<p>了解网站身份验证如何工作的最简单方法是<strong>在登录时捕获流量</strong>,并找出</strong>幕后发生了什么:<strong>使用了哪个URL,提交了哪些数据等</strong>。在</p>
<p>您可以使用<code>fiddler</code>或<code>charles</code>,或最方便的Chrome Dev工具(由F12启动),如下所示:</p>
<p><a href="https://i.stack.imgur.com/UdspW.jpg" rel="nofollow noreferrer"><img src="https://i.stack.imgur.com/UdspW.jpg" alt="login request"/></a></p>
<p>在您的情况下,整个请求是:</p>
<pre><code>POST /privatkunde/start/start.post HTTP/1.1
Host: fahrkarten.bahn.de
Connection: keep-alive
Content-Length: 74
Cache-Control: max-age=0
Origin: https://www.bahn.de
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.76 Safari/537.36
Content-Type: application/x-www-form-urlencoded
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
Referer: https://www.bahn.de/p/view/meinebahn/login.shtml
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.8
scope=bahnde&lang=de&country=DEU&username=demo&password=demo&login-submit=
</code></pre>
<p>最重要的是,由于<strong>cookie用于身份验证/验证,因此整个过程需要一个会话</strong>以及以后用于访问只有登录用户才能访问的其他网页。在</p>
^{pr2}$