Azure IoT Hub device registration via POSTMAN results in Unauthorized
I want to create a sas token for registration of device in Azure IoT hub,using postman.The sas token will be created with pre-requested script.
var resourceUri = "scopeId/registrations/deviceId" // The resource uri
var deviceId = "deviceId";
resourceUri = encodeURIComponent(resourceUri.toLowerCase()); // Encode the url
var expires = Math.ceil((Date.now() / 1000) + 10 * 60); // Expire the token 60 minutes from now
var toSign = resourceUri + "\n" + expires; // this is the string format to gen signature from
var crypted = CryptoJS.HmacSHA256(deviceId, CryptoJS.enc.Base64.parse("symmetrickKeyOfEnrollmentGroup"));
var signature = CryptoJS.HmacSHA256(toSign, crypted); // The signature generated from the decodedKey
var encodedUri = encodeURIComponent(CryptoJS.enc.Base64.stringify(signature)); // The url encoded version of the Base64 signature
// Construct authorization string (shared access signature)
var iotHubSasToken = "SharedAccessSignature sr=" + resourceUri + "&sig=" + encodedUri + "&se=" + expires +"&skn=registration";
console.log(iotHubSasToken);
postman.setGlobalVariable("token", iotHubSasToken);
This is what i created, but i receive Unauthorized.Some ideas where i am wrong, i think i somewhere in the signature, because the "sr" and "se" are okay
Output of the code above which throws Unauthorized:
SharedAccessSignature sr=0ne002ee24e%2Fregistrations%2Fcxdlx3f3zv9xx3f3zq&sig=Ukz%2FPyyLaweLYmFq4gHUP%2BhiO7X%2FyQAE9noAaw4nuLU%3D&se=1659940252&skn=registration
References:
About SAS: https://learn.microsoft.com/en-us/azure/iot-dps/how-to-control-access
About the REST API: https://learn.microsoft.com/en-us/rest/api/iot-dps/device/runtime-registration/register-device#provisioningserviceerrordetails
About DPS sas token: https://learn.microsoft.com/en-us/azure/iot-dps/how-to-control-access
Error:
Solution
The issue was in the signature.
var crypted = CryptoJS.HmacSHA256(deviceId, CryptoJS.enc.Base64.parse("symmetrickKeyOfEnrollmentGroup"));
var signature = CryptoJS.HmacSHA256(toSign, crypted); // The signature generated from the decodedKey
var encodedUri = encodeURIComponent(CryptoJS.enc.Base64.stringify(signature)); // The url encoded version of the Base64 signature
This is the right way of creating it.
- Difference between AJAX request and a regular browser request
- Alpine.js menu toggle issue
- Intl.DateTimeFormat options hash: Getting leading zeros with '2-digit'
- Selenium won't work unless I actually look at the Web page (perhaps anti-crawler mechanism by JavaScript?)
- Checking if an object is array-like
- pinterest web scrape image
- Mapping through these JSON elements
- How can I enter data into a custom-handled input field?
- RegEx for Javascript to allow only alphanumeric
- How to export static images on Nextjs?
- Using UUID In Dynamic Namespace In Socket IO
- How can I copy rich text contents to the clipboard with JavaScript?
- Error: Couldn't register the navigator. Have you wrapped your app with 'NavigationContainer'?
- AJAX implementation doesn't work properly for "like" button ASP.NET Core 2.1
- Jquery get form field value
- Deprecation Warning in Bootstrap SCSS
- How do I protect JavaScript files?
- CKEditor 5 toolbar fixed position
- Stop datepicker from floating around
- How to connect firebase firestore with my local firebase emulator suite?
- Transfer data with GOOGLE SHEETS
- Alert Box for webpage. Javascript/HTML
- why does javascript getMonth count from 0 and getDate count from 1?
- Delete a field from Firestore, with a dynamic key
- filter out object in array if object key value is null
- Is there an equivalent Javascript or Jquery sleep function?
- Why can Array.prototype methods be used with non-array objects?
- Turn off autocomplete for specific function in javascript in VS CODE
- JSON problem solution
- What happens when I add a module to the Global React object?