因此,当我导入记录时,我正在编写一个缓存地理编码数据的应用程序.当我使用未签名的请求时,我的工作正常,但是当我尝试使用我公司的clientid和签名时,我似乎无法弄清楚出了什么问题.我总是得到一个403 Forbidden.
这是我的URL构建器:
- private const string _googleUri = "http://maps.googleapis.com/maps/api/geocode/xml?address=";
- private const string _googleClientId = "XXXXXXXX";
- private const string _googleSignature = "XXXXXXXXXXXXXXXXXXXXXXXX";
- //RESOLVED
- private static String GetGeocodeUri(string address)
- {
- ASCIIEncoding encoding = new ASCIIEncoding();
- string url = String.Format("{0}{1}&client={2}&sensor=false",_googleUri,HttpUtility.UrlEncode(address),_googleClientId);
- // converting key to bytes will throw an exception,need to replace '-' and '_' characters first.
- string usablePrivateKey = _googleSignature.Replace("-","+").Replace("_","/");
- byte[] privateKeyBytes = Convert.FromBase64String(usablePrivateKey);
- Uri uri = new Uri(url);
- byte[] encodedPathAndQueryBytes = encoding.GetBytes( uri.LocalPath + uri.Query );
- // compute the hash
- HMACSHA1 algorithm = new HMACSHA1(privateKeyBytes);
- byte[] hash = algorithm.ComputeHash(encodedPathAndQueryBytes);
- // convert the bytes to string and make url-safe by replacing '+' and '/' characters
- string signature = Convert.ToBase64String(hash).Replace("+","-").Replace("/","_");
- // Add the signature to the existing URI.
- return uri.Scheme + "://" + uri.Host + uri.LocalPath + uri.Query + "&signature=" + signature;
- }
这是该计划:
- public static AddressClass GetResponseAddress(string address)
- {
- AddressClass GoogleAddress = new AddressClass();
- XmlDocument doc = new XmlDocument();
- String myUri = GetGeocodeUri(address);
- try
- {
- doc.Load(myUri);
- XmlNode root = doc.DocumentElement;
- if (root.SelectSingleNode("/GeocodeResponse/status").InnerText == "OK")
- {
- GoogleAddress.Latitude = Double.Parse(root.SelectSingleNode("/GeocodeResponse/result/geometry/location/lat").InnerText);
- GoogleAddress.Longitude = Double.Parse(root.SelectSingleNode("/GeocodeResponse/result/geometry/location/lat").InnerText);
- }
- }
- catch (Exception ex)
- {
- Console.WriteLine("Exception <" + ex.Message + ">");
- }
- return GoogleAddress;
- }
现在,我对它不起作用的最初反应是Google必须错过引用域,因为它们必须注册.所以我尝试使用HttpWebRequest并将引用设置为我的域,但仍然没有骰子.
- //Not needed,Just an alternate method
- public static AddressClass GetResponseAddress(string address)
- {
- AddressClass GoogleAddress = new AddressClass();
- WebClient client = new WebClient();
- XmlDocument doc = new XmlDocument();
- Uri myUri = new Uri(GetGeocodeUri(address));
- HttpWebRequest myRequest = (HttpWebRequest)WebRequest.Create(myUri);
- myRequest.Referer = "http://www.myDomain.com/";
- //I've even tried pretending to be Chrome
- //myRequest.UserAgent = "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.7 (KHTML,like Gecko) Chrome/16.0.912.75 Safari/535.7";
- try
- {
- doc.Load(myRequest.GetResponse().GetResponseStream());
- XmlNode root = doc.DocumentElement;
- if (root.SelectSingleNode("/GeocodeResponse/status").InnerText == "OK")
- {
- GoogleAddress.Latitude = Double.Parse(root.SelectSingleNode("/GeocodeResponse/result/geometry/location/lat").InnerText);
- GoogleAddress.Longitude = Double.Parse(root.SelectSingleNode("/GeocodeResponse/result/geometry/location/lat").InnerText);
- }
- }
- catch (Exception ex)
- {
- Console.WriteLine("Exception <" + ex.Message + ">");
- }
- return GoogleAddress;
- }
任何帮助将非常感激.
解决方法
有时需要URL编码(见下文),但还不够.您的问题是,事实上,您并未签署您的请求.
您的_googleSignature常量中的值不是签名,而是您的私有加密密钥,这很糟糕.您的私人加密密钥永远不应该成为任何请求的一部分.
相反,您需要使用它为每个唯一请求生成新签名.请参阅Maps API for Business Authentication文档,它还包括Signing a URL in Java的示例:)
使用Maps API for Business客户端ID和您的私人加密密钥对Google Maps API Web服务的请求进行签名时,Referer标头和源IP地址完全无关;)
URL编码仅在地址参数上是必需的,作为Building a Valid URL的一部分.您不应对您的签名进行URL编码,因为它已经是URL安全的,使用修改后的Base64 for URL.