Amazon Api 签名算法（golang版和java版）

u013834131 · · 3282 次点击 · · 开始浏览

这是一个创建于的文章，其中的信息可能已经有所发展或是发生改变。

package main

import "fmt"
import "crypto/hmac"
import "crypto/sha256"
import "time"
import "strings"
import "encoding/base64"
import "net/http"
import "net/url"
import "io/ioutil"

const METHOD ="GET"
const HOST ="webservices.amazon.com"
const URI= "/onca/xml"
const QUERY_STRING= "AWSAccessKeyId=121212121212&AssociateTag=smasholab-20&IdType=ISBN&ItemId=B000MQTJW2&Operation=ItemLookup&Service=AWSECommerceService&Timestamp=%s"


func main() {
	t := time.Now()
	tm:= t.Format("2006-01-02T15:04:05Z")
	tm= url.QueryEscape(tm)
	fmt.Println("tm:", tm)

	query := fmt.Sprintf(QUERY_STRING, tm)
	ul := fmt.Sprintf(QUERY_STRING, tm)
	fmt.Println("query:", query)


	//AWSAccessKeyId := "sssbbbsssbbb"
	AWSSecretKeyId := "ooxxooxx"

	sha256 := sha256.New
	hash := hmac.New(sha256, []byte(AWSSecretKeyId))
	template:= "%s\n%s\n%s\n%s"
	template= fmt.Sprintf(template, METHOD, HOST, URI, query)
	fmt.Println("template:", template)
	hash.Write([]byte(template))
	sha := base64.StdEncoding.EncodeToString(hash.Sum(nil))
	sha= url.QueryEscape(sha)
	fmt.Println("sha", sha)			
	
	ul=  ul + "&Signature=" +sha
	ul= "http://webservices.amazon.com/onca/xml?"+ ul 

	ul= strings.Replace(ul, "+", "%20", -1)
	ul= strings.Replace(ul, "*", "%2A", -1)
	ul= strings.Replace(ul, "%7E", "~", -1)


	fmt.Println("url:", ul)


	//request
	response, err := http.Get(ul)
	if err != nil {
		fmt.Println("err", err)
	}else{
		content, _ := ioutil.ReadAll(response.Body) 
		println("response", string(content))
		response.Body.Close()
	}	
}

------------------------下面是java版的，稍微啰嗦点----------------------------------

package com.amazon.associates.sample;

import java.io.UnsupportedEncodingException;

import java.net.URLDecoder;
import java.net.URLEncoder;

import java.security.InvalidKeyException;
import java.security.NoSuchAlgorithmException;

import java.text.DateFormat;
import java.text.SimpleDateFormat;

import java.util.Calendar;
import java.util.HashMap;
import java.util.Iterator;
import java.util.Map;
import java.util.SortedMap;
import java.util.TimeZone;
import java.util.TreeMap;

import javax.crypto.Mac;
import javax.crypto.spec.SecretKeySpec;

import org.apache.commons.codec.binary.Base64;

public class SignedRequestsHelper {
  private static final String UTF8_CHARSET = "UTF-8";
  private static final String HMAC_SHA256_ALGORITHM = "HmacSHA256";
  private static final String REQUEST_URI = "/onca/xml";
  private static final String REQUEST_METHOD = "GET";

  private String endpoint = "webservices.amazon.com"; // must be lowercase
  private String awsAccessKeyId = "YOUR AWS ACCESS KEY";
  private String awsSecretKey = "YOUR AWS SECRET KEY";

  private SecretKeySpec secretKeySpec = null;
  private Mac mac = null;

  public SignedRequestsHelper() {
    byte[] secretyKeyBytes = awsSecretKey.getBytes(UTF8_CHARSET);
    secretKeySpec =
      new SecretKeySpec(secretyKeyBytes, HMAC_SHA256_ALGORITHM);
    mac = Mac.getInstance(HMAC_SHA256_ALGORITHM);
    mac.init(secretKeySpec);
  }

  public String sign(Map<String, String> params) {
    params.put("AWSAccessKeyId", awsAccessKeyId);
    params.put("Timestamp", timestamp());

    SortedMap<String, String> sortedParamMap =
      new TreeMap<String, String>(params);
    String canonicalQS = canonicalize(sortedParamMap);
    String toSign =
      REQUEST_METHOD + "\n"
      + endpoint + "\n"
      + REQUEST_URI + "\n"
      + canonicalQS;

    String hmac = hmac(toSign);
    String sig = percentEncodeRfc3986(hmac);
    String url = "http://" + endpoint + REQUEST_URI + "?" +
    canonicalQS + "&Signature=" + sig;

    return url;
  }

  private String hmac(String stringToSign) {
    String signature = null;
    byte[] data;
    byte[] rawHmac;
    try {
      data = stringToSign.getBytes(UTF8_CHARSET);
      rawHmac = mac.doFinal(data);
      Base64 encoder = new Base64();
      signature = new String(encoder.encode(rawHmac));
    } catch (UnsupportedEncodingException e) {
      throw new RuntimeException(UTF8_CHARSET + " is unsupported!", e);
    }
    return signature;
  }

  private String timestamp() {
    String timestamp = null;
    Calendar cal = Calendar.getInstance();
    DateFormat dfm = new SimpleDateFormat("yyyy-MM-dd'T'HH:mm:ss'Z'");
    dfm.setTimeZone(TimeZone.getTimeZone("GMT"));
    timestamp = dfm.format(cal.getTime());
    return timestamp;
  }

  private String canonicalize(SortedMap<String, String> sortedParamMap)
{
    if (sortedParamMap.isEmpty()) {
      return "";
    }

    StringBuffer buffer = new StringBuffer();
    Iterator<Map.Entry<String, String>> iter =
      sortedParamMap.entrySet().iterator();

    while (iter.hasNext()) {
      Map.Entry<String, String> kvpair = iter.next();
      buffer.append(percentEncodeRfc3986(kvpair.getKey()));
      buffer.append("=");
      buffer.append(percentEncodeRfc3986(kvpair.getValue()));
      if (iter.hasNext()) {
        buffer.append("&");
      }
    }
    String canonical = buffer.toString();
    return canonical;
  }

  private String percentEncodeRfc3986(String s) {
    String out;
    try {
      out = URLEncoder.encode(s, UTF8_CHARSET)
      .replace("+", "%20")
      .replace("*", "%2A")
      .replace("%7E", "~");
    } catch (UnsupportedEncodingException e) {
      out = s;
    }
    return out;
  }

}

有疑问加站长微信联系（非本文作者）