Python requests HTTP驗證登入實現流程
阿新 • • 發佈:2020-11-06
1、場景
1)使用者輸入完網址後,瀏覽器直接彈出需要輸入使用者名稱/密碼
PS:此時輸入使用者名稱密碼即可登入,或者直接帶著使用者名稱密碼訪問網站。
假設url為http://xxx.yyy.zzz
使用者名稱為admin
密碼為123456
則訪問的網址應該為http://admin:[email protected]【http://username:password@url】
直接訪問改網址即可
2)利用requests.get(url)返回狀態碼為401
# -*- encoding=utf-8 -*- import requests if __name__ == '__main__': url = 'http://xxxxx.yyyyyy' response = requests.get(url=url) status_code = response.status_code print status_code text = response.text print text
執行
401
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>401 - Unauthorized: Access is denied due to invalid credentials.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana,Arial,Helvetica,sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;}
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;}
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;}
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS",Verdana,sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
<div class="content-container"><fieldset>
<h2>401 - Unauthorized: Access is denied due to invalid credentials.</h2>
<h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>
</fieldset></div>
</div>
</body>
</html>2、HTTP基礎驗證
這是一種簡單的身份認證,它是通過http的authorization請求頭中,攜帶經過base64加密的使用者名稱和密碼而實現的一種認證
# -*- encoding=utf-8 -*- import requests from requests.auth import HTTPBasicAuth if __name__ == '__main__': url = 'http://xxx.yyy.zzz' user = 'admin' password = '123456' response = requests.get(url=url,auth=HTTPBasicAuth(user,password)) # 或者 # response = requests.get(url=url,auth=(user,password)) print response.status_code
3、摘要式身份認證
# -*- encoding=utf-8 -*- import requests from requests.auth import HTTPDigestAuth if __name__ == '__main__': url = 'http://xxx.yyy.zzz' user = 'admin' password = '123456' response = requests.get(url,auth=HTTPDigestAuth(user,password)) print response.status_code
如果2和3都不行,還是返回401,此時可以試試第4種
使用2和3依舊返回401,此時可以print出response.headers看一下
# -*- encoding=utf-8 -*- import requests from requests.auth import HTTPDigestAuth if __name__ == '__main__': url = 'http://xxx.yyy.zzz' user = 'admin' password = '123456' response = requests.get(url,password)) print response.status_code print response.headers
執行
401
{'Content-Length': '1293','X-Powered-By': 'ASP.NET','Server': 'Microsoft-IIS/7.5','Date': 'Fri,05 Jun 2020 05:36:23 GMT','Content-Type': 'text/html','WWW-Authenticate': 'Negotiate,NTLM'}
列印後可看到headers中帶有字樣'WWW-Authenticate': 'Negotiate,NTLM',表示需要ntlm驗證,此時嘗試使用第4種[/code]
4、ntlm驗證
# -*- encoding=utf-8 -*- import requests from requests_ntlm import HttpNtlmAuth if __name__ == '__main__': url = 'http://xxx.yyy.zzz' user = 'admin' password = '123456' response = requests.get(url,auth=HttpNtlmAuth(user,password)) print response.status_code print response.headers
以上就是本文的全部內容,希望對大家的學習有所幫助,也希望大家多多支援我們。