Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Python HMAC hashed value encoding to base64

Tags:

python

django

base64

twitter

hmacsha1

I am trying to make a twitter auth with the help of django middleware, where I calculate the signature of a request like this (https://dev.twitter.com/oauth/overview/creating-signatures):

    key = b"MY_KEY&"
    raw_init = "POST" + "&" + quote("https://api.twitter.com/1.1/oauth/request_token", safe='')

    raw_params = <some_params>
    raw_params = quote(raw_params, safe='')

    #byte encoding for HMAC, otherwise it returns "expected bytes or bytearray, but got 'str'"
    raw_final = bytes(raw_init + "&" + raw_params, encoding='utf-8')

    hashed = hmac.new(key, raw_final, sha1)

    request.raw_final = hashed

    # here are my problems: I need a base64 encoded string, but get the error "'bytes' object has no attribute 'encode'"
    request.auth_header = hashed.digest().encode("base64").rstrip('\n')

As you can see, there is no way to base64 encode a 'bytes' object.

The proposed solution was here: Implementaion HMAC-SHA1 in python

like image 971
massive_dynamic Avatar asked Mar 12 '23 07:03

massive_dynamic

1 Answers

The trick is to use base64 module directly instead of str/byte encoding, which supports binary.

You can fit it like this (untested in your context, should work):

import base64
#byte encoding for HMAC, otherwise it returns "expected bytes or bytearray, but got 'str'"
raw_final = bytes(raw_init + "&" + raw_params, encoding='utf-8')

hashed = hmac.new(key, raw_final, sha1)

request.raw_final = hashed

# here directly use base64 module, and since it returns bytes, just decode it
request.auth_header = base64.b64encode(hashed.digest()).decode()

For test purposes, find below a standalone, working example (python 3 compatible, Python 2.x users have to remove the "ascii" parameter when creating the bytes string.):

from hashlib import sha1
import hmac
import base64

# key = CONSUMER_SECRET& #If you dont have a token yet
key = bytes("CONSUMER_SECRET&TOKEN_SECRET","ascii")


# The Base String as specified here:
raw = bytes("BASE_STRING","ascii") # as specified by oauth

hashed = hmac.new(key, raw, sha1)

print(base64.b64encode(hashed.digest()).decode())

result:

Rh3xUffks487KzXXTc3n7+Hna6o=

PS: the answer you linked to does not work anymore with Python 3. It's python 2 only.

like image 192
Jean-François Fabre Avatar answered Mar 20 '23 14:03

Jean-François Fabre
Sign in to Comment

Related questions

Python pandas calculate time until value in a column is greater than it is in current period
How do I make a primary key without auto-increment?
Convert comma to space in list
Error when using two flags OpenCv's calibrateCamera function
Python Tools for Visual Studio - tell the IDE what type a parameter will be
Use struct in python to deserialize a byte array coming from serial
Matplotlib: How to make a dotted line consisting of dots (circles)?
An easy way to show images in Django on deployment (DEBUG=false)
numpy.column_stack with numeric and string arrays
In Python, change the attributes of a class instance which is passed as input to __init__
Looking for the equivalent of dictcursor in flaskext.mysql
This works BUT WHY?
Is there an official way to create discrete-valued range widget in GTK?
PIL in Python complains that there are no 'size' attributes to a PixelAccess, what am I doing wrong?
Using Keras for text classification
Python 3.4 64-bit download
Python program fails on Windows but not on Linux
Replacing all numeric value to formatted string
ImportError: No module named '_version' when importing mechanize
Print all characters in a string

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!