blame | 历史 | 原始文档
sunpengfei
2025-12-01 c87d61d03b48a6f55c0a0819b9be522f77e3c9a0 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72

using Aop.Api.Domain;


using ApiTools.Core;


using Furion.DataEncryption;


using Furion.DynamicApiController;


using Furion.FriendlyException;


using MediatR;


using Microsoft.AspNetCore.Authorization;


using Microsoft.AspNetCore.Mvc;


using Microsoft.Extensions.Options;


using Newtonsoft.Json;


using Org.BouncyCastle.Ocsp;


using System.Buffers.Binary;


using System.Security.Cryptography;


using System.Text;


using System.Threading.Tasks;


 


namespace ApiTools.Web.Entry.Controllers


{


    [Route("api/common/wxmp")]


    public class WxmpController(


            WxmpUtils utils,


            IOptions<WxmpOptions> options,


            IMediator mediator


        ) : ControllerBase


    {


        private readonly WxmpUtils utils = utils;


        private readonly IOptions<WxmpOptions> options = options;


        private readonly IMediator mediator = mediator;


 


        [HttpGet("subscribMessageNotify")]


        [AllowAnonymous]


        [NonUnify]


        public IActionResult SubscribMessageNotify([FromQuery] WxmpSubscribMessageNotifyRequestQuery query)


        {


            var @params = new[]


            {


                options.Value.SubscribMessage.Token,


                query.timestamp,


                query.nonce


            }


            .OrderBy(p => p)


            .ToArray();


            var text = string.Concat(@params);


            if (SHA1Encryption.Compare(text, query.signature, true))


            {


                return Content(query.echostr);


            }


            else


            {


                return Unauthorized("验签失败");


            }


        }


 


        [HttpPost("subscribMessageNotify/{code}")]


        [AllowAnonymous]


        [NonUnify]


        public async Task<IActionResult> SubscribMessageNotify([FromRoute] string code, [FromQuery] WxmpSubscribMessageNotifyRequestQuery query, [FromBody] WxmpSubscribMessageNotifyRequestBody body)


        {


            var appId = options.Value.Items.FirstOrDefault(it => it.Code == code).AppId;


            Tencent.WXBizMsgCrypt wxcpt = new Tencent.WXBizMsgCrypt(options.Value.SubscribMessage.Token, options.Value.SubscribMessage.EncodingAESKey, appId);


            var data = $"<xml><ToUserName><![CDATA[{body.ToUserName}]]></ToUserName><Encrypt><![CDATA[{body.Encrypt}]]></Encrypt></xml>";


            var content = "";


            var error = wxcpt.DecryptMsg(query.msg_signature, query.timestamp, query.nonce, data, ref content);


            if (error != 0) return Unauthorized("验签失败");


            var command = content.JsonTo<WxmpSubscribMessageNotifyCommand>();


            command.Code = code;


            command.OpenId = query.openid;


            await mediator.Send(command);


            return Content(query.echostr);


        }


    }


}