From 00bc4bd560668cb1a4461c7160a217df46aa4eb1 Mon Sep 17 00:00:00 2001 From: franktguo Date: Mon, 27 Nov 2023 11:34:39 +0800 Subject: [PATCH] sts sdk demo --- sample/sts_demo.php | 102 ++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 102 insertions(+) create mode 100644 sample/sts_demo.php diff --git a/sample/sts_demo.php b/sample/sts_demo.php new file mode 100644 index 0000000..405b598 --- /dev/null +++ b/sample/sts_demo.php @@ -0,0 +1,102 @@ + 1700828878 + * [expiration] => 2023-11-24T12:27:58Z + * [credentials] => Array + * ( + * [sessionToken] => token + * [tmpSecretId] => secretId + * [tmpSecretKey] => secretKey + * ) + * + * [requestId] => 2a521211-b212-xxxx-xxxx-c9976a3966bd + * [startTime] => 1700810878 + * ) + */ + +require_once __DIR__ . '/vendor/autoload.php'; + +$bucket = 'examplebucket-1250000000'; +$secretKey = 'SECRETKEY'; +$secretId = 'SECRETID'; +$region = "ap-beijing"; + +$sts = new QCloud\COSSTS\Sts(); +$config = array( + 'url' => 'https://sts.tencentcloudapi.com/', // url和domain保持一致 + 'domain' => 'sts.tencentcloudapi.com', // 域名,非必须,默认为 sts.tencentcloudapi.com + 'proxy' => '', + 'secretId' => $secretId, // 固定密钥,若为明文密钥,请直接以'xxx'形式填入,不要填写到getenv()函数中 + 'secretKey' => $secretKey, // 固定密钥,若为明文密钥,请直接以'xxx'形式填入,不要填写到getenv()函数中 + 'bucket' => $bucket, // 换成你的 bucket + 'region' => $region, // 换成 bucket 所在园区 + 'durationSeconds' => 1800*10, // 密钥有效期 + 'allowPrefix' => array('/*'), // 这里改成允许的路径前缀,可以根据自己网站的用户登录态判断允许上传的具体路径,例子: a.jpg 或者 a/* 或者 * (使用通配符*存在重大安全风险, 请谨慎评估使用) + 'allowCiSource' => false, // 万象资源配置 + 'allowActions' => array ( + 'name/cos:*', + 'name/ci:*', + // 具体action按需设置 + ), +// // 临时密钥生效条件,关于condition的详细设置规则和COS支持的condition类型可以参考 https://cloud.tencent.com/document/product/436/71306 +// "condition" => array( +// "ip_equal" => array( +// "qcs:ip" => array( +// "10.217.182.3/24", +// "111.21.33.72/24", +// ) +// ) +// ) +); + + +try { + // 获取临时密钥,计算签名 + $tempKeys = $sts->getTempKeys($config); + print_r($tempKeys); +} catch (Exception $e) { + echo $e; +} + + +/** + * 第二步:在cos php sdk中使用临时密钥 + * 创建临时密钥生成的Client,以文本同步审核为例 + */ +// 临时密钥 +$tmpSecretId = 'secretId'; // 第一步获取到的 $tempKeys['credentials']['tmpSecretId'] +$tmpSecretKey = 'secretKey'; // 第一步获取到的 $tempKeys['credentials']['tmpSecretKey'] +$token = 'token'; // 第一步获取到的 $tempKeys['credentials']['sessionToken'] +$tokenClient = new Qcloud\Cos\Client( + array( + 'region' => $region, + 'schema' => 'https', //协议头部,默认为http + 'credentials'=> array( + 'secretId' => $tmpSecretId , + 'secretKey' => $tmpSecretKey, + 'token' => $token, + ) + ) +); + +try { + $content = '敏感词'; + $result = $tokenClient->detectText(array( + 'Bucket' => 'examplebucket-1250000000', //存储桶名称,由BucketName-Appid 组成,可以在COS控制台查看 https://console.cloud.tencent.com/cos5/bucket + 'Input' => array( + 'Content' => base64_encode($content), // 文本需base64_encode + ), + )); + // 请求成功 + print_r($result); +} catch (\Exception $e) { + // 请求失败 + echo($e); +} \ No newline at end of file