Ansell Labs - Direct URLs for freebies (NOTE - still requires Facebook Login)

llama on 03/06/2011 - 10:25
Last edited 03/06/2011 - 11:23

This post follows from thread = http://www.ozbargain.com.au/node/46169

NOTE: I have edited this post, as my original sneaky plan doesn't work properly (to allow bypassing of the Facebook Login).

However… Once you log into Facebook from the ansell-lab page, then you should be able to use this hack to submit multiple requests. In order to do this, keep the ansell page loaded as a separate window.

This is completely untested, and I cannot easily be confirm that it works (ie: that you will get your freebies).

If you have a bit of tech interest/knowledge and want to have a play, then read on. If you want "guaranteed results", then no use going any further :-D

=============================

This morning I was reading this thread = http://www.ozbargain.com.au/node/46169

And I saw a post by elitistphoenix

Stuff them and their facebook connect stuff. I wouldn't even give them one of my trolling profiles. So enjoy peoples:
Change values in url:
http://ansell-lab.com/drupal/?name=NAME&dob_day=2&dob_month=…
nto
http://sitereloader.appspot.com/

But as far as I can determine that is completely incorrect, and just throws up a error (landing) webpage. Highly unlikely that you'll get any freebies from that (there isn't even a way to select WHICH freebie you want (or all 3)

And it's pretty silly to repeatedly hammer a freebie site using a thing like sitereloader, so I am not sure if the whole post is a joke (troll?) or what?

Anyway, I just reverse engineered the HTML and Javascript that is hiding under the actual webpage. It's pretty obscure, and uses JavaScript to lodge a HTML Form submission in the background using a Ajax call.

From what I can determine, this is the correct information for the Form Submission URLs.

The server-side PHP script only returns one letter "Y" if the data is accepted. The form validation is done in Javascript on the webpage, so there is no particular error checking on the server. It will trow an error if the "gift code" is not specified…but that is about all.

So, I have absolutely no way of verifying if this will work or not, and also whether they will do IP logging, Referrer checking (to ensure we aren't bypassing their webpage) etc. Thus, I provide you with zero guarantees…

… if success of your next liason in 3 weeks is conditional on you having some contraceptives at that time, then do NOT rely on this hack :-D

See next post for details.

General Discussion

Comments

  • llama on 03/06/2011 - 10:28

    URLs submitted by Ansell-lab facebook freebies webpage:

    WELCOME PACK
    http://ansell-lab.com/drupal/themes/ansell/formpost.php?n=NA…

    FREE SAMPLE
    http://ansell-lab.com/drupal/themes/ansell/formpost.php?n=NA…

    BIRTHDAY GIFT - LUBRICATION
    http://ansell-lab.com/drupal/themes/ansell/formpost.php?n=NA…

    BIRTHDAY GIFT - VIBRATION
    http://ansell-lab.com/drupal/themes/ansell/formpost.php?n=NA…

    BIRTHDAY GIFT - CONDOMS
    http://ansell-lab.com/drupal/themes/ansell/formpost.php?n=NA…

    YOU MUST EDIT THE URL before you hit "enter" - change as indicated below:
    n= Your name
    d= Birthdate in DD-MM-YYYY format
    a= Street Address
    s= Suburb
    pc= Postcode

    You must NOT use "spaces" inside the parameters - change all spaces in name, address, etc to + (plus)

    These are the other 3 parameters (I already preset these in the links above):
    t=true (Have accepted the Terms&Conditions)
    p= The Code for the offer (1, 2 or 4)
    c= Which Birthday Gift you want

    If the server script accepts it, you will get a single "Y" on the webpage that loads.

    NOTE: Have no way of knowing whether it will work, as they may use IP checking to detect multiple requests, and also may be checking Referrer to make sure you loaded from the proper webpage.

    • ESEMCE on 03/06/2011 - 10:39
      +1

      Takes me to a Facebook "Request for Permission" page

      • llama on 03/06/2011 - 10:42

        BUGGER!

        Will check further when I am at work, this IP must already been "logged in"

      • llama on 03/06/2011 - 10:49

        YEP - it is checking if the user is logged into facebook. There must be another parameter that tells the server about that. Back soon :-)

  • llama on 03/06/2011 - 11:15
    +1

    OK, SORRY - THREAD IS A FAIL - I CANNOT EASILY SOLVE THIS :-(

    The hack URLs I posted above should work once you are logged into Facebook. But NOT if you are not already logged in.

    NOTE: Normally the FaceBook name is what the Freebie will get posted to. If you use a troll/fake name like me, then that package's addressee will look pretty silly. You can work around that by using the main page to Log In, and then use my URLs to alter your Name, Address etc.

    This may end up being useful - the URLs that I posted MIGHT allow you to log in once to Facebook, and then submit multiple (different) names and/or addresses for lots of freebies.

    Alternatively, you can make a new (Fake, anonymous name) FB account, then use my URLs to set your proper name, address, etc for postage of the goodies.

    Anyway, play with them as you see fit. They might be useful for large-scale OzBargainization, or they may not.

    Boring Techy explanation below:

    The way it works is to force you to log in using a Facebook API that is hidden in the main ansell webpage. Then (behiund the scenes) it logs in and creates a session on the ansell server at the URL ansell-lab.com/drupal/themes/ansell/xd_receiver.htm

    Then, when you submit the form… If there is a session, then you can submit the form. If not, you get booted to the Facebook Login page.

    I could keep hacking and work around it, but for a few condoms it's actually easier just to create a fake Facebook Account.

  • djones145 on 03/06/2011 - 12:27

    just create another account, got one and use it for the other deals that come up all the time (coke zero, etc)

    • llama on 03/06/2011 - 14:35

      Yep - me too. My main reason for me doing the workaround is because I deliberately will never use my real name on Facebook.

      And unlike (say) that Canadian Club deal where you get the opportunity to alter your NAME before submitting, this silly Ansell one will only address your goodies to your Facebook Name!

      Unfortunately, the names I'm using of FB aren't the sort of thing that you'd want a delivery to be addressed to and my young family to see IYKWIM :-D

      • Ishadeon on 06/06/2011 - 04:57

        lol… i like u and your hacky ways…

Login or Join to leave a comment
Login Join