Anonymous Logins

Anonymous login feature is great for privacy enthusiasts however there are certain things you should know.

What is a Token Dispenser?

A token dispenser is a web client, that has around 250 real google accounts (inclusive of all servers), it distributes the AuthToken to anyone how makes a request to it in a defined format.

So basically all dispensers have the email-AASToken pairs on the server, when a user makes a request, the server logs in to google using available accounts, generates an authentication token and this token is given to the user.

All the dispensers are configured to use dummy device profiles, default : Xiaomi Mi5.

(Why Xiaomi? Because I had this device when I first started android development.)

What is an AuthToken?

In simple terms, it's a token that lets you access PlayStore service.

There are other complementary tokens required to make the API work, but that's done via Aurora Store and not related to Dispensers.

Why does Aurora Store always prompt "Session-expired"?

There are multiple things that may cause it:

  • Multiple users are logged in using the same dummy account provide by the dispenser, in different geographic locations.

  • Google enforces a limit of approximately 12 concurrent active login sessions (through observations, not officially sourced). Once this limit is exceeded, older sessions are invalidated.

  • Google also has "rate-limit" policies on the usage of the API, so if it detects overuse of the API, it just invalidates the authentication token.

Why am I not able to log in anonymously / I'm able to log in on device A and not on device B ?

There may be multiple reasons:

  • Network configuration - make sure Aurora Store has access to internet.

  • Network filter - make sure you haven't blacklisted Cloudflare all the dispenser are behind Cloudflare, so if its DNS is blocked, you can't reach dispensers.

  • Tor connections or Orbot setup - again Cloudflare has some weird issues with TOR setup, I'm looking into it.

How do I create an account?

  • Head to the Google Signup Page here.

  • Enter account details:

    • You may choose to fill in random form values.

    • Be nice & DO NOT fill offensive data.

    • Choose a strong password, try Genratr.

  • Do not fill in phone numbers & backup emails:

    • If a phone number is mandatory, change network or use a VPN.

    • If backup email is mandatory, fill in aurora.oss.backup@gmail.com.

How do I generate AAS Token?

  • Download & Install Authenticator App from Gitlab.

  • Open Authenticator, fill in your email & password for the newly created account

  • You will be asked to accept the Google TOS.

  • Once TOS is accepted, it will generate an AAS token for you

How to share an account with Aurora Account Pool?

  • Create a new account

  • Generate the AAS Token

  • Share the Email + AAS Token (no password required) with the Aurora OSS Team, share:

    • directly to dev either via Telegram or E-mail.

    • with team (admins & mods) via Telegram.

PreviousGenerating accountsNextContribution

Last updated

Was this helpful?