机械化将登录表单从http提交到https [英] Mechanize submit login form from http to https
问题描述
我有一个网页,其中包含通过HTTP加载的登录表单,但它通过HTTPS提交数据。
I have a web page containing a login form which loads via HTTP, but it submits the data via HTTPS.
我正在使用python-mechanize登录此站点,但似乎数据是通过HTTP提交的。
I'm using python-mechanize to log into this site, but it seems that the data is submitted via HTTP.
我的代码如下所示:
import mechanize
b = mechanize.Browser()
b.open('http://site.com')
form = b.forms().next() # the login form is unnamed...
print form.action # prints "https://login.us.site.com"
form['user'] = "guest"
form['pass'] = "guest"
b.form = form
b.submit()
提交表单时,连接是通过HTTP和包含类似的内容:
When the form is submitted, the connection is made via HTTP and contains something like:
send: 'POST https://login.us.site.com/ HTTP/1.1\r\nAccept-Encoding: identity\r\nContent-Length: 180\r\nHost: login.us.site.com\r\nContent-Type: application/x-www-form-urlencoded\r\n\r\n'...
任何人都可以确认这一点并最终确认发布一个解决方案在表单是通过HTTPS提交的?
Can anyone confirm this and eventually post a solution so that the form is submitted via HTTPS?
稍后编辑:
1)我正在使用HTTP代理对于http / https流量(在环境中设置 - Linux机器)
2)我用Wireshark观察了流量,我可以确认流量是通过普通HTTP发送的(我可以看到内容POST和mechanize不会像webbrowser一样向代理发送相同的请求 - 后者发送CONNECT login.us.site.com:443,而机械化只发送POST https://login.us.site.com )。但是,我不知道数据离开代理时会发生什么;也许它建立了与目标站点的ssl连接?
1) I'm using a HTTP proxy for http/https traffic (set in the environment - Linux machine)
2) I've watched the traffic with Wireshark and I can confirm that the traffic is sent via normal HTTP (I can see the content of the POST and mechanize doesn't send the same requests to the proxy as a webbrowser - the latter sends CONNECT login.us.site.com:443, while mechanize only POSTs https://login.us.site.com). However, I don't know what happens to the data as it leaves the proxy; perhaps it establishes a ssl connection to the target site?
推荐答案
好吧,这似乎是机械化中的一个错误
Ok, it seems to be a bug in mechanize
这篇关于机械化将登录表单从http提交到https的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!