基於Flask 實現Web微信登錄

時間  2019-12-08
標籤 基於 flask 實現 web 微信 登錄 欄目 Python 简体版
原文   原文鏈接

網頁版微信登錄網址css

https://login.wx.qq.com/

  

獲取微信登錄的二維碼

在瀏覽器中訪問登錄接口html

https://login.wx.qq.com/

咱們查找二維碼的圖片能夠看到python

其中src爲jquery

https://login.weixin.qq.com/qrcode/Yd5dz5xUnw=="  

而咱們每次刷新都會生成一個新的二維碼web

多刷新幾回咱們會發現二維碼中src最後面的qrcode/......值每次都會改變 ,索引確定會有一些請求能夠獲取這些值ajax

咱們繼續追蹤發現下面的地址會返回咱們想要的值json

https://login.wx.qq.com/jslogin?appid=wx782c26e4c19acffb&redirect_uri=https%3A%2F%2Flogin.wx.qq.com%2Fcgi-bin%2Fmmwebwx-bin%2Fwebwxnewloginpage&fun=new&lang=zh_CN&_=1538760245717

 

 

import re
import time
import requests
from flask import Flask,render_template


app = Flask(__name__)
app.secret_key = '1231sdfasdf'


@app.route('/login')
def login():
    # 1529982725262
    # 15299828432250135
    ctime = int(time.time() * 1000)
    qcode_url = "https://login.wx.qq.com/jslogin?appid=wx782c26e4c19acffb&redirect_uri=https%3A%2F%2Fwx.qq.com%2Fcgi-bin%2Fmmwebwx-bin%2Fwebwxnewloginpage&fun=new&lang=zh_CN&_={0}".format(ctime)

    rep = requests.get(
        url=qcode_url
    )
    # print(rep.text) # window.QRLogin.code = 200; window.QRLogin.uuid = "gb8UuMBZyA==";
    qcode = re.findall('uuid = "(.*)";',rep.text)[0]

    return render_template('login.html',qcode = qcode)


if __name__ == '__main__':
    app.run()

  

<!DOCTYPE html>
<html lang="zh-CN">
<head>
    <meta charset="UTF-8">
    <title>Title</title>
    <meta name="viewport" content="width=device-width, initial-scale=1">
</head>
<body>
    <div style="width: 200px;margin: 0 auto;">
        <h1 style="text-align: center;">掃碼登陸</h1>
        <img style="width: 200px;height: 200px;" src="https://login.weixin.qq.com/qrcode/{{qcode}}" alt="">
    </div>
</body>
</html>
templates/login.html

 

 

在咱們的瀏覽器訪問flask

http://127.0.0.1:5000/login

當咱們使用微信掃描二維碼時會獲取頭像瀏覽器

那麼這個頭像又是如何去獲取的呢,咱們能夠看到最下面有一個長輪詢一直在監聽咱們的狀態微信

當我掃描成功後它會當即顯示頭像的信息,並出現下面所示

因此顯示頭像的接口爲

https://login.wx.qq.com/cgi-bin/mmwebwx-bin/login?loginicon=true&uuid=oYz4AI8uvA==&tip=0&r=-1163179773&_=1538761446153  

顯示頭像後還會發現有一個長輪詢的url還在監聽者咱們的操做

這個是監聽咱們在手機上確認登錄的操做,當咱們在手機上確認登陸時,就會跳轉的咱們的微信首頁,咱們發現其url仍是獲取頭像的那個url只不過是後面的時間戳變了而已

https://login.wx.qq.com/cgi-bin/mmwebwx-bin/login?loginicon=true&uuid=gYMBccvTIg==&tip=0&r=-1163513765&_=1538761752973  

 

當咱們確認登錄後顯示的頁面以下

 

 

那麼以上咱們微信中的聯繫人和最近的消息和公共號的信息是怎麼來的呢?

追蹤後發現當咱們登錄成功後,上面的長輪詢的url ,當咱們點擊的時候會返回這樣的一個重定向的url和爲200的狀態碼

  

window.code=200;
window.redirect_uri="https://wx2.qq.com/cgi-bin/mmwebwx-bin/webwxnewloginpage?ticket=A11yoFFU70UVEzwMWs0pHAKJ@qrticket_0&uuid=weUN4-XuEQ==&lang=zh_CN&scan=1538762170";

  

 

它會緊接着發送一個get請求獲取認證的信息

https://wx2.qq.com/cgi-bin/mmwebwx-bin/webwxnewloginpage?ticket=Axyf9R_OYhXgcUiOllludh1G@qrticket_0&uuid=obtE33cbSA==&lang=zh_CN&scan=1538763204&fun=new&version=v2  

 

響應的內容以下

<error>
  <ret>0</ret>
  <message></message>
  <skey>@crypt_485b766b_4899d967420b098d6e460440703113d2</skey>
  <wxsid>YnbOharyLFdrGCfb</wxsid>
  <wxuin>2618600910</wxuin>
  <pass_ticket>dyuceNjxq1sDYo1JTFJck3NebIt3M3AIRFNyVLKQwaO2KGk0tA1T425gOqO4aci9</pass_ticket>
  <isgrayscale>1</isgrayscale>
</error>

 

咱們能夠看到咱們要的全部首頁信息在下面的這個請求中

 

https://wx2.qq.com/cgi-bin/mmwebwx-bin/webwxinit?r=-1164894146&pass_ticket=dyuceNjxq1sDYo1JTFJck3NebIt3M3AIRFNyVLKQwaO2KGk0tA1T425gOqO4aci9

 

 

 

咱們來本身編寫程序來獲取上述的信息

import re
import time
import requests
from flask import Flask,render_template,session,jsonify


app = Flask(__name__)
app.secret_key = '1231sdfasdf'


from bs4 import BeautifulSoup

def xml_parse(text):
    result = {}
    soup = BeautifulSoup(text,'html.parser')
    tag_list = soup.find(name='error').find_all()
    for tag in tag_list:
        result[tag.name] = tag.text
    return result



@app.route('/login')
def login():
    # 1529982725262
    # 15299828432250135
    ctime = int(time.time() * 1000)
    qcode_url = "https://login.wx.qq.com/jslogin?appid=wx782c26e4c19acffb&redirect_uri=https%3A%2F%2Fwx.qq.com%2Fcgi-bin%2Fmmwebwx-bin%2Fwebwxnewloginpage&fun=new&lang=zh_CN&_={0}".format(ctime)

    rep = requests.get(
        url=qcode_url
    )
    # print(rep.text) # window.QRLogin.code = 200; window.QRLogin.uuid = "gb8UuMBZyA==";
    qcode = re.findall('uuid = "(.*)";',rep.text)[0]
    session['qcode'] = qcode
    return render_template('login.html',qcode = qcode)

@app.route('/check/login')
def check_login():

    qcode = session['qcode']
    ctime = int(time.time() * 1000)
    check_login_url = 'https://login.wx.qq.com/cgi-bin/mmwebwx-bin/login?loginicon=true&uuid={0}&tip=0&r=-976036168&_={1}'.format(qcode,ctime)


    rep = requests.get(
        url=check_login_url
    )
    result = {'code': 408}

    if 'window.code=408' in rep.text:
        # 用戶未掃碼
        result['code'] = 408
    elif 'window.code=201' in rep.text:
        # 用戶掃碼,獲取頭像
        result['code'] = 201
        result['avatar'] = re.findall("window.userAvatar = '(.*)';",rep.text)[0]
    elif 'window.code=200' in rep.text:
        # 用戶確認登陸
        redirect_uri = re.findall('window.redirect_uri="(.*)";',rep.text)[0]
        print(redirect_uri)
        #https://wx.qq.com/cgi-bin/mmwebwx-bin/webwxnewloginpage?ticket=ASEHe9Kr5Hq0PITHG1dXEBS8@qrticket_0&uuid=gfbq6fFg9Q==&lang=zh_CN&scan=1529986929&fun=new&version=v2
        # https://wx.qq.com/cgi-bin/mmwebwx-bin/webwxnewloginpage?ticket=ATEkrWXwLgR3QjDuYsx-dpzN@qrticket_0&uuid=obFFB7YwVA==&lang=zh_CN&scan=1529986454
        redirect_uri = redirect_uri + "&fun=new&version=v2"
        ru = requests.get(url=redirect_uri)

        # <error><ret>0</ret><message></message><skey>@crypt_ac8812af_0ffde1190007c7c044bc31ae51407c45</skey><wxsid>fRwfacRtjRFpEIwt</wxsid><wxuin>1062220661</wxuin><pass_ticket>0M1plebTzNQ%2FKaSIfTfk65laCSXUWmjpxvJEerZSnBaEDjNIyOafaQLtpQBhnCDa</pass_ticket><isgrayscale>1</isgrayscale></error>
        ticket_dict = xml_parse(ru.text)
        session['ticket_dict'] = ticket_dict
        result['code'] = 200

    return jsonify(result)


@app.route('/index')
def index():
    pass_ticket = session['ticket_dict']['pass_ticket']
    init_url = "https://wx.qq.com/cgi-bin/mmwebwx-bin/webwxinit?r=-979112921&lang=zh_CN&pass_ticket={0}".format(pass_ticket)

    rep = requests.post(
        url=init_url,
        json={
            'BaseRequest':{
                'DeviceID':"e700290354098676",
                'Sid':session['ticket_dict']['wxsid'],
                'Skey':session['ticket_dict']['skey'],
                'Uin':session['ticket_dict']['wxuin'],
            }
        }
    )
    rep.encoding = 'utf-8'

    init_user_dict = rep.json()
    print(init_user_dict)

    return render_template('index.html',init_user_dict=init_user_dict)



if __name__ == '__main__':
    app.run()

  

<!DOCTYPE html>
<html lang="zh-CN">
<head>
    <meta charset="UTF-8">
    <title>Title</title>
    <meta name="viewport" content="width=device-width, initial-scale=1">
</head>
<body>
    <div style="width: 200px;margin: 0 auto;">
        <h1 style="text-align: center;">掃碼登陸</h1>
        <img id="userAvatar" style="width: 200px;height: 200px;" src="https://login.weixin.qq.com/qrcode/{{qcode}}" alt="">
    </div>

    <script src="https://cdn.bootcss.com/jquery/3.3.0/jquery.min.js"></script>
    <script>
        $(function () {
            checkLogin();
        });
        function checkLogin() {
            $.ajax({
                url:'/check/login',
                method:'GET',
                dataType:'json',
                success:function (arg) {
                    console.log(arg);
                    checkLogin();
                    if(arg.code === 408){
                        checkLogin();
                    }else if(arg.code === 201){
                        $('#userAvatar').attr('src',arg.avatar);
                        checkLogin();
                    }else if(arg.code === 200){
                        location.href = "/index"
                    }
                }
            })
        }
    </script>
</body>
</html>
templates/login.html 
<!DOCTYPE html>
<html lang="zh-CN">
<head>
    <meta charset="UTF-8">
    <title>Title</title>
    <meta name="viewport" content="width=device-width, initial-scale=1">
</head>
<body>
    <h1>歡迎使用Web微信:{{init_user_dict.User.NickName}}</h1>

    <h3>最近聯繫人</h3>
    <ul>
        {% for row in init_user_dict.ContactList %}
            <li>{{row.NickName}}</li>
        {% endfor %}
        <li><a href="#">查看全部聯繫人</a></li>
    </ul>

    <h3>最近公衆號</h3>
    {% for item in init_user_dict.MPSubscribeMsgList %}
        <div>
            <h3>{{item.NickName}}</h3>
            <ul>
                {% for msg in item.MPArticleList %}
                <li><a href="{{msg.Url}}">{{msg.Title}}</a></li>
                {% endfor %}
            </ul>
        </div>
    {% endfor %}



</body>
</html>
templates/index.html

登錄成功後訪問

http://127.0.0.1:5000/index

獲取的信息以下

相關文章
相關標籤/搜索
每日一句
    每一个你不满意的现在,都有一个你没有努力的曾经。
本站公眾號
   歡迎關注本站公眾號,獲取更多信息
聯繫我們 最近搜索 最新文章 沪ICP备13005482号-10 MyBatis教程 SQL 教程 MySQL教程 Java 教程 Thymeleaf 教程 Hibernate教程 Spring教程 Redis教程