blame | 历史 | 补丁 | 提交 | 提交对比 | ignore whitespace
sunpengfei
2025-12-01 c87d61d03b48a6f55c0a0819b9be522f77e3c9a0 
 ApiTools.Web.Entry/Controllers/WxmpController.cs


@@ -1,43 +1,72 @@


using ApiTools.Core;


using Aop.Api.Domain;


using ApiTools.Core;


using Furion.DataEncryption;


using Furion.DynamicApiController;


using Furion.FriendlyException;


using MediatR;


using Microsoft.AspNetCore.Authorization;


using Microsoft.AspNetCore.Mvc;


using Microsoft.Extensions.Options;


using Newtonsoft.Json;


using Org.BouncyCastle.Ocsp;


using System.Buffers.Binary;


using System.Security.Cryptography;


using System.Text;


using System.Threading.Tasks;




namespace ApiTools.Web.Entry.Controllers


{


    [Route("api/common/wxmp")]


    public class WxmpController(


            WxmpUtils utils,


            IOptions<WxmpOptions> options


            IOptions<WxmpOptions> options,


            IMediator mediator


        ) : ControllerBase


    {


        private readonly WxmpUtils utils = utils;


        private readonly IOptions<WxmpOptions> options = options;


        private readonly IMediator mediator = mediator;




        [HttpGet("subscribMessageNotify")]


        [AllowAnonymous]


        [NonUnify]


        public IActionResult SubscribMessageNotify([FromQuery] WxmpSubscribMessageNotifyRequestQuery request)


        public IActionResult SubscribMessageNotify([FromQuery] WxmpSubscribMessageNotifyRequestQuery query)


        {


            var @params = new[]


            {


                options.Value.SubscribMessage.Token,


                request.Timestamp,


                request.Nonce


                query.timestamp,


                query.nonce


            }


            .OrderBy(p => p)


            .ToArray();


            var text = string.Concat(@params);


            if (SHA1Encryption.Compare(text, request.Signature, true))


            if (SHA1Encryption.Compare(text, query.signature, true))


            {


                return Content(request.Echostr);


                return Content(query.echostr);


            }


            else


            {


                return Unauthorized("验签失败");


            }


        }




        [HttpPost("subscribMessageNotify/{code}")]


        [AllowAnonymous]


        [NonUnify]


        public async Task<IActionResult> SubscribMessageNotify([FromRoute] string code, [FromQuery] WxmpSubscribMessageNotifyRequestQuery query, [FromBody] WxmpSubscribMessageNotifyRequestBody body)


        {


            var appId = options.Value.Items.FirstOrDefault(it => it.Code == code).AppId;


            Tencent.WXBizMsgCrypt wxcpt = new Tencent.WXBizMsgCrypt(options.Value.SubscribMessage.Token, options.Value.SubscribMessage.EncodingAESKey, appId);


            var data = $"<xml><ToUserName><![CDATA[{body.ToUserName}]]></ToUserName><Encrypt><![CDATA[{body.Encrypt}]]></Encrypt></xml>";


            var content = "";


            var error = wxcpt.DecryptMsg(query.msg_signature, query.timestamp, query.nonce, data, ref content);


            if (error != 0) return Unauthorized("验签失败");


            var command = content.JsonTo<WxmpSubscribMessageNotifyCommand>();


            command.Code = code;


            command.OpenId = query.openid;


            await mediator.Send(command);


            return Content(query.echostr);


        }


    }


}