Logging into VBulletin (c#)

Mightier

Mightier

Captain Time Pirate
Aug 18, 2010
426
6
0
usa
Hey guys,

I'm trying to enhance my coding skills and I've been working on a couple of scraping apps. Thus far I've had no problems logging into websites, but VBulletin is driving me nuts. I've checked the cookies via Wireshark and in VisualStudio and they seem A-OK, but I never actually log in. Edit: I just wanted to add that I've checked the parameters I'm passing and they're correct. I've checked the hash of my password against VBulletin's hash and that's okay.

<-- confused

What stupid stuff am I doing?

Here's my login function:
Code: 
        public static String Login(String username, String password, String formUrl)
        {

            String formParameters = String.Format("vb_login_username={1}&vb_login_password=&s=&securitytoken=guest&do=login&vb_login_md5password={0}&vb_login_md5password_utf={0}", Md5Hash(password), username);

            String cookieheader;

            HttpWebRequest req = (HttpWebRequest)WebRequest.Create(formUrl);
            
            req.ContentType = "application/x-www-form-urlencoded";
            req.Method = "POST";
            req.ContentLength = formParameters.Length;
            req.CookieContainer = _cookies;
            
            byte[] bytes = Encoding.ASCII.GetBytes(formParameters);
            using (Stream os = req.GetRequestStream())
            {
                os.Write(bytes, 0, bytes.Length);
            }
            WebResponse resp = req.GetResponse();
            cookieheader = resp.Headers["Set-Cookie"];
            return cookieheader;

        }

Which I use to get the logged in cookie so that I can grab html via:
Code: 
        public static String GetHtmlSource(String url, String cookie)
        {
            HttpWebRequest request = (HttpWebRequest) WebRequest.Create(new Uri(url));
            request.UserAgent = "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3";
            //  request.Headers.Add("Cookie", cookie);
            request.CookieContainer = _cookies;

            HttpWebResponse response = null;
            try
            {
                response = (HttpWebResponse)request.GetResponse();
                String s = new StreamReader(response.GetResponseStream(), Encoding.ASCII).ReadToEnd();
                response.Close();
                s = s.Replace(Environment.NewLine, "");
                return RemoveTabsAndNewlines(s);

            }
            catch (Exception)
            {
                if(response != null) response.Close();
                return String.Empty;
            }
        }
 


Oh, and why don't you just pass & return the whole cookie container, that should be more error proof than making the cookie a string and back..
 
ShadowCaster said:
remove {0} from
&vb_login_md5password_utf={0}
Click to expand...

I have that there because the headers I captured seem to pass the MD5ed password both as vb_login_md5password and vb_login_md5password_utf. Heck, I even copied the arguments string directly from the headers and tried to use that with no luck!

Oh, and why don't you just pass & return the whole cookie container, that should be more error proof than making the cookie a string and back..
Click to expand...

I'll give that a shot. What's strange is that the cookies seem to be okay. The ones I generate programatically are the same as the ones I capture via Wireshark.

Anyway, I'll get on that and report back.
 
You must log in or register to reply here.
Top Bottom