You can install our site as a web app on your iOS device by utilizing the Add to Home Screen feature in Safari. Please see this thread for more details on this.
Note: This feature may not be available in some browsers.
I recently booked an SC service visit to change filters/check brake fluid etc at 2 years.I've always been asked to disable P2D when I've gone to a service centre, but I've heard of other people saying that they've turned up and Tesla have just driven the car anyway.
And invest in tin foil.And get off the internet...
With a token your car can be located, unlocked, and driven even if remote start is disabled (seems to be a bug according to the facebook group) and pin to drive is on. A token is something Tesla manage. I guess they could do it in a way where they had no control over it (the car issues the token and authenticates it with a private/public key only you and the car know, and that would be dandy until someone locked themselves out of the car and there was no way for Tesla to address. I'm less worried about Tesla, I'm more concerned with how many people sign up to Teslafi or one of the other apps without thinking.
With a token your car can be located, unlocked, and driven even if remote start is disabled (seems to be a bug according to the facebook group) and pin to drive is on. A token is something Tesla manage. I guess they could do it in a way where they had no control over it (the car issues the token and authenticates it with a private/public key only you and the car know, and that would be dandy until someone locked themselves out of the car and there was no way for Tesla to address. I'm less worried about Tesla, I'm more concerned with how many people sign up to Teslafi or one of the other apps without thinking.
Tesla issue a token that never expires (I think technically it has a 2 year expiry) unless you change your password. Once issued you can share, use on any 3rd party app etc and as the owner of the car you’ve no way of tracking its use.Well a token is something the authentication algorithm generates in response to a successful client handshake / auth, and then is used to access API services from the client. Tokens are generally regularly refreshed in the background eg the api may require a token to have validity in the last 5 mins.
So less something Tesla manage and more a standard approach to authentication
And dump your phone, credit cards, license, insurance, bank account and only deal in cashAnd get off the internet...
Tesla issue a token that never expires (I think technically it has a 2 year expiry)
But wear gloves when handling the cashAnd dump your phone, credit cards, license, insurance, bank account and only deal in cash
Tesla issue a refresh token that doesn't expire and a normal use api token that does quite quickly as you suggest, the problem is the refresh token can generate a new api token via one extra step, so all these websites/apps etc like teslamate, teslafi etc use the refresh token to just keep creating new api tokens whenever they need them making the expiry pretty pointlessCripes, that's ridiculous if accurate. A lot of systems issue tokens that last about a week!
Tesla issue a refresh token that doesn't expire and a normal use api token that does quite quickly as you suggest, the problem is the refresh token can generate a new api token via one extra step, so all these websites/apps etc like teslamate, teslafi etc use the refresh token to just keep creating new api tokens whenever they need them making the expiry pretty pointless
Only what I’ve read and had a little dabble withSounds like you know (what I'm guessing is) OAuth much better than me