lsm/DotNetCore.SKIT.FlurlHttpClient.Wechat
1
0
Fork 0
mirror of https://gitee.com/fudiwei/DotNetCore.SKIT.FlurlHttpClient.Wechat.git synced 2025-09-20 10:38:10 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
84ee19d614823b22f6c29c87462ec52cd3d9af91
DotNetCore.SKIT.FlurlHttpCl…/src/SKIT.FlurlHttpClient.Wechat.TenpayV3/Extensions/Internal/WechatTenpayClientSignExtensions.cs

103 lines
4.6 KiB
C#
Raw Blame History

using System;
namespace SKIT.FlurlHttpClient.Wechat.TenpayV3
{
using SKIT.FlurlHttpClient.Wechat.TenpayV3.Settings;
internal static class WechatTenpayClientSignExtensions
{
public static bool VerifySignature(this WechatTenpayClient client, string strTimestamp, string strNonce, string strContent, string strSignature, string strSignatureScheme, string strSerialNumber, out Exception? error)
{
if (client == null) throw new ArgumentNullException(nameof(client));
switch (strSignatureScheme)
{
case Constants.SignSchemes.WECHATPAY2_RSA_2048_WITH_SHA256:
{
if (client.PlatformCertificateManager == null)
{
error = new Exception("The platform certificate manager is not initialized.");
return false;
}
CertificateEntry? entry = client.PlatformCertificateManager.GetEntry(strSerialNumber);
if (!entry.HasValue)
{
error = new Exception($"There is no platform certificate matched the serial number: \"{strSerialNumber}\". Please make sure you have downloaded platform certificates first.");
return false;
}
if (!CertificateEntry.ALGORITHM_TYPE_RSA.Equals(entry.Value.AlgorithmType))
{
error = new Exception($"The platform certificate with serial number: \"{strSerialNumber}\" is not for RSA.");
return false;
}
error = null;
try
{
return Utilities.RSAUtility.VerifyWithSHA256ByCertificate(
certificate: entry.Value.Certificate,
message: GenerateMessageForSignature(timestamp: strTimestamp, nonce: strNonce, body: strContent),
signature: strSignature
);
}
catch (Exception ex)
{
error = ex;
return false;
}
}
case Constants.SignSchemes.WECHATPAY2_SM2_WITH_SM3:
{
if (client.PlatformCertificateManager == null)
{
error = new Exception("The platform certificate manager is not initialized.");
return false;
}
CertificateEntry? entry = client.PlatformCertificateManager.GetEntry(strSerialNumber);
if (!entry.HasValue)
{
error = new Exception($"There is no platform certificate matched the serial number: \"{strSerialNumber}\". Please make sure you have downloaded platform certificates first.");
return false;
}
if (!CertificateEntry.ALGORITHM_TYPE_SM2.Equals(entry.Value.AlgorithmType))
{
error = new Exception($"The platform certificate with serial number: \"{strSerialNumber}\" is not for SM2.");
return false;
}
error = null;
try
{
return Utilities.SM2Utility.VerifyWithSM3ByCertificate(
certificate: entry.Value.Certificate,
message: GenerateMessageForSignature(timestamp: strTimestamp, nonce: strNonce, body: strContent),
signature: strSignature
);
}
catch (Exception ex)
{
error = ex;
return false;
}
}
default:
{
error = new Exception($"Unsupported signature scheme: \"{strSignatureScheme}\".");
return false;
}
}
}
private static string GenerateMessageForSignature(string timestamp, string nonce, string body)
{
return $"{timestamp}\n{nonce}\n{body}\n";
}
}
}
Reference in New Issue View Git Blame Copy Permalink