signin rush, but not done...

Author: IndexXuan

app/controller/auth.js

@@ -10,8 +10,12 @@
 module.exports = app => {
   return class AuthController extends app.Controller {
 
+    async login (ctx) {
+      ctx.body = await ctx.service.auth.login(ctx.query)
+    }
+
     async signin (ctx) {
-      ctx.body = await ctx.service.auth.signin()
+      ctx.body = await ctx.service.auth.signin(ctx.query)
     }
 
   } // /.class=>AuthController

app/middleware/error_handler.js

@@ -19,15 +19,15 @@ module.exports = app => {
       // 生产环境 500 错误的详细错误内容不返回给客户端，因为可能包含敏感信息
       const error = status === 500 && ctx.app.config.env === 'prod'
         ? 'Internal Server Error'
-        : `from: middleware, msg: ${err.message}`
+        : `from: middleware, \n msg: ${err.message}, \n stacks ${err.stack}`
       // 从 error 对象上读出各个属性，设置到响应中
       ctx.body = { error }
       // 422 Unprocessable Entity
       if (status === 422) {
         ctx.body.detail = err.errors
       }
       ctx.status = status
-      console.log('-============middleware============')
+      // app.logger.info('========== middleware catched error ==========')
     } // /.catch
   } // /. async function
 

app/router.js

@@ -14,6 +14,7 @@ module.exports = app => {
   // 2. 多个API貌似没有分页参数
 
   // @auth
+  app.get('v2ex', '/api/v2/auth/login', 'auth.login')
   app.get('v2ex', '/api/v2/auth/signin', 'auth.signin')
 
   // @site

app/service/auth.js

@@ -14,12 +14,29 @@ module.exports = app => {
 
     constructor (ctx) {
       super(ctx)
-      this.url = 'https://www.v2ex.com/signin'
-      this.setCookiestr = '' // 供放在headers里使用
-      this.cookies = '' // get到的cookie暂存，供合并给最终的cookies
-      this.userKey = ''
-      this.passKey = ''
-      this.once = ''
+      this.commonHeaders = {
+        "Accept": "text/html,application/xhtml+xml,application/xml",
+        "Origin": "https://www.v2ex.com",
+        "Referer": "https://www.v2ex.com/massion",
+        "User-Agent": "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36"
+      }
+
+      // sessionid
+      this.sessionCookieName = 'PB3_SESSION'
+
+      // token cookie name
+      this.tokenCookieName =  'A2'
+
+      // 获取登陆签名
+      this.loginUrl = 'https://www.v2ex.com/signin'
+      this.sessionCookie = '' // 供 `login`接口放在Header里 `Set-Cookie` 使用
+      this.loginCookieArr = '' // get到的cookie暂存，供合并给最终的cookie
+      this.userKey = '' // 用户名 输入框埋下的随机key
+      this.passKey = '' // 密码   输入框埋下的随机key
+      this.once = ''    // input[type="hidden"][name="once"]的随机令牌值(5位数字目前)
+
+      // 签到领金币
+      this.signinUrl = 'https://www.v2ex.com/mission/daily'
     }
 
     async request (url, opts) {
@@ -30,7 +47,7 @@ module.exports = app => {
       return await this.ctx.curl(url, opts)
     }
 
-    getKeys (content) {
+    getLoginTokens (content) {
       const re = /class="sl"\s*name=\"(\w*)/g
       const onceRe = /type="hidden"\s*value="(\w*)\s*/
       const matches = content && content.match(re)
@@ -39,71 +56,120 @@ module.exports = app => {
       this.once = content.match(onceRe)[1]
     }
 
-    async getAuthPrepare () {
-      const result = await this.request(this.url, {
+    /**
+     * getLoginPrepare
+     *
+     */
+    async getLoginPrepare () {
+      const result = await this.request(this.loginUrl, {
         method: 'GET',
         dataType: 'text',
-        headers: {
-          "accept": "text/html,application/xhtml+xml,application/xml",
-          "origin": "https://www.v2ex.com",
-          "referer": "https://www.v2ex.com/signin",
-          "user-agent": "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36"
-        }
+        headers: this.commonHeaders
       }) 
-      this.setCookiestr = result.headers['set-cookie'][0]
+
+      this.sessionCookie = result.headers['set-cookie'][0]
+
       const cs = setCookieParser(result)
-      this.cookies = cs
 
-      // set cookies for client
-      cs.forEach(c => {
-        this.ctx.cookies.set(c.name, c.value, {
-          domain: '',
-          expires: c.expires,
-          path: c.path,
-          httpOnly: c.httpOnly
-        })
-      })
-      return this.getKeys(result.data)
+      // 设置到暂存对象中
+      this.loginCookieArr = cs.filter(cookie => cookie.name !== 'V2EX_LANG')
+
+      return this.getLoginTokens(result.data)
     }
 
-    async signin (ctx) {
+    /**
+     * login
+     * 登陆获取签名
+     *
+     * @param params
+     */
+    async login (params) {
 
-      await this.getAuthPrepare()
+      await this.getLoginPrepare()
+
+      const { username, password } = params
 
       const opts = {
         method: 'POST',
-        headers: {
-          "method": "POST",
-          "accept": "text/html,application/xhtml+xml,application/xml",
-          "origin": "https://www.v2ex.com",
-          "referer": "https://www.v2ex.com/signin",
-          "Cookie": this.setCookiestr, 
-          "user-agent": "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36"
-        },
+        headers: Object.assign(this.commonHeaders, { Cookie: this.sessionCookie }),
         data: {
-          [this.userKey]: "your username",
-          [this.passKey]: "your password",
-          "once": this.once,
-          "next": "/"
+          [this.userKey]: username,
+          [this.passKey]: password,
+          "once": this.once
         }
       }
 
-      const result = await this.request(this.url, opts)
+      const result = await this.request(this.loginUrl, opts)
 
       const cs = setCookieParser(result)
-      // set cookies for client
-      cs.forEach(c => {
+      const tokens = cs.concat(this.loginCookieArr)
+      let success = false
+      tokens.forEach(c => {
+        if (c.name === this.tokenCookieName) success = true
         this.ctx.cookies.set(c.name, c.value, {
+          httpOnly: true,
           domain: '',
           path: c.path,
-          expires: c.expires,
-          httpOnly: c.httpOnly
+          expires: c.expires
         })
       })
 
-      // return all cookies to client
-      return cs.concat(this.cookies.filter(item => item.name === 'PB3_SESSION'))
+      return {
+        result: success,
+        msg: success ? 'success' : 'sorry! Not get enough token for you',
+        data: {
+          username: username
+        }
+      }
+    }
+
+    getSigninOnce (content) {
+      // update this.once
+      const onceResult = content.match(/once=(\w*)/g)[1]
+      this.once = onceResult.match(/once=(\w*)/)[1]
+    }
+
+    async getSigninPrepare () {
+      const token = `A2=${this.ctx.cookies.get('A2')}`
+      const result = await this.request(this.signinUrl, {
+        method: 'GET',
+        dataType: 'text',
+        headers: Object.assign(this.commonHeaders, { Cookie: `${this.sessionCookie} ${token}` })
+      }) 
+
+      return this.getSigninOnce(result.data)
+    }
+
+    /**
+     * signin
+     * 签到领金币
+     *
+     * @param params
+     */
+    async signin (params) {
+      await this.getSigninPrepare()
+
+      const token = `${this.tokenCookieName}=${this.ctx.cookies.get(this.tokenCookieName)}`
+      const session = `${this.sessionCookieName}=${this.ctx.cookies.get(this.sessionCookieName)}`
+      const headers = Object.assign(this.commonHeaders, { Cookie: `${session}; ${token}` })
+      console.log(headers, this.once)
+      const opts = {
+        dataType: 'text',
+        method: 'get'
+      }
+
+      const result = await this.request(`${this.signinUrl}/redeem`, Object.assign(opts, { 
+        headers: headers,
+        data: { 
+          'once': this.once
+        }
+      }))
+      const success = await this.request(`${this.signinUrl}`, Object.assign(opts, {
+        headers: this.commonHeaders
+      }))
+      return success 
     }
 
   } // /.class=>AuthService
 }
+