DotNetCore.SKIT.FlurlHttpCl…/src/SKIT.FlurlHttpClient.Wechat.TenpayV3/Extensions/__Internal/WechatTenpayClientSigningExtensions.cs

using System;

namespace SKIT.FlurlHttpClient.Wechat.TenpayV3
{
    using SKIT.FlurlHttpClient.Primitives;
    using SKIT.FlurlHttpClient.Wechat.TenpayV3.Settings;

    internal static class WechatTenpayClientSigningExtensions
    {
        public static ErroredResult VerifySignature(this WechatTenpayClient client, string strTimestamp, string strNonce, string strContent, string strSignature, string strSignScheme, string strSerialNumber)
        {
            if (client is null) throw new ArgumentNullException(nameof(client));

            ErroredResult result;

            switch (strSignScheme)
            {
                case Constants.SignSchemes.WECHATPAY2_RSA_2048_WITH_SHA256:
                    {
                        try
                        {
                            if (client.PlatformCertificateManager is null)
                            {
                                result = ErroredResult.Fail(new Exception("The platform certificate manager is not initialized."));
                                break;
                            }

                            CertificateEntry? entry = client.PlatformCertificateManager.GetEntry(strSerialNumber);
                            if (!entry.HasValue)
                            {
                                result = ErroredResult.Fail(new Exception($"The platform certificate manager does not contain a certificate with serial number \"{strSerialNumber}\"."));
                                break;
                            }

                            bool valid = Utilities.RSAUtility.VerifyByCertificate(
                                certificatePem: entry.Value.Certificate,
                                message: GenerateMessageForSignature(timestamp: strTimestamp, nonce: strNonce, body: strContent),
                                encodingSignature: new EncodedString(strSignature, EncodingKinds.Base64)
                            );
                            if (valid)
                                result = ErroredResult.Ok();
                            else
                                result = ErroredResult.Fail(new Exception($"Signature does not match. Maybe \"{strSignature}\" is an illegal signature."));
                        }
                        catch (Exception ex)
                        {
                            result = ErroredResult.Fail(ex);
                        }
                    }
                    break;

                case Constants.SignSchemes.WECHATPAY2_SM2_WITH_SM3:
                    {
                        try
                        {
                            if (client.PlatformCertificateManager is null)
                            {
                                result = ErroredResult.Fail(new Exception("The platform certificate manager is not initialized."));
                                break;
                            }

                            CertificateEntry? entry = client.PlatformCertificateManager.GetEntry(strSerialNumber);
                            if (!entry.HasValue)
                            {
                                result = ErroredResult.Fail(new Exception($"The platform certificate manager does not contain a certificate with serial number \"{strSerialNumber}\"."));
                                break;
                            }

                            bool valid = Utilities.SM2Utility.VerifyWithSM3ByCertificate(
                                certificatePem: entry.Value.Certificate,
                                message: GenerateMessageForSignature(timestamp: strTimestamp, nonce: strNonce, body: strContent),
                                encodingSignature: new EncodedString(strSignature, EncodingKinds.Base64)
                            );
                            if (valid)
                                result = ErroredResult.Ok();
                            else
                                result = ErroredResult.Fail(new Exception($"Signature does not match. Maybe \"{strSignature}\" is an illegal signature."));
                        }
                        catch (Exception ex)
                        {
                            result = ErroredResult.Fail(ex);
                        }
                    }
                    break;

                default:
                    {
                        result = ErroredResult.Fail(new Exception($"Unsupported signing scheme: \"{strSignScheme}\"."));
                    }
                    break;
            }

            return result;
        }

        private static string GenerateMessageForSignature(string timestamp, string nonce, string body)
        {
            return $"{timestamp}\n{nonce}\n{body}\n";
        }
    }
}
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`using System;`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
			`namespace SKIT.FlurlHttpClient.Wechat.TenpayV3`
			`{`
refactor(tenpayv3): 优化加解密及哈希算法工具类 2024-02-05 10:53:59 +08:00			`using SKIT.FlurlHttpClient.Primitives;`
feat(tenpayv3): 随官方更新商户进件结算账号相关接口模型 2023-03-30 21:40:48 +08:00			`using SKIT.FlurlHttpClient.Wechat.TenpayV3.Settings;`

feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`internal static class WechatTenpayClientSigningExtensions`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`{`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`public static ErroredResult VerifySignature(this WechatTenpayClient client, string strTimestamp, string strNonce, string strContent, string strSignature, string strSignScheme, string strSerialNumber)`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`{`
feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`if (client is null) throw new ArgumentNullException(nameof(client));`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`ErroredResult result;`

feat(tenpayv3): 升级公共组件 2024-01-29 23:12:37 +08:00			`switch (strSignScheme)`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`{`
			`case Constants.SignSchemes.WECHATPAY2_RSA_2048_WITH_SHA256:`
			`{`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`try`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`{`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`if (client.PlatformCertificateManager is null)`
			`{`
			`result = ErroredResult.Fail(new Exception("The platform certificate manager is not initialized."));`
			`break;`
			`}`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`CertificateEntry? entry = client.PlatformCertificateManager.GetEntry(strSerialNumber);`
			`if (!entry.HasValue)`
			`{`
			`result = ErroredResult.Fail(new Exception($"The platform certificate manager does not contain a certificate with serial number \"{strSerialNumber}\"."));`
			`break;`
			`}`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`bool valid = Utilities.RSAUtility.VerifyByCertificate(`
refactor(tenpayv3): 优化加解密及哈希算法工具类 2024-02-05 10:53:59 +08:00			`certificatePem: entry.Value.Certificate,`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`message: GenerateMessageForSignature(timestamp: strTimestamp, nonce: strNonce, body: strContent),`
refactor(tenpayv3): 优化加解密及哈希算法工具类 2024-02-05 10:53:59 +08:00			`encodingSignature: new EncodedString(strSignature, EncodingKinds.Base64)`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`);`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`if (valid)`
			`result = ErroredResult.Ok();`
			`else`
			`result = ErroredResult.Fail(new Exception($"Signature does not match. Maybe \"{strSignature}\" is an illegal signature."));`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`}`
			`catch (Exception ex)`
			`{`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`result = ErroredResult.Fail(ex);`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`}`
			`}`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`break;`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00
			`case Constants.SignSchemes.WECHATPAY2_SM2_WITH_SM3:`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`{`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`try`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`{`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`if (client.PlatformCertificateManager is null)`
			`{`
			`result = ErroredResult.Fail(new Exception("The platform certificate manager is not initialized."));`
			`break;`
			`}`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`CertificateEntry? entry = client.PlatformCertificateManager.GetEntry(strSerialNumber);`
			`if (!entry.HasValue)`
			`{`
			`result = ErroredResult.Fail(new Exception($"The platform certificate manager does not contain a certificate with serial number \"{strSerialNumber}\"."));`
			`break;`
			`}`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`bool valid = Utilities.SM2Utility.VerifyWithSM3ByCertificate(`
refactor(tenpayv3): 优化加解密及哈希算法工具类 2024-02-05 10:53:59 +08:00			`certificatePem: entry.Value.Certificate,`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`message: GenerateMessageForSignature(timestamp: strTimestamp, nonce: strNonce, body: strContent),`
refactor(tenpayv3): 优化加解密及哈希算法工具类 2024-02-05 10:53:59 +08:00			`encodingSignature: new EncodedString(strSignature, EncodingKinds.Base64)`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`);`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`if (valid)`
			`result = ErroredResult.Ok();`
			`else`
			`result = ErroredResult.Fail(new Exception($"Signature does not match. Maybe \"{strSignature}\" is an illegal signature."));`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`}`
			`catch (Exception ex)`
			`{`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`result = ErroredResult.Fail(ex);`
feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`}`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`}`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`break;`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00
			`default:`
			`{`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`result = ErroredResult.Fail(new Exception($"Unsupported signing scheme: \"{strSignScheme}\"."));`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`}`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00			`break;`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`}`
feat(tenpayv3): 基于 ErroredResult 改造验签相关扩展方法 2024-02-05 15:58:42 +08:00
			`return result;`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`}`

feat(tenpayv3): 适配国密接入模式 2022-11-13 23:17:18 +08:00			`private static string GenerateMessageForSignature(string timestamp, string nonce, string body)`
feat(tenpaybusiness): 导入项目 2022-05-09 19:28:47 +08:00			`{`
			`return $"{timestamp}\n{nonce}\n{body}\n";`
			`}`
			`}`
			`}`