smzdm 研究

登录

登录地址

https://zhiyou.smzdm.com/user/login/ajax_check

登录参数

username=11779208@qq.com
password=12345678
rememberme=0
captcha
redirect_to
geetest_challenge
geetest_validate
geetest_seccode

请求头

Host: zhiyou.smzdm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:49.0) Gecko/20100101 Firefox/49.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Referer: https://zhiyou.smzdm.com/user/login?redirect_to=http%3A%2F%2Fzhiyou.smzdm.com%2Fuser
Content-Length: 180
Cookie: ......
Connection: keep-alive

返回结果

{
    "error_code": 111103,
    "error_msg": "您输入的账号/密码无效,请重新输入",
    "is_use_captcha": false,
    "data": [],
    "redirect_to": ""
}

如果登录成功,返回

{
    "error_code": 0,
    "error_msg": "",
    "is_use_captcha": false,
    "data": [],
    "redirect_to": ""
}

签到

签到地址

http://zhiyou.smzdm.com/user/checkin/jsonp_checkin?callback=jQuery11240777783693305457_1475200491609&_=1475200491611

请求参数

callback=jQuery11240777783693305457_1475200491609
_=1475200491611
  • callback 的格式应该是 jQuery${20位神秘数字}_${时间戳},现在问题是神秘数字是啥?没有什么线索,姑且认为是个 20 位的随机数吧
  • _ 时间戳,并且比 callback 里的时间要晚 2 毫秒

请求头

GET /user/checkin/jsonp_checkin?callback=jQuery11240777783693305457_1475200491609&_=1475200491611 HTTP/1.1
Host: zhiyou.smzdm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:49.0) Gecko/20100101 Firefox/49.0
Accept: */*
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
Referer: http://www.smzdm.com/
Cookie: smzdm_user_source=55351E1AC6C411DEFB0F328D8DCC0AB5; Hm_lvt_9b7ac3d38f30fe89ff0b8a0546904e58=1473209903,1475197790; _ga=GA1.2.855959196.1465873532; wt3_eid=%3B999768690672041%7C2146650085300290438%232147211752000617486; __jsluid=a37d58f891e4d02884c55310302b2689; web_ab=A1; Hm_lpvt_9b7ac3d38f30fe89ff0b8a0546904e58=1475200492; PHPSESSID=446i1m1dti40jcr3lvda9h27l4; smzdm_wordpress_360d4e510beef4fe51293184b8908074=user%3A3741863905%7C1479088482%7C7f425fce8d667e5e4e0927cd18595aec; smzdm_wordpress_logged_in_360d4e510beef4fe51293184b8908074=user%3A3741863905%7C1479088482%7C909993082d4a67b83c09b6461fdfdc09; user-role-smzdm=subscriber; sess=NTRlODl8MTQ3OTA4ODQ4MnwzNzQxODYzOTA1fGU0YWNlMTcwMjAxMWFmMDdmYjE3YTdkYzlhZWNhZDUx; user=user%3A3741863905%7C3741863905; smzdm_user_view=232BEEC3D78379046A383CF25F349B03
Connection: keep-alive

返回结果

jQuery11240777783693305457_1475200491609({"error_code":0,"error_msg":"","data":{"add_point":10,"checkin_num":1,"point":30,"exp":30,"gold":0,"prestige":"0","rank":0,"slogan":"<div class=\"signIn_data\">\u4eca\u65e5\u5df2\u9886<span class=\"red\">10<\/span>\u79ef\u5206\uff0c\u518d\u7b7e\u5230<span class=\"red\">2<\/span>\u5929\u53ef\u9886<span class=\"red\">12<\/span>\u79ef\u5206<\/div>"}})

其中的 json 如下

{
    "error_code": 0,
    "error_msg": "",
    "data": {
        "add_point": 10,
        "checkin_num": 1,
        "point": 30,
        "exp": 30,
        "gold": 0,
        "prestige": "0",
        "rank": 0,
        "slogan": "<div class=\"signIn_data\">今日已领<span class=\"red\">10</span>积分,再签到<span class=\"red\">2</span>天可领<span class=\"red\">12</span>积分</div>"
    }
}

results matching ""

    No results matching ""