我正在关注亚马逊s3图片上传教程here。一切似乎都很好。我签名的网址响应返回200状态代码。但是,上次上传功能会抛出403状态代码。
function upload_file(file, signed_request, url){
var xhr = new XMLHttpRequest();
xhr.open("PUT", signed_request);
xhr.setRequestHeader('x-amz-acl', 'public-read');
xhr.onload = function() {
if (xhr.status === 200) {
document.getElementById("preview").src = url;
document.getElementById("avatar_url").value = url;
}
};
xhr.onerror = function() {
alert("Could not upload file.");
};
xhr.send(file);
}
此处的请求会引发错误
xhr.open("PUT", signed_request);
我检查了我的联网,并看到一个成功的响应类型OPTIONS与200状态代码一起提供。但是,具有相同标头和属性的最后一次类型PUT的重新授权失败。
我的密钥在我的sign_s3 python函数中表示
@app.route('/sign_s3/')
def sign_s3():
AWS_ACCESS_KEY = 'MY_AWS_ACCESS_KEY' # string
AWS_SECRET_KEY = 'MY_AWS_SECRET_KEY' #string
S3_BUCKET = 'MY_S3_BUCKET' # string
object_name = urllib.quote_plus(request.args.get('file_name'))
mime_type = request.args.get('file_type')
expires = int(time.time()+60*60*24)
amz_headers = "x-amz-acl:public-read"
string_to_sign = "PUT\n\n%s\n%d\n%s\n%s\n%s" % (mime_type, expires, amz_headers, S3_BUCKET, object_name)
print "%s" %string_to_sign
signature = base64.encodestring(hmac.new(AWS_SECRET_KEY.encode(), string_to_sign.encode('utf8'), sha1).digest())
signature = urllib.quote_plus(signature.strip())
url = 'https://%s.s3.amazonaws.com/%s' % (S3_BUCKET, object_name)
content = json.dumps({
'signed_request': '%s?AWSAccessKeyId=%s&Expires=%s&Signature=%s' % (url, AWS_ACCESS_KEY, expires, signature),
'url': url,
})
return content
请问我哪里错了?我在地址为http://127.0.0.1:8080/的localhost上运行我的烧瓶服务器。请问我哪里出错了?任何帮助将不胜感激。
答案 0 :(得分:1)
再次注意格式:
StringToSign = HTTP-VERB + "\n" +
Content-MD5 + "\n" +
Content-Type + "\n" +
Expires + "\n" +
CanonicalizedAmzHeaders +
CanonicalizedResource;
CanonicalizedResource应该是......
/bucket/object_name
...但是你的代码......
string_to_sign = "PUT\n\n%s\n%d\n%s\n%s\n%s" % (mime_type, expires, amz_headers, S3_BUCKET, object_name)
...将创建这个,而不是:
bucket
object_name
...所以看起来你的格式字符串实际上需要......
"PUT\n\n%s\n%d\n%s\n/%s/%s"