Token validation failed

[kdw4803]

when I call '/api/custom_generate' the error is shown as below

[VanshAnakin]

I think the time limit for hcaptcha is 2 hours and you have to generate a song manually that time to refresh the hcaptcha, if we can automate that then this will not arise

[kdw4803]

I think the time limit for hcaptcha is 2 hours and you have to generate a song manually that time to refresh the hcaptcha, if we can automate that then this will not arise

So, if I keep calling the API every 2 hours, the token will be refreshed and there will be no problem?

[vishu7im]

To temporarily resolve the issue, I need to visit the Suno AI website and use the same API through thereinterface. This refreshes the token and allows my project to function properly for approximately 10 minutes before the error recurs.

[vishu7im]

i was thinking to use puppeteer automation to mimic site behavior to ensure my session validate ,
or anyone have any other solution ,

[yablokoff]

@vishu7im thanks for comments, do you have to imitate exactly the song creation or any type of activity on the Suno website?

[yablokoff]

Answering my own question, to refresh activity you have to specifically create a song via UI, not just log in

[vishu7im]

@yablokoff
I observed the Suno AI site, and the issues are happening because of the CAPTCHA.

When we manually generate music, the Suno site observes our mouse movements and fills the CAPTCHA for us. This CAPTCHA remains active for our session for approximately 10 minutes.

I tried using Puppeteer to automate generating one random piece of music to keep my session active, but I faced two challenges:

1. The 2FA login process, which is difficult to bypass.
2. The Suno AI site detects automation instead of human interaction and provides a CAPTCHA.

This CAPTCHA does not appear when we manually generate music.
The whole issue revolves around hCaptcha. If we can somehow solve or bypass the CAPTCHA, everything will work fine.

[Germey]

Actually SUNO hCaptcha detected not only the captcha result, but also detect the mouse path, clicking behavior, etc. The crack result token contains all of the behavior infos. And SUNO can know if you are a real human according to the final hCaptcha crack token.

So, the only way is you need to totally simulate the human behavior of hCaptcha using browser, otherwise you will always get "This is a fake app....", even though you cracked it.

I have successfully cracked using above solution, and now it works well now, and the result does not contains "This is a fake app anymore".

Also I exposed and provided above API for suno, but paid, just FYI if you are interested:

• API: https://platform.acedata.cloud/services/suno
• Doc: https://platform.acedata.cloud/documents/suno-audios-integration

[007Huang]

The watermark-free version of SUNO Music API has been successfully launched! Supports the latest V4! No This is a fake app! (99% of APIs on the market may have the watermark This is a fake app)

API: https://surl.id/1uHGou0lxy
Documentation: https://surl.id/1uHGou0Iyp

Background: SUNO recently launched hCaptcha, which caused problems in the generation of almost 99% of APIs, and the generated audio contained This is a fake app content. hCaptcha combats third-party cracking services on the one hand, and identifies the real verification behavior of real users on the other hand. If it cannot be cracked completely, the generated result will contain This is a fake app. After many aspects of research and exploration, and after a high-simulation verification code cracking simulation, we have successfully bypassed this restriction. 99% of the services on the market may not have solved this problem. Welcome everyone to test and use it~