在HTTP请求中找到的MAC签名' '与任何计算签名不同。服务器使用以下字符串进行签名:' PUT

时间:2017-10-30 22:27:46

标签: c# rest azure azure-storage-files azure-files

我尝试通过REST API创建文件共享但我收到此错误

  

AuthenticationFailed   服务器无法验证请求。确保>的值> >正确形成授权标头,包括签名。   请求ID:aba10b5f-001A-0026-49cb-51d887000000   时间:2017-10-30T22:04:13.9907093Z MAC>在HTTP请求中找到的签名> > >   ' U8UvWw4KO0fXAk21p / fuXhfqpDdgK7OZn29r5JQ1x4E ='与任何计算的>不同签名。服务器使用以下字符串进行签名:' PUT

这是我的代码:

static void CreatFileShare()
    {
        string requestMethod = "PUT";
        string urlPath = strShareName + "?restype=share";
        string urlPathResource = "restype:share";

        String canonicalizedResource = String.Format("/{0}/{2}\n{1}", StorageAccountName, urlPathResource, /*strShareName*/ "MFS2");
        try
        {
            HttpWebRequest request = GetWebRequest(requestMethod, urlPath, canonicalizedResource, "CreateShare");
            using (HttpWebResponse response = (HttpWebResponse)request.GetResponse())
            {
                Console.WriteLine("Response status code: " + response.StatusCode + ".  Successfully Create the share \"" + strShareName + "\".");
            }
        }
        catch (WebException ex)
        {
            ThrowWebException(ex);
        }
    }

static HttpWebRequest GetWebRequest(string requestMethod, string urlPath, String canonicalizedResource, string MethodType)
    {
        HttpWebRequest request = null;
        try
        {
            const string type = "file";
            const string msVersion = "2017-04-17";
            String dateInRfc1123Format = DateTime.UtcNow.ToString("R", CultureInfo.InvariantCulture);
            String canonicalizedHeaders = "";

            //canonicalizedHeaders = String.Format("x-ms-date:{0}\nx-ms-version:{1}", dateInRfc1123Format, msVersion);
            canonicalizedHeaders = String.Format("x-ms-date:{0}\nx-ms-version:{1}\n", dateInRfc1123Format, msVersion);
            if (MethodType == "CreateFile")
            {
                canonicalizedHeaders = String.Format("x-ms-content-length:1024\nx-ms-date:{0}\nx-ms-type:file\nx-ms-version:{1}", dateInRfc1123Format, msVersion);
            }

            String stringToSign = "";


            //stringToSign = String.Format("{0}\n\n\n\n\n\n\n\n\n\n\n\n{1}\n{2}", requestMethod, canonicalizedHeaders, canonicalizedResource);
            stringToSign = String.Format("{0}\n\n\n\n\n\n\n\n\n\n\n\n{1}{2}", requestMethod, canonicalizedHeaders, canonicalizedResource);

            String authorizationHeader = CreateAuthorizationHeader(stringToSign);

            Uri uri = new Uri(FileEndPoint + urlPath);
            request = (HttpWebRequest)WebRequest.Create(uri);
            if (requestMethod != "Get")
            {
                request.ContentLength = 0;
            }

            request.Method = requestMethod;
            request.Headers.Add("x-ms-date", dateInRfc1123Format);
            request.Headers.Add("x-ms-version", msVersion);
            request.Headers.Add("Authorization", authorizationHeader);
            request.Headers.Add("Accept-Charset", "UTF-8");
            request.Accept = "application/atom+xml,application/xml";
            if (MethodType == "CreateFile")
            {
                request.Headers.Add("x-ms-content-length", "1024");
                request.Headers.Add("x-ms-type", type);

            }
        }
        catch (Exception ex)
        {
            throw ex;
        }

        return request;
    }

我在CreateAuthorizationHeader方法

中使用HMAC-SHA256算法

我的应用程序还具有检索文件共享和目录/文件的逻辑 在存储帐户内,它工作正常。 问题出现在我想要创建文件,文件共享或共享快照的时刻。

非常感谢任何帮助!!

1 个答案:

答案 0 :(得分:0)

对于Create Share,请求将是:

PUT https://{your-storage-accountname}.file.core.windows.net/{share-name}?restype=share

Request Headers:  
x-ms-version: 2017-04-17 
x-ms-date: <date>  
Authorization: SharedKey {your-storage-accountname}:{shared-key-signature-string}

规范化的标题字符串将是:

x-ms-date:Wed, 01 Nov 2017 05:53:50 GMT\nx-ms-version:2017-04-17\n

Canonicalized Resource字符串将是:

/{your-account-name}/{your-share-name}\nrestype:share

对于Create File,请求将是:

PUT https://{your-storage-accountname}.file.core.windows.net/{share-name}/{file}

Request Headers:  
x-ms-version: 2017-04-17 
x-ms-date: <date>  
x-ms-content-length: 1024 //This header specifies the maximum size for the file, up to 1 TB.
Authorization: SharedKey {your-storage-accountname}:{shared-key-signature-string}

规范化的标题字符串将是:

x-ms-content-length:1024\nx-ms-date:Wed, 01 Nov 2017 06:03:57 GMT\nx-ms-type:file\nx-ms-version:2017-04-17\n

Canonicalized Resource字符串将是:

/{your-account-name}/{your-share-name}/{your-file}
//e.g. /brucchstorage/myshare1/helloworld.txt

对于您的代码,您需要修改urlPath方法下的参数canonicalizedResourceCreatFileShare以支持创建文件。此外,您需要在\n方法下的canonicalizedHeaders参数中添加换行符(GetWebRequest),方法类型等于CreateFile

此外,导致此问题的常见原因是CanonicalizedResource和CanonicalizedHeaders的生成。我建议您参考Authentication for the Azure Storage Services以更好地了解它们。此外,您可以利用fiddler捕获网络跟踪,并将错误响应中的字符串与您的本地值进行比较以缩小此问题。

正如Gaurav Mantri评论说,您可以利用Azure存储客户端库.NET以简单的方式实现您的目的。更多细节,您可以参考here

相关问题
最新问题