gaore-common-sdk-go/sdk/auth/rpc_signature_composer.go

package auth

import (
	"bytes"
	"errors"
	"fmt"
	"golib.gaore.com/GaoreGo/gaore-common-sdk-go/sdk/requests"
	"golib.gaore.com/GaoreGo/gaore-common-sdk-go/sdk/utils"
	"net/http"
	"net/url"
	"strconv"
	"strings"
	"time"
)

func signRpcRequest(request requests.AcsRequest, signer Signer) (err error) {
	err = completeRpcSignParams(request, signer)
	if err != nil {
		return
	}
	if _, isContainsSign := request.GetQueryParams()["sign"]; isContainsSign {
		delete(request.GetQueryParams(), "sign")
	}

	stringToSign := buildRpcStringToSign(request)
	request.SetStringToSign(stringToSign)
	signature := signer.Sign(stringToSign, "&")
	request.GetQueryParams()["sign"] = signature
	return
}

func completeRpcSignParams(request requests.AcsRequest, signer Signer) (err error) {

	var accessKeyFrom string
	if accessKeyFrom, err = signer.GetAccessKeyFrom(); err != nil {
		return
	}

	queryParams := request.GetQueryParams()
	queryParams["access_time"] = fmt.Sprintf("%d", time.Now().Unix())
	queryParams["access_key"], err = signer.GetAccessKeyId()
	queryParams["access_from"] = accessKeyFrom

	if err != nil {
		return
	}

	request.GetHeaders()["Content-type"] = requests.Form
	request.GetHeaders()["Gr-Sdk-From"] = accessKeyFrom
	formString := utils.GetUrlFormedMap(request.GetFormParams())
	request.SetContent(bytes.NewBufferString(formString).Bytes())
	return
}

func buildRpcStringToSign(request requests.AcsRequest) (stringToSign string) {
	signParams := make(map[string]string)
	for key, value := range request.GetQueryParams() {
		signParams[key] = value
	}

	if strings.ToUpper(request.GetMethod()) == requests.POST {
		for key, value := range request.GetFormParams() {
			signParams[key] = value
		}
	}

	stringToSign = utils.GetUrlFormedMap(signParams)
	stringToSign = strings.Replace(stringToSign, "+", "%20", -1)
	stringToSign = strings.Replace(stringToSign, "*", "%2A", -1)
	stringToSign = strings.Replace(stringToSign, "%7E", "~", -1)
	stringToSign = url.QueryEscape(stringToSign)
	stringToSign = request.GetMethod() + "&%2F&" + stringToSign
	return
}

func unsignRpcRequest(request *http.Request, signer Signer) (err error) {
	signParams := make(map[string]string)
	for key, value := range request.URL.Query() {
		signParams[key] = value[0]
	}

	if strings.ToUpper(request.Method) == requests.POST {
		for key, value := range request.Form {
			signParams[key] = value[0]
		}
	}

	signValue, ok := signParams["sign"]
	if !ok {
		return errors.New("sign value is not exists")
	}

	stringToSign := utils.GetUrlFormedMap(signParams)
	stringToSign = strings.Replace(stringToSign, "+", "%20", -1)
	stringToSign = strings.Replace(stringToSign, "*", "%2A", -1)
	stringToSign = strings.Replace(stringToSign, "%7E", "~", -1)
	stringToSign = url.QueryEscape(stringToSign)
	stringToSign = request.Method + "&%2F&" + stringToSign

	if timestamp, err := strconv.ParseInt(signParams["access_time"], 10, 64); err != nil {
		return err
	} else {
		if time.Unix(timestamp, 0).Before(time.Now().Add(-5 * time.Minute)) {
			err = errors.New("sign timeout 5 minute")
		}
	}

	if signer.Sign(stringToSign, "&") != signValue {
		return errors.New("sign string is  not correct")
	}
	return
}
project init 2020-08-04 00:51:19 +08:00			`package auth`

			`import (`
init project 2020-08-06 10:35:24 +08:00			`"bytes"`
init project 2020-08-06 15:41:02 +08:00			`"errors"`
init project 2020-08-06 10:35:24 +08:00			`"fmt"`
project init 2020-08-04 00:51:19 +08:00			`"golib.gaore.com/GaoreGo/gaore-common-sdk-go/sdk/requests"`
			`"golib.gaore.com/GaoreGo/gaore-common-sdk-go/sdk/utils"`
init project 2020-08-06 15:41:02 +08:00			`"net/http"`
project init 2020-08-04 00:51:19 +08:00			`"net/url"`
init project 2020-08-06 15:41:02 +08:00			`"strconv"`
project init 2020-08-04 00:51:19 +08:00			`"strings"`
init project 2020-08-06 10:35:24 +08:00			`"time"`
project init 2020-08-04 00:51:19 +08:00			`)`

init project 2020-08-06 12:15:51 +08:00			`func signRpcRequest(request requests.AcsRequest, signer Signer) (err error) {`
			`err = completeRpcSignParams(request, signer)`
init project 2020-08-04 11:22:37 +08:00			`if err != nil {`
			`return`
			`}`
init project 2020-08-06 10:35:24 +08:00			`if _, isContainsSign := request.GetQueryParams()["sign"]; isContainsSign {`
			`delete(request.GetQueryParams(), "sign")`
init project 2020-08-04 11:22:37 +08:00			`}`
init project 2020-08-06 10:35:24 +08:00
init project 2020-08-06 12:15:51 +08:00			`stringToSign := buildRpcStringToSign(request)`
init project 2020-08-04 11:22:37 +08:00			`request.SetStringToSign(stringToSign)`
			`signature := signer.Sign(stringToSign, "&")`
init project 2020-08-06 10:35:24 +08:00			`request.GetQueryParams()["sign"] = signature`
init project 2020-08-04 11:22:37 +08:00			`return`
			`}`

init project 2020-08-06 12:15:51 +08:00			`func completeRpcSignParams(request requests.AcsRequest, signer Signer) (err error) {`

			`var accessKeyFrom string`
			`if accessKeyFrom, err = signer.GetAccessKeyFrom(); err != nil {`
			`return`
			`}`

init project 2020-08-06 10:35:24 +08:00			`queryParams := request.GetQueryParams()`
init project 2020-08-06 12:15:51 +08:00			`queryParams["access_time"] = fmt.Sprintf("%d", time.Now().Unix())`
init project 2020-08-06 10:35:24 +08:00			`queryParams["access_key"], err = signer.GetAccessKeyId()`
init project 2020-08-06 12:15:51 +08:00			`queryParams["access_from"] = accessKeyFrom`

			`if err != nil {`
			`return`
			`}`
init project 2020-08-06 10:35:24 +08:00
			`request.GetHeaders()["Content-type"] = requests.Form`
init project 2020-08-06 12:15:51 +08:00			`request.GetHeaders()["Gr-Sdk-From"] = accessKeyFrom`
init project 2020-08-06 10:35:24 +08:00			`formString := utils.GetUrlFormedMap(request.GetFormParams())`
			`request.SetContent(bytes.NewBufferString(formString).Bytes())`
init project 2020-08-04 11:22:37 +08:00			`return`
			`}`

init project 2020-08-06 12:15:51 +08:00			`func buildRpcStringToSign(request requests.AcsRequest) (stringToSign string) {`
project init 2020-08-04 00:51:19 +08:00			`signParams := make(map[string]string)`
			`for key, value := range request.GetQueryParams() {`
			`signParams[key] = value`
			`}`
init project 2020-08-06 15:41:02 +08:00
			`if strings.ToUpper(request.GetMethod()) == requests.POST {`
			`for key, value := range request.GetFormParams() {`
			`signParams[key] = value`
			`}`
project init 2020-08-04 00:51:19 +08:00			`}`

			`stringToSign = utils.GetUrlFormedMap(signParams)`
			`stringToSign = strings.Replace(stringToSign, "+", "%20", -1)`
			`stringToSign = strings.Replace(stringToSign, "*", "%2A", -1)`
			`stringToSign = strings.Replace(stringToSign, "%7E", "~", -1)`
			`stringToSign = url.QueryEscape(stringToSign)`
			`stringToSign = request.GetMethod() + "&%2F&" + stringToSign`
			`return`
			`}`
init project 2020-08-06 15:41:02 +08:00
			`func unsignRpcRequest(request *http.Request, signer Signer) (err error) {`
			`signParams := make(map[string]string)`
			`for key, value := range request.URL.Query() {`
			`signParams[key] = value[0]`
			`}`

			`if strings.ToUpper(request.Method) == requests.POST {`
			`for key, value := range request.Form {`
			`signParams[key] = value[0]`
			`}`
			`}`

			`signValue, ok := signParams["sign"]`
			`if !ok {`
			`return errors.New("sign value is not exists")`
			`}`

			`stringToSign := utils.GetUrlFormedMap(signParams)`
			`stringToSign = strings.Replace(stringToSign, "+", "%20", -1)`
			`stringToSign = strings.Replace(stringToSign, "*", "%2A", -1)`
			`stringToSign = strings.Replace(stringToSign, "%7E", "~", -1)`
			`stringToSign = url.QueryEscape(stringToSign)`
			`stringToSign = request.Method + "&%2F&" + stringToSign`

			`if timestamp, err := strconv.ParseInt(signParams["access_time"], 10, 64); err != nil {`
			`return err`
			`} else {`
			`if time.Unix(timestamp, 0).Before(time.Now().Add(-5 * time.Minute)) {`
			`err = errors.New("sign timeout 5 minute")`
			`}`
			`}`

			`if signer.Sign(stringToSign, "&") != signValue {`
			`return errors.New("sign string is not correct")`
			`}`
			`return`
			`}`