在PHP中向RESTlet发送GET请求时NetSuite“INVALID_LOGIN错误”

A few months ago I implemented a RESTlet solution that receives a POST request from a PHP script. I am now extending the solution to send a GET request to a RESTlet with a different ID. The issue is that the authentication is only successful when the request is sent to a URL without the query string. We need to pass the query string to the RESTlet in order for it to execute.

Appending the query string to the URL throws a 403 INVALID_LOGIN error, and calling the RESTlet without it throws an exception for a missing paramter (as expected).

private function setAuthentication() {
      $oauthNonce = md5(mt_rand());
      $oauthTimestamp = time();
      $baseString = $this->requestType."&".urlencode($this->url)."&".urlencode(
          "deploy=".$this->deployID
          ."&oauth_consumer_key=".$this->consumerKey
          ."&oauth_nonce=".$oauthNonce
          ."&oauth_signature_method=".$this->oauthSigMethod
          ."&oauth_timestamp=".$oauthTimestamp
          ."&oauth_token=".$this->tokenID
          ."&oauth_version=".$this->oauthVersion
          ."&realm=".$this->account
          ."&script=".$this->scriptID
        );
      $sigString = urlencode($this->consumerSecret).'&'.urlencode($this->tokenSecret);
      $signature = base64_encode(hash_hmac('sha1', $baseString, $sigString, true));
      $authHeader = "OAuth "
        . 'oauth_signature="' . rawurlencode($signature) . '", '
        . 'oauth_version="' . rawurlencode($this->oauthVersion) . '", '
        . 'oauth_nonce="' . rawurlencode($oauthNonce) . '", '
        . 'oauth_signature_method="' . rawurlencode($this->oauthSigMethod) . '", '
        . 'oauth_consumer_key="' . rawurlencode($this->consumerKey) . '", '
        . 'oauth_token="' . rawurlencode($this->tokenID) . '", '  
        . 'oauth_timestamp="' . rawurlencode($oauthTimestamp) . '", '
        . 'realm="' . rawurlencode($this->account) .'"';
        return $authHeader;
    }

public function callGetRestlet() {
      $this->requestType = 'GET';
        $authorizationHeader = $this->setAuthentication();
        $urlQueryAppend = http_build_query(array('id' => $this->queryString));
      $ch = curl_init();
      curl_setopt($ch, CURLOPT_CUSTOMREQUEST, $this->requestType);
      curl_setopt($ch, CURLOPT_URL, $this->url. '?&script='. $this->scriptID. '&deploy='. $this->deployID.'&realm=' . $this->account);
      curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
      curl_setopt($ch, CURLOPT_TIMEOUT, 3);
      curl_setopt($ch, CURLOPT_HTTPHEADER, [
            'Authorization: '.$authorizationHeader,
            'Content-Type: application/json',
      ]);
      $response = array();
      $response['request'] = json_decode($this->queryString);
      $response['response']['body'] = json_decode(curl_exec($ch));
      $response['response']['code']  = curl_getinfo($ch, CURLINFO_HTTP_CODE);
      curl_close($ch);
      return $response;
    }

I know the credentials are okay as the RESTlet's event log shows the exception when the parameter isn't provided. The above throws the exception.

When the CURLOPT_URL is modified to include the querystring it throws the 403:

curl_setopt($ch, CURLOPT_URL, $this->url. '?&script='. $this->scriptID. '&deploy='. $this->deployID.'&realm=' . $this->account.'&'.$urlQueryAppend);

This code was slightly modified from an answer to a different question that asked about a POST request.

Is the error being thrown as a result of setting the request headers?

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

dronthpi05943 2019-04-08 20:31

关注

Adding the id parameter to the base string after the deploy ID resolved the issue. I was adding it to the end, but in this case it looks like the order of the parameters matters.

private function setAuthentication() {
   $oauthNonce = md5(mt_rand());
   $oauthTimestamp = time();
   $baseString = $this->requestType."&".urlencode($this->url)."&".urlencode(
        "deploy=".$this->deployID
        ."&id=".$this->queryString
        ."&oauth_consumer_key=".$this->consumerKey
        ."&oauth_nonce=".$oauthNonce
        ."&oauth_signature_method=".$this->oauthSigMethod
        ."&oauth_timestamp=".$oauthTimestamp
        ."&oauth_token=".$this->tokenID
        ."&oauth_version=".$this->oauthVersion
        ."&script=".$this->scriptID
      );
   $sigString = urlencode($this->consumerSecret).'&'.urlencode($this->tokenSecret);
   $signature = base64_encode(hash_hmac('sha1', $baseString, $sigString, true));
   $authHeader = "OAuth "
      . 'oauth_signature="' . rawurlencode($signature) . '", '
      . 'oauth_version="' . rawurlencode($this->oauthVersion) . '", '
      . 'oauth_nonce="' . rawurlencode($oauthNonce) . '", '
      . 'oauth_signature_method="' . rawurlencode($this->oauthSigMethod) . '", '
      . 'oauth_consumer_key="' . rawurlencode($this->consumerKey) . '", '
      . 'oauth_token="' . rawurlencode($this->tokenID) . '", '  
      . 'oauth_timestamp="' . rawurlencode($oauthTimestamp) . '", '
      . 'realm="' . rawurlencode($this->account) .'"';
     return $authHeader;
}

public function callGetRestlet() {
      $this->requestType = 'GET';
      $parameters = http_build_query(
        array(
          'script' => $this->scriptID,
          'deploy' => $this->deployID,
          'id' => $this->queryString,
        )
      );
      $authorizationHeader = $this->setAuthentication();
      $ch = curl_init();
      curl_setopt($ch, CURLOPT_CUSTOMREQUEST, $this->requestType);
      curl_setopt($ch, CURLOPT_URL, $this->url. '?'.$parameters);
      curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
      curl_setopt($ch, CURLOPT_TIMEOUT, 6);
      curl_setopt($ch, CURLOPT_HTTPHEADER, [
            'Authorization: '.$authorizationHeader,
            'Content-Type: application/json',
      ]);
      $response = array();
      $response['request'] = $this->url. '?'.$parameters;
      $response['response']['body'] = json_decode(curl_exec($ch));
      $response['response']['code']  = curl_getinfo($ch, CURLINFO_HTTP_CODE);
      curl_close($ch);
      return $response;
    }

本回答被题主选为最佳回答 , 对您是否有帮助呢?

报告相同问题？

关注问题

在PHP中向RESTlet发送GET请求时NetSuite“INVALID_LOGIN错误” php
2019-04-04 21:13

回答 1 已采纳 Adding the id parameter to the base string after the deploy ID resolved the issue. I was adding it
通过HTTP POST将数据从Angular Application发送到API angular php typescript
2018-02-22 14:53

回答 2 已采纳 did you try this? $json = file_get_contents('php://input'); $obj = json_decode($json, true); $na
Java与PHP实现API [关闭] java php
2012-10-20 04:45

回答 1 已采纳 You should consider the php-java-bridge. and
restlet-jee-2.0.6.zip_Restlet 2..0_Restlet framework2.0_org.rest
2022-09-20 20:00

restlet框架所需的所有jar包，可以用来进行restlet开发。
前后端分离的项目，最后在发布的时候怎么整合到一起？想看最终的效果，写的是后端代码，但是前端的代码已有 ajax html5 java json react.js
2019-12-08 23:05

回答 1 已采纳前端代码build，放到后端项目static文件夹下，直接发布就可以了 https://blog.csdn.net/chen15369337607/article/details/101680861
web.xml 转换成 springboot配置问题一直没有成功 java spring
2019-08-29 11:52

回答 4 已采纳 ``` @ServletComponentScan public class MyspringbootApplication extends SpringBootServletInitiali
java.lang.ClassCastException
2017-06-28 08:17

回答 5 已采纳 http://blog.csdn.net/javaeeteacher/article/details/4298218 ClassCastException，从字面上看，是类型转换错误，通常是进行强制
netsuite-saved-search:节点模块包装进行 restlet 调用以在 netsuite 中执行保存的搜索
2021-06-24 12:10

节点模块包装进行 restlet 调用以在 netsuite 中执行保存的搜索。安装 npm install netsuite-saved-search 配置在 netsuite 中设置一个restlet，它可以一般调用保存的搜索。 function executeSavedSearch ( ...
关于restful WebService的一些疑问
2010-09-15 11:30

回答 1 已采纳 url是你自己拼装的url URL U = new URL(urlName.toString()); URLConnection conn = U.op
NetSuite OAuth1.0中InvalidSignature问题
2023-06-26 17:06

NetSuite知识会的博客 401 NetSuite OAuth1.0中InvalidSignature错误的原因很隐蔽。原来是在OAuth1.0的规范中，host必须小写。
nsrestlet:该模块使使用OAuth和NLAuth连接到Netsuite RESTlet更加容易
2021-05-12 02:37

用于调试NLAuth和OAuth应用程序的NetSuite错误有些模糊他们关于SuiteAnswers的示例似乎并不总是有效用法 var nsrestlet = require ( 'nsrestlet' ) ; //For OAuth (we can do NLAuth too, see later in ...
Java TBA访问NetSuite Restlet时的403错误
2024-01-05 11:03

NetSuite知识会的博客为啥Java访问NetSuite Restlet时，会一直报403 INVALID_LOGIN_ATTEMPT错误。
netsuite-rest-client:基于 RESTlet 的 Netsuite 客户端
2021-05-29 23:59

这旨在成为 Netsuite 的基于 RESTlet 的客户端。与普通的基于 SOAP 的连接方案相比，它应该提供显着的速度优势（并且运行成本应该更低，因为它允许在普通许可证上同时进行 50 个连接）。特约NetSuite的休息客户端...
52-restlet.rar_restlet
2022-09-24 02:59

restlet program and samples
atom-netsuite-plugin:一个简单的Atom插件，可使用Restlet脚本将脚本上传到NetSuite
2021-05-14 19:37

原子网络套件插件一个简单的Atom插件，可使用Restlet脚本将脚本上传到NetSuite。
restlet和ajax,使用Web测试插件Restlet Client发送Get和Post请求的方法教程
2021-08-05 14:34

三个老爸实验室的博客 Restlet Client是一款开发人员经常使用的web测试工具，像我们在开发web应用时，在对Spring中的Controller进行测试时，需要发送各种get以及post请求进行测试，当然可以自己在浏览器里输入url或者对于测试而言使用...
php销售清单录入,Netsuite SuiteTalk – 通过PHP请求客户发票清单
2021-05-04 04:50

申礼国的博客就像你一样,我开始尝试使用Web Services API(也称为SuiteTalk)...与Faz一样,我发现使用RESTlet和Saved Searches的组合比处理Web服务框架更容易,更快捷.基本上将您的问题分解为以下部分：>保存搜索,返回您想要的结...
google插件Restlet_client.rar
2020-04-15 22:07

程序员开发过程中，总是需要调试，那么调试工具就必不可少了，可是这些软件占用的内存及CPU太大，使用起来特别烦恼。这里小编介绍一款谷歌浏览器自带的调试插件，特别好用，那就是restlet-client，安装及使用都非常...
Java Restlet获取请求头实例
2017-08-20 00:29

Restlet 实现ServerResource类列子有：返回简单JSON类型获取请求头，返回请求头接收简单Json类型数据将复杂对象使用Json格式返回
restlet模拟请求
2018-09-26 09:37

restlet模拟请求插件，界面rest风格，很清新，很好看，大气
没有解决我的问题, 去提问

悬赏问题

¥15 关于#matlab#的问题：在模糊控制器中选出线路信息，在simulink中根据线路信息生成速度时间目标曲线（初速度为20m/s，15秒后减为0的速度时间图像）我想问线路信息是什么
¥15 banner广告展示设置多少时间不怎么会消耗用户价值
¥16 mybatis的代理对象无法通过@Autowired装填
¥15 可见光定位matlab仿真
¥15 arduino 四自由度机械臂
¥15 wordpress 产品图片 GIF 没法显示
¥15 求三国群英传pl国战时间的修改方法
¥15 matlab代码代写，需写出详细代码，代价私
¥15 ROS系统搭建请教（跨境电商用途）
¥15 AIC3204的示例代码有吗，想用AIC3204测量血氧，找不到相关的代码。

码龄粉丝数原力等级 --

在PHP中向RESTlet发送GET请求时NetSuite“INVALID_LOGIN错误”

1条回答默认最新

码龄粉丝数原力等级 --

悬赏问题

在PHP中向RESTlet发送GET请求时NetSuite“INVALID_LOGIN错误”

1条回答 默认 最新

悬赏问题

1条回答默认最新