61

我正在编写一些代码来与 redmine 交互,我需要上传一些文件作为该过程的一部分,但我不确定如何从包含二进制文件的 python 发出 POST 请求。

我试图在这里模仿命令:

curl --data-binary "@image.png" -H "Content-Type: application/octet-stream" -X POST -u login:password http://redmine/uploads.xml

在python(下)中,但它似乎不起作用。我不确定问题是否与文件编码有关,或者标题是否有问题。

import urllib2, os

FilePath = "C:\somefolder\somefile.7z"
FileData = open(FilePath, "rb")
length = os.path.getsize(FilePath)

password_manager = urllib2.HTTPPasswordMgrWithDefaultRealm()
password_manager.add_password(None, 'http://redmine/', 'admin', 'admin')
auth_handler = urllib2.HTTPBasicAuthHandler(password_manager)
opener = urllib2.build_opener(auth_handler)
urllib2.install_opener(opener)
request = urllib2.Request( r'http://redmine/uploads.xml', FileData)
request.add_header('Content-Length', '%d' % length)
request.add_header('Content-Type', 'application/octet-stream')
try:
    response = urllib2.urlopen( request)
    print response.read()
except urllib2.HTTPError as e:
    error_message = e.read()
    print error_message

我可以访问服务器,它看起来像一个编码错误:

...
invalid byte sequence in UTF-8
Line: 1
Position: 624
Last 80 unconsumed characters:
7z¼¯'ÅÐз2^Ôøë4g¸R<süðí6kĤª¶!»=}jcdjSPúá-º#»ÄAtD»H7Ê!æ½]j):

(further down)

Started POST "/uploads.xml" for 192.168.0.117 at 2013-01-16 09:57:49 -0800
Processing by AttachmentsController#upload as XML
WARNING: Can't verify CSRF token authenticity
  Current user: anonymous
Filter chain halted as :authorize_global rendered or redirected
Completed 401 Unauthorized in 13ms (ActiveRecord: 3.1ms)
4

4 回答 4

78

基本上你所做的都是正确的。查看您链接到的 redmine 文档,似乎 url 中点后的后缀表示发布数据的类型(.json 表示 JSON,.xml 表示 XML),这与您得到的响应一致 - Processing by AttachmentsController#upload as XML。我想也许文档中有一个错误,要发布二进制数据,您应该尝试使用http://redmine/uploadsurl 而不是http://redmine/uploads.xml.

顺便说一句,我强烈推荐 Python 中用于 http 的非常好的和非常流行的Requests库。它比标准库(urllib2)中的要好得多。它也支持身份验证,但为了简洁起见,我在这里跳过了它。

import requests
with open('./x.png', 'rb') as f:
    data = f.read()
res = requests.post(url='http://httpbin.org/post',
                    data=data,
                    headers={'Content-Type': 'application/octet-stream'})

# let's check if what we sent is what we intended to send...
import json
import base64

assert base64.b64decode(res.json()['data'][len('data:application/octet-stream;base64,'):]) == data

更新

要找出为什么这适用于 Requests 但不适用于 urllib2,我们必须检查发送内容的差异。为了看到这一点,我将流量发送到在端口 8888 上运行的 http 代理(Fiddler):

使用请求

import requests

data = 'test data'
res = requests.post(url='http://localhost:8888',
                    data=data,
                    headers={'Content-Type': 'application/octet-stream'})

我们看

POST http://localhost:8888/ HTTP/1.1
Host: localhost:8888
Content-Length: 9
Content-Type: application/octet-stream
Accept-Encoding: gzip, deflate, compress
Accept: */*
User-Agent: python-requests/1.0.4 CPython/2.7.3 Windows/Vista

test data

并使用 urllib2

import urllib2

data = 'test data'    
req = urllib2.Request('http://localhost:8888', data)
req.add_header('Content-Length', '%d' % len(data))
req.add_header('Content-Type', 'application/octet-stream')
res = urllib2.urlopen(req)

我们得到

POST http://localhost:8888/ HTTP/1.1
Accept-Encoding: identity
Content-Length: 9
Host: localhost:8888
Content-Type: application/octet-stream
Connection: close
User-Agent: Python-urllib/2.7

test data

我看不出有任何差异可以保证您观察到不同的行为。话虽如此,http 服务器检查User-Agent标头并根据其值改变行为并不少见。尝试一一更改 Requests 发送的标头,使其与 urllib2 发送的标头相同,然后查看它何时停止工作。

于 2013-01-21T23:17:58.853 回答
3

这与格式错误的上传无关。HTTP 错误明确指出 401 未授权,并告诉您 CSRF 令牌无效。尝试在上传时发送有效的 CSRF 令牌。

更多关于 csrf 令牌的信息:

什么是 CSRF 代币?它的重要性是什么,它是如何工作的?

于 2014-10-17T19:44:46.063 回答
2

你需要添加 Content-Disposition 头,像这样(虽然我在这里使用了 mod-python,但原理应该是一样的):

request.headers_out['Content-Disposition'] = 'attachment; filename=%s' % myfname
于 2013-01-16T18:38:00.207 回答
-1

您可以使用unirest,它提供了简单的方法来发布请求。`

import unirest
 
def callback(response):
 print "code:"+ str(response.code)
 print "******************"
 print "headers:"+ str(response.headers)
 print "******************"
 print "body:"+ str(response.body)
 print "******************"
 print "raw_body:"+ str(response.raw_body)
 
# consume async post request
def consumePOSTRequestASync():
 params = {'test1':'param1','test2':'param2'}
 
 # we need to pass a dummy variable which is open method
 # actually unirest does not provide variable to shift between
 # application-x-www-form-urlencoded and
 # multipart/form-data
  
 params['dummy'] = open('dummy.txt', 'r')
 url = 'http://httpbin.org/post'
 headers = {"Accept": "application/json"}
 # call get service with headers and params
 unirest.post(url, headers = headers,params = params, callback = callback)
 
 
# post async request multipart/form-data
consumePOSTRequestASync()
于 2016-01-23T10:19:17.637 回答