EggPlanet
/
egg_system_rules
3
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 3 Wiki Activity
蛋蛋星球-制度模式
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
58 Commits
1 Branch
5.3 MiB
Tree: af7f1b9aac
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'af7f1b9aac'
${ noResults }
egg_system_rules/gopay/wechat/sign.go

sign.go 6.9 KiB
Raw Normal View History

update
1 month ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215 
  1. package wechat

  2. 

  3. import (

  4. 	"context"

  5. 	"crypto/hmac"

  6. 	"crypto/md5"

  7. 	"crypto/sha256"

  8. 	"encoding/hex"

  9. 	"encoding/json"

  10. 	"errors"

  11. 	"fmt"

  12. 	"hash"

  13. 	"reflect"

  14. 	"strings"

  15. 

  16. 	"github.com/go-pay/gopay"

  17. 	"github.com/go-pay/util"

  18. )

  19. 

  20. // VerifySign 微信同步返回参数验签或异步通知参数验签

  21. // ApiKey:API秘钥值

  22. // signType:签名类型(调用API方法时填写的类型)

  23. // bean:微信同步返回的结构体 wxRsp 或 异步通知解析的结构体 notifyReq,推荐通 BodyMap 验签

  24. // 返回参数ok:是否验签通过

  25. // 返回参数err:其他错误信息,不要根据 error 是否为空来判断验签正确与否,需再单独判断返回的 ok

  26. func VerifySign(apiKey, signType string, bean any) (ok bool, err error) {

  27. 	if bean == nil {

  28. 		return false, errors.New("bean is nil")

  29. 	}

  30. 	kind := reflect.ValueOf(bean).Kind()

  31. 	if kind == reflect.Map {

  32. 		bm := bean.(gopay.BodyMap)

  33. 		bodySign := bm.GetString("sign")

  34. 		bm.Remove("sign")

  35. 		return GetReleaseSign(apiKey, signType, bm) == bodySign, nil

  36. 	}

  37. 

  38. 	bs, err := json.Marshal(bean)

  39. 	if err != nil {

  40. 		return false, fmt.Errorf("json.Marshal(%s):%w", string(bs), err)

  41. 	}

  42. 	bm := make(gopay.BodyMap)

  43. 	if err = json.Unmarshal(bs, &bm); err != nil {

  44. 		return false, fmt.Errorf("json.Marshal(%s):%w", string(bs), err)

  45. 	}

  46. 	bodySign := bm.GetString("sign")

  47. 	bm.Remove("sign")

  48. 	return GetReleaseSign(apiKey, signType, bm) == bodySign, nil

  49. }

  50. 

  51. // GetMiniPaySign JSAPI支付,统一下单获取支付参数后,再次计算出小程序用的paySign

  52. // appId:APPID

  53. // nonceStr:随即字符串

  54. // packages:统一下单成功后拼接得到的值

  55. // signType:签名类型

  56. // timeStamp:时间

  57. // ApiKey:API秘钥值

  58. // 微信小程序支付API:https://developers.weixin.qq.com/miniprogram/dev/api/open-api/payment/wx.requestPayment.html

  59. // 微信小程序支付PaySign计算文档:https://pay.weixin.qq.com/wiki/doc/api/wxa/wxa_api.php?chapter=7_7&index=3

  60. func GetMiniPaySign(appId, nonceStr, packages, signType, timeStamp, apiKey string) (paySign string) {

  61. 	var (

  62. 		buffer strings.Builder

  63. 		h      hash.Hash

  64. 	)

  65. 	buffer.WriteString("appId=")

  66. 	buffer.WriteString(appId)

  67. 	buffer.WriteString("&nonceStr=")

  68. 	buffer.WriteString(nonceStr)

  69. 	buffer.WriteString("&package=")

  70. 	buffer.WriteString(packages)

  71. 	buffer.WriteString("&signType=")

  72. 	buffer.WriteString(signType)

  73. 	buffer.WriteString("&timeStamp=")

  74. 	buffer.WriteString(timeStamp)

  75. 	buffer.WriteString("&key=")

  76. 	buffer.WriteString(apiKey)

  77. 	if signType == SignType_HMAC_SHA256 {

  78. 		h = hmac.New(sha256.New, []byte(apiKey))

  79. 	} else {

  80. 		h = md5.New()

  81. 	}

  82. 	h.Write([]byte(buffer.String()))

  83. 	return strings.ToUpper(hex.EncodeToString(h.Sum(nil)))

  84. }

  85. 

  86. // Deprecated

  87. // 微信内H5支付官方文档:https://pay.weixin.qq.com/wiki/doc/api/jsapi.php?chapter=7_7&index=6

  88. func GetH5PaySign(appId, nonceStr, packages, signType, timeStamp, apiKey string) (paySign string) {

  89. 	return GetJsapiPaySign(appId, nonceStr, packages, signType, timeStamp, apiKey)

  90. }

  91. 

  92. // GetJsapiPaySign JSAPI调起支付,统一下单获取支付参数后,再次计算出微信内H5支付需要用的paySign

  93. // appId:APPID

  94. // nonceStr:随即字符串

  95. // packages:统一下单成功后拼接得到的值

  96. // signType:签名类型

  97. // timeStamp:时间

  98. // ApiKey:API秘钥值

  99. // 文档:https://pay.weixin.qq.com/wiki/doc/api/jsapi.php?chapter=7_7&index=6

  100. func GetJsapiPaySign(appId, nonceStr, packages, signType, timeStamp, apiKey string) (paySign string) {

  101. 	var (

  102. 		buffer strings.Builder

  103. 		h      hash.Hash

  104. 	)

  105. 	buffer.WriteString("appId=")

  106. 	buffer.WriteString(appId)

  107. 	buffer.WriteString("&nonceStr=")

  108. 	buffer.WriteString(nonceStr)

  109. 	buffer.WriteString("&package=")

  110. 	buffer.WriteString(packages)

  111. 	buffer.WriteString("&signType=")

  112. 	buffer.WriteString(signType)

  113. 	buffer.WriteString("&timeStamp=")

  114. 	buffer.WriteString(timeStamp)

  115. 	buffer.WriteString("&key=")

  116. 	buffer.WriteString(apiKey)

  117. 	if signType == SignType_HMAC_SHA256 {

  118. 		h = hmac.New(sha256.New, []byte(apiKey))

  119. 	} else {

  120. 		h = md5.New()

  121. 	}

  122. 	h.Write([]byte(buffer.String()))

  123. 	paySign = strings.ToUpper(hex.EncodeToString(h.Sum(nil)))

  124. 	return

  125. }

  126. 

  127. // GetAppPaySign APP支付,统一下单获取支付参数后,再次计算APP支付所需要的的sign

  128. // appId:APPID

  129. // partnerid:partnerid

  130. // nonceStr:随即字符串

  131. // prepayId:统一下单成功后得到的值

  132. // signType:此处签名方式,务必与统一下单时用的签名方式一致

  133. // timeStamp:时间

  134. // ApiKey:API秘钥值

  135. // 文档:https://pay.weixin.qq.com/wiki/doc/api/app/app.php?chapter=9_12&index=2

  136. func GetAppPaySign(appid, partnerid, noncestr, prepayid, signType, timestamp, apiKey string) (paySign string) {

  137. 	var (

  138. 		buffer strings.Builder

  139. 		h      hash.Hash

  140. 	)

  141. 	buffer.WriteString("appid=")

  142. 	buffer.WriteString(appid)

  143. 	buffer.WriteString("&noncestr=")

  144. 	buffer.WriteString(noncestr)

  145. 	buffer.WriteString("&package=Sign=WXPay")

  146. 	buffer.WriteString("&partnerid=")

  147. 	buffer.WriteString(partnerid)

  148. 	buffer.WriteString("&prepayid=")

  149. 	buffer.WriteString(prepayid)

  150. 	buffer.WriteString("&timestamp=")

  151. 	buffer.WriteString(timestamp)

  152. 	buffer.WriteString("&key=")

  153. 	buffer.WriteString(apiKey)

  154. 	if signType == SignType_HMAC_SHA256 {

  155. 		h = hmac.New(sha256.New, []byte(apiKey))

  156. 	} else {

  157. 		h = md5.New()

  158. 	}

  159. 	h.Write([]byte(buffer.String()))

  160. 	paySign = strings.ToUpper(hex.EncodeToString(h.Sum(nil)))

  161. 	return

  162. }

  163. 

  164. // Deprecated

  165. // GetParamSign 获取微信支付所需参数里的Sign值(通过支付参数计算Sign值)

  166. // 注意:BodyMap中如无 sign_type 参数,默认赋值 sign_type 为 MD5

  167. // appId:应用ID

  168. // mchId:商户ID

  169. // ApiKey:API秘钥值

  170. // 返回参数 sign:通过Appid、MchId、ApiKey和BodyMap中的参数计算出的Sign值

  171. func GetParamSign(appId, mchId, apiKey string, bm gopay.BodyMap) (sign string) {

  172. 	bm.Set("appid", appId)

  173. 	bm.Set("mch_id", mchId)

  174. 	var (

  175. 		signType string

  176. 		h        hash.Hash

  177. 	)

  178. 	signType = bm.GetString("sign_type")

  179. 	if signType == gopay.NULL {

  180. 		bm.Set("sign_type", SignType_MD5)

  181. 	}

  182. 	if signType == SignType_HMAC_SHA256 {

  183. 		h = hmac.New(sha256.New, []byte(apiKey))

  184. 	} else {

  185. 		h = md5.New()

  186. 	}

  187. 	h.Write([]byte(bm.EncodeWeChatSignParams(apiKey)))

  188. 	sign = strings.ToUpper(hex.EncodeToString(h.Sum(nil)))

  189. 	return

  190. }

  191. 

  192. // Deprecated

  193. // GetSanBoxParamSign 获取微信支付沙箱环境所需参数里的Sign值(通过支付参数计算Sign值)

  194. // 注意:沙箱环境默认 sign_type 为 MD5

  195. // appId:应用ID

  196. // mchId:商户ID

  197. // ApiKey:API秘钥值

  198. // 返回参数 sign:通过Appid、MchId、ApiKey和BodyMap中的参数计算出的Sign值

  199. func GetSanBoxParamSign(ctx context.Context, appId, mchId, apiKey string, bm gopay.BodyMap) (sign string, err error) {

  200. 	bm.Set("appid", appId)

  201. 	bm.Set("mch_id", mchId)

  202. 	bm.Set("sign_type", SignType_MD5)

  203. 	bm.Set("total_fee", 101)

  204. 	var (

  205. 		sandBoxApiKey string

  206. 		hashMd5       hash.Hash

  207. 	)

  208. 	if sandBoxApiKey, err = getSanBoxKey(ctx, mchId, util.RandomString(32), apiKey, SignType_MD5); err != nil {

  209. 		return

  210. 	}

  211. 	hashMd5 = md5.New()

  212. 	hashMd5.Write([]byte(bm.EncodeWeChatSignParams(sandBoxApiKey)))

  213. 	sign = strings.ToUpper(hex.EncodeToString(hashMd5.Sum(nil)))

  214. 	return

  215. }