PHP:发送http post请求,但“身份验证失败”

时间:2017-10-12 18:50:28

标签: php http-post

我正在尝试登录网站,但收到“身份验证失败”错误,就好像我使用用户名或密码错误一样。传递的参数是正确的,包括用户名和密码,因为我在Java中开发了相同的代码并且它可以工作。发送字段时我犯了错误吗?

$cookies = array();
foreach ($http_response_header as $hdr) {
    if (preg_match('/^Set-Cookie:\s*([^;]+)/', $hdr, $matches)) {
        parse_str($matches[1], $tmp);
        $cookies += $tmp;
    }
}
$cookie= reset($cookies);

$request = array(
    'http' => array(
        'method' => 'POST',
        'timeout' => 0,
        'header'=> "Accept-language: it-IT,it;q=0.8,en-US;q=0.5,en;q=0.3\r\n" .
            "Content-Type: application/x-www-form-urlencoded; charset=utf-8\r\n" .
            "User-Agent:    Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.1.6) Gecko/20091201 Firefox/3.5.6\r\n" .
            "Cookie: ASP.NET_SessionId=".$cookie."\r\n",
        'content' => http_build_query(array(
            '__LASTFOCUS' => '',
            '__EVENTTARGET' => '',
            '__EVENTARGUMENT' => '',
            '__VIEWSTATE' => $viewstate,
            '__VIEWSTATEGENERATOR' => $viewstategenerator,
            'ctl00$hwsid' => $hwsid,
            'ctl00$PageSessionId' => $pagesessionid,
            'ctl00$DefaultUrl' => $defaulturl,
            'ctl00$GenericErrorUrl' => $genericerrorurl,
            'ctl00$PopupElement' => '',
            'ctl00$PollingTimeoutSecs' => $pollingtimeoutsecs,
            'ctl00$bodyContent$txtUser' => $user,
            'ctl00$bodyContent$txtPassword' => $password,
            '__CALLBACKID' => '__Page',
            '__CALLBACKPARAM' => '"hwsid="'.$hwsid.'"&PageSessionId="'.$pagesessionid.'"&DefaultUrl="'.$defaulturl.'"&GenericErrorUrl="'.$genericerrorurl.'"&PopupElement="'.'"&PollingTimeoutSecs="'.$pollingtimeoutsecs.'"&txtUser="'.$user.'"&txtPassword="'.$password,
            '__EVENTVALIDATION' => $eventvalidation,
            'ctl00$bodyContent$btnLogin' => 'Conferma'

        )),
    )
);

$context = stream_context_create($request);
$res= file_get_contents($url, false, $context);
echo htmlentities($res);

用于java的工作代码如下:

cookies = initialResponse.cookies();

                initialResponse = Jsoup.connect(url+"Default.aspx")
                    .data("__LASTFOCUS", "")
                    .data("__EVENTTARGET", "")
                    .data("__EVENTARGUMENT", "")
                    .data("__VIEWSTATE", executionVal)
                    .data("__VIEWSTATEGENERATOR", vv1)
                    .data("ctl00$hwsid", a11)
                    .data("ctl00$PageSessionId", a22)
                    .data("ctl00$DefaultUrl", a33)
                    .data("ctl00$GenericErrorUrl", a44)
                    .data("ctl00$PopupElement", "")
                    .data("ctl00$PollingTimeoutSecs", a66)
                    .data("ctl00$bodyContent$txtUser", user)
                    .data("ctl00$bodyContent$txtPassword", pass)
                    .data("__CALLBACKID", "__Page")
                    .data("__CALLBACKPARAM", "hwsid="+a11+"&PageSessionId="+a22+"&DefaultUrl="+a33+"&GenericErrorUrl="+a44+"&PopupElement="+"&PollingTimeoutSecs="+a66+"&txtUser="+user+"&txtPassword="+pass)
                    .data("__EVENTVALIDATION", ltVal)
                    .data("ctl00$bodyContent$btnLogin", "Conferma") 
                    .cookies(cookies)
                    .userAgent("Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/44.0.2403.157 Safari/537.36")
                    .method(Method.POST)
                    .timeout(0)
                    .execute();
            }catch(UnknownHostException e){
                 JOptionPane.showMessageDialog(null, "No", "Turni", JOptionPane.ERROR_MESSAGE); 
                 System.exit(0);
            } catch (IOException e) {
                e.printStackTrace();
            }

            cookies.putAll(initialResponse.cookies());

            Document doc = null;
            try {
                doc = Jsoup.connect(u)
                  .cookies(cookies)
                  .get();

            } catch (IOException e) {
                e.printStackTrace();
            }

1 个答案:

答案 0 :(得分:0)

我怀疑你是在滥用reset()。它返回第一个数组元素的值。因此,如果您收到多个cookie,您可能会遇到问题。如果您正在寻找特定的cookie,您可以这样做:

// here's what we're looking for
$target = "ASP.NET_SessionId";

// filter the array
$cookies = array_filter(
    $http_response_header,
    function($v) use ($target) {return strpos($v, "Set-Cookie: $target=") === 0;}
);

if (!empty($cookies)) {
    // here we know we only have a single entry in the array
    $cookie = reset($cookies);
    $cookie = preg_replace("/.*=([^;]*)/", "$1", $cookie);
} else {
    // no cookies received!
    $cookie = "";
}

实际上这比它需要的要复杂得多。最简单的方法是在第二次请求中获取所有cookie并将其发回:

$cookies = array_filter(
    $http_response_header,
    function($v) {return strpos($v, "Set-Cookie:") === 0;}
);
$headers = [
    "Accept-language: it-IT,it;q=0.8,en-US;q=0.5,en;q=0.3",
    "Content-Type: application/x-www-form-urlencoded; charset=utf-8",
    "User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.1.6) Gecko/20091201 Firefox/3.5.6",
];
foreach ($cookies as $cookie) {
    $headers[] = preg_replace("/^Set-/", "", $cookie);
}

$request = [
    "http" => [
        "method" => "POST",
        "timeout" => 0,
        "header"=> $headers,
        "content" => "..."
];