亚马逊有一些使用 HMAC 签署 REST 调用的示例。但是,在 Metro / WinRT 应用程序中使用以下代码时,签名不匹配。
HMAC的计算方法:
internal string CreateHMAC(
string message,
string algorithmName,
string key)
{
MacAlgorithmProvider macAlgorithmProvider = MacAlgorithmProvider.OpenAlgorithm(algorithmName);
var binaryMessage = CryptographicBuffer.ConvertStringToBinary(message, BinaryStringEncoding.Utf8);
var binaryKeyMaterial = CryptographicBuffer.ConvertStringToBinary(key, BinaryStringEncoding.Utf8);
var hmacKey = macAlgorithmProvider.CreateKey(binaryKeyMaterial);
var binarySignedMessage = CryptographicEngine.Sign(hmacKey, binaryMessage);
var signedMessage = CryptographicBuffer.EncodeToBase64String(binarySignedMessage);
return signedMessage;
}
测试检查示例:
var hmac = this.Amazon.CreateHMAC("GET\nwebservices.amazon.com\n/onca/xml\nAWSAccessKeyId=AKIAIOSFODNN7EXAMPLE&ItemId=0679722769&Operation=ItemLookup&ResponseGroup=ItemAttributes%2COffers%2CImages%2CReviews&Service=AWSECommerceService&Timestamp=2009-01-01T12%3A00%3A00Z&Version=2009-01-06", "HMAC_SHA256", "1234567890");
var encoded = WebUtility.UrlEncode(hmac);
Assert.AreEqual("Nace%2BU3Az4OhN7tISqgs1vdLBHBEijWcBeCqL5xN9xg%3D", encoded);
实际结果是:
M%2fy0%2bEAFFGaUAp4bWv%2fWEuXYah99pVsxvqtAuC8YN7I%3d
有没有其他人在 WinRT 上成功创建了 HMAC?或者你能看到我做错了什么吗?