Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

PHP: Simulate XHR using cURL

Tags:

php

curl

xmlhttprequest

Today I'm trying to make a cron job for some forum login to check for online stats. The login.php script accepts an ajax request with the form submitted values: user, password, server, and a hash id (in a hidden field). I can already submit the values to the login script and also preserve the session using a cookie jar but when I try to pass the required parameters (coming from sendlogin.php), it seems to reject requests that do not come with the proper request headers. So I need to know how I could simulate this using cURL:

GET login.php?user=foo&password=bar&server=1&id=7131c359e534e3790eaefa495d621b2a HTTP/1.1

Host: someloginserver.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:2.0.1) Gecko/20100101 Firefox/4.0.1
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip, deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
X-Requested-With: XMLHttpRequest
Referer: http://someloginserver.com/sendlogin.php
Cookie: __cfduid=de2fe207593d1135fc2426fb06e3270741303115848; hellobar_current=1300711502; hellobar_1300711502_variation=11462; PHPSESSID=cc621c6f57c43130d51d3147e319d8c2

hope you could help me on this.

like image 856
VeeBee Avatar asked May 12 '11 01:05

VeeBee

1 Answers

In the PHP api to curl you can use:

curl_setopt($curl, CURLOPT_HTTPHEADER, array(
    "Host" => "someloginserver.com",
    "User-Agent" => "Mozilla/5.0 (Windows NT 6.1; rv:2.0.1) Gecko/20100101 Firefox/4.0.1",
    "Accept" => "application/json, text/javascript, */*; q=0.01",
    "Accept-Language" => "en-us,en;q=0.5",
    "Accept-Encoding" => "gzip, deflate",
    "Accept-Charset" => "ISO-8859-1,utf-8;q=0.7,*;q=0.7",
    "Keep-Alive" => "115",
    "Connection" => "keep-alive",
    "X-Requested-With" => "XMLHttpRequest",
    "Referer" => "http://someloginserver.com/sendlogin.php"
));

But your actual problem might be the Cookie:, which I've excluded above. Setup your cURL request with a COOKIEJAR. Make one faux request to get a current session value, and only afterwards send your actual XHR request.

like image 112
mario Avatar answered Sep 21 '22 17:09

mario
Sign in to Comment

Related questions

What's the difference between using normal functions and class methods in PHP?
What does $array2 += $array1 do?
How to check, by PHP, if my script is connecting to SMTP server
Regex to match ALL-CAPS words of a certain length
captcha or not? [closed]
CMS design patterns and considerations
Breaking the constructor
Preventing SQL injection using ONLY php
Getting WordPress database name/username/password with PHP
PHP - generating JavaScript
Pass-by-reference the third parameter in PHP array_walk, without a warning
Remove key from array if key is in another array
Regular expression for validating cyrillic
PHP shorthand isn't working on new server? [duplicate]
Downloading a folder through with FTP using PHP
adding URL parameters to a form PHP HTML
How would you implement a badge system similar to SO?
array switch case statement
Thousands separator with printf
Why does internet explorer 9 show weird characters on UTF8 and whitespace content?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!