Home Explore Help
Sign In
waibao
/
NN2021040101
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
NN2021040101
/
app
/
Api
/
Service
/
Server.php

Server.php 6.7 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261 
  1. <?php
    2. 

  2. namespace App\Api\Service;
    3. 

  3. 

  4. use Illuminate\Support\Facades\Request;
    5. 

  5. use Illuminate\Support\Facades\Validator;
    6. 

  6. 

  7. /**
    8. 

  8.  * API服务端总入口
    9. 

  9.  * @author Flc <2016-7-31 11:27:09>
    10. 

  10.  */
    11. 

  11. class Server
    12. 

  12. {
    13. 

  13.     /**
    14. 

  14.      * 请求参数
    15. 

  15.      * @var array
    16. 

  16.      */
    17. 

  17.     protected $params = [];
    18. 

  18. 

  19.     /**
    20. 

  20.      * API请求Method名
    21. 

  21.      * @var string
    22. 

  22.      */
    23. 

  23.     protected $method;
    24. 

  24. 

  25.     /**
    26. 

  26.      * app_id
    27. 

  27.      * @var string
    28. 

  28.      */
    29. 

  29.     protected $app_id;
    30. 

  30. 

  31.     /**
    32. 

  32.      * app_secret
    33. 

  33.      * @var string
    34. 

  34.      */
    35. 

  35.     protected $app_secret;
    36. 

  36. 

  37.     /**
    38. 

  38.      * 回调数据格式
    39. 

  39.      * @var string
    40. 

  40.      */
    41. 

  41.     protected $format = 'json';
    42. 

  42. 

  43.     /**
    44. 

  44.      * 签名方法
    45. 

  45.      * @var string
    46. 

  46.      */
    47. 

  47.     protected $sign_method = 'md5';
    48. 

  48. 

  49.     /**
    50. 

  50.      * 是否输出错误码
    51. 

  51.      * @var boolean
    52. 

  52.      */
    53. 

  53.     protected $error_code_show = false;
    54. 

  54. 

  55.     /**
    56. 

  56.      * 初始化
    57. 

  57.      * @param Error $error Error对象
    58. 

  58.      */
    59. 

  59.     public function __construct(Error $error)
    60. 

  60.     {
    61. 

  61.         $this->params = Request::all();
    62. 

  62.         $this->error  = $error;
    63. 

  63.     }
    64. 

  64. 

  65.     /**
    66. 

  66.      * api服务入口执行
    67. 

  67.      * @param  Request $request 请求参数
    68. 

  68.      * @return [type]           [description]
    69. 

  69.      */
    70. 

  70.     public function run($request)
    71. 

  71.     {
    72. 

  72.         // A.1 初步校验
    73. 

  73.         $rules    = [
    74. 

  74.             'app_id'      => 'required',
    75. 

  75.             'method'      => 'required',
    76. 

  76.             'format'      => 'in:,json',
    77. 

  77.             'sign_method' => 'in:,md5',
    78. 

  78.             'nonce'       => 'required|string|min:1|max:32|',
    79. 

  79.             'sign'        => 'required',
    80. 

  80.         ];
    81. 

  81.         $messages = [
    82. 

  82.             'app_id.required' => '1001',
    83. 

  83.             'method.required' => '1003',
    84. 

  84.             'format.in'       => '1004', 
    85. 

  85.             'sign_method.in'  => '1005', 
    86. 

  86.             'nonce.required'  => '1010',
    87. 

  87.             'nonce.string'    => '1011',
    88. 

  88.             'nonce.min'       => '1012',
    89. 

  89.             'nonce.max'       => '1012',
    90. 

  90.             'sign.required'   => '1006'
    91. 

  91.         ];
    92. 

  92. 

  93.         $v = Validator::make($this->params, $rules, $messages);
    94. 

  94. 

  95.         if ($v->fails()) {
    96. 

  96.             
    97. 

  97.             return $this->response(['status' => false, 'code' => $v->messages()->first()]);
    98. 

  98.         }
    99. 

  99. 

  100.         // A.2 赋值对象
    101. 

  101.         $this->format      = !empty($this->params['format']) ? $this->params['format'] : $this->format;
    102. 

  102.         $this->sign_method = !empty($this->params['sign_method']) ? $this->params['sign_method'] : $this->sign_method;
    103. 

  103.         $this->app_id      = $this->params['app_id'];
    104. 

  104.         $this->method      = $this->params['method'];
    105. 

  105.         // B. appid校验
    106. 

  106.         $app = App::getInstance($this->app_id)->info();
    107. 

  107.         if (! $app) 
    108. 

  108.             return $this->response(['status' => false, 'code' => '1002']);
    109. 

  109. 

  110.         $this->app_secret = $app->app_secret;
    111. 

  111.         // C. 校验签名
    112. 

  112.         $signRes = config('app.debug')?['status'=>true]:$this->checkSign($this->params);
    113. 

  113.         if (! $signRes || ! $signRes['status']) {
    114. 

  114.             return $this->response(['status' => false, 'code' => $signRes['code']]);
    115. 

  115.         }
    116. 

  116.         // D. 校验接口名
    117. 

  117.         // D.1 通过方法名获取类名
    118. 

  118.         $this->method=str_replace('.','\\',$this->method);
    119. 

  119.         $className = self::getClassName($this->method);
    120. 

  120. 

  121.         // D.2 判断类名是否存在
    122. 

  122.         $classPath = __NAMESPACE__ . '\\Response\\' . $className;
    123. 

  123. 

  124. 

  125.         if (!$className || !class_exists($classPath)) {
    126. 

  126. 

  127.             return $this->response(['status' => false, 'code' => '1008']);
    128. 

  128.         }
    129. 

  129. 

  130.         // D.3 判断方法是否存在
    131. 

  131.         if (! method_exists($classPath, 'run')) {
    132. 

  132.             return $this->response(['status' => false, 'code' => '1009']);
    133. 

  133.         }
    134. 

  134. 

  135.         $this->classname = $classPath;
    136. 

  136.         // X 如果有uid 要验证
    137. 

  137.         if(!empty($this->params['uid'])&&!empty($this->params['token'])&&!$this->checkToken($this->params['uid'],$this->params['token'])){
    138. 

  138.             return $this->response(['status' => false, 'code' => '1014']);
    139. 

  139.         }
    140. 

  140. 

  141.         // E. api接口分发
    142. 

  142.         $class = new $classPath;
    143. 

  143.         return $this->response((array) $class->run($this->params,$request));
    144. 

  144.     }
    145. 

  145. 

  146.     /**
    147. 

  147.      * 检查token和uid是否一致
    148. 

  148.      * @param $uid
    149. 

  149.      * @param $token
    150. 

  150.      * @return bool
    151. 

  151.      */
    152. 

  152.     protected function checkToken($uid,$token){
    153. 

  153.         if(md5(sha1($uid))==$token){
    154. 

  154.             return true;
    155. 

  155.         }
    156. 

  156.         return false;
    157. 

  157.     }
    158. 

  158.     /**
    159. 

  159.      * 校验签名
    160. 

  160.      * @param  [type] $params [description]
    161. 

  161.      * @return [type]         [description]
    162. 

  162.      */
    163. 

  163.     protected function checkSign($params)
    164. 

  164.     {
    165. 

  165.         $sign = array_key_exists('sign', $params) ? $params['sign'] : '';
    166. 

  166. 

  167.         if (empty($sign))
    168. 

  168.             return array('status' => false, 'code' => '1006');
    169. 

  169. 

  170.         unset($params['sign']);
    171. 

  171.         
    172. 

  172.         if ($sign != $this->generateSign($params)){
    173. 

  173.             info('pay error'.$params['method']);
    174. 

  174.            // return array('status' => false, 'code' => '1007');
    175. 

  175.         }
    176. 

  176. 

  177.         return array('status' => true, 'code' => '200');
    178. 

  178.     }
    179. 

  179. 

  180.     /**
    181. 

  181.      * 生成签名
    182. 

  182.      * @param  array $params 待校验签名参数
    183. 

  183.      * @return string|false 
    184. 

  184.      */
    185. 

  185.     protected function generateSign($params)
    186. 

  186.     {
    187. 

  187.         if ($this->sign_method == 'md5') 
    188. 

  188.             return $this->generateMd5Sign($params);
    189. 

  189. 

  190.         return false;
    191. 

  191.     }
    192. 

  192. 

  193.     /**
    194. 

  194.      * md5方式签名
    195. 

  195.      * @param  array $params 待签名参数
    196. 

  196.      * @return string         
    197. 

  197.      */
    198. 

  198.     protected function generateMd5Sign($params)
    199. 

  199.     {
    200. 

  200.         ksort($params);
    201. 

  201. 

  202.         $tmps = array();
    203. 

  203.         foreach ($params as $k => $v) {
    204. 

  204.             $tmps[] = $k . $v;
    205. 

  205.         }
    206. 

  206. 

  207.         $string = $this->app_secret . implode('', $tmps) . $this->app_secret;
    208. 

  208. 

  209.         return strtoupper(md5($string));
    210. 

  210.     }
    211. 

  211. 

  212. 

  213.     /**
    214. 

  214.      * 通过方法名转换为对应的类名
    215. 

  215.      * @param  string $method 方法名
    216. 

  216.      * @return string|false         
    217. 

  217.      */
    218. 

  218.     protected function getClassName($method)
    219. 

  219.     {
    220. 

  220.         $methods = explode('.', $method);
    221. 

  221.         
    222. 

  222.         if (!is_array($methods))
    223. 

  223.             return false;
    224. 

  224. 

  225.         $tmp = array();
    226. 

  226.         foreach ($methods as $value) {
    227. 

  227.             $tmp[] = ucwords($value);
    228. 

  228.         }
    229. 

  229. 

  230.         $className = implode('', $tmp);
    231. 

  231.         return $className;
    232. 

  232.     }
    233. 

  233. 

  234.     /**
    235. 

  235.      * 输出结果
    236. 

  236.      * @param  array $result 结果
    237. 

  237.      * @return response         
    238. 

  238.      */
    239. 

  239.     protected function response(array $result)
    240. 

  240.     {
    241. 

  241.         if (! array_key_exists('msg', $result) && array_key_exists('code', $result)) {
    242. 

  242.             $result['msg'] = $this->getError($result['code']);
    243. 

  243.         }
    244. 

  244. 

  245.         if ($this->format == 'json') {
    246. 

  246.             return response()->json($result);
    247. 

  247.         }
    248. 

  248. 

  249.         return false;        
    250. 

  250.     }
    251. 

  251. 

  252.     /**
    253. 

  253.      * 返回错误内容
    254. 

  254.      * @param  string $code 错误码
    255. 

  255.      * @return string       
    256. 

  256.      */
    257. 

  257.     protected function getError($code)
    258. 

  258.     {
    259. 

  259.         return $this->error->getError($code, $this->error_code_show);
    260. 

  260.     }
    261. 

  261. }
    262.