIjogImh0dHBzOi8vbWR0c3RzLm1lZHRyb25pYy5jb20vbW1jbCIsDQogICJpYXQiOjE1OTMzNzk5NDAsDQogICJhdWQiOiJiMzMwZmExMS0wZmMxLTQyODQtODAwZS1kNTFhNGE1YTVhMGUiLA0KICAiZXhwIjoxNTkzMzgxNzQwLA0KICAic3ViIjoiSXdsc090NjR1SzgtcHM4LXhZQ2paRXFHY3RLVTZhVmhCTVE5T1ZqMkF3ayIsDQogICJqdGkiOiI1NDZmNmZkZi0xNTg1LTRjZGQtOWYzMi1jYTJkZWRmZDljNDkiLA0KICAidG9rZW5fZGV0YWlscyI6IHsNCiAgICAic2NvcGUiOiJvcGVuaWQgcHJvZmlsZSByb2xlcyIsDQogICAgImV4cGlyZXNfaW4iOjE4MDAsDQogICAgInRva2VuX3R5cGUiOiJCZWFyZXIiLA0KInByZWZlcnJlZF91c2VybmFtZSI6Im5zdGVzdGV1IiwNCiJuYW1lIjoiQiogV2VzdCIsDQoiZ2l2ZW5fbmFtZSI6IkIqIiwNCiJmYW1pbHlfbmFtZSI6Ildlc3QiLA0KImxvY2FsZSI6ImVuIiwNCiJyb2xlcyI6WyJwYXRpZW50X291cyJdDQogIH0NCn0.aHA4SakXP8uikvaoqaHVQLEFX4nh3fo-pwuCa357-Gqqx05n12Mzci-XBn05Mq9M97etQkGB1I-q94RXFe6yBEwgzAZ0feX1XQaDqoezjel2naLP1a7fvNjSPRrKKLdjHP9aUTrz_5ihNz8nWdpu_niv361mzJZQ1B4mW6NQcTwQfuWxbgD96dknxn1K2npERRgYkM6tQzluSIpHLT8YB9EFTyrRpy9y7kpWiFVOGlADpyNLw4Rf_BFrs4RClUFSTfDZLu7M2E38hdBedTD6aHz7no_LcOa0Mwdq8VW1GGG3fnpa2Q656nBVC5RXMFweFSkdoZY5BkdQItTWbxmmkQ
Connection keep-alive
Content-Type application/json; charset=utf-8
Cookie c_token_valid_to=Sun Jun 28 21:47:20 UTC 2020; auth_tmp_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImRlZmF1bHRfc3NsX2tleSJ9.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.aHA4SakXP8uikvaoqaHVQLEFX4nh3fo-pwuCa357-Gqqx05n12Mzci-XBn05Mq9M97etQkGB1I-q94RXFe6yBEwgzAZ0feX1XQaDqoezjel2naLP1a7fvNjSPRrKKLdjHP9aUTrz_5ihNz8nWdpu_niv361mzJZQ1B4mW6NQcTwQfuWxbgD96dknxn1K2npERRgYkM6tQzluSIpHLT8YB9EFTyrRpy9y7kpWiFVOGlADpyNLw4Rf_BFrs4RClUFSTfDZLu7M2E38hdBedTD6aHz7no_LcOa0Mwdq8VW1GGG3fnpa2Q656nBVC5RXMFweFSkdoZY5BkdQItTWbxmmkQ
Host carelink.minimed.eu
Referer https://carelink.minimed.eu/
User-Agent Mozilla/5.0 (Windows NT 10.0; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4086.0 Safari/537.36

Refresh Token

The UI regularly refreshes the token, often within 5 minutes.

Request URL: https://carelink.minimed.eu/patient/sso/reauth

POST https://carelink.minimed.eu/patient/sso/reauth

Accept application/json, text/plain, */*
Accept-Encoding gzip, deflate, br
Accept-Language en-US,en;q=0.5
Authorization Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImRlZmF1bHRfc3NsX2tleSJ9.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.aHA4SakXP8uikvaoqaHVQLEFX4nh3fo-pwuCa357-Gqqx05n12Mzci-XBn05Mq9M97etQkGB1I-q94RXFe6yBEwgzAZ0feX1XQaDqoezjel2naLP1a7fvNjSPRrKKLdjHP9aUTrz_5ihNz8nWdpu_niv361mzJZQ1B4mW6NQcTwQfuWxbgD96dknxn1K2npERRgYkM6tQzluSIpHLT8YB9EFTyrRpy9y7kpWiFVOGlADpyNLw4Rf_BFrs4RClUFSTfDZLu7M2E38hdBedTD6aHz7no_LcOa0Mwdq8VW1GGG3fnpa2Q656nBVC5RXMFweFSkdoZY5BkdQItTWbxmmkQ
Connection keep-alive
Content-Length 0
Content-Type application/json; charset=utf-8
Cookie c_token_valid_to=Sun Jun 28 21:47:20 UTC 2020; auth_tmp_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImRlZmF1bHRfc3NsX2tleSJ9.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.aHA4SakXP8uikvaoqaHVQLEFX4nh3fo-pwuCa357-Gqqx05n12Mzci-XBn05Mq9M97etQkGB1I-q94RXFe6yBEwgzAZ0feX1XQaDqoezjel2naLP1a7fvNjSPRrKKLdjHP9aUTrz_5ihNz8nWdpu_niv361mzJZQ1B4mW6NQcTwQfuWxbgD96dknxn1K2npERRgYkM6tQzluSIpHLT8YB9EFTyrRpy9y7kpWiFVOGlADpyNLw4Rf_BFrs4RClUFSTfDZLu7M2E38hdBedTD6aHz7no_LcOa0Mwdq8VW1GGG3fnpa2Q656nBVC5RXMFweFSkdoZY5BkdQItTWbxmmkQ; application_language=en; application_country=gb
Host carelink.minimed.eu
Referer https://carelink.minimed.eu/app/home
User-Agent Mozilla/5.0 (Windows NT 10.0; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4086.0 Safari/537.36

The cookies get updated when this happens:

Set-Cookie auth_tmp_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImRlZmF1bHRfc3NsX2tleSJ9.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.dMnz-atP2CQn4dOCIQF5eMdOu36qwmoV7HK0IrEJ2aMCbGAUhBu_fi5wGJ2-7Z53H2BlUlt4Vn7S-cOUhRS8qMIoFoKzdpL2GyhM2MGHSVp8aLPcJyIFdW4GbcBEtpH89dbFUGL3RxkAFgiREsHGmm5K9XSM_G5DZ0q7hbBZmbwmKpkXb6VXdA4fEnTS17cHg_VRWGeSXU7GW14qyq8PmsJVFfwTUm66Q4O-CJBKzn6GPuui0_icZcS2CWB0YPrFOjHKDTCAh4YWUDWk6vJ-BhKJouBSTZ-P9SGo4hWU0VePhJXVHEa357cQ1mm9v2LhX-gvHEUPUY8S4C1WHm7mLw; path=/
Set-Cookie c_token_valid_to=Sun Jun 28 21:59:51 UTC 2020; path=/

Over subsequent runs, we can see a portion of that token changing:

POST Request URL: https://carelink.minimed.eu/patient/sso/reauth


Accept application/json, text/plain, */*
Accept-Encoding gzip, deflate, br
Accept-Language en-US,en;q=0.5
Authorization Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImRlZmF1bHRfc3NsX2tleSJ9.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.dMnz-atP2CQn4dOCIQF5eMdOu36qwmoV7HK0IrEJ2aMCbGAUhBu_fi5wGJ2-7Z53H2BlUlt4Vn7S-cOUhRS8qMIoFoKzdpL2GyhM2MGHSVp8aLPcJyIFdW4GbcBEtpH89dbFUGL3RxkAFgiREsHGmm5K9XSM_G5DZ0q7hbBZmbwmKpkXb6VXdA4fEnTS17cHg_VRWGeSXU7GW14qyq8PmsJVFfwTUm66Q4O-CJBKzn6GPuui0_icZcS2CWB0YPrFOjHKDTCAh4YWUDWk6vJ-BhKJouBSTZ-P9SGo4hWU0VePhJXVHEa357cQ1mm9v2LhX-gvHEUPUY8S4C1WHm7mLw
Connection keep-alive
Content-Length 0
Content-Type application/json; charset=utf-8
Cookie c_token_valid_to=Sun Jun 28 21:59:51 UTC 2020; auth_tmp_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImRlZmF1bHRfc3NsX2tleSJ9.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.dMnz-atP2CQn4dOCIQF5eMdOu36qwmoV7HK0IrEJ2aMCbGAUhBu_fi5wGJ2-7Z53H2BlUlt4Vn7S-cOUhRS8qMIoFoKzdpL2GyhM2MGHSVp8aLPcJyIFdW4GbcBEtpH89dbFUGL3RxkAFgiREsHGmm5K9XSM_G5DZ0q7hbBZmbwmKpkXb6VXdA4fEnTS17cHg_VRWGeSXU7GW14qyq8PmsJVFfwTUm66Q4O-CJBKzn6GPuui0_icZcS2CWB0YPrFOjHKDTCAh4YWUDWk6vJ-BhKJouBSTZ-P9SGo4hWU0VePhJXVHEa357cQ1mm9v2LhX-gvHEUPUY8S4C1WHm7mLw; application_language=en; application_country=gb


Set-Cookie auth_tmp_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImRlZmF1bHRfc3NsX2tleSJ9.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.GGg5N5ZcwVf2xi-609oPyczIW7uiI1X-eH0W_hfzntXpeUCmCq5uQ-_Ab5CgJcX8I3Xdr7Q5FKty__75A8OpZn-ZuQA5wWTFxEFbnVZwsWbETQQgBO1iiXgiGZqgWI1LRbNugP9GdTT7FHrNE_l83XljIq2gYzgClV-233KFylSB7rUYEWq0sO7JDBvyRfqzWNMMETO7Q73tv4gz9Sw9_EngO3LvJH9p9Et8mWfT4Ji-9rXHQF_vOLnWzwAIMklh4znNr_mVNjwI8WSfG9n3P0BuUozWT313lsfLkeINU7Oq8RRnGuEH87oyuaWZViUK-wdZRrT_pDMVVZghHaJ2fw; path=/
Set-Cookie c_token_valid_to=Sun Jun 28 22:12:23 UTC 2020; path=/
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment