alipay-easysdk-ruby 1.0.0

data/lib/alipay/easysdk/kernel/easy_sdk_kernel.rb

@@ -0,0 +1,328 @@
+require_relative 'alipay_constants'
+require_relative 'config'
+require_relative 'util/json_util'
+require_relative 'util/signer'
+require_relative 'util/sign_content_extractor'
+require 'net/http'
+require 'uri'
+require 'cgi'
+
+module Alipay
+  module EasySDK
+    module Kernel
+      class EasySDKKernel
+        attr_reader :config, :optional_text_params, :optional_biz_params, :text_params, :biz_params
+
+      def initialize(config)
+        @config = config
+        @optional_text_params = {}
+        @optional_biz_params = {}
+        @text_params = {}
+        @biz_params = {}
+      end
+
+      def inject_text_param(key, value)
+        if key != nil
+          @optional_text_params[key] = value
+        end
+      end
+
+      def inject_biz_param(key, value)
+        if key != nil
+          @optional_biz_params[key] = value
+        end
+      end
+
+      def get_timestamp
+        return Time.now.strftime("%Y-%m-%d %H:%M:%S")
+      end
+
+      def get_config(key)
+        case key
+        when 'protocol'
+          @config.protocol
+        when 'gatewayHost'
+          @config.gateway_host
+        when 'appId'
+          @config.app_id
+        when 'merchantPrivateKey'
+          @config.merchant_private_key
+        when 'alipayPublicKey'
+          @config.alipay_public_key
+        when 'signType'
+          @config.sign_type
+        when 'charset'
+          @config.charset
+        when 'format'
+          @config.format
+        when 'version'
+          @config.version
+        else
+          nil
+        end
+      end
+
+      def get_sdk_version
+        AlipayConstants::SDK_VERSION
+      end
+
+      def to_url_encoded_request_body(biz_params)
+        sorted_map = get_sorted_map(nil, biz_params, nil)
+        if sorted_map.nil? || sorted_map.empty?
+          return nil
+        end
+        build_query_string(sorted_map)
+      end
+
+      def read_as_json(response, method)
+        response_body = response.body
+        map = {}
+        map['body'] = response_body
+        map['method'] = method
+        return map
+      end
+
+      def get_random_boundary
+        Time.now.strftime("%Y-%m-%d %H:%M:%S") + ''
+      end
+
+      def generate_page(method, system_params, biz_params, text_params, sign)
+        puts "[DEBUG] generate_page - sign长度: #{sign.length}" if ENV['DEBUG']
+        if method == 'GET'
+          # 采集并排序所有参数
+          sorted_map = get_sorted_map(system_params, biz_params, text_params)
+          sorted_map[AlipayConstants::SIGN_FIELD] = sign
+          return get_gateway_server_url + '?' + build_query_string(sorted_map)
+        elsif method == 'POST'
+          # 完全按照PHP版本的逻辑：采集并排序所有参数，不覆盖已注入的参数
+          sorted_map = get_sorted_map(system_params, biz_params, text_params)
+          sorted_map[AlipayConstants::SIGN_FIELD] = sign
+          puts "[DEBUG] generate_page POST - sorted_map中sign长度: #{sorted_map[AlipayConstants::SIGN_FIELD].length}" if ENV['DEBUG']
+          return build_form(get_gateway_server_url, sorted_map)
+        else
+          raise "不支持" + method
+        end
+      end
+
+      def get_merchant_cert_sn
+        return @config.merchant_cert_sn
+      end
+
+      def get_alipay_cert_sn(resp_map)
+        if !@config.merchant_cert_sn.nil? && !@config.merchant_cert_sn.empty?
+          body = JSON.parse(resp_map['body'])
+          alipay_cert_sn = body['alipay_cert_sn']
+          return alipay_cert_sn
+        end
+      end
+
+      def get_alipay_root_cert_sn
+        return @config.alipay_root_cert_sn
+      end
+
+      def is_cert_mode
+        return @config.merchant_cert_sn
+      end
+
+      def extract_alipay_public_key(alipay_cert_sn)
+        # Ruby 版本只存储一个版本支付宝公钥
+        return @config.alipay_public_key
+      end
+
+      def verify(resp_map, alipay_public_key)
+        resp = JSON.parse(resp_map['body'])
+        sign = resp[AlipayConstants::SIGN_FIELD]
+        sign_content_extractor = Alipay::EasySDK::Kernel::Util::SignContentExtractor.new
+        content = sign_content_extractor.get_sign_source_data(resp_map['body'], resp_map['method'])
+        signer = Alipay::EasySDK::Kernel::Util::Signer.new
+        return signer.verify(content, sign, alipay_public_key)
+      end
+
+      def sign(system_params, biz_params, text_params, private_key)
+        sorted_map = get_sorted_map(system_params, biz_params, text_params)
+        data = get_sign_content(sorted_map)
+        if ENV['DEBUG']
+          puts "[DEBUG] sign content: #{data}"
+        end
+        puts "[DEBUG] 签名内容: #{data[0, 100]}..." if ENV['DEBUG']
+        signer = Alipay::EasySDK::Kernel::Util::Signer.new
+        signature = signer.sign(data, private_key)
+        puts "[DEBUG] 生成签名长度: #{signature.length}" if ENV['DEBUG']
+        return signature
+      end
+
+      def generate_order_string(system_params, biz_params, text_params, sign)
+        # 采集并排序所有参数
+        sorted_map = get_sorted_map(system_params, biz_params, text_params)
+        sorted_map[AlipayConstants::SIGN_FIELD] = sign
+        URI.encode_www_form(sorted_map)
+      end
+
+      def sort_map(random_map)
+        return random_map
+      end
+
+      def to_resp_model(resp_map)
+        body = resp_map['body']
+        method_name = resp_map['method']
+        response_node_name = method_name.gsub(".", "_") + "_response"
+
+        model = JSON.parse(body)
+        if body.include?("error_response")
+          result = model["error_response"]
+          result['body'] = body
+        else
+          result = model[response_node_name]
+          result['body'] = body
+        end
+        return result
+      end
+
+      def verify_params(parameters, public_key)
+        signer = Alipay::EasySDK::Kernel::Util::Signer.new
+        return signer.verify_params(parameters, public_key)
+      end
+
+      def concat_str(a, b)
+        return a + b
+      end
+
+      private
+
+      def build_query_string(sorted_map)
+        request_url = nil
+        sorted_map.each do |sys_param_key, sys_param_value|
+          if request_url.nil?
+            request_url = "#{sys_param_key}=" + url_encode(characet(sys_param_value.to_s, AlipayConstants::DEFAULT_CHARSET)) + "&"
+          else
+            request_url += "#{sys_param_key}=" + url_encode(characet(sys_param_value.to_s, AlipayConstants::DEFAULT_CHARSET)) + "&"
+          end
+        end
+        request_url = request_url[0...-1] unless request_url.nil?
+        return request_url
+      end
+
+      def get_sorted_map(system_params, biz_params, text_params)
+        @text_params = text_params
+        @biz_params = biz_params
+        if text_params != nil && !@optional_text_params.empty?
+          @text_params = text_params.merge(@optional_text_params)
+        elsif text_params == nil
+          @text_params = @optional_text_params
+        end
+        if biz_params != nil && !@optional_biz_params.empty?
+          @biz_params = biz_params.merge(@optional_biz_params)
+        elsif biz_params == nil
+          @biz_params = @optional_biz_params
+        end
+
+        json = Alipay::EasySDK::Kernel::Util::JsonUtil.new
+        if @biz_params != nil
+          biz_params = json.to_json_string(@biz_params)
+        end
+        sorted_map = system_params || {}
+        if !biz_params.nil? && !biz_params.empty?
+          # 模拟PHP json_encode($bizParams, JSON_UNESCAPED_UNICODE)
+          json_string = JSON.generate(JSON.parse(biz_params)).gsub('/', "\\/")
+          sorted_map[AlipayConstants::BIZ_CONTENT_FIELD] = json_string
+        end
+        if !@text_params.nil? && !@text_params.empty?
+          if !sorted_map.empty?
+            sorted_map = sorted_map.merge(@text_params)
+          else
+            sorted_map = @text_params
+          end
+        end
+        if get_config('notify_url') != nil
+          sorted_map['notify_url'] = get_config('notify_url')
+        end
+        return sorted_map
+      end
+
+      def get_sign_content(params)
+        # 模拟PHP的ksort
+        sorted_params = params.sort_by { |k, _| k.to_s }.to_h
+
+        string_to_be_signed = ""
+        i = 0
+        sorted_params.each do |k, v|
+          if !check_empty(v) && v.to_s[0] != "@"
+            # 转换成目标字符集
+            v = characet(v.to_s, AlipayConstants::DEFAULT_CHARSET)
+            if i == 0
+              string_to_be_signed += "#{k}=#{v}"
+            else
+              string_to_be_signed += "&#{k}=#{v}"
+            end
+            i += 1
+          end
+        end
+        return string_to_be_signed
+      end
+
+      def get_gateway_server_url
+        return get_config('protocol') + '://' + get_config('gatewayHost').gsub('/gateway.do', '') + '/gateway.do'
+      end
+
+      def check_empty(value)
+        if value.nil?
+          return true
+        end
+        if value == ""
+          return true
+        end
+        if value.to_s.strip == ""
+          return true
+        end
+        return false
+      end
+
+      def characet(data, target_charset)
+        if !data.nil? && !data.empty?
+          file_type = AlipayConstants::DEFAULT_CHARSET
+          if file_type.downcase != target_charset.downcase
+            begin
+              data = data.encode(target_charset, invalid: :replace, undef: :replace)
+            rescue
+              data = data.force_encoding(target_charset)
+            end
+          end
+        end
+        return data
+      end
+
+      def url_encode(str)
+        # 模拟PHP的urlencode
+        str.gsub(/[^a-zA-Z0-9\-_.~]/n) do |s|
+          '%' + s.unpack('H2' * s.bytesize).join('%').upcase
+        end
+      end
+
+      def build_form(url, params)
+        puts "[DEBUG] build_form - 原始params keys: #{params.keys.join(', ')}" if ENV['DEBUG']
+        puts "[DEBUG] build_form - sign长度: #{params[AlipayConstants::SIGN_FIELD].length}" if ENV['DEBUG'] && params[AlipayConstants::SIGN_FIELD]
+
+        # 完全按照PHP版本的PageUtil::buildForm方法：过滤空值参数
+        form_fields = ""
+        params.each do |key, val|
+          if !check_empty(val)  # 与PHP版本的checkEmpty逻辑完全一致
+            # 按照PHP版本：将单引号替换为'
+            escaped_val = val.to_s.gsub("'", "'")
+            form_fields += "<input type='hidden' name='#{key}' value='#{escaped_val}'/>"
+          end
+        end
+
+        # 完全按照PHP版本：在action URL中添加charset参数
+        action_url = "#{url}?charset=#{AlipayConstants::DEFAULT_CHARSET}"
+
+        <<~HTML
+          <form id='alipaysubmit' name='alipaysubmit' action='#{action_url}' method='POST'>
+            #{form_fields}
+            <input type='submit' value='ok' style='display:none;'></form>
+          <script>document.forms['alipaysubmit'].submit();</script>
+        HTML
+      end
+      end
+    end
+  end
+end

data/lib/alipay/easysdk/kernel/factory.rb

@@ -0,0 +1,95 @@
+require_relative 'alipay_constants'
+require_relative 'config'
+require_relative 'easy_sdk_kernel'
+require_relative '../payment/wap/client'
+require_relative '../payment/page/client'
+require_relative '../payment/common/client'
+
+module Alipay
+  module EasySDK
+    module Kernel
+      class Factory
+        class ConfigurationNotSetError < StandardError; end
+
+        class << self
+          def set_options(options = nil)
+            config = normalize_config(options)
+            initialize_context(config)
+            @instance
+          end
+
+          alias setOptions set_options
+
+          def config(options = nil)
+            return set_options(options) if options
+            ensure_context_set!
+            @config
+          end
+
+          def payment
+            ensure_context_set!
+            @payment
+          end
+
+          def wap
+            payment.wap
+          end
+
+          def page
+            payment.page
+          end
+
+          def common
+            payment.common
+          end
+
+          def kernel
+            ensure_context_set!
+            @kernel
+          end
+
+          def get_sdk_version
+            Alipay::EasySDK::Kernel::AlipayConstants::SDK_VERSION
+          end
+
+          private
+
+          def normalize_config(options)
+            raise ArgumentError, '配置参数不能为空' if options.nil?
+            return options if options.is_a?(Config)
+            Config.new(options)
+          end
+
+          def initialize_context(config)
+            @config = config
+            @kernel = EasySDKKernel.new(config)
+            @payment = Payment.new(@kernel)
+            @instance = self
+          end
+
+          def ensure_context_set!
+            raise ConfigurationNotSetError, '请先调用Factory.set_options(config)设置SDK配置' unless @config
+          end
+        end
+
+        class Payment
+          def initialize(kernel)
+            @kernel = kernel
+          end
+
+          def wap
+            @wap ||= Alipay::EasySDK::Payment::Wap::Client.new(@kernel)
+          end
+
+          def page
+            @page ||= Alipay::EasySDK::Payment::Page::Client.new(@kernel)
+          end
+
+          def common
+            @common ||= Alipay::EasySDK::Payment::Common::Client.new(@kernel)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/alipay/easysdk/kernel/util/json_util.rb

@@ -0,0 +1,30 @@
+require 'json'
+
+module Alipay
+  module EasySDK
+    module Kernel
+      module Util
+        class JsonUtil
+          # 完全复制PHP版本的toJsonString方法
+          def to_json_string(obj)
+            case obj
+            when Hash, Array
+              JSON.generate(obj)
+            when String
+              obj
+            else
+              obj.to_s
+            end
+          end
+
+          def self.from_json_string(json_string)
+            return nil if json_string.nil? || json_string.empty?
+            JSON.parse(json_string)
+          rescue JSON::ParserError
+            json_string
+          end
+        end
+      end
+    end
+  end
+end

data/lib/alipay/easysdk/kernel/util/response_checker.rb

@@ -0,0 +1,28 @@
+module Alipay
+  module EasySDK
+    module Kernel
+      module Util
+        class ResponseChecker
+          def success?(response)
+            return true if response.respond_to?(:code) && response.code.to_s == '10000'
+
+            code_blank = !response.respond_to?(:code) || blank?(response.code)
+            sub_code_blank = !response.respond_to?(:sub_code) || blank?(response.sub_code)
+
+            code_blank && sub_code_blank
+          end
+
+          def success(response)
+            success?(response)
+          end
+
+          private
+
+          def blank?(value)
+            value.nil? || value.to_s.strip.empty?
+          end
+        end
+      end
+    end
+  end
+end

data/lib/alipay/easysdk/kernel/util/sign_content_extractor.rb

@@ -0,0 +1,50 @@
+require_relative '../alipay_constants'
+
+module Alipay
+  module EasySDK
+    module Kernel
+      module Util
+        class SignContentExtractor
+          def initialize
+            @response_suffix = "_response"
+            @error_response = "error_response"
+          end
+
+          # 完全复制PHP版本的getSignSourceData方法
+          def get_sign_source_data(body, method)
+            root_node_name = method.gsub(".", "_") + @response_suffix
+            root_index = body.index(root_node_name)
+            if root_index != body.rindex(root_node_name)
+              raise '检测到响应报文中有重复的' + root_node_name + ',验签失败。'
+            end
+            error_index = body.index(@error_response)
+            if root_index && root_index > 0
+              return parser_json_source(body, root_node_name, root_index)
+            elsif error_index && error_index > 0
+              return parser_json_source(body, @error_response, error_index)
+            else
+              return nil
+            end
+          end
+
+          # 完全复制PHP版本的parserJSONSource方法
+          def parser_json_source(response_content, node_name, node_index)
+            sign_data_start_index = node_index + node_name.length + 2
+            if response_content.include?(AlipayConstants::ALIPAY_CERT_SN_FIELD)
+              sign_index = response_content.rindex("\"" + AlipayConstants::ALIPAY_CERT_SN_FIELD + "\"")
+            else
+              sign_index = response_content.rindex("\"" + AlipayConstants::SIGN_FIELD + "\"")
+            end
+            # 签名前-逗号
+            sign_data_end_index = sign_index - 1
+            index_len = sign_data_end_index - sign_data_start_index
+            if index_len < 0
+              return nil
+            end
+            return response_content[sign_data_start_index, index_len]
+          end
+        end
+      end
+    end
+  end
+end

data/lib/alipay/easysdk/kernel/util/signer.rb

@@ -0,0 +1,125 @@
+require 'base64'
+require 'openssl'
+
+module Alipay
+  module EasySDK
+    module Kernel
+      module Util
+        class Signer
+          # 完全复制PHP版本的sign方法
+          def sign(content, private_key_pem)
+            begin
+              pri_key = private_key_pem
+
+              # 完全按照PHP的逻辑：wordwrap($priKey, 64, "\n", true)
+              res = "-----BEGIN RSA PRIVATE KEY-----\n" +
+                    wordwrap(pri_key, 64, "\n", true) +
+                    "\n-----END RSA PRIVATE KEY-----"
+
+              if res.nil? || res.empty?
+                raise '您使用的私钥格式错误，请检查RSA私钥配置'
+              end
+
+              # 使用SHA256算法签名，完全模仿PHP的openssl_sign
+              private_key = OpenSSL::PKey::RSA.new(res)
+              digest = OpenSSL::Digest::SHA256.new
+              sign = private_key.sign(digest, content)
+
+            # 使用标准Base64编码，完全模仿PHP的base64_encode
+            Base64.strict_encode64(sign)
+            rescue
+              raise '您使用的私钥格式错误，请检查RSA私钥配置'
+            end
+          end
+
+          # 完全复制PHP版本的verify方法
+          def verify(content, sign, public_key_pem)
+            begin
+              pub_key = public_key_pem
+
+              # 完全按照PHP的逻辑：wordwrap($pubKey, 64, "\n", true)
+              res = "-----BEGIN PUBLIC KEY-----\n" +
+                    wordwrap(pub_key, 64, "\n", true) +
+                    "\n-----END PUBLIC KEY-----"
+
+              if res.nil? || res.empty?
+                raise '支付宝RSA公钥错误。请检查公钥文件格式是否正确'
+              end
+
+              # 调用openssl内置方法验签，完全模仿PHP的openssl_verify
+              public_key = OpenSSL::PKey::RSA.new(res)
+              digest = OpenSSL::Digest::SHA256.new
+              decoded_sign = Base64.decode64(sign)
+
+              result = public_key.verify(digest, decoded_sign, content)
+              return result
+            rescue
+              return false
+            end
+          end
+
+          def verify_params(parameters, public_key)
+            sign = parameters['sign']
+            content = get_sign_content(parameters)
+            return verify(content, sign, public_key)
+          end
+
+          def get_sign_content(params)
+            # 模拟PHP的ksort
+            sorted_params = params.sort_by { |k, _| k.to_s }.to_h
+
+            # 移除sign和sign_type字段
+            sorted_params.delete('sign')
+            sorted_params.delete('sign_type')
+
+            string_to_be_signed = ""
+            i = 0
+            sorted_params.each do |k, v|
+              if v.to_s[0] != "@"
+                if i == 0
+                  string_to_be_signed += "#{k}=#{v}"
+                else
+                  string_to_be_signed += "&#{k}=#{v}"
+                end
+                i += 1
+              end
+            end
+            return string_to_be_signed
+          end
+
+          private
+
+          # 完全复制PHP的wordwrap函数
+          def wordwrap(str, width = 75, break_str = "\n", cut = false)
+            if str.nil? || str.empty?
+              return str
+            end
+
+            if cut
+              # 如果cut为true，强制在指定宽度处断开
+              str.scan(/.{1,#{width}}/).join(break_str)
+            else
+              # 默认行为，不在单词中间断开
+              result = []
+              current_line = ""
+
+              str.split.each do |word|
+                if current_line.empty?
+                  current_line = word
+                elsif current_line.length + 1 + word.length <= width
+                  current_line += " " + word
+                else
+                  result << current_line
+                  current_line = word
+                end
+              end
+
+              result << current_line unless current_line.empty?
+              result.join(break_str)
+            end
+          end
+        end
+      end
+    end
+  end
+end