flt/tools
2
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
d941ea33414e884227fbbc54b570f943945abb8d
tools/zxxk_dl/process.md
flt6 8294293c25 📃 docs(zxxk): Make reserve process 
Former-commit-id: 88583b75c236764204f9f280417d1e604e10a7bc
2023-03-12 15:53:37 +08:00

214 lines
7.3 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# 对于某网站预览文档分析
Released in [52pojie](https://www.52pojie.cn/thread-1757323-1-1.html)
## 背景
某网站资源页面存在预览,有的只有部分,有的能显示全部。对于文字版文档,文件是矢量版,看起来效果很好。
## 预览数据抓包
在页面内打开一个没有打开的文档抓包找到大量svg文件请求
链接(已隐藏部分数据):
```url
https://preview.*****.com/resource/oss/preview/rbm-preview-product/rbm/*******/svg/6.svg?Expires=167*****11&Signature=qK47**********rYq43G6Q%3D
```
将抓包数据导入apifox删除cookie和header测试是否存在验证结果证明不存在除了url param外的其他认证。
## 寻找根源请求数据
上文已经找到了每一页预览的请求,但是由于`Signature`的存在还是无法实现自动请求。刷新页面,搜索上述链接可能的关键词`preview`
观察到有一个疑似请求:
```url
https://www.****.com/soft/Preview/FirstLoadPreviewJson?softID=33****78&fileaddress=&type=3&product=1&v=2&FullPreview=false
```
响应内容是一个json
```json
{
"code": 0,
"success": false,
"data": {
"IsSuccess": true,
"IsRar": true,
"SoftExt": null,
"Html": "\r\n\u003cstyle\u003e\r\n {{请求内容过长忽略}} \u003e\r\nHHHHHHisrar",
"PreviewPage": 0,
"TotalPage": 0,
"rarPreviewInfo": [
{
"FileId": 38****99,
"Html": "\r\n\u003cdiv class=\"multiple-date-preview-file\" data-index=\"3****499\"\u003e\r\n \u003cdiv class=\"preview-main\"\u003e\r\n \r\n \u003cimg data-original=\"https://preview.***.com/resource/oss/preview/rbm-preview-product/rbm/38****99/svg/1.svg?Expires=1678604711\u0026Signature=7w%2BPVktPi********5Lha0%3D\" onselectstart=\"return false\" /\u003e\u003cimg data-original=\"https://preview.***.com/resource/oss/preview/rbm-preview-product/rbm/38****99/svg/2.svg?Expires=16****4711\u0026Signature=zt20********BQ1RGZDlTaB0%3D\" onselectstart=\"return false\" /\u003e\u003c {{以下存在类似内容,忽略}} \u003c/div\u003e\r\n\u003c/div\u003e\r\n\u003cscript\u003e\r\n document.oncontextmenu = function () {\r\n window.event.returnValue = false;\r\n };\r\n var pageNum = 9;\r\n var hasPreview = true;\r\n if (pageNum \u0026\u0026 window.setDocumentPageNum) {\r\n window.setDocumentPageNum(pageNum, hasPreview);\r\n }\r\n\u003c/script\u003e\r\n\r\n",
"SoftName": "************.docx",
"IconClassName": "icon-doc-doc",
"TotalPage": 9,
"PreviewPage": 9,
"IsMedia": false,
"Url": null
},
{
"FileId": 3****500,
"Html": "{{类似上文}}",
"SoftName": "********.docx",
"IconClassName": "icon-doc-doc",
"TotalPage": 5,
"PreviewPage": 5,
"IsMedia": false,
"Url": null
}
]
},
"msg": "预览错误",
"message": null
}
```
PS上文中的`"msg": "预览错误"`对任意都相同,忽略。
经分析,上文的第一个`Html`内容基本无效,都时限制用户的脚本。
`rarPreviewInfo`中的`Html`内容格式化后如下:
```html
<div class="multiple-date-preview-file" data-index="38****99">
<div class="preview-main">
<img
data-original="https://preview.***.com/resource/oss/preview/rbm-preview-product/rbm/38****99/svg/1.svg?Expires=167****711&Signature=7w%2************86WF5Lha0%3D"
onselectstart="return false"
/>
<img
data-original="https://preview.***.com/resource/oss/preview/rbm-preview-product/rbm/38****99/svg/2.svg?Expires=167****711&Signature=zt206U***********1RGZDlTaB0%3D"
onselectstart="return false"
/>
<!-- {{以下类似内容忽略}} -->
</div>
</div>
<script>
document.oncontextmenu = function () {
window.event.returnValue = false;
};
var pageNum = 9;
var hasPreview = true;
if (pageNum && window.setDocumentPageNum) {
window.setDocumentPageNum(pageNum, hasPreview);
}
</script>
```
显然preview链接被直接返回了经检验该链接可以直接请求。
最后导入apifox验证后可以确定无需特殊headers或cookies。
## 最小化请求链接和寻找相关参数
当前链接参数:
SoftID可以直接在文档页面的链接中可以找到
```url
https://www.****.com/soft/33****78.html
```
上文的`33****78`即为softID
`type`, `product`, `v`参数不知道用途,对任意文档都是相同的,疑似网站作者还没有实现,直接引用原文了。
`FullPreview`原本是`false`,改为`true`就直接返回全部内容的预览了.....
## 分析返回的json
测试了多个文档后确定一下结论:
## demo代码
**代码无法运行,因为关键域名被"\*"替代**
```python
import requests
from re import findall, sub
from hashlib import md5
HTML_FORMAT ='''
<html>
<head>
<title>{title}</title>
</head>
<body>
{body}
</body>
</html>
'''
def writefile(filename,text):
filename = sub(r"""[\*\/\\\|\<\>\? \:\.\'\"\!]""", "", filename)
unique = md5(text.encode())
filename += "_"+unique.hexdigest()[:5]
filename+=".html"
print("Writing "+filename)
# print("-=-=-=-=\n",text,"\n-=-=-=-=")
with open(filename+'.html', 'w', encoding="utf-8") as f:
f.write(text)
def main():
softID=input("ID: ")
url = "https://www.*******.com/soft/Preview/FirstLoadPreviewJson?softID={}&type=3&product=1&v=2&FullPreview=true"
response = requests.get(url.format(softID))
if response.status_code!=200:
print("ERROR")
print(response.status_code)
return -1
ret=response.json()["data"]
if not ret["IsSuccess"]:
print("ERROR: IsSuccess option is not true")
print(ret)
if not ret['IsRar']:
print("Not rar")
print("TotalPage=%d" % ret['TotalPage'])
print("SoftExt=%s" % ret['SoftExt'])
try:
html=ret["Html"]
print(ret)
except:
print(ret)
exit(1)
# replace "data-original" to "src" for showing in browser
html=html.replace("data-original", "src")
writefile(f"{softID}",html)
else:
print("is RAR")
rar=ret['rarPreviewInfo']
for file in rar:
html=file["Html"]
title=file["SoftName"]
# replace "data-original" to "src" for showing in browser
# html=html.replace("data-original", "src")
urls=findall("(?<=data-original=\")https://preview.*******.com/\\S+(?=\")",html)
l=[]
for url in urls:
if "jpg" in url:
l.append(f"<img src={url} />")
continue
page=requests.get(url,cookies=response.cookies)
if not page.status_code==200:
print(page)
print(page.status_code)
print(page.text)
assert page.status_code==200
l.append(page.text)
format_html=HTML_FORMAT.format(title=title,body="\n".join(l))
writefile(title,format_html)
if __name__ == "__main__":
while True:
main()
```
Reference in New Issue View Git Blame Copy Permalink