Apq
/
ProxyPanel
mirror of https://github.com/ProxyPanel/ProxyPanel.git


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182
							<?php
/*
 * 作者：BrettonYe
 * 功能：ProxyPanel 支付宝面对面 【收单线下交易预创建】 【收单交易查询】 接口实现库
 * 时间：2022/12/28
 * 参考资料：https://opendocs.alipay.com/open/02ekfg?scene=19 riverslei/payment
 */

namespace App\Utils\Library;

use Illuminate\Support\Facades\Http;
use RuntimeException;

class AlipayF2F
{
    private static string $gatewayUrl = 'https://openapi.alipay.com/gateway.do';

    private array $config;

    public function __construct(array $rawConfig = [])
    {
        $config = [
            'app_id' => $rawConfig['app_id'],
            'public_key' => '',
            'private_key' => '',
            'notify_url' => $rawConfig['notify_url'],
        ];

        if ($rawConfig['ali_public_key']) {
            $config['public_key'] = self::getRsaKeyValue($rawConfig['ali_public_key'], false);
        }
        if (empty($config['public_key'])) {
            throw new RuntimeException('please set ali public key');
        }

        // 初始 RSA私钥文件 需要检查该文件是否存在
        if ($rawConfig['rsa_private_key']) {
            $config['private_key'] = self::getRsaKeyValue($rawConfig['rsa_private_key']);
        }
        if (empty($config['private_key'])) {
            throw new RuntimeException('please set ali private key');
        }

        $this->config = $config;
    }

    /**
     * 获取rsa密钥内容.
     *
     * @param  string  $key  传入的密钥信息， 可能是文件或者字符串
     * @param  bool  $is_private  私钥/公钥
     */
    public static function getRsaKeyValue(string $key, bool $is_private = true): ?string
    {
        $keyStr = is_file($key) ? @file_get_contents($key) : $key;
        if (empty($keyStr)) {
            return null;
        }

        $keyStr = str_replace('\n', '', $keyStr);
        // 为了解决用户传入的密钥格式，这里进行统一处理
        if ($is_private) {
            $beginStr = "-----BEGIN RSA PRIVATE KEY-----\n";
            $endStr = "\n-----END RSA PRIVATE KEY-----";
        } else {
            $beginStr = "-----BEGIN PUBLIC KEY-----\n";
            $endStr = "\n-----END PUBLIC KEY-----";
        }

        return $beginStr.wordwrap($keyStr, 64, "\n", true).$endStr;
    }

    public function tradeQuery($content)
    {
        $this->setMethod('alipay.trade.query');
        $this->setContent($content);

        return $this->send();
    }

    private function setMethod($method): void
    {
        $this->config['method'] = $method;
    }

    private function setContent($content): void
    {
        $content = array_filter($content);
        ksort($content);
        $this->config['biz_content'] = json_encode($content);
    }

    private function send(): array
    {
        $response = Http::timeout(15)->get(self::$gatewayUrl, $this->buildParams())->json();
        $resKey = str_replace('.', '_', $this->config['method']).'_response';
        if (! isset($response[$resKey])) {
            throw new RuntimeException('请求错误-看起来是请求失败');
        }

        if (! $this->rsaVerify($response[$resKey], $response['sign'])) {
            throw new RuntimeException('验签错误-'.$response[$resKey]['msg'].' | '.($response[$resKey]['sub_msg'] ?? var_export($response, true)));
        }

        $response = $response[$resKey];
        if ($response['msg'] !== 'Success') {
            throw new RuntimeException($response[$resKey]['sub_msg'] ?? var_export($response, true));
        }

        return $response;
    }

    private function buildParams(): array
    {
        $params = [
            'app_id' => $this->config['app_id'] ?? '',
            'method' => $this->config['method'] ?? '',
            'charset' => 'utf-8',
            'sign_type' => 'RSA2',
            'timestamp' => date('Y-m-d H:m:s'),
            'biz_content' => $this->config['biz_content'] ?? [],
            'version' => '1.0',
            'notify_url' => $this->config['notify_url'] ?? '',
        ];
        $params = array_filter($params);
        $params['sign'] = $this->encrypt($this->buildQuery($params));

        return $params;
    }

    /**
     * RSA2签名.
     *
     * @param  string  $data  签名的数组
     *
     * @throws RuntimeException
     */
    private function encrypt(string $data): string
    {
        $privateKey = openssl_pkey_get_private($this->config['private_key']); // 私钥
        if (empty($privateKey)) {
            throw new RuntimeException('您使用的私钥格式错误，请检查RSA私钥配置');
        }

        openssl_sign($data, $sign, $privateKey, OPENSSL_ALGO_SHA256);

        return base64_encode($sign); // base64编码
    }

    private function buildQuery(array $params): string
    {
        ksort($params); // 排序

        return urldecode(http_build_query($params)); // 组合
    }

    /**
     * RSA2验签.
     *
     * @param  array  $data  待签名数据
     *
     * @throws RuntimeException
     */
    public function rsaVerify(array $data, $sign): bool
    {
        unset($data['sign'], $data['sign_type']);
        $publicKey = openssl_pkey_get_public($this->config['public_key']);
        if (empty($publicKey)) {
            throw new RuntimeException('支付宝RSA公钥错误。请检查公钥文件格式是否正确');
        }

        return (bool) openssl_verify(json_encode($data), base64_decode($sign), $publicKey, OPENSSL_ALGO_SHA256);
    }

    public function qrCharge($content)
    {
        $this->setMethod('alipay.trade.precreate');
        $this->setContent($content);

        return $this->send();
    }
}