iOS OAuth签名生成?
iOS OAuth签名生成?
提问于 2014-10-16 07:23:34
我一直在寻找能为Oauth头生成签名的代码,而男孩一直很痛苦。我的目标平台是iOS,我需要为TradeKing API这样做。基本上,他们的查询需要OAuth (无需使用Oauth工作流提前授权我的应用程序;我只需要使用TradeKing提供的密钥,用oauth头对每个查询进行签名)。下面是一些示例文档:GetPost
我找到的最佳示例代码如下:https://github.com/Christian-Hansen/simple-oauth1
我能够跟随他的例子,让LinkedIn库登录显示出来。然后,我修改了TradeKing REST查询的代码,由于签名无效,它失败了。这让我很担心,因为生成签名的代码是最复杂的part...and,我不确定我是否正确地使用了他的代码。在下面的代码中,我将oauth密钥和秘密更改为Xs。
/* THE URL REQUEST */
NSMutableURLRequest *request = [NSMutableURLRequest requestWithURL:[NSURL URLWithString:@"https://api.tradeking.com/v1/market/ext/quotes.xml?symbols=aapl"]];
request.HTTPMethod = @"GET";
/* OAUTH FIELDS */
NSString *oauth_timestamp = [NSString stringWithFormat:@"%lu", (unsigned long)[NSDate.date timeIntervalSince1970]];
NSString *oauth_nonce = [NSString getNonce];
NSString *oauth_consumer_key = @"xxxxxxx";
NSString *oauth_token = @"xxxxxxx";
NSString *oauth_signature_method = @"HMAC-SHA1";
NSString *oauth_version = @"1.0";
NSMutableDictionary *standardParameters = [NSMutableDictionary dictionary];
[standardParameters setValue:oauth_consumer_key forKey:@"oauth_consumer_key"];
[standardParameters setValue:oauth_nonce forKey:@"oauth_nonce"];
[standardParameters setValue:oauth_signature_method forKey:@"oauth_signature_method"];
[standardParameters setValue:oauth_timestamp forKey:@"oauth_timestamp"];
[standardParameters setValue:oauth_version forKey:@"oauth_version"];
[standardParameters setValue:oauth_token forKey:@"oauth_token"];
NSString *parametersString = CHQueryStringFromParametersWithEncoding(standardParameters, NSUTF8StringEncoding);
/* OAUTH SIGNATURE */
NSString *request_url = @"https://api.tradeking.com/v1/market/ext/quotes.xml?symbols=aapl";
NSString *oauth_consumer_secret = @"xxxxxx";
NSString *oauth_token_secret = @"xxxx";
NSString *baseString = [@"GET" stringByAppendingFormat:@"&%@&%@", request_url.utf8AndURLEncode, parametersString.utf8AndURLEncode];
// append oauth token secret to consumer secret
NSString *secretString = [oauth_consumer_secret.utf8AndURLEncode stringByAppendingFormat:@"&%@", oauth_token_secret.utf8AndURLEncode];
NSString *oauth_signature = [self.class signClearText:baseString withSecret:secretString];
standardParameters[@"oauth_signature"] = oauth_signature;
/* CREATE HEADER */
NSMutableArray *parameterPairs = [NSMutableArray array];
for (NSString *name in standardParameters)
{
NSString *aPair = [name stringByAppendingFormat:@"=\"%@\"", [standardParameters[name] utf8AndURLEncode]];
[parameterPairs addObject:aPair];
}
NSString *oAuthHeader = [@"OAuth " stringByAppendingFormat:@"%@", [parameterPairs componentsJoinedByString:@", "]];
[request setValue:oAuthHeader forHTTPHeaderField:@"Authorization"];
/* REQUEST */
[NSURLConnection sendAsynchronousRequest:request
queue:[NSOperationQueue mainQueue]
completionHandler:^(NSURLResponse *response, NSData *data, NSError *error) {
NSString *reponseString = [[NSString alloc] initWithData:data encoding:NSUTF8StringEncoding];
NSLog(@"Response string: %@, error: %@", reponseString, error);
}];我得到的回复是“signature_invalid”。无论如何,我忽略了与url编码和签名生成相关的部分,因为它们可能占用了太多的空间。我想知道我在这里是否犯了错误,或者创建签名的实际函数是否有问题。
回答 1
Stack Overflow用户
回答已采纳
发布于 2015-02-01 05:05:03
原来签名创建部分(HMAC-SHA1 1)是正确的。在执行HTTP请求之前,我只需要从标头中删除符号,否则OAUTH请求会认为签名与请求本身不匹配。固定代码:
// this is a convenience function for oauth
- (NSData *)fetchDataForURL:(NSString *)url paramPairs:(NSArray *)paramPairs error:(NSError**)error response:(NSHTTPURLResponse**)response timeOut:(float)timeOut {
NSMutableString *mutableURL = [[NSMutableString alloc] init];
[mutableURL appendString:url];
int paramPairCount = 0;
for (OPTTradeKingParamPair *paramPair in paramPairs) {
if (paramPairCount > 0)
[mutableURL appendString:@"&"];
[mutableURL appendFormat:@"%@=", paramPair.param];
int argCount = 0;
for (NSString *arg in paramPair.args) {
if (argCount > 0)
[mutableURL appendString:@","];
[mutableURL appendFormat:@"%@", arg];
argCount++;
}
paramPairCount++;
}
//NSLog(@"URL request: %@", mutableURL);
NSMutableURLRequest *request = [NSMutableURLRequest requestWithURL:[NSURL URLWithString:mutableURL] cachePolicy:NSURLRequestReloadIgnoringLocalCacheData timeoutInterval:5];
request.HTTPMethod = @"GET";
// oauth fields
NSString *oauth_timestamp = [NSString stringWithFormat:@"%lu", (unsigned long)[NSDate.date timeIntervalSince1970]];
NSString *oauth_nonce = [NSString getNonce];
NSString *oauth_consumer_key = @"*****";
NSString *oauth_token = @"*****";
NSString *oauth_signature_method = @"HMAC-SHA1";
NSString *oauth_version = @"1.0";
NSMutableDictionary *standardParameters = [NSMutableDictionary dictionary];
[standardParameters setValue:oauth_consumer_key forKey:@"oauth_consumer_key"];
[standardParameters setValue:oauth_nonce forKey:@"oauth_nonce"];
[standardParameters setValue:oauth_signature_method forKey:@"oauth_signature_method"];
[standardParameters setValue:oauth_timestamp forKey:@"oauth_timestamp"];
[standardParameters setValue:oauth_version forKey:@"oauth_version"];
[standardParameters setValue:oauth_token forKey:@"oauth_token"];
NSMutableArray *paramPairKeys = [[NSMutableArray alloc] init];
for (OPTTradeKingParamPair *paramPair in paramPairs) {
NSString *key = paramPair.param;
NSMutableString *args = [[NSMutableString alloc] init];
int argCount = 0;
for (NSString *arg in paramPair.args) {
if (argCount > 0)
[args appendString:@","];
[args appendFormat:@"%@", arg];
}
[standardParameters setValue:args forKey:key];
[paramPairKeys addObject:key];
}
NSString *parametersString = CHQueryStringFromParametersWithEncoding(standardParameters, NSUTF8StringEncoding);
// use URL and remove ? (always at end of URL)
NSString *request_url = [url stringByReplacingOccurrencesOfString:@"?" withString:@""];
NSString *oauth_consumer_secret = @"*****";
NSString *oauth_token_secret = @"*****";
NSString *baseString = [@"GET" stringByAppendingFormat:@"&%@&%@", request_url.utf8AndURLEncode, parametersString.utf8AndURLEncode];
// append oauth token secret to consumer secret
NSString *secretString = [oauth_consumer_secret.utf8AndURLEncode stringByAppendingFormat:@"&%@", oauth_token_secret.utf8AndURLEncode];
NSString *oauth_signature = [self.class signClearText:baseString withSecret:secretString];
standardParameters[@"oauth_signature"] = oauth_signature;
// remove symbols portion for header before doing request
for (NSString* keyToRemove in paramPairKeys) {
[standardParameters removeObjectForKey:keyToRemove];
}
[standardParameters removeObjectForKey:@"symbols"];
NSMutableArray *parameterPairs = [NSMutableArray array];
for (NSString *name in standardParameters)
{
NSString *aPair = [name stringByAppendingFormat:@"=\"%@\"", [standardParameters[name] utf8AndURLEncode]];
[parameterPairs addObject:aPair];
}
parameterPairs = [NSMutableArray arrayWithArray:[parameterPairs sortedArrayUsingSelector:@selector(localizedCaseInsensitiveCompare:)]];
NSString *oAuthHeader = [@"OAuth " stringByAppendingFormat:@"%@", [parameterPairs componentsJoinedByString:@", "]];
[request setValue:oAuthHeader forHTTPHeaderField:@"Authorization"];
NSData * data = [NSURLConnection sendSynchronousRequest:request returningResponse:response error:error];
[OPTCrashModule addErrorWithData:data error:*error];
return data;
}如何调用代码:
- (DataAPIReturnVal)findInfoForSymbols:(NSArray*)tickerSymbols returnedTickerInfos:(NSMutableArray *)tickerInfos
{
NSMutableString *symbols = [[NSMutableString alloc] init];
int index = 0;
for(NSString *tickerSymbol in tickerSymbols)
{
if (index > 0) [symbols appendString:@","];
OPTTickerInfo *tickerInfo = [[OPTTickerInfo alloc] init];
[tickerInfo setName:tickerSymbol];
[tickerInfos addObject:tickerInfo];
[symbols appendString:[tickerSymbol uppercaseString]];
index++;
}
NSMutableArray *paramPairs = [[NSMutableArray alloc] init];
OPTTradeKingParamPair *paramPair = [[OPTTradeKingParamPair alloc] initWithParam:@"symbols" args:@[symbols]];
[paramPairs addObject:paramPair];
DataAPIReturnVal retVal = DataAPIGeneralError;
NSHTTPURLResponse *response = nil;
NSError *error = nil;
NSData * retData = [self fetchDataForURL:@"https://api.tradeking.com/v1/market/ext/quotes.json?" paramPairs:paramPairs error:&error response:&response timeOut:[tickerSymbols count]];
// ....and so on
}Param对只是一个对象数组,其中每个对象都是一个"param“字符串和和"args”数组。Param可以是“符号”,而"args“可以是实际的符号参数,如fas、faz、msft等。
人们要求的额外的东西:
- (NSString *)signClearText:(NSString *)text withSecret:(NSString *)secret
{
NSData *secretData = [secret dataUsingEncoding:NSUTF8StringEncoding];
NSData *clearTextData = [text dataUsingEncoding:NSUTF8StringEncoding];
unsigned char result[20];
hmac_sha1((unsigned char *)[clearTextData bytes], [clearTextData length], (unsigned char *)[secretData bytes], [secretData length], result);
//Base64 Encoding
char base64Result[32];
size_t theResultLength = 32;
Base64EncodeData(result, 20, base64Result, &theResultLength);
NSData *theData = [NSData dataWithBytes:base64Result length:theResultLength];
return [NSString.alloc initWithData:theData encoding:NSUTF8StringEncoding];
}我需要花一些时间打包代码以供一般使用。还有一堆其他的东西,我必须把它挖出来,公众才能再利用它。
页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/26398467
复制相关文章
相似问题
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号