Webmail login through CURL

**boy143878** · 04-02-2008 08:29 PM

Hello,

I am trying to autologin to webmail through CURL. I have the following code written, but get a login failed everytime. Have I misconfigured a setting? I cannot find any documentation out there to help me out. Any help would be great.

<?php
// INIT CURL
$ch = curl_init();

// SET URL FOR THE POST FORM LOGIN
curl_setopt($ch, CURLOPT_URL, 'http://domain.com:2095/login');

// ENABLE HTTP POST
curl_setopt ($ch, CURLOPT_POST, 1);

// SET POST PARAMETERS : FORM VALUES FOR EACH FIELD
curl_setopt ($ch, CURLOPT_POSTFIELDS, 'user=mailuser@domain.com&pass=userpassword');

// IMITATE CLASSIC BROWSER'S BEHAVIOUR : HANDLE COOKIES
curl_setopt ($ch, CURLOPT_COOKIEJAR, 'cookie);

curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);

// EXECUTE 1st REQUEST (FORM LOGIN)
$store = curl_exec ($ch);

// CLOSE CURL
curl_close ($ch);

print $store;

?>

**serversphere** · 04-03-2008 07:48 AM

Originally Posted by boy143878

curl_setopt ($ch, CURLOPT_COOKIEJAR, 'cookie);

Your code is missing the final single quote mark at the end of the line. Typo or error?

EDIT: Also try changing your post fields to:

Code:

curl_setopt ($ch, CURLOPT_POSTFIELDS, 'user=mailuser&#37;40domain.com&pass=userpassword');

**LiNUxG0d** · 04-03-2008 08:25 AM

Hey there,

There's a bit more to it. Let me show you an example that works for me. I just whipped it up for fun...

Code:

<?
        $htusername = urlencode("email@yourdomain.com");
        $htpassword = urlencode("password");
        $server = "www.yourdomain.com";

        $ch = null;
        $ch = curl_init();
        curl_setopt($ch, CURLOPT_RETURNTRANSFER,1);
        curl_setopt($ch, CURLOPT_TIMEOUT,3);
        curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
        curl_setopt($ch, CURLOPT_URL,"http://$htusername:$htpassword@$server:2095/");

        if ($buffer = curl_exec($ch)) {

                print $buffer;
        }
        else {

                print $server.": Not responding.\n";
        }

        curl_close($ch);
?>

The above worked for me. I checked and saw the "You are logged in as email@yourdomain.com" in my output, so it does indeed work. Now for you to tweak it.

Instead of using the /login URI, I use the :2095 straight up, since it's an htpasswd protected area. The benefits? If Apache is down, :2095 should work as it's a socket/port and not a valias or redirect in the httpd.conf. Also, manipulating the htaccess popups are usually easier.

I used urlencode() here for the username and password because there might be a few... odd characters which could pose a surprise.

Let me know how it comes along. I really hope this helps you.

Regards,

**boy143878** · 04-05-2008 09:57 PM

I've copied your code into a login.php file, uploaded to domain.com/test and tried running it. I get a redirect to this URL http://domain.com/webmail/x3/?login=1

I also see this php error flash before redirecting the the above url
Warning: curl_setopt() [function curl-setopt]: CURLOPT_FOLLOWLOCATION cannot be activated when in safe_mode or an
open_basedir is set in /home/mhost/public_html/cplogin/login.php on line 20
I commented out the CURLOPT_FOLLOWLOCATION TO RUN THE SCRIPT.

Is it worth mentioning that I am on a reseller hosting plan.

**LiNUxG0d** · 04-07-2008 06:40 PM

Hi there,

If this is what you're returned, then the login was most likely successful. Try to print the contents of the $buffer variable to see if you're logged in. Check the HTML output. The URL you provided indicates "login=1" so you are indeed logged in.

Beyond this, however, you are a bit on your own. This isn't really a webmail client we've made here, it's a simple login using cURL. What you do with it from here on, however, depends on you. If you have any more precise questions, let me know.

You might need to disable safe_mode in your php.ini to fix those errors. I'm not sure about open_basedir, I don't believe I use it all that much, or if so, I don't think it's gotten in my way at all.

Warmest regards,

**boy143878** · 04-07-2008 08:05 PM

thanks for your help, I am indeed logged. I think the problem lies within the fact that I am unable to use followlocation function for curl. I played with the returned buffer and I get a logged in successfully screen, with some broken links, but for the most part this is what I wanted to accomplish; to get a successful login.

**fanfavorite** · 06-18-2008 10:07 AM

I am trying the example code and it works sometimes, but most of the time it gives me a not responding error. Is there a way to fix this? Also, when I actually do get logged in, I add "https://$htusername:$htpassword@$server:2083" to all images so it does not prompt for a password. Is this a security issue and/or is there a better way of doing this? Thanks.

Code:

<?
$htusername = urlencode("USERNAME");
$htpassword = urlencode("PASSWORD");
$server = "WWW.MYDOMAIN.COM";

$ch = null;
$ch = curl_init();
curl_setopt($ch, CURLOPT_RETURNTRANSFER,1);
curl_setopt($ch, CURLOPT_TIMEOUT,3);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_URL,"https://$htusername:$htpassword@$server:2083/");

if ($buffer = curl_exec($ch)) {
	$test = str_replace("/cPanel_magic_revision_","https://$htusername:$htpassword@$server:2083/cPanel_magic_revision_",$buffer);
	print $test;
} else {
	print $server.": Not responding.\n";
}

curl_close($ch);
?>

**fanfavorite** · 06-18-2008 05:02 PM

Turns out it was an error with the shared certificate. Still don't know why, but at least I figured out what is happening.

LinkBack

Thread Tools

Webmail login through CURL

cPanel Login

Webmail login page and customize webmail server installation

Slow login to webmail and sending mail through webmail ?

Solution for webmail.domain.tld not redirecting to actual cPanel webmail login

webmail login using cURL

Showing mail quota in webmail or webmail login?