Obtain Mi Home device token - by @Maxmudjon
Use any of these methods to obtain the device token for the supported miio devices.
Use one of these methods to obtain the device token for devices that hide their tokens after setup in the Mi Home App (like the Mi Robot Vacuum Cleaner with firmware 3.3.9_003077 or higher). This is usually the case for most Mi Home devices. The latest versions of the Mi Home smartphone app dont hold the token anymore so before you begin with any of these methods you will need to install an older version of the smartphone app. Version 5.0.19 works for sure with the 1st gen Vacuum Robot, for the 2nd gen (S50) you should try version 3.3.9_5.0.30. Android users can find older version of the app here.
- Setup your Android device with the Mi Home app version 5.0.19 or lower
- Install aSQLiteManager on your phone
- Use a file browser with granted root privilege and browse to /data/data/com.xiaomi.smarthome/databases/
- Copy miio2.db to an accessable location
- Open your copy of miio2.db with aSQLiteManager and execute the query "select token from devicerecord where localIP is '192.168.0.1'" where you replace the IP address with the IP address of the device you want to get the token from. It will show you the 32 character device token for your Mi Home device.
This method will only work when you install the Mi Home app version v5.4.54. You can find it here. It looks like Xiaomi made a mistake in this app version where the log file written to internal memory exposes the device tokens of your Xiaomi miio devices.
- Setup your Android device with the Mi Home app version 5.4.54
- Log in with you Xiaomi account
- Use a file explorer to navigate to /sdcard/SmartHome/logs/Plug_Devicemanager/
- Look for a log file named yyyy-mm-dd.txt and open it with a file editor
- Search for a string similar to this with you device name and token
{"did":"117383849","token":"90557f1373xxxxxxx8314a74d547b5","longitude":"x","latitude":"y","name":"Mi Robot Vacuum","pid":"0","localip":"192.168.88.68","mac":"40:31:3C:AA:BB:CC","ssid":"Your AP Name","bssid":"E4:8D:8C:EE:FF:GG","parent_id":"","parent_model":"","show_mode":1,"model":"rockrobo.vacuum.v1","adminFlag":1,"shareFlag":0,"permitLevel":16,"isOnline":true,"desc":"Zoned cleanup","extra":{"isSetPincode":0,"fw_version":"3.3.9_003460","needVerifyCode":0,"isPasswordEncrypt":0},"event":{"event.back_to_dock":"{\"timestamp\":1548817566,\"value\":[0]}
- Copy the token from this string and you are done.
- Setup your Android device with the Mi Home app
- Enable developer mode and USB debugging on your phone and connect it to your computer
- Get the ADB tool
- for Windows: https://developer.android.com/studio/releases/platform-tools.html
- for Mac:
brew install adb
- Create a backup of the Mi Home app:
- for Windows:
.\adb backup -noapk com.xiaomi.smarthome -f mi-home-backup.ab - for Mac:
adb backup -noapk com.xiaomi.smarthome -f mi-home-backup.ab
- for Windows:
- On your phone you must confirm the backup. Do not enter any password and press button to make the backup
- (Windows Only) Get ADB Backup Extractor and install it: https://sourceforge.net/projects/adbextractor/
- Extract all files from the backup on your computer:
- for Windows:
java.exe -jar ../android-backup-extractor/abe.jar unpack mi-home-backup.ab backup.tar - for Mac & Unix:
( printf "\x1f\x8b\x08\x00\x00\x00\x00\x00" ; tail -c +25 mi-home-backup.ab) | tar xfvz -
- for Windows:
- Unzip the ".tar" file
- Open /com.xiaomi.smarthome/db/miio2.db with a SQLite browser (for instance http://sqlitebrowser.org/)
- Execute the query "select token from devicerecord where localIP is '192.168.0.1'" where you replace the IP address with the IP address of the Mi Home device you want to get the token from. It will show you the 32 character device token for your Mi Home device.
- Use the steps from above but install Java and use backup extractor to extract the encrypted backup.
$ java -jar abe-all.jar unpack mi-home-backup.ab unpack mi-home-backup.tar
This backup is encrypted, please provide the password
Password:
# extract without header trick
$ tar -zxf mi-home-backup.tar
# db file is accessible
$ ls apps/com.xiaomi.smarthome/db/
geofencing.db google_app_measurement.db miio.db miio2.db mistat.db
geofencing.db-journal google_app_measurement.db-journal miio.db-journal miio2.db-journal mistat.db-journal
- Setup your iOS device with the Mi Home app
- Create an unencrypted backup of your iOS device on your computer using iTunes. In case you are unable to disable encryption you probably have a profile preventing this that enforces certain security policies (like work related accounts). Delete these profiles or use another iOS device to continu.
- Install iBackup Viewer from here (another tool that was suggested can be found here).
- Navigate to your BACKUPS and find the name of your iOS device in the list. Open this backup by clicking the triangle in front of it and then click on raw data.
- Sort the view by name and find the folder com.xiaomi.mihome and highlight it (it's somewhere at the end). After highlighting it click on the cockwheel above the results and select "Save selected files" from here and choose a location to save the files.
- Navigate to the com.xiaomi.mihome folder which you just saved somewhere and inside this folder navigate to the /Documents/ subfolder. In this folder there is a file named _mihome.sqlite where your userid is specific for your account.
- Open this file with a SQLite browser (for instance http://sqlitebrowser.org/)
- Execute the query "select ZTOKEN from ZDEVICE where ZLOCALIP is '192.168.0.1'" where you replace the IP address with the IP address of the Mi Home device you want to get the token from. It will show you the 32 character device token for your Mi Home device.
- The latest Mi Home app store the tokens encrypted into a 96 character key and require an extra step to decode this into the actual token. Visit this website and enter the details as shown below:
** Input type: text
- Input text (hex): your 96 character key
- Selectbox Plaintext / Hex: Hex
- Function: AES
- Mode: ECB
- Key (hex): 00000000000000000000000000000000
- Selectbox Plaintext / Hex: Hex
- Hit the decrypt button. Your token are the first two lines of the right block of code. These two lines should contain a token of 32 characters and should be the correct token for your device.
- If this tutorial did not work for you, here is another that might work.
- Setup your iOS device with the Mi Home app
- Use something like Forklift sFTP to connect to your iOS device and copy this file to your computer: /var/mobile/Containers/Data/Application/[UUID]/Documents/USERID_mihome.sqlite (where UUID is a specific number for your device)
- username: root
- IP address: your phones IP address
- password: alpine (unless you changed it something else)
- Open this file with a SQLite browser (for instance http://sqlitebrowser.org/)
- Execute the query "select ZTOKEN from ZDEVICE where ZLOCALIP is '192.168.0.1'" where you replace the IP address with the IP address of the Mi Home device you want to get the token from. It will show you the 32 character device token for your Mi Home device.
- The latest Mi Home app store the tokens encrypted into a 96 character key and require an extra step to decode this into the actual token. Visit this website and enter the details as shown below:
- Input type: text
- Input text (hex): your 96 character key
- Selectbox Plaintext / Hex: Hex
- Function: AES
- Mode: ECB
- Key (hex): 00000000000000000000000000000000
- Selectbox Plaintext / Hex: Hex
- Hit the decrypt button. Your token are the first two lines of the right block of code. These two lines should contain a token of 32 characters and should be the correct token for your device.