UNPKG

@cloudbase/node-sdk

Version:

tencent cloud base server sdk for node.js

github.com/TencentCloudBase/node-sdk

TencentCloudBase/node-sdk

120 lines (119 loc) 4.23 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
"use strict"; var __importStar = (this && this.__importStar) || function (mod) { if (mod && mod.__esModule) return mod; var result = {}; if (mod != null) for (var k in mod) if (Object.hasOwnProperty.call(mod, k)) result[k] = mod[k]; result["default"] = mod; return result; }; Object.defineProperty(exports, "__esModule", { value: true }); const crypto = __importStar(require("crypto")); const utils_1 = require("./utils"); class Auth { constructor(opt) { this.qSignAlgorithm = 'sha1'; this.opt = opt || {}; } getAuth() { const opt = this.opt; const SecretId = opt.SecretId; const SecretKey = opt.SecretKey; const method = (opt.Method || 'get').toLowerCase(); const queryParams = utils_1.clone(opt.Query || {}); const headers = utils_1.clone(opt.Headers || {}); let pathname = opt.Pathname || '/'; pathname.indexOf('/') !== 0 && (pathname = '/' + pathname); // if (!SecretId) { // throw E({...ERROR.INVALID_PARAM, message: 'missing param SecretId'}) // } // if (!SecretKey) { // throw E({...ERROR.INVALID_PARAM, message: 'missing param SecretKey'}) // } // 签名有效起止时间 const now = Math.floor(new Date().getTime() / 1000) - 1; let exp = now; exp += 900; // 签名过期时间为当前 + 900s // 要用到的 Authorization 参数列表 // var qSignAlgorithm = 'sha1' const qAk = SecretId; const qSignTime = now + ';' + exp; const qKeyTime = now + ';' + exp; const qHeaderList = this.getObjectKeys(headers) .join(';') .toLowerCase(); const qUrlParamList = this.getObjectKeys(queryParams) .join(';') .toLowerCase(); // 签名算法说明文档:https://www.qcloud.com/document/product/436/7778 // 步骤一:计算 SignKey const signKey = crypto .createHmac('sha1', SecretKey) .update(qKeyTime) .digest('hex'); // 步骤二:构成 FormatString const formatString = [ method, pathname, this.obj2str(queryParams), this.obj2str(headers), '' ].join('\n'); const formatStrBuffer = Buffer.from(formatString, 'utf8'); // 步骤三:计算 StringToSign let sha1Algo = crypto.createHash('sha1'); sha1Algo.update(formatStrBuffer); let res = sha1Algo.digest('hex'); let stringToSign = ['sha1', qSignTime, res, ''].join('\n'); // 步骤四:计算 Signature let qSignature = crypto .createHmac('sha1', signKey) .update(stringToSign) .digest('hex'); // 步骤五:构造 Authorization let authorization = [ 'q-sign-algorithm=' + this.qSignAlgorithm, 'q-ak=' + qAk, 'q-sign-time=' + qSignTime, 'q-key-time=' + qKeyTime, 'q-header-list=' + qHeaderList, 'q-url-param-list=' + qUrlParamList, 'q-signature=' + qSignature ].join('&'); return authorization; } getObjectKeys(obj) { const list = []; for (let key in obj) { if (obj.hasOwnProperty(key)) { if (obj[key] === undefined) { continue; } list.push(key); } } return list.sort(); } obj2str(obj) { let i; let key; let val; let list = []; let keyList = this.getObjectKeys(obj); for (i = 0; i < keyList.length; i++) { key = keyList[i]; if (obj[key] === undefined) { continue; } val = obj[key] === null ? '' : obj[key]; if (typeof val !== 'string') { val = JSON.stringify(val); } key = key.toLowerCase(); key = utils_1.camSafeUrlEncode(key); val = utils_1.camSafeUrlEncode(val) || ''; list.push(key + '=' + val); } return list.join('&'); } } exports.Auth = Auth;