EggPlanet
/
egg_app
3
0
Vork 0
Code Kwesties 0 Pull-aanvragen 0 Publicaties 0 Wiki Activiteit
蛋蛋星球-客户端
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
106 Commits
1 Branch
6.7 MiB
Tree: bd6c7a7c62
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van 'bd6c7a7c62'
${ noResults }
egg_app/app/lib/aes/check.go

check.go 1.9 KiB
Ruw Normale weergave Geschiedenis

add aes 加密
4 dagen geleden
aes 加密
4 dagen geleden
add aes 加密
4 dagen geleden
aes 加密
4 dagen geleden
add aes 加密
4 dagen geleden
aes 加密
4 dagen geleden
add aes 加密
4 dagen geleden
aes 加密
4 dagen geleden
add aes 加密
4 dagen geleden
aes 加密
4 dagen geleden
update
3 dagen geleden
aes 加密
4 dagen geleden
update
3 dagen geleden
update
3 dagen geleden
update
3 dagen geleden
update
3 dagen geleden
update
3 dagen geleden
aes 加密
4 dagen geleden
add aes 加密
4 dagen geleden
aes 加密
4 dagen geleden
add aes 加密
4 dagen geleden
aes 加密
4 dagen geleden
add aes 加密
4 dagen geleden
aes 加密
4 dagen geleden
add aes 加密
4 dagen geleden
 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. package aes

  2. 

  3. import (

  4. 	"applet/app/lib/aes/md"

  5. 	"applet/app/utils"

  6. 	"bytes"

  7. 	"encoding/json"

  8. 	"errors"

  9. 	"fmt"

  10. 	"github.com/gin-gonic/gin"

  11. 	"io/ioutil"

  12. 	"strconv"

  13. 	"strings"

  14. 	"time"

  15. )

  16. 

  17. func CheckSign(c *gin.Context) error {

  18. 	var query = map[string]string{}

  19. 	//1、从请求头中获取必传参数

  20. 	query["timestamp"] = c.GetHeader("timestamp")

  21. 	query["nonce"] = c.GetHeader("nonce")

  22. 	if len(query["nonce"]) != 32 {

  23. 		return errors.New("随机字符串有误!")

  24. 	}

  25. 	sign := c.GetHeader("sign")

  26. 

  27. 	//2、判断请求方式,以获取请求参数

  28. 	if c.Request.Method == "GET" {

  29. 		queryParams := c.Request.URL.Query()

  30. 		for key, values := range queryParams {

  31. 			if len(values) > 0 {

  32. 				query[key] = values[0]

  33. 			}

  34. 		}

  35. 	} else {

  36. 		body, _ := ioutil.ReadAll(c.Request.Body)

  37. 		if string(body) != "" {

  38. 			str, err := AesDecryptByECB(md.AesKey, string(body))

  39. 			if err != nil {

  40. 				return err

  41. 			}

  42. 			if str != "" {

  43. 				c.Request.Body = ioutil.NopCloser(bytes.NewBuffer([]byte(str)))

  44. 

  45. 				var bodyParams = map[string]interface{}{}

  46. 				err = json.Unmarshal([]byte(str), &bodyParams)

  47. 				if err != nil {

  48. 					return err

  49. 				}

  50. 				for key, value := range bodyParams {

  51. 					// 使用类型断言判断是否为 string 类型

  52. 					if _, ok := value.(map[string]interface{}); ok {

  53. 						query[key] = utils.SerializeStr(value)

  54. 					} else {

  55. 						query[key] = utils.AnyToString(value)

  56. 					}

  57. 				}

  58. 			}

  59. 		}

  60. 	}

  61. 

  62. 	//3.query参数按照 ASCII 码从小到大排序

  63. 	str := utils.JoinStringsInASCII(query, "&", false, false, "")

  64. 

  65. 	//4.md5加密 转小写

  66. 	signValue := strings.ToLower(utils.Md5(str))

  67. 

  68. 	//5.判断跟前端传来的sign是否一致

  69. 	if sign != signValue {

  70. 		return errors.New("非法签名!")

  71. 	}

  72. 

  73. 	//6、判断时效性

  74. 	currentTimestamp := time.Now().Unix()

  75. 	storedTimestamp, err := strconv.ParseInt(query["timestamp"], 10, 64)

  76. 	if err != nil {

  77. 		return err

  78. 	}

  79. 	if currentTimestamp-storedTimestamp > 300 { // 5分钟

  80. 		return fmt.Errorf("签名过期!")

  81. 	}

  82. 	return nil

  83. }