代码收藏家 阿里系acw_sc__v3滑块在南方航空的应用分析
声明:
本文章中所有内容仅供学习交流使用,不用于其他任何目的,抓包内容、敏感网址、数据接口等均已做脱敏处理,严禁用于商业用途和非法用途,否则由此产生的一切后果均与作者无关!
主要代码
function getSignature(UserId, UserUserId, sceneId){
devideData = _Yr('Log1', at, tr, kr)
SignatureNonce = _zt()
Timestamp = _At()
Signature = _Gr({
"AccessKeyId": "xxxxxxxxxxxx",
"SignatureMethod": "HMAC-SHA1",
"SignatureVersion": "1.0",
"Format": "JSON",
"Timestamp": Timestamp,
"Version": "xxxxx",
"Action": "InitCaptchaV2",
"SceneId": sceneId,
"Language": "cn",
"Mode": "embed",
"UserUserId": UserUserId,
"UserId": UserId,
"DeviceData": devideData,
"SignatureNonce": SignatureNonce
}, "xxxxxxxxxxxxxxxxxxxxxxxxx")
return {'Signature': Signature, 'devideData': devideData, "SignatureNonce": SignatureNonce, "Timestamp": Timestamp}
}
function getTrack(){
o = {
TrackList: _Xa(tracks),
TrackStartTime: startTime,
VerifyTime: 444,
}
console.log(bn)
// token=""
// console.log(_em(undefined,bn))
key = ""
data = _yr(JSON.stringify(o))
n = {
"sceneId": "",
"certifyId": certifyId,
'deviceToken': _em(undefined, bn),
'data': _en(key, data)
}
u = {
"SceneId": n["sceneId"],
"CertifyId": certifyId,
"CaptchaVerifyParam": JSON.stringify(n),
"UserUserId": UserUserId
}
H = {
"AccessKeyId": "",
"SignatureMethod": "HMAC-SHA1",
"SignatureVersion": "1.0",
"Format": "JSON",
"Timestamp": _hr(),
"Version": "",
"Action": "VerifyCaptchaV2"
}
H = _tr(H, u)
H['SignatureNonce'] = _mr()
console.log(H)
H['Signature'] = _Hn(H, "")
return H
}
结果
总结
1.出于安全考虑,本章未提供完整流程,调试环节省略较多,只提供大致思路,具体细节要你自己还原,相信你也能调试出来。
2.侵权或损害了你的利益头像首页联系
作者:2766958292
