VerifySignaturePlugin - Code Metrics - Inspection of "feat: 新增江苏银行e融支付" - yansongda/pay - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#1002)

unknown

created 2024-06-17 02:46 UTC

VerifySignaturePlugin A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	79
Duplicated Lines	0 %

Importance

Changes	1
Bugs	0	Features	0

Metric	Value
eloc	45
c	1
b	0
f	0
dl	0
loc	79
rs	10
wmc	11

4 Methods

Rating	Name	Size	Complexity
A	verifySign()	20	4
A	query()	12	3
A	assembly()	17	2
A	getSignatureData()	21	2

<?php

declare(strict_types=1);

namespace Yansongda\Pay\Plugin\Epay;

use Closure;
use Yansongda\Artful\Contract\PluginInterface;
use Yansongda\Artful\Exception\InvalidConfigException;
use Yansongda\Artful\Exception\InvalidResponseException;
use Yansongda\Artful\Logger;
use Yansongda\Artful\Rocket;
use Yansongda\Pay\Exception\Exception;
use Yansongda\Supports\Arr;
use Yansongda\Supports\Collection;
use Yansongda\Supports\Str;

use function Yansongda\Artful\should_do_http_request;
use function Yansongda\Pay\get_provider_config;

class VerifySignaturePlugin implements PluginInterface
{
    public function assembly(Rocket $rocket, Closure $next): Rocket
    {
        /* @var Rocket $rocket */
        $rocket = $next($rocket);

        Logger::info('[Epay][VerifySignaturePlugin] 插件开始装载', ['rocket' => $rocket]);

        if (should_do_http_request($rocket->getDirection())) {
            $params = $rocket->getParams();
            $config = get_provider_config('epay', $params);
            $body = (string) $rocket->getDestinationOrigin()->getBody();
            $this->verifySign($config, $body);
        }

        Logger::info('[Epay][VerifySignaturePlugin] 插件装载完毕', ['rocket' => $rocket]);

        return $rocket;
    }

    protected function verifySign(array $config, string $body): void
    {
        // 解析签名
        $signatureData = $this->getSignatureData($body);

        if (!$signatureData['sign']) {
            throw new InvalidResponseException(Exception::PARAMS_NECESSARY_PARAMS_MISSING, 'Verify Epay Response Sign Failed: sign is empty', $body);
        }

        $publicCert = $config['epay_public_cert_path'] ?? null;
        if (empty($publicCert)) {
            throw new InvalidConfigException(Exception::PARAMS_NECESSARY_PARAMS_MISSING, 'Missing Epay Config -- [epay_public_cert_path]');
        }
        $result = 1 === openssl_verify(
            $signatureData['data'],
            base64_decode($signatureData['sign']),
            file_get_contents($publicCert)
        );
        if (!$result) {
            throw new InvalidResponseException(Exception::PARAMS_NECESSARY_PARAMS_MISSING, 'Verify Epay Response Sign Failed', func_get_args());
        }
    }

    protected function query(string $body): array
    {
        $result = [];
        foreach (explode('&', $body) as $item) {
            $pos = strpos($item, '=');
            if (!$pos) {
                continue;
            }
            $result[substr($item, 0, $pos)] = substr($item, $pos + 1);
        }

        return $result;
    }

    private function getSignatureData(string $body): array
    {
        if (Str::contains($body, '&-&')) {
            $beginIndex = strpos($body, '&signType=');
            $endIndex = strpos($body, '&-&');
            $data = substr($body, 0, $beginIndex).substr($body, $endIndex);

            $signIndex = strpos($body, '&sign=');
            $signature = substr($body, $signIndex + strlen('&sign='), $endIndex - ($signIndex + strlen('&sign=')));
        } else {
            $result = Arr::wrapQuery($body, true);
            $result = Collection::wrap($result);
            $signature = $result->get('sign');
            $result->forget('sign');
            $result->forget('signType');
            $data = $result->sortKeys()->toString();
        }

        return [
            'sign' => $signature,
            'data' => $data,
        ];
    }
}


1			<?php
2
3			declare(strict_types=1);
4
5			namespace Yansongda\Pay\Plugin\Epay;
6
7			use Closure;
8			use Yansongda\Artful\Contract\PluginInterface;
9			use Yansongda\Artful\Exception\InvalidConfigException;
10			use Yansongda\Artful\Exception\InvalidResponseException;
11			use Yansongda\Artful\Logger;
12			use Yansongda\Artful\Rocket;
13			use Yansongda\Pay\Exception\Exception;
14			use Yansongda\Supports\Arr;
15			use Yansongda\Supports\Collection;
16			use Yansongda\Supports\Str;
17
18			use function Yansongda\Artful\should_do_http_request;
19			use function Yansongda\Pay\get_provider_config;
20
21			class VerifySignaturePlugin implements PluginInterface
22			{
23			public function assembly(Rocket $rocket, Closure $next): Rocket
24			{
25			/* @var Rocket $rocket */
26			$rocket = $next($rocket);
27
28			Logger::info('[Epay][VerifySignaturePlugin] 插件开始装载', ['rocket' => $rocket]);
29
30			if (should_do_http_request($rocket->getDirection())) {
31			$params = $rocket->getParams();
32			$config = get_provider_config('epay', $params);
33			$body = (string) $rocket->getDestinationOrigin()->getBody();
34			$this->verifySign($config, $body);
35			}
36
37			Logger::info('[Epay][VerifySignaturePlugin] 插件装载完毕', ['rocket' => $rocket]);
38
39			return $rocket;
40			}
41
42			protected function verifySign(array $config, string $body): void
43			{
44			// 解析签名
45			$signatureData = $this->getSignatureData($body);
46
47			if (!$signatureData['sign']) {
48			throw new InvalidResponseException(Exception::PARAMS_NECESSARY_PARAMS_MISSING, 'Verify Epay Response Sign Failed: sign is empty', $body);
49			}
50
51			$publicCert = $config['epay_public_cert_path'] ?? null;
52			if (empty($publicCert)) {
53			throw new InvalidConfigException(Exception::PARAMS_NECESSARY_PARAMS_MISSING, 'Missing Epay Config -- [epay_public_cert_path]');
54			}
55			$result = 1 === openssl_verify(
56			$signatureData['data'],
57			base64_decode($signatureData['sign']),
58			file_get_contents($publicCert)
59			);
60			if (!$result) {
61			throw new InvalidResponseException(Exception::PARAMS_NECESSARY_PARAMS_MISSING, 'Verify Epay Response Sign Failed', func_get_args());
62			}
63			}
64
65			protected function query(string $body): array
66			{
67			$result = [];
68			foreach (explode('&', $body) as $item) {
69			$pos = strpos($item, '=');
70			if (!$pos) {
71			continue;
72			}
73			$result[substr($item, 0, $pos)] = substr($item, $pos + 1);
74			}
75
76			return $result;
77			}
78
79			private function getSignatureData(string $body): array
80			{
81			if (Str::contains($body, '&-&')) {
82			$beginIndex = strpos($body, '&signType=');
83			$endIndex = strpos($body, '&-&');
84			$data = substr($body, 0, $beginIndex).substr($body, $endIndex);
85
86			$signIndex = strpos($body, '&sign=');
87			$signature = substr($body, $signIndex + strlen('&sign='), $endIndex - ($signIndex + strlen('&sign=')));
88			} else {
89			$result = Arr::wrapQuery($body, true);
90			$result = Collection::wrap($result);
91			$signature = $result->get('sign');
92			$result->forget('sign');
93			$result->forget('signType');
94			$data = $result->sortKeys()->toString();
95			}
96
97			return [
98			'sign' => $signature,
99			'data' => $data,
100			];
101			}
102			}
103

yansongda / pay

Pull Request — master (#1002)

VerifySignaturePlugin A

Complexity

Size/Duplication

Importance

4 Methods

Duplication Side-by-Side

Filter issues like