Home Explore
Register Sign In
tel17684311578
/
BroadbandSaler
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: eb1b351c12
Branches Tags
BroadbandSaler
/
app
/
Http
/
Middleware
/
SignCheck.php

SignCheck.php 2.1 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Middleware;
    4. 

  4. 

  5. use App\DataApiNew\Models\AgentApi;
    6. 

  6. use Closure;
    7. 

  7. use Illuminate\Http\Request;
    8. 

  8. use Vinkla\Hashids\Facades\Hashids;
    9. 

  9. 

  10. class SignCheck
    11. 

  11. {
    12. 

  12.     /**
    13. 

  13.      * Handle an incoming request.
    14. 

  14.      *
    15. 

  15.      * @param  \Illuminate\Http\Request  $request
    16. 

  16.      * @param  \Closure(\Illuminate\Http\Request): (\Illuminate\Http\Response|\Illuminate\Http\RedirectResponse)  $next
    17. 

  17.      * @return \Illuminate\Http\Response|\Illuminate\Http\RedirectResponse
    18. 

  18.      */
    19. 

  19.     public function handle(Request $request, Closure $next)
    20. 

  20.     {
    21. 

  21.         list($status,$message) = $this->validSign($request);
    22. 

  22.         if (!$status) {
    23. 

  23.             return response()->json(['code' => 0, 'msg' => $message], 400);
    24. 

  24.         }
    25. 

  25.         return $next($request);
    26. 

  26.     }
    27. 

  27. 

  28.     //校验签名
    29. 

  29.     function validSign($request)
    30. 

  30.     {
    31. 

  31.         try{
    32. 

  32.             $postData = $request->all();
    33. 

  33. 

  34.             $signature = $request->header('X-Signature'); // 获取请求头中的签名
    35. 

  35.     
    36. 

  36.             if (empty($signature)) {
    37. 

  37.                 return [false,'签名错误'];
    38. 

  38.             }
    39. 

  39.     
    40. 

  40.             $user_key = Hashids::decode($request->input('user_key', null));
    41. 

  41.             if (empty($user_key)) {
    42. 

  42.                 return [false,'用户信息异常'];
    43. 

  43.             }
    44. 

  44.             $user_id = $user_key[0];
    45. 

  45.     
    46. 

  46.             $signature = base64_decode($signature);
    47. 

  47.     
    48. 

  48.             ksort($postData);
    49. 

  49.             unset($postData['idcard_front']);
    50. 

  50.             unset($postData['idcard_back']);
    51. 

  51.             unset($postData['user_with_idcard']);
    52. 

  52.             $data = http_build_query($postData); // 用 & 和 = 拼接为字符串 ,中文字符要urlencode
    53. 

  53.     
    54. 

  54.             $pu_key = AgentApi::where('user_id', $user_id)->value('public_key');
    55. 

  55.             if (empty($pu_key)) {
    56. 

  56.                 return [false,'秘钥信息异常'];
    57. 

  57.             }
    58. 

  58.     
    59. 

  59.             $pu_keys = "-----BEGIN PUBLIC KEY-----\n$pu_key\n-----END PUBLIC KEY-----";
    60. 

  60.     
    61. 

  61.             if(!openssl_verify($data, $signature, $pu_keys, OPENSSL_ALGO_SHA256)){
    62. 

  62.                 return [false,'签名错误'];
    63. 

  63.             }
    64. 

  64.     
    65. 

  65.             return [true,'验证成功'];
    66. 

  66.         }catch (\Exception $e){
    67. 

  67.             return [false,'验证失败'];
    68. 

  68.         }
    69. 

  69.     }
    70. 

  70. }
    71.