录制了一个发帖的脚本，回放时退出登录那个页面变成了非法请求

yy_miao 发表于 2016-3-1 16:34:46

环境是 IE7+WIN7+LR11

录的action是：登录phpwind85发个贴后退出，录完后关联了登录时的verify. 回放时登出后的那个页面变成了非法请求。

代码如下：

Action()
{

//Correlation comment - Do not change!Original value='9bbf9472c756a08f' Name ='CorrelationParameter_1'

web_reg_save_param_ex(
"ParamName=CorrelationParameter_1",
"LB= '",
"RB=';\r\nvar modeimg ",
SEARCH_FILTERS,
"Scope=Body",
"RequestUrl=*/phpwind85*",
LAST);

web_url("phpwind85",
"URL=http://localhost:8080/phpwind85",
"TargetFrame=",
"Resource=0",
"RecContentType=text/html",
"Referer=",
"Snapshot=t1.inf",
"Mode=HTML",
EXTRARES,

LAST);

web_submit_data("login.php",
"Action=http://localhost:8080/phpwind85/login.php?nowtime=1456811290250&verify={CorrelationParameter_1}",
"Method=POST",
"TargetFrame=",
"RecContentType=text/xml",
"Referer=http://localhost:8080/phpwind85/",
"Snapshot=t2.inf",
"Mode=HTML",
ITEMDATA,
"Name=jumpurl", "Value=http://localhost:8080/phpwind85/index.php", ENDITEM,
"Name=step", "Value=2", ENDITEM,
"Name=ajax", "Value=1", ENDITEM,
"Name=verify", "Value={CorrelationParameter_1}", ENDITEM,
"Name=pwuser", "Value=admin", ENDITEM,
"Name=pwpwd", "Value=admin", ENDITEM,
"Name=lgt", "Value=0", ENDITEM,
LAST);

web_url("index.php",
"URL=http://localhost:8080/phpwind85/index.php",
"TargetFrame=",
"Resource=0",
"RecContentType=text/html",
"Referer=",
"Snapshot=t3.inf",
"Mode=HTML",
EXTRARES,
"URL=images/wind/bg.jpg", ENDITEM,
"URL=images/down.png", ENDITEM,
"URL=images/g/facebg_a.png", ENDITEM,
LAST);

web_url("LR",
"URL=http://localhost:8080/phpwind85/thread.php?fid=3",
"TargetFrame=",
"Resource=0",
"RecContentType=text/html",
"Referer=http://localhost:8080/phpwind85/index.php",
"Snapshot=t4.inf",
"Mode=HTML",
EXTRARES,

LAST);

web_url("??",
"URL=http://localhost:8080/phpwind85/post.php?fid=3",
"TargetFrame=",
"Resource=0",
"RecContentType=text/html",
"Referer=http://localhost:8080/phpwind85/thread.php?fid=3",
"Snapshot=t5.inf",
"Mode=HTML",
EXTRARES,

LAST);

web_submit_data("post.php",
"Action=http://localhost:8080/phpwind85/post.php?fid=3&nowtime=1456811324349&verify=4cc1d2c22b47080f",
"Method=POST",
"EncType=multipart/form-data",
"TargetFrame=",
"RecContentType=text/xml",
"Referer=http://localhost:8080/phpwind85/post.php?fid=3",
"Snapshot=t6.inf",
"Mode=HTML",
ITEMDATA,
"Name=magicname", "Value=", ENDITEM,
"Name=magicid", "Value=", ENDITEM,
"Name=verify", "Value=4cc1d2c22b47080f", ENDITEM,
"Name=cyid", "Value=0", ENDITEM,
"Name=ajax", "Value=1", ENDITEM,
"Name=iscontinue", "Value=0", ENDITEM,
"Name=atc_title", "Value=????????", ENDITEM,
"Name=atc_content", "Value=????????", ENDITEM,
"Name=usernames", "Value=", ENDITEM,
"Name=atc_tags", "Value=", ENDITEM,
"Name=atc_money", "Value=0", ENDITEM,
"Name=atc_credittype", "Value=money", ENDITEM,
"Name=atc_rvrc", "Value=0", ENDITEM,
"Name=replyrewardcredit", "Value=money", ENDITEM,
"Name=replyreward", "Value=", ENDITEM,
"Name=replyreward", "Value=", ENDITEM,
"Name=replyreward", "Value=1", ENDITEM,
"Name=replyreward", "Value=10", ENDITEM,
"Name=atc_usesign", "Value=1", ENDITEM,
"Name=atc_autourl", "Value=1", ENDITEM,
"Name=atc_convert", "Value=1", ENDITEM,
"Name=digest", "Value=0", ENDITEM,
"Name=topped", "Value=0", ENDITEM,
"Name=replayorder", "Value=0", ENDITEM,
"Name=step", "Value=2", ENDITEM,
"Name=pid", "Value=", ENDITEM,
"Name=action", "Value=new", ENDITEM,
"Name=fid", "Value=3", ENDITEM,
"Name=tid", "Value=0", ENDITEM,
"Name=article", "Value=0", ENDITEM,
"Name=special", "Value=0", ENDITEM,
"Name=_hexie", "Value=e6a6ca4819f5e54f", ENDITEM,
LAST);

web_url("read.php",
"URL=http://localhost:8080/phpwind85/read.php?tid=28&ds=1",
"TargetFrame=",
"Resource=0",
"RecContentType=text/html",
"Referer=",
"Snapshot=t7.inf",
"Mode=HTML",
EXTRARES,

LAST);

web_url("??",
"URL=http://localhost:8080/phpwind85/login.php?action=quit&verify=d0729cb8259a28ad",
"TargetFrame=",
"Resource=0",
"RecContentType=text/html",
"Referer=http://localhost:8080/phpwind85/read.php?tid=28&ds=1",
"Snapshot=t8.inf",
"Mode=HTML",
EXTRARES,

LAST);

return 0;
}

yy_miao 发表于 2016-3-1 16:35:52

EXTRARES后面的代码被我删了好多····感觉是样式的代码

prettyfool 发表于 2016-3-2 10:35:28

后面还有verfiy呢，为什么不全部替换成关联参数

seagull1985 发表于 2016-3-2 14:09:28

Action=http://localhost:8080/phpwind85/post.php?fid=3&nowtime=1456811324349&verify=4cc1d2c22b47080f

action有问题。。。最好把时间也参数化一下

yy_miao 发表于 2016-3-3 09:50:44

seagull1985 发表于 2016-3-2 14:09
Action=http://localhost:8080/phpwind85/post.php?fid=3&nowtime=1456811324349&verify=4cc1d2c22b47080f
...

参数化后关联么？

prettyfool 发表于 2016-3-3 10:46:15

yy_miao 发表于 2016-3-3 09:50
参数化后关联么？

不太清楚verify后面的值是什么算出来的，有可能是nowtime的值参与进去了，所以最好还是关联一下吧

页: [1]

51Testing软件测试论坛 's Archiver

录制了一个发帖的脚本，回放时退出登录那个页面变成了非法请求