All Products
Search

This Product

    Object Storage Service:Example of uploading signature headers in OSS using Java

    Document Center

    Object Storage Service:Example of uploading signature headers in OSS using Java

    Last Updated:Sep 06, 2024

    Overview

    The OSS SDK provides SDKs that integrate the signature process and the upload and download process. However, in practice, you may need to use API operations to upload and download objects with a signature received. This topic uses the PutObject API as an example to describe how to upload and download objects in the Java language.

    Note

    We recommend that you use the OSS SDK. This topic provides an example of how to use a signature to upload objects. You can modify the business code in actual use.

    Detail

    Java uses the PutObject API to implement sample code as follows:

    Note

    JDK Version is 1.8.

    import org.apache.commons.codec.binary.Base64;
import javax.crypto.Mac;
import javax.crypto.spec.SecretKeySpec;
import java.io. *;
import java.net.HttpURLConnection;
import java.net.URL;
import java.text.SimpleDateFormat;
import java.util. *;
public class OssSignHeader {
private static final String HMAC_SHA1_ALGORITHM = "HmacSHA1"; 
private final static String CHARSET_UTF8 = "utf8";
private final static String ALGORITHM = "HmacSHA1";
public static String hmacSha1(String data, String key) {
try {
Mac mac = Mac.getInstance(HMAC_SHA1_ALGORITHM);
SecretKeySpec keySpec = new SecretKeySpec(key.getBytes(), ALGORITHM);
mac.init(keySpec);
byte[] rawHmac;
rawHmac = mac.doFinal(data.getBytes(CHARSET_UTF8));
return new String(Base64.encodeBase64(rawHmac));
} catch (Exception e) {
throw new RuntimeException(e);
}
}
public static String buildSignData(String Date,String VERB,String CanonicalizedResource){
String signData = "PUT" + "\n"+ "\n"+ "\n"
+ Date + "\n"
 + CanonicalizedResource;
return signData;
}
public static String getGMTDate(){
Calendar cd = Calendar.getInstance();
SimpleDateFormat sdf = new SimpleDateFormat("EEE, dd MMM yyyy HH:mm:ss 'GMT'", Locale.US);
sdf.setTimeZone(TimeZone.getTimeZone("GMT"));
String str = sdf.format(cd.getTime());
return str;
}
public static void main(String[] args) throws Exception{
String date = getGMTDate();
String ossBucket= "your bucket name";
 String accessKeyId= "your AccessKey";
 String secretAccessKey= "your AccessSecret";
 String resourcePath = "/xx/panda/102283/111.txt";
 String resourcePath1 = "panda/102283/111.txt";
String VERB = "GET";
 String url = "http://"+ossBucket+".oss-cn-hangzhou.aliyuncs.com/";
 String Signature = (hmacSha1(buildSignData(date,VERB,resourcePath),secretAccessKey));
 String Authorization = "OSS " + accessKeyId + ":" + Signature;
System.out.println(Authorization);
Map<String,String> head = new HashMap<String,String>();
head.put("Date",date);
head.put("Authorization",Authorization);
 URL url1 = new URL(url + resourcePath1);
HttpURLConnection connection ;
StringBuffer sbuffer=null;
try {
// Add request content
connection= (HttpURLConnection) url1.openConnection();
// Set HTTP connection properties
connection.setDoOutput(true);// within the HTTP body, it needs to be set to true, which is false by default.
connection.setRequestMethod("PUT"); // submit HTTP-provided functions such as GET, POST, DELETE, and PUT as needed.
// connection. Setusecvisits (false);// specify the cache. Note: The request method must be set to post.
// connection.setInstanceFollowRedirects(true);
connection.setRequestProperty("Date", date); // Set the URL and domain of the requested server, for example, bucket*. **. ***. ***.
connection.setRequestProperty("Authorization", Authorization);// Set the request format in Json. You can also set the format in XML.
// connection.setRequestProperty("Content-Length", obj.toString().getBytes().length + ""); // set the Length of the requested object.



connection.setReadTimeout(10000);// Set the read timeout.  
connection.setConnectTimeout(10000);// Set the connection timeout.  
connection.connect();            
OutputStream out = connection.getOutputStream();// write data to the object output stream, which will be stored in the memory buffer.  
out.write(new String("test data").getBytes()); // out.write(new String("test data").getBytes()); // refresh the output stream of the object to write any bytes to the potential stream.  
out.flush();     
// Close the flow object. At this time, no more data can be written to the object output stream, and previously written data exists in the memory buffer.  
out.close();           
// Read the response.  
if (connection.getResponseCode()==200)      {
// Get an input stream from the server.
InputStreamReader inputStream =new InputStreamReader(connection.getInputStream());// call the getInputStream() function of the HttpURLConnection object to send the complete HTTP request message encapsulated in the memory buffer to the server.
BufferedReader reader = new BufferedReader(inputStream); 



String lines;                
sbuffer= new StringBuffer(""); 



while ((lines = reader.readLine()) ! = null) {                
lines = new String(lines.getBytes(), "utf-8");                    
sbuffer.append(lines);                }                
reader.close();         
}else{          
System.out.println(connection.getResponseCode()); 
}    
// Disconnect.  
connection.disconnect();
System.out.println("OK  "+url1);
} catch (IOException e) { 
e.printStackTrace();     
}   
}
}

    Documentation

    Include a V1 signature in the Authorization header.

    Scope

    • OSS