亚马逊产品广告API签名

时间:2015-02-26 23:55:19

标签: python amazon-product-api

我正在尝试为亚马逊产品广告API制作一个签名,已经花了几个小时,我仍然得到一个403 - 任何人都可以快速查看代码并告诉我,如果我做错了什么吗?

这是我用来创建签名的功能

def create_signature(service, operation, version, search_index, keywords, associate_tag, time_stamp, access_key):
start_string = "GET\n" + \
               "webservices.amazon.com\n" + \
               "/onca/xml\n" + \
               "AWSAccessKeyId=" + access_key + \
               "&AssociateTag=" + associate_tag + \
               "&Keywords=" + keywords + \
               "&Operation=" + operation + \
               "&SearchIndex=" + search_index + \
               "&Service=" + service + \
               "&Timestamp=" + time_stamp + \
               "&Version=" + version

dig = hmac.new("MYSECRETID", msg=start_string, digestmod=hashlib.sha256).digest()
sig = urllib.quote_plus(base64.b64encode(dig).decode())

return sig;

这是我用来返回请求字符串的函数

def ProcessRequest(request_item):
    start_string = "http://webservices.amazon.com/onca/xml?" + \
                   "AWSAccessKeyId=" + request_item.access_key + \
                   "&AssociateTag=" + request_item.associate_tag + \
                   "&Keywords=" + request_item.keywords + \
                   "&Operation=" + request_item.operation + \
                   "&SearchIndex=" + request_item.search_index + \
                   "&Service=" + request_item.service + \
                   "&Timestamp=" + request_item.time_stamp + \
                   "&Version=" + request_item.version + \
                   "&Signature=" + request_item.signature
    return start_string;

这是运行代码

_AWSAccessKeyID = "MY KEY"
_AWSSecretKey= "MY SECRET KEY"

def ProduceTimeStamp():
    time = datetime.datetime.now().isoformat()
    return time;

item = Class_Request.setup_request("AWSECommerceService", "ItemSearch", "2011-08-01", "Books", "harry%20potter", "PutYourAssociateTagHere", ProduceTimeStamp(), _AWSAccessKeyID)
item2 = Class_Request.ProcessRequest(item)

它在403处产生的示例Web请求是: - 

http://webservices.amazon.com/onca/xml?AWSAccessKeyId=AKIAIY4QS5QNDAI2NFLA&AssociateTag=PutYourAssociateTagHere&Keywords=harry%20potter&Operation=ItemSearch&SearchIndex=Books&Service=AWSECommerceService&Timestamp=2015-02-26T23:53:14.330000&Version=2011-08-01&Signature=KpC%2BUsyJcw563LzIgxf7GkYI5IV6EfmC0%2FsH8LuP%2FEk%3D

还有一个名为ClassRequest的持有者类,每个请求字段只有一个字段

如果有人感兴趣,我所遵循的指示就在这里: - http://docs.aws.amazon.com/AWSECommerceService/latest/DG/rest-signature.html

我希望有人可以提供帮助,我是Python新手并且有点失落

3 个答案:

答案 0 :(得分:4)

您只需使用现有解决方案之一

即可

可从PyPI获得。

OR

将您的解决方案与其中一个进行比较: https://bitbucket.org/basti/python-amazon-product-api/src/41529579819c75ff4f03bc93ea4f35137716ebf2/amazonproduct/api.py?at=default#cl-143

例如,您的时间戳看起来有点短。

答案 1 :(得分:2)

再次检查时间戳是否正确,它的格式应为2015-03-27T15:10:17.000Z,并在您的示例Web请求中显示如下:2015-02-26T23:53:14.330000

尝试链接的好工具是亚马逊签署的请求助手:https://associates-amazon.s3.amazonaws.com/signed-requests/helper/index.html

答案 2 :(得分:0)

对我有用。

$str = "Service=AWSECommerceService&Operation=ItemSearch&AWSAccessKeyId={Access Key}&Keywords=Harry%20Potter&ResponseGroup=Images%2CItemAttributes%2COffers&SearchIndex=Books&Timestamp=2019-08-11T17%3A51%3A56.000Z";


$ar = explode("&", $str);

natsort($ar);

$str = "GET
webservices.amazon.com
/onca/xml
";

$str .= implode("&", $ar); 

$str = urlencode(base64_encode(hash_hmac("sha256",$str,'{Secret Key Here}',true)));


http://webservices.amazon.com/onca/xml?Service=AWSECommerceService&Operation=ItemSearch&AWSAccessKeyId={Access Key}&Keywords=Harry%20Potter&ResponseGroup=Images%2CItemAttributes%2COffers&SearchIndex=Books&Timestamp=2019-08-11T17%3A51%3A56.000Z&Signature=$str

记住:如果出现此错误 您的AccessKey ID未注册产品广告API。请使用在https://affiliate-program.amazon.com/assoc_credentials/home

注册后获得的AccessKey ID。

转到https://affiliate-program.amazon.com/assoc_credentials/home

相关问题
最新问题