我正在尝试使用php curl登录网站,但我不熟悉csrf_token,我在帖子数据中看到我也发送了这个。下面是我的代码,我无法登录。 我的浏览器发送的csrf_token是:
csrf_token = 20131028152953%23%23f31508fbc631e906973451eefe8a88ce1b9270ad&安培;名称=名&安培;密码=通过
$name="name";
$password="pass";
$url="domain.com/login";
$cookie="cookie.txt";
$postdata = "name=".$name."&password=".$password;
$ch = curl_init();
curl_setopt ($ch, CURLOPT_URL, $url);
curl_setopt ($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
curl_setopt ($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.6) Gecko/20070725 Firefox/2.0.0.6");
curl_setopt ($ch, CURLOPT_TIMEOUT, 60);
curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt ($ch, CURLOPT_COOKIEJAR, $cookie);
curl_setopt ($ch, CURLOPT_COOKIEFILE, $cookie);
curl_setopt ($ch, CURLOPT_REFERER, $url);
curl_setopt ($ch, CURLOPT_POSTFIELDS, $postdata);
curl_setopt ($ch, CURLOPT_POST, 1);
$result = curl_exec ($ch);
echo $result;
curl_close($ch);
答案 0 :(得分:0)
我猜csrf_token每次都在改变,你加载网站。您应首先加载网站,登录表单的位置,然后在DOM csrf_token中解析,然后按照问题中的描述进行卷曲。