Check that Hetzner returns 2FA info message

[nh2]

I've put in a support ticket with Hetzner that instead of 401 - Unauthorized they should return a more descriptive error code when using the API fails because 2-factor auth is enabled.

Their reply:

thank you for your suggestion. We will add a info about 2fa in the error message.

We should check soon if that is really returned.

[aszlig]

We should check soon if that is really returned.

@nh2: Did they change it?

[nh2]

I have not checked it yet, this is the last message I got on the topic.

[aneagoe]

If 2fa is enabled on account, is there a way to leverage the API?

[markuman]

That's not possible and not necessary. Because the requested username and password it not the one you're using for sign-in in your hrobot account.

You must generate a special user for hrobot webservice usage. It's very likey to API Key and Secret that are generated for other services ...

To be able to use the interface, a web service user is required. You can create this user in Robot via the user menu in the upper right corner under "Settings" -> "Web service and app settings".

https://robot.hetzner.com/doc/webservice/en.html#preface

[nh2]

You must generate a special user for hrobot webservice usage. It's very likey to API Key and Secret that are generated for other services ...

@markuman I recently learned that as well.

But was it always like that? I'm reasonably sure that I could use the main Robot account in the past.