HTML帖子请求(登录表单)

时间:2016-04-21 16:37:33

标签: java c# post login request

我需要登录网站。我尝试通过发送正确的POST请求来存档它。我可以收集所需的数据(两个安全令牌和一个cookie),这似乎没有任何问题。但最终的登录过程不起作用 - 但遗憾的是:我不知道在哪里可以找到问题,因为服务器只是将我重定向到登录页面而没有任何提示。 这是我的方法的当前状态:

URL url = new URL("SERVER");
Map<String, Object> params = new LinkedHashMap<>();
params.put("security_token", security_token);
params.put("login_ticket", login_ticket);
params.put("loginname", "USERNAME");
params.put("password", "PASSWORD");
params.put("login", "Login");

StringBuilder postData = new StringBuilder();
for (Map.Entry<String, Object> param : params.entrySet()) {
    if (postData.length() != 0) postData.append('&');
    postData.append(URLEncoder.encode(param.getKey(), "UTF-8"));
    postData.append('=');
    postData.append(URLEncoder.encode(String.valueOf(param.getValue()), "UTF-8"));
}
byte[] postDataBytes = postData.toString().getBytes("UTF-8");

HttpURLConnection conn = (HttpURLConnection) url.openConnection();


conn.setRequestProperty("Cookie", cookie);


conn.setInstanceFollowRedirects(true);
conn.setRequestMethod("POST");
conn.setRequestProperty("Content-Type", "application/x-www-form-urlencoded");
conn.setRequestProperty("Content-Length", String.valueOf(postDataBytes.length));
conn.setDoOutput(true);
conn.getOutputStream().write(postDataBytes);

Reader in = new BufferedReader(new InputStreamReader(conn.getInputStream(), "UTF-8"));

Map<String, List<String>> headerFields = conn.getHeaderFields();

我已经尝试用C#解决这个问题。下面的代码工作正常,所以我只是试图将它“翻译”成java。

string cookie = "COOKIEVALUE";
request.Host = new Uri("SERVER");
//request.PostData.Add("Cookie", cookies[0]);
request.PostData.Add("loginname", "USERNAME");
request.PostData.Add("password", "PW");
request.PostData.Add("login_ticket","269ba20ad5a6f1a0219a3a333d3a5997");
request.PostData.Add("security_token", "ZHfyszNSuMrN8Xw80Pudka+5cZB20j+or+JWXCWzVPg=");

request.ContentType = "application/x-www-form-urlencoded";
try
{
    request.SendRequest(cookie);
    using (var response = request.GetResponse())
    {
        if (response == null)
            throw new WebException();
        using (var stream = response.GetResponseStream())
        {
            using (var streamReader = new StreamReader(stream))
            {
                string result = streamReader.ReadToEnd();

            }
        }
    }
}
catch (WebException)
{
    throw;
}

...

和SendRequest方法的代码

public void SendRequest(string cookieValue,byte[] buffer = null)
{
    _webRequest = HttpWebRequest.CreateHttp(Host);
    _webRequest.Method = "POST";
    _webRequest.ContentType = ContentType;

    _webRequest.CookieContainer = new CookieContainer();
    var cookie = new Cookie("Seminar_Session", cookieValue);
    cookie.Domain = Host.Host;
    _webRequest.CookieContainer.Add(cookie);

    string postString = "";
    foreach (var item in PostData)
    {
        postString += item.Key + "=" + item.Value + "&";
    }

    if (postString.Length > 0)
        postString = postString.Remove(postString.Length - 1, 1);

    byte[] postBuffer = System.Text.Encoding.UTF8.GetBytes(postString);

    _webRequest.ContentLength = postBuffer.Length;
    if (buffer != null) _webRequest.ContentLength += buffer.Length;

    using (var requestStream = _webRequest.GetRequestStream())
    {
        requestStream.Write(postBuffer, 0, postBuffer.Length);
        if (buffer != null) requestStream.Write(buffer, 0, buffer.Length);
        requestStream.Flush();
    }
}

现在我正在努力让Java代码正常工作。有什么我明显错了吗?遗憾的是,我无法继续使用C#代码,现在需要一个Java工作解决方案。那么,如何使用无效的java版本来解决这个问题呢?

编辑:最后我使用了apache组件来处理这些请求。

    String security_token;
    String login_ticket;

    //setup configuration
    RequestConfig globalConfig = RequestConfig.custom().setCookieSpec(CookieSpecs.BEST_MATCH).build();

    HttpClientContext context = HttpClientContext.create();
    context.setCookieStore(_cookieStore);

    //send request to get login data


    Document source;
    security_token = "TOKEN";
    login_ticket = "TICKET";
    HttpPost httppost = new HttpPost("https://www.studip.uni-goettingen.de/");

    // Request parameters and other properties.
    List<NameValuePair> params = new ArrayList<NameValuePair>(2);
    params.add(new BasicNameValuePair("security_token", security_token));
    params.add(new BasicNameValuePair("login_ticket", login_ticket));
    params.add(new BasicNameValuePair("loginname", _credentials.getUserName()));
    params.add(new BasicNameValuePair("password", _credentials.getPassword()));
    httppost.setEntity(new UrlEncodedFormEntity(params, "UTF-8"));

    //Execute the login post request and get the response.
    HttpResponse response = httpClient.execute(httppost, context);
    HttpEntity entity = response.getEntity();

1 个答案:

答案 0 :(得分:0)

他们正在使用一些哈希函数来生成这些安全令牌。在大多数情况下,这些散列使用完整的形式(包括其中的字段)来制作散列。你的问题可能是你没有使用它,所以哈希不会是一样的。如果您重新加载页面,您将看到login_ticket因同样的原因而发生变化。

相关问题
最新问题