The problem is as follows.

http://soft.yshi.ru/123456.html

The VKontakte "Like" script works on this openapi.js script. I downloaded it to my host, and I registered the path on my server (http://soft.yshi.ru/openapi.js) in html The script works great.

When the page loads, it generates a hash code to perform further actions (provided that the user is previously authorized by Vkontakte).

First, the VK.Init , VK.Util function is VK.Util , then VK.Widgets.Like , to perform VK.Widgets.Like , this very hash is required, in the js file it is called VK._session.sid .

Attention the question: "How can I get it out (I try to edit openapi.js, it turns out, but in javascript I still don't understand much), well, for example, in alert and where to get it at all. js file i found next

the idea is that if you succeed in doing this, then it will be possible to identify / log almost all users of site visitors without their knowledge (), provided that the visitor is logged in to VKontakte, which is 95% of all users

  • In general, this type of counter, as I understand it? - Michael Nikolaev
  • Well, in fact, you can simply make the authorization through OAuth VKontakte and you will get the user's main info - Mikhail Nikolaev

1 answer 1

Data from a frame that is located on another domain cannot be obtained if this frame does not provide any api ( urlhash, postMessage ) for this, i.e. In the case of VKontakte hash will not work.