dqu3974 2017-08-04 12:23
浏览 398
已采纳

php字符串作为字节数组,哈希然后base64编码

To generate an authentication header for an api connection, my code should follow these steps:

  1. Create a string of the form [unique]:[apikey].
  2. Convert string from step 1 to a byte array using UTF-8 encoding.
  3. Compute the SHA-256 hash for the byte array from step 2.
  4. Base64 encode the byte array computed in step 3; this string will be authentication key.

As far as I understand, strings in php are byte arrays, so my initial method looks like the following.

public function generateAuthKey()
{
    $unique = uniqid(); # unique string
    $string = $unique.':'.$this->apiKey; # step 1
    $string = utf8_encode($string); # step 2 ?
    $hash = hash('sha256', $string); # step 3
    $base64 = base64_encode($hash); # step 4

    return $base64;
}

My application which tries to connect using this auth key will receive a 403 error.

Does my code above complete the required steps (and perhaps there is an error in my api key) or is there some other way in php of following the steps to create the auth key?

  • 写回答

1条回答 默认 最新

  • doudaifu6083 2017-08-04 12:31
    关注

    Yes, strings in PHP are already byte arrays. And unless your $string contains any non-ASCII characters, it's also already valid UTF-8 (UTF-8 is a superset of ASCII); so you can skip the "encode as UTF-8" step.

    Likely the algorithm is expecting the output of the hash to be binary, which you're then supposed to convert to base 64. By default hash returns hex values, not binary. For that you need to set its 3rd parameter. In summary:

    $unique = uniqid();
$string = $unique . ':' . $this->apiKey;
$hash   = hash('sha256', $string, true);
$base64 = base64_encode($hash);

    Of course, what you're supposed to do with $unique I don't know. Likely you're supposed to send that value together with the request as well, otherwise there's no way the server can validate the hash.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

  • PHP字符串作为字节数组哈希hash然后base64编码
    2020-08-12 17:45
    夏已微凉、的博客 一、hash函数介绍1、说明2、参数3、返回值二、使用1、前言2、md5()比较3、sha1()比较4、如果要返回 原始二进制呢三、回到标题1、默认转为16进制,再转base642、先转为二进制,再转base643、md5()同理 一、hash函数...
  • C# Base64编码和解码 带源码.rar
    2020-06-18 02:32
    - `Convert.ToBase64String(byte[])`:将字节数组转换为Base64编码字符串。 - `Convert.FromBase64String(string)`:将Base64编码字符串转换回字节数组。 在项目"编码转换.sln"中,我们可以看到整个解决方案...
  • php字符串加密解密的类
    2022-05-03 10:50
    2. 解密方法:与加密过程相反,解密方法将base64编码字符串还原为原始字符串。这可能涉及到先使用base64_decode()函数,然后通过同样的加密算法进行解密。 3. 键管理:为了增加安全性,加密和解密可能需要密钥。类...
  • php中可能用来加密字符串的函数[base64_encode、urlencode、sha1]
    2020-10-28 04:55
    首先,base64_encode函数是用来将字符串或二进制数据编码base64格式的。Base64是一种用64个字符表示任意二进制数据的方法。每个base64位代表三个字节的二进制数据,因为64的3次幂正好是2的8次幂的4倍。Base64编码...
  • 风吟PHP Base64转换工具
    2021-05-10 15:17
    - 在解码后,程序会计算解码得到的原始数据的MD5值,然后与原始Base64编码前的MD5值进行对比。如果两者匹配,说明解码过程没有错误;如果不匹配,则表明数据在传输或存储过程中可能已损坏。 4. **PHP实现** - PHP...
  • php 实现一个字符串加密解密的函数实例代码
    2020-10-21 05:01
    - 如果是加密操作(`E`),先对字符串和密钥组合后进行MD5哈希,取其前8位字符与原字符串进行拼接,然后对整个字符串进行伪加密处理。 - 如果是解密操作(`D`),则先对字符串进行base64解码,再进行伪解密处理。 3. ...
  • 风吟PHP Base64转换工具.rar
    2019-07-16 04:50
    `base64_encode()`函数接收一个字符串作为参数,返回其Base64编码字符串;而`base64_decode()`则接收一个Base64编码字符串,如果成功,返回原始的二进制数据,否则返回`FALSE`。 UTF-8编码: UTF-8是一种广泛...
  • Base64编码、AES加密、RSA加密、MD5加密
    2025-08-23 14:44
    Mr_X_X的博客 Base64编码、md5加密、sha-256加密、sha-512加密、RSA非对称加密
  • python字符串转64位数字_Base64
    2020-12-22 13:48
    weixin_39918682的博客 Base64是网络上最常见的用于传输8Bit字节代码的编码方式之一,大家可以查看RFC2045~RFC2049,上面有MIME的详细规范。Base64编码可用于在HTTP环境下传递较长的标识信息。例如,在Java Persistence系统Hibernate中,...
  • 采用JS端来对字符串进行MD5,AES,Base64等加密解密
    2018-07-25 21:48
    最后,我们来看看Base64,这是一种将二进制数据编码为ASCII字符串编码方式,常用于在网络上传输二进制数据。在JavaScript中,原生的`btoa()`和`atob()`函数就可以完成Base64编码和解码: ```javascript var ...
  • 没有解决我的问题, 去提问