惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

酷 壳 – CoolShell
酷 壳 – CoolShell
H
Hacker News: Front Page
P
Palo Alto Networks Blog
T
ThreatConnect
Apple Machine Learning Research
Apple Machine Learning Research
博客园_首页
T
True Tiger Recordings
P
Privacy & Cybersecurity Law Blog
B
Blog
IT之家
IT之家
Last Week in AI
Last Week in AI
F
Full Disclosure
Hacker News: Ask HN
Hacker News: Ask HN
C
Comments on: Blog
Microsoft Azure Blog
Microsoft Azure Blog
C
Cybersecurity and Infrastructure Security Agency CISA
Microsoft Security Blog
Microsoft Security Blog
博客园 - 【当耐特】
N
News and Events Feed by Topic
NISL@THU
NISL@THU
腾讯CDC
雷峰网
雷峰网
Security Latest
Security Latest
李成银的技术随笔
M
Microsoft Research Blog - Microsoft Research
L
LangChain Blog
L
Lohrmann on Cybersecurity
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
C
Check Point Blog
Y
Y Combinator Blog
Recent Announcements
Recent Announcements
博客园 - Franky
N
News | PayPal Newsroom
V
V2EX
A
About on SuperTechFans
The Register - Security
The Register - Security
月光博客
月光博客
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Google Online Security Blog
Google Online Security Blog
MyScale Blog
MyScale Blog
Cisco Talos Blog
Cisco Talos Blog
Vercel News
Vercel News
WordPress大学
WordPress大学
C
Cyber Attacks, Cyber Crime and Cyber Security
The Hacker News
The Hacker News
IntelliJ IDEA : IntelliJ IDEA – the Leading IDE for Professional Development in Java and Kotlin | The JetBrains Blog
IntelliJ IDEA : IntelliJ IDEA – the Leading IDE for Professional Development in Java and Kotlin | The JetBrains Blog
爱范儿
爱范儿
A
Arctic Wolf
L
LINUX DO - 最新话题
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More

博客园 - myx

安装gitlab管理自己的代码 升级Tornado到4后weibo oauth登录不了 SQL Server 无日志文件附加数据库 用monit监控系统关键进程 Failed to read auto-increment value from storage engine错误的处理方法 今天测试了一下 sqlalchemy 性能 PIL The _imaging C module is not installed phpExcel大数据量情况下内存溢出解决 tcpdf慢及常用的一些方法及问题 Python获取WebService CodeIgniter出现Disallowed Key Characters的问题 CodeIgniter链接ms sql 如果数据库名称有点号连接出错 用python写windows服务 CodeIgniter链接ms sql 的过程windows 2008 关于NTLM认证的.NET,php,python登录 DotNetOpenAuth的Facebook登录,获取头像与基本资料 php里的html内容切取 js生成新加坡的NRIC号码 PowerDesigner 链接MySql 用ODBC链接不上的问题
Sina站内应用的登录
myx · 2012-07-24 · via 博客园 - myx

在APP首页:

if 没有登录 {

<script src="http://tjs.sjs.sinajs.cn/t35/apps/opent/js/frames/client.js" language="JavaScript"></script>
<script>
function authLoad() {
App.AuthDialog.show({
client_id: '2069027236', //必选,appkey
redirect_uri: 'http://apps.weibo.com/randytest', //必选,授权后的回调地址,注意是:apps.weibo.com这域名的
height: 1 //可选,默认距顶端120px
});
}
//authLoad();
</script>

}

然后会弹出一个登录的DIV,登录后会自动返回到app首页,然后在app page load的代码里写:

            string signedRequest = Request.Params["signed_request"]; 

            ViewBag.Message = ValidateSignedRequest(signedRequest);

 public string App_Secret = "xxxxxxxxxxxxxxxx";

        private string ValidateSignedRequest(string signedRequest)
        {
            string decodedPayload = "";
            string[] signedRequestArray = signedRequest.Split('.');
            string expectedSignature = signedRequestArray[0];
            string payload = signedRequestArray[signedRequestArray.Length - 1];
            byte[] Hmac = SignWithHmac(UTF8Encoding.UTF8.GetBytes(payload), UTF8Encoding.UTF8.GetBytes(App_Secret));
            string HmacBase64 = ToUrlBase64String(Hmac);
            bool result = (HmacBase64 == expectedSignature);
            if (result)
            {
                decodedPayload = System.Text.UTF8Encoding.UTF8.GetString(FromBase64ForUrlString(payload));
            }
            return decodedPayload;
        }
        private byte[] SignWithHmac(byte[] dataToSign, byte[] keyBody)
        {
            using (System.Security.Cryptography.HMACSHA256 hmacAlgorithm = new System.Security.Cryptography.HMACSHA256(keyBody))
            {
                hmacAlgorithm.ComputeHash(dataToSign);
                return hmacAlgorithm.Hash;
            }
        }
        private string ToUrlBase64String(byte[] Input)
        {
            return Convert.ToBase64String(Input).Replace("=", String.Empty).Replace('+', '-').Replace('/', '_');
        }
        private byte[] FromBase64ForUrlString(string base64ForUrlInput)
        {
            int padChars = (base64ForUrlInput.Length % 4) == 0 ? 0 : (4 - (base64ForUrlInput.Length % 4));
            StringBuilder result = new StringBuilder(base64ForUrlInput, base64ForUrlInput.Length + padChars);
            result.Append(String.Empty.PadRight(padChars, '=')).Replace('-', '+').Replace('_', '/');
            return Convert.FromBase64String(result.ToString());
        }

这样ValidateSignedRequest 返回的就有user的资料了。如下这样的:

{"user":{"country":"cn","locale":""},"algorithm":"HMAC-SHA256","issued_at":1343130106,"expires":1343216506,"oauth_token":"2.00DBErpBCV7BQC169c3e7800XXXXX","user_id":1682372793,"referer":null}

搞定,然后你懂的

此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。