C# AmazonMWS:将工作PHP解决方案转换为c时提供的计算签名不匹配#
我用PHP编写了一个将账单上传到Amazon的工作解决方案,其中包含来自internet的示例,它可以上传发票(我检查过了,效果很好)。在我尝试用C代码重写它时,我总是得到以下答案:C# AmazonMWS:将工作PHP解决方案转换为c时提供的计算签名不匹配#,c#,php,hmac,amazon-mws,C#,Php,Hmac,Amazon Mws,我用PHP编写了一个将账单上传到Amazon的工作解决方案,其中包含来自internet的示例,它可以上传发票(我检查过了,效果很好)。在我尝试用C代码重写它时,我总是得到以下答案: <?xml version="1.0"?> <ErrorResponse xmlns="http://mws.amazonaws.com/doc/2009-01-01/"> <Error> <Type>S
<?xml version="1.0"?>
<ErrorResponse xmlns="http://mws.amazonaws.com/doc/2009-01-01/">
<Error>
<Type>Sender</Type>
<Code>SignatureDoesNotMatch</Code>
<Message>The request signature we calculated does not match the signature you provided. Check your AWS Secret Access Key and signing method. Consult the service documentation for details.</Message>
</Error>
<RequestID>bc0409f1-881a-468e-9435-4c5b0a7c78b4</RequestID>
</ErrorResponse>
<?php
$fileName = "Invoice12345656.pdf";
$file = fopen($fileName, "r");
$pdf_feed = '@'. fread($file, filesize($fileName));
$hash = base64_encode(md5($pdf_feed, true));
$param = array();
$param['AWSAccessKeyId'] = '*******************';
$param['Action'] = 'SubmitFeed';
$param['SellerId'] = '********************';
$param['FeedType'] = '_UPLOAD_VAT_INVOICE_';
$param['FeedOptions'] = 'metadata:OrderId=123-4567890-2949968;metadata:InvoiceNumber=20173723;metadata:documenttype=Invoice';
$param['SignatureMethod'] = 'HmacSHA256';
$param['SignatureVersion'] = '2';
$param['ContentMD5Value'] = $hash;
$param['Timestamp'] = gmdate("Y-m-d\TH:i:s.\\0\\0\\0\\Z", time());
$param['Version'] = '2009-01-01';
$param['MarketplaceIdList.Id.1'] = 'A1PA6795UKMFR9';
$param['PurgeAndReplace'] = 'false';
$secret = '*****************************************';
$url = array();
foreach ($param as $key => $val) {
$key = urlencode($key);
$val = urlencode($val);
$url[] = "{$key}={$val}";
}
fclose($file);
sort($url);
$arr = implode('&', $url);
$sign = 'POST' . "\n";
$sign .= 'mws.amazonservices.de' . "\n";
$sign .= '/Feeds/'.$param['Version'].'' . "\n";
$sign .= $arr;
$signature = hash_hmac("sha256", $sign, $secret, true);
$httpHeader = array();
$httpHeader[] = 'Content-Type: multipart/form-data';
$httpHeader[] = 'Content-MD5: ' . $hash;
$signature = urlencode(base64_encode($signature));
$link = "https://mws.amazonservices.de/Feeds/".$param['Version']."?" . $arr . "&Signature=" . $signature;
$ch = curl_init($link);
curl_setopt($ch, CURLOPT_HTTPHEADER, $httpHeader);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $pdf_feed);
curl_exec($ch);
curl_getinfo($ch);
curl_close($ch);
这个问题通常是针对JSON(PHP)加密使用与c#不同的填充这一事实。请参阅:@jdweng-我同意,我比较了php中的两个签名每次都不同,c中的签名每次都相同,但我做错了,这怎么可能呢?您总是使用相同的字符串进行加密:Convert.FromBase64String(“*****************************”)。请参阅正在创建随机密钥的msdn示例:RNGCryptoServiceProvider rng=new RNGCryptoServiceProvider()@jdweng-这是我的错误,上面的代码我收到了不同的签名,我尝试了一些其他的东西,我已经处理这个问题好几天了,我想如果我不能让它工作,我会用php代码制作一个api,并将文件发送到那里
public static void Main()
{
var httpClient = new HttpClient();
var requestMessage = new HttpRequestMessage();
var pdfStream = File.OpenRead("../../Invoice12345656.pdf");
var pdfMD5Hash = MD5.Create().ComputeHash(pdfStream);
var pdfMD5HashString = Convert.ToBase64String(pdfMD5Hash);
var query = new Dictionary<string, string>()
{
{ "AWSAccessKeyId", "*******************" },
{ "Action", "SubmitFeed" },
{ "SellerId", "*******************" },
{ "FeedType", "_UPLOAD_VAT_INVOICE_" },
{ "FeedOptions", "metadata:DocumentType=Invoice;metadata:InvoiceNumber=20177311;metadata:OrderId=123-4567890-8041110" },
{ "SignatureMethod", "HmacSHA256" },
{ "SignatureVersion", "2" },
{ "ContentMD5Value", pdfMD5HashString },
{ "Timestamp", DateTime.UtcNow.ToString("yyyy-MM-dd\\THH:mm:ss.000\\Z", CultureInfo.InvariantCulture) },
{ "Version", "2009-01-01" },
{ "MarketplaceIdList.Id.1", "A1PA6795UKMFR9" },
{ "PurgeAndReplace", "false" },
};
var queryString = string.Join("&", query.Select(x => $"{x.Key}={WebUtility.UrlEncode(x.Value)}"));
var textToSign = $"POST{Environment.NewLine}mws.amazonservices.de{Environment.NewLine}/Feeds/2009-01-01{Environment.NewLine}{queryString}";
var textToSignBytes = Encoding.Default.GetBytes(textToSign);
var hmacSHA256 = new HMACSHA256(Convert.FromBase64String("*******************"));
var signature = WebUtility.UrlEncode(Convert.ToBase64String(hmacSHA256.ComputeHash(textToSignBytes)));
var formDataContent = new MultipartFormDataContent();
formDataContent.Headers.ContentType = new MediaTypeHeaderValue("multipart/form-data");
formDataContent.Headers.Add("Content-MD5", pdfMD5HashString);
formDataContent.Add(new StringContent("@" + Convert.ToBase64String(File.ReadAllBytes("../../Invoice12345656.pdf"))));
requestMessage.RequestUri = new Uri($"https://mws.amazonservices.de/Feeds/2009-01-01?{queryString}&Signature={signature}");
requestMessage.Method = HttpMethod.Post;
requestMessage.Content = formDataContent;
var response = httpClient.SendAsync(requestMessage).Result;
Console.WriteLine(response.Content.ReadAsStringAsync().Result);
}