I have a java code example to make a digest computed using the HMAC-SHA1 algorithm (RFC 2104.), then encoded using Base64 encoding (RFC 2045).
here is the java code
public static String buildDigest(String key, String idString) throws SignatureException {
try {
String algorithm = "HmacSHA1";
Charset charset = Charset.forName("utf-8");
SecretKeySpec signingKey = new SecretKeySpec(key.getBytes(), algorithm);
Mac mac = Mac.getInstance(algorithm);
mac.init(signingKey);
return new String(Base64.encodeBase64(mac.doFinal(idString.getBytes(charset))), charset);
} catch (Exception e) {
throw new SignatureException("Failed to generate HMAC : " + e.getMessage());
}
}
I found answers here in Stack Overflow so here is the C# code
private string EncodeHMAC(string input, byte[] key)
{
HMACSHA1 myhmacsha1 = new HMACSHA1(key);
byte[] byteArray = Encoding.UTF8.GetBytes(input);
// MemoryStream stream = new MemoryStream(byteArray);
var hashValue = myhmacsha1.ComputeHash(byteArray);
return hashValue.Aggregate("", (s, e) => s + String.Format("{0:x2}", e), s => s);
}
private string EncodeTo64(string toEncode)
{
byte[] toEncodeAsBytes = System.Text.UTF8Encoding.UTF8.GetBytes(toEncode);
string returnValue = System.Convert.ToBase64String(toEncodeAsBytes);
return returnValue;
}
I am not getting the right results shown in the tutorial that I am following
Try this:
// This method will return the base 64 encoded string using the given input and key.
private string EncodeHMAC(string input, byte[] key)
{
HMACSHA1 hmac = new HMACSHA1(key);
byte[] stringBytes = Encoding.UTF8.GetBytes(input);
byte[] hashedValue = hmac.ComputeHash(stringBytes);
return Convert.ToBase64String(hashedValue);
}
I don't think you're converting the hashed value to a base 64 string correctly.
I use this function to implement authentication of REST web service calls. It's important that sender and receiver use the same encoding.
Unfortunately it took me a while to find a matching PHP HAMACimplementation to this C# version.
private bool ValidateHash(String uid, String hash, DataToSign data) {
StringBuilder strToSign = new StringBuilder();
strToSign.Append(data.HttpMethod + '\n');
strToSign.Append(data.Date.ToString("r") + '\n');
strToSign.Append(data.Uri);
Byte[] secretBytes = UTF8Encoding.UTF8.GetBytes(this._secretKey);
HMACSHA1 hmac = new HMACSHA1(secretBytes);
Byte[] dataBytes = UTF8Encoding.UTF8.GetBytes(strToSign.ToString());
Byte[] calcHash = hmac.ComputeHash(dataBytes);
String calcHashString = Convert.ToBase64String(calcHash);
if (calcHashString.Equals(hash)) {
if (log.IsDebugEnabled) log.Debug(uid + " - [ValidateHash] HMAC is valid.");
return true;
}
return false;
}
Hope that helps!
来源:https://stackoverflow.com/questions/14215726/c-sharp-vs-java-hmacsha1-and-then-base64