先看一段 Java 代码,一个签名过程
1 package com.sixents.bss.filter; 2 3 4 import org.apache.http.HttpEntity; 5 import org.apache.http.NameValuePair; 6 import org.apache.http.client.entity.UrlEncodedFormEntity; 7 import org.apache.http.client.methods.CloseableHttpResponse; 8 import org.apache.http.client.methods.HttpPost; 9 import org.apache.http.impl.client.CloseableHttpClient; 10 import org.apache.http.impl.client.HttpClients; 11 import org.apache.http.message.BasicNameValuePair; 12 import org.apache.http.util.EntityUtils; 13 14 import javax.crypto.Mac; 15 import javax.crypto.spec.SecretKeySpec; 16 import java.nio.charset.Charset; 17 import java.security.InvalidKeyException; 18 import java.security.NoSuchAlgorithmException; 19 import java.util.*; 20 import java.util.Map.Entry; 21 22 /** 23 * @author zy 24 * date 2021-08-19 25 */ 26 public class demoTest { 27 28 29 public static void main(String[] args) throws Exception{ 30 String sik = "0797517995";//请填写您申请的sik 31 String sis = "inuHf8DvK+z3lqor168yDcx60lAcMCtAagcchaxWRlvWTq6WImQ4zQVEibnwhegShrQNft8zvGXA" + 32 "C6TSH4gjQzmaTSeNzugv0dTSj9m2eiQ=";//请填写您申请的sis 33 String apiName = "get-account-list";// 访问的API接口名称 34 String apiPath = "/rest/" + apiName + "/" + "sik" + "/"+sik;// API路径,注意没有问号 35 // 参数列表(加签的时候需要进行字典序升序排序) 36 Map<String, String> paramMap = new HashMap<String, String>(); 37 paramMap.put("pageNum", "1"); 38 paramMap.put("pageSize", "20"); 39 paramMap.put("serverType", "1"); 40 // 毫秒级时间戳,一定是毫秒级!重要!!! 41 String timestamp = String.valueOf(System.currentTimeMillis()); 42 System.out.println("时间戳:"+timestamp); 43 String signatureStr = demoTest.doHmacSHA2(apiPath, paramMap, sis, timestamp); 44 System.out.println("加签值:"+signatureStr);//打印sign值 45 46 String qxwzUrl = "http://localhost:21009";//服务器地址 47 String queryUrl = qxwzUrl + apiPath + "?_sign=" + signatureStr; 48 System.out.println(queryUrl); 49 50 //发送http请求,获取返回值 51 doHttpPost(queryUrl,paramMap,timestamp); 52 } 53 54 public static void doHttpPost(String url,Map<String, String> paramMap, String timestamp) throws Exception { 55 CloseableHttpClient httpClient = HttpClients.createDefault(); 56 HttpPost httpPost = new HttpPost(url); 57 httpPost.setHeader("content-type", "application/json"); 58 httpPost.setHeader("wz-acs-timestamp", timestamp);//此处注意加上时间戳,否则http请求将无效 59 List<NameValuePair> nvps = new ArrayList<NameValuePair>(); 60 for (Map.Entry<String, String> entry : paramMap.entrySet()){ 61 if (entry.getValue() == null) continue; 62 nvps.add(new BasicNameValuePair(entry.getKey(), entry.getValue())); 63 } 64 httpPost.setEntity(new UrlEncodedFormEntity(nvps, "UTF-8"));//处理中文编码的问题 65 66 67 try { 68 CloseableHttpResponse response = (CloseableHttpResponse) httpClient.execute(httpPost); 69 try { 70 HttpEntity entity = response.getEntity(); 71 if (entity != null) { 72 System.out.println("返回值:"+EntityUtils.toString(entity)); 73 /* 74 * 此处针对返回结果进行不同的处理 75 */ 76 EntityUtils.consume(entity); 77 } 78 } finally { 79 response.close(); 80 } 81 82 } catch (Exception e) { 83 e.printStackTrace(); 84 }finally { 85 if (httpPost != null) { 86 httpPost.releaseConnection();//释放资源 87 } 88 if(httpClient != null){ 89 httpClient.close();//释放资源 90 } 91 } 92 } 93 94 /* 95 * 将字节数组转换成16进制字符串 96 * */ 97 public static String encodeHexStr(final byte[] bytes){ 98 if (bytes == null) { 99 return null; 100 } 101 char[] digital = "0123456789ABCDEF".toCharArray(); 102 char[] result = new char[bytes.length * 2]; 103 for (int i = 0; i < bytes.length; i++) { 104 result[i * 2] = digital[(bytes[i] & 0xf0) >> 4]; 105 result[i * 2 + 1] = digital[bytes[i] & 0x0f]; 106 } 107 return new String(result); 108 } 109 110 /* 111 * 加签算法 112 * */ 113 public static <T> String doHmacSHA2(String path, Map<String, T> params, String key, String timestamp) { 114 115 List<Map.Entry<String, T>> parameters = new ArrayList<Map.Entry<String,T>>(params.entrySet()); 116 SecretKeySpec signingKey = new SecretKeySpec(key.getBytes(), "HmacSHA256"); 117 Charset CHARSET_UTF8 = Charset.forName("UTF-8"); 118 Mac mac; 119 try { 120 mac = Mac.getInstance("HmacSHA256"); 121 mac.init(signingKey); 122 } catch (NoSuchAlgorithmException e) { 123 throw new IllegalStateException(e.getMessage(), e); 124 } catch (InvalidKeyException e) { 125 throw new IllegalStateException(e.getMessage(), e); 126 } 127 if(path != null && path.length() > 0){ 128 mac.update(path.getBytes(CHARSET_UTF8)); 129 } 130 if(parameters != null){ 131 Collections.sort(parameters, new MapEntryComparator<String, T>()); 132 for (Map.Entry<String, T> parameter : parameters) { 133 byte[] name = parameter.getKey().getBytes(CHARSET_UTF8); 134 Object value = parameter.getValue(); 135 if(value instanceof Collection){ 136 for (Object o : (Collection)value){ 137 mac.update(name); 138 if(o != null){ 139 mac.update(o.toString().getBytes(CHARSET_UTF8)); 140 } 141 } 142 }else{ 143 mac.update(name); 144 if(value != null){ 145 mac.update(value.toString().getBytes(CHARSET_UTF8)); 146 } 147 } 148 } 149 } 150 if(timestamp != null && timestamp.length() > 0){ 151 mac.update(timestamp.toString().getBytes(CHARSET_UTF8)); 152 } 153 return encodeHexStr(mac.doFinal()); 154 } 155 } 156 157 /* 158 * Map参数排序类 159 * */ 160 161 class MapEntryComparator<K, V> implements Comparator<Map.Entry<K, V>> { 162 163 @Override 164 public int compare(Entry<K, V> o1, Entry<K, V> o2) { 165 if (o1 == o2) { 166 return 0; 167 } 168 final String k1 = o1.getKey().toString(); 169 final String k2 = o2.getKey().toString(); 170 int l1 = k1.length(); 171 int l2a = k2.length(); 172 for (int i = 0; i < l1; i++) { 173 char c1 = k1.charAt(i); 174 char c2; 175 if (i < l2a) { 176 c2 = k2.charAt(i); 177 } else { 178 return 1; 179 } 180 if (c1 > c2) { 181 return 1; 182 } else if (c1 < c2) { 183 return -1; 184 } 185 } 186 if (l1 < l2a) { 187 return -1; 188 }else if(l1 == l2a) { 189 return 0; 190 }else { 191 return -1; 192 } 193 } 194 195 }
PHP 写法如此简单:
1 private function get_sign($path, $params, $timestamp) 2 { 3 if (empty($params)) { 4 die('miss params'); 5 } 6 7 // 排序 8 ksort($params); 9 10 $ctx = hash_init('sha256', HASH_HMAC, $this->sis); 11 12 hash_update($ctx, utf8_encode($path)); 13 14 foreach ($params as $key => $value) { // 如果 $value 还是数组再循环一次即可 15 hash_update($ctx, utf8_encode($key)); 16 hash_update($ctx, utf8_encode($value)); 17 } 18 19 hash_update($ctx, utf8_encode($timestamp)); 20 21 return strtoupper(hash_final($ctx)); 22 } 23
标签:Java,String,getInstance,16,timestamp,http,return,new,import From: https://www.cnblogs.com/qk1314/p/17380898.html