<?php
namespace app\api\controller;
use app\common\controller\Api;
/**
* 手机短信接口
*/
class Test extends Api
{
protected $noNeedLogin = '*';
protected $noNeedRight = '*';
//验签,2048位,265截取
public function verifysign(){
//解密签名开始
$sign = $this->request->request('sign','','trim');
if(empty($sign)){
$this->error('缺少签名');
}
$sign = base64_decode($sign);
$private_key_str = config('app_rsa.private_key');
$private_key = "-----BEGIN RSA PRIVATE KEY-----" .PHP_EOL.
wordwrap($private_key_str, 64, PHP_EOL, true) .
PHP_EOL."-----END RSA PRIVATE KEY-----";
$signgetdata = []; //被解密出来的数据
$split_len = 256;
$sign_split = str_split($sign, $split_len);
foreach($sign_split as $key => $sign_val){
$signgetdata_child = null;
openssl_private_decrypt($sign_val, $signgetdata_child, $private_key); // 使用私钥解密数据
$signgetdata[] = $signgetdata_child;
}
$signgetdata = implode('',$signgetdata);
if (!$signgetdata) {
$this->error('签名错误1');
}
dump($signgetdata);
//解密签名结束
//接收到的参数,组成我自己的验签体string
$request_all = $this->request->request();
unset($request_all['s']);
unset($request_all['sign']);
ksort($request_all);
$request_str = '';
foreach($request_all as $key => $param){
$request_str .= $key.'='.$param.'&';
}
$request_str .= 'signkey=F_dC923_35270PdsIIUIUTRERYTYYU';
dump($request_str);
//作对比
if($request_str != $signgetdata){
$this->error('验签错误');
}
echo '验签正确';
}
//验签
public function verifysign_old(){
//解密签名
$sign = $this->request->request('sign','','trim');
if(empty($sign)){
$this->error('缺少签名');
}
$sign = base64_decode($sign);
$private_key_str = config('app_rsa.private_key');
$private_key = "-----BEGIN RSA PRIVATE KEY-----" .PHP_EOL.
wordwrap($private_key_str, 64, PHP_EOL, true) .
PHP_EOL."-----END RSA PRIVATE KEY-----";
$signgetdata = ''; //被解密出来的数据
openssl_private_decrypt($sign, $signgetdata, $private_key); // 使用私钥解密数据
if (!$signgetdata) {
$this->error('签名错误');
}
//dump($signgetdata);
//接收到的参数
$request_all = $this->request->request();
unset($request_all['s']);
unset($request_all['sign']);
ksort($request_all);
$request_all = http_build_query($request_all);
$request_all .= '&signkey=F_dC923_35270PdsIIUIUTRERYTYYU';
//dump($request_all);
//作对比
if($request_all != $signgetdata){
$this->error('验签错误');
}
//echo '验签正确';
return true;
}
//加密
public function jiami(){
$request_all = $this->request->request();
unset($request_all['s']);
// dump($request_all);
ksort($request_all);
// dump($request_all);
$request_all = http_build_query($request_all);
$request_all .= '&signkey=F_dC923_35270PdsIIUIUTRERYTYYU';
// echo '加密字符串';
// echo $request_all;
$public_key_str = config('app_rsa.public_key');
echo strlen($public_key_str);exit;
$public_key = "-----BEGIN PUBLIC KEY-----" .PHP_EOL.
wordwrap($public_key_str, 64, PHP_EOL, true) .
PHP_EOL."-----END PUBLIC KEY-----";
$sign = '';
openssl_public_encrypt($request_all,$sign,$public_key);
$sign = base64_encode($sign);
echo '获得签名';
dump($sign);
}
/**
*
* @return void
*/
public function test1()
{
echo '<pre>';var_dump(1);exit;
}
}