curl提交登陆信息遇到验证码问题-PHP Tutorial-php.cn

Home

Backend Development

PHP Tutorial

curl提交登陆信息遇到验证码问题

WBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWB

Jun 06, 2016 pm 08:09 PM

php

验证码，目前是找到URL，在前端网页上直接显示，然后手动输入。
在网页上用AJAX提交登陆信息可以正确返回。
我将同样的组合好的信息，传入后台PHP文件中，用curl提交，但每次都报验证码错误。
感觉起来好像是在php中提交又刷新了一次验证码，请问这个需要怎么解决？

借用了ty0716的代码试了一下，还是有一些问题，不明白要怎么处理。
直接取验证码地址，没有cookie保存。用登陆页面的地址，没办法取验证码来识别。

define('SCRIPT_ROOT',dirname(__FILE__).'/');
include "code.php";

function send($loginUrl, $cookieFile){
    
    // $name = $_POST['name'];
    // $idcard = $_POST['idcard'];
    // $pw = $_POST['pw'];
    // $code = $_POST['code'];
    $code = getCode('http://www.xxx.com/Num.jsp');

    header("Content-Type: text/html;charset=utf-8");
    $post_data = "".$code;

    return post($loginUrl, $post_data, $cookieFile);
}


function getCode($captchaUrl, $cookieFile){

    $captchaString = get($captchaUrl, $cookieFile);
    $tempCaptchaFile = SCRIPT_ROOT. date('YmdHis') . '.jpg';
    file_put_contents($tempCaptchaFile, $captchaString);
    $ocr = new code($tempCaptchaFile);
    $captcha = $ocr->getCode();
    echo $captcha;
    return $captcha;
}


function get($url, $cookie_file, $isCookiesSave = false)
{
    // 初始化
    $curl = curl_init($url);
    $header = array();
    $header[] = 'User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36';
    curl_setopt($curl, CURLOPT_HTTPHEADER, $header);
    // 不输出header头信息
    curl_setopt($curl, CURLOPT_HEADER, 0);
    if ($isCookiesSave) {
        curl_setopt($curl, CURLOPT_COOKIEJAR, $cookie_file);
    } else {
        curl_setopt($curl, CURLOPT_COOKIEFILE, $cookie_file);
    }
    // 保存到字符串而不是输出
    curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
    // 是否抓取跳转后的页面
    curl_setopt($curl, CURLOPT_FOLLOWLOCATION, 1);
    $info = curl_exec($curl);
    curl_close($curl);
    return $info;
}

function post($url, $data, $cookie_file)
{
    // 初始化
    $curl = curl_init($url);
    $header = array();
    $header[0] = 'User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36';
    curl_setopt($curl, CURLOPT_HTTPHEADER, $header);
    // 不输出header头信息
    curl_setopt($curl, CURLOPT_HEADER, 0);
    // 保存到字符串而不是输出
    curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
    curl_setopt($curl, CURLOPT_COOKIEFILE, $cookie_file);
    // post数据
    curl_setopt($curl, CURLOPT_POST, 1);
    // 请求数据
    curl_setopt($curl, CURLOPT_POSTFIELDS, $data);
    // 是否抓取跳转后的页面
    curl_setopt($curl, CURLOPT_FOLLOWLOCATION, 1);
    $response = curl_exec($curl);
    curl_close($curl);
    return $response;
}

回复内容：

借用了ty0716的代码试了一下，还是有一些问题，不明白要怎么处理。
直接取验证码地址，没有cookie保存。用登陆页面的地址，没办法取验证码来识别。

define('SCRIPT_ROOT',dirname(__FILE__).'/');
include "code.php";

function send($loginUrl, $cookieFile){
    
    // $name = $_POST['name'];
    // $idcard = $_POST['idcard'];
    // $pw = $_POST['pw'];
    // $code = $_POST['code'];
    $code = getCode('http://www.xxx.com/Num.jsp');

    header("Content-Type: text/html;charset=utf-8");
    $post_data = "".$code;

    return post($loginUrl, $post_data, $cookieFile);
}


function getCode($captchaUrl, $cookieFile){

    $captchaString = get($captchaUrl, $cookieFile);
    $tempCaptchaFile = SCRIPT_ROOT. date('YmdHis') . '.jpg';
    file_put_contents($tempCaptchaFile, $captchaString);
    $ocr = new code($tempCaptchaFile);
    $captcha = $ocr->getCode();
    echo $captcha;
    return $captcha;
}


function get($url, $cookie_file, $isCookiesSave = false)
{
    // 初始化
    $curl = curl_init($url);
    $header = array();
    $header[] = 'User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36';
    curl_setopt($curl, CURLOPT_HTTPHEADER, $header);
    // 不输出header头信息
    curl_setopt($curl, CURLOPT_HEADER, 0);
    if ($isCookiesSave) {
        curl_setopt($curl, CURLOPT_COOKIEJAR, $cookie_file);
    } else {
        curl_setopt($curl, CURLOPT_COOKIEFILE, $cookie_file);
    }
    // 保存到字符串而不是输出
    curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
    // 是否抓取跳转后的页面
    curl_setopt($curl, CURLOPT_FOLLOWLOCATION, 1);
    $info = curl_exec($curl);
    curl_close($curl);
    return $info;
}

function post($url, $data, $cookie_file)
{
    // 初始化
    $curl = curl_init($url);
    $header = array();
    $header[0] = 'User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36';
    curl_setopt($curl, CURLOPT_HTTPHEADER, $header);
    // 不输出header头信息
    curl_setopt($curl, CURLOPT_HEADER, 0);
    // 保存到字符串而不是输出
    curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
    curl_setopt($curl, CURLOPT_COOKIEFILE, $cookie_file);
    // post数据
    curl_setopt($curl, CURLOPT_POST, 1);
    // 请求数据
    curl_setopt($curl, CURLOPT_POSTFIELDS, $data);
    // 是否抓取跳转后的页面
    curl_setopt($curl, CURLOPT_FOLLOWLOCATION, 1);
    $response = curl_exec($curl);
    curl_close($curl);
    return $response;
}

你在第一次获取页面的时候，要保存cookie，然后把你的登录信息、验证码，连着那个cookie一起post过去。如果你直接post，你的验证码永远对应的都是上一次的验证码

看了下,这样的验证码可以做个验证码识别,参考我的一篇文章:https://segmentfault.com/a/1190000004361370

你需要保证提交post的session_id与验证码的session_id一致,否则就是验证码错误了。

验证码由你的程序来输出,

用php获取验证码后输出,你再去调用一次要么是过期的验证码,要么就不是你这个session_id的验证码了

找到验证码的URL，在提交的时候请求一个验证码，听过识别，或者是手动输入

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

PHP Dependency Injection Container: A Quick StartMay 13, 2025 am 12:11 AM

APHPDependencyInjectionContainerisatoolthatmanagesclassdependencies,enhancingcodemodularity,testability,andmaintainability.Itactsasacentralhubforcreatingandinjectingdependencies,thusreducingtightcouplingandeasingunittesting.

Dependency Injection vs. Service Locator in PHPMay 13, 2025 am 12:10 AM

Select DependencyInjection (DI) for large applications, ServiceLocator is suitable for small projects or prototypes. 1) DI improves the testability and modularity of the code through constructor injection. 2) ServiceLocator obtains services through center registration, which is convenient but may lead to an increase in code coupling.

PHP performance optimization strategies.May 13, 2025 am 12:06 AM

PHPapplicationscanbeoptimizedforspeedandefficiencyby:1)enablingopcacheinphp.ini,2)usingpreparedstatementswithPDOfordatabasequeries,3)replacingloopswitharray_filterandarray_mapfordataprocessing,4)configuringNginxasareverseproxy,5)implementingcachingwi

PHP Email Validation: Ensuring Emails Are Sent CorrectlyMay 13, 2025 am 12:06 AM

PHPemailvalidationinvolvesthreesteps:1)Formatvalidationusingregularexpressionstochecktheemailformat;2)DNSvalidationtoensurethedomainhasavalidMXrecord;3)SMTPvalidation,themostthoroughmethod,whichchecksifthemailboxexistsbyconnectingtotheSMTPserver.Impl

How to make PHP applications fasterMay 12, 2025 am 12:12 AM

TomakePHPapplicationsfaster,followthesesteps:1)UseOpcodeCachinglikeOPcachetostoreprecompiledscriptbytecode.2)MinimizeDatabaseQueriesbyusingquerycachingandefficientindexing.3)LeveragePHP7 Featuresforbettercodeefficiency.4)ImplementCachingStrategiessuc

PHP Performance Optimization Checklist: Improve Speed NowMay 12, 2025 am 12:07 AM

ToimprovePHPapplicationspeed,followthesesteps:1)EnableopcodecachingwithAPCutoreducescriptexecutiontime.2)ImplementdatabasequerycachingusingPDOtominimizedatabasehits.3)UseHTTP/2tomultiplexrequestsandreduceconnectionoverhead.4)Limitsessionusagebyclosin

PHP Dependency Injection: Improve Code TestabilityMay 12, 2025 am 12:03 AM

Dependency injection (DI) significantly improves the testability of PHP code by explicitly transitive dependencies. 1) DI decoupling classes and specific implementations make testing and maintenance more flexible. 2) Among the three types, the constructor injects explicit expression dependencies to keep the state consistent. 3) Use DI containers to manage complex dependencies to improve code quality and development efficiency.

PHP Performance Optimization: Database Query OptimizationMay 12, 2025 am 12:02 AM

DatabasequeryoptimizationinPHPinvolvesseveralstrategiestoenhanceperformance.1)Selectonlynecessarycolumnstoreducedatatransfer.2)Useindexingtospeedupdataretrieval.3)Implementquerycachingtostoreresultsoffrequentqueries.4)Utilizepreparedstatementsforeffi

See all articles

Hot AI Tools

Undresser.AI Undress

AI-powered app for creating realistic nude photos

AI Clothes Remover

Online AI tool for removing clothes from photos.

Undress AI Tool

Undress images for free

Clothoff.io

AI clothes remover

Video Face Swap

Swap faces in any video effortlessly with our completely free AI face swap tool!

Hot Article

How to fix KB5055612 fails to install in Windows 10?

3 weeks agoByDDD

Roblox: Grow A Garden - Complete Mutation Guide

3 weeks agoByDDD

Roblox: Bubble Gum Simulator Infinity - How To Get And Use Royal Keys

3 weeks agoBy尊渡假赌尊渡假赌尊渡假赌

Mandragora: Whispers Of The Witch Tree - How To Unlock The Grappling Hook

3 weeks agoBy尊渡假赌尊渡假赌尊渡假赌

Nordhold: Fusion System, Explained

3 weeks agoBy尊渡假赌尊渡假赌尊渡假赌

Hot Tools

VSCode Windows 64-bit Download

A free and powerful IDE editor launched by Microsoft

SAP NetWeaver Server Adapter for Eclipse

Integrate Eclipse with SAP NetWeaver application server.

SecLists

SecLists is the ultimate security tester's companion. It is a collection of various types of lists that are frequently used during security assessments, all in one place. SecLists helps make security testing more efficient and productive by conveniently providing all the lists a security tester might need. List types include usernames, passwords, URLs, fuzzing payloads, sensitive data patterns, web shells, and more. The tester can simply pull this repository onto a new test machine and he will have access to every type of list he needs.