如何簽署請求令牌？

Question

我目前正在嘗試編寫一個腳本來發送請求令牌，我有頭文件和聲明集，但我不明白簽名！ OAuth要求使用SHA256withRSA（也稱爲帶SHA-256散列函數的RSASSA-PKCS1-V1_5-SIGN）對我的私鑰進行加密，但我能找到的距離最近的是RSAES-PKCS1-v1_5（具有RSA和SHA- 256哈希）。我跟着例子，和調整它，這樣我就可以得到它的設置，但是我的繼承人dillema： 簽名=「」 H = SHA.new（簽名）

key = RSA.importKey(open('C:\Users\Documents\Library\KEY\My Project 905320c6324f.json').read()) 
cipher = PKCS1_v1_5.new(key) 
ciphertext = cipher.encrypt(message+h.digest()) 
print(ciphertext) 

我有點丟失了，我得到的JSON文件具有公鑰和私鑰，我是否將私鑰複製並粘貼到簽名變量中（它給了我一個無效的語法）？或者我再次通過目錄？我迷失了方向，頭頂哈哈。我目前正在運行Python 3.4，用pyCrypto簽名。

Answer 1

根據你下面所說的關於想用gmail編寫命令系統，我寫了一個簡單的腳本來使用IMAP來完成這個任務。我認爲這可能比嘗試爲單個用戶使用Google API更簡單，除非您只是想爲此練習做這些工作。

import imaplib, logging 
from time import sleep 

USERNAME = 'YOUR_USERNAME_HERE' # For gmail, this is your full email address. 
PASSWORD = 'YOUR_PASSWORD_HERE' 
CHECK_DELAY = 60 # In seconds 

LOGGING_FORMAT = '%(asctime)s %(message)s' 
logging.basicConfig(filename='imapTest.log', format=LOGGING_FORMAT, level=logging.INFO) 

logging.info("Connecting to IMAP server...") 
imap = imaplib.IMAP4_SSL('imap.gmail.com') 
imap.login(USERNAME, PASSWORD) 
logging.info("Connected to IMAP server.") 

def get_command_messages(): 
    logging.info("Checking for new commands.") 
    imap.check() 
    # Search the inbox (server-side) for messages containing the subject 'COMMAND' and which are from you. 
    # Substitute USERNAME below for the sending email address if it differs. 
    typ, data = imap.search(None, '(FROM "%s" SUBJECT "COMMAND")' %(USERNAME)) 
    return data[0] 

def delete_messages(message_nums): 
    logging.info("Deleting old commands.") 
    for message in message_nums.split(): 
     imap.store(message, '+FLAGS', '\\DELETED') 
    imap.expunge() 

# Select the inbox 
imap.select() 

# Delete any messages left over that match commands, so we are starting 'clean'. 
# This probably isn't the nicest way to do this, but saves checking the DATE header. 
message_nums = get_command_messages() 
delete_messages(message_nums) 

try: 
    while True: 
     sleep(CHECK_DELAY) 
     # Get the message body and sent time. Use BODY.PEEK instead of BODY if you don't want to mark the message as read, but we're deleting it anyway below. 
     message_nums = get_command_messages() 
     if message_nums: 
      # search returns space-separated message IDs, but we need them comma-separated for fetch. 
      typ, messages = imap.fetch(message_nums.replace(' ', ','), '(BODY[TEXT])') 
      logging.info("Found %d commands" %(len(messages[0]))) 
      for message in messages[0]: 
       # You now have the message body in the message variable. 
       # From here, you can check against it to perform commands, e.g: 
       if 'shutdown' in message: 
        print("I got a shutdown command!") 
        # Do stuff 
      delete_messages(message_nums) 
finally: 
    try: 
     imap.close() 
    except: 
     pass 
    imap.logout() 

如果你在使用Gmail的API集，但是，谷歌強烈建議您使用他們現有的Python庫，而不是試圖做的完全認證等你自己，你似乎是。因此，它應該 - 或多或少 - 是用相關的Gmail API取代上述的imap電話的一種情況。