签名信息
auth.php
<?phpfunction gmt_iso8601($time) {$dtStr = date("c", $time);$mydatetime = new DateTime($dtStr);$expiration = $mydatetime->format(DateTime::ISO8601);$pos = strpos($expiration, '+');$expiration = substr($expiration, 0, $pos);return $expiration."Z";}//阿里云官方提供的秘钥$id= '6MKOqxGiGU4AUk44';$key= 'ufu7nS8kS59awNihtjSonMETLI0KLy';$host = 'http://post-test.oss-cn-';$now = time();$expire = 30; //设置该policy超时时间是10s. 即这个policy过了这个有效时间,将不能访问$end = $now + $expire;$expiration = gmt_iso8601($end);$dir = 'user-dir/';//最大文件大小.用户可以自己设置$condition = array(0=>'content-length-range', 1=>0, 2=>1048576000);$conditions[] = $condition;//表示用户上传的数据,必须是以$dir开始, 不然上传会失败,这一步不是必须项,只是为了安全起见,防止用户通过policy上传到别人的目录$start = array(0=>'starts-with', 1=>'$key', 2=>$dir);$conditions[] = $start;$arr = array('expiration'=>$expiration,'conditions'=>$conditions);$policy = json_encode($arr);$base64_policy = base64_encode($policy);$string_to_sign = $base64_policy;$signature = base64_encode(hash_hmac('sha1', $string_to_sign, $key, true));$response = array();$response['accessid'] = $id;$response['host'] = $host;$response['policy'] = $base64_policy;$response['signature'] = $signature;$response['expire'] = $end;//这个参数是设置用户上传指定的前缀$response['dir'] = $dir;$response['code']=1;echo json_encode(['data'=>$response,'status'=>1]);
web端
<!DOCTYPE html><html lang="en"><head><meta charset="UTF-8"><title></title><script type="text/javascript" src="/libs/jquery/2.1.4/jquery.min.js"></script></head><body><div><input type="hidden" > <img src="" style="width: 200px;height: 100px; display: none"><input type="file" name="upfile" accept="image/*" ></div><script type="text/javascript">var expire =0;sign_obj='';var serverUrl='auth.php';$(function () {$("div").on("change",'input[type="file"]',function(evt){$this=$(this);var files = evt.target.files;var file=files[0];if(file.size > 10*1024*1024 ){alert('too big');return false;}get_signature();if(sign_obj == '') {alert(sign_obj);alert('签名error,请重试');return false;}var g_object_name=sign_obj.dir+random_string()+get_suffix(file.name);var request = new FormData();request.append("OSSAccessKeyId",sign_obj.accessid);//Bucket 拥有者的Access Key Id。 request.append("policy",sign_obj.policy);//policy规定了请求的表单域的合法性 request.append("Signature",sign_obj.signature);//根据Access Key Secret和policy计算的签名信息,OSS验证该签名信息从而验证该Post请求的合法性 request.append("key",g_object_name);//文件名字,可设置路径 request.append("success_action_status",'200');// 让服务端返回200,不然,默认会返回204 request.append('x-oss-object-acl', 'public-read');request.append('file', file);$.ajax({url : sign_obj.host, //上传阿里地址data : request,processData: false,//默认true,设置为 false,不需要进行序列化处理cache: false,//设置为false将不会从浏览器缓存中加载请求信息async: false,//发送同步请求contentType: false,//避免服务器不能正常解析文件---------具体的可以查下这些参数的含义dataType: 'xml',//不涉及跨域 写json即可type : 'post',success : function(callbackHost, request) {//callbackHost:success,request中就是 回调的一些信息,包括状态码什么的var origin=sign_obj.host+'/'+g_object_name;var src=origin;$this.closest('div').find('img').attr('src', src).show();$this.closest('div').find('.imgclose').show();},error : function(returndata) {console.log("return data:"+returndata);alert('上传图片出错啦,请重试')}});});})function random_string(len) {len = len || 32;var chars = 'ABCDEFGHJKMNPQRSTWXYZabcdefhijkmnprstwxyz2345678';var maxPos = chars.length;var pwd = '';for (i = 0; i < len; i++) {pwd += chars.charAt(Math.floor(Math.random() * maxPos));}return pwd;}function get_suffix(filename) {var pos = filename.lastIndexOf('.')var suffix = ''if (pos != -1) {suffix = filename.substring(pos)}return suffix;}//获取签名信息function send_request(){var xmlhttp = null;if (window.XMLHttpRequest){xmlhttp=new XMLHttpRequest();}else if (window.ActiveXObject){xmlhttp=new ActiveXObject("Microsoft.XMLHTTP");}if (xmlhttp!=null){xmlhttp.open( "GET", serverUrl, false );xmlhttp.send( null );return xmlhttp.responseText}else{alert("Your browser does not support XMLHTTP.");}}function get_signature(){//可以判断当前expire是否超过了当前时间,如果超过了当前时间,就重新取一下.3s 做为缓冲 now = timestamp = Date.parse(new Date()) / 1000;if (expire < now + 3){var body = send_request();var obj =JSON.parse(body);if(obj.status ==1 && obj.data.code == 1){sign_obj= obj.data;expire= parseInt(sign_obj['expire']);return true;}return true;}return false;};</script></body></html>
如果觉得《oss web直传》对你有帮助,请点赞、收藏,并留下你的观点哦!
