EggPlanet
/
egg_system_rules
3
0
派生 0
代码 工单 0 合并请求 0 版本发布 3 百科 动态
蛋蛋星球-制度模式
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
58 提交
1 分支
5.3 MiB
 
目录树: af7f1b9aac
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 'af7f1b9aac'
${ noResults }
egg_system_rules/gopay/alipay/client.go

275 行
7.9 KiB
原始文件 Blame 文件历史 

  1. package alipay

  2. 

  3. import (

  4. 	"crypto/rsa"

  5. 	"encoding/base64"

  6. 	"encoding/json"

  7. 	"fmt"

  8. 	"time"

  9. 

  10. 	"github.com/go-pay/crypto/aes"

  11. 	"github.com/go-pay/crypto/xpem"

  12. 	"github.com/go-pay/crypto/xrsa"

  13. 	"github.com/go-pay/gopay"

  14. 	"github.com/go-pay/gopay/pkg/xhttp"

  15. 	"github.com/go-pay/xlog"

  16. 	"github.com/go-pay/xtime"

  17. )

  18. 

  19. type Client struct {

  20. 	AppId              string

  21. 	AppCertSN          string

  22. 	AliPayPublicCertSN string

  23. 	AliPayRootCertSN   string

  24. 	ReturnUrl          string

  25. 	NotifyUrl          string

  26. 	Charset            string

  27. 	SignType           string

  28. 	AppAuthToken       string

  29. 	IsProd             bool

  30. 	aesKey             string // biz_content 加密的 AES KEY

  31. 	ivKey              []byte

  32. 	privateKey         *rsa.PrivateKey

  33. 	aliPayPublicKey    *rsa.PublicKey // 支付宝证书公钥内容 alipayPublicCert.crt

  34. 	autoSign           bool

  35. 	DebugSwitch        gopay.DebugSwitch

  36. 	logger             xlog.XLogger

  37. 	location           *time.Location

  38. 	hc                 *xhttp.Client

  39. }

  40. 

  41. // 初始化支付宝客户端

  42. // 注意:如果使用支付宝公钥证书验签,请使用 client.SetCertSnByContent() 或 client.SetCertSnByPath() 设置 应用公钥证书、支付宝公钥证书、支付宝根证书

  43. // appid:应用ID

  44. // privateKey:应用私钥,支持PKCS1和PKCS8

  45. // isProd:是否是正式环境,沙箱环境请选择新版沙箱应用。

  46. func NewClient(appid, privateKey string, isProd bool) (client *Client, err error) {

  47. 	if appid == gopay.NULL || privateKey == gopay.NULL {

  48. 		return nil, gopay.MissAlipayInitParamErr

  49. 	}

  50. 	key := xrsa.FormatAlipayPrivateKey(privateKey)

  51. 	priKey, err := xpem.DecodePrivateKey([]byte(key))

  52. 	if err != nil {

  53. 		return nil, err

  54. 	}

  55. 	logger := xlog.NewLogger()

  56. 	logger.SetLevel(xlog.DebugLevel)

  57. 	client = &Client{

  58. 		AppId:       appid,

  59. 		Charset:     UTF8,

  60. 		SignType:    RSA2,

  61. 		IsProd:      isProd,

  62. 		privateKey:  priKey,

  63. 		DebugSwitch: gopay.DebugOff,

  64. 		logger:      logger,

  65. 		hc:          xhttp.NewClient(),

  66. 	}

  67. 	return client, nil

  68. }

  69. 

  70. // 开启请求完自动验签功能(默认不开启,推荐开启,只支持证书模式)

  71. // 注意:只支持证书模式

  72. // alipayPublicKeyContent:支付宝公钥证书文件内容[]byte

  73. func (a *Client) AutoVerifySign(alipayPublicKeyContent []byte) {

  74. 	pubKey, err := xpem.DecodePublicKey(alipayPublicKeyContent)

  75. 	if err != nil {

  76. 		a.logger.Errorf("AutoVerifySign(%s),err:%+v", alipayPublicKeyContent, err)

  77. 	}

  78. 	if pubKey != nil {

  79. 		a.aliPayPublicKey = pubKey

  80. 		a.autoSign = true

  81. 	}

  82. }

  83. 

  84. // SetBodySize 设置http response body size(MB)

  85. func (a *Client) SetBodySize(sizeMB int) {

  86. 	if sizeMB > 0 {

  87. 		a.hc.SetBodySize(sizeMB)

  88. 	}

  89. }

  90. 

  91. // SetHttpClient 设置自定义的xhttp.Client

  92. func (a *Client) SetHttpClient(client *xhttp.Client) {

  93. 	if client != nil {

  94. 		a.hc = client

  95. 	}

  96. }

  97. 

  98. // SetLogger 设置自定义的logger

  99. func (a *Client) SetLogger(logger xlog.XLogger) {

  100. 	if logger != nil {

  101. 		a.logger = logger

  102. 	}

  103. }

  104. 

  105. // SetAESKey 设置 biz_content 的AES加密key,设置此参数默认开启 biz_content 参数加密

  106. // 注意:目前不可用,设置后会报错

  107. func (a *Client) SetAESKey(aesKey string) {

  108. 	a.aesKey = aesKey

  109. 	a.ivKey = []byte{0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0}

  110. }

  111. 

  112. // Deprecated

  113. // 推荐使用 RequestParam()

  114. func (a *Client) GetRequestSignParam(bm gopay.BodyMap, method string) (string, error) {

  115. 	return a.RequestParam(bm, method)

  116. }

  117. 

  118. // RequestParam 获取支付宝完整请求参数包含签名

  119. // 注意:biz_content 需要自行通过bm.SetBodyMap()设置,不设置则没有此参数

  120. func (a *Client) RequestParam(bm gopay.BodyMap, method string) (string, error) {

  121. 	var (

  122. 		bodyBs []byte

  123. 		err    error

  124. 		sign   string

  125. 	)

  126. 	if bm == nil {

  127. 		return "", gopay.BodyMapNilErr

  128. 	}

  129. 	// check if there is biz_content

  130. 	bz := bm.GetAny("biz_content")

  131. 	if bzBody, ok := bz.(gopay.BodyMap); ok {

  132. 		if bodyBs, err = json.Marshal(bzBody); err != nil {

  133. 			return "", fmt.Errorf("json.Marshal(%v):%w", bzBody, err)

  134. 		}

  135. 		bm.Set("biz_content", string(bodyBs))

  136. 	}

  137. 	bm.Set("method", method)

  138. 

  139. 	// check public parameter

  140. 	a.checkPublicParam(bm)

  141. 

  142. 	// check sign

  143. 	if bm.GetString("sign") == "" {

  144. 		sign, err = a.getRsaSign(bm, bm.GetString("sign_type"))

  145. 		if err != nil {

  146. 			return "", fmt.Errorf("GetRsaSign Error: %w", err)

  147. 		}

  148. 		bm.Set("sign", sign)

  149. 	}

  150. 

  151. 	if a.DebugSwitch == gopay.DebugOn {

  152. 		a.logger.Debugf("Alipay_Request: %s", bm.JsonBody())

  153. 	}

  154. 	return bm.EncodeURLParams(), nil

  155. }

  156. 

  157. // 公共参数处理

  158. func (a *Client) pubParamsHandle(bm gopay.BodyMap, method, bizContent string, authToken ...string) (param string, err error) {

  159. 	pubBody := make(gopay.BodyMap)

  160. 	pubBody.Set("app_id", a.AppId).

  161. 		Set("method", method).

  162. 		Set("format", "JSON").

  163. 		Set("charset", a.Charset).

  164. 		Set("sign_type", a.SignType).

  165. 		Set("version", "1.0").

  166. 		Set("timestamp", time.Now().Format(xtime.TimeLayout))

  167. 

  168. 	if bm != nil {

  169. 		// version

  170. 		if version := bm.GetString("version"); version != gopay.NULL {

  171. 			pubBody.Set("version", version)

  172. 		}

  173. 		if a.AppCertSN != gopay.NULL {

  174. 			pubBody.Set("app_cert_sn", a.AppCertSN)

  175. 		}

  176. 		if a.AliPayRootCertSN != gopay.NULL {

  177. 			pubBody.Set("alipay_root_cert_sn", a.AliPayRootCertSN)

  178. 		}

  179. 		// return_url

  180. 		if a.ReturnUrl != gopay.NULL {

  181. 			pubBody.Set("return_url", a.ReturnUrl)

  182. 		}

  183. 		if returnUrl := bm.GetString("return_url"); returnUrl != gopay.NULL {

  184. 			pubBody.Set("return_url", returnUrl)

  185. 		}

  186. 		if a.location != nil {

  187. 			pubBody.Set("timestamp", time.Now().In(a.location).Format(xtime.TimeLayout))

  188. 		}

  189. 		// notify_url

  190. 		if a.NotifyUrl != gopay.NULL {

  191. 			pubBody.Set("notify_url", a.NotifyUrl)

  192. 		}

  193. 		if notifyUrl := bm.GetString("notify_url"); notifyUrl != gopay.NULL {

  194. 			pubBody.Set("notify_url", notifyUrl)

  195. 		}

  196. 		// default use app_auth_token

  197. 		if a.AppAuthToken != gopay.NULL {

  198. 			pubBody.Set("app_auth_token", a.AppAuthToken)

  199. 		}

  200. 		// if user set app_auth_token in body_map, use this

  201. 		if aat := bm.GetString("app_auth_token"); aat != gopay.NULL {

  202. 			pubBody.Set("app_auth_token", aat)

  203. 		}

  204. 	}

  205. 	if len(authToken) > 0 {

  206. 		pubBody.Set("auth_token", authToken[0])

  207. 	}

  208. 	if bizContent != gopay.NULL {

  209. 		if a.aesKey == gopay.NULL {

  210. 			pubBody.Set("biz_content", bizContent)

  211. 		} else {

  212. 			// AES Encrypt biz_content

  213. 			encryptBizContent, err := a.encryptBizContent(bizContent)

  214. 			if err != nil {

  215. 				return "", fmt.Errorf("EncryptBizContent Error: %w", err)

  216. 			}

  217. 			if a.DebugSwitch == gopay.DebugOn {

  218. 				a.logger.Debugf("Alipay_Origin_BizContent: %s", bizContent)

  219. 				a.logger.Debugf("Alipay_Encrypt_BizContent: %s", encryptBizContent)

  220. 			}

  221. 			pubBody.Set("biz_content", encryptBizContent)

  222. 		}

  223. 	}

  224. 	// sign

  225. 	sign, err := a.getRsaSign(pubBody, pubBody.GetString("sign_type"))

  226. 	if err != nil {

  227. 		return "", fmt.Errorf("GetRsaSign Error: %w", err)

  228. 	}

  229. 	pubBody.Set("sign", sign)

  230. 	if a.DebugSwitch == gopay.DebugOn {

  231. 		a.logger.Debugf("Alipay_Request: %s", pubBody.JsonBody())

  232. 	}

  233. 	param = pubBody.EncodeURLParams()

  234. 	return

  235. }

  236. 

  237. // 公共参数检查

  238. func (a *Client) checkPublicParam(bm gopay.BodyMap) {

  239. 	bm.Set("format", "JSON").

  240. 		Set("charset", a.Charset).

  241. 		Set("sign_type", a.SignType).

  242. 		Set("version", "1.0").

  243. 		Set("timestamp", time.Now().Format(xtime.TimeLayout))

  244. 

  245. 	if bm.GetString("app_id") == "" && a.AppId != gopay.NULL {

  246. 		bm.Set("app_id", a.AppId)

  247. 	}

  248. 	if bm.GetString("app_cert_sn") == "" && a.AppCertSN != gopay.NULL {

  249. 		bm.Set("app_cert_sn", a.AppCertSN)

  250. 	}

  251. 	if bm.GetString("alipay_root_cert_sn") == "" && a.AliPayRootCertSN != gopay.NULL {

  252. 		bm.Set("alipay_root_cert_sn", a.AliPayRootCertSN)

  253. 	}

  254. 	if bm.GetString("return_url") == "" && a.ReturnUrl != gopay.NULL {

  255. 		bm.Set("return_url", a.ReturnUrl)

  256. 	}

  257. 	if a.location != nil {

  258. 		bm.Set("timestamp", time.Now().In(a.location).Format(xtime.TimeLayout))

  259. 	}

  260. 	if bm.GetString("notify_url") == "" && a.NotifyUrl != gopay.NULL {

  261. 		bm.Set("notify_url", a.NotifyUrl)

  262. 	}

  263. 	if bm.GetString("app_auth_token") == "" && a.AppAuthToken != gopay.NULL {

  264. 		bm.Set("app_auth_token", a.AppAuthToken)

  265. 	}

  266. }

  267. 

  268. func (a *Client) encryptBizContent(originData string) (string, error) {

  269. 	encryptData, err := aes.CBCEncrypt([]byte(originData), []byte(a.aesKey), a.ivKey)

  270. 	if err != nil {

  271. 		return "", err

  272. 	}

  273. 	return base64.StdEncoding.EncodeToString(encryptData), nil

  274. }