微信小程序时下大热,抱着学习的心态了解了一下,目前没有搜到完整的.NET用户数据签名验证和解密代码,于是就写了一点。
简单使用方法:
1、客户端调用wx.getUserInfo方法,服务端创建WeChatLoginInfo类的实例接收客户端发来的数据;
2、服务端新建WeChatAppDecrypt类的实例,初始化此类时需传入appId与AppSecret用于验证;
3、调用WeChatAppDecrypt类中的Decrypt方法,传入步骤1中获取的WechatLoginInfo实例;
4、得到WechatUserInfo类的实例,其中就是解密好的数据。
话不多说,注释比较详尽,感兴趣的朋友可以参考。
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
|
using System;
using System.Net;
using System.Net.Http;
using System.Net.Http.Headers;
using Newtonsoft.Json;
using System.Security.Cryptography;
using System.Text;
namespace BroadSky.WeChatAppDecrypt
{
/// <summary>
/// 处理微信小程序用户数据的签名验证和解密
/// </summary>
public class WeChatAppDecrypt
{
private string appId;
private string appSecret;
/// <summary>
/// 构造函数
/// </summary>
/// <param name="appId">应用程序的AppId</param>
/// <param name="appSecret">应用程序的AppSecret</param>
public WeChatAppDecrypt(string appId, string appSecret)
{
this.appId = appId;
this.appSecret = appSecret;
return;
}
/// <summary>
/// 获取OpenId和SessionKey的Json数据包
/// </summary>
/// <param name="code">客户端发来的code</param>
/// <returns>Json数据包</returns>
private string GetOpenIdAndSessionKeyString(string code)
{
string temp = "https://api.weixin.qq.com/sns/jscode2session?" +
"appid=" + appId
+ "&secret=" + appSecret
+ "&js_code=" + code
+ "&grant_type=authorization_code";
return GetResponse(temp);
}
/// <summary>
/// 反序列化包含OpenId和SessionKey的Json数据包
/// </summary>
/// <param name="code">Json数据包</param>
/// <returns>包含OpenId和SessionKey的类</returns>
public OpenIdAndSessionKey DecodeOpenIdAndSessionKey(WechatLoginInfo loginInfo)
{
OpenIdAndSessionKey oiask = JsonConvert.DeserializeObject<OpenIdAndSessionKey>(GetOpenIdAndSessionKeyString(loginInfo.code));
if (!String.IsNullOrEmpty(oiask.errcode))
return null;
return oiask;
}
/// <summary>
/// 根据微信小程序平台提供的签名验证算法验证用户发来的数据是否有效
/// </summary>
/// <param name="rawData">公开的用户资料</param>
/// <param name="signature">公开资料携带的签名信息</param>
/// <param name="sessionKey">从服务端获取的SessionKey</param>
/// <returns>True:资料有效,False:资料无效</returns>
public bool VaildateUserInfo(string rawData, string signature, string sessionKey)
{
//创建SHA1签名类
SHA1 sha1 = new SHA1CryptoServiceProvider();
//编码用于SHA1验证的源数据
byte[] source = Encoding.UTF8.GetBytes(rawData + sessionKey);
//生成签名
byte[] target = sha1.ComputeHash(source);
//转化为string类型,注意此处转化后是中间带短横杠的大写字母,需要剔除横杠转小写字母
string result = BitConverter.ToString(target).Replace("-","").ToLower();
//比对,输出验证结果
return signature == result;
}
/// <summary>
/// 根据微信小程序平台提供的签名验证算法验证用户发来的数据是否有效
/// </summary>
/// <param name="loginInfo">登陆信息</param>
/// <param name="sessionKey">从服务端获取的SessionKey</param>
/// <returns>True:资料有效,False:资料无效</returns>
public bool VaildateUserInfo(WechatLoginInfo loginInfo, string sessionKey)
{
return VaildateUserInfo(loginInfo.rawData, loginInfo.signature, sessionKey);
}
/// <summary>
/// 根据微信小程序平台提供的签名验证算法验证用户发来的数据是否有效
/// </summary>
/// <param name="loginInfo">登陆信息</param>
/// <param name="idAndKey">包含OpenId和SessionKey的类</param>
/// <returns>True:资料有效,False:资料无效</returns>
public bool VaildateUserInfo(WechatLoginInfo loginInfo, OpenIdAndSessionKey idAndKey)
{
return VaildateUserInfo(loginInfo, idAndKey.session_key);
}
/// <summary>
/// 根据微信小程序平台提供的解密算法解密数据
/// </summary>
/// <param name="encryptedData">加密数据</param>
/// <param name="iv">初始向量</param>
/// <param name="sessionKey">从服务端获取的SessionKey</param>
/// <returns></returns>
public WechatUserInfo Decrypt(string encryptedData, string iv, string sessionKey)
{
WechatUserInfo userInfo;
//创建解密器生成工具实例
AesCryptoServiceProvider aes = new AesCryptoServiceProvider();
//设置解密器参数
aes.Mode = CipherMode.CBC;
aes.BlockSize = 128;
aes.Padding = PaddingMode.PKCS7;
//格式化待处理字符串
byte[] byte_encryptedData = Convert.FromBase64String(encryptedData);
byte[] byte_iv = Convert.FromBase64String(iv);
byte[] byte_sessionKey = Convert.FromBase64String(sessionKey);
aes.IV = byte_iv;
aes.Key = byte_sessionKey;
//根据设置好的数据生成解密器实例
ICryptoTransform transform = aes.CreateDecryptor();
//解密
byte [] final = transform.TransformFinalBlock(byte_encryptedData, 0, byte_encryptedData.Length);
//生成结果
string result = Encoding.UTF8.GetString(final);
//反序列化结果,生成用户信息实例
userInfo = JsonConvert.DeserializeObject<WechatUserInfo>(result);
return userInfo;
}
/// <summary>
/// 根据微信小程序平台提供的解密算法解密数据,推荐直接使用此方法
/// </summary>
/// <param name="loginInfo">登陆信息</param>
/// <returns>用户信息</returns>
public WechatUserInfo Decrypt(WechatLoginInfo loginInfo)
{
if (loginInfo == null)
return null;
if (String.IsNullOrEmpty(loginInfo.code))
return null;
OpenIdAndSessionKey oiask = DecodeOpenIdAndSessionKey(loginInfo);
if (oiask == null)
return null;
if (!VaildateUserInfo(loginInfo, oiask))
return null;
WechatUserInfo userInfo = Decrypt(loginInfo.encryptedData, loginInfo.iv, oiask.session_key);
return userInfo;
}
/// <summary>
/// GET请求
/// </summary>
/// <param name="url"></param>
/// <returns></returns>
private string GetResponse(string url)
{
if (url.StartsWith("https"))
System.Net.ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls;
HttpClient httpClient = new HttpClient();
httpClient.DefaultRequestHeaders.Accept.Add(
new MediaTypeWithQualityHeaderValue("application/json"));
HttpResponseMessage response = httpClient.GetAsync(url).Result;
if (response.IsSuccessStatusCode)
{
string result = response.Content.ReadAsStringAsync().Result;
return result;
}
return null;
}
}
/// <summary>
/// 微信小程序登录信息结构
/// </summary>
public class WechatLoginInfo
{
public string code { get; set; }
public string encryptedData { get; set; }
public string iv { get; set; }
public string rawData { get; set; }
public string signature { get; set; }
}
/// <summary>
/// 微信小程序用户信息结构
/// </summary>
public class WechatUserInfo
{
public string openId { get; set; }
public string nickName { get; set; }
public string gender { get; set; }
public string city { get; set; }
public string province { get; set; }
public string country { get; set; }
public string avatarUrl { get; set; }
public string unionId { get; set; }
public Watermark watermark { get; set; }
public class Watermark
{
public string appid { get; set; }
public string timestamp { get; set; }
}
}
/// <summary>
/// 微信小程序从服务端获取的OpenId和SessionKey信息结构
/// </summary>
public class OpenIdAndSessionKey
{
public string openid { get; set; }
public string session_key { get; set; }
public string errcode { get; set; }
public string errmsg { get; set; }
}
}
|
以上就是本文的全部内容,希望对大家的学习有所帮助,也希望大家多多支持服务器之家。
原文链接:https://blog.csdn.net/ivanyoung66/article/details/72523231