阿里雲 訊息推送介面加密演算法
阿新 • • 發佈:2020-10-20
阿里雲訊息推送api中一個引數Signature是需要加密的, 按照阿里雲規則對引數進行加密測試
package cn.sigutech.utils; import java.util.HashMap; import java.util.Map; public class test { public static void main(String[] args) throws Exception { String accessKeyId = "****"; String accessSecret = "****"; java.text.SimpleDateFormat df = new java.text.SimpleDateFormat("yyyy-MM-dd'T'HH:mm:ss'Z'"); df.setTimeZone(new java.util.SimpleTimeZone(0, "GMT"));// 這裡一定要設定GMT時區 java.util.Map<String, String> paras = new java.util.HashMap<String, String>(); // 1. 系統引數 paras.put("SignatureMethod", "HMAC-SHA1"); paras.put("SignatureNonce", java.util.UUID.randomUUID().toString()); paras.put("AccessKeyId", accessKeyId); paras.put("SignatureVersion", "1.0"); paras.put("Timestamp", df.format(new java.util.Date())); paras.put("Format", "XML"); paras.put("Version", "2016-08-01"); paras.put("RegionId", "cn-hangzhou"); paras.put("AppKey", "27589110"); // 2. 業務API引數 paras.put("Action", "QueryTags"); // paras.put("TagName", "test_tag"); paras.put("ClientKey", "****"); paras.put("KeyType", "DEVICE"); // 3. 去除簽名關鍵字Key if (paras.containsKey("Signature")) paras.remove("Signature"); // 4. 引數KEY排序 java.util.TreeMap<String, String> sortParas = new java.util.TreeMap<String, String>(); sortParas.putAll(paras); // 5. 構造待簽名的字串 java.util.Iterator<String> it = sortParas.keySet().iterator(); StringBuilder sortQueryStringTmp = new StringBuilder(); while (it.hasNext()) { String key = it.next(); sortQueryStringTmp.append("&").append(specialUrlEncode(key)).append("=").append(specialUrlEncode(paras.get(key))); } String sortedQueryString = sortQueryStringTmp.substring(1);// 去除第一個多餘的&符號 StringBuilder stringToSign = new StringBuilder(); stringToSign.append("GET").append("&"); stringToSign.append(specialUrlEncode("/")).append("&"); stringToSign.append(specialUrlEncode(sortedQueryString)); String sign = sign(accessSecret + "&", stringToSign.toString()); // 6. 簽名最後也要做特殊URL編碼 String signature = specialUrlEncode(sign); // System.out.println(paras.get("SignatureNonce")); // System.out.println("\r\n=========\r\n"); // System.out.println(paras.get("Timestamp")); // System.out.println("\r\n=========\r\n"); // System.out.println(sortedQueryString); // System.out.println("\r\n=========\r\n"); // System.out.println(stringToSign.toString()); // System.out.println("\r\n=========\r\n"); // System.out.println(sign); // System.out.println("\r\n=========\r\n"); // System.out.println(signature); // System.out.println("\r\n=========\r\n"); // // 最終打印出合法GET請求的URL System.out.println("http://cloudpush.aliyuncs.com/?Signature=" + signature + sortQueryStringTmp); // return "http://cloudpush.aliyuncs.com/?Signature=" + signature + sortQueryStringTmp; } public static String specialUrlEncode(String value) throws Exception { return java.net.URLEncoder.encode(value, "UTF-8").replace("+", "%20").replace("*", "%2A").replace("%7E", "~"); } public static String sign(String accessSecret, String stringToSign) throws Exception { javax.crypto.Mac mac = javax.crypto.Mac.getInstance("HmacSHA1"); mac.init(new javax.crypto.spec.SecretKeySpec(accessSecret.getBytes("UTF-8"), "HmacSHA1")); byte[] signData = mac.doFinal(stringToSign.getBytes("UTF-8")); return new sun.misc.BASE64Encoder().encode(signData); } }