将文件上传到S3时出错:我们计算出的请求签名与您提供的签名不匹配

时间:2019-05-20 05:40:29

标签: amazon-web-services shell amazon-s3

我正在尝试使用以下Shell脚本将文件上传到S3存储桶:

file=somefile.txt
bucket=some-bucket
resource="/${bucket}/${file}"
contentType="application/x-compressed-tar"
dateValue=`date -R`
stringToSign="PUT\n\n${contentType}\n${dateValue}\n${resource}"
s3Key=xxxxxxxxxxxxxxx
s3Secret=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
signature=`echo -en ${stringToSign} | openssl sha1 -hmac ${s3Secret} -binary | base64`
curl -X PUT -T "${file}" \
  -H "Host: ${bucket}.s3.amazonaws.com" \
  -H "Date: ${dateValue}" \
  -H "Content-Type: ${contentType}" \
  -H "Authorization: AWS ${s3Key}:${signature}" \
  https://${bucket}.s3.amazonaws.com/${file}

上面的脚本已成功将文件上传到存储桶。但是,它不会使文件/对象公开,因此当我尝试使用wget https://some-bucket.s3.amazonaws.com/somefile.txt下载文件时,它会失败。

为公开对象/文件,我尝试在上载时将acl="x-amz-acl:public-read"访问控制传递给它(以下脚本):

file=somefile.txt
bucket=some-bucket
resource="/${bucket}/${file}"
contentType="application/x-compressed-tar"
dateValue=`date -R`
acl="x-amz-acl:public-read"
stringToSign="PUT\n\n${contentType}\n${dateValue}\n$acl\n${resource}"
s3Key=xxxxxxxxxxxxxxxxxxxxxxxx
s3Secret=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
signature=`echo -en ${stringToSign} | openssl sha1 -hmac ${s3Secret} -binary | base64`
curl -X PUT -T "${file}" \
  -H "Host: ${bucket}.s3.amazonaws.com" \
  -H "Date: ${dateValue}" \
  -H "$acl" \
  -H "Content-Type: ${contentType}" \
  -H "Authorization: AWS ${s3Key}:${signature}" \
  https://${bucket}.s3.amazonaws.com/${file}

但是,当我执行此脚本时,它无法将文件上传到S3并引发以下错误:

< ..Code>SignatureDoesNotMatch</ Code>
<..Message >The request signature we calculated does not match the signature you provided. Check your key and signing method.</ Message>

可能是什么问题?我试图在脚本中提供访问控制的方式有问题吗?

0 个答案:

没有答案
相关问题
最新问题