DotNetCore.SKIT.FlurlHttpCl…/src/SKIT.FlurlHttpClient.Wechat.TenpayV3/Extensions/__Internal/WechatTenpayClientSigningExtensions.cs

using System;

namespace SKIT.FlurlHttpClient.Wechat.TenpayV3
{
    using SKIT.FlurlHttpClient.Wechat.TenpayV3.Settings;

    internal static class WechatTenpayClientSigningExtensions
    {
        public static bool VerifySignature(this WechatTenpayClient client, string strTimestamp, string strNonce, string strContent, string strSignature, string strSignScheme, string strSerialNumber, out Exception? error)
        {
            if (client is null) throw new ArgumentNullException(nameof(client));

            switch (strSignScheme)
            {
                case Constants.SignSchemes.WECHATPAY2_RSA_2048_WITH_SHA256:
                    {
                        if (client.PlatformCertificateManager is null)
                        {
                            error = new Exception("The platform certificate manager is not initialized.");
                            return false;
                        }

                        CertificateEntry? entry = client.PlatformCertificateManager.GetEntry(strSerialNumber);
                        if (!entry.HasValue)
                        {
                            error = new Exception($"The platform certificate manager does not contain a certificate with serial number \"{strSerialNumber}\".");
                            return false;
                        }

                        if (!CertificateEntry.ALGORITHM_TYPE_RSA.Equals(entry.Value.AlgorithmType))
                        {
                            error = new Exception($"The platform certificate with serial number \"{strSerialNumber}\" is not for RSA.");
                            return false;
                        }

                        error = null;
                        try
                        {
                            return Utilities.RSAUtility.VerifyWithSHA256ByCertificate(
                                certificate: entry.Value.Certificate,
                                message: GenerateMessageForSignature(timestamp: strTimestamp, nonce: strNonce, body: strContent),
                                signature: strSignature
                            );
                        }
                        catch (Exception ex)
                        {
                            error = ex;
                            return false;
                        }
                    }

                case Constants.SignSchemes.WECHATPAY2_SM2_WITH_SM3:
                    {
                        if (client.PlatformCertificateManager is null)
                        {
                            error = new Exception("The platform certificate manager is not initialized.");
                            return false;
                        }

                        CertificateEntry? entry = client.PlatformCertificateManager.GetEntry(strSerialNumber);
                        if (!entry.HasValue)
                        {
                            error = new Exception($"The platform certificate manager does not contain a certificate with serial number \"{strSerialNumber}\".");
                            return false;
                        }

                        if (!CertificateEntry.ALGORITHM_TYPE_SM2.Equals(entry.Value.AlgorithmType))
                        {
                            error = new Exception($"The platform certificate with serial number \"{strSerialNumber}\" is not for SM2.");
                            return false;
                        }

                        error = null;
                        try
                        {
                            return Utilities.SM2Utility.VerifyWithSM3ByCertificate(
                                certificate: entry.Value.Certificate,
                                message: GenerateMessageForSignature(timestamp: strTimestamp, nonce: strNonce, body: strContent),
                                signature: strSignature
                            );
                        }
                        catch (Exception ex)
                        {
                            error = ex;
                            return false;
                        }
                    }

                default:
                    {
                        error = new Exception($"Unsupported signing scheme: \"{strSignScheme}\".");
                        return false;
                    }
            }
        }

        private static string GenerateMessageForSignature(string timestamp, string nonce, string body)
        {
            return $"{timestamp}\n{nonce}\n{body}\n";
        }
    }
}
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`using System;`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
			`namespace SKIT.FlurlHttpClient.Wechat.TenpayV3`
			`{`
feat(tenpayv3): 随官方更新商户进件结算账号相关接口模型 2023-03-30 21:40:48 +08:00			`using SKIT.FlurlHttpClient.Wechat.TenpayV3.Settings;`

feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`internal static class WechatTenpayClientSigningExtensions`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`{`
feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`public static bool VerifySignature(this WechatTenpayClient client, string strTimestamp, string strNonce, string strContent, string strSignature, string strSignScheme, string strSerialNumber, out Exception? error)`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`{`
feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`if (client is null) throw new ArgumentNullException(nameof(client));`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`switch (strSignScheme)`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`{`
			`case Constants.SignSchemes.WECHATPAY2_RSA_2048_WITH_SHA256:`
			`{`
feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`if (client.PlatformCertificateManager is null)`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`{`
			`error = new Exception("The platform certificate manager is not initialized.");`
			`return false;`
			`}`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
feat(tenpayv3): 随官方更新商户进件结算账号相关接口模型 2023-03-30 21:40:48 +08:00			`CertificateEntry? entry = client.PlatformCertificateManager.GetEntry(strSerialNumber);`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`if (!entry.HasValue)`
			`{`
feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`error = new Exception($"The platform certificate manager does not contain a certificate with serial number \"{strSerialNumber}\".");`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`return false;`
			`}`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
feat(tenpayv3): 随官方更新商户进件结算账号相关接口模型 2023-03-30 21:40:48 +08:00			`if (!CertificateEntry.ALGORITHM_TYPE_RSA.Equals(entry.Value.AlgorithmType))`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`{`
feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`error = new Exception($"The platform certificate with serial number \"{strSerialNumber}\" is not for RSA.");`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`return false;`
			`}`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`error = null;`
			`try`
			`{`
			`return Utilities.RSAUtility.VerifyWithSHA256ByCertificate(`
			`certificate: entry.Value.Certificate,`
			`message: GenerateMessageForSignature(timestamp: strTimestamp, nonce: strNonce, body: strContent),`
			`signature: strSignature`
			`);`
			`}`
			`catch (Exception ex)`
			`{`
			`error = ex;`
			`return false;`
			`}`
			`}`

			`case Constants.SignSchemes.WECHATPAY2_SM2_WITH_SM3:`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`{`
feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`if (client.PlatformCertificateManager is null)`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`{`
			`error = new Exception("The platform certificate manager is not initialized.");`
			`return false;`
			`}`

feat(tenpayv3): 随官方更新商户进件结算账号相关接口模型 2023-03-30 21:40:48 +08:00			`CertificateEntry? entry = client.PlatformCertificateManager.GetEntry(strSerialNumber);`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`if (!entry.HasValue)`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`{`
feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`error = new Exception($"The platform certificate manager does not contain a certificate with serial number \"{strSerialNumber}\".");`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`return false;`
			`}`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
feat(tenpayv3): 随官方更新商户进件结算账号相关接口模型 2023-03-30 21:40:48 +08:00			`if (!CertificateEntry.ALGORITHM_TYPE_SM2.Equals(entry.Value.AlgorithmType))`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`{`
feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`error = new Exception($"The platform certificate with serial number \"{strSerialNumber}\" is not for SM2.");`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`return false;`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`}`

feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`error = null;`
			`try`
			`{`
			`return Utilities.SM2Utility.VerifyWithSM3ByCertificate(`
			`certificate: entry.Value.Certificate,`
			`message: GenerateMessageForSignature(timestamp: strTimestamp, nonce: strNonce, body: strContent),`
			`signature: strSignature`
			`);`
			`}`
			`catch (Exception ex)`
			`{`
			`error = ex;`
			`return false;`
			`}`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`}`

			`default:`
			`{`
feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`error = new Exception($"Unsupported signing scheme: \"{strSignScheme}\".");`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`return false;`
			`}`
			`}`
			`}`

feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`private static string GenerateMessageForSignature(string timestamp, string nonce, string body)`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`{`
			`return $"{timestamp}\n{nonce}\n{body}\n";`
			`}`
			`}`
			`}`