Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Binary Output from Google Script HMAC encription

Tags:

amazon-web-services

google-apps-script

hmac

amazon-cloudwatch

I am current working with Google Apps script and am attempting to write & sign an HTTP request to AWS CloudWatch.

On the Amazon API documentation here regarding how to create a signing key, they use pseudo to explain that the HMAC algorithm is to return binary format.

HMAC(key, data) represents an HMAC-SHA256 function 
that returns output in binary format.

Google apps script offers a method to do such a hash,

Utilities.computeHmacSignature(Utilities.MacAlgorithm.HMAC_SHA_256,
                                            data,
                                            key);

but the return type is always a byte array.

Byte[]

How do I convert the Byte[] to the binary data AWS wants? Or is there a vanilla javascript function I can use in Google Apps Script to compute the hash?

Thanks

like image 253
user2495753 Avatar asked Jun 18 '13 05:06

user2495753

2 Answers

I am quite sure it is a bug that Utilities.computeHmacSignature take key as an ASCII. But there was no way to parse byte[] to ASCII correctly in GAS

And the library writer is too stupid too just provide function which take key as byte[]

So I use this instead : http://caligatio.github.com/jsSHA/

Just copy SHA.js and SHA-256.js then it work fine

PS. it waste my time for whole 2 days so I'm very annoying

like image 78
Thaina Yu Avatar answered Nov 29 '22 21:11

Thaina Yu

The conversion from byte array to the binary data required should be simple:

kDate = Utilities.computeHmacSignature(Utilities.MacAlgorithm.HMAC_SHA_256,
             '20130618', 'AWS4' + kSecret);
kDate = Utilities.newBlob(kDate).getDataAsString();
kRegion = Utilities.computeHmacSignature(Utilities.MacAlgorithm.HMAC_SHA_256, 
             'eu-west-1', kDate);

BUT you have to look onto this open issue in the bugtracker - there could be some issues in conversion.

maybe you could try to make a String.fromCharCode() loop and avoid negative numers:

kDateB = Utilities.computeHmacSignature(Utilities.MacAlgorithm.HMAC_SHA_256,
             '20130618', 'AWS4' + kSecret);
kDate = '';
for (var i=0; i<kDateB.length; i++)
  kDate += String.fromCharCode(kDateB[i]<0?256+kDateB[i]:0+kDateB[i]);
kRegion = Utilities.computeHmacSignature(Utilities.MacAlgorithm.HMAC_SHA_256, 
             'eu-west-1', kDate);
like image 38
Taras Avatar answered Nov 29 '22 19:11

Taras
Sign in to Comment

Related questions

read only particular json files from s3 buckets from multiple folders
Application exceeds the maximum size allowed by AWS Lambda: after small change in the code
Terraform lambda function validation exception
node-fetch not working with AWS lambda function ("cannot find node-fetch")
AWS RDS MariaDB consumed 300GB on simple alter table for no reason
SimpleDB to ActiveResource. Rails
How to get more that 10 results for a query using YQL?
How to get ASIN and price from AMAZON
How to create ami instance programmatically?
django-storages using boto - cannot upload mp3, but can upload an image. Also, suffering HTTP 307 pain
Can Amazon Simple Notification Service "push" notifications to a desktop client?
How do I know when an Amazon EC2 operation is complete?
Are files saved on EBS volume? Are they not supposed to be saved? I'm confused
cloudfront signed urls ip address
Azure to AWS migration
Amazon S3 list object in reverse order
S3 POST upload minimal policy
How to schedule additional EC2 instances in an Auto Scaling group in CloudFormation?
S3 Proxy to EC2 Instance
How do you implement AWS Elasticache auto discovery for node.js

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!