gfranxman/django-csrftoken-login-demo.bash

## django-csrftoken-login-demo.bash
# source this code in a Bash shell
# and run like django-post-payload '{"a": "b"}'
# you can set the credentials by exporting DJANGO_USER and DJANGO_PASSWORD

django-post-payload() {
    local TARGET=http://ws.somesite.com/some/service/endpoint/
    local PAYLOAD=$1
    #"{\"asd\": \"asd\"}"
    local LOGIN=http://ws.somesite.com/login/
    #
    local USER=${DJANGO_USER:-admin}
    local PASSWD=${DJANGO_PASSWORD:-admin}
    # no changes needed below:
    local COOKIES=cookies.txt
    local CURL_BIN="curl -c $COOKIES -b $COOKIES -e $LOGIN"
    local SCURL_BIN="curl -s -c $COOKIES -b $COOKIES -e $LOGIN --output /dev/null"
    local ICURL_BIN="curl -s -D- -c $COOKIES -b $COOKIES -e $LOGIN --output /dev/null"
    local DATAFILE=curl-data.txt

    umask 0007
    echo "Django Auth: get csrftoken ..."
    echo $SCURL_BIN $LOGIN
    $SCURL_BIN $LOGIN

    local DJANGO_TOKEN="csrfmiddlewaretoken=$(grep csrftoken $COOKIES | sed 's/^.*csrftoken\s*//' | awk '{$1=$1}{ print }')"
    echo "login ..."
    echo "$DJANGO_TOKEN;username=$USER;password=$PASSWD" > $DATAFILE
    $SCURL_BIN -X POST -d @$DATAFILE $LOGIN

    echo "refresh token ..."
    $SCURL_BIN "$TARGET"
    local DJANGO_TOKEN="csrfmiddlewaretoken=$(grep csrftoken $COOKIES | sed 's/^.*csrftoken\s*//' | awk '{$1=$1}{ print }')"
    echo "Posting PAYLOAD to TARGET"
    echo "$DJANGO_TOKEN;$PAYLOAD" > $DATAFILE
    $ICURL_BIN -X POST -d @$DATAFILE "$TARGET" | head -1
    local RES=$?
    rm $COOKIES $DATAFILE
    echo $RES
}
	# source this code in a Bash shell
	# and run like django-post-payload '{"a": "b"}'
	# you can set the credentials by exporting DJANGO_USER and DJANGO_PASSWORD

	django-post-payload() {
	local TARGET=http://ws.somesite.com/some/service/endpoint/
	local PAYLOAD=$1
	#"{\"asd\": \"asd\"}"
	local LOGIN=http://ws.somesite.com/login/
	#
	local USER=${DJANGO_USER:-admin}
	local PASSWD=${DJANGO_PASSWORD:-admin}
	# no changes needed below:
	local COOKIES=cookies.txt
	local CURL_BIN="curl -c $COOKIES -b $COOKIES -e $LOGIN"
	local SCURL_BIN="curl -s -c $COOKIES -b $COOKIES -e $LOGIN --output /dev/null"
	local ICURL_BIN="curl -s -D- -c $COOKIES -b $COOKIES -e $LOGIN --output /dev/null"
	local DATAFILE=curl-data.txt

	umask 0007
	echo "Django Auth: get csrftoken ..."
	echo $SCURL_BIN $LOGIN
	$SCURL_BIN $LOGIN

	local DJANGO_TOKEN="csrfmiddlewaretoken=$(grep csrftoken $COOKIES \| sed 's/^.csrftoken\s//' \| awk '{$1=$1}{ print }')"
	echo "login ..."
	echo "$DJANGO_TOKEN;username=$USER;password=$PASSWD" > $DATAFILE
	$SCURL_BIN -X POST -d @$DATAFILE $LOGIN

	echo "refresh token ..."
	$SCURL_BIN "$TARGET"
	local DJANGO_TOKEN="csrfmiddlewaretoken=$(grep csrftoken $COOKIES \| sed 's/^.csrftoken\s//' \| awk '{$1=$1}{ print }')"
	echo "Posting PAYLOAD to TARGET"
	echo "$DJANGO_TOKEN;$PAYLOAD" > $DATAFILE
	$ICURL_BIN -X POST -d @$DATAFILE "$TARGET" \| head -1
	local RES=$?
	rm $COOKIES $DATAFILE
	echo $RES
	}