Login to WordPress Admin Using Php cURL

You might have a WordPress site which generates a file/information daily and you want to grab it without logging to your site. It can be done using cURL. So you don’t have to loggin and view the page anymore. Just use this script on your local server and run the script. It will get you the content.

Following is a function to login into a wordpress site

function curl_get_wp_login( $login_user, $login_pass, $login_url, $visit_url, $http_agent, $cookie_file ){

	if( !function_exists( 'curl_init' ) || ! function_exists( 'curl_exec' )){
		$m = "cUrl is not vailable in you PHP server.";
		echo $m;
	}

	// Preparing postdata for wordpress login
	$data = "log=". $login_user ."&pwd=" . $login_pass . "&wp-submit=Log%20In&redirect_to=" . $visit_url;

	// Intialize cURL
	$ch = curl_init();

	// Url to use
	curl_setopt( $ch, CURLOPT_URL, $login_url );

	// Set the cookies for the login in a cookie file.
	curl_setopt( $ch, CURLOPT_COOKIEJAR, $cookie_file );
	
	// Set SSL to false
	curl_setopt( $ch, CURLOPT_SSL_VERIFYPEER, false );
	
	// User agent
	curl_setopt( $ch, CURLOPT_USERAGENT, $http_agent );
	
	// Maximum time cURL will wait for get response. in seconds
	curl_setopt( $ch, CURLOPT_TIMEOUT, 60 );
	
	curl_setopt( $ch, CURLOPT_FOLLOWLOCATION, 1 );
	
	// Return or echo the execution
	curl_setopt( $ch, CURLOPT_RETURNTRANSFER, 1 );

	// Set Http referer.
	curl_setopt( $ch, CURLOPT_REFERER, $login_url );

	// Post fields to the login url
	curl_setopt( $ch, CURLOPT_POSTFIELDS, $data );
	curl_setopt( $ch, CURLOPT_POST, 1);
	
	// Save the return in a variable
	$content = curl_exec ($ch);
	
	/*
	** if you need to visit another url ,you can do it here.
	** curl_setopt( $ch, CURLOPT_URL, 'a new url address or a file download url' );
	** $content = curl_exec ($ch);
	*/

	// Close the cURL.
	curl_close( $ch );

	// You can echo or return the page data here. 
	echo $content;
}

Now, to use the function, some variable need to be assigned.

// Username for login
$login_user = "admin";


/*
** Password for this username
*/
$login_pass = "1234";


/*
** Login url address.
*/
$login_url = "http://localhost/wordpress/wp-login.php";


/*
** Which page you want to visit after login.
** WordPress redirect their user automatically after login to this page
** if you do not assign a visit page,
** then the result for this login will return '1'.
** That means you have logged in successfully.
** Visit url is ipmportant to get the content.
*/
$visit_url = urlencode( 'http://localhost/wordpress/' );


/*
** Cookie vaiable
*/
$cookie_file = "/cookie.txt";


/*
** Set HTTP user agent.
*/
$http_agent = "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.6) Gecko/20070725 Firefox/2.0.0.6";

// Test the call
curl_get_wp_login( $login_user, $login_pass, $login_url, $visit_url, $http_agent, $cookie_file );

This is how easy it it.

Remember:
* A cURL call is not counted in google analytics. As javascript doesn’t cURL call.
* cURL call does not download any images from the url. so it load faster than normal.

Post your reply below