Hi everyone.

I'm trying to make a script like MySpace Manager but for hi5, but hi5 pages are .do...

My question is, how can I (if possible) use javascript injections to login using Microsoft.XMLHTTP:

say I want to login.

I open the browser on www.hi5.com
then type this on the url:

code:

---

javascript:void(document.loginForm.email.value="<email>");
void(document.loginForm.password.value="<password>");
void(document.loginForm.remember.checked=false);
void(document.loginForm.submit())

---

why not open the actual login page ("login.do for example") and then send the username and password as POST variables?

how can I do it?

I haven't use XMLHTTP before so I'm in the dark... I've read somethings about it, but still..

Based on the code from win_crook's reply to Web Services?.

code:

---

var sUrl = "http://www.hi5.com/friend/login.do";
var sEmail = "EMAIL";
var sPassword = "PASSWORD";

var ajax = new ActiveXObject("Microsoft.XMLHTTP");
ajax.open("POST", sUrl, true);
ajax.setRequestHeader('Content-Type', 'application/x-www-form-urlencoded');
var sEncodedEmail = encodeURIComponent(sEmail);
var sEncodedPassword = encodeURIComponent(sPassword);

ajax.onreadystatechange = function() {
   if(ajax.readyState == 4 && ajax.status == 200) {
      Debug.Trace("Success!\nResponse text: "+ajax.responseText);
   }
}

ajax.send("email="+sEncodedEmail+"&password="+sEncodedPassword);

---

quote:

---

Originally posted by Mattike
Based on the code from win_crook's reply to Web Services?.

code:

---

var sUrl = "http://www.hi5.com/friend/login.do";
var sEmail = "EMAIL";
var sPassword = "PASSWORD";

var ajax = new ActiveXObject("Microsoft.XMLHTTP");
ajax.open("POST", sUrl, true);
ajax.setRequestHeader('Content-Type', 'application/x-www-form-urlencoded');
var sEncodedEmail = encodeURIComponent(sEmail);
var sEncodedPassword = encodeURIComponent(sPassword);

ajax.onreadystatechange = function() {
   if(ajax.readyState == 4 && ajax.status == 200) {
      Debug.Trace("Success!\nResponse text: "+ajax.responseText);
   }
}

ajax.send("email="+sEncodedEmail+"&password="+sEncodedPassword);

---

---

Is it possible to use the remember feature of it?

I'm using

code:

---

ajax.send("email="+sEncodedEmail+"&password="+sEncodedPassword+"&remember=on");

---

Shouldn't remember be equal to true, not on?

I used Live HTTP headers and it send on

Going to try with true..

The checkbox has 2 states when the form is submitted, either true (ticked) or false (not ticked). It's that that makes me think it needs changing

doesn't work either...

I guess I'll have to always call a login function..

Wouldn't that be more secure anyway?

yeah, it would...

Thanks for the help

you need to set remember and save the cookie somewhere.

quote:

---

Originally posted by ShawnZ
you need to set remember and save the cookie somewhere.

---

now I'm with a little problem with the logout...

the logout link points to /friend/logoff.do

but If I point it to that url, it doesn't do anything, it needs the session id, like:

/friend/logoff.do;jsessionid=ahbz3I-KpO0c

I could use a regexp to get the session id from the html, the problem is that sometimes the session id doesn't show on the logoff link...

So I guess I need to get the session id from the cookie and add it to the /friend/logoff.do right?

quote:

---

Originally posted by SpunkyLoveMuff
if set = true the site should set the cookie shouldn't it?

---

Anyone have any idea how I can get the innerhtml or value etc. of an ID using XMLHTTP?

I don't wanna have to search for stuff returned by responseText.

I used a regular expression, it's simple...

code:

---

if(new RegExp(/\<a href=\"\/friend\/book\/displayManageBook\.do\"\>(\d+)\<\/a\>\<\/div\>/).exec(Content))

---

Thanks LifelesS, goodluck with your script

quote:

---

Originally posted by davidpolitis
Thanks LifelesS, goodluck with your script

---

hey lifeless .. when u finish this script
can u post it here...

i want to make login functions

but i don't know how to do it ...