Skip to content

fix(enshan): avoid WAF 521 by not forcing Accept/UA #572

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
desicend wants to merge 2 commits into
base: main
Choose a base branch
from
Open

fix(enshan): avoid WAF 521 by not forcing Accept/UA #572

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
bec8112
fix(enshan): avoid WAF 521 by not forcing Accept/UA
Feb 18, 2026
17eb1fa
style(enshan): slim request headers and normalize url
Feb 24, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
26 changes: 20 additions & 6 deletions dailycheckin/enshan/main.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,13 +13,21 @@
class EnShan(CheckIn):
name = "恩山无线论坛"

# 说明:right.com.cn 站点存在 WAF;在实测中,部分 Chrome/Windows UA 会触发 521。
# 因此这里避免在 Session 级别强行覆盖请求头;GET 页面时尽量使用浏览器常见的 Accept(text/html)。
_HTML_ACCEPT = "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8"

def __init__(self, check_item):
self.check_item = check_item

@staticmethod
def get_formhash_from_page(session):
"""GET 签到页面并提取 formhash Discuz 常见的 CSRF 字段"""
response = session.get("https://www.right.com.cn/forum/forum.php", timeout=15)
response = session.get(
"https://www.right.com.cn/forum/forum.php",
headers={"Accept": EnShan._HTML_ACCEPT},
timeout=15,
)
response.raise_for_status()
html = response.text
# 常见两种位置:隐藏 input name="formhash" value="..." 或 js var formhash = '...'
Expand All @@ -39,7 +47,12 @@ def sign(session, form_hash):
msg = []
payload = {"formhash": form_hash}
response = session.post(
"https://www.right.com.cn/forum/plugin.php?id=erling_qd:action&action=sign", data=payload, timeout=15
"https://www.right.com.cn/forum/plugin.php?id=erling_qd:action&action=sign",
headers={
"X-Requested-With": "XMLHttpRequest",
},
data=payload,
timeout=15,
)
try:
data = response.json()
Expand Down Expand Up @@ -75,7 +88,11 @@ def sign(session, form_hash):
@staticmethod
def get_info(session):
msg = []
response = session.get("https://www.right.com.cn/FORUM/home.php?mod=spacecp&ac=credit&showcredit=1", timeout=15)
response = session.get(
"https://www.right.com.cn/forum/home.php?mod=spacecp&ac=credit&showcredit=1",
headers={"Accept": EnShan._HTML_ACCEPT},
timeout=15,
)
response.raise_for_status()
html = response.text
try:
Expand Down Expand Up @@ -105,10 +122,7 @@ def main(self):
session = requests.Session()
session.headers.update(
{
"User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.0.0 Safari/537.36",
"Accept": "application/json, text/javascript, */*; q=0.01",
"Referer": "https://www.right.com.cn/forum/",
"Content-Type": "application/x-www-form-urlencoded; charset=UTF-8",
"Cookie": cookie,
}
)
Expand Down