CURL to access a page that requires a login from a different page

People also ask

How do I pass login credentials with curl?

For example, if a website has protected content curl allows you to pass authentication credentials. To do so use the following syntax: curl --user "USERNAME:PASSWORD" https://www.domain.com . “USERNAME” must be replaced with your actual username in quotes.

How do I use curl to access my website?

The syntax for the curl command is as follows: curl [options] [URL...] In its simplest form, when invoked without any option, curl displays the specified resource to the standard output. The command will print the source code of the example.com homepage in your terminal window.

How do I add credentials to curl command?

To make a Curl request with Credentials, you need to use the --user "username:password" command line parameter and pass the username and password to Curl. The username and password are separated by colons. In this Curl Request with Credentials example, we send a request to the ReqBin echo URL.

The web site likely uses cookies to store your session information. When you run

curl --user user:pass https://xyz.com/a  #works ok
curl https://xyz.com/b #doesn't work

curl is run twice, in two separate sessions. Thus when the second command runs, the cookies set by the 1st command are not available; it's just as if you logged in to page a in one browser session, and tried to access page b in a different one.

What you need to do is save the cookies created by the first command:

curl --user user:pass --cookie-jar ./somefile https://xyz.com/a

and then read them back in when running the second:

curl --cookie ./somefile https://xyz.com/b

Alternatively you can try downloading both files in the same command, which I think will use the same cookies.

Also you might want to log in via browser and get the command with all headers including cookies:

Open the Network tab of Developer Tools, log in, navigate to the needed page, use "Copy as cURL".

screenshot

After some googling I found this:

curl -c cookie.txt -d "LoginName=someuser" -d "password=somepass" https://oursite/a
curl -b cookie.txt https://oursite/b

No idea if it works, but it might lead you in the right direction.

My answer is a mod of some prior answers from @JoeMills and @user.

Get a cURL command to log into server:
- Load login page for website and open Network pane of Developer Tools
  - In firefox, right click page, choose 'Inspect Element (Q)' and click on Network tab
- Go to login form, enter username, password and log in
- After you have logged in, go back to Network pane and scroll to the top to find the POST entry. Right click and choose Copy -> Copy as CURL
- Paste this to a text editor and try this in command prompt to see if it works
  - Its possible that some sites have hardening that will block this type of login spoofing that would require more steps below to bypass.
Modify cURL command to be able to save session cookie after login
- Remove the entry -H 'Cookie: <somestuff>'
- Add after curl at beginning -c login_cookie.txt
- Try running this updated curl command and you should get a new file 'login_cookie.txt' in the same folder
Call a new web page using this new cookie that requires you to be logged in
- curl -b login_cookie.txt <url_that_requires_log_in>

I have tried this on Ubuntu 20.04 and it works like a charm.

Related questions
                            
                                Is \d not supported by grep's basic expressions? [closed]
                            
                                Iterating over each line of ls -l output
                            
                                How do I pipe or redirect the output of curl -v?
                            
                                How to append the output to a file?
                            
                                How to insert a new line in Linux shell script? [duplicate]
                            
                                Redirect STDERR / STDOUT of a process AFTER it's been started, using command line?
                            
                                Difference between Real User ID, Effective User ID and Saved User ID
                            
                                Running a Python script from PHP
                            
                                Count occurrences of a char in plain text file
                            
                                Unix - create path of folders and file
                            
                                How do I measure separate CPU core usage for a process?
                            
                                IOCTL Linux device driver [closed]
                            
                                Compare integer in bash, unary operator expected
                            
                                Linux command or script counting duplicated lines in a text file?
                            
                                Check free disk space for current partition in bash
                            
                                How to print third column to last column?
                            
                                Get first line of a shell command's output
                            
                                In Bash, how do I add a string after each line in a file?
                            
                                Difference between ${} and $() in Bash [duplicate]
                            
                                PostgreSQL database default location on Linux

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With

CURL to access a page that requires a login from a different page

Tags:

linux

bash

curl

cookies

http-authentication

People also ask

Recent Activity

Donate For Us