1.官网加密方法,postman请求获取应用基本信息接口,报错
public JSONObject getWpsSignature(HttpServletRequest request) {
String url = "";
StringBuffer sha1Url = new StringBuffer();
Map<String, String> params = new HashMap<>();
Enumeration<String> enumStr = request.getParameterNames();
while (enumStr.hasMoreElements()) {
String paramName = (String) enumStr.nextElement();
String paramValue = request.getParameter(paramName);
if (paramName.equalsIgnoreCase("url")) {
url = paramValue;
} else {
String regexStr = "^_w_\\w{1,}";
if (paramName.matches(regexStr)) {
params.put(paramName, paramValue);
}
if (sha1Url.length() > 0) {
sha1Url.append("&" + paramName + "=" + paramValue);
} else {
sha1Url.append(paramName + "=" + paramValue);
}
}
}
String contentMd5 = "";
if (params.size() == 0) {
contentMd5 = MD5Utils.getByteMD5("".getBytes());
} else {
contentMd5 = MD5Utils.getByteMD5(params.toString().getBytes());
}
String pattern = "EEE, dd MMM yyyy HH:mm:ss zzz";
SimpleDateFormat sdf = new SimpleDateFormat(pattern, Locale.US);
sdf.setTimeZone(TimeZone.getTimeZone("GMT"));
Date date = new Date();
String nowDate = sdf.format(date);
String signature = getSignature(params, wpsAppkey);
String urlParams = null;
try {
String urlParamsStr = getUrlParam(params);
if (StringUtils.isNotBlank(urlParamsStr)) {
urlParams = getUrlParam(params) + "&_w_signature=" + signature;
} else {
urlParams = "_w_signature=" + signature;
}
} catch (UnsupportedEncodingException e) {
e.printStackTrace();
}
String standardSha1Str = wpsAppkey.toLowerCase() + contentMd5 + url + "?" + sha1Url + "application/json" + nowDate;
String sha1 = DigestUtils.sha1Hex(standardSha1Str.getBytes());
JSONObject result = new JSONObject();
result.put("Content-Md5", contentMd5);
result.put("X-Auth", "WPS-3:" + wpsAppid + ":" + sha1);
result.put("Date", nowDate);
result.put("sha1", sha1);
result.put("urlParams", url + "?" + urlParams);
return result;
}
private static String getUrlParam(Map<String, String> params) throws UnsupportedEncodingException {
StringBuilder builder = new StringBuilder();
for (Map.Entry<String, String> entry : params.entrySet()) {
if (builder.length() > 0) {
builder.append('&');
}
builder.append(URLEncoder.encode(entry.getKey(), "utf-8")).append('=').append(URLEncoder.encode(entry.getValue(), "utf-8"));
}
return builder.toString();
}
private static String getSignature(Map<String, String> params, String appSecret) {
List<String> keys = new ArrayList();
for (Map.Entry<String, String> entry : params.entrySet()) {
keys.add(entry.getKey());
}
// 将所有参数按key的升序排序
Collections.sort(keys, new Comparator<String>() {
@Override
public int compare(String o1, String o2) {
return o1.compareTo(o2);
}
});
// 构造签名的源字符串
StringBuilder contents = new StringBuilder("");
for (String key : keys) {
if (key == "_w_signature") {
continue;
}
contents.append(key + "=").append(params.get(key));
System.out.println("key:" + key + ",value:" + params.get(key));
}
contents.append("_w_secretkey=").append(appSecret);
System.out.println("contents:" + contents.toString() + ";contents md5:" + MD5Utils.getByteMD5(contents.toString().getBytes()));
// 进行hmac sha1 签名
byte[] bytes = hmacSha1(appSecret.getBytes(), contents.toString().getBytes());
//字符串经过Base64编码
String sign = encodeBase64String(bytes);
try {
sign = URLEncoder.encode(sign, "UTF-8");
} catch (UnsupportedEncodingException e) {
e.printStackTrace();
}
System.out.println("sign:" + sign);
return sign;
}
public static byte[] hmacSha1(byte[] key, byte[] data) {
try {
SecretKeySpec signingKey = new SecretKeySpec(key, "HmacSHA1");
Mac mac = Mac.getInstance(signingKey.getAlgorithm());
mac.init(signingKey);
return mac.doFinal(data);
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
} catch (InvalidKeyException e) {
e.printStackTrace();
}
return null;
}
以下写法正常
private DateFormat dateFormat = new SimpleDateFormat("EEE, dd MMM yyyy HH:mm:ss 'GMT'", Locale.US);
public Map<String, String> getHeaderSignature(String urlQuery, JSONObject params) {
dateFormat.setTimeZone(TimeZone.getTimeZone("GMT"));
String contentMd5 = DigestUtils.md5Hex("".getBytes());
if (null != params) {
contentMd5 = DigestUtils.md5Hex(params.toString().getBytes());
}
String date = dateFormat.format(new Date());
String sig = DigestUtils.sha1Hex(wpsAppkey + contentMd5 + urlQuery + MediaType.APPLICATION_JSON + date);
Map<String, String> headers = new ConcurrentHashMap<>(3);
headers.put("Content-Md5", contentMd5);
headers.put("Date", date);
headers.put("X-Auth", String.format("WPS-3:%s:%s", wpsAppid, sig));
return headers;
}
根本原因:url中没有官网中的_w_signature参数
403 forbidden
不需要使用历史版本功能的此处也请返回,如果此接口不通时,文档加载会报错:“GetFileInfoFailed”
原因:重命名方法rename是put方法,403 forbidden根本原因,方法参数未按接口文档传递,回调失败;回调通知、通知协作人方法参数不正确
/**
* 通知文件被操作
*
*/
@RequestMapping(value = "/v1/3rd/file/online")
public void online(@RequestBody JSONObject jsonObject) {
}
/**
* 打开或关闭文件时,WPS 会回调一些通知
*
* @param body
* @param cmd
*/
@RequestMapping("/v1/3rd/onnotify")
public void onnotify(@RequestBody JSONObject body, @RequestParam(name = "cmd", required = false) String cmd) {
}