#!/usr/bin/env python # -*- encoding: utf-8 -*- import uuid import datetime import hmac import base64 from urllib.parse import quote import hashlib import requests import ssl import warnings # 使用HTTPS协议访问OpenAPI时，默认会开启校验SSL/TLS证书有效性，若您代码环境没有证书环境，则会报错证书校验失败。 # 为保障生产环境通信安全，建议您保持开启，若在测试环境必须忽略证书校验，可以通过运行时参数ignore_ssl设置 warnings.filterwarnings("ignore") ssl._create_default_https_context = ssl._create_unverified_context() def params_info(access_key, api_version): public_param = { "Format": "JSON", "SignatureMethod": "HMAC-SHA1", "SignatureVersion": "1.0", "Version": api_version, "AccessKeyId": access_key } return public_param def sign(public_params, http_method, accesskey_secret): public_param = public_params format_time = '%Y-%m-%dT%H:%M:%SZ' utctime = datetime.datetime.utcnow().strftime(format_time) signature_nonce = str(uuid.uuid1()) public_param['SignatureNonce'] = signature_nonce public_param['Timestamp'] = utctime sort_all_params = list() for key, value in public_param.items(): all_params = key + '=' + str(value) sort_all_params.append(all_params) sort_all_params.sort() for i in range(len(sort_all_params)): if 'NextToken' in sort_all_params[i]: continue sort_all_params[i] = quote(sort_all_params[i], '=') # tmp = sort_all_params[i] if sort_all_params[i].find('+'): sort_all_params[i].replace('+', '%20') elif sort_all_params[i].find('*'): sort_all_params[i].replace('*', '%2A') elif sort_all_params[i].find('%7E'): sort_all_params[i].replace('%7E', '~') # print(sort_all_params) str_to_sign = '' for i in range(len(sort_all_params)): str_to_sign = str_to_sign + sort_all_params[i] + '&' str_to_sign = http_method + '&%2F&' + quote(str_to_sign[:-1]) # print(str_to_sign) key = accesskey_secret + '&' signature = hmac.new(key.encode('utf-8'), str_to_sign.encode('utf-8'), digestmod=hashlib.sha1) signature = base64.b64encode(signature.digest()).decode() # print(signature) # 解决签名中包含有'+'的特殊情况 signature = list(signature) for i in range(len(signature)): if signature[i] == '+': signature[i] = '%2B' new_signature = ''.join(signature) public_param['Signature'] = new_signature return public_param def request_url(public_param, domain): draft_url = '' for k, v in public_param.items(): draft_url += f'&{k}={v}' draft_url = draft_url[1:] url = domain + draft_url return url def post_request(latest_url): response = requests.post(latest_url, verify=False) response_json = response.json() return response_json def get_request(latest_url): response = requests.get(latest_url, verify=False) response_json = response.json() return response_json if __name__ == '__main__': AK = 'this is ak' SK = 'this is sk' config_api_version = '2019-01-08' config_api_domain = 'https://config.cn-shanghai.aliyuncs.com/?' params = params_info(AK, config_api_version) params.update({ 'Action': 'ListConfigRules' }) # sign sig_params = sign(params, 'GET', SK) # get url url = request_url(sig_params, config_api_domain) # call res = get_request(url) print(res)