小贝子编程

如何使用自定义访问令牌为2腿oAuth签名请求



我使用oauth-ruby gem有一段时间了,我已经实现了两种类型的auth:

  1. 默认一个
  2. 和custom,其中使用通过sms
    3. 发送的OTP

它们现在都工作得很好

但是现在我正在尝试实现新的(3)两条腿的oauth。我遇到了一些我无法理解的问题。由于无效的令牌,我使用(3)访问令牌的所有签名请求都失败了。对于(1-2),它工作没有任何问题。

签名请求通过RestClient.before_execution_proc实现:

RestClient.add_before_execution_proc do |req, params|
  access_token.sign!(req)
end

我想问题来自access_token = OAuth::AccessToken,因为其他2之间存在实际差异。任何建议或意见都会很有帮助的。

1。

def default_oauth(login, pass, device: Device.new)
  @cookies = login_req(login, pass).cookies
  headers = common_headers.merge("Cookie" => @cookies)
  #Get request token
  request_token = consumer.get_request_token
  # Authorize request key
  authorize = RestClient.post(base_url + '/oauth/authorize',
                              { requestToken: request_token.token, authorize: 'Authorize'},
                              headers) {|response, request, result| response }
  auth_url_resp = RestClient.get(authorize.headers[:location], headers: headers) {|response, request, result| response }
  # Get Access key
  access_token = request_token.get_access_token
end

2。

def custom_oauth(phone, pin, otp: nil, device: Device.new)
  otp = phone.to_s[-5..-1] if otp.nil?
  resp = RestClient.post("#{base_url}/rest/smartphone/otp/sms-sender/#{phone}", '', common_headers) {|response, request, result| response }
  request_token = consumer.get_request_token
  payload = {
      device: device.to_h,
      otp: otp,
      password: pin.to_s,
      requestToken: request_token.token
  }
  headers = json_headers.merge('Cookie' => otp)
  authorize = RestClient.post(base_url + '/oauth/otp-authorization',
                              payload.to_json, headers) {|response, request, result| response }
  @access_token = request_token.get_access_token
end

3。

def new_oauth(login, pass, entry, device: Device.new)
  tkn = consumer.get_request_token.token
  payload = {
      username: login,
      password: pass.to_s,
      requestToken: tkn,
      entryPoint: entry,
      device: device.to_h
  }
  headers =json_headers(device.id)
  resp = RestClient.post("#{base_url}/oauth/login-authorization", payload.to_json, headers) {|response, request, result| response}
  hsh ={oauth_token: resp.headers[:accesstoken], oauth_token_secret: resp.headers[:tokensecret] }
  access_token = OAuth::AccessToken.from_hash(consumer, hsh)
end
消费者:

def consumer
  @consumer ||= build_consumer
end
def build_consumer
  key = 'key_string'
  secret ='secret_string'
  OAuth::Consumer.new(key, secret, :site => base_url)
end

问题与服务器(Spring)编码有关。oauth-ruby gem正在转义用于签名创建的令牌秘密(组合秘密或加密密钥)。Spring默认在服务器端做同样的事情。

unescap access_token。秘密修复了这个问题:

access_token.secret = OAuth::Helper.unescape(access_token.secret)

相关内容

最新更新


热门标签:

javascript python java c# php android html jquery c++ css ios sql mysql arrays asp.net json python-3.x ruby-on-rails .net sql-server django objective-c excel regex ruby linux ajax iphone xml vba spring asp.net-mvc database wordpress string postgresql wpf windows xcode bash git oracle list vb.net multithreading eclipse algorithm macos powershell visual-studio image forms numpy scala function api selenium