/// <summary> /// 获取返回时的签名验证结果 /// </summary> /// <param name="inputPara">通知返回参数数组</param> /// <param name="sign">对比的签名结果</param> /// <returns>签名验证结果</returns> private bool GetSignVeryfy(SortedDictionary <string, string> inputPara, string sign, IGlobalAlipaySettings alipaySettings) { //过滤空值、sign与sign_type参数 var sPara = inputPara.FilterPara(); //获取待签名字符串 var preSignStr = sPara.CreateLinkString(); //获得签名验证结果 var isSgin = false; if (string.IsNullOrEmpty(sign)) { return(false); } switch (alipaySettings.SignType) { case "MD5": isSgin = Extension.Extension.Verify(preSignStr, sign, alipaySettings.Key, alipaySettings.CharSet); break; default: break; } return(isSgin); }
/// <summary> /// 验证消息是否是支付宝发出的消息 /// </summary> /// <param name="inputPara">通知返回参数数组</param> /// <param name="sign">支付宝生成的签名结果</param> /// <returns>验证结果</returns> public bool VerifyReturn(SortedDictionary <string, string> inputPara, string sign, IGlobalAlipaySettings alipaySettings) { //获取返回时的签名验证结果 var isSign = GetSignVeryfy(inputPara, sign, alipaySettings); return(isSign); }
/// <summary> /// 获取是否是支付宝服务器发来的请求的验证结果 /// </summary> /// <param name="notifyId">通知验证ID</param> /// <returns>验证结果</returns> private string GetResponseTxt(string notifyId, IGlobalAlipaySettings alipaySettings) { var veryfyUrl = $"{Https_veryfy_url}partner={alipaySettings.Partner}¬ify_id={notifyId}"; //获取远程服务器ATN结果,验证是否是支付宝服务器发来的请求 var responseTxt = Get_Http(veryfyUrl, 120000); return(responseTxt); }
/// <summary> /// 国际支付宝支付配置 /// </summary> /// <param name="logAction"></param> /// <param name="iocManager"></param> /// <param name="config"></param> /// <param name="settingManager"></param> /// <returns></returns> private static async Task <IGlobalAlipaySettings> GlobalAlipayConfig(Action <string, string> logAction, IIocManager iocManager, IConfigurationRoot config, ISettingManager settingManager) { #region 支付宝支付 IGlobalAlipaySettings alipaySettings = null; if (Convert.ToBoolean(await settingManager.GetSettingValueAsync(AppSettings.GlobalAliPayManagement.IsActive))) { alipaySettings = new GlobalAlipaySettings { Key = await settingManager.GetSettingValueAsync(AppSettings.GlobalAliPayManagement.Key), Partner = await settingManager.GetSettingValueAsync(AppSettings.GlobalAliPayManagement.Partner), Gatewayurl = await settingManager.GetSettingValueAsync(AppSettings.GlobalAliPayManagement.Gatewayurl), Notify = await settingManager.GetSettingValueAsync(AppSettings.GlobalAliPayManagement.Notify), ReturnUrl = await settingManager.GetSettingValueAsync(AppSettings.GlobalAliPayManagement.ReturnUrl), Currency = await settingManager.GetSettingValueAsync(AppSettings.GlobalAliPayManagement.Currency), }; var splitFundSettingsString = await settingManager.GetSettingValueAsync(AppSettings.GlobalAliPayManagement.SplitFundSettings); if (!splitFundSettingsString.IsNullOrWhiteSpace()) { alipaySettings.SplitFundInfo = JsonConvert.DeserializeObject <List <SplitFundSettingInfoDto> >(splitFundSettingsString); } } else if (!config["GlobalAlipay:IsEnabled"].IsNullOrWhiteSpace() && Convert.ToBoolean(config["Alipay:IsEnabled"])) { alipaySettings = new GlobalAlipaySettings { Key = config["GlobalAlipay:Key"], Partner = config["GlobalAlipay:Partner"], Gatewayurl = config["GlobalAlipay:Gatewayurl"], Notify = config["GlobalAlipay:Notify"], ReturnUrl = config["GlobalAlipay:ReturnUrl"], Currency = config["GlobalAlipay:Currency"], }; var splitFundSettingsString = config["GlobalAlipay:SplitFundInfo"]; if (!splitFundSettingsString.IsNullOrWhiteSpace()) { alipaySettings.SplitFundInfo = JsonConvert.DeserializeObject <List <SplitFundSettingInfoDto> >(splitFundSettingsString); } } if (alipaySettings != null) { GlobalAlipayBuilder.Create() .WithLoggerAction(logAction) .RegisterGetPayConfigFunc(() => alipaySettings).Build(); //注册支付宝支付API if (!iocManager.IsRegistered <IGlobalAlipayAppService>()) { iocManager.Register <IGlobalAlipayAppService, GlobalAlipayAppService>(DependencyLifeStyle.Transient); } } #endregion return(alipaySettings); }
/// <summary> /// 生成要请求给支付宝的参数数组 /// </summary> /// <param name="sParaTemp">请求前的参数数组</param> /// <param name="alipaySettings"></param> /// <returns>要请求的参数数组字符串</returns> public static string BuildRequestParaToString(this SortedDictionary <string, string> sParaTemp, IGlobalAlipaySettings alipaySettings) { //待签名请求参数数组 var sPara = BuildRequestPara(sParaTemp, alipaySettings); //把参数组中所有元素,按照“参数=参数值”的模式用“&”字符拼接成字符串,并对参数值做urlencode var strRequestData = CreateLinkStringUrlencode(sPara); return(strRequestData); }
/// <summary> /// 生成要请求给支付宝的参数数组 /// </summary> /// <param name="sParaTemp">请求前的参数数组</param> /// <param name="alipaySettings"></param> /// <returns>要请求的参数数组</returns> public static Dictionary <string, string> BuildRequestPara(this SortedDictionary <string, string> sParaTemp, IGlobalAlipaySettings alipaySettings) { //待签名请求参数数组 //签名结果 var mysign = ""; //过滤签名参数数组 var sPara = FilterPara(sParaTemp); //获得签名结果 mysign = BuildRequestMysign(sPara, alipaySettings); //签名结果与签名方式加入请求提交参数组中 sPara.Add("sign", mysign); sPara.Add("sign_type", alipaySettings.SignType); return(sPara); }
/// <summary> /// 生成请求时的签名 /// </summary> /// <param name="sPara">请求给支付宝的参数数组</param> /// <param name="alipaySettings"></param> /// <returns>签名结果</returns> private static string BuildRequestMysign(this Dictionary <string, string> sPara, IGlobalAlipaySettings alipaySettings) { //把数组所有元素,按照“参数=参数值”的模式用“&”字符拼接成字符串 var prestr = sPara.CreateLinkString(); //把最终的字符串签名,获得签名结果 var mysign = ""; switch (alipaySettings.SignType) { case "MD5": mysign = Sign(prestr, alipaySettings.Key, alipaySettings.CharSet); break; default: mysign = ""; break; } return(mysign); }
/// <summary> /// 验证消息是否是支付宝发出的合法消息 /// </summary> /// <param name="inputPara">通知返回参数数组</param> /// <param name="notifyId">通知验证ID</param> /// <param name="sign">支付宝生成的签名结果</param> /// <param name="alipaySettings"></param> /// <returns>验证结果</returns> public bool Verify(SortedDictionary <string, string> inputPara, string notifyId, string sign, IGlobalAlipaySettings alipaySettings) { //获取返回时的签名验证结果 var isSign = GetSignVeryfy(inputPara, sign, alipaySettings); //获取是否是支付宝服务器发来的请求的验证结果 var responseTxt = "false"; if (!string.IsNullOrEmpty(notifyId)) { responseTxt = GetResponseTxt(notifyId, alipaySettings); } //写日志记录(若要调试,请取消下面两行注释) var sWord = "responseTxt=" + responseTxt + "\n isSign=" + isSign + "\n 返回的参数:" + GetPreSignStr(inputPara) + "\n "; GlobalAlipayAppService.LoggerAction("Debug", sWord); //判断responsetTxt是否为true,isSign是否为true //responsetTxt的结果不是true,与服务器设置问题、合作身份者ID、notify_id一分钟失效有关 //isSign不是true,与安全校验码、请求时的参数格式(如:带自定义参数等)、编码格式有关 return(responseTxt == "true" && isSign); }