/// <summary>
/// (1)接口参数加密(基础加密)
/// 通过签名匹配校验
/// </summary>
/// <returns></returns>
public HttpResponseMessage GetUserBySign(string mobile, string appKey, string sign)
{
var dic = new SortedList <string, string>();
dic.Add("mobile", mobile);
dic.Add("appKey", appKey);
var currentSign = SecurifyHelper.CreateSign(dic, appKey);
if (currentSign != sign)
{
return(ObjectExtends.ToHttpRspMsgError("非法调用"));
}
var user = GetUserObj();
return(user.ToHttpRspMsgSuccess());
}
/// <summary>
/// (2)通过以上方式+时效性
/// </summary>
/// <param name="mobile"></param>
/// <param name="timestamp"></param>
/// <param name="appKey"></param>
/// <param name="sign"></param>
/// <returns></returns>
public HttpResponseMessage GetUserBytimestamp(string mobile, long timestamp, string appKey, string sign)
{
var dic = new SortedList <string, string>();
dic.Add("mobile", mobile);
dic.Add("timestamp", timestamp.ToString());
dic.Add("appKey", appKey);
var currentSign = SecurifyHelper.CreateSign(dic, appKey);
//判断签名是否一致
if (currentSign != sign)
{
return(ObjectExtends.ToHttpRspMsgError("非法请求"));
}
//判断是否过期,30s有效期
if (new DateTime(timestamp).AddSeconds(30) < DateTime.Now)
{
return(ObjectExtends.ToHttpRspMsgError("无效请求"));
}
var user = GetUserObj();
return(user.ToHttpRspMsgSuccess());
}