问题
I am trying to make a conferenceCallout request in Sinch service but i am having troubles with the signature. I paste the code:
<?php
//JSon Object
$conferencia['method']="conferenceCallout";
$participante['cli']="46000000000";
$destination['type']="username";
$destination['endpoint']="roke1";
$participante['destination']=$destination;
$participante['domain']="mxp";
$participante['custom']="customData";
$participante['locale']="en-US";
$participante['greeting']="Welcome to my conference";
$participante['conferenceId']="conferencia_de_prueba";
$participante["enableDice"]=false;
$conferencia['conferenceCallout']=$participante;
$data=json_encode($conferencia);
$md5_body = base64_encode ( MD5 ( utf8_encode ( json_encode($conferencia) ) ) );
$applicationKey="XXXXXX-xXXX-XXXX-XXXX-XXXXXXXX";
$applicationSecret="XXXXXXXXXXXXXXXX==";
$timestamp = new DateTime('NOW');
$StringToSign ="POST
".$md5_body."
application/json
x-timestamp:".$timestamp->format(DateTime::ISO8601)."
/v1/callouts";
$utf8encode=utf8_encode($StringToSign);
$hash= hash_hmac("sha256",$applicationSecret,$utf8encode);
$base64=base64_encode($hash);
$Signature =$base64;
$Autorization = "Application"." ".$applicationKey.":".$Signature;
$ch = curl_init('https://callingapi.sinch.com/v1/callouts');
curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "POST");
curl_setopt($ch, CURLOPT_POSTFIELDS,$data);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_HTTPHEADER, array(
'Content-Type: application/json',
'Authorization:' . $Autorization,
'X-Timestamp: ' . $timestamp->format(DateTime::ISO8601),
'Content-Length: ' . strlen($data))
);
$result = curl_exec($ch);
echo $result;
?>
But i am getting error code 40102 that is 40102 - Invalid Signature.
Can anyone help me? What i am doing wrong?
Best Regards.
回答1:
I post the code that work to me.
$phone ="+460000000" //Put the destination number here
$key = "XXXXXX";
$secret = "XXXXXX";
$message = $first_name . ', thanks you for signing in. We will text you when we\'re ready for you';
$phone = $phone_number;
$body = json_encode(array('From' => $rented_number, 'Message'=>$message, ));
$timestamp = date("c");
$path = "/v1/sms".$phone;
$content_type = "application/json";
$canonicalized_headers = "x-timestamp:" . $timestamp;
$content_md5 = base64_encode( md5( utf8_encode($body), true ));
$string_to_sign =
"POST\n".
$content_md5."\n".
$content_type."\n".
$canonicalized_headers."\n".
$path;
$signature = base64_encode(hash_hmac("sha256", utf8_encode($string_to_sign), base64_decode($secret), true));
$authorization = "Application " . $key . ":" . $signature;
$service_url = 'https://messagingapi.sinch.com'.$path;
$curl = curl_init($service_url);
curl_setopt($curl, CURLOPT_HTTPHEADER, array(
'content-type: '.$content_type,
'x-timestamp:' . $timestamp,
'authorization:' . $authorization
));
curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
curl_setopt($curl, CURLOPT_POST, true);
curl_setopt($curl, CURLOPT_POSTFIELDS, $body);
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
$curl_response = curl_exec($curl);
// @todo: checking response / working with results
curl_close($curl);
Thank drew010 to your help, was amazing!!
回答2:
From their API documentation, I was able to create this code which generates a signature that matches what they have. You should be able to modify it to get it working with your code.
<?php
$applicationKey = '5F5C418A0F914BBC8234A9BF5EDDAD97';
$applicationSecret = 'JViE5vDor0Sw3WllZka15Q==';
$ts = '2014-06-04T13:41:58Z';
$resource = '/v1/sms/+46700000000';
$timestamp = new DateTime($ts);
$body = [
'message' => 'Hello world',
];
$message = json_encode($body);
$md5 = base64_encode(md5($message, true));
$timestamp = $ts;
$stringToSign = "POST\n" .
$md5 . "\n" .
"application/json\n" .
'x-timestamp:' . $timestamp . "\n" .
$resource;
$signature = base64_encode(
hash_hmac('sha256',
$stringToSign,
base64_decode($applicationSecret),
true
)
);
echo $md5 . "\n" . $signature . "\n";
// jANzQ+rgAHyf1MWQFSwvYw==
// qDXMwzfaxCRS849c/2R0hg0nphgdHciTo7OdM6MsdnM=
来源:https://stackoverflow.com/questions/33789768/trouble-with-authorization-request