2021-07-20 01:20:31 +08:00
|
|
|
|
using System;
|
|
|
|
|
|
using System.Text;
|
|
|
|
|
|
|
|
|
|
|
|
namespace SKIT.FlurlHttpClient.Wechat.TenpayV3
|
|
|
|
|
|
{
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
/// 为 <see cref="WechatTenpayClient"/> 提供响应签名验证的扩展方法。
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
public static class WechatTenpayClientResponseVerificationExtensions
|
|
|
|
|
|
{
|
|
|
|
|
|
/// <summary>
|
|
|
|
|
|
/// <para>验证响应签名。</para>
|
|
|
|
|
|
/// <para>REF: https://pay.weixin.qq.com/wiki/doc/apiv3/wechatpay/wechatpay4_1.shtml </para>
|
|
|
|
|
|
/// <para>REF: https://pay.weixin.qq.com/wiki/doc/apiv3_partner/wechatpay/wechatpay4_1.shtml </para>
|
|
|
|
|
|
/// </summary>
|
|
|
|
|
|
/// <typeparam name="TResponse"></typeparam>
|
|
|
|
|
|
/// <param name="client"></param>
|
|
|
|
|
|
/// <param name="response"></param>
|
|
|
|
|
|
/// <returns></returns>
|
|
|
|
|
|
public static bool VerifyResponseSignature<TResponse>(this WechatTenpayClient client, TResponse response)
|
|
|
|
|
|
where TResponse : WechatTenpayResponse
|
|
|
|
|
|
{
|
|
|
|
|
|
if (client == null) throw new ArgumentNullException(nameof(client));
|
|
|
|
|
|
if (response == null) throw new ArgumentNullException(nameof(response));
|
|
|
|
|
|
|
2021-08-02 22:06:22 +08:00
|
|
|
|
if (client.CertificateManager != null)
|
2021-07-20 01:20:31 +08:00
|
|
|
|
{
|
|
|
|
|
|
try
|
|
|
|
|
|
{
|
2021-08-02 22:06:22 +08:00
|
|
|
|
string certificate = client.CertificateManager.GetCertificate(response.WechatpayCertSerialNumber)!;
|
|
|
|
|
|
string publicKey = Utilities.RSAUtility.ExportPublicKey(certificate);
|
2021-07-20 01:20:31 +08:00
|
|
|
|
|
|
|
|
|
|
return Utilities.RSAUtility.VerifyWithSHA256(
|
|
|
|
|
|
publicKey: publicKey,
|
|
|
|
|
|
plainText: GetPlainTextForSignature(response),
|
|
|
|
|
|
signature: response.WechatpaySignature
|
|
|
|
|
|
);
|
|
|
|
|
|
}
|
2021-08-02 22:06:22 +08:00
|
|
|
|
catch { }
|
2021-07-20 01:20:31 +08:00
|
|
|
|
}
|
2021-08-02 22:06:22 +08:00
|
|
|
|
|
|
|
|
|
|
return false;
|
2021-07-20 01:20:31 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
private static string GetPlainTextForSignature(WechatTenpayResponse response)
|
|
|
|
|
|
{
|
|
|
|
|
|
string timestamp = response.WechatpayTimestamp;
|
|
|
|
|
|
string nonce = response.WechatpayNonce;
|
|
|
|
|
|
string body = Encoding.UTF8.GetString(response.RawBytes);
|
|
|
|
|
|
return $"{timestamp}\n{nonce}\n{body}\n";
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
