如何使用ONVIF验证用户? [英] How to Authenticate user using ONVIF?
本文介绍了如何使用ONVIF验证用户?的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
您好,
我在C中编写一个API,用于使用ONVIF对用户进行身份验证。我写了一些代码来制作身份验证标头。但当我发送这些标题时,他的服务器响应
"安全令牌无法通过身份验证或授权"。
< pre class ="prettyprint"> unsigned int nonce_int = 0,i = 0;
time_t utcTime = 0;
struct tm * timeInfo = NULL;
char sha1_input [100] = {0},sha1_input1 [100] = {0};
SHA1Context sha = {0};
nonce_int = GetRandomNumber();
encode_base64(sizeof(nonce_int),(char *)& nonce_int,nonceLen,noncestr);
utcTime = time(NULL);
timeInfo = localtime(& utcTime);
strftime(timestr,timeLen,"%Y-%m-%dT%H:%M:%SZ" timeInfo);
printf(" \ nTime in String Format =%s",timestr);
sprintf(sha1_input,"%d +%d +%s",nonce_int,utcTime,password);
strcpy(sha1_input1,sha1_input);
SHA1Reset(& sha);
SHA1Input(& sha,(const unsigned char *)sha1_input,strlen(sha1_input));
if(!SHA1Result(& sha))
{
printf(" \ nERROR--无法计算消息摘要);
}
else
{
memset(sha1_input,0x00,sizeof(sha1_input));
/ * sprintf(sha1_input,"%X%X%X%X%X",sha.Message_Digest [0],sha.Message_Digest [1],
sha.Message_Digest [2],sha .Message_Digest [3],sha.Message_Digest [4]); * /
sprintf(sha1_input,"%u%u%u%u%u",sha.Message_Digest [0],sha .Message_Digest [1],
sha.Message_Digest [2],sha.Message_Digest [3],sha.Message_Digest [4]);
printf(" \ nSHA1 Digest =%s",sha1_input);
encode_base64(strlen(sha1_input),sha1_input,digestLen,digeststr);
printf(" \ nSHA1 Digest Base64 Encoded =%s",digeststr);
}
之后我发送了这样的请求。
snprintf(postData,sizeof(postData),
"<?xml version = \" 1.0 \" encoding = \" utf-8 \"?> ;"
"< SOAP-ENV:Envelope xmlns:SOAP-ENV = \" http://www.w3.org/2003/05/soap-envelope\""
"xmlns:wsse = \"http://docs.oasis-open.org/wss/2004/01/oasis-200401"
" -wss-wssecurity-secext-1.0。 xsd \""
" xmlns:wsu = \" http://docs.oasis-open.org/wss/2004/01/oasis-"
" 200401 -wss-wssecurity-utility-1.0.xsd \""
" xmlns:tds = \" http://www.onvif.org/ver20/ptz/wsdl\"> ;"
"< SOAP-ENV:Header>< wsse:Security>< wsse:UsernameToken>"
"< wsse:Username>%s< / wsse:Username> ;"
"; < wsse:密码类型= \" http://docs.oasis-open.org/wss/2004/01/oasis-"
" 200401-wss-username-token-profile-1.0#PasswordDigest\">"
"%s< / wsse:密码>< wsse:Nonce>%s< / wsse:Nonce>"
"< wsu:Created>%s< / wsu:Created>< / wsse:UsernameToken>"
"< / wsse:Security>< / SOAP-ENV:Header>< SOAP-ENV:Body>"
"< tds:GetNodes>"
"< / SOAP-ENV:Body>< / SOAP-ENV:Envelope>",
username,base64EncDigest,nonce_char,time_char);
回复:
<?xml version =" 1.0"编码= QUOT; UTF-8英寸;?>
< SOAP-ENV:Envelope xmlns:SOAP-ENV =" http://www.w3.org/2003/05/soap-envelope"
xmlns:SOAP-ENC =" http://www.w3.org/2003/05/soap-encoding"
xmlns:xsi =" http://www.w3.org/2001/XMLSchema-instance"
xmlns:xsd =" http://www.w3.org/2001/XMLSchema"
xmlns:wsa5 =" http://www.w3.org/2005/08/addressing"
xmlns:c14n =" http://www.w3.org/2001/10/xml-exc-c14n#"
xmlns:wsu =" http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
xmlns:ds =" http://www.w3.org/2000/09/xmldsig#"
xmlns:wsse =" http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
xmlns:ptzimg2 =" http://www.onvif.org/ver10/schema"
xmlns:ptzimg3 =" http://www.w3.org/2005/05/xmlmime"
xmlns:ptzimg4 =" http://docs.oasis-open.org/wsn/b-2"
xmlns:ptzimg5 =" http://docs.oasis-open.org/wsrf/bf-2"
xmlns:ptzimg6 =" http://docs.oasis-open.org/wsn/t-1"
xmlns:ptzimg1 =" http://www.onvif.org/ver20/ptz/wsdl"
xmlns:ptzimg7 =" http://www.onvif.org/ver20/imaging/wsdl"
xmlns:ter =" http://www.onvif.org/ver10/error">
< SOAP-ENV:Header>< / SOAP-ENV:Header>
< SOAP-ENV:Body>
< SOAP-ENV:故障>
< SOAP-ENV:代码>
< SOAP-ENV:Value>
SOAP-ENV:Sender
< / SOAP-ENV:Value>
< SOAP-ENV:子代码>
< SOAP-ENV:Value>
wsse:FailedAuthentication
< / SOAP-ENV:Value>
< / SOAP-ENV:子代码>
< / SOAP-ENV:代码>
< SOAP-ENV:原因>
< SOAP-ENV:Text xml:lang =" en">
安全令牌无法通过身份验证或授权
< / SOAP-ENV:Text>
< / SOAP-ENV:原因>
< SOAP-ENV:节点>
http://www.w3.org/2003/05/soap-envelope/node/ultimateReceiver
< / SOAP-ENV:Node>
< SOAP-ENV:角色>
http://www.w3.org/2003/05/soap-envelope/role/ultimateReceiver
< / SOAP-ENV:角色>
< SOAP-ENV:详细信息>< / SOAP-ENV:详细信息>
< / SOAP-ENV:错误>
< / SOAP-ENV:正文>
< / SOAP-ENV:Envelope>
我在做什么错误,
特别是在创建摘要时? 谢谢
解决方案
Hello,
我认为您的问题应该在
OnVIF论坛或第三方库中提出论坛。 我相信他们会比我们更了解这个问题的更多信息,我会将这个问题转移到偏离主题的地方,请在$ b中打开一个新主题$ b那个论坛。
感谢您的理解,
最好的问候,
杰西
Hello,
I am writing an API in C for authenticating user using ONVIF. I write some code to make authentication header. But when I sent these headers he server respond that "The security token could not be authenticated or authorized".
unsigned int nonce_int = 0, i = 0;
time_t utcTime = 0;
struct tm *timeInfo = NULL;
char sha1_input[100] = { 0 }, sha1_input1[100] = { 0 };
SHA1Context sha = { 0 };
nonce_int = GetRandomNumber();
encode_base64(sizeof(nonce_int), (char*)&nonce_int, nonceLen, noncestr);
utcTime = time(NULL);
timeInfo = localtime(&utcTime);
strftime(timestr, timeLen, "%Y-%m-%dT%H:%M:%SZ", timeInfo);
printf("\nTime in String Format = %s", timestr);
sprintf(sha1_input, "%d+%d+%s", nonce_int, utcTime, password);
strcpy(sha1_input1, sha1_input);
SHA1Reset(&sha);
SHA1Input(&sha, (const unsigned char*)sha1_input, strlen(sha1_input));
if(!SHA1Result(&sha))
{
printf("\nERROR-- could not compute message digest");
}
else
{
memset(sha1_input, 0x00, sizeof(sha1_input));
/*sprintf(sha1_input, "%X%X%X%X%X", sha.Message_Digest[0], sha.Message_Digest[1],
sha.Message_Digest[2], sha.Message_Digest[3], sha.Message_Digest[4]);*/
sprintf(sha1_input, "%u%u%u%u%u", sha.Message_Digest[0], sha.Message_Digest[1],
sha.Message_Digest[2], sha.Message_Digest[3], sha.Message_Digest[4]);
printf("\nSHA1 Digest = %s", sha1_input);
encode_base64(strlen(sha1_input), sha1_input, digestLen, digeststr);
printf("\nSHA1 Digest Base64 Encoded = %s", digeststr);
}after that I sent this request like this.
snprintf(postData, sizeof(postData),
"<?xml version=\"1.0\" encoding=\"utf-8\"?>"
"<SOAP-ENV:Envelope xmlns:SOAP-ENV=\"http://www.w3.org/2003/05/soap-envelope\""
"xmlns:wsse=\"http://docs.oasis-open.org/wss/2004/01/oasis-200401"
"-wss-wssecurity-secext-1.0.xsd\""
"xmlns:wsu=\"http://docs.oasis-open.org/wss/2004/01/oasis-"
"200401-wss-wssecurity-utility-1.0.xsd\""
"xmlns:tds=\"http://www.onvif.org/ver20/ptz/wsdl\">"
"<SOAP-ENV:Header><wsse:Security><wsse:UsernameToken>"
"<wsse:Username>%s</wsse:Username>"
"<wsse:Password Type=\"http://docs.oasis-open.org/wss/2004/01/oasis-"
"200401-wss-username-token-profile-1.0#PasswordDigest\">"
"%s</wsse:Password><wsse:Nonce>%s</wsse:Nonce>"
"<wsu:Created>%s</wsu:Created></wsse:UsernameToken>"
"</wsse:Security></SOAP-ENV:Header><SOAP-ENV:Body>"
"<tds:GetNodes>"
"</SOAP-ENV:Body></SOAP-ENV:Envelope>",
username, base64EncDigest, nonce_char, time_char);Response:
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://www.w3.org/2003/05/soap-envelope"
xmlns:SOAP-ENC="http://www.w3.org/2003/05/soap-encoding"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:wsa5="http://www.w3.org/2005/08/addressing"
xmlns:c14n="http://www.w3.org/2001/10/xml-exc-c14n#"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
xmlns:ptzimg2="http://www.onvif.org/ver10/schema"
xmlns:ptzimg3="http://www.w3.org/2005/05/xmlmime"
xmlns:ptzimg4="http://docs.oasis-open.org/wsn/b-2"
xmlns:ptzimg5="http://docs.oasis-open.org/wsrf/bf-2"
xmlns:ptzimg6="http://docs.oasis-open.org/wsn/t-1"
xmlns:ptzimg1="http://www.onvif.org/ver20/ptz/wsdl"
xmlns:ptzimg7="http://www.onvif.org/ver20/imaging/wsdl"
xmlns:ter="http://www.onvif.org/ver10/error">
<SOAP-ENV:Header></SOAP-ENV:Header>
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<SOAP-ENV:Code>
<SOAP-ENV:Value>
SOAP-ENV:Sender
</SOAP-ENV:Value>
<SOAP-ENV:Subcode>
<SOAP-ENV:Value>
wsse:FailedAuthentication
</SOAP-ENV:Value>
</SOAP-ENV:Subcode>
</SOAP-ENV:Code>
<SOAP-ENV:Reason>
<SOAP-ENV:Text xml:lang="en">
The security token could not be authenticated or authorized
</SOAP-ENV:Text>
</SOAP-ENV:Reason>
<SOAP-ENV:Node>
http://www.w3.org/2003/05/soap-envelope/node/ultimateReceiver
</SOAP-ENV:Node>
<SOAP-ENV:Role>
http://www.w3.org/2003/05/soap-envelope/role/ultimateReceiver
</SOAP-ENV:Role>
<SOAP-ENV:Detail></SOAP-ENV:Detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
Am I doing anything wrong, Especially when created digest? Thanks
解决方案
Hello,
I think your issue should be raised in the OnVIF forum or the third-part library forum. I believe they will know more information of this issue than us, and I will move this one to off-topic, Please open a new thread in that forum.
Thanks for your understanding,
Best regards,
Jesse
这篇关于如何使用ONVIF验证用户?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
查看全文
