最近需要使用阿里云API来访问物联网平台,但是阿里官方的C++版API有些复杂而且编译有些问题,所以决定自己来实现,这里主要就是要解决签名的问题,下面把签名实现的部分分享一下。
使用示例
下面是请求阿里云物联网平台所有产品信息的示例。
AlicloudAPIHelper helper("http://iot.cn-shanghai.aliyuncs.com","your key","your secret");
helper.setParam("Action","QueryProduct");
helper.setParam("ProductKey","your productkey");
helper.setParam("IotInstanceId","your instanceid");
QNetworkAccessManager *manager = new QNetworkAccessManager(this);
connect(manager, &QNetworkAccessManager::finished,this, &Widget::replyFinished);
manager->get(QNetworkRequest(QUrl(helper.signatureUrl())));
源代码
alicloudapihelper.cpp
#include "alicloudapihelper.h"
#include <QDateTime>
#include <QRandomGenerator64>
#include <QCryptographicHash>
AlicloudAPIHelper::AlicloudAPIHelper(QString httpaddr,QString key, QString secret,QString method,QString format)
{
m_httpaddr = httpaddr;
m_accessKey = key;
m_accessSecret = secret;
m_method = method;
m_format = format;
}
QString AlicloudAPIHelper::paramsToUrl(bool encode)
{
QString url;
QMap<QString,QString>::iterator iter;
for (iter = m_params.begin(); iter != m_params.end(); iter++)
{
if (!url.isEmpty()) url += "&";
if(encode)
{
url += QString(iter.key().toUtf8().toPercentEncoding()) + "=" + QString(iter.value().toUtf8().toPercentEncoding());
}
else
{
url += QString("%1=%2").arg(iter.key(),iter.value());
}
}
return url;
}
void AlicloudAPIHelper::setMethod(QString method)
{
m_method = method;
}
void AlicloudAPIHelper::setFormat(QString format)
{
m_format = format;
}
void AlicloudAPIHelper::setAcceccParam(QString key, QString secret)
{
m_accessKey = key;
m_accessSecret = secret;
}
void AlicloudAPIHelper::addParam(QString pname, QString pvalue)
{
if (m_params.find(pname) == m_params.end())
m_params.insert(pname,pvalue);
}
void AlicloudAPIHelper::setParam(QString pname, QString pvalue)
{
m_params[pname] = pvalue;
}
QString AlicloudAPIHelper::getParam(QString pname)
{
return m_params[pname];
}
QString AlicloudAPIHelper::signatureUrl()
{
//公共参数
QDateTime local(QDateTime::currentDateTime());
QDateTime UTC(local.toTimeSpec(Qt::UTC));
m_params.insert("Format",m_format);
m_params.insert("Version","2018-01-20");
m_params.insert("AccessKeyId",m_accessKey);
m_params.insert("SignatureMethod","HMAC-SHA1");
m_params.insert("Timestamp",UTC.toString(Qt::ISODate));
m_params.insert("SignatureVersion","1.0");
m_params.insert("SignatureNonce",QString("%1").arg(QRandomGenerator64::global()->generate()));
m_params.insert("RegionId","cn-shanghai");
QString str = m_method + "&" + QString("/").toUtf8().toPercentEncoding() + "&" + paramsToUrl(true).toUtf8().toPercentEncoding();
QByteArray signature = hmacSha1(str.toUtf8(), QString(m_accessSecret+"&").toUtf8());
m_params.insert("Signature",QString(signature.toPercentEncoding()));
return m_httpaddr+"/?"+paramsToUrl();
}
QByteArray AlicloudAPIHelper::hmacSha1(QByteArray baseString,QByteArray key)
{
int blockSize = 64; // HMAC-SHA-1 block size, defined in SHA-1 standard
if (key.length() > blockSize) { // if key is longer than block size (64), reduce key length with SHA-1 compression
key = QCryptographicHash::hash(key, QCryptographicHash::Sha1);
}
QByteArray innerPadding(blockSize, char(0x36)); // initialize inner padding with char "6"
QByteArray outerPadding(blockSize, char(0x5c)); // initialize outer padding with char "quot;
// ascii characters 0x36 ("6") and 0x5c ("quot;) are selected because they have large
// Hamming distance (http://en.wikipedia.org/wiki/Hamming_distance)
for (int i = 0; i < key.length(); i++) {
innerPadding[i] = innerPadding[i] ^ key.at(i); // XOR operation between every byte in key and innerpadding, of key length
outerPadding[i] = outerPadding[i] ^ key.at(i); // XOR operation between every byte in key and outerpadding, of key length
}
// result = hash ( outerPadding CONCAT hash ( innerPadding CONCAT baseString ) ).toBase64
QByteArray total = outerPadding;
QByteArray part = innerPadding;
part.append(baseString);
total.append(QCryptographicHash::hash(part, QCryptographicHash::Sha1));
QByteArray hashed = QCryptographicHash::hash(total, QCryptographicHash::Sha1);
return hashed.toBase64();
}
alicloudaiphelper.h
#ifndef ALICLOUDAPIHELPER_H
#define ALICLOUDAPIHELPER_H
#include <QMap>
#include <QString>
class AlicloudAPIHelper
{
public:
AlicloudAPIHelper(QString httpaddr,QString key, QString secret,QString method="GET",QString format="JSON");
static QByteArray hmacSha1(QByteArray baseString,QByteArray key);
void setMethod(QString method);
void setFormat(QString format);
void setAcceccParam(QString key,QString secret);
void addParam(QString pname, QString pvalue);
void setParam(QString pname, QString pvalue);
QString getParam(QString pname);
QString signatureUrl();
private:
QString paramsToUrl(bool encode=false);
QString m_method;
QString m_httpaddr;
QString m_format;
QString m_accessKey;
QString m_accessSecret;
QMap<QString,QString> m_params;
};
#endif // ALICLOUDAPIHELPER_H