private void CheckNotifySign(JDPayDictionary dictionary, JDPayOptions options) { if (dictionary.Count == 0) { throw new JDPayException("sign check fail: dictionary is Empty!"); } if (!dictionary.TryGetValue(JDPayContants.SIGN, out var sign)) { throw new JDPayException("sign check fail: sign is Empty!"); } var signContent = JDPaySecurity.GetSignContent(dictionary); if (!JDPaySecurity.RSACheckContent(signContent, sign, options.PublicKey)) { throw new JDPayException("sign check fail: check Sign and Data Fail"); } }
private void CheckNotifySign(JDPayDictionary parameters) { if (parameters.Count == 0) { throw new Exception("sign check fail: parameters is Empty!"); } if (!parameters.TryGetValue("sign", out var sign)) { throw new Exception("sign check fail: sign is Empty!"); } var signContent = JDPaySecurity.GetSignContent(parameters); if (!JDPaySecurity.RSACheckContent(signContent, sign, PublicKey)) { throw new Exception("sign check fail: check Sign and Data Fail"); } }
public async Task <T> ExecuteAsync <T>(IJDPayNPP10Request <T> request, string optionsName) where T : JDPayResponse { var options = string.IsNullOrEmpty(optionsName) ? _optionsSnapshotAccessor.Value : _optionsSnapshotAccessor.Get(optionsName); var sortedTxtParams = new JDPayDictionary(request.GetParameters()) { { JDPayContants.CUSTOMER_NO, options.CustomerNo }, { JDPayContants.SIGN_TYPE, options.SignType } }; var isEncrypt = false; if (request is JDPayDefrayPayRequest) { isEncrypt = true; } var encryptDic = JDPaySecurity.EncryptData(options.PrivateCret, options.Password, options.PublicCert, sortedTxtParams, options.SingKey, options.EncryptType, isEncrypt); var content = JDPayUtility.BuildQuery(encryptDic); _logger.Log(options.LogLevel, "Request:{content}", content); using (var client = _clientFactory.CreateClient()) { var body = await client.DoPostAsync(request.GetRequestUrl(), content, "application/x-www-form-urlencoded"); _logger.Log(options.LogLevel, "Response:{content}", body); // 验签 var dictionary = JsonConvert.DeserializeObject <JDPayDictionary>(body); if (!JDPaySecurity.VerifySign(dictionary, options.SingKey)) { throw new JDPayException("sign check fail: check Sign and Data Fail!"); } var rsp = JsonConvert.DeserializeObject <T>(body); rsp.Body = body; return(rsp); } }
public async Task <T> ExecuteAsync <T>(IJDPayNPP10Request <T> request) where T : JDPayResponse { var sortedTxtParams = new JDPayDictionary(request.GetParameters()) { { JDPayContants.CUSTOMER_NO, Options.CustomerNo }, { JDPayContants.SIGN_TYPE, Options.SignType } }; var isEncrypt = false; if (request is JDPayDefrayPayRequest) { isEncrypt = true; } var encryptDic = JDPaySecurity.EncryptData(Options.PrivateCret, Options.Password, Options.PublicCert, sortedTxtParams, Options.SingKey, Options.EncryptType, isEncrypt); var content = JDPayUtility.BuildQuery(encryptDic); Logger?.LogTrace(0, "Request:{content}", content); using (var client = ClientFactory.CreateClient(JDPayOptions.DefaultClientName)) { var body = await HttpClientUtility.DoPostAsync(client, request.GetRequestUrl(), content, "application/x-www-form-urlencoded"); Logger?.LogTrace(1, "Response:{content}", body); var rsp = JsonConvert.DeserializeObject <T>(body); // 验签 var dic = JsonConvert.DeserializeObject <JDPayDictionary>(body); if (!JDPaySecurity.VerifySign(dic, Options.SingKey)) { throw new Exception("sign check fail: check Sign and Data Fail!"); } rsp.Body = body; return(rsp); } }
private JDPayDictionary GetParameters(HttpRequest request, bool isDecrypt = true) { var parameters = new JDPayDictionary(); if (request.Method == "POST") { foreach (var iter in request.Form) { if (!string.IsNullOrEmpty(iter.Value)) { var value = iter.Value.ToString(); if (isDecrypt) { value = iter.Key == SIGN?iter.Value.ToString() : JDPaySecurity.DecryptECB(iter.Value, DesKey); } parameters.Add(iter.Key, value); } } } else { foreach (var iter in request.Query) { if (!string.IsNullOrEmpty(iter.Value)) { var value = iter.Value.ToString(); if (isDecrypt) { value = iter.Key == SIGN?iter.Value.ToString() : JDPaySecurity.DecryptECB(iter.Value, DesKey); } parameters.Add(iter.Key, value); } } } return(parameters); }
public async Task <T> ExecuteAsync <T>(HttpRequest request) where T : JDPayNotifyResponse { if (request.HasFormContentType || request.Method == "GET") { var rspInstance = Activator.CreateInstance <T>(); var parameters = GetParameters(request, !(rspInstance is JDPayDefrayPayNotifyResponse)); var query = JDPayUtility.BuildQuery(parameters); Logger?.LogTrace(0, "Request:{query}", query); var parser = new JDPayDictionaryParser <T>(); var rsp = parser.Parse(parameters); if (rsp is JDPayDefrayPayNotifyResponse) { CheckNotifyDefrayPaySign(rsp.Parameters); } else { CheckNotifySign(rsp.Parameters); } return(rsp); } else if (request.HasTextXmlContentType()) { var body = await new StreamReader(request.Body).ReadToEndAsync(); Logger?.LogTrace(0, "Request:{body}", body); var parser = new JDPayXmlParser <T>(); var rsp = parser.Parse(JDPayUtility.FotmatXmlString(body)); if (!string.IsNullOrEmpty(rsp.Encrypt)) { var encrypt = rsp.Encrypt; var base64EncryptStr = Encoding.UTF8.GetString(Convert.FromBase64String(encrypt)); var reqBody = JDPaySecurity.DecryptECB(base64EncryptStr, Options.DesKeyBase64); Logger?.LogTrace(1, "Encrypt Content:{reqBody}", reqBody); var reqBodyDoc = new XmlDocument() { XmlResolver = null }; reqBodyDoc.LoadXml(reqBody); var sign = JDPayUtility.GetValue(reqBodyDoc, "sign"); var rootNode = reqBodyDoc.SelectSingleNode("jdpay"); var signNode = rootNode.SelectSingleNode("sign"); rootNode.RemoveChild(signNode); var reqBodyStr = JDPayUtility.ConvertXmlToString(reqBodyDoc); var xmlh = rsp.Body.Substring(0, rsp.Body.IndexOf("<jdpay>")); if (!string.IsNullOrEmpty(xmlh)) { reqBodyStr = reqBodyStr.Replace("<?xml version=\"1.0\" encoding=\"UTF-8\"?>", xmlh); } var sha256SourceSignString = SHA256.Compute(reqBodyStr); var decryptByte = RSA_ECB_PKCS1Padding.Decrypt(Convert.FromBase64String(sign), Options.PublicKey); var decryptStr = JDPaySecurity.BytesToString(decryptByte); if (sha256SourceSignString == decryptStr) { rsp = parser.Parse(reqBody); rsp.Encrypt = encrypt; return(rsp); } else { throw new Exception("sign check fail: check Sign and Data Fail!"); } } else { throw new Exception("encrypt is Empty!"); } } else { throw new Exception("content type is not supported!"); } }
private async Task <JDPayDictionary> GetParametersAsync(HttpRequest request) { var parameters = new JDPayDictionary(); if (request.Method == "POST") { var form = await request.ReadFormAsync(); foreach (var iter in form) { if (!string.IsNullOrEmpty(iter.Value)) { parameters.Add(iter.Key, iter.Key == SIGN ? iter.Value.ToString() : JDPaySecurity.DecryptECB(iter.Value, DesKey)); } } } else { foreach (var iter in request.Query) { if (!string.IsNullOrEmpty(iter.Value)) { parameters.Add(iter.Key, iter.Key == SIGN ? iter.Value.ToString() : JDPaySecurity.DecryptECB(iter.Value, DesKey)); } } } return(parameters); }
private JDPayDictionary GetParameters(HttpRequest request, JDPayOptions options, bool isDecrypt = true) { var dictionary = new JDPayDictionary(); if (request.Method == "POST") { foreach (var iter in request.Form) { if (!string.IsNullOrEmpty(iter.Value)) { var value = iter.Value.ToString(); if (isDecrypt) { value = iter.Key == JDPayContants.SIGN ? iter.Value.ToString() : JDPaySecurity.DecryptECB(iter.Value, options.DesKeyBase64); } dictionary.Add(iter.Key, value); } } } else { foreach (var iter in request.Query) { if (!string.IsNullOrEmpty(iter.Value)) { var value = iter.Value.ToString(); if (isDecrypt) { value = iter.Key == JDPayContants.SIGN ? iter.Value.ToString() : JDPaySecurity.DecryptECB(iter.Value, options.DesKeyBase64); } dictionary.Add(iter.Key, value); } } } return(dictionary); }