跳转至

对外开放接入文档

云控制台支持外部直接调用API的使用方式,具体步骤为:

  1. 创建秘钥对
  2. 签名请求并调用

被签名的内容

  1. pathname
  2. method
  3. content-type (如果有)
  4. queries
  5. custom headers (x-ty-*)
  6. body buffer

  7. current timestamp (取值顺序: custom header(x-ty-timestamp) > query(timestamp) > header(date))

  8. signature version

签名过程

  1. 将 queries 按 key 的 ascii 顺序排序。双/多字节字符仍然按照单字节排序;key 与 value 分别做escape 转换(注1),再以 &key=value 形式拼接

  2. custom headers 使用 encodeURIComponent 转换后使用 &key=value 形式拼接

  3. 其他的 value 均使用 encodeURIComponent 转换
  4. body buffer 取 sha256 (注2)
  5. 将以上内容使用换行符 \n 连接后取 HMAC-SHA256 (注2)

注:

  1. escape不专一字符为 A-Z a-z 0-9 - _ . ~
  2. hash 全部为 hex 小写格式

一个标准的请求应包含:

  1. 必要字段
  2. (header) Authorization 或 (query) signature
  3. (header) x-ty-accesskey 或 (query) ty-accesskey
  4. (header) `x-ty-timestamp 或 (query) ty-timestamp
  5. (header) x-ty-signature-version 或 (query) ty-signature-version
  6. (header) content-type ,非 GET 时必须设置,一般为 application/json
  7. body(如果有)
  8. queries(如果有)
  9. access key

NodeJS签名及调用示例

import got from 'got'
import crypto from 'crypto'

const { createHmac } = crypto

var endpoint = "https://corgiis.tingyutech.net";
const accessKey = 'accessKey';
const accessSecret = 'accessSecret';
const signatureVersion = '2.0';

async function call(pathname, method = "GET", query = {}, json = {}) {
  const contentType = "application/json";
  const requestTime = Date.now();
  console.log("requestTime:",requestTime);
  const headers = {
    "x-ty-timestamp": requestTime,
    "x-ty-accesskey": accessKey,
    "x-ty-signature-version": signatureVersion,
    "content-type": contentType,
  };
  const customHeaders = {};
  for (const headerKey of Object.keys(headers)) {
    if (headerKey.startsWith("x-ty-")) {
      customHeaders[headerKey] = headers[headerKey];
    }
  }
  const orderedCustomHeaderString = keyPairsToOrderedString(customHeaders);
  const orderedQueryString = keyPairsToOrderedString(query);
  console.log("orderedCustomHeaderString", orderedCustomHeaderString);
  console.log("orderedQueryString", orderedQueryString);
  let body_hash = "";
  const signaturedString = [
    fixedEncodeURIComponent(pathname),
    fixedEncodeURIComponent(method),
    fixedEncodeURIComponent(contentType),
    orderedCustomHeaderString,
    orderedQueryString,
    body_hash,
    requestTime,
    accessKey,
    signatureVersion,
  ].join("\n");
  console.log("signaturedString", signaturedString);
  const targetSignature = createHmac("sha256", accessSecret)
    .update(signaturedString)
    .digest("hex");
  const ret = await got(`${endpoint}${pathname}`, {
    method,
    headers: {
      ...headers,
      Authorization: targetSignature,
    },
    throwHttpErrors: false,
    searchParams: query,
    json: method.toUpperCase() !== "GET" ? json : undefined,
  });
  console.log(ret.body);
}

function keyPairsToOrderedString(keyPairs) {
  return Object.keys(keyPairs)
    .sort()
    .map(
      (key) =>
        `${fixedEncodeURIComponent(key)}=${fixedEncodeURIComponent(
          String(keyPairs[key] || "")
        )}`
    )
    .join("&");
}

function fixedEncodeURIComponent(str) {
  return encodeURIComponent(str).replace(/[!'()*]/g, function (c) {
    return "%" + c.charCodeAt(0).toString(16);
  });
}

// npm run dev

// 创建虚机
// call("/v1/domains", "POST", {}, {
//   "name": "vm012",
//   "memory_gb": 8,
//   "cpu_count": 4,
//   "image_id": 2,
//   "datacenter_id": 1,
//   "system_volume": {"storage_pool": "local_system"},
//   "data_volumes": [
//     {
//         "storage_pool": "local_system",
//         "capacity": 100
//     }
//   ],
//   "count": 1
// })

// 查看虚拟机
// call("/v1/domains")
// call("/v1/domains", "GET", {"datacenter_id": 2});
// call("/v1/domains/18")

// 关机
// call("/v1/domains/70/shutdown", "PUT")

// 开机
// call("/v1/domains/70/start", "PUT")

// 重启
call("/v1/domains/193/reboot", "PUT")

// 删除
// const arr = [86,87,88,89,90,91,92,93,94,95]
// arr.forEach((val,index)=>{
//   call("/v1/domains/"+val, "DELETE", {"delete_volumes": "all"})
// })
// call("/v1/domains/117", "DELETE", {"delete_volumes": "all"})

// 上传存储卷
// call("/v1/storages/volumes/upload", "POST", {},{
//   "datacenter_id": 2,
//   "name": "debug111",
//   "storage_pool": "games",
//   "source_format": "raw",
//   "storage_service": "http",
//   "storage_endpoint": "https://tingyu-cloud-agent.oss-rg-china-mainland.aliyuncs.com/corgiis%2Fdebug%2FFU351-QA_game_FU351-QA_default_2311151500.img?Expires=1701799190&OSSAccessKeyId=LTAI5t8UDnTnCBYzSUX8gQdP&Signature=aYBn80vs0%2BRiO4sNTeKFrxVAQHs%3D"
// })

// 查看任务状态
// call("/v1/tasks/58")

// 创建存储卷
// call("/v1/storages/volumes", "POST", {}, {
    "server_id": 6,
    "name": "test-2020219.qcow2",
    "storage_pool": "vmdata",
    "format": "qcow2",
    "filessystem": "ntfs",
    "capacity": 4
})

// 挂载磁盘
// call("/v1/domains/mount", "PUT", {}, {
//   "domain_id": 70,
//   "volume_id": 154,
//   "flags": "persistent"
// })

// 卸载磁盘
// call("/v1/domains/umount", "PUT", {}, {
//   "domain_id": 70,
//   "volume_id": 154,
//   "flags": "persistent"
// })

// 删除磁盘
// call("/v1/storages/volumes/154", "DELETE")