| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556 |
- package org.jeecg.config.sign.util;
- import com.alibaba.fastjson.JSONObject;
- import lombok.extern.slf4j.Slf4j;
- import org.jeecg.common.exception.JeecgBootException;
- import org.jeecg.common.util.SpringContextUtils;
- import org.jeecg.common.util.oConvertUtils;
- import org.jeecg.config.StaticConfig;
- import org.springframework.util.DigestUtils;
- import org.springframework.util.StringUtils;
- import java.util.SortedMap;
- /**
- * 签名工具类
- *
- * @author jeecg
- * @date 20210621
- */
- @Slf4j
- public class SignUtil {
- public static final String xPathVariable = "x-path-variable";
- /**
- * @param params
- * 所有的请求参数都会在这里进行排序加密
- * @return 验证签名结果
- */
- public static boolean verifySign(SortedMap<String, String> params,String headerSign) {
- if (params == null || StringUtils.isEmpty(headerSign)) {
- return false;
- }
- // 把参数加密
- String paramsSign = getParamsSign(params);
- log.info("Param Sign : {}", paramsSign);
- return !StringUtils.isEmpty(paramsSign) && headerSign.equals(paramsSign);
- }
- /**
- * @param params
- * 所有的请求参数都会在这里进行排序加密
- * @return 得到签名
- */
- public static String getParamsSign(SortedMap<String, String> params) {
- //去掉 Url 里的时间戳
- params.remove("_t");
- String paramsJsonStr = JSONObject.toJSONString(params);
- log.info("Param paramsJsonStr : {}", paramsJsonStr);
- StaticConfig staticConfig = SpringContextUtils.getBean(StaticConfig.class);
- String signatureSecret = staticConfig.getSignatureSecret();
- if(oConvertUtils.isEmpty(signatureSecret) || signatureSecret.contains("${")){
- throw new JeecgBootException("签名密钥 ${jeecg.signatureSecret} 缺少配置 !!");
- }
- return DigestUtils.md5DigestAsHex((paramsJsonStr + signatureSecret).getBytes()).toUpperCase();
- }
- }
|
