标签:
不多说,贴出相关代码。 参数实体: package token.def; import java.io.Serializable; import java.util.Properties; public class TLoginParams implements Serializable { private static final long serialVersionUID = 6120319409538285515L; private String saltUin; private String dataRedirect; private String loginSig; private String loginUrl; private String imgURl; private String imgCookie; private boolean isLogin = true; private Properties prop; public String getSaltUin() { return saltUin; } public void setSaltUin(String saltUin) { this.saltUin = saltUin; } public String getDataRedirect() { return dataRedirect; } public void setDataRedirect(String dataRedirect) { this.dataRedirect = dataRedirect; } public String getLoginSig() { return loginSig; } public void setLoginSig(String loginSig) { this.loginSig = loginSig; } public String getLoginUrl() { return loginUrl; } public void setLoginUrl(String loginUrl) { this.loginUrl = loginUrl; } public String getImgURl() { return imgURl; } public void setImgURl(String imgURl) { this.imgURl = imgURl; } public String getImgCookie() { return imgCookie; } public void setImgCookie(String imgCookie) { this.imgCookie = imgCookie; } public boolean isLogin() { return isLogin; } public void setLogin(boolean isLogin) { this.isLogin = isLogin; } public Properties getProp() { return prop; } public void setProp(Properties prop) { this.prop = prop; } @Override public String toString() { return "TLoginParams [saltUin=" + saltUin + ", dataRedirect=" + dataRedirect + ", loginSig=" + loginSig + ", loginUrl=" + loginUrl + ", imgURl=" + imgURl + ", imgCookie=" + imgCookie + ", isLogin=" + isLogin + ", prop=" + prop + "]"; } } 加密实现: package token.exe; import java.io.ByteArrayOutputStream; import java.io.UnsupportedEncodingException; import java.security.MessageDigest; public class TencentWeiboEncryption { private static final String HEXSTRING = "0123456789ABCDEF"; /** * 获取指定字符串的md5值 * @param originalText * @return * @throws Exception */ private static String md5(String originalText) throws Exception { byte buf[] = originalText.getBytes("ISO-8859-1"); StringBuffer hexString = new StringBuffer(); String result = ""; String digit = ""; try { MessageDigest algorithm = MessageDigest.getInstance("MD5"); algorithm.reset(); algorithm.update(buf); byte[] digest = algorithm.digest(); for (int i = 0; i < digest.length; i++) { digit = Integer.toHexString(0xFF & digest[i]); if (digit.length() == 1) { digit = "0" + digit; } hexString.append(digit); } result = hexString.toString(); } catch (Exception ex) { result = ""; } return result.toUpperCase(); } /** * 将16进制编码转换为相应的ASCII字符串 * @param md5str * @return * @throws UnsupportedEncodingException */ private static String hexchar2bin(String md5str) throws UnsupportedEncodingException { ByteArrayOutputStream baos = new ByteArrayOutputStream(md5str.length() / 2); for (int i = 0; i < md5str.length(); i = i + 2) { baos.write((HEXSTRING.indexOf(md5str.charAt(i)) << 4 | HEXSTRING.indexOf(md5str.charAt(i + 1)))); } return new String(baos.toByteArray(), "ISO-8859-1"); } /** * 获取加密后的密码 * @param qq * @param password * @param verifycode * @return * @throws Exception */ public static String getPassword(String qq, String password, String verifycode) throws Exception { String P = hexchar2bin(md5(password)); String U = md5(P + hexchar2bin(qq.replace("\\x", "").toUpperCase())); String V = md5(U + verifycode.toUpperCase()); return V; } } 微博登陆实现: package token.exe; import java.io.ByteArrayInputStream; import java.io.FileOutputStream; import java.io.IOException; import java.io.InputStream; import java.io.UnsupportedEncodingException; import java.net.URLEncoder; import java.security.KeyManagementException; import java.security.NoSuchAlgorithmException; import java.security.cert.CertificateException; import java.security.cert.X509Certificate; import java.util.ArrayList; import java.util.Date; import java.util.HashMap; import java.util.List; import java.util.Properties; import java.util.Scanner; import javax.net.ssl.SSLContext; import javax.net.ssl.TrustManager; import javax.net.ssl.X509TrustManager; import org.apache.http.Header; import org.apache.http.HttpHeaders; import org.apache.http.HttpHost; import org.apache.http.HttpResponse; import org.apache.http.HttpVersion; import org.apache.http.client.ClientProtocolException; import org.apache.http.client.methods.HttpGet; import org.apache.http.client.params.CookiePolicy; import org.apache.http.client.params.HttpClientParams; import org.apache.http.conn.params.ConnRoutePNames; import org.apache.http.conn.routing.HttpRoute; import org.apache.http.conn.scheme.PlainSocketFactory; import org.apache.http.conn.scheme.Scheme; import org.apache.http.conn.scheme.SchemeRegistry; import org.apache.http.conn.ssl.SSLSocketFactory; import org.apache.http.impl.client.DefaultHttpClient; import org.apache.http.impl.conn.tsccm.ThreadSafeClientConnManager; import org.apache.http.message.BasicHeader; import org.apache.http.params.CoreConnectionPNames; import org.apache.http.params.HttpParams; import org.apache.http.params.HttpProtocolParams; import org.apache.http.params.SyncBasicHttpParams; import org.apache.http.util.EntityUtils; import org.jsoup.Jsoup; import org.jsoup.nodes.Document; import org.jsoup.nodes.Element; import token.TencentWeiboOAuth; import token.def.TLoginParams; import com.tencent.weibo.beans.RouteCfg; public class TencentWeiboLoginer { private DefaultHttpClient httpClient; //默认连接配置参数 private static final int CONNECT_TIME_OUT = 5000; private static final int SOCKET_TIME_OUT = 5000; private static final int MAX_CONNECTIONS_PRE_HOST = 20; private static final int MAX_TOTAL_CONNECTIONS = 200; public TencentWeiboLoginer() { this(CONNECT_TIME_OUT, SOCKET_TIME_OUT, MAX_CONNECTIONS_PRE_HOST, MAX_TOTAL_CONNECTIONS, null, null); } public TencentWeiboLoginer(int connectTimeOut, int socketTimeOut, int maxConnectionsPreHost, int maxTotalConnections, List<RouteCfg> routeCfgs, HttpHost proxy) { //注册ssl协议 SSLContext ssl = null; SchemeRegistry schemeRegistry = null; X509TrustManager x509TrustManager = null; SSLSocketFactory sslSocketFactory = null; try { ssl = SSLContext.getInstance("TLS"); x509TrustManager = new X509TrustManager() { @Override public X509Certificate[] getAcceptedIssuers() { // TODO Auto-generated method stub return null; } @Override public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException { // TODO Auto-generated method stub } @Override public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException { // TODO Auto-generated method stub } }; ssl.init(null, new TrustManager[]{x509TrustManager}, null); sslSocketFactory = new SSLSocketFactory(ssl); sslSocketFactory.setHostnameVerifier(SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER); //注册http和https协议 schemeRegistry = new SchemeRegistry(); schemeRegistry.register(new Scheme("https", 443, sslSocketFactory)); // schemeRegistry.register(new Scheme("http", 80, PlainSocketFactory.getSocketFactory())); } catch (NoSuchAlgorithmException e) { // TODO Auto-generated catch block e.printStackTrace(); } catch (KeyManagementException e) { // TODO Auto-generated catch block e.printStackTrace(); } //配置客户端链接管理类 ThreadSafeClientConnManager connManager = new ThreadSafeClientConnManager(schemeRegistry); connManager.setDefaultMaxPerRoute(maxConnectionsPreHost); connManager.setMaxTotal(maxTotalConnections); //配置http请求连接参数 HttpParams httpParams = new SyncBasicHttpParams(); httpParams.setParameter(CoreConnectionPNames.CONNECTION_TIMEOUT, connectTimeOut); httpParams.setParameter(CoreConnectionPNames.SO_TIMEOUT, socketTimeOut); //http协议参数配置 HttpProtocolParams.setVersion(httpParams, HttpVersion.HTTP_1_1); HttpProtocolParams.setUseExpectContinue(httpParams, false); //启用cookie HttpClientParams.setCookiePolicy(httpParams, CookiePolicy.BROWSER_COMPATIBILITY); //对特定ip端口修改最大连接数 if (routeCfgs != null) { for (RouteCfg routeCfg : routeCfgs) { HttpHost host = new HttpHost(routeCfg.getHost(), routeCfg.getPort()); connManager.setMaxForRoute(new HttpRoute(host), routeCfg.getMaxConnetions()); } } //初始化httpClient httpClient = new DefaultHttpClient(connManager,httpParams); //添加headers List<Header> headers = new ArrayList<Header>(); headers.add(new BasicHeader(HttpHeaders.ACCEPT, "text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8")); headers.add(new BasicHeader(HttpHeaders.ACCEPT_LANGUAGE, "zh-cn,zh;q=0.8,en-us;q=0.5,en;q=0.3")); headers.add(new BasicHeader(HttpHeaders.ACCEPT_CHARSET, "UTF-8")); headers.add(new BasicHeader(HttpHeaders.USER_AGENT, "Mozilla/5.0 (Windows NT 5.1; rv:25.0) Gecko/20100101 Firefox/25.0")); headers.add(new BasicHeader(HttpHeaders.CONNECTION, "keep-alive")); headers.add(new BasicHeader("X-Forwarded-For", "192.168.0.1")); headers.add(new BasicHeader("Client-IP", "192.168.0.1")); headers.add(new BasicHeader("API-RemoteIP", "192.168.0.1")); httpClient.getParams().setParameter("http.default-headers", headers); //设置代理 if (proxy != null) { httpClient.getParams().setParameter(ConnRoutePNames.DEFAULT_PROXY, proxy); } } /** * 模拟腾讯微博登陆 * @return code值 */ public TLoginParams doLogin(String username, String password) { Properties properties = initProperties(); String clientID = properties.getProperty("client_id"); String redirectURI = properties.getProperty("redirect_uri"); HashMap<String, String> urlMap = getUrlMap(clientID, redirectURI); String dataRedirect = urlMap.get("data-redirect"); HashMap<String, String> loginInfoMap = preLogin(urlMap); String loginSig = loginInfoMap.get("login_sig"); String loginUrl = loginInfoMap.get("login_url"); HashMap<String, String> checkMap = isHasVC(dataRedirect, username, loginSig, loginUrl); String isHasVC = checkMap.get("isHasVC"); String vc = checkMap.get("vc"); String saltUin = checkMap.get("saltUin"); TLoginParams tLoginParams = new TLoginParams(); if (Integer.parseInt(isHasVC) != 0) { tLoginParams.setDataRedirect(dataRedirect); tLoginParams.setLoginSig(loginSig); tLoginParams.setLoginUrl(loginUrl); tLoginParams.setSaltUin(saltUin); tLoginParams.setImgURl(getVCode(username)); return tLoginParams; } String checkSigUrl = finalLogin(vc, saltUin, dataRedirect, username, password, loginSig, loginUrl); Properties result = authorize(loginUrl, checkSigUrl); tLoginParams.setProp(result); return tLoginParams; } /** * 有验证码时验证登陆 * @param vc * @param saltUin * @param dataRedirect * @param username * @param password * @param loginSig * @param loginUrl * @return */ public TLoginParams doLoginByVC(String vc, String saltUin, String dataRedirect, String username, String password, String loginSig, String loginUrl) { TLoginParams tLoginParams = new TLoginParams(); String checkSigUrl = finalLogin(vc, saltUin, dataRedirect, username, password, loginSig, loginUrl); if (checkSigUrl.equals("您输入的验证码不正确,请重新输入。")) { tLoginParams.setLogin(false); return tLoginParams; } Properties prop = authorize(loginUrl, checkSigUrl); tLoginParams.setProp(prop); return tLoginParams; } /** * 初始化登陆,获取含有sessionkey的url提交链接 * @param clientID 应用ID * @param redirectURI 应用回调地址 * @return */ private HashMap<String, String> getUrlMap(String clientID, String redirectURI) { String url = "https://open.t.qq.com/cgi-bin/oauth2/authorize?" + "client_id=" + clientID + "&response_type=code" + "&redirect_uri=" + redirectURI + "&forcelogin=true"; Header[] headers = new BasicHeader[]{ new BasicHeader(HttpHeaders.HOST, "open.t.qq.com") }; String htmlDatas = httpGetDatas(url, headers); HashMap<String, String> map = new HashMap<String, String>(); String data_redirect = null; String data_proxy = null; Document document = Jsoup.parse(htmlDatas); Element element = document.getElementsByTag("noscript").first(); data_redirect = element.attr("data-redirect"); map.put("data-redirect", data_redirect); data_proxy = element.attr("data-proxy"); map.put("data-proxy", data_proxy); return map; } /** * 预登陆腾讯微博,获取login_sig * @param urlMap 初始化登陆返回的urlMap * @return */ private HashMap<String, String> preLogin(HashMap<String, String> urlMap) { String s_url_encode = null; String proxy_url_encode = null; String script = null; try { s_url_encode = URLEncoder.encode(urlMap.get("data-redirect"), "UTF-8"); proxy_url_encode = URLEncoder.encode(urlMap.get("data-proxy"), "UTF-8"); } catch (UnsupportedEncodingException e) { // TODO Auto-generated catch block e.printStackTrace(); } String url = "https://ui.ptlogin2.qq.com/cgi-bin/login?appid=46000101" + "&s_url=" + s_url_encode + "&proxy_url=" + proxy_url_encode + "&f_url=loginerroralert" + "&style=13" + "&daid=6" + "&pt_no_auth=1" + "&hide_close_icon=1" + "&link_target=blank" + "&target=blank" + "&hide_title_bar=1" + "&no_drop_domain=1" + "&dummy=1" + "&bgcolor=ffffff" + "&r=" + Math.random(); Header[] headers = new BasicHeader[]{ new BasicHeader(HttpHeaders.HOST, "ui.ptlogin2.qq.com") }; String htmlDatas = httpGetDatas(url, headers); Document document = Jsoup.parse(htmlDatas); Element headElement = document.getElementsByTag("head").first(); Element element = headElement.getElementsByTag("script").first(); script = element.html(); String login_sig = script.substring(script.indexOf("login_sig:"), script.indexOf("\",clientip")); String login_sig_key = login_sig.substring(login_sig.indexOf("\"") + 1); HashMap<String, String> loginMap = new HashMap<String, String>(); loginMap.put("login_sig", login_sig_key); loginMap.put("login_url", url); return loginMap; } /** * 检查预登陆时是否需要验证码 * @param dataRedirect 初始化登陆返回的map * @param username 用户名 * @param loginSig TODO * @param loginUrl TODO * @return */ private HashMap<String, String> isHasVC(String dataRedirect, String username, String loginSig, String loginUrl){ String url = null; try { url = "https://ssl.ptlogin2.qq.com/check?" + "regmaster=" + "&uin=" + username + "&appid=46000101" + "&js_ver=10052" + "&js_type=1" + "&login_sig=" + loginSig + "&u1=" + URLEncoder.encode(dataRedirect, "UTF-8") + "&r=" + Math.random(); } catch (UnsupportedEncodingException e) { // TODO Auto-generated catch block e.printStackTrace(); } Header[] headers = new BasicHeader[]{ new BasicHeader(HttpHeaders.REFERER, loginUrl) }; String htmlDatas = httpGetDatas(url, headers); String str = htmlDatas.substring(htmlDatas.indexOf("(") + 1, htmlDatas.indexOf(");")); String[] strs = str.split(","); String isHasVC = strs[0].substring(strs[0].indexOf("‘") + 1, strs[0].lastIndexOf("‘")); HashMap<String,String> checkVCMap = new HashMap<String, String>(); checkVCMap.put("isHasVC", isHasVC); String vc = strs[1].substring(strs[1].indexOf("‘") + 1, strs[1].lastIndexOf("‘")); checkVCMap.put("vc", vc); String saltUin = strs[2].substring(strs[2].indexOf("‘") + 1, strs[2].lastIndexOf("‘")); checkVCMap.put("saltUin", saltUin); return checkVCMap; } /** * 获取当前用户登陆所需要的验证码 * @param username 用户名 * @return */ public String getVCode(String username) { String imageUrl = "https://ssl.captcha.qq.com/getimage?" + "uin=" +username + "&aid=46000101" + "&" + Math.random(); return imageUrl; } /** * 保存验证码 * @param url 验证码链接 */ public void saveVCodeImg(String url) { HttpGet getImages = new HttpGet(url); HttpResponse response = null; try { response = httpClient.execute(getImages); byte[] imageBytes = EntityUtils.toByteArray(response.getEntity()); FileOutputStream fileWrite = new FileOutputStream("vc.jpg"); fileWrite.write(imageBytes); fileWrite.close(); } catch (ClientProtocolException e) { // TODO Auto-generated catch block e.printStackTrace(); } catch (IOException e) { // TODO Auto-generated catch block e.printStackTrace(); } } /** * 模拟最终登陆 * @param vc 验证码信息 * @param dataRedirect 链接信息 * @param username 用户名 * @param password 密码 * @param loginSig TODO * @param loginUrl TODO * @param saltUin TODO * @return */ private String finalLogin(String vc, String saltUin, String dataRedirect, String username, String password, String loginSig, String loginUrl){ String p = null; try { p = TencentWeiboEncryption.getPassword(saltUin, password, vc); } catch (Exception e) { // TODO Auto-generated catch block e.printStackTrace(); } String url = null; try { url = "https://ssl.ptlogin2.qq.com/login?" + "u=" + URLEncoder.encode(username, "UTF-8") + "&p=" + p + "&verifycode=" + vc + "&aid=46000101" + "&u1=" + URLEncoder.encode(dataRedirect, "UTF-8") + "&h=1" + "&ptredirect=1" + "&ptlang=2052" + "&daid=6" + "&from_ui=1" + "&dumy=" + "&low_login_enable=0" + "®master=" + "&fp=loginerroralert" + "&action=2-20-" + new Date().getTime() + "&mibao_css=" + "&t=1" + "&g=1" + "&js_ver=10052" + "&js_type=1" + "&login_sig=" + loginSig + "&pt_rsa=0"; } catch (UnsupportedEncodingException e) { // TODO Auto-generated catch block e.printStackTrace(); } Header[] headers = new BasicHeader[]{ new BasicHeader(HttpHeaders.REFERER, loginUrl) }; String htmlDatas = httpGetDatas(url, headers); String str = htmlDatas.substring(htmlDatas.indexOf("(") + 1, htmlDatas.indexOf(");")); String[] strs = str.split(","); String checkUrl = strs[2].substring(strs[2].indexOf("‘") + 1, strs[2].lastIndexOf("‘")); String loginResult = strs[4].substring(strs[4].indexOf("‘") + 1, strs[4].lastIndexOf("‘")); if (loginResult.equals("登录成功!")) { return checkUrl; } return loginResult; } /** * 获取最终授权 * @param loginUrl * @param checkSigUrl * @return */ private Properties authorize(String loginUrl, String checkSigUrl) { Properties prop = null; if (checkSigUrl != null) { Header[] headers = new BasicHeader[]{ new BasicHeader(HttpHeaders.REFERER, loginUrl) }; String htmlDatas = httpGetDatas(checkSigUrl, headers); Document document = Jsoup.parse(htmlDatas); Element element = document.getElementsByTag("meta").first(); String content = element.attr("content");; String subContent = content.substring(content.indexOf("?") + 1); String propStr = subContent.replace("&", "\n"); prop = new Properties(); InputStream stream = new ByteArrayInputStream(propStr.getBytes()); try { prop.load(stream); } catch (IOException e) { // TODO Auto-generated catch block e.printStackTrace(); } } return prop; } /** * 提交URL,并获取页面数据(GET方式) * @param url 请求页面 * @param headers http请求header * @return */ private String httpGetDatas(String url,Header[] headers) { String response =null; HttpResponse httpResponse = null; if (url == null) { throw new NullPointerException("URL is null"); } HttpGet httpGet = new HttpGet(url); httpGet.setHeaders(headers); try { httpResponse = httpClient.execute(httpGet); response = EntityUtils.toString(httpResponse.getEntity()); } catch (ClientProtocolException e) { // TODO Auto-generated catch block e.printStackTrace(); } catch (IOException e) { // TODO Auto-generated catch block e.printStackTrace(); } return response; } /** * 初始化配置信息 * @return */ public Properties initProperties() { Properties properties = new Properties(); InputStream inputStream = Thread.currentThread(). getContextClassLoader().getResourceAsStream("cfg.properties"); try { properties.load(inputStream); } catch (IOException e) { // TODO Auto-generated catch block e.printStackTrace(); } return properties; } public static void main(String[] args) { TencentWeiboLoginer loginer = new TencentWeiboLoginer(); TLoginParams tLoginParams = loginer.doLogin("",""); //有验证码时 if (tLoginParams.getProp() == null) { String saltUin = tLoginParams.getSaltUin(); String dataRedirect = tLoginParams.getDataRedirect(); String loginSig = tLoginParams.getLoginSig(); String loginUrl = tLoginParams.getLoginUrl(); String imgUrl = tLoginParams.getImgURl(); //要返回的验证码 System.err.println(imgUrl); //测试再次获取验证码 imgUrl = loginer.getVCode(""); //保存验证码(用于测试并查看验证码) loginer.saveVCodeImg(imgUrl); Scanner input = new Scanner(System.in); String vc = input.nextLine(); TLoginParams loginresult =loginer.doLoginByVC(vc, saltUin, dataRedirect, "", "", loginSig, loginUrl); //如果验证码录入错误,则重新获取并返回验证码 if (!loginresult.isLogin()) { System.err.println("验证码错误!重新录入"); imgUrl = loginer.getVCode(""); loginer.saveVCodeImg(imgUrl); Scanner input2 = new Scanner(System.in); String vc1 = input2.nextLine(); Properties codeProp = loginer.doLoginByVC(vc1, saltUin, dataRedirect, "", "", loginSig, loginUrl).getProp(); System.out.println(TencentWeiboOAuth.getOAuthV2Instance(codeProp)); }else { //验证码正确则直接输出结果 Properties codeProp = loginresult.getProp(); System.out.println(TencentWeiboOAuth.getOAuthV2Instance(codeProp)); } }else { //无验证码时 Properties codeProp = tLoginParams.getProp(); System.out.println(TencentWeiboOAuth.getOAuthV2Instance(codeProp)); } } } 上述代码完整模拟了腾讯微博的登陆过程,并最终获得授权
参考地址:http://www.cnblogs.com/zhengbing/p/3459249.html
标签:
原文地址:http://www.cnblogs.com/liinux/p/5558987.html