Libgfapi php,[PHP高可用后端]②④--Sign机制解剖

最新推荐文章于 2021-06-12 13:33:21 发布

辛载阳

最新推荐文章于 2021-06-12 13:33:21 发布

阅读量181

点赞数

文章标签： Libgfapi php

50dabed312fa?utm_campaign=maleskine&utm_content=note&utm_medium=seo_notes&utm_source=recommendation

image.png

50dabed312fa?utm_campaign=maleskine&utm_content=note&utm_medium=seo_notes&utm_source=recommendation

image.png

50dabed312fa?utm_campaign=maleskine&utm_content=note&utm_medium=seo_notes&utm_source=recommendation

image.png

Aes.php

/**

* Created by PhpStorm.

* User: tong

* Date: 2017/11/15

* Time: 15:48

namespace app\common\lib;

class Aes

{

private $key = null;

/**

* Aes constructor.

function __construct()

{

$this->key = config('app.aeskey');

}

/**

* 加密客户端工程师也需要相应的加密模式和填充方式

* @param string $input

* @return string

public function encryt($input = '')

{

$size = mcrypt_get_block_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_ECB);

$input = $this->pkcs5_pad($input, $size);

$td = mcrypt_module_open(MCRYPT_RIJNDAEL_128, '', MCRYPT_MODE_ECB, '');

$iv = mcrypt_create_iv(mcrypt_enc_get_iv_size($td), MCRYPT_RAND);

mcrypt_generic_init($td, $this->key, $iv);

$data = mcrypt_generic($td, $input);

mcrypt_generic_deinit($td);

mcrypt_module_close($td);

$data = base64_encode($data);

return $data;

}

/**

* 填充方式 pkcs5

* @param string $text 原始字符串

* @param string $blocksize 加密长度

* @return string

private function pkcs5_pad($text, $blocksize)

{

$pad = $blocksize - (strlen($text) % $blocksize);

return $text . str_repeat(chr($pad), $pad);

}

/**

* 解密

* @param string $sStr 解密的字符串

* @return string bool|string 解密的key

* @return string

public function decrypt($sStr)

{

$decrypted = mcrypt_decrypt(MCRYPT_RIJNDAEL_128,

$this->key, base64_decode($sStr), MCRYPT_MODE_ECB);

$dec_s = strlen($decrypted);

$padding = ord($decrypted[$dec_s - 1]);

$decrypted = substr($decrypted, 0, -$padding);

return $decrypted;

}

app.php

/**

* Created by PhpStorm.

* User: tong

* Date: 2017/11/9

* Time: 17:32

return [

'admin_password_pre' => '_#sing_ty',

'aeskey' => 'sgg45747ss223455',//aes密钥，服务端和客户端必须保持一致

];

IAuth.php

/**

* Created by PhpStorm.

* User: tong

* Date: 2017/11/9

* Time: 17:35

namespace app\common\lib;

class IAuth

{

public static function setPassword($data)

{

return md5($data . config('app.admin_password_pre'));

}

/**

* 生成每次请求的sign

* @param array $data

* @return string

public static function setSign($data = [])

{

//1.按字段排序

ksort($data);

//2.拼接字符串数据 &

$string = http_build_query($data);

//3.通过aes加密

$string = (new Aes())->encryt($string);

return $string;

}

Common.php

/**

* Created by PhpStorm.

* User: tong

* Date: 2017/11/15

* Time: 15:33

namespace app\api\controller;

use app\common\lib\Aes;

use app\common\lib\IAuth;

use think\Controller;

class Common extends Controller

{

/**

* 初始化的方法

protected function _initialize()

{

$this->checkRequestAuth();

}

/**

* 检查每次app请求的数据是否合法

public function checkRequestAuth()

{

//首先需要获取headers

$headers = request()->header();

$this->testAes();

/**

* array (size=16)

* 'host' => string 'singwa.com' (length=10)

* 'connection' => string 'keep-alive' (length=10)

* 'content-length' => string '19' (length=2)

* 'origin' => string 'chrome-extension://fhbjgbiflinjbdggehcddcbncdddomop' (length=51)

* 'model' => string 'sanxing5.6' (length=10)

* 'user-agent' => string 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.133 Safari/537.36' (length=115)

* 'content-type' => string 'application/x-www-form-urlencoded' (length=33)

* 'did' => string '231456' (length=6)

* 'app_type' => string 'android' (length=7)

* 'cache-control' => string 'no-cache' (length=8)

* 'postman-token' => string '851c0def-ae2f-baa3-a2fd-c772f1d9f939' (length=36)

* 'sign' => string 'sdjskjdskj' (length=10)

* 'version' => string '1' (length=1)

* 'accept' => string (length=3)

* 'accept-encoding' => string 'gzip, deflate' (length=13)

* 'accept-language' => string 'zh-CN,zh;q=0.8' (length=14)

//halt($headers);

//sign 加密需要客户端工程师解密：服务端工程师

}

public function testAes()

{

//$str = "id=1&ms=45&username=singwa";

//6dDiaoQrSC2tPepBYWGFh8ri8FNeKXBwRFKbn3hv8qA=

//echo (new Aes())->encryt($str);

//$str = "6dDiaoQrSC2tPepBYWGFh8ri8FNeKXBwRFKbn3hv8qA=";

//id=1&ms=45&username=singwa

//echo (new Aes())->decrypt($str);

$data = [

'did'=>'12345dg',

'version'=>1,

];

//sRCvj52mZ8G+u2OdHYwmysvczmCw+RrAYWiEaXFI/5A=

//echo IAuth::setSign($data);

$str="sRCvj52mZ8G+u2OdHYwmysvczmCw+RrAYWiEaXFI/5A=";

echo (new Aes())->decrypt($str);//did=12345dg&version=1

exit;

}

Test.php

/**

* Created by PhpStorm.

* User: tong

* Date: 2017/11/15

* Time: 10:23

namespace app\api\controller;

use app\common\lib\exception\ApiException;

class Test extends Common

{

public function index()

{

return [

'sgsg',

'sgsgs',

];

}

public function update($id = 0)

{

// return $id;//http://singwa.com/test/100

halt(input('put.'));//body提交

}

/**

* post 新增

* @return mixed

public function save()

{

$data = input('post.');

if ($data['mt'] != 1) {

//exception('您提交的数据不合法',403);

throw new ApiException('您提交的数据不合法~~~', 403);

}

//获取到提交数据插入库

//给客户端APP =》接口数据

//201 创建成功

return show(1, 'OK', input('post.'), 201);

}

50dabed312fa?utm_campaign=maleskine&utm_content=note&utm_medium=seo_notes&utm_source=recommendation

image.png

辛载阳

关注

0
点赞
踩
0

收藏

觉得还不错? 一键收藏
0
评论
复制链接

分享到 QQ

分享到新浪微博

扫一扫