swapidc对接支付宝当面付插件 解密去授权完整版本

<?php class AopClient { //应用ID public $appId; //私钥文件路径 public $rsaPrivateKeyFilePath; //私钥值 public $rsaPrivateKey; //网关 public $gatewayUrl = "https://openapi.alipay.com/gateway.do"; //返回数据格式 public $format = "json"; //api版本 public $apiVersion = "1.0"; // 表单提交字符集编码 public $postCharset = "UTF-8"; //使用文件读取文件格式，请只传递该值 public $alipayPublicKey = null; //使用读取字符串格式，请只传递该值 public $alipayrsaPublicKey; public $debugInfo = false; private $fileCharset = "UTF-8"; private $RESPONSE_SUFFIX = "_response"; private $ERROR_RESPONSE = "error_response"; private $SIGN_NODE_NAME = "sign"; //加密XML节点名称 private $ENCRYPT_XML_NODE_NAME = "response_encrypted"; private $needEncrypt = false; //签名类型 public $signType = "RSA"; //加密密钥和类型 public $encryptKey; public $encryptType = "AES"; protected $alipaySdkVersion = "alipay-sdk-php-20180705"; public function generateSign($params, $signType = "RSA") { return $this->sign($this->getSignContent($params), $signType); } public function rsaSign($params, $signType = "RSA") { return $this->sign($this->getSignContent($params), $signType); } public function getSignContent($params) { ksort($params); $stringToBeSigned = ""; $i = 0; foreach ($params as $k => $v) { if (false === $this->checkEmpty($v) && "@" != substr($v, 0, 1)) { // 转换成目标字符集 $v = $this->characet($v, $this->postCharset); if ($i == 0) { $stringToBeSigned .= "$k" . "=" . "$v"; } else { $stringToBeSigned .= "&" . "$k" . "=" . "$v"; } $i++; } } unset ($k, $v); return $stringToBeSigned; } //此方法对value做urlencode public function getSignContentUrlencode($params) { ksort($params); $stringToBeSigned = ""; $i = 0; foreach ($params as $k => $v) { if (false === $this->checkEmpty($v) && "@" != substr($v, 0, 1)) { // 转换成目标字符集 $v = $this->characet($v, $this->postCharset); if ($i == 0) { $stringToBeSigned .= "$k" . "=" . urlencode($v); } else { $stringToBeSigned .= "&" . "$k" . "=" . urlencode($v); } $i++; } } unset ($k, $v); return $stringToBeSigned; } protected function sign($data, $signType = "RSA") { if($this->checkEmpty($this->rsaPrivateKeyFilePath)){ $priKey=$this->rsaPrivateKey; $res = "-----BEGIN RSA PRIVATE KEY-----\n" . wordwrap($priKey, 64, "\n", true) . "\n-----END RSA PRIVATE KEY-----"; }else { $priKey = file_get_contents($this->rsaPrivateKeyFilePath); $res = openssl_get_privatekey($priKey); } ($res) or die('您使用的私钥格式错误，请检查RSA私钥配置'); if ("RSA2" == $signType) { openssl_sign($data, $sign, $res, OPENSSL_ALGO_SHA256); } else { openssl_sign($data, $sign, $res); } if(!$this->checkEmpty($this->rsaPrivateKeyFilePath)){ openssl_free_key($res); } $sign = base64_encode($sign); return $sign; } /** * RSA单独签名方法，未做字符串处理,字符串处理见getSignContent() * @param $data 待签名字符串 * @param $privatekey 商户私钥，根据keyfromfile来判断是读取字符串还是读取文件，false:填写私钥字符串去回车和空格 true:填写私钥文件路径 * @param $signType 签名方式，RSA:SHA1 RSA2:SHA256 * @param $keyfromfile 私钥获取方式，读取字符串还是读文件 * @return string * @author mengyu.wh */ public function alonersaSign($data,$privatekey,$signType = "RSA",$keyfromfile=false) { if(!$keyfromfile){ $priKey=$privatekey; $res = "-----BEGIN RSA PRIVATE KEY-----\n" . wordwrap($priKey, 64, "\n", true) . "\n-----END RSA PRIVATE KEY-----"; } else{ $priKey = file_get_contents($privatekey); $res = openssl_get_privatekey($priKey); } ($res) or die('您使用的私钥格式错误，请检查RSA私钥配置'); if ("RSA2" == $signType) { openssl_sign($data, $sign, $res, OPENSSL_ALGO_SHA256); } else { openssl_sign($data, $sign, $res); } if($keyfromfile){ openssl_free_key($res); } $sign = base64_encode($sign); return $sign; } protected function curl($url, $postFields = null) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_FAILONERROR, false); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); $postBodyString = ""; $encodeArray = Array(); $postMultipart = false; if (is_array($postFields) && 0 < count($postFields)) { foreach ($postFields as $k => $v) { if ("@" != substr($v, 0, 1)) //判断是不是文件上传 { $postBodyString .= "$k=" . urlencode($this->characet($v, $this->postCharset)) . "&"; $encodeArray[$k] = $this->characet($v, $this->postCharset); } else //文件上传用multipart/form-data，否则用www-form-urlencoded { $postMultipart = true; $encodeArray[$k] = new \CURLFile(substr($v, 1)); } } unset ($k, $v); curl_setopt($ch, CURLOPT_POST, true); if ($postMultipart) { curl_setopt($ch, CURLOPT_POSTFIELDS, $encodeArray); } else { curl_setopt($ch, CURLOPT_POSTFIELDS, substr($postBodyString, 0, -1)); } } if ($postMultipart) { $headers = array('content-type: multipart/form-data;charset=' . $this->postCharset . ';boundary=' . $this->getMillisecond()); } else { $headers = array('content-type: application/x-www-form-urlencoded;charset=' . $this->postCharset); } curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); $reponse = curl_exec($ch); if (curl_errno($ch)) { throw new Exception(curl_error($ch), 0); } else { $httpStatusCode = curl_getinfo($ch, CURLINFO_HTTP_CODE); if (200 !== $httpStatusCode) { throw new Exception($reponse, $httpStatusCode); } } curl_close($ch); return $reponse; } protected function getMillisecond() { list($s1, $s2) = explode(' ', microtime()); return (float)sprintf('%.0f', (floatval($s1) + floatval($s2)) * 1000); } protected function logCommunicationError($apiName, $requestUrl, $errorCode, $responseTxt) { $localIp = isset ($_SERVER["SERVER_ADDR"]) ? $_SERVER["SERVER_ADDR"] : "CLI"; $logger = new LtLogger; $logger->conf["log_file"] = rtrim(AOP_SDK_WORK_DIR, '\\/') . '/' . "logs/aop_comm_err_" . $this->appId . "_" . date("Y-m-d") . ".log"; $logger->conf["separator"] = "^_^"; $logData = array( date("Y-m-d H:i:s"), $apiName, $this->appId, $localIp, PHP_OS, $this->alipaySdkVersion, $requestUrl, $errorCode, str_replace("\n", "", $responseTxt) ); $logger->log($logData); } /** * 生成用于调用收银台SDK的字符串 * @param $request SDK接口的请求参数对象 * @return string * @author guofa.tgf */ public function sdkExecute($request) { $this->setupCharsets($request); $params['app_id'] = $this->appId; $params['method'] = $request->getApiMethodName(); $params['format'] = $this->format; $params['sign_type'] = $this->signType; $params['timestamp'] = date("Y-m-d H:i:s"); $params['alipay_sdk'] = $this->alipaySdkVersion; $params['charset'] = $this->postCharset; $version = $request->getApiVersion(); $params['version'] = $this->checkEmpty($version) ? $this->apiVersion : $version; if ($notify_url = $request->getNotifyUrl()) { $params['notify_url'] = $notify_url; } $dict = $request->getApiParas(); $params['biz_content'] = $dict['biz_content']; ksort($params); $params['sign'] = $this->generateSign($params, $this->signType); foreach ($params as &$value) { $value = $this->characet($value, $params['charset']); } return http_build_query($params); } /* 页面提交执行方法 @param：跳转类接口的request; $httpmethod 提交方式。两个值可选：post、get @return：构建好的、签�