堆栈内存溢出
  简体   繁体   English

s3“签名不匹配”客户端发布jquery-file-upload

[英]s3 “signature doesn't match” client side post jquery-file-upload

 原文  2014-04-15 21:06:09       javascript/ jquery/ node.js/ amazon-s3

问题描述

I am generating a signature for doing client side posting to s3 in node on the back end and submitting it via jquery-file-upload on the client. 我正在生成一个签名,用于将客户端发布到后端节点中的s3并通过客户端上的jquery-file-upload提交。 My signature generation looks like the following: 我的签名生成如下所示: 

  app.post('/api/v1/s3', function(req, res){
    var data = utils.getReqJson(req.body);
    var mime_type = mime.lookup(data.filename);
    var expire = moment().utc().add('hour', 1).toJSON("YYYY-MM-DDTHH:mm:ss Z");
    var policy = JSON.stringify({
      "expiration": expire,
      "conditions": [ 
        {"bucket": aws_bucket},
        ["starts-with", "$key", aws_bucket_dir],
        {"acl": "private"},
        {"success_action_status": "201"},
        ["starts-with", "$Content-Type", ''],
        ["content-length-range", 0, max_filesize]
      ]
    });
    var base64policy = new Buffer(policy).toString('base64');
    var signature = crypto.createHmac('sha1', process.env.AWS_SECRET).update(base64policy).digest('base64');
    signature = encodeURIComponent(signature.trim());
    signature = signature.replace('%2B','+');
    var file_key = uuid.v4();
    res.json({ policy: base64policy,
      signature: signature,
      key: aws_bucket_dir + file_key + "_" + data.filename,
      contentType: mime_type,
      aws_access: process.env.AWS_ACCESS_KEY,
      bucket_dir: aws_bucket_dir,
      bucket: aws_bucket
    });
  });

Then on the front end I have the following code: 然后在前端,我有以下代码: 

this.$().fileupload({
  dataType: 'json',
  type: 'POST',
  autoUpload: true,
  add: function (e, data) {
    $.ajax({
      url: window.ENV.api_url+'/' + window.ENV.api_namespace + '/s3',
      type: 'POST',
      dataType: 'json',
      data: {
        "filename": data.files[0].name
      },
      async: false,
      success: function(retdata) {
        //do actual upload stuff now.
        data.url = 'https://'+retdata.bucket+'.s3.amazonaws.com/';
        data.formData = {
          key: retdata.key,
          AWSAccessKeyId: retdata.aws_access,
          acl: 'private',
          policy: retdata.policy,
          signature: retdata.signature,
          success_action_status: 201,
          "Content-Type": retdata.contentType 
        };
        data.submit()
          .success(function (result, textStatus, jqXHR) {
            console.log('Success: ' + result);
          })
          .error(function (jqXHR, textStatus, errorThrown) {
            console.log('Error: ' + errorThrown);
            console.log(jqXHR);
            console.log('Status: ' + textStatus);                
          });
        console.log(retdata);
      },
      error: function (xhr, ajaxOptions, thrownError) {
        console.log('AJAX: ' + xhr);
        console.log('AJAX: ' + thrownError);
      }
    });
  },
  progressall: function (e, data) {
    var progress = parseInt(data.loaded / data.total * 100, 10);
    $('#progress .progress-bar').css(
      'width',
      progress + '%'
    );
  }
});

It seems as though I am submitting the correct form data to match my signature generation, but I am getting the following errors every time I try to submit: 似乎我正在提交正确的表单数据以匹配我的签名生成,但是每次尝试提交时都会遇到以下错误:

SignatureDoesNotMatch - The request signature we calculated does not match the signature you provided. SignatureDoesNotMatch-我们计算出的请求签名与您提供的签名不匹配。 Check your key and signing method. 检查您的密钥和签名方法。

I am struggling to figure out what I might be doing wrong, if anyone can help I would appreciate it. 如果有人可以帮助我,我会努力弄清楚我可能在做错什么,对此我将不胜感激。

1 个解决方案

解决方案1
 0 已采纳  2014-04-15 21:29:57

I struggled with this for a while and eventually got it working using the following: 我为此苦苦挣扎了一段时间,最终使用以下方法使其工作:

in the s3 handler: 在s3处理程序中: 

var uploadToS3 = function(s3Url, cb){
  var fd = new FormData();
  var file = document.getElementById('file').files[0];
  var key = 'uploads\/' + file.name;

  fd.append('key', 'uploads\/' + file.name);
  fd.append('acl', 'public-read');
  fd.append('Content-Type', 'multipart/form-data');
  fd.append('AWSAccessKeyId', 'XXXX');
  fd.append('policy', s3Url.s3Policy);
  fd.append('signature', s3Url.s3Signature);
  fd.append('file', file);

  var xhr = new XMLHttpRequest();
  xhr.open('POST', 'https://XXXX.s3.amazonaws.com', true);

  /////////////////////////////////////////////////////////
  // Keep track of upload progress so that we can message//
  // it to the user.                                     //
  /////////////////////////////////////////////////////////

  var firstProgressEvent = true;
  xhr.loaded = 0;
  xhr.upload.addEventListener('progress', function(e) {
    if (firstProgressEvent) {
      firstProgressEvent = false;
    }
    xhr.loaded += (e.loaded - xhr.loaded);
    $('progress').val((xhr.loaded / e.total) * 100);
  }, false);

  xhr.onreadystatechange = function(){ 
    if ( xhr.readyState == 4 ) { 
      if ( xhr.status >= 200 && xhr.status < 400 ) { 
        cb(xhr.status);
      } else { 
        cb(xhr.status);
      } 
    } 
  }; 
  xhr.onerror = function () { 
    error(xhr, xhr.status); 
  }; 
  xhr.send(fd);
};

}); });

on the server: 在服务器上: 

createS3Policy = function(key, callback) {
  var date = new Date();
  var s3Policy = {
    "expiration": new Date(Date.now() + 300000),
    "conditions": [
      {"bucket": "XXX"}, 
      ["starts-with", "$key", key], 
      {"acl": "public-read"},
      ["starts-with", "$Content-Type", "multipart/form-data"],
      ["content-length-range", 0, 524288000]
    ]
  };

  ////////////////////////////////////
  // stringify and encode the policy//
  ////////////////////////////////////
  var stringPolicy = JSON.stringify(s3Policy);
  var base64Policy = Buffer(stringPolicy, "utf8").toString("base64");

  ////////////////////////////////////
  // sign the base64 encoded policy //
  ////////////////////////////////////
  var signature = crypto.createHmac("sha1", process.env.AWS_SECRET_ACCESS_KEY)
    .update(new Buffer(base64Policy, "utf8")).digest("base64");

  ////////////////////////////////////
  // build the results object       //
  ////////////////////////////////////
  var s3Credentials = {
    s3Policy: base64Policy,
    s3Signature: signature
  };

    callback(s3Credentials);
};

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 JQuery-File-Upload客户端使用coffeescript调整图像大小 - JQuery-File-Upload Client side Image resizing with coffeescript jQuery-File-Upload-输出 - jQuery-File-Upload - Output 使用基于ajax的客户端的PHP文件上传不起作用 - PHP File upload with ajax based client side doesn't work PHP/jQuery S3 上传不适用于带空格的文件 - PHP/jQuery S3 upload doesn't work on files with spaces 上传 S3 knox 节点 js(签名不匹配) - Upload S3 knox node js (signature doesnt match) 删除时的JQuery-File-Upload 404错误 - JQuery-File-Upload 404 Error on Delete 在Blueimp / jQuery-File-Upload中过滤文件 - filter files in Blueimp/ jQuery-File-Upload 为jQuery-File-Upload实现删除按钮 - Implementing Remove Buttons for jQuery-File-Upload 限制jQuery-File-Upload中的文件数 - Limit number files in jQuery-File-Upload blueimp jQuery-File-Upload无法正常工作 - blueimp jQuery-File-Upload not working
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM