open-wechat
/
wechat-oplatform-sdk
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
32 Commits
1 Branch
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
wechat-oplatform-sdk/event.go

event.go 6.6KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245 
  1. /**

  2.  * Copyright (c) 2022 Yansen Zhang

  3.  * wxcomponent is licensed under Mulan PSL v2.

  4.  * You can use this software according to the terms and conditions of the Mulan PSL v2.

  5.  * You may obtain a copy of Mulan PSL v2 at:

  6.  *          http://license.coscl.org.cn/MulanPSL2

  7.  * THIS SOFTWARE IS PROVIDED ON AN "AS IS" BASIS, WITHOUT WARRANTIES OF ANY KIND,

  8.  * EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO NON-INFRINGEMENT,

  9.  * MERCHANTABILITY OR FIT FOR A PARTICULAR PURPOSE.

  10.  * See the Mulan PSL v2 for more details.

  11. **/

  12. 

  13. package wxcomponent

  14. 

  15. import (

  16. 	"crypto/sha1"

  17. 	"encoding/base64"

  18. 	"encoding/binary"

  19. 	"encoding/xml"

  20. 	"fmt"

  21. 	"sort"

  22. 	"strconv"

  23. 	"strings"

  24. 	"time"

  25. 

  26. 	"gitee.com/yansen_zh/wxcomponent/api/authorization"

  27. 	"gitee.com/yansen_zh/wxcomponent/api/event"

  28. 	"gitee.com/yansen_zh/wxcomponent/config"

  29. 	"gitee.com/yansen_zh/wxcomponent/utils"

  30. 	"gitee.com/yansen_zh/wxcomponent/utils/encrypt"

  31. 	"gitee.com/yansen_zh/wxcomponent/utils/log"

  32. )

  33. 

  34. // DecodeMessage 解密消息

  35. func DecodeMessage(src []byte) ([]byte, error) {

  36. 	log.Info("解码 xml 数据: ", string(src))

  37. 

  38. 	msg := event.ReceivedEncryptMessage{}

  39. 	if err := xml.Unmarshal(src, &msg); err != nil {

  40. 		log.Error("解码 xml 数据失败: ", err.Error())

  41. 		return nil, err

  42. 	}

  43. 

  44. 	bt1, e1 := base64.StdEncoding.DecodeString(msg.Encrypt)

  45. 	if e1 != nil {

  46. 		log.Error("解码 base 数据失败: ", e1.Error())

  47. 		log.Error("原始 base64 数据: ", msg.Encrypt)

  48. 		return nil, e1

  49. 	}

  50. 

  51. 	bt2, e2 := encrypt.AESDecode(bt1, aesKey)

  52. 	if e2 != nil {

  53. 		log.Error("解码加密数据失败: ", e2.Error())

  54. 		log.Error("待解密数据: ", string(bt1))

  55. 		return nil, e2

  56. 	}

  57. 

  58. 	return bt2, nil

  59. }

  60. 

  61. // toBigEndian 转换为网络大端序

  62. func toBigEndian(i int) []byte {

  63. 	bt := make([]byte, 4)

  64. 	binary.BigEndian.PutUint32(bt, uint32(i))

  65. 	return bt

  66. }

  67. 

  68. // EncodeMessage 加密消息

  69. func EncodeMessage(appID string, src []byte) ([]byte, error) {

  70. 	log.Info("待加密数据APPID: ", appID)

  71. 	log.Info("待加密数据: ", string(src))

  72. 

  73. 	rand16 := []byte(utils.RandStr(16))

  74. 	msgLen := toBigEndian(len(src))

  75. 

  76. 	// 待加密数据 = random(16B)+ msg_len(4B) + msg + appid

  77. 	data := append(rand16, msgLen...)

  78. 	data = append(data, msgLen...)

  79. 	data = append(data, src...)

  80. 	data = append(data, []byte(appID)...)

  81. 

  82. 	bt1, e1 := encrypt.AESEncode(data, aesKey)

  83. 	if e1 != nil {

  84. 		log.Error("加密数据失败: ", e1.Error())

  85. 		log.Error("待加密数据: ", string(bt1))

  86. 		return nil, e1

  87. 	}

  88. 

  89. 	encryptStr := base64.StdEncoding.EncodeToString(bt1)

  90. 	timestamp := time.Now().Unix()

  91. 	timestampStr := strconv.FormatInt(timestamp, 10)

  92. 	nonceStr := utils.RandStr(16)

  93. 

  94. 	strs := []string{

  95. 		timestampStr,

  96. 		nonceStr,

  97. 		config.GetAccessToken(),

  98. 		encryptStr,

  99. 	}

  100. 	sort.Strings(strs)

  101. 	signature := fmt.Sprintf("%x", sha1.Sum([]byte(strings.Join(strs, ""))))

  102. 

  103. 	evt := event.SendEncryptMessage{

  104. 		Encrypt:      event.CDATA{Value: encryptStr},

  105. 		MsgSignature: signature,

  106. 		TimeStamp:    timestamp,

  107. 		Nonce:        nonceStr,

  108. 	}

  109. 

  110. 	res, err := xml.Marshal(&evt)

  111. 	if err != nil {

  112. 		log.Error("转换 xml 数据失败: ", err.Error())

  113. 		log.Error("待转换 xml 数据: ", evt)

  114. 		return nil, e1

  115. 	}

  116. 

  117. 	return res, nil

  118. }

  119. 

  120. // DecodeAuthEvent 解密事件

  121. func DecodeAuthEvent(src []byte) (*event.AuthEvent, []byte, error) {

  122. 	log.Info("待解密数据: ", string(src))

  123. 

  124. 	bt, e1 := DecodeMessage(src)

  125. 	if e1 != nil {

  126. 		return nil, nil, e1

  127. 	}

  128. 

  129. 	evt := event.AuthEvent{}

  130. 	if err := xml.Unmarshal(bt, evt); err != nil {

  131. 		log.Error("解码 xml 数据失败: ", err.Error())

  132. 		log.Error("待解码数据: ", string(bt))

  133. 	}

  134. 

  135. 	// 如果是授权成功或者刷新授权, 则更新相关内容

  136. 	if evt.InfoType == event.INFO_TYPE_AUTHORIZED || evt.InfoType == event.INFO_TYPE_UPDATEAUTHORIZED {

  137. 		if err := handleAuthorized(bt); err != nil {

  138. 			return nil, nil, err

  139. 		}

  140. 	}

  141. 

  142. 	// 如果是取消授权

  143. 	if evt.InfoType == event.INFO_TYPE_UNAUTHORIZED {

  144. 		handleUnauthorized(bt)

  145. 	}

  146. 

  147. 	// 如果是刷新票据

  148. 	if evt.InfoType == event.INFO_TYPE_COMPONENT_VERIFY_TICKET {

  149. 		if err := handleComponentVerifyTicket(bt); err != nil {

  150. 			return nil, nil, err

  151. 		}

  152. 	}

  153. 

  154. 	return &evt, bt, nil

  155. }

  156. 

  157. // DecodeAuthorizerEvent 解密授权业务方的消息与事件

  158. func DecodeAuthorizerEvent(appID string, src []byte) (*event.AuthorizerEvent, []byte, error) {

  159. 	log.Info("待解密数据APPID: ", appID)

  160. 	log.Info("待解密数据: ", string(src))

  161. 

  162. 	bt, e1 := DecodeMessage(src)

  163. 	if e1 != nil {

  164. 		return nil, nil, e1

  165. 	}

  166. 

  167. 	evt := event.AuthorizerEvent{}

  168. 	if err := xml.Unmarshal(bt, evt); err != nil {

  169. 		log.Error("解码 xml 数据失败: ", err.Error())

  170. 		log.Error("待解码数据: ", string(bt))

  171. 	}

  172. 

  173. 	authorizer := config.GetAuthorizer()

  174. 	e2 := authorizer.ProcessMessage(appID, evt.MsgType.Value, evt.Event.Value, bt)

  175. 	if e2 != nil {

  176. 		log.Error("处理事件或者消息失败: ", e2.Error())

  177. 		log.Error("待处理消息: ", string(bt))

  178. 	}

  179. 

  180. 	return &evt, bt, nil

  181. }

  182. 

  183. // handleAuthorized 授权成功或刷新授权

  184. func handleAuthorized(data []byte) error {

  185. 	authorizer := config.GetAuthorizer()

  186. 	evtData := event.AuthorizedEvent{}

  187. 	xml.Unmarshal(data, &evtData)

  188. 

  189. 	// 获取授权信息

  190. 	queryAuth, e1 := authorization.GetQueryAuth(evtData.AuthorizationCode)

  191. 	if e1 != nil {

  192. 		log.Error("获取授权信息失败: ", e1.Error())

  193. 		return e1

  194. 	}

  195. 

  196. 	appID := evtData.AuthorizerAppID

  197. 	authInfo := queryAuth.AuthorizationInfo

  198. 	expire := utils.GetExpireTime(authInfo.ExpiresIn)

  199. 	funcLst := make([]int, 0)

  200. 	if nil != authInfo.FuncInfo && len(authInfo.FuncInfo) > 0 {

  201. 		for _, info := range authInfo.FuncInfo {

  202. 			funcLst = append(funcLst, info.FuncscopeCategory.ID)

  203. 		}

  204. 	}

  205. 

  206. 	// 刷新平台授权状态

  207. 	authorizer.RefreshAuthStatus(appID, evtData.InfoType)

  208. 	// 刷新授权集

  209. 	authorizer.RefreshFuncInfo(appID, funcLst)

  210. 	// 刷新 token

  211. 	e2 := authorizer.RefreshToken(appID, authInfo.AuthorizerAccessToken, authInfo.AuthorizerRefreshToken, expire)

  212. 	if e2 != nil {

  213. 		log.Error("刷新公众号或者小程序 Token 失败: ", e2.Error())

  214. 		return e2

  215. 	}

  216. 

  217. 	return nil

  218. }

  219. 

  220. // handleUnauthorized 取消授权

  221. func handleUnauthorized(data []byte) error {

  222. 	authorizer := config.GetAuthorizer()

  223. 	evtData := event.UnauthorizedEvent{}

  224. 	xml.Unmarshal(data, &evtData)

  225. 	appID := evtData.AuthorizerAppID

  226. 

  227. 	// 刷新平台授权状态

  228. 	authorizer.RefreshAuthStatus(appID, evtData.InfoType)

  229. 	return nil

  230. }

  231. 

  232. // handleComponentVerifyTicket 验证票据

  233. func handleComponentVerifyTicket(data []byte) error {

  234. 	evtData := event.ComponentVerifyTicketEvent{}

  235. 	xml.Unmarshal(data, &evtData)

  236. 

  237. 	expire := utils.GetExpireTime(12 * 3600) // component_verify_ticket 的有效时间为12小时

  238. 	err := config.RefreshVerifyTicket(evtData.ComponentVerifyTicket, expire)

  239. 	if err != nil {

  240. 		log.Error("刷新票据信息失败: ", err.Error())

  241. 		return err

  242. 	}

  243. 

  244. 	return nil

  245. }