protected void Query_Assertion()
{
MBOSSClass mboss = new MBOSSClass();
SPInfoManager spInfo = new SPInfoManager();
int Result = ErrorDefinition.IError_Result_UnknowError_Code;
string ErrMsg = "";
string UserName = "";
string privateKeyPassword = "";
string CAP01002_XML = Request["SSORequestXML"];
string DigitalSign = MBOSSClass.GetNewXML(CAP01002_XML, "DigitalSign");
string DigitalSignValue = MBOSSClass.GetValueFromXML(CAP01002_XML, "DigitalSign");
//从中取出RedirectURL
string RedirectURL = MBOSSClass.GetValueFromXML(CAP01002_XML, "RedirectURL");
//验证 CAP01002_XM 合法性
byte[] PublicKeyFile = new byte[0];
try
{
Object SPData = spInfo.GetSPData(this.Context, ""); //SPDataCacheName 这里要去问tongbo
PublicKeyFile = spInfo.GetCAInfo(SPID, 0, SPData, out UserName, out privateKeyPassword);
}
catch (Exception err)
{
//验证签名未通过
ErrMsg = err.Message;
Result = -20001;
Response.Redirect(RedirectURL, true);
return;
}
Result = mboss.VerifySignByPublicKey(DigitalSign, PublicKeyFile, DigitalSignValue, out ErrMsg);
if (Result != 0)
{
// 签名校验未通过,直接将请求原路打回
Response.Redirect(RedirectURL, true);
return;
}
}
/// <summary>
/// ����ticket��ʡua��ѯ���Բ����н���
/// </summary>
/// <param name="UATicket"></param>
/// <param name="privateKeyFile"></param>
/// <param name="UATicket"></param>
/// <param name="PublicKeyFile"></param>
/// <param name="UATicketXML"></param>
/// <param name="ErrMsg"></param>
/// <returns></returns>
public int SendUATicket(string UAProvinceID,string SPID, string UATicket, string URL, System.Web.HttpContext SpecificContext,
string SPDataCacheName, string TransactionID, out BilByCompilingResult bbcResult, out string UATicketXML, out string ErrMsg)
{
UATicketXML = "";
ErrMsg = "";
int Result = -19999;
bbcResult = new BilByCompilingResult();
bbcResult.Result = -19999;
StringBuilder strLog = new StringBuilder();
#region
byte[] privateKeyFile = new byte[0];
string privateKeyPassword = "";
string UserName = "";
byte[] PublicKeyFile = new byte[0];
SPInfoManager spInfo = new SPInfoManager();
try
{
Object SPData = spInfo.GetSPData(SpecificContext, SPDataCacheName);
PublicKeyFile=spInfo.GetCAInfo(SPID, 0, SPData, out UserName, out privateKeyPassword);
privateKeyFile = spInfo.GetCAInfo("35999991", 1, SPData, out UserName, out privateKeyPassword);
}
catch (Exception err)
{
ErrMsg = err.Message;
Result = -20001;
return Result;
}
#endregion
try
{
//ƴ�ղ�ѯ���Ե�xml
Result = GetUATicketXML(UAProvinceID, UATicket, privateKeyFile, privateKeyPassword, TransactionID, out UATicketXML, out ErrMsg);
//log("���͵�:" + UATicketXML);
strLog.AppendFormat("���Բ�ѯ������:{0}\r\n", UATicketXML);
if (Result != 0)
return Result;
/******************************************/
string NewXML = "";
try
{
//���Բ�ѯ
UaService u = new UaService();
u.Url = URL;// System.Configuration.ConfigurationManager.AppSettings["GetInfoByTicketURL"];
NewXML = u.SelectAssertion(UATicketXML);
//log("���ܣ�" + NewXML);
strLog.AppendFormat("���Բ�ѯ���ر��ģ�{0}\r\n", NewXML);
}
catch (System.Exception ex)
{
//log("����" + ex.Message);
strLog.AppendFormat("�쳣:{0}\r\n", ex.Message);
}
string DigitalSign = GetNewXML(NewXML, "DigitalSign");
string OldXML = GetValueFromXML(NewXML, "DigitalSign");
//��֤
Result = VerifySignByPublicKey(DigitalSign, PublicKeyFile, OldXML, out ErrMsg);
//log("��֤ǩ����" + Result + "==" + ErrMsg);
strLog.AppendFormat("ǩ����֤���:{0},{1}\r\n", Result, ErrMsg);
if (Result != 0)
return Result;
//����
bbcResult = BilByCompiling(DigitalSign);
ErrMsg = bbcResult.ErrMsg;
Result = bbcResult.Result;
if (Result != 0)
return Result;
}
catch (Exception err)
{
ErrMsg = err.Message;
Result = -20009;
log(Result + "--" + ErrMsg);
log(err.StackTrace);
return Result;
}
finally
{
log(strLog.ToString());
}
return Result;
}
public int AuthenSelectArddess(string SPID,string ProvinceID, System.Web.HttpContext SpecificContext, string SPDataCacheName, out SSOAddressResp SSOAddress, out string ErrMsg)
{
int Result = 0;
string ResultXML = "";
ErrMsg = "";
SSOAddress = new SSOAddressResp();
SSOAddress.AssertionAddress = "";
SSOAddress.SSOAddress = "";
XmlDocument xmldoc;
XmlNode xmlnode;
XmlElement xmlelem;
XmlElement xmlelem2;
XmlElement xmlelem3;
XmlElement xmlelem4;
XmlText xmltext;
xmldoc = new XmlDocument();
//����XML����������
#region
byte[] privateKeyFile=new byte[0];
string privateKeyPassword = "";
string UserName = "";
SPInfoManager spInfo = new SPInfoManager();
try
{
Object SPData = spInfo.GetSPData(SpecificContext, SPDataCacheName);
privateKeyFile = spInfo.GetCAInfo(SPID, 1, SPData, out UserName, out privateKeyPassword);
}catch(Exception err)
{
ErrMsg = err.Message;
Result = -20001;
}
#endregion
#region ����xml
xmlnode = xmldoc.CreateNode(XmlNodeType.XmlDeclaration, "", "");
xmldoc.AppendChild(xmlnode);
//����һ����Ԫ��
xmlelem = xmldoc.CreateElement("", "CAPRoot", "");
xmldoc.AppendChild(xmlelem);
#region �Ự����
///////////////////////////////////////////
xmlelem2 = xmldoc.CreateElement("SessionHeader");
xmlelem2 = xmldoc.CreateElement("", "SessionHeader", "");
xmldoc.ChildNodes.Item(1).AppendChild(xmlelem2);
xmlelem3 = xmldoc.CreateElement("ServiceCode");
xmlelem3 = xmldoc.CreateElement("", "ServiceCode", "");
xmltext = xmldoc.CreateTextNode(ServiceCode);
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
xmlelem3 = xmldoc.CreateElement("Version");
xmlelem3 = xmldoc.CreateElement("", "Version", "");
xmltext = xmldoc.CreateTextNode(Version);
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
xmlelem3 = xmldoc.CreateElement("ActionCode");
xmlelem3 = xmldoc.CreateElement("", "ActionCode", "");
xmltext = xmldoc.CreateTextNode(ActionCode);
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
xmlelem3 = xmldoc.CreateElement("TransactionID");
xmlelem3 = xmldoc.CreateElement("", "TransactionID", "");
xmltext = xmldoc.CreateTextNode(TransactionID);
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
xmlelem3 = xmldoc.CreateElement("SrcSysID");
xmlelem3 = xmldoc.CreateElement("", "SrcSysID", "");
xmltext = xmldoc.CreateTextNode(SrcSysID);
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
//����(ϵͳ/ƽ̨)ǩ��
xmlelem3 = xmldoc.CreateElement("DigitalSign");
xmlelem3 = xmldoc.CreateElement("", "DigitalSign", "");
xmlelem2.AppendChild(xmlelem3);
//��ط�(ϵͳ/ƽ̨)����
xmlelem3 = xmldoc.CreateElement("DstSysID");
xmlelem3 = xmldoc.CreateElement("", "DstSysID", "");
xmltext = xmldoc.CreateTextNode(DstSysID);
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
xmlelem3 = xmldoc.CreateElement("ReqTime");
xmlelem3 = xmldoc.CreateElement("", "ReqTime", "");
xmltext = xmldoc.CreateTextNode(ReqTime);
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
xmlelem3 = xmldoc.CreateElement("Request");
xmlelem3 = xmldoc.CreateElement("", "Request", "");
xmlelem2.AppendChild(xmlelem3);
if (SSQReqLists.Length == 0)
{
xmlelem3 = xmldoc.CreateElement("Request");
xmlelem3 = xmldoc.CreateElement("", "Request", "");
xmlelem2.AppendChild(xmlelem3);
xmlelem4 = xmldoc.CreateElement("ReqType");
xmlelem4 = xmldoc.CreateElement("", "ReqType", "");
xmlelem3.AppendChild(xmlelem4);
xmlelem4 = xmldoc.CreateElement("ReqCode");
xmlelem4 = xmldoc.CreateElement("", "ReqCode", "");
xmlelem3.AppendChild(xmlelem4);
xmlelem4 = xmldoc.CreateElement("ReqDesc");
xmlelem4 = xmldoc.CreateElement("", "ReqDesc", "");
xmlelem3.AppendChild(xmlelem4);
}
for (int i = 0; i < SSQReqLists.Length; i++)
{
SSQReqList ssqReq = new SSQReqList();
ssqReq = SSQReqLists[i];
xmlelem4 = xmldoc.CreateElement("ReqType");
xmlelem4 = xmldoc.CreateElement("", "ReqType", "");
xmltext = xmldoc.CreateTextNode(ssqReq.ReqType);
xmlelem4.AppendChild(xmltext);
xmlelem3.AppendChild(xmlelem4);
xmlelem4 = xmldoc.CreateElement("ReqCode");
xmlelem4 = xmldoc.CreateElement("", "ReqCode", "");
xmltext = xmldoc.CreateTextNode(ssqReq.ReqCode);
xmlelem4.AppendChild(xmltext);
xmlelem3.AppendChild(xmlelem4);
xmlelem4 = xmldoc.CreateElement("ReqDesc");
xmlelem4 = xmldoc.CreateElement("", "ReqDesc", "");
xmltext = xmldoc.CreateTextNode(ssqReq.ReqDesc);
xmlelem4.AppendChild(xmltext);
xmlelem3.AppendChild(xmlelem4);
}
#endregion
#region ҵ�����
//////////////////////////////////////
xmlelem2 = xmldoc.CreateElement("SessionBody");
xmlelem2 = xmldoc.CreateElement("", "SessionBody", "");
xmldoc.ChildNodes.Item(1).AppendChild(xmlelem2);
xmlelem3 = xmldoc.CreateElement("SPSSOAuthReq");
xmlelem3 = xmldoc.CreateElement("", "SPSSOAuthReq", "");
xmlelem2.AppendChild(xmlelem3);
// xmldoc.ChildNodes.Item(2).AppendChild(xmlelem2);
xmlelem4 = xmldoc.CreateElement("ProvinceID");
xmlelem4 = xmldoc.CreateElement("", "ProvinceID", "");
xmltext = xmldoc.CreateTextNode(ProvinceID);
xmlelem4.AppendChild(xmltext);
xmlelem3.AppendChild(xmlelem4);
#endregion
ResultXML = xmldoc.OuterXml;
ResultXML = ResultXML.Substring(ResultXML.IndexOf("<CAPRoot>"));
ResultXML = ResultXML.Replace("<DigitalSign />", "<DigitalSign/>");
Result = AddDigitalSignXML(ResultXML, privateKeyFile, privateKeyPassword, out ResultXML, out ErrMsg);
#endregion
try
{
#region ���͵��ͻ���
UaService u = new UaService();
u.Url = System.Configuration.ConfigurationManager.AppSettings["GetInfoByTicketURL"];
string req = "";
req = u.authReq(ResultXML);
#endregion
#region
SSOAddress.SSOAddress = GetValueFromXML(req, "SSOAddress") == null ? "" : GetValueFromXML(req, "SSOAddress");
SSOAddress.AssertionAddress = GetValueFromXML(req, "AssertionAddress") == null ? "" : GetValueFromXML(req, "AssertionAddress");
#endregion
}
catch (Exception err)
{
ErrMsg = err.Message;
Result = -20001;
}
finally
{
#region
#endregion
}
return Result;
}
/// <summary>
/// CAP01003 ҵ��ϵͳSSO��֤����,���ɵ�SSO��֤��xml�ַ���
/// </summary>
/// <param name="ProvinceID">ProvinceID</param>
/// <param name="SPID">SPID</param>
/// <param name="RedirectURL">�ض���URL</param>
/// <param name="AcceptAccountTypes">�ɽ��յ��ʺ������б�</param>
/// <param name="privateKeyFile">˽Կ</param>
/// <param name="privateKeyPassword">˽Կ����</param>
/// <param name="ResultXML">���ص�xml</param>
/// <param name="ErrMsg">���ص���Ϣ</param>
/// <returns>����ֵ</returns>
public int SSOAuthanXML(string ProvinceID,string SPID,string RedirectURL, AcceptAccountTypeList[] AcceptAccountTypes, System.Web.HttpContext SpecificContext, string SPDataCacheName,
out string ResultXML, out string ErrMsg, out string TransactionID)
{
ResultXML = "";
ErrMsg = "";
int Result = 0;
TransactionID = "";
XmlDocument xmldoc;
XmlNode xmlnode;
XmlElement xmlelem;
XmlElement xmlelem2;
XmlElement xmlelem3;
XmlElement xmlelem4;
XmlElement xmlelem5;
XmlText xmltext;
SPInfoManager spInfo = new SPInfoManager();
byte[] privateKeyFile;
string UserName = "";
string privateKeyPassword = "";
try
{
Object SPData = spInfo.GetSPData(SpecificContext, SPDataCacheName);
privateKeyFile = spInfo.GetCAInfo(SPID, 1, SPData, out UserName, out privateKeyPassword);
}
catch (Exception err)
{
Result = -20005;
ErrMsg = err.Message;
return Result;
}
xmldoc = new XmlDocument();
//����XML����������
xmlnode = xmldoc.CreateNode(XmlNodeType.XmlDeclaration, "", "");
xmldoc.AppendChild(xmlnode);
//����һ����Ԫ��
xmlelem = xmldoc.CreateElement("", "CAPRoot", "");
xmldoc.AppendChild(xmlelem);
#region �Ự����
///////////////////////////////////////////
xmlelem2 = xmldoc.CreateElement("SessionHeader");
xmlelem2 = xmldoc.CreateElement("", "SessionHeader", "");
xmldoc.ChildNodes.Item(1).AppendChild(xmlelem2);
xmlelem3 = xmldoc.CreateElement("ServiceCode");
xmlelem3 = xmldoc.CreateElement("", "ServiceCode", "");
xmltext = xmldoc.CreateTextNode("CAP01003");
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
xmlelem3 = xmldoc.CreateElement("Version");
xmlelem3 = xmldoc.CreateElement("", "Version", "");
xmltext = xmldoc.CreateTextNode("mbossUacVersion1");
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
xmlelem3 = xmldoc.CreateElement("ActionCode");
xmlelem3 = xmldoc.CreateElement("", "ActionCode", "");
xmltext = xmldoc.CreateTextNode("0");
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
// ��2λUAƽ̨������롿+��3λҵ��ƽ̨������롿+��8λ���ڱ��롿+��10λ��ˮ�š�
//TransactionID = "35000";
//TransactionID += DateTime.Now.ToString("yyyyMMdd");
//Random r = new Random(Guid.NewGuid().GetHashCode());
//TransactionID += r.Next(10000000, 99999999).ToString();
//r = new Random(Guid.NewGuid().GetHashCode());
//TransactionID += r.Next(10, 99).ToString();
TransactionID = "35000" + CommonBizRules.CreateTransactionID();
//12392652948909910320090
xmlelem3 = xmldoc.CreateElement("TransactionID");
xmlelem3 = xmldoc.CreateElement("", "TransactionID", "");
xmltext = xmldoc.CreateTextNode(TransactionID);
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
xmlelem3 = xmldoc.CreateElement("SrcSysID");
xmlelem3 = xmldoc.CreateElement("", "SrcSysID", "");
xmltext = xmldoc.CreateTextNode("35000");
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
//����(ϵͳ/ƽ̨)ǩ��
xmlelem3 = xmldoc.CreateElement("DigitalSign");
xmlelem3 = xmldoc.CreateElement("", "DigitalSign", "");
xmlelem2.AppendChild(xmlelem3);
//��ط�(ϵͳ/ƽ̨)����
xmlelem3 = xmldoc.CreateElement("DstSysID");
xmlelem3 = xmldoc.CreateElement("", "DstSysID", "");
xmltext = xmldoc.CreateTextNode(ProvinceID);
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
ReqTime = DateTime.Now.ToString("yyyyMMddHHmmss") ;
xmlelem3 = xmldoc.CreateElement("ReqTime");
xmlelem3 = xmldoc.CreateElement("", "ReqTime", "");
xmltext = xmldoc.CreateTextNode(ReqTime);
xmlelem3.AppendChild(xmltext);
xmlelem2.AppendChild(xmlelem3);
xmlelem3 = xmldoc.CreateElement("Request");
xmlelem3 = xmldoc.CreateElement("", "Request", "");
xmlelem2.AppendChild(xmlelem3);
if (SSQReqLists.Length == 0)
{
xmlelem4 = xmldoc.CreateElement("ReqType");
xmlelem4 = xmldoc.CreateElement("", "ReqType", "");
xmlelem3.AppendChild(xmlelem4);
xmlelem4 = xmldoc.CreateElement("ReqCode");
xmlelem4 = xmldoc.CreateElement("", "ReqCode", "");
xmlelem3.AppendChild(xmlelem4);
xmlelem4 = xmldoc.CreateElement("ReqDesc");
xmlelem4 = xmldoc.CreateElement("", "ReqDesc", "");
xmlelem3.AppendChild(xmlelem4);
}
for (int i = 0; i < SSQReqLists.Length; i++)
{
SSQReqList ssqReq = new SSQReqList();
ssqReq = SSQReqLists[i];
xmlelem4 = xmldoc.CreateElement("ReqType");
xmlelem4 = xmldoc.CreateElement("", "ReqType", "");
xmltext = xmldoc.CreateTextNode(ssqReq.ReqType);
xmlelem4.AppendChild(xmltext);
xmlelem3.AppendChild(xmlelem4);
xmlelem4 = xmldoc.CreateElement("ReqCode");
xmlelem4 = xmldoc.CreateElement("", "ReqCode", "");
xmltext = xmldoc.CreateTextNode(ssqReq.ReqCode);
xmlelem4.AppendChild(xmltext);
xmlelem3.AppendChild(xmlelem4);
xmlelem4 = xmldoc.CreateElement("ReqDesc");
xmlelem4 = xmldoc.CreateElement("", "ReqDesc", "");
xmltext = xmldoc.CreateTextNode(ssqReq.ReqDesc);
xmlelem4.AppendChild(xmltext);
xmlelem3.AppendChild(xmlelem4);
}
#endregion
#region ҵ�����
//////////////////////////////////////
xmlelem2 = xmldoc.CreateElement("SessionBody");
xmlelem2 = xmldoc.CreateElement("", "SessionBody", "");
xmldoc.ChildNodes.Item(1).AppendChild(xmlelem2);
xmlelem3 = xmldoc.CreateElement("SPSSOAuthReq");
xmlelem3 = xmldoc.CreateElement("", "SPSSOAuthReq", "");
xmlelem2.AppendChild(xmlelem3);
// xmldoc.ChildNodes.Item(2).AppendChild(xmlelem2);
xmlelem4 = xmldoc.CreateElement("RedirectURL");
xmlelem4 = xmldoc.CreateElement("", "RedirectURL", "");
xmltext = xmldoc.CreateTextNode(RedirectURL);
xmlelem4.AppendChild(xmltext);
xmlelem3.AppendChild(xmlelem4);
xmlelem4 = xmldoc.CreateElement("AcceptAccountTypeList");
xmlelem4 = xmldoc.CreateElement("", "AcceptAccountTypeList", "");
xmlelem3.AppendChild(xmlelem4);
xmlelem5 = xmldoc.CreateElement("AcceptAccountType");
xmlelem5 = xmldoc.CreateElement("", "AcceptAccountType", "");
for (int i = 0; i < AcceptAccountTypes.Length; i++)
{
AcceptAccountTypeList AcceptAccountType = new AcceptAccountTypeList();
AcceptAccountType = AcceptAccountTypes[i];
xmlelem5 = xmldoc.CreateElement("AcceptAccountType");
xmlelem5 = xmldoc.CreateElement("", "AcceptAccountType", "");
xmltext = xmldoc.CreateTextNode(AcceptAccountType.AcceptAccountType);
xmlelem5.AppendChild(xmltext);
xmlelem4.AppendChild(xmlelem5);
}
#endregion
ResultXML = xmldoc.OuterXml;
ResultXML = ResultXML.Substring(ResultXML.IndexOf("<CAPRoot>"));
ResultXML = ResultXML.Replace("<DigitalSign />", "<DigitalSign/>");
Result = AddDigitalSignXML(ResultXML, privateKeyFile, privateKeyPassword, out ResultXML, out ErrMsg);
return Result;
}
protected void Page_Load(object sender, EventArgs e)
{
int Result = ErrorDefinition.IError_Result_UnknowError_Code;
string ErrMsg = "";
string CookieName = System.Configuration.ConfigurationManager.AppSettings["CookieName"];
string token = PageUtility.GetCookie(CookieName);
string ProvinceID = "";
string CustID = "";
string RealName = "";
string UserName = "";
string NickName = "";
string OuterID = "";
string CustType = "";
string AuthenName = "";
string AuthenType = "";
if (String.IsNullOrEmpty(token))
{
Response.Redirect("../../ErrorInfo.aspx?Result=-19999&ErrorInfo=请先登录积分商城", true);
return;
}
UserToken UT = new UserToken();
string key = System.Configuration.ConfigurationManager.AppSettings["ScoreSystemSecret"];
Result = UT.ParseScoreUserToken(token, key, out ProvinceID, out CustID, out RealName, out UserName, out NickName, out OuterID, out CustType, out AuthenName, out AuthenType, out ErrMsg);
MBOSSClass mboss = new MBOSSClass();
SPInfoManager spInfo = new SPInfoManager();
string privateKeyPassword = "";
string CAP01002_XML = Request["SSORequestXML"];
string DigitalSign = MBOSSClass.GetNewXML(CAP01002_XML, "DigitalSign");
string DigitalSignValue = MBOSSClass.GetValueFromXML(CAP01002_XML, "DigitalSign");
//从中取出RedirectURL
string RedirectURL = MBOSSClass.GetValueFromXML(CAP01002_XML, "RedirectURL");
//验证 CAP01002_XM 合法性
byte[] PublicKeyFile = new byte[0];
try
{
Object SPData = spInfo.GetSPData(this.Context, ""); //SPDataCacheName 这里要去问tongbo
PublicKeyFile = spInfo.GetCAInfo(SPID, 0, SPData, out UserName, out privateKeyPassword);
}
catch (Exception err)
{
//验证签名未通过
ErrMsg = err.Message;
Result = -20001;
Response.Redirect(RedirectURL, true);
return;
}
Result = mboss.VerifySignByPublicKey(DigitalSign, PublicKeyFile, DigitalSignValue, out ErrMsg);
if (Result != 0)
{
// 签名校验未通过,直接将请求原路打回
Response.Redirect(RedirectURL, true);
return;
}
}
protected void Page_Load(object sender, EventArgs e)
{
log("step1");
int Result = ErrorDefinition.IError_Result_UnknowError_Code;
log("step2");
if (CommonUtility.IsParameterExist("SSORequestXML", this.Page)) // 带着token过来的是网厅的认证请求
{
#region 隐藏
MBOSSClass mboss = new MBOSSClass();
SPInfoManager spInfo = new SPInfoManager();
string SPID = "35999991";
string UAProvinceID = "35";
string SourceType = "";
string uaURL = "";
string privateKeyPassword = "";
string UserName = "";
string ErrMsg = "";
string CAP01002_XML = Request["SSORequestXML"];
string DigitalSign = MBOSSClass.GetNewXML(CAP01002_XML, "DigitalSign");
string DigitalSignValue = MBOSSClass.GetValueFromXML(CAP01002_XML, "DigitalSign");
//从中取出RedirectURL
string RedirectURL = MBOSSClass.GetValueFromXML(CAP01002_XML, "RedirectURL");
//验证 CAP01002_XM 合法性
byte[] PublicKeyFile = new byte[0];
try
{
Object SPData = spInfo.GetSPData(this.Context, ""); //SPDataCacheName 这里要去问tongbo
PublicKeyFile = spInfo.GetCAInfo(SPID, 0, SPData, out UserName, out privateKeyPassword);
}
catch (Exception err)
{
//验证签名未通过
ErrMsg = err.Message;
Result = -20001;
Response.Redirect(RedirectURL, true);
return;
}
Result = mboss.VerifySignByPublicKey(DigitalSign, PublicKeyFile, DigitalSignValue, out ErrMsg);
//<CAPRoot><SessionHeader><ServiceCode>CAP01003</ServiceCode><Version>mbossUacVersion1</Version><ActionCode>0</ActionCode><TransactionID>35000201109254969771818</TransactionID><SrcSysID>35000</SrcSysID><DigitalSign>302C02141DB53BC5D52562D69EFD959B32F6E10D4BF6421E02145983D67CC81B0F376CA688B39F6AD1896EA0E082</DigitalSign><DstSysID>18</DstSysID><ReqTime>20110925000030</ReqTime><Request><ReqType/><ReqCode/><ReqDesc/></Request></SessionHeader><SessionBody><SPSSOAuthReq><RedirectURL>http://Customer.besttone.com.cn/UserPortal/SSO/SelectAssertion.aspx</RedirectURL><AcceptAccountTypeList><AcceptAccountType>0000000</AcceptAccountType></AcceptAccountTypeList></SPSSOAuthReq></SessionBody></CAPRoot>
log("从网厅来:" + CAP01002_XML );
if (Result != 0)
{
// 签名校验未通过,直接将请求原路打回
Response.Redirect(RedirectURL, true);
return;
}
string sessionid = this.Page.Session.SessionID;
string globaltoken = Request.Cookies[sessionid].Value.ToString();
uaURL = RedirectURL;
if (globaltoken != null && !"".Equals(globaltoken)){
this.sendTicket2UA(uaURL);
}else{
this.Response.Redirect(uaURL);
}
#endregion
}
else
{
//不带token的是积分商城过来的认证请求
string direction = Request["Direction"];
string CookieName = System.Configuration.ConfigurationManager.AppSettings["CookieName"];
string key0 = System.Configuration.ConfigurationManager.AppSettings["ScoreSystemSecret"];
if (CommonUtility.IsParameterExist("Direction", this.Page))
{
#region 反向登录到集团网厅方向
string ProvinceID = Request["ProvinceID"];
if ("uam".Equals(direction))
{
//获取本地的token,如果没有token则返回到积分商城登录
//string token = Request.Cookies[CookieName].Value;
String token = PageUtility.GetCookie(CookieName);
if (String.IsNullOrEmpty(token))
Response.Redirect("http://www.ct10000.com");
string ProvinceID0 = ""; // 2013.01.23 添加
string CustID0 = "";
string RealName0 = "";
string UserName0 = "";
string NickName0 = "";
string OuterID0 = "";
string CustType0 = "";
string AuthenName0 = "";
string AuthenType0 = "";
string ErrMsg0 = "";
//解析token
UserToken UT0 = new UserToken();
// 2013.01.23 修改
//int Result0 = UT0.ParseUserToken(token, key0, out CustID0, out RealName0, out UserName0, out NickName0, out OuterID0, out CustType0, out AuthenName0, out AuthenType0, out ErrMsg0);
int Result0 = UT0.ParseScoreUserToken(token, key0, out ProvinceID0, out CustID0, out RealName0, out UserName0, out NickName0, out OuterID0, out CustType0, out AuthenName0, out AuthenType0, out ErrMsg0);
//日志
log(String.Format("【token解析结果:】Result:{0},ErrMsg:{1},AuthenName:{2},AuthenType:{3},CustID:{4},OuterID:{5},CustType:{6}", Result0, ErrMsg0, AuthenName0, AuthenType0, CustID0, OuterID0, CustType0));
if (Result0 == 0)
{
//生成ticket,反向单点登录要求ticket前面加上省id
//string sDate = DateTime.Now.ToString("yyyyMMddHHmmssfff");
//Random r = new Random();
//string ticket = ProvinceID + sDate + r.Next(10000, 99999).ToString();
string ticket = ProvinceID + CommonBizRules.CreateTicket();
//积分商城
SPID = "35000010";
//将ticket插入数据库
Result = CIPTicketManager.insertCIPTicket(ticket, SPID, CustID0, RealName0, NickName0, UserName0, OuterID0, "", AuthenName0, AuthenType0, out ErrMsg0);
log(String.Format("【ticket生成结果:{0}】Result:{1},ErrMsg:{2},ticket:{3}", DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss"), Result, ErrMsg0, ticket));
if (Result != 0)
{
this.Response.Redirect("http://www.ct10000.com");
}
string uamURL = System.Configuration.ConfigurationManager.AppSettings["UAMUrl"] + "?AccountIndex=" + ticket;
log(String.Format("【登录网厅:{0}】uamURL:{1}", DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss"), uamURL));
this.Response.Redirect(uamURL);
}
else
{
this.Response.Redirect("http://www.ct10000.com");
}
}
else
{
this.Response.Redirect("http://www.ct10000.com");
}
#endregion
}
else
{
if (!this.IsPostBack)
{
#region 积分商城直接登录
string SPTokenRequest = Request["SPTokenRequest"];
log(String.Format("【SPTokenRequest参数为:{1}】SPTokenRequest:{0}", SPTokenRequest, DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss")));
string key = System.Configuration.ConfigurationManager.AppSettings["ScoreSystemSecret"];
string JFLoginUrl = System.Configuration.ConfigurationManager.AppSettings["JFLoginUrl"];
//生成全局token写入cookie,该全局token为了将来网厅请求时候,查询该客户登陆状态用
UserToken UT = new UserToken();
ProvinceID = Request["ProvinceID"];
AuthenType = Request["AuthenType"];
AuthenName = Request["AuthenName"];
Password = Request["Password"];
ReturnURL = Request["ReturnURL"]; // 这个ReturnUrl 用来还给积分商城ticket用
AccountType = Request["AccountType"];
string RealName = "";
string UserName = "";
string NickName = "";
string CustType = "";
string CustID = "";
string ErrMsg = "";
string OutID = "";
string UserAccount = "";
string SPID = "";
//解析SPTokenRequest参数
int Resultjf = SSOClass.ParseJFLoginRequest(SPTokenRequest, this.Context, out SPID, out ProvinceID, out AuthenType, out AuthenName, out Password, out ReturnURL, out ErrMsg);
if (Resultjf != 0)
{
//日志
log(String.Format("【解析SPTokenRequest参数失败:{0}】Result:{1},ErrMsg:{2}", DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss"), Result, ErrMsg));
string err = System.Web.HttpUtility.UrlEncode("积分商城请求的token解密失败!ErrMsg=" + ErrMsg, Encoding.UTF8);
Response.Redirect(JFLoginUrl + "?Result=" + Resultjf + "&ErrMsg=" + err, true);
return;
}
//日志
log(String.Format("【解析SPTokenRequest参数成功:{0}】SPID:{1},ProvinceID:{2},AuthenType:{3},AuthenName:{4},ReturnURL:{5}",
DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss"), SPID, ProvinceID, AuthenType, AuthenName, ReturnURL));
string o_ProvinceID = "";
Result = BTForBusinessSystemInterfaceRules.UserAuthV2(SPID, AuthenName, AuthenType, Password, this.Context, ProvinceID, "", "",
out ErrMsg, out CustID, out UserAccount, out CustType, out OutID, out o_ProvinceID, out RealName, out UserName, out NickName);
//日志
log(String.Format("【Crm认证结果:{0}】Result:{1},ErrMsg:{2},CustID:{3},UserAccount:{4},CustType:{5},OutID:{6},ProvinceID:{7}",
DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss"), Result, ErrMsg, CustID, UserAccount, CustType, OutID, o_ProvinceID));
if (Result != 0)
{
string err = System.Web.HttpUtility.UrlEncode(ErrMsg, Encoding.UTF8);
string jf_loginUrl = "";
if (ReturnURL.IndexOf("?") > 0)
{
jf_loginUrl = ReturnURL + "&Result=" + Result + "&ErrMsg=" + err;
}
else
{
jf_loginUrl = ReturnURL + "?Result=" + Result + "&ErrMsg=" + err;
}
//直接将请求原路打回 --假设请求中有ReturnURL
Response.Redirect(jf_loginUrl + "", true);
return;
}
//生成token 修改 2013.01.23
string UserTokenValue = UT.GenerateJFUserToken(ProvinceID,CustID, RealName, UserName, NickName, OutID, CustType, AuthenName, AuthenType, key, out ErrMsg);
//UT.GenerateUserToken(CustID, RealName, UserName, NickName, OutID, CustType, AuthenName, AuthenType, key, out ErrMsg);
log("token-Result:" + Result);
string CookieName0 = System.Configuration.ConfigurationManager.AppSettings["CookieName"]; //CookieName = CIPUT
PageUtility.SetCookie(UserTokenValue, CookieName0, this.Page);
//生成流水号
//string TransactionId = "";
//string sDate = DateTime.Now.ToString("yyyyMMddHHmmssfff");
//Random r = new Random(Guid.NewGuid().GetHashCode());
//TransactionId = "35999999" + sDate + r.Next(10000, 99999).ToString();
String TransactionId = "35999999" + CommonBizRules.CreateTransactionID();
//生成ticket
//sDate = DateTime.Now.ToString("yyyyMMddHHmmssfff");
//r = new Random();
//string Ticket = sDate + r.Next(10000, 99999).ToString();
String Ticket = CommonBizRules.CreateTicket();
StringBuilder msg0 = new StringBuilder();
msg0.Append("++++++++++++++++++++++++++++++++++++++token===++++++++++++++++++++" + UserTokenValue + "++++++++++++++++++++++++++\r\n");
BTUCenterInterfaceLog.CenterForBizTourLog("REVERSE-SSO", msg0);
this.sendTicket2JF(Ticket, CustID, RealName, UserAccount, OutID, UserName, AuthenName, AuthenType, NickName);
#endregion
}
}
}
}