| SitePoint Sponsor |
![x[E]nOn is offline](images/sitepoint/statusicon/user-offline.png)
I have a form(myform.php) on Server A that can only be accessed after attaining the correct session cookie from logging in from the log in page(login.php). So naturally the form can only be submitted if I am logged in.
And now, is it possible from Server B, to have a script to log in through login.php to attain the session cookie on the server and then do a submit in the myform.php?
So in another words, I need Server B to act as me logging into login.php and submitting the form on Server A.
That might be a security violation. I don't think that possible and if so would probably require you to read from server A, which if secure causes a problem, or have your code copy the cookie and place in a variable that server b can just read and replace.
Yes, it's quite possible.
You could search for php curl login to find more info.
Sure, it's pretty trivial using a PHP HTTP Client.Originally Posted by x[E]nOn
Here's an example from Zend_Http_Client:
Zend_HttpPHP Code:$client = new Zend_Http_Client();
// To turn cookie stickiness on, set a Cookie Jar
$client->setCookieJar();
// First request: log in and start a session
$client->setUri('http://example.com/login.php');
$client->setParameterPost('user', 'h4x0r');
$client->setParameterPost('password', '1337');
$client->request('POST');
// The Cookie Jar automatically stores the cookies set
// in the response, like a session ID cookie.
// Now we can send our next request - the stored cookies
// will be automatically sent.
$client->setUri('http://example.com/read_member_news.php');
$client->request('GET');
PEAR\HTTP_Client
Brad Hanson, Web Applications & Scalability Specialist
► Is your website outgrowing its current hosting solution?
► PM me for a FREE scalability consult!
► USA Based: Available by Phone, Skype, AIM, and E-mail.
I have a form(myform.php) on Server A that can only be accessed after attaining the correct session cookie from logging in from the log in page(login.php). So naturally the form can only be submitted if I am logged in.
And now, is it possible from Server B, to have a script to log in through login.php to attain the session cookie on the server and then do a submit in the myform.php?
So in another words, I need Server B to act as me logging into login.php and submitting the form on Server A.
Yes...Ofcourse, it's Possible.
Try using PHP CURL
Try to get some idea from the following code and try to implement it as per your need
PHP Code:<?php
$url ="http://www.yoursite.com/login.php";
$ch = curl_init();
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_ANY);
curl_setopt ($ch, CURLOPT_COOKIEJAR, 'cookie.txt');
curl_setopt ($ch, CURLOPT_POSTFIELDS, "current_form=loginForm&username=yourName&password=Unknown");
ob_start();
curl_exec ($ch);
ob_end_clean();
curl_close ($ch);
unset($ch);
$ch = curl_init();
curl_setopt($ch, CURLOPT_RETURNTRANSFER,1);
curl_setopt($ch, CURLOPT_COOKIEFILE, "cookie.txt");
curl_setopt($ch, CURLOPT_URL,"http://www.yoursite.com/myform.php");
$result = curl_exec ($ch);
curl_close ($ch);
echo $result;
?>
Thanks guys!
How do I get a the response body of the login form page? May be useful to verify if the log in is correct or not.
Posting Permissions
Bookmarks