Inicio Explorar Ayuda
Registro Iniciar sesión
xiaoqing
/
wxgzh
2
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: 490280f731
Ramas Etiquetas
wxgzh
/
app
/
Repositories
/
Eloquent
/
ApiSignFacadeRepository.php

ApiSignFacadeRepository.php 2.7 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. <?php
    2. 

  2. namespace app\Repositories\Eloquent;
    3. 

  3. 

  4. use App\Repositories\Eloquent\BaseRepository;
    5. 

  5. use App\Repositories\Contracts\ApiSignInterface;
    6. 

  6. use Illuminate\Support\Facades\Redis;
    7. 

  7. 

  8. /**
    9. 

  9.  *
    10. 

  10.  * @author lilin
    11. 

  11.  *        
    12. 

  12.  */
    13. 

  13. class ApiSignFacadeRepository extends BaseRepository implements  ApiSignInterface
    14. 

  14. {
    15. 

  15.     public function auth($encryptedStr, $random, $timesTamp)
    16. 

  16.     {
    17. 

  17.         //api请求最大时间差
    18. 

  18.         $apiMaxTime = config('console.apiMaxTime');
    19. 

  19.         
    20. 

  20.         $logArr = [
    21. 

  21.             'encryptedStr'  => $encryptedStr,
    22. 

  22.             'random'        => $random,
    23. 

  23.             'timesTamp'     => $timesTamp
    24. 

  24.         ];
    25. 

  25.         
    26. 

  26.         if (!$encryptedStr || !$random || strlen($timesTamp) > 10){
    27. 

  27.             $this->setLog('api请求验证, 验证参数不正确', $this->startTime(), $logArr);
    28. 

  28.             $this->error()->authenticationFailed();
    29. 

  29.         }
    30. 

  30.         
    31. 

  31.         if (time() - $timesTamp > $apiMaxTime) {
    32. 

  32.             $this->setLog('api请求验证, 请求时间差大于配制时间', $this->startTime, $logArr);
    33. 

  33.             $this->error()->authenticationFailed();
    34. 

  34.         }
    35. 

  35.         
    36. 

  36.         $pemPath    = public_path('rsa/api_rsa_private_key.pem');
    37. 

  37.         $privateKey = file_get_contents($pemPath);
    38. 

  38.         $piKey      = openssl_pkey_get_private($privateKey);
    39. 

  39.         $decrypted  = '';
    40. 

  40.         openssl_private_decrypt(base64_decode($encryptedStr), $decrypted, $piKey, OPENSSL_PKCS1_PADDING);
    41. 

  41.         
    42. 

  42.         $data = json_decode($decrypted, true);
    43. 

  43. 

  44.         if (!$decrypted){
    45. 

  45.             $this->setLog('api请求验证,签名解密失败', $this->startTime, $logArr);
    46. 

  46.             $this->error()->authenticationFailed();
    47. 

  47.         }
    48. 

  48.         
    49. 

  49.         //从redis里找有没有用过
    50. 

  50.         $key = config('console.redis_key.api_auth').$random;
    51. 

  51.         $exists = Redis::EXISTS($key);
    52. 

  52.         if ($exists){
    53. 

  53.             $this->setLog('api请求验证,使用了重复的签名', $this->startTime, $logArr);
    54. 

  54.             $this->error()->authenticationFailed();
    55. 

  55.         }
    56. 

  56.         
    57. 

  57.         if (!isset($data['appid']) || $data['appid'] != config('console.apiAppid')){
    58. 

  58.             $this->setLog('api请求验证,appid错误', $this->startTime, $logArr);
    59. 

  59.             $this->error()->authenticationFailed();
    60. 

  60.         }
    61. 

  61.         
    62. 

  62.         if (!isset($data['random']) || !isset($data['timestamp']) ||  $data['random'] != $random || $data['timestamp'] != $timesTamp) {
    63. 

  63.             $this->setLog('api请求验证,random和timestamp不一致', $this->startTime, $logArr);
    64. 

  64.             $this->error()->authenticationFailed();
    65. 

  65.         }
    66. 

  66.         
    67. 

  67.         //验证通过加入reids,过期时间为最大时间差
    68. 

  68.         Redis::SET($key, $encryptedStr);
    69. 

  69.         Redis::EXPIRE($key, $apiMaxTime);
    70. 

  70.         
    71. 

  71.         return $this->response();
    72. 

  72.     }
    73. 

  73. 

  74. }
    75. 

  75.