EggPlanet
/
egg_system_rules
3
0
Fork 0
Koodi Ongelmat 0 Pull-pyynnöt 0 Julkaisut 3 Wiki Toiminta
蛋蛋星球-制度模式
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
58 Commitit
1 Haara
5.3 MiB
 
Puu: af7f1b9aac
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from 'af7f1b9aac'
${ noResults }
egg_system_rules/gopay/alipay/common_api.go

234 rivejä
7.7 KiB
Raaka Blame Historia 

  1. package alipay

  2. 

  3. import (

  4. 	"context"

  5. 	"crypto/aes"

  6. 	"crypto/cipher"

  7. 	"crypto/rsa"

  8. 	"encoding/base64"

  9. 	"encoding/json"

  10. 	"errors"

  11. 	"fmt"

  12. 	"net/url"

  13. 	"reflect"

  14. 	"time"

  15. 

  16. 	xaes "github.com/go-pay/crypto/aes"

  17. 	"github.com/go-pay/crypto/xpem"

  18. 	"github.com/go-pay/crypto/xrsa"

  19. 	"github.com/go-pay/gopay"

  20. 	"github.com/go-pay/gopay/pkg/xhttp"

  21. 	"github.com/go-pay/xtime"

  22. )

  23. 

  24. // 格式化请求URL参数

  25. func FormatURLParam(body gopay.BodyMap) (urlParam string) {

  26. 	v := url.Values{}

  27. 	for key, value := range body {

  28. 		v.Add(key, value.(string))

  29. 	}

  30. 	return v.Encode()

  31. }

  32. 

  33. // DecryptOpenDataToStruct 解密支付宝开放数据到 结构体

  34. // encryptedData:包括敏感数据在内的完整用户信息的加密数据

  35. // secretKey:AES密钥,支付宝管理平台配置

  36. // beanPtr:需要解析到的结构体指针

  37. // 文档:https://opendocs.alipay.com/common/02mse3

  38. func DecryptOpenDataToStruct(encryptedData, secretKey string, beanPtr any) (err error) {

  39. 	if encryptedData == gopay.NULL || secretKey == gopay.NULL {

  40. 		return errors.New("encryptedData or secretKey is null")

  41. 	}

  42. 	beanValue := reflect.ValueOf(beanPtr)

  43. 	if beanValue.Kind() != reflect.Ptr {

  44. 		return errors.New("传入参数类型必须是以指针形式")

  45. 	}

  46. 	if beanValue.Elem().Kind() != reflect.Struct {

  47. 		return errors.New("传入any必须是结构体")

  48. 	}

  49. 	var (

  50. 		block      cipher.Block

  51. 		blockMode  cipher.BlockMode

  52. 		originData []byte

  53. 	)

  54. 	aesKey, _ := base64.StdEncoding.DecodeString(secretKey)

  55. 	ivKey := []byte{0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0}

  56. 	secretData, _ := base64.StdEncoding.DecodeString(encryptedData)

  57. 	if block, err = aes.NewCipher(aesKey); err != nil {

  58. 		return fmt.Errorf("aes.NewCipher:%w", err)

  59. 	}

  60. 	if len(secretData)%len(aesKey) != 0 {

  61. 		return errors.New("encryptedData is error")

  62. 	}

  63. 	blockMode = cipher.NewCBCDecrypter(block, ivKey)

  64. 	originData = make([]byte, len(secretData))

  65. 	blockMode.CryptBlocks(originData, secretData)

  66. 	if len(originData) > 0 {

  67. 		originData = xaes.PKCS5UnPadding(originData)

  68. 	}

  69. 	if err = json.Unmarshal(originData, beanPtr); err != nil {

  70. 		return fmt.Errorf("json.Unmarshal(%s):%w", string(originData), err)

  71. 	}

  72. 	return nil

  73. }

  74. 

  75. // DecryptOpenDataToBodyMap 解密支付宝开放数据到 BodyMap

  76. // encryptedData:包括敏感数据在内的完整用户信息的加密数据

  77. // secretKey:AES密钥,支付宝管理平台配置

  78. // 文档:https://opendocs.alipay.com/common/02mse3

  79. func DecryptOpenDataToBodyMap(encryptedData, secretKey string) (bm gopay.BodyMap, err error) {

  80. 	if encryptedData == gopay.NULL || secretKey == gopay.NULL {

  81. 		return nil, errors.New("encryptedData or secretKey is null")

  82. 	}

  83. 	var (

  84. 		aesKey, originData []byte

  85. 		ivKey              = []byte{0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0}

  86. 		block              cipher.Block

  87. 		blockMode          cipher.BlockMode

  88. 	)

  89. 	aesKey, _ = base64.StdEncoding.DecodeString(secretKey)

  90. 	secretData, _ := base64.StdEncoding.DecodeString(encryptedData)

  91. 	if block, err = aes.NewCipher(aesKey); err != nil {

  92. 		return nil, fmt.Errorf("aes.NewCipher:%w", err)

  93. 	}

  94. 	if len(secretData)%len(aesKey) != 0 {

  95. 		return nil, errors.New("encryptedData is error")

  96. 	}

  97. 	blockMode = cipher.NewCBCDecrypter(block, ivKey)

  98. 	originData = make([]byte, len(secretData))

  99. 	blockMode.CryptBlocks(originData, secretData)

  100. 	if len(originData) > 0 {

  101. 		originData = xaes.PKCS5UnPadding(originData)

  102. 	}

  103. 	bm = make(gopay.BodyMap)

  104. 	if err = json.Unmarshal(originData, &bm); err != nil {

  105. 		return nil, fmt.Errorf("json.Unmarshal(%s):%w", string(originData), err)

  106. 	}

  107. 	return

  108. }

  109. 

  110. // SystemOauthToken 换取授权访问令牌(默认使用utf-8,RSA2)

  111. // appId:应用ID

  112. // privateKey:应用私钥

  113. // grantType:值为 authorization_code 时,代表用code换取;值为 refresh_token 时,代表用refresh_token换取,传空默认code换取

  114. // codeOrToken:支付宝授权码或refresh_token

  115. // signType:签名方式 RSA 或 RSA2,默认 RSA2

  116. // appAuthToken:可选参数,三方授权令牌

  117. // 文档:https://opendocs.alipay.com/apis/api_9/alipay.system.oauth.token

  118. func SystemOauthToken(ctx context.Context, appId string, privateKey, grantType, codeOrToken, signType string, appAuthToken ...string) (rsp *SystemOauthTokenResponse, err error) {

  119. 	key := xrsa.FormatAlipayPrivateKey(privateKey)

  120. 	aat := ""

  121. 	if len(appAuthToken) > 0 {

  122. 		aat = appAuthToken[0]

  123. 	}

  124. 	priKey, err := xpem.DecodePrivateKey([]byte(key))

  125. 	if err != nil {

  126. 		return nil, err

  127. 	}

  128. 	var bs []byte

  129. 	bm := make(gopay.BodyMap)

  130. 	switch grantType {

  131. 	case "authorization_code":

  132. 		bm.Set("grant_type", "authorization_code")

  133. 		bm.Set("code", codeOrToken)

  134. 	case "refresh_token":

  135. 		bm.Set("grant_type", "refresh_token")

  136. 		bm.Set("refresh_token", codeOrToken)

  137. 	default:

  138. 		bm.Set("grant_type", "authorization_code")

  139. 		bm.Set("code", codeOrToken)

  140. 	}

  141. 	if bs, err = systemOauthToken(ctx, appId, priKey, bm, "alipay.system.oauth.token", true, signType, aat); err != nil {

  142. 		return

  143. 	}

  144. 	rsp = new(SystemOauthTokenResponse)

  145. 	if err = json.Unmarshal(bs, rsp); err != nil {

  146. 		return nil, fmt.Errorf("json.Unmarshal(%s):%w", string(bs), err)

  147. 	}

  148. 	if (rsp.Response == nil) || (rsp.Response != nil && rsp.Response.AccessToken == "") {

  149. 		return nil, errors.New("response is nil or access_token is NULL")

  150. 	}

  151. 	return

  152. }

  153. 

  154. // systemOauthToken 向支付宝发送请求

  155. func systemOauthToken(ctx context.Context, appId string, privateKey *rsa.PrivateKey, bm gopay.BodyMap, method string, isProd bool, signType, appAuthToken string) (bs []byte, err error) {

  156. 	bm.Set("app_id", appId)

  157. 	bm.Set("method", method)

  158. 	bm.Set("format", "JSON")

  159. 	bm.Set("charset", "utf-8")

  160. 	if signType == gopay.NULL {

  161. 		bm.Set("sign_type", RSA2)

  162. 	} else {

  163. 		bm.Set("sign_type", signType)

  164. 	}

  165. 	bm.Set("timestamp", time.Now().Format(xtime.TimeLayout))

  166. 	bm.Set("version", "1.0")

  167. 	if appAuthToken != gopay.NULL {

  168. 		bm.Set("app_auth_token", appAuthToken)

  169. 	}

  170. 	var (

  171. 		sign    string

  172. 		baseUrl = baseUrlUtf8

  173. 	)

  174. 	if sign, err = GetRsaSign(bm, bm.GetString("sign_type"), privateKey); err != nil {

  175. 		return nil, err

  176. 	}

  177. 	bm.Set("sign", sign)

  178. 	if !isProd {

  179. 		baseUrl = sandboxBaseUrlUtf8

  180. 	}

  181. 	_, bs, err = xhttp.NewClient().Req(xhttp.TypeFormData).Post(baseUrl).SendString(bm.EncodeURLParams()).EndBytes(ctx)

  182. 	if err != nil {

  183. 		return nil, err

  184. 	}

  185. 	return bs, nil

  186. }

  187. 

  188. // monitor.heartbeat.syn(验签接口)

  189. // appId:应用ID

  190. // privateKey:应用私钥,支持PKCS1和PKCS8

  191. // signType:签名方式 alipay.RSA 或 alipay.RSA2,默认 RSA2

  192. // bizContent:验签时该参数不做任何处理,{任意值},此参数具体看文档

  193. // 文档:https://opendocs.alipay.com/apis/api_9/monitor.heartbeat.syn

  194. func MonitorHeartbeatSyn(ctx context.Context, appId string, privateKey, signType, bizContent string) (aliRsp *MonitorHeartbeatSynResponse, err error) {

  195. 	key := xrsa.FormatAlipayPrivateKey(privateKey)

  196. 	priKey, err := xpem.DecodePrivateKey([]byte(key))

  197. 	if err != nil {

  198. 		return nil, err

  199. 	}

  200. 	var bs []byte

  201. 	bm := make(gopay.BodyMap)

  202. 	bm.Set("biz_content", bizContent)

  203. 	bm.Set("app_id", appId)

  204. 	bm.Set("method", "monitor.heartbeat.syn")

  205. 	bm.Set("format", "JSON")

  206. 	bm.Set("charset", "utf-8")

  207. 	if signType == gopay.NULL {

  208. 		bm.Set("sign_type", RSA2)

  209. 	} else {

  210. 		bm.Set("sign_type", signType)

  211. 	}

  212. 	bm.Set("timestamp", time.Now().Format(xtime.TimeLayout))

  213. 	bm.Set("version", "1.0")

  214. 

  215. 	sign, err := GetRsaSign(bm, bm.GetString("sign_type"), priKey)

  216. 	if err != nil {

  217. 		return nil, err

  218. 	}

  219. 	bm.Set("sign", sign)

  220. 

  221. 	_, bs, err = xhttp.NewClient().Req(xhttp.TypeFormData).Post(baseUrlUtf8).SendString(bm.EncodeURLParams()).EndBytes(ctx)

  222. 	if err != nil {

  223. 		return nil, err

  224. 	}

  225. 	aliRsp = new(MonitorHeartbeatSynResponse)

  226. 	if err = json.Unmarshal(bs, aliRsp); err != nil || aliRsp.Response == nil {

  227. 		return nil, fmt.Errorf("[%w], bytes: %s", gopay.UnmarshalErr, string(bs))

  228. 	}

  229. 	if err = bizErrCheck(aliRsp.Response.ErrorResponse); err != nil {

  230. 		return aliRsp, err

  231. 	}

  232. 	return aliRsp, nil

  233. }