刚才看论坛中提到新浪登录接口不能用啦 本人来写个免费分享下 经我测试应该能用 希望对需要的朋友有帮助 不行学习参考也行
本规则为登录部分不包含其他 具体功能自己扩展 其中涉及JS脚本 http://login.sina.com.cn/js/sso/ssologin.js
主要对帐号部分加密首先过行URL编码后面为base64位编码 老大已经为我们写好啦 在软件上脚本调试中base64 直接放到常量1中
request.su=sinaSSOEncoder.base64.encode(urlencode(username)) 这个是加密算法 不是脚本别弄错啦
- var base64EncodeChars = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
- var base64DecodeChars = new Array(
- -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
- -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1,
- -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, 62, -1, -1, -1, 63,
- 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, -1, -1, -1, -1, -1, -1,
- -1, 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14,
- 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, -1, -1, -1, -1, -1,
- -1, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40,
- 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, -1, -1, -1, -1, -1);
- function base64encode(str) {
- var out, i, len;
- var c1, c2, c3;
- len = str.length;
- i = 0;
- out = "";
- while(i < len) {
- c1 = str.charCodeAt(i++) & 0xff;
- if(i == len)
- {
- out += base64EncodeChars.charAt(c1 >> 2);
- out += base64EncodeChars.charAt((c1 & 0x3) << 4);
- out += "==";
- break;
- }
- c2 = str.charCodeAt(i++);
- if(i == len)
- {
- out += base64EncodeChars.charAt(c1 >> 2);
- out += base64EncodeChars.charAt(((c1 & 0x3)<< 4) | ((c2 & 0xF0) >> 4));
- out += base64EncodeChars.charAt((c2 & 0xF) << 2);
- out += "=";
- break;
- }
- c3 = str.charCodeAt(i++);
- out += base64EncodeChars.charAt(c1 >> 2);
- out += base64EncodeChars.charAt(((c1 & 0x3)<< 4) | ((c2 & 0xF0) >> 4));
- out += base64EncodeChars.charAt(((c2 & 0xF) << 2) | ((c3 & 0xC0) >>6));
- out += base64EncodeChars.charAt(c3 & 0x3F);
- }
- return out;
- }
- function base64decode(str) {
- var c1, c2, c3, c4;
- var i, len, out;
- len = str.length;
- i = 0;
- out = "";
- while(i < len) {
- /* c1 */
- do {
- c1 = base64DecodeChars[str.charCodeAt(i++) & 0xff];
- } while(i < len && c1 == -1);
- if(c1 == -1)
- break;
- /* c2 */
- do {
- c2 = base64DecodeChars[str.charCodeAt(i++) & 0xff];
- } while(i < len && c2 == -1);
- if(c2 == -1)
- break;
- out += String.fromCharCode((c1 << 2) | ((c2 & 0x30) >> 4));
- /* c3 */
- do {
- c3 = str.charCodeAt(i++) & 0xff;
- if(c3 == 61)
- return out;
- c3 = base64DecodeChars[c3];
- } while(i < len && c3 == -1);
- if(c3 == -1)
- break;
- out += String.fromCharCode(((c2 & 0XF) << 4) | ((c3 & 0x3C) >> 2));
- /* c4 */
- do {
- c4 = str.charCodeAt(i++) & 0xff;
- if(c4 == 61)
- return out;
- c4 = base64DecodeChars[c4];
- } while(i < len && c4 == -1);
- if(c4 == -1)
- break;
- out += String.fromCharCode(((c3 & 0x03) << 6) | c4);
- }
- return out;
- }
- function utf16to8(str) {
- var out, i, len, c;
- out = "";
- len = str.length;
- for(i = 0; i < len; i++) {
- c = str.charCodeAt(i);
- if ((c >= 0x0001) && (c <= 0x007F)) {
- out += str.charAt(i);
- } else if (c > 0x07FF) {
- out += String.fromCharCode(0xE0 | ((c >> 12) & 0x0F));
- out += String.fromCharCode(0x80 | ((c >> 6) & 0x3F));
- out += String.fromCharCode(0x80 | ((c >> 0) & 0x3F));
- } else {
- out += String.fromCharCode(0xC0 | ((c >> 6) & 0x1F));
- out += String.fromCharCode(0x80 | ((c >> 0) & 0x3F));
- }
- }
- return out;
- }
- function utf8to16(str) {
- var out, i, len, c;
- var char2, char3;
- out = "";
- len = str.length;
- i = 0;
- while(i < len) {
- c = str.charCodeAt(i++);
- switch(c >> 4)
- {
- case 0: case 1: case 2: case 3: case 4: case 5: case 6: case 7:
- // 0xxxxxxx
- out += str.charAt(i-1);
- break;
- case 12: case 13:
- // 110x xxxx 10xx xxxx
- char2 = str.charCodeAt(i++);
- out += String.fromCharCode(((c & 0x1F) << 6) | (char2 & 0x3F));
- break;
- case 14:
- // 1110 xxxx 10xx xxxx 10xx xxxx
- char2 = str.charCodeAt(i++);
- char3 = str.charCodeAt(i++);
- out += String.fromCharCode(((c & 0x0F) << 12) |
- ((char2 & 0x3F) << 6) |
- ((char3 & 0x3F) << 0));
- break;
- }
- }
- return out;
- }
- function doit() {
- var f = document.f
- f.output.value = base64encode(utf16to8(f.source.value))
- f.decode.value = utf8to16(base64decode(f.output.value))
- }
复制代码
这才是脚本 放到常量1中
- [编码][/编码]
- --------------------------------------------------------------------------------清除cookie
- [清除Cookie]sina.com.cn[/清除Cookie]
- [登录退出]http://login.sina.com.cn/sso/logout.php[/登录退出]
- --------------------------------------------------------------------------------正式登录
- [登录前脚本1]{常量1}[/登录前脚本1]
- [登录前脚本1名称]base64encode[/登录前脚本1名称]
- [登录前脚本1参数]{帐号}[/登录前脚本1参数]
- [登录提交网址1]https://login.sina.com.cn/sso/login.php?client=ssologin.js(v1.4.15)&_=1403765327745[/登录提交网址1] 返回编码=usc2;
- [登录提交数据1]entry=account&gateway=1&from=null&savestate=30&useticket=0&pagerefer=&vsnf=1&su={登录前脚本1}&service=account&sp={密码}&sr=1366*768&encoding=UTF-8&cdult=3&domain=sina.com.cn&prelt=0&returntype=TEXT[/登录提交数据1]
- [登录成功特征1]{"retcode":"0"===登录成功[/登录成功特征1]
- [登录失败特征1]"retcode":"101"===登录名或密码错误[/登录失败特征1]
- [登录提交1参数1]ticket=(.*?)"[/登录提交1参数1]
- [登录提交1参数2]savestate=(.*?)"[/登录提交1参数2]
- [登录后提交网址1]https://passport.weibo.com/wbsso/login?ticket={登录提交1参数1}[/登录后提交网址1]
- [登录后提交网址2]https://crosdom.weicaifu.com/sso/crosdom?action=login&savestate={登录提交1参数2}[/登录后提交网址2]
- [登录后提交网址3]http://login.sina.com.cn/member/my.php?entry=sso[/登录后提交网址3] ---该访问验证是否为登录成功
复制代码
能用的话 记得评分哦 注意看完介绍再用 免得又出错
注意:帐号中@最好替换为%40 因为脚本只对帐号进行BASE64加密 未进行URL编码
很多朋友说SP加密 可我抓包这地址确实没有 附上图
这是最后验证成功登录规则报告返回代码HTML形式
|