On 06/06/2012 03:08 AM, Fernando Cassia wrote: > I think if you look at the source (log-in form) there' s a "session > token" there, apparently handled via Javascript.
I don't know whether Javascript may be modifying the form or not, but there are clearly several input items to the "login-form" form that are not being represented in your --post-data (which you've spelled --post-date? but I assume it's correct in your real script), such as "authenticity_token", "back_login", "auto_login", and the submit button "submit", itself. Many CGI-based forms require all the data from the submitted form to be present in the post-data before they will function. Chances are good that authenticity_token, at least, would need to be parsed out from the original login page when you get it, and fed back to it in the post-data. How you manage that will be up to you (Perl could get you something quick-and-dirty). Good luck! -mjc
