Python中的hash_hmac sha512认证
我正在尝试为这个网站写一个用Python做身份验证的机器人:https://comkort.com/page/private_api
这里没有完整的PHP示例。我猜可能有人能把它放在这里。
这里只有一小段PHP代码:
$query_string = http_build_query($_POST, '', '&');
$ethalon_sign = hash_hmac("sha512", $query_string, $api_secret_key);
我该如何用Python写身份验证,使用hash_hmac和sha512呢?
我想提取我的开放订单,也就是POST https://api.comkort.com/v1/private/order/list。
我现在的尝试是:
import hashlib
import hmac
import requests
import time
privateKey = b'myprivatekey'
publicKey = 'my public key'
url = 'https://api.comkort.com/v1/private/order/list'
tosign = b'market_alias=doge_ltc'
signing = hmac.new( privateKey , tosign, hashlib.sha512 )
headers = {'sign': signing.digest(), "apikey": publicKey, "nonce": int( time.time() ) }
r = requests.get(url, headers=headers)
print r.text
我遇到了这个问题
{"code":401,"error":"Invalid sign","field":"sign"}
也许用hexdigest()而不是digest()?我不太确定,我在尝试这个b前缀和不同的hmac输出选项,每次都遇到一个错误:“无效的签名”。
相关链接:在Python中进行HMAC签名请求
1 个回答
10
如果有人感兴趣的话,我自己解决了这个问题。
#!/usr/bin/python
import hashlib
import hmac
import requests
import time
apikey = '';
apisecret = '';
def request_comkort( url, payload ):
tosign = "&".join( [i + '=' + payload[i] for i in payload] )
sign = hmac.new( apisecret, tosign , hashlib.sha512);
headers = {'sign': sign.hexdigest(), 'nonce': int( time.time() ), 'apikey': apikey }
r = requests.post(url, data=payload, headers=headers)
return r.text
# Get balance
print request_comkort( "https://api.comkort.com/v1/private/user/balance";, {} )
# Get Open Orders
print request_comkort( "https://api.comkort.com/v1/private/order/list";, {'market_alias': "DOGE_LTC" } )
# Make Ask
print request_comkort( "https://api.comkort.com/v1/private/order/sell";, { 'market_alias':"HTML_DOGE", "amount": "1000", "price": "123123" } )
# Cancel order
print request_comkort( "https://api.comkort.com/v1/private/order/cancel";, { 'order_id': 10943 } )