RubyGems - alipay - Versions diffs - 0.15.2 → 0.16.0 - Mend

alipay 0.15.2 → 0.16.0

Files changed (7) hide show

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 46b46f90c6340aeb58cf9de3a967423f390fa0444a63635f0548bace4019a61f
-  data.tar.gz: b011da754fa7343f08785829906b33014807794184b130a0d413dfee3048e679
+  metadata.gz: eaf353d4e52fc0f91a43b6f46e80adf7f9d98b17ab0f1c67be502c3fce821fa3
+  data.tar.gz: '0788e20aa4336c4f5c343e6fcd0808394639c490b0ea0dc8eadfc22ad77f2483'
 SHA512:
-  metadata.gz: '033712118c048e90a8e45189d4483fcef0c549c68c21182c2c09b3b72cefe9c32ee75b1645b39dc8f54346315a47fd8f17013f02e897f4399f1be6ccf1727f68'
-  data.tar.gz: ed308742f277d296686254a6801269db4c33ea32fcc2f64b7df6bc778913332050426970638f5797639db9f45c8773d1c7476dcae0ab51fe20bf2e296e42537a
+  metadata.gz: 8ed5ec0e18693fcc9832183b9bc47e09b2b32bd12b1d039ec06d42d9c3fa3ce8da9e99c37e600401bb97a4efd1f404c2da2cb25e73209b4fbdb73b37313235b3
+  data.tar.gz: 9381151fbccf366f5eeeda5f93a6ec9bb190918f11e39f0f11b4de6953531f40bf60711b103d56ab729ad235bea82e635c3a2efabc5e2b4dceabc6c658e72530

data/CHANGELOG.md CHANGED

@@ -1,5 +1,9 @@
 ## master
+## v0.16.0 (2020-05-15)
+- Support certificate signature, thanks @moohao #92
 ## v0.15.2 (2019-08-02)
 - page_execute_form invalid-signature charset, thanks @lingceng #90

data/doc/rsa_key_cn.md CHANGED

@@ -6,6 +6,7 @@
 * [生成应用密钥](#生成应用密钥)
 * [验证参数](#验证参数)
 * [补充格式到支付宝公钥](#补充格式到支付宝公钥)
+* [使用证书签名方式](#使用证书签名方式)
 ### 生成应用密钥
 #### 在 Ruby 下生成 RSA2 密钥
@@ -62,3 +63,43 @@ pub_key.scan(/.{64}|.+$/).join("\n").insert(0, "-----BEGIN PUBLIC KEY-----\n").i
 # => "-----BEGIN PUBLIC KEY-----\nMIIBI...\n-----END PUBLIC KEY-----\n"
 ```
+# 使用证书签名方式
+## 应用证书配置
+按照官方文档进行新建应用配置证书签名 https://docs.open.alipay.com/291/twngcd/
+配置完成后，可以得到 `xxx.com_私钥.txt  alipayCertPublicKey_RSA2.crt  appCertPublicKey_2019082600000001.crt  alipayRootCert.crt` 四个文件。
+### 应用私钥补充格式
+```ruby
+app_private_key = File.read('xxx.com_私钥.txt')
+app_private_key = app_private_key.scan(/.{64}|.+$/).join("\n").insert(0, "-----BEGIN RSA PRIVATE KEY-----\n").insert(-1, "\n-----END RSA PRIVATE KEY-----\n")
+```
+### 处理应用阿里云公钥
+```ruby
+alipay_public_key = File.read('alipayCertPublicKey_RSA2.crt')
+alipay_public_key = OpenSSL::X509::Certificate.new(alipay_public_key).public_key.to_s
+```
+### 得到应用公钥证书sn
+```ruby
+app_cert = File.read('appCertPublicKey_2019082600000001.crt')
+app_cert_sn = Alipay::Utils.get_cert_sn(app_cert)
+# => "28d1147972121b91734da59aa10f3c16"
+```
+### 得到支付宝根证书sn
+```ruby
+alipay_root_cert = File.read('alipayRootCert.crt')
+alipay_root_cert_sn = Alipay::Utils.get_root_cert_sn(alipay_root_cert)
+# => "28d1147972121b91734da59aa10f3c16_28d1147972121b91734da59aa10f3c16"
+```
+### 使用
+```ruby
+@alipay_client = Alipay::Client.new(
+  url: API_URL,
+  app_id: APP_ID,
+  app_private_key: app_private_key,
+  alipay_public_key: alipay_public_key,
+  app_cert_sn: app_cert_sn,
+  alipay_root_cert_sn: alipay_root_cert_sn
+)
+```

data/lib/alipay/client.rb CHANGED

@@ -37,6 +37,8 @@ module Alipay
       @format = options['format'] || 'json'
       @charset = options['charset'] || 'UTF-8'
       @sign_type = options['sign_type'] || 'RSA2'
+      @app_cert_sn = options['app_cert_sn']
+      @alipay_root_cert_sn = options['alipay_root_cert_sn']
     end
     # Generate a query string that use for APP SDK excute.
@@ -183,6 +185,12 @@ module Alipay
         'version' => '1.0',
         'timestamp' => Time.now.localtime('+08:00').strftime("%Y-%m-%d %H:%M:%S")
       }.merge(::Alipay::Utils.stringify_keys(params))
+      if !@app_cert_sn.nil? && !@alipay_root_cert_sn.nil?
+        params = params.merge({
+          'app_cert_sn' => @app_cert_sn,
+          'alipay_root_cert_sn' => @alipay_root_cert_sn
+        })
+      end
       params['sign'] = sign(params)
       params
     end

data/lib/alipay/utils.rb CHANGED

@@ -15,5 +15,36 @@ module Alipay
       batch_no = t.strftime('%Y%m%d%H%M%S') + t.nsec.to_s
       batch_no.ljust(24, rand(10).to_s)
     end
+    # get app_cert_sn
+    def self.get_cert_sn(str, match_algo = false)
+      return nil if str.nil?
+      certificate = OpenSSL::X509::Certificate.new(str)
+      if match_algo
+        begin
+          return unless certificate.public_key.is_a?(OpenSSL::PKey::RSA)
+        rescue => exception
+          return
+        end
+      end
+      issuer_arr = OpenSSL::X509::Name.new(certificate.issuer).to_a
+      issuer = issuer_arr.reverse.map { |item| item[0..1].join('=') }.join(',')
+      serial = OpenSSL::BN.new(certificate.serial).to_s
+      OpenSSL::Digest::MD5.hexdigest(issuer + serial)
+    end
+    # get alipay_root_cert_sn
+    def self.get_root_cert_sn(str)
+      return nil if str.nil?
+      arr = str.scan(/-----BEGIN CERTIFICATE-----[\s\S]*?-----END CERTIFICATE-----/)
+      arr_sn = []
+      arr.each do |item|
+        sn = get_cert_sn(item, true)
+        unless sn.nil?
+          arr_sn.push(sn)
+        end
+      end
+      arr_sn.join('_')
+    end
   end
 end

data/lib/alipay/version.rb CHANGED

@@ -1,3 +1,3 @@
 module Alipay
-  VERSION = "0.15.2"
+  VERSION = "0.16.0"
 end

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: alipay
 version: !ruby/object:Gem::Version
-  version: 0.15.2
+  version: 0.16.0
 platform: ruby
 authors:
 - Rei
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2019-08-02 00:00:00.000000000 Z
+date: 2020-05-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -123,7 +123,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
+rubygems_version: 3.0.6
 signing_key:
 specification_version: 4
 summary: An unofficial simple alipay gem