I am trying to use "signed URLs" to access/upload files to Google Cloud Storage (GCS).
Followed the instructions at https://developers.google.com/storage/docs/accesscontrol#Signing-Strings
What I did:
- Registered a "Web Application" at Google Cloud Console.
- Generated new private key using the "Generate New Key" at the "Certificate" section of the registered web application screen.
- Created my string to be signed and sign it using the sample code provided by "How to Sign" section of the page (just minor tweaks to hardcode values for the Java main program). Update: Created a gist for GcsSigner.java.
- Ensure that the signed string is URL encoded.
- HTTP headers specified: x-goog-api-version, x-goog-project-id, Content-Type.
- URL Parameters specified: GoogleAccessId, Signature, Expires.
- Use Postman (a Chrome extension) to simulate PUT request.
However, I am still getting this (Status: 403 Forbidden):
<?xml version='1.0' encoding='UTF-8'?>
<Error>
<Code>SignatureDoesNotMatch</Code>
<Message>The request signature we calculated does not match the signature you provided. Check your Google secret key and signing method.</Message>
<StringToSign>PUT
text/plain
1384084959392
x-goog-api-version:2
x-goog-project-id:99999
/mybucket/myfile.txt</StringToSign>
</Error>
Even when I retry by signing the string based on values in "StringToSign", I still get the same error.
Read various related postings here but could not find any solution and most of it refers to x-goog-api-version:1
while i am using version 2.
What am i missing? Any help would be greatly appreciated.
See Question&Answers more detail:
os 与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…