Auth 1.0 oauth_signature 为 magento API 创建 Android
Auth 1.0 oauth_signature creation Android for magento API
我使用以下授权调用 Magento API header,
auth = "OAuth oauth_consumer_key=**********************,oauth_consumer_secret=****************,oauth_token=************,oauth_token_secret=**************,oauth_signature_method=HMAC-SHA1,oauth_timestamp=" + ConstantFunctions.GetTimeStamp() + ",oauth_nonce=" + ConstantFunctions.GetNonce() + ",oauth_signature=*******************) ;
当我调用 API 时,
出现错误 oauth_problem=signature_invalid 。所有其他参数验证成功但签名出错,
我尝试使用以下代码生成签名,
public static String GETHMACSHA1(String value, String key)
throws UnsupportedEncodingException, NoSuchAlgorithmException,
InvalidKeyException {
String type = "HmacSHA1";
SecretKeySpec secret = new SecretKeySpec(key.getBytes(), type);
Mac mac = Mac.getInstance(type);
mac.init(secret);
byte[] bytes = mac.doFinal(value.getBytes());
return bytesToHex(bytes);
}
private final static char[] hexArray = "0123456789abcdef".toCharArray();
private static String bytesToHex(byte[] bytes) {
char[] hexChars = new char[bytes.length * 2];
int v;
for (int j = 0; j < bytes.length; j++) {
v = bytes[j] & 0xFF;
hexChars[j * 2] = hexArray[v >>> 4];
hexChars[j * 2 + 1] = hexArray[v & 0x0F];
}
return new String(hexChars);
}
我通过 oauth_consumer_secret 和 oauth_token_secret 作为参数来获取签名。但它仍然得到同样的错误。
如何在 android 中生成签名以及我需要传递哪个值才能获得相同的签名?
对于 Oauth,我认为您不应该通过 CS 和 TS。您需要连接一组 URL-encoded 属性和参数来构造签名基础字符串。请参考 -
devdocs.magento.com/guides/v2.0/get-started/authentication/
so in other words, one of the params in SHA1 will be an encoded url
and it should be in a specific format starting with HTTP method.
url 编码前应包含上述参数。
我在 Woocommerce API 中为 android 进行了类似的 Oauth 身份验证,请参阅此要点 url 以获取更多信息。
https://gist.github.com/Muneefm/f4c08b2aa3accd57fa890156f74e619a
在此检查名为 getLoginUrl() 的方法。我在其中连接了 url。
我们不需要将所有属性作为 auth 传递,改造本身会处理这个,我们只需要传递 CONSUMER_KEY、CONSUMER_SECRET、ACCESS_TOKEN 和 TOKEN_SECRET.
通过关注 this
ApiUtils class 会像,
科特林
class ApiUtils {
companion object {
fun getAPIService(): APIService? {
val consumer = OkHttpOAuthConsumer(BuildConfig.CONSUMER_KEY, BuildConfig.CONSUMER_SECRET)
consumer.setTokenWithSecret(BuildConfig.ACCESS_TOKEN, BuildConfig.TOKEN_SECRET)
return RetrofitClient.getClient(BuildConfig.BASE_URL, consumer)?.create(APIService::class.java)
}
}
}
Android Java
public class ApiUtils {
private ApiUtils() {
}
private static final String BASE_URL = BuildConfig.BASE_URL;
public static APIService getAPIService() {
OkHttpOAuthConsumer consumer = new OkHttpOAuthConsumer(BuildConfig.CONSUMER_KEY, BuildConfig.CONSUMER_SECRET);
consumer.setTokenWithSecret(BuildConfig.ACCESS_TOKEN, BuildConfig.TOKEN_SECRET);
OkHttpClient client = new OkHttpClient.Builder()
.addInterceptor(new SigningInterceptor(consumer))
.build();
return RetrofitClient.getClient(BASE_URL, client).create(APIService.class);
}
}
和 RetrofitClient Class
科特林
class RetrofitClient {
companion object {
private var retrofit: Retrofit? = null
private val gSON = GsonBuilder()
.setLenient()
.create()
fun getClient(baseUrl: String, consumer: OkHttpOAuthConsumer): Retrofit? {
val logging = HttpLoggingInterceptor()
if (BuildConfig.DEBUG) {
logging.level = HttpLoggingInterceptor.Level.BODY
} else {
logging.level = HttpLoggingInterceptor.Level.NONE
}
val httpClient = OkHttpClient.Builder()
httpClient.connectTimeout(60000, TimeUnit.SECONDS)
httpClient.writeTimeout(120000, TimeUnit.SECONDS)
httpClient.readTimeout(120000, TimeUnit.SECONDS)
httpClient.retryOnConnectionFailure(true)
httpClient.addInterceptor(SigningInterceptor(consumer))
httpClient.addInterceptor { chain ->
val request = chain.request()
val requestBuilder = request.newBuilder()
.header(HEADER_CONTENT_TYPE_KEY, PreferenceHandler.getContentType())
.header(HEADER_ACCEPT_KEY, PreferenceHandler.getAcceptType())
.header(HEADER_CACHE_CONTROL_KEY, PreferenceHandler.getCacheControl())
val modifiedRequest = requestBuilder.build()
chain.proceed(modifiedRequest)
}
httpClient.addNetworkInterceptor(logging)
if (retrofit == null) {
retrofit = Retrofit.Builder()
.baseUrl(baseUrl)
.addConverterFactory(GsonConverterFactory.create(gSON))
.client(httpClient.build())
.build()
}
return retrofit
}
}
}
Android java
public class RetrofitClient {
private static Retrofit retrofit = null;
public static Retrofit getClient(String baseUrl,OkHttpClient client) {
if (retrofit == null) {
retrofit = new Retrofit.Builder()
.baseUrl(baseUrl)
.client(client)
.addConverterFactory(GsonConverterFactory.create())
.build();
}
return retrofit;
}
}
我使用以下授权调用 Magento API header,
auth = "OAuth oauth_consumer_key=**********************,oauth_consumer_secret=****************,oauth_token=************,oauth_token_secret=**************,oauth_signature_method=HMAC-SHA1,oauth_timestamp=" + ConstantFunctions.GetTimeStamp() + ",oauth_nonce=" + ConstantFunctions.GetNonce() + ",oauth_signature=*******************) ;
当我调用 API 时,
出现错误 oauth_problem=signature_invalid 。所有其他参数验证成功但签名出错,
我尝试使用以下代码生成签名,
public static String GETHMACSHA1(String value, String key)
throws UnsupportedEncodingException, NoSuchAlgorithmException,
InvalidKeyException {
String type = "HmacSHA1";
SecretKeySpec secret = new SecretKeySpec(key.getBytes(), type);
Mac mac = Mac.getInstance(type);
mac.init(secret);
byte[] bytes = mac.doFinal(value.getBytes());
return bytesToHex(bytes);
}
private final static char[] hexArray = "0123456789abcdef".toCharArray();
private static String bytesToHex(byte[] bytes) {
char[] hexChars = new char[bytes.length * 2];
int v;
for (int j = 0; j < bytes.length; j++) {
v = bytes[j] & 0xFF;
hexChars[j * 2] = hexArray[v >>> 4];
hexChars[j * 2 + 1] = hexArray[v & 0x0F];
}
return new String(hexChars);
}
我通过 oauth_consumer_secret 和 oauth_token_secret 作为参数来获取签名。但它仍然得到同样的错误。
如何在 android 中生成签名以及我需要传递哪个值才能获得相同的签名?
对于 Oauth,我认为您不应该通过 CS 和 TS。您需要连接一组 URL-encoded 属性和参数来构造签名基础字符串。请参考 - devdocs.magento.com/guides/v2.0/get-started/authentication/
so in other words, one of the params in SHA1 will be an encoded url and it should be in a specific format starting with HTTP method.
url 编码前应包含上述参数。
我在 Woocommerce API 中为 android 进行了类似的 Oauth 身份验证,请参阅此要点 url 以获取更多信息。
https://gist.github.com/Muneefm/f4c08b2aa3accd57fa890156f74e619a
在此检查名为 getLoginUrl() 的方法。我在其中连接了 url。
我们不需要将所有属性作为 auth 传递,改造本身会处理这个,我们只需要传递 CONSUMER_KEY、CONSUMER_SECRET、ACCESS_TOKEN 和 TOKEN_SECRET.
通过关注 this
ApiUtils class 会像,
科特林
class ApiUtils {
companion object {
fun getAPIService(): APIService? {
val consumer = OkHttpOAuthConsumer(BuildConfig.CONSUMER_KEY, BuildConfig.CONSUMER_SECRET)
consumer.setTokenWithSecret(BuildConfig.ACCESS_TOKEN, BuildConfig.TOKEN_SECRET)
return RetrofitClient.getClient(BuildConfig.BASE_URL, consumer)?.create(APIService::class.java)
}
}
}
Android Java
public class ApiUtils {
private ApiUtils() {
}
private static final String BASE_URL = BuildConfig.BASE_URL;
public static APIService getAPIService() {
OkHttpOAuthConsumer consumer = new OkHttpOAuthConsumer(BuildConfig.CONSUMER_KEY, BuildConfig.CONSUMER_SECRET);
consumer.setTokenWithSecret(BuildConfig.ACCESS_TOKEN, BuildConfig.TOKEN_SECRET);
OkHttpClient client = new OkHttpClient.Builder()
.addInterceptor(new SigningInterceptor(consumer))
.build();
return RetrofitClient.getClient(BASE_URL, client).create(APIService.class);
}
}
和 RetrofitClient Class
科特林
class RetrofitClient {
companion object {
private var retrofit: Retrofit? = null
private val gSON = GsonBuilder()
.setLenient()
.create()
fun getClient(baseUrl: String, consumer: OkHttpOAuthConsumer): Retrofit? {
val logging = HttpLoggingInterceptor()
if (BuildConfig.DEBUG) {
logging.level = HttpLoggingInterceptor.Level.BODY
} else {
logging.level = HttpLoggingInterceptor.Level.NONE
}
val httpClient = OkHttpClient.Builder()
httpClient.connectTimeout(60000, TimeUnit.SECONDS)
httpClient.writeTimeout(120000, TimeUnit.SECONDS)
httpClient.readTimeout(120000, TimeUnit.SECONDS)
httpClient.retryOnConnectionFailure(true)
httpClient.addInterceptor(SigningInterceptor(consumer))
httpClient.addInterceptor { chain ->
val request = chain.request()
val requestBuilder = request.newBuilder()
.header(HEADER_CONTENT_TYPE_KEY, PreferenceHandler.getContentType())
.header(HEADER_ACCEPT_KEY, PreferenceHandler.getAcceptType())
.header(HEADER_CACHE_CONTROL_KEY, PreferenceHandler.getCacheControl())
val modifiedRequest = requestBuilder.build()
chain.proceed(modifiedRequest)
}
httpClient.addNetworkInterceptor(logging)
if (retrofit == null) {
retrofit = Retrofit.Builder()
.baseUrl(baseUrl)
.addConverterFactory(GsonConverterFactory.create(gSON))
.client(httpClient.build())
.build()
}
return retrofit
}
}
}
Android java
public class RetrofitClient {
private static Retrofit retrofit = null;
public static Retrofit getClient(String baseUrl,OkHttpClient client) {
if (retrofit == null) {
retrofit = new Retrofit.Builder()
.baseUrl(baseUrl)
.client(client)
.addConverterFactory(GsonConverterFactory.create())
.build();
}
return retrofit;
}
}