<?php
namespace Rsa;
use Rsa\XRsa;
if (!function_exists('url_safe_base64_encode')) {
function url_safe_base64_encode($data) {
$data = base64_encode($data);
// $data = str_replace(array('+', '/', '='), array('-', '_', ''), $data);
return $data;
}
}
if (!function_exists('url_safe_base64_decode')) {
function url_safe_base64_decode($data) {
$data = str_replace(array('-', '_'), array('+', '/'), $data);
$mod4 = strlen($data) % 4;
if ($mod4) {
$data .= substr('====', $mod4);
}
return base64_decode($data);
}
}
/**
*
* Rsa 加密和解密
*/
class XRsa {
const CHAR_SET = "UTF-8";
const RSA_ALGORITHM_KEY_TYPE = OPENSSL_KEYTYPE_RSA;
const RSA_ALGORITHM_SIGN = OPENSSL_ALGO_SHA1;
protected $public_key;
protected $private_key;
protected $key_len;
public function __construct($pub_key, $pri_key = null) {
$this->public_key = $pub_key;
$this->private_key = $pri_key;
$pub_id = openssl_get_publickey($this->public_key);
$this->key_len = openssl_pkey_get_details($pub_id)['bits'];
}
/*
* 创建密钥对
*/
public static function createKeys($key_size = 2048) {
$config = array(
"private_key_bits" => $key_size,
"private_key_type" => self::RSA_ALGORITHM_KEY_TYPE,
);
$res = openssl_pkey_new($config);
openssl_pkey_export($res, $private_key);
$public_key_detail = openssl_pkey_get_details($res);
$public_key = $public_key_detail["key"];
return [
"public_key" => $public_key,
"private_key" => $private_key,
];
}
/*
* 公钥加密
*/
public function publicEncrypt($data) {
$encrypted = '';
$part_len = $this->key_len / 8 - 11;
$parts = str_split($data, $part_len);
foreach ($parts as $part) {
$encrypted_temp = '';
openssl_public_encrypt($part, $encrypted_temp, $this->public_key);
$encrypted .= $encrypted_temp;
}
$encrypted = url_safe_base64_encode($encrypted);
return $encrypted;
}
/*
* 公钥加密
*/
public function publicEncrypt2($data) {
openssl_public_encrypt($data, $encrypted, $this->public_key);
$encrypted = url_safe_base64_encode($encrypted);
return $encrypted;
}
/*
* 私钥解密
*/
public function privateDecrypt($encrypted) {
$decrypted = "";
$part_len = $this->key_len / 8;
$base64_decoded = url_safe_base64_decode($encrypted);
$parts = str_split($base64_decoded, $part_len);
foreach ($parts as $part) {
$decrypted_temp = '';
openssl_private_decrypt($part, $decrypted_temp, $this->private_key);
$decrypted .= $decrypted_temp;
}
return $decrypted;
}
/*
* 私钥加密
*/
public function privateEncrypt($data) {
$encrypted = '';
$part_len = $this->key_len / 8 - 11;
$parts = str_split($data, $part_len);
foreach ($parts as $part) {
$encrypted_temp = '';
openssl_private_encrypt($part, $encrypted_temp, $this->private_key);
$encrypted .= $encrypted_temp;
}
return url_safe_base64_encode($encrypted);
}
/*
* 私钥加密
*/
private function privateEncrypt2($data) {
openssl_private_encrypt($data, $encrypted, $this->private_key);
$encrypted = base64_encode($encrypted);
return $encrypted;
}
/*
* 公钥解密
*/
public function publicDecrypt($encrypted) {
$decrypted = "";
$part_len = $this->key_len / 8;
$base64_decoded = url_safe_base64_decode($encrypted);
$parts = str_split($base64_decoded, $part_len);
foreach ($parts as $part) {
$decrypted_temp = '';
openssl_public_decrypt($part, $decrypted_temp, $this->public_key);
$decrypted .= $decrypted_temp;
}
return $decrypted;
}
/*
* 数据加签
*/
public function sign($data) {
openssl_sign($data, $sign, $this->private_key, self::RSA_ALGORITHM_SIGN);
return url_safe_base64_encode($sign);
}
/*
* 数据签名验证
*/
public function verify($data, $sign) {
$pub_id = openssl_get_publickey($this->public_key);
$res = openssl_verify($data, url_safe_base64_decode($sign), $pub_id, self::RSA_ALGORITHM_SIGN);
openssl_free_key($pub_id);
return $res;
}
}
调用案例:
#声明rsa实例化
public function __construct() {
$this->rsa = new XRsa($this->pub_key, $this->pri_key);
}
/*
* 报文签名
*/
private function get_sign($param = array()) {
$arg = "channelCode=" . $param['channelCode'] . "&";
$arg .= "data=" . $param['data'] . "&";
$arg .= "timeStamp=" . $param['timeStamp'] . "&";
$arg .= "serviceName=" . $param['serviceName'];
$arg = $this->rsa->sign($arg);
return $arg;
}
//构建数组
public function getInsuranceFiles_test() {
$data = '{"idCardType":"CER","idCardNumber":"440722196908030521","customerName":"黄丽珠"}';
$timeStamp = time();
//私钥加密
$data = $this->rsa->privateEncrypt($data);
$param['channelCode'] = "CCB";
$param['serviceName'] = "getInsuranceFiles";
$param['timeStamp'] = (string) $timeStamp;
$param['data'] = $data;
//加签名
$sign = $this->get_sign($param);
$param['sign'] = $sign;
$r = json_encode($param);
$r = trim(str_replace("null", '""', $r), "\n");
echo $r;
exit();
}
{"channelCode":"CCB","serviceName":"getInsuranceFiles","timeStamp":"1586244470","data":"NrOo1SwFzdqle33VaPloAAXiu7kBNmTy5kzVAKoh5kHMVyqkQ04RxI5bF7mFZ6TViNCwUOkNINrQxPfnWXeAGclSN4j0Iy6E\/TJ4hCQpL8UjFgicgSW7LtuRUFfU0sSy5lRieq96XimCPLpv+Wo3yTdfIpCKmzerDBJKrFczhr\/biqwSay16d1k6c5rzbLT2535lk1VitNIm+xm9MaEz\/fFEqx54UOpJ4zFaxYOVLwkjTY0E9mrShm0O\/aLv3T2SrgUlfizxRJ9Rcg1bJzeg+41YVM9w9KFQwiDSE1IQol390bC1PWnN68Ui6hcKSbuyKfzJ2BoVxB+NGrGxB\/\/uwg==","sign":"Unoee2wiV+raS9u2tDpYBpAA02jkpOB5Edzod96I\/2S7PVwBjqH6+fQCzEORy063OHGrCfbtcWA5uwKGsNf3a4hBjFFS7y0HK5RXcfUmG\/sUzFF6Jh9TOhthOyytBAbl\/jwAhQ3v4\/4cFaFDGSOE91yA9j0Eild4KtLGrQudkxaveXWG6NoA5G7CX\/CKTmFryFIQcN\/xOdjv3LLATGNJr1kQLvGOjgbxVuwEJ137LpuIo6xlA2G5YqpfXbBLHw\/bH1R+LUtDGsfb+K7Kox8872rZEn\/NXM\/NpxiJ+ptUpAaPH\/Upnqg7kYPCPrQZfYujPx77GgYkLml\/wS1ym9bdCw=="}