| 123456789101112131415161718192021222324252627282930 |
- local function forbidden()
- ngx.status = ngx.HTTP_UNAUTHORIZED
- ngx.header.content_type = "application/json; charset=utf-8"
- ngx.say("{\"status\": 401, \"message\": \"Unauthorized\", \"error\": 1}")
- return ngx.exit(ngx.HTTP_OK)
- end
- local function simple_debug(msg)
- ngx.say(msg)
- return ngx.exit(ngx.HTTP_OK)
- end
- local upload_user = ngx.req.get_headers()["UPLOAD-SERVER-USER"]
- local upload_token = ngx.req.get_headers()["UPLOAD-SERVER-TOKEN"]
- local upload_date = ngx.req.get_headers()["UPLOAD-SERVER-DATE"]
- local upload_notify_url = ngx.req.get_headers()["UPLOAD-SERVER-NOTIFY-URL"]
- local secretkey='k4Ao7KWVbvg3Z2L6KLwN9OoDjQL5SioJffIPoODATxCynuEVEAt0278kg7r9FHiS'
- local date = os.date("%Y%m%d%H")
- if upload_user == nil or upload_token == nil then
- return forbidden()
- end
- if upload_notify_url == nil then
- upload_notify_url = ''
- end
- if upload_date == nil then
- upload_date = date
- end
- local string = 'uid:' .. tostring(upload_user) .. '&secretkey:' .. tostring(secretkey) .. '&datetime:' .. tostring(upload_date) .. '¬ifyurl:' .. tostring(upload_notify_url)
- local token = ngx.md5(string)
- if token ~= upload_token then
- return forbidden()
- end
|
