无限星辰工作室-客户无限互联网动力之源

标题: 模拟登录discuz!和发帖动作 [打印本页]

---

作者: crx349    时间: 2020-2-21 00:05
标题: 模拟登录discuz!和发帖动作
一个模拟发帖例子：（未测试Discuz!x3.4兼容性）

1. $discuz_url = 'http://127.0.0.1/discuz/';//论坛地址
   
2. $login_url =$discuz_url . 'member.php?mod=logging&action=login'; //登录页地址
   
3. $post_fields = array();
   
4. //以下两项不需要修改
   
5. $post_fields['loginfield'] = 'username';
   
6. $post_fields['loginsubmit'] = 'true';
   
7. //用户名和密码，必须填写
   
8. $post_fields['username'] = 'tianxin';
   
9. $post_fields['password'] = '111111';
   
10. //安全提问
    
11. $post_fields['questionid'] = 0;
    
12. $post_fields['answer'] = '';
    
13. //@todo验证码
    
14. $post_fields['seccodeverify'] = '';
    
15. 
    
16. //获取表单FORMHASH
    
17. $ch = curl_init($login_url);
    
18. curl_setopt($ch, CURLOPT_HEADER, 0);
    
19. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    
20. $contents = curl_exec($ch);
    
21. curl_close($ch);
    
22. preg_match('/<input\s*type="hidden"\s*name="formhash"\s*value="(.*?)"\s*\/>/i', $contents, $matches);
    
23. if(!empty($matches)) {
    
24. &#160;&#160;&#160;&#160;$formhash = $matches[1];
    
25. } else {
    
26. &#160;&#160;&#160;&#160;die('Not found the forumhash.');
    
27. }
    
28. 
    
29. //POST数据，获取COOKIE,cookie文件放在网站的temp目录下
    
30. $cookie_file = tempnam('./temp','cookie');
    
31. 
    
32. $ch = curl_init($login_url);
    
33. curl_setopt($ch, CURLOPT_HEADER, 0);
    
34. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    
35. curl_setopt($ch, CURLOPT_POST, 1);
    
36. curl_setopt($ch, CURLOPT_POSTFIELDS, $post_fields);
    
37. curl_setopt($ch, CURLOPT_COOKIEJAR, $cookie_file);
    
38. curl_exec($ch);
    
39. curl_close($ch);
    
40. 
    
41. //取到了关键的cookie文件就可以带着cookie文件去模拟发帖,fid为论坛的栏目ID
    
42. $send_url = $discuz_url."post.php?action=newthread&fid=2";
    
43. 
    
44. $ch = curl_init($send_url);
    
45. curl_setopt($ch, CURLOPT_HEADER, 0);
    
46. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    
47. curl_setopt($ch, CURLOPT_COOKIEFILE, $cookie_file);
    
48. $contents = curl_exec($ch);
    
49. curl_close($ch);
    
50. 
    
51. //这里的hash码和登陆窗口的hash码的正则不太一样，这里的hidden多了一个id属性
    
52. preg_match('/<input\s*type="hidden"\s*name="formhash"\s*id="formhash"\s*value="(.*?)"\s*\/>/i', $contents, $matches);
    
53. if(!empty($matches)) {
    
54. &#160;&#160;&#160;&#160;$formhash = $matches[1];
    
55. } else {
    
56. &#160;&#160;&#160;&#160;die('Not found the forumhash.');
    
57. }
    
58. 
    
59. $post_data = array();
    
60. //帖子标题
    
61. $post_data['subject'] = 'test2';
    
62. //帖子内容
    
63. $post_data['message'] = 'test2';
    
64. $post_data['topicsubmit'] = "yes";
    
65. $post_data['extra'] = '';
    
66. //帖子标签
    
67. $post_data['tags'] = 'test';
    
68. //帖子的hash码，这个非常关键！假如缺少这个hash码，discuz会警告你来路的页面不正确
    
69. $post_data['formhash']=$formhash;
    
70. 
    
71. $ch = curl_init($send_url);
    
72. curl_setopt($ch, CURLOPT_REFERER, $send_url);&#160;&#160;&#160;&#160;&#160;&#160;&#160;//伪装REFERER
    
73. curl_setopt($ch, CURLOPT_HEADER, 0);
    
74. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 0);
    
75. curl_setopt($ch, CURLOPT_COOKIEFILE, $cookie_file);
    
76. curl_setopt($ch, CURLOPT_POST, 1);
    
77. curl_setopt($ch, CURLOPT_POSTFIELDS, $post_data);
    
78. $contents = curl_exec($ch);
    
79. curl_close($ch);
    
80. 
    
81. //清理cookie文件
    
82. unlink($cookie_file);
    
83. 
    

复制代码

---

欢迎光临 无限星辰工作室-客户无限互联网动力之源 (https://www.xmspace.net/)

Powered by Discuz! X3.4