好的,为了使它在这里起作用,需要做的是-
- 创建一个新会话并获取关联的令牌
- 传递用户名,密码和令牌以创建登录会话
- 获取登录会话的新cookie值
- 将cookie传输到浏览器
这是完成所有这些所需的代码:
<?php$uname = $_POST['username'];$upswd = $_POST['password'];$url = "http://joomla website.com";$ch = curl_init();curl_setopt($ch, CURLOPT_URL, $url );curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE );curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE );curl_setopt($ch, CURLOPT_cookieSESSION, TRUE );curl_setopt($ch, CURLOPT_cookieJAR, realpath('./cookie.txt'));curl_setopt($ch, CURLOPT_cookieFILE, realpath('./cookie.txt'));curl_setopt($ch, CURLOPT_HEADER, TRUE );$ret = curl_exec($ch);if (!preg_match('/name="([a-zA-z0-9]{32})"/', $ret, $spoof)) { preg_match("/name='([a-zA-z0-9]{32})'/", $ret, $spoof);}// POST fields$postfields = array();$postfields['username'] = urlenpre($uname);$postfields['passwd'] = urlenpre($upswd);$postfields['option'] = 'com_user';$postfields['task'] = 'login';$postfields[$spoof[1]] = '1';curl_setopt($ch, CURLOPT_POST, 1);curl_setopt($ch, CURLOPT_POSTFIELDS, $postfields);$ret = curl_exec($ch);// Get logged in cookie and pass it to the browserpreg_match('/^Set-cookie: (.*?);/m', $ret, $m);$cookie=explode('=',$m[1]);setcookie($cookie[0], $cookie[1]);?>只要脚本中使用的URL在页面上具有登录表单,该方法就可以在任何Joomla网站上使用。一旦运行了该脚本,您就应该能够访问该网站并登录。
