def get_login_cookies():
"""
Simple API for returning login cookies
"""
if not request.json:
abort(400)
if 'url' not in request.json:
abort(400)
if 'username' not in request.json:
abort(400)
if 'password' not in request.json:
abort(400)
auto_login = AutoLogin()
login_cookie_jar = auto_login.auth_cookies_from_url(
url=request.json['url'],
username=request.json['username'],
password=request.json['password']
)
if login_cookie_jar is not None:
login_cookies = auto_login.cookies_from_jar(login_cookie_jar)
else:
login_cookies = {}
return jsonify({'cookies': login_cookies}), 201
def get_login_cookies():
"""
Simple API for returning login cookies
"""
if not request.json:
abort(400)
if 'url' not in request.json:
abort(400)
if 'username' not in request.json:
abort(400)
if 'password' not in request.json:
abort(400)
auto_login = AutoLogin()
login_cookie_jar = auto_login.auth_cookies_from_url(
url=request.json['url'],
username=request.json['username'],
password=request.json['password'])
if login_cookie_jar is not None:
login_cookies = auto_login.cookies_from_jar(login_cookie_jar)
else:
login_cookies = {}
return jsonify({'cookies': login_cookies}), 201
from autologin import AutoLogin
print("PRESS CTRL-Z to EXIT")
f = open('zmap_output.txt', "r")
lines = f.readlines()
num_lines = sum(1 for line in open('zmap_output.txt'))
#Zmap_output.txt contains list of scanned IPs of Specified Range
f.close()
for i in range(0,num_lines):
Ip_s = lines[i]
url ="http://"+Ip_s
username = '******'
password = '******'
al = AutoLogin()
try:
cookies = al.auth_cookies_from_url(url, username, password)
print("Working Url: "+url)
print(type(cookies))
with open("output_au.txt",mode='a') as z:
z.write(str(url)+'\n')
except:
print("Try Next Ip: "+url)
class TestAuthCookiesFromUrl(unittest.TestCase):
base_url = 'http://127.0.0.1:{}'.format(PORT)
url = base_url + Login.url
url_no_change_cookie = base_url + LoginNoChangeCookie.url
url_check_proxy = base_url + LoginCheckProxy.url
def setUp(self):
self.al = AutoLogin()
self.mockserver = MockServer()
self.mockserver.__enter__()
def tearDown(self):
self.mockserver.__exit__(None, None, None)
def test_no_login_form(self):
with pytest.raises(AutoLoginException) as e:
self.al.auth_cookies_from_url(
self.url + '?hide=', 'admin', 'secret')
assert e.value.args[0] == 'nologinform'
def test_wrong_password(self):
with pytest.raises(AutoLoginException) as e:
self.al.auth_cookies_from_url(self.url, 'admin', 'wrong')
assert e.value.args[0] == 'badauth'
def test_normal_auth(self):
cookies = self.al.auth_cookies_from_url(
self.url + '?foo=', 'admin', 'secret')
assert {c.name: c.value for c in cookies} == {'_auth': 'yes'}
def test_redirect_to_same_url(self):
cookies = self.al.auth_cookies_from_url(self.url, 'admin', 'secret')
assert {c.name: c.value for c in cookies} == {'_auth': 'yes'}
def test_proxy(self):
assert 'localhost' not in self.url, 'proxy_bypass bypasses localhost'
with MockServer('tests.proxy'):
with pytest.raises(AutoLoginException) as e:
self.al.auth_cookies_from_url(
self.url_check_proxy, 'admin', 'secret')
cookies = self.al.auth_cookies_from_url(
self.url_check_proxy, 'admin', 'secret',
settings={
'HTTP_PROXY': 'http://127.0.0.1:{}'.format(PROXY_PORT)
},
)
assert {c.name: c.value for c in cookies} == {'_auth': 'yes'}
def test_no_change_cookie(self):
cookies = self.al.auth_cookies_from_url(
self.url_no_change_cookie, 'admin', 'secret')
assert {c.name: c.value for c in cookies} == {'session': '1'}
def test_no_change_cookie_wrong_password(self):
with pytest.raises(AutoLoginException) as e:
self.al.auth_cookies_from_url(
self.url_no_change_cookie, 'admin', 'wrong')
assert e.value.args[0] == 'badauth'
