[英]PHP cURL redirects to login page
我試圖使用以下PHP代碼繞過“Ubiquiti Networks-CPE”的登錄頁面。 雖然,我的代碼正確保存了cookie信息,但它無法登錄,我被重定向到登錄頁面並顯示錯誤消息:
'無效證件'
來自實際登錄頁面的其他信息
Request URL:https://192.168.179.75/login.cgi Request Method:POST Status Code:302 Found Remote Address:192.168.179.75:443 Response Headers view source Content-Type:text/html Date:Tue, 28 May 2013 18:58:05 GMT Location:/index.cgi Server:lighttpd/1.4.31 Set-cookie:show_security_warning=true Set-cookie:ui_language=en_US; expires=Tuesday, 19-Jan-38 03:14:07 GMT Transfer-Encoding:chunked Request Headers view source Accept:text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8 Accept-Encoding:gzip, deflate, br Accept-Language:en-US,en;q=0.8,en-GB;q=0.6 Cache-Control:max-age=0 Connection:keep-alive Content-Length:332 Content-Type:multipart/form-data; boundary=----WebKitFormBoundaryszePSjmcB2JJIDDa Cookie:last_check=1467001323935; AIROS_SESSIONID=8057f38405a60c6a17f05ef8d759bb42; ui_language=en_US Host:192.168.179.75 Origin:https://192.168.179.75 Referer:https://192.168.179.75/login.cgi Upgrade-Insecure-Requests:1 User-Agent:Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36 Request Payload ------WebKitFormBoundaryszePSjmcB2JJIDDa Content-Disposition: form-data; name="uri" ------WebKitFormBoundaryszePSjmcB2JJIDDa Content-Disposition: form-data; name="username" ubnt ------WebKitFormBoundaryszePSjmcB2JJIDDa Content-Disposition: form-data; name="password" ubnt ------WebKitFormBoundaryszePSjmcB2JJIDDa-
PHP代碼:
<?php
define('USERNAME', 'ubnt');
define('PASSWORD', 'ubnt');
define('USER_AGENT', 'Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36');
$cookie_file_path = str_replace('\\','/', getcwd().'/cookies');
define('COOKIE_FILE', $cookie_file_path);
define('LOGIN_FORM_URL', 'https://192.168.179.75/login.cgi');
define('REQUESTED_URL', 'https://192.168.179.75/status.cgi');
define('LOGIN_ACTION_URL', 'https://192.168.179.75/login.cgi');
$postValues = array(
'username' => USERNAME,
'password' => PASSWORD,
);
$curl = curl_init(LOGIN_FORM_URL);
curl_setopt($curl, CURLOPT_URL, LOGIN_ACTION_URL);
//curl_setopt($curl, CURLOPT_HEADER, 1);
//curl_setopt($curl, CURLOPT_COOKIE, $cookies);
//curl_setopt($curl,CURLOPT_COOKIESESSION,'AIROS_SESSIONID=ae60748359be4bd0468f51a346f4f3b9; last_check=1467001323935; show_security_warning=true; ui_language=en_US');
curl_setopt($curl, CURLOPT_COOKIEJAR, COOKIE_FILE);
curl_setopt($curl, CURLOPT_COOKIEFILE, COOKIE_FILE);
curl_setopt($curl, CURLOPT_POST, true);
//curl_setopt($curl, CURLOPT_CUSTOMREQUEST, "POST");
//Set our post fields / date (from the array above).
//curl_setopt($curl, CURLOPT_POSTFIELDS, http_build_query($postValues));
curl_setopt($curl, CURLOPT_POSTFIELDS,$postValues);
curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($curl, CURLOPT_USERAGENT, USER_AGENT);
curl_setopt($curl, CURLOPT_RETURNTRANSFER, TRUE);
//curl_setopt($curl, CURLOPT_HTTPHEADER, array('REMOTE_ADDR: 192.168.179.75','Content-Type:multipart/form-data; boundary=----WebKitFormBoundaryAbpUbGA4FIs529Z6'));
curl_setopt($curl, CURLOPT_HTTPHEADER, array('Host: 192.168.179.75','Expect: ','Content-Type:multipart/form-data; boundary=----WebKitFormBoundaryAbpUbGA4FIs529Z6'));
curl_setopt($curl, CURLOPT_REFERER, LOGIN_FORM_URL);
$result = curl_exec($curl);
if(curl_errno($curl)){
throw new Exception(curl_error($curl));
}
//curl_setopt($curl, CURLOPT_URL, 'https://192.168.179.75/status.cgi');
//
//curl_setopt($curl, CURLOPT_COOKIEJAR, COOKIE_FILE);
//curl_setopt($curl, CURLOPT_USERAGENT, USER_AGENT);
//curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);
//curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
//$result = curl_exec($curl);
//echo $result;
print_r($result);
curl_close($curl);
?>
設置像邊界一樣的強制邊界boundary=----WebKitFormBoundaryAbpUbGA4FIs529Z6
不起作用。 curl生成它自己使用的邊界。 如果您設置該自定義,POST將最終格式錯誤。 刪除整個自定義Content-Type:
標頭,因為curl會自行完成。 您也不需要像這樣設置Host:
標頭,curl從您使用的URL中提取必要的主機。
登錄頁面可能甚至可能設置您在登錄POST時需要擁有的cookie。 這是一種常見的做法。 要完成這項工作,首先需要獲取登錄頁面並存儲cookie,然后在后續登錄POST中使用它們。
您希望讓curl遵循登錄帖子最有可能發送給您的重定向。 將CURLOPT_FOLLOWLOCATION
為true。
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.