iapserver 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 2a403c1d622c91998cf08f8a4b1c6169e7db207be81ba949be96dd277e280f2a
+  data.tar.gz: f5fea2ddc0e141f902787776eda279b9ea0c7484f9523aa5663b5a14170ecdbd
+SHA512:
+  metadata.gz: 84ac3c0c6db814620aa80a590bcc58ddcf0ad428bf1400374e77e7d6fabcb0ee0607af07b91a63446f3ad273a92cbe1b234a50464165d15fae9f6eb5c84d675d
+  data.tar.gz: e455044d03126adbf7f609bf88a2c55a33a7bd552b7a9c8911a4382b4398c6f3301a169582bd5fb9de817b82d3b6cf478ce8e94054092b9e6f1ff9f637169378

data/bin/iapserver

@@ -0,0 +1,4 @@
+#!/usr/bin/env ruby
+require 'iapserver.rb'
+
+IAPServer::CommandsGenerator.start

data/lib/iap/appstore_config.rb

@@ -0,0 +1,71 @@
+require 'pathname'
+require 'json'
+
+module IAPServer
+	class AppStoreConfig
+        def self.config_path
+        	@config_path ||= begin
+        		path = Pathname.new(File.expand_path('~/.iapserver_config'))
+        		path.mkpath unless path.exist?
+        		path
+        	end
+        	@config_path
+        end
+
+        def self.default_config
+        	configs = all_configs
+        	return configs.first if configs.size == 1
+        	raise "你还没有配置AppStore Connect的密钥参数，执行`iapserver config -a 'xxx'`添加。".red if configs.size == 0
+
+        	list_configs
+			num = input("有多个配置，请输入序号选择合适的配置：")
+			raise "序号输入有误".red if num.empty?
+
+			raise "序号输入有误".red unless (0...configs.size) === num.to_i - 1
+			return configs[(num.to_i - 1)]
+        end
+
+        def self.input(message)
+            print "#{message}".red
+            STDIN.gets.chomp.strip
+        end
+
+        def self.all_configs
+        	config_path.children().map do |child|
+        		next if File.basename(child) == '.DS_Store'
+        		next unless File.file?(child)
+        		JSON.parse(File.read(child))
+        	end.reject(&:nil?) || []
+        end
+
+        def self.add_config(add_name, config)
+			add_path = config_path + add_name
+			json = config.to_json
+        	File.write(add_path, json)
+        end
+
+        def self.list_configs(show_more=false)
+        	configs = all_configs
+        	index = 1
+        	configs.each do |config|
+        		name, key, kid, iss, bid = config['name'], config['key'], config['kid'], config['iss'], config['bid']
+        		puts "#{index}) #{name}"
+        		puts "  key: #{key}" if show_more
+        		puts "  kid: #{kid}" if show_more
+        		puts "  iss: #{iss}" if show_more
+        		puts "  bid: #{bid}" if show_more
+        		index += 1
+        	end
+        	return configs
+        end
+
+        def self.clear_all_configs
+        	config_path.rmtree if config_path.exist?
+        end
+
+        def self.clear_config(name)
+        	path = config_path + name
+        	path.rmtree if path.exist?
+        end
+	end
+end

data/lib/iap/config.rb

@@ -0,0 +1,84 @@
+require_relative 'appstore_config'
+
+module IAPServer
+	class Config
+		def run(options, args)
+            # get the command line inputs and parse those into the vars we need...
+            configs, add_name, detail, remove = get_inputs(options, args)
+
+            if configs && configs.size > 0
+                raise "路径不存在！".red unless File.exist? configs
+                begin
+                    json = JSON.parse(File.read(configs))
+                    raise "读取的json不是一个数组！" unless json.is_a?(Array)
+                    json.each do |config|
+                        add_name = config['name']
+                        next if add_name.nil? || add_name.empty?
+                        add_config(add_name, config)
+                    end
+                rescue StandardError => e
+                    raise "json读取错误，请检查配置文件！".red
+                end
+            elsif add_name
+                strip_name = add_name.strip
+                raise "配置名称不能为空！".red if strip_name.empty?
+            	add_config(strip_name)
+            else
+            	# list all configs
+                configs = IAPServer::AppStoreConfig.list_configs(detail)
+                if configs.size > 0
+                    return unless remove
+                    all_num = "#{configs.size + 1}"
+                    puts "#{all_num}) 删除所有配置".red
+                    num = self.input("请输入前面的序号：")
+                    return if num.empty? || num.to_i <= 0
+                    
+                    if num == all_num
+                        IAPServer::AppStoreConfig.clear_all_configs
+                    elsif num.to_i > 0 && configs.size > (num.to_i - 1)
+                        config = configs[(num.to_i - 1)]
+                        name = config['name']
+                        IAPServer::AppStoreConfig.clear_config(name)
+                    else
+                        puts "参数输入错误，退出"
+                    end
+                else
+                    puts "你还没有配置AppStore Connect的密钥和相关参数"
+                end
+            end
+        end
+
+        def get_inputs(options, args)
+            configs = options.config
+            add_name = options.add
+            detail = options.detail
+            remove = options.remove
+
+            return configs, add_name, detail, remove
+        end
+
+        def input(message)
+            print "#{message}".red
+            STDIN.gets.chomp.strip
+        end
+
+        def add_config(add_name, dic={})
+        	key = dic['key'] || self.input('Put AppStore key: ')
+        	kid = dic['kid'] || self.input('Put AppStore key id: ')
+        	iss = dic['iss'] || self.input('Put AppStore issuser id: ')
+        	bid = dic['bid'] || self.input('Put AppStore bundleid: ') 
+        	raise "输入的参数有误，添加失败！".red if key.empty? or kid.empty? or iss.empty? or bid.empty?
+
+        	# fix key
+        	key = key.split("\\n").join("\n") if key.include?("\\n")
+        	config = {
+        		'name': add_name,
+        		'key': key,
+        		'kid': kid,
+        		'iss': iss,
+        		'bid': bid
+        	}
+        	IAPServer::AppStoreConfig.add_config(add_name, config)
+        end
+	end
+end

data/lib/iap/history.rb

@@ -0,0 +1,54 @@
+require "json"
+require_relative 'jwttools.rb'
+require_relative 'request.rb'
+
+module IAPServer
+	class History
+		def run(options, args)
+            # get the command line inputs and parse those into the vars we need...
+            transaction_id = get_inputs(options, args)
+            if transaction_id.nil? || transaction_id.empty?
+            	raise "必须有transaction id。".red
+            end
+
+            req = IAPServer::StoreRequest.new :sandbox => options.sandbox
+			resp = req.request("/inApps/v1/history/#{transaction_id}", IAPServer::JWTTools.generate)
+			validation_jwt(resp)
+        end
+
+        def get_inputs(options, args)
+            transaction_id = args.first || self.input('put transaction id: ')
+            return transaction_id
+        end
+
+        def input(message)
+            print "#{message}".red
+            STDIN.gets.chomp.strip
+        end
+
+		# 验证jwt
+		def validation_jwt(resp)
+			puts 'Code = ' + resp.code    ##请求状态码
+			puts 'Message = ' + resp.message
+			if resp.code == '200'
+				body = JSON.parse(resp.body)
+
+				jwt_list = body["signedTransactions"]
+				if !jwt_list.nil? && jwt_list.count > 0
+					jwt_token = jwt_list[0]
+
+					if IAPServer::JWTTools.good_signature(jwt_token)
+						payload = IAPServer::JWTTools.payload(jwt_token)
+						puts "Payload：" + payload
+					else
+						puts "JWT 验证失败"
+					end
+				else
+					puts '没有查询到历史订单'
+				end
+			end
+		end
+	end
+end
+
+

data/lib/iap/jwttools.rb

@@ -0,0 +1,85 @@
+require "uuidtools"
+require 'jwt'
+require 'openssl'
+require 'json'
+require_relative 'appstore_config'
+
+module IAPServer
+	class JWTTools
+		def self.generate
+			config = IAPServer::AppStoreConfig.default_config
+			raise "获取秘钥信息失败，请检查。" if config.nil?
+			
+			key, kid, iss, bid = config['key'], config['kid'], config['iss'], config['bid']
+			# fix key
+			key = key.split("\\n").join("\n") if key.include?("\\n")
+			generate_token(key, kid, iss, bid)
+		end
+
+		# 秘钥串、秘钥ID、Issuer ID、bundle id
+		def self.generate_token(key, kid, iss, bid)
+			# JWT Header
+			header = {
+				"alg": "ES256", # 固定值
+				"kid": kid, # private key ID from App Store Connect
+				"typ": "JWT" # 固定值
+			}
+
+			iat = Time.new
+			# JWT Payload
+			payload = {
+				"iss": iss, # Your issuer ID from the Keys page in App Store Connect
+				"aud": "appstoreconnect-v1", # 固定值
+				"iat": iat.to_i, # 令牌生成时间，UNIX时间单位，秒
+				"exp": iat.to_i + 60 * 60, # 令牌失效时间，60 minutes timestamp
+				"nonce": UUIDTools::UUID.timestamp_create.to_s, # An arbitrary number you create and use only once
+				"bid": bid # Your app's bundle ID
+			}
+
+			ecdsa_key = OpenSSL::PKey::EC.new key
+			# JWT token
+			token = JWT.encode payload, ecdsa_key, algorithm='ES256', header_fields=header
+			token
+		end
+
+		def self.good_signature(jws_token)
+		    realpath = File.expand_path("#{File.dirname(__FILE__)}/../../assets/AppleRootCA-G3.cer")
+		    raw = File.read "#{realpath}"
+		    apple_root_cert = OpenSSL::X509::Certificate.new(raw)
+
+		    parts = jws_token.split(".")
+		    decoded_parts = parts.map { |part| Base64.decode64(part) }
+		    header = JSON.parse(decoded_parts[0])
+		    # puts "Header：#{decoded_parts[0]}"
+		    # puts "Payload：#{decoded_parts[1]}"
+
+		    cert_chain =  header["x5c"].map { |part| OpenSSL::X509::Certificate.new(Base64.decode64(part))}
+		    return false unless cert_chain.last == apple_root_cert
+
+		    for n in 0..(cert_chain.count - 2)
+		      return false unless cert_chain[n].verify(cert_chain[n+1].public_key)
+		    end
+
+		    begin
+		      decoded_token = JWT.decode(jws_token, cert_chain[0].public_key, true, { algorithms: ['ES256'] })
+		      !decoded_token.nil?
+		    rescue JWT::JWKError
+		      false
+		    rescue JWT::DecodeError
+		      false
+		    end
+		end
+
+		def self.payload(jws_token)
+		    parts = jws_token.split(".")
+		    decoded_parts = parts.map { |part| Base64.decode64(part) }
+		    decoded_parts[1]
+		end
+
+		def self.header(jws_token)
+		    parts = jws_token.split(".")
+		    decoded_parts = parts.map { |part| Base64.decode64(part) }
+		    decoded_parts[0]
+		end
+	end
+end

data/lib/iap/notification_history.rb

@@ -0,0 +1,65 @@
+require "json"
+require_relative 'jwttools.rb'
+require_relative 'request.rb'
+
+module IAPServer
+	class NotificationHistory
+		def run(options, args)
+            transaction_id = args.first
+            lastdays = options.lastdays
+            only_failures = options.only_failures
+            notification_type = options.noti_type
+            notification_subtype = options.noti_subtype
+            query_params = begin
+            	query = ''
+            	query = "paginationToken=#{options.token}" if options.token
+            	query
+            end
+            
+            raise "查询过去天数区间：[1-180]".red unless (1..180) === lastdays
+            
+            end_time = Time.now.utc.to_i #s
+			start_time = end_time - (60 * 60 * 24 * lastdays)
+
+			params = {
+				"startDate": (start_time * 1000).to_s,
+				"endDate": (end_time * 1000).to_s,
+				'onlyFailures': only_failures
+			}
+			params['notificationType'] = notification_type unless notification_type.nil?
+			params['notificationSubtype'] = notification_subtype unless notification_subtype.nil?
+			params['transactionId'] = transaction_id unless transaction_id.nil?
+
+            req = IAPServer::StoreRequest.new :use_post => true, :sandbox => options.sandbox
+			resp = req.request("/inApps/v1/notifications/history/?#{query_params}", IAPServer::JWTTools.generate, params)
+			validation_jwt(resp)
+        end
+
+		# 验证jwt
+		def validation_jwt(resp)
+			puts 'Code = ' + resp.code    ##请求状态码
+			puts 'Message = ' + resp.message
+			if resp.code == '200'
+				body = JSON.parse(resp.body)
+				notificationHistory = body["notificationHistory"]
+
+				index = 1
+				notificationHistory.each do |history|
+					signedPayload = history['signedPayload']
+					payload = IAPServer::JWTTools.payload(signedPayload)
+					
+					payload_json = JSON.parse(payload)
+					signedTransactionInfo = payload_json['data']['signedTransactionInfo']
+					payload_json['data']['signedTransactionInfo'] = IAPServer::JWTTools.payload(signedTransactionInfo)
+					puts "#{index})".red
+					puts payload_json.to_json
+					index += 1
+				end
+
+				puts "还有更多的历史通知，继续查询可以传token：#{body["paginationToken"]}".red if body["hasMore"]
+			end
+		end
+	end
+end
+
+

data/lib/iap/order.rb

@@ -0,0 +1,60 @@
+require "json"
+require_relative './jwttools.rb'
+require_relative './request.rb'
+
+module IAPServer
+	class Order
+		def run(options, args)
+            # get the command line inputs and parse those into the vars we need...
+            order_num = get_inputs(options, args)
+            raise "必须有订单号。".red if order_num.nil? || order_num.empty?
+
+            req = IAPServer::StoreRequest.new
+			resp = req.request("/inApps/v1/lookup/#{order_num}", IAPServer::JWTTools.generate)
+			validation_jwt(resp)
+        end
+
+        def get_inputs(options, args)
+            order_num = args.first || self.input('put order-num: ')
+
+            return order_num
+        end
+
+        def input(message)
+            print "#{message}".red
+            STDIN.gets.chomp.strip
+        end
+
+		# 验证jwt
+		def validation_jwt(resp)
+			puts 'Code = ' + resp.code    ##请求状态码
+			puts 'Message = ' + resp.message
+			if resp.code == '200'
+				body = JSON.parse(resp.body)
+
+				status = body["status"]
+				if !status.nil? && status == 0
+					jwt_list = body["signedTransactions"]
+					jwt_token = jwt_list[0]
+
+					if IAPServer::JWTTools.good_signature(jwt_token)
+						payload = IAPServer::JWTTools.payload(jwt_token)
+						puts "Payload：" + payload
+
+						result = JSON.parse(payload)
+						purchaseDate = result["purchaseDate"]
+						puts "支付时间：#{Time.at(purchaseDate/1000)}"
+					else
+						puts "JWT 验证失败"
+					end
+				elsif status == 1
+					puts "status：#{status}，查询失败。可能的原因：jwt签名正确，bundleid不一致"
+				else
+					puts "status：#{status}，请排查错误原因"
+				end
+			end
+		end
+	end
+end
+
+

data/lib/iap/receipt.rb

@@ -0,0 +1,85 @@
+require 'net/http'
+require 'json'
+
+module IAPServer
+	class Receipt
+		def run(options, args)
+            # get the command line inputs and parse those into the vars we need...
+            receipt_data, sandbox, password = get_inputs(options, args)
+			raise "必须有票据才能验证。".red if receipt_data.nil? || receipt_data.empty?
+
+            verify(receipt_data, sandbox, password)
+        end
+
+        def get_inputs(options, args)
+            receipt_data = args.first || begin
+            	file = options.file || ''
+            	File.read(file) if File.exist?(file) && File.file?(file)
+            rescue
+            	raise "文件读取失败".red
+            end
+            if receipt_data.nil?
+            	path = self.input('Path to receipt-data file: ')
+				receipt_data = File.read(path).chomp if File.exist? path
+            end
+            sandbox = options.sandbox
+            password = options.password
+
+            return receipt_data, sandbox, password
+        end
+
+        def input(message)
+            print "#{message}".red
+            STDIN.gets.chomp.strip
+        end
+
+        def request(receipt, sandbox, password)
+        	uri = sandbox ? 'sandbox.itunes.apple.com' : 'buy.itunes.apple.com'
+			http = Net::HTTP.new(uri, 443)
+			http.use_ssl = true
+
+			headers = {   ##定义http请求头信息
+			  	'Content-Type' => 'application/json'
+			}
+			params = {
+				'receipt-data' => "#{receipt}",
+			  	'exclude-old-transactions' =>  true,
+			}
+			params['password'] = password unless password.nil?
+			resp = http.post("/verifyReceipt", params.to_json, headers)
+			resp
+		end
+
+		def verify(receipt, sandbox=false, password=nil)
+			resp = request(receipt, sandbox, password)
+			if resp.code == '200'
+				body = JSON.parse(resp.body)
+				status = body['status']
+				if status == 0
+					puts resp.body
+				else
+					error_msg = status_declare(status)
+					puts "status: #{status}, #{error_msg}"
+				end
+			else
+				puts "Code: #{resp.code}"
+				puts "Message: #{resp.message}"
+			end
+		end
+
+		def status_declare(status)
+			error_status = {
+				'21000' => 'App Store无法读取你提供的JSON数据',
+				'21002' => '收据数据不符合格式',
+				'21003' => '收据无法被验证',
+				'21004' => '你提供的共享密钥和账户的共享密钥不一致',
+				'21005' => '收据服务器当前不可用',
+				'21006' => '收据是有效的，但订阅服务已经过期。当收到这个信息时，解码后的收据信息也包含在返回内容中',
+				'21007' => '收据信息是测试用（sandbox），但却被发送到产品环境中验证',
+				'21008' => '收据信息是产品环境中使用，但却被发送到测试环境中验证',
+			}
+			error_msg = error_status[status.to_s] || "未知的status类型，请对照https://developer.apple.com/documentation/appstorereceipts/status排查"
+			error_msg
+		end
+	end
+end

data/lib/iap/refund.rb

@@ -0,0 +1,54 @@
+require "json"
+require_relative 'jwttools.rb'
+require_relative 'request.rb'
+
+module IAPServer
+	class Refund
+		def run(options, args)
+            # get the command line inputs and parse those into the vars we need...
+            transaction_id = get_inputs(options, args)
+            if transaction_id.nil? || transaction_id.empty?
+            	raise "必须有transaction id。".red
+            end
+
+            req = IAPServer::StoreRequest.new :sandbox => options.sandbox
+			resp = req.request("/inApps/v1/refund/lookup/#{transaction_id}", IAPServer::JWTTools.generate)
+			validation_jwt(resp)
+        end
+
+        def get_inputs(options, args)
+            transaction_id = args.first || self.input('put transaction id: ')
+            return transaction_id
+        end
+
+        def input(message)
+            print "#{message}".red
+            STDIN.gets.chomp.strip
+        end
+
+		# 验证jwt
+		def validation_jwt(resp)
+			puts 'Code = ' + resp.code    ##请求状态码
+			puts 'Message = ' + resp.message
+			if resp.code == '200'
+				body = JSON.parse(resp.body)
+
+				jwt_list = body["signedTransactions"]
+				if !jwt_list.nil? && jwt_list.count > 0
+					jwt_token = jwt_list[0]
+
+					if IAPServer::JWTTools.good_signature(jwt_token)
+						payload = IAPServer::JWTTools.payload(jwt_token)
+						puts "Payload：" + payload
+					else
+						puts "JWT 验证失败"
+					end
+				else
+					puts '没有查询到退款信息'
+				end
+			end
+		end
+	end
+end
+
+

data/lib/iap/request.rb

@@ -0,0 +1,31 @@
+require 'net/http'
+require 'json'
+
+module IAPServer
+	class StoreRequest
+		def initialize(use_post: false, sandbox: false)
+			@use_post = use_post
+			@sandbox = sandbox
+		end
+
+		def request(path, token, params={})
+			http = Net::HTTP.new('api.storekit.itunes.apple.com', 443)
+	        if @sandbox
+	            http = Net::HTTP.new('api.storekit-sandbox.itunes.apple.com', 443)
+	        end
+			http.use_ssl = true
+
+			headers = {   ##定义http请求头信息
+			  'Authorization' => "Bearer #{token}",
+			  'Content-Type' => 'application/json'
+			}
+			if @use_post
+				resp = http.post(path, params.to_json, headers)
+			else
+				resp = http.get(path, headers)
+			end
+			resp
+		end
+	end
+end
+

data/lib/iap/subscription.rb

@@ -0,0 +1,40 @@
+require "json"
+require_relative 'jwttools.rb'
+require_relative 'request.rb'
+
+module IAPServer
+	class Subscription
+		def run(options, args)
+            # get the command line inputs and parse those into the vars we need...
+            transaction_id = get_inputs(options, args)
+            if transaction_id.nil? || transaction_id.empty?
+            	raise "必须有transaction id。".red
+            end
+
+            req = IAPServer::StoreRequest.new :sandbox => options.sandbox
+			resp = req.request("/inApps/v1/subscriptions/#{transaction_id}", IAPServer::JWTTools.generate)
+			validation_jwt(resp)
+        end
+
+        def get_inputs(options, args)
+            transaction_id = args.first || self.input('put transaction id: ')
+            return transaction_id
+        end
+
+        def input(message)
+            print "#{message}".red
+            STDIN.gets.chomp.strip
+        end
+
+		# 验证jwt
+		def validation_jwt(resp)
+			puts 'Code = ' + resp.code    ##请求状态码
+			puts 'Message = ' + resp.message
+			if resp.code == '200'
+				puts 'Body: ' + resp.body
+			end
+		end
+	end
+end
+
+

data/lib/iap/transaction.rb

@@ -0,0 +1,54 @@
+require "json"
+require_relative 'jwttools.rb'
+require_relative 'request.rb'
+
+module IAPServer
+	class Transaction
+		def run(options, args)
+            # get the command line inputs and parse those into the vars we need...
+            transaction_id = get_inputs(options, args)
+            if transaction_id.nil? || transaction_id.empty?
+            	raise "必须有transaction id。".red
+            end
+            
+			req = IAPServer::StoreRequest.new :sandbox => options.sandbox
+			resp = req.request("/inApps/v1/transactions/#{transaction_id}", IAPServer::JWTTools.generate)
+			validation_jwt(resp)
+        end
+
+        def get_inputs(options, args)
+            transaction_id = args.first || self.input('put transaction id: ')
+            return transaction_id
+        end
+
+        def input(message)
+            print "#{message}".red
+            STDIN.gets.chomp.strip
+        end
+
+		# 验证jwt
+		def validation_jwt(resp)
+			puts 'Code = ' + resp.code    ##请求状态码
+			puts 'Message = ' + resp.message
+			if resp.code == '200'
+				body = JSON.parse(resp.body)
+
+				jwt_list = body["signedTransactions"]
+				if !jwt_list.nil? && jwt_list.count > 0
+					jwt_token = jwt_list[0]
+
+					if IAPServer::JWTTools.good_signature(jwt_token)
+						payload = IAPServer::JWTTools.payload(jwt_token)
+						puts "Payload：" + payload
+					else
+						puts "JWT 验证失败"
+					end
+				else
+					puts '没有查询到交易信息'
+				end
+			end
+		end
+	end
+end
+
+

data/lib/iapserver.rb

@@ -0,0 +1,121 @@
+require 'rubygems'
+require 'commander/import'
+
+require 'colored2'
+require 'version'
+
+require 'iap/receipt'
+require 'iap/order'
+require 'iap/config'
+require 'iap/history'
+require 'iap/transaction'
+require 'iap/subscription'
+require 'iap/refund'
+require 'iap/notification_history'
+
+module IAPServer
+  class CommandsGenerator
+
+    def self.start
+      self.new.run
+    end
+
+    def run
+      program :name, 'iapserver'
+      program :version, IAPServer::VERSION
+      program :description, '查询苹果iap交易信息和票据认证信息'
+
+      global_option('--sandbox', '是否为Sandbox环境，默认为Product环境。') { $sandbox = false }
+      # default_command :receipt
+
+      command :receipt do |c|
+        c.syntax = 'iapserver receipt args [options]'
+        c.description = 'iap票据验证'
+        c.option '-p', '--password STRING', String, '共享密钥'
+        c.option '-f', '--file FILE', String, 'Base64后的票据存放路径，格式：文本。'
+        c.action do |args, options|
+          IAPServer::Receipt.new.run(options, args)
+        end
+      end
+
+      command :order do |c|
+        c.syntax = 'iapserver order [order_id]'
+        c.description = 'iap订单查询'
+        c.action do |args, options|
+          IAPServer::Order.new.run(options, args)
+        end
+      end
+
+      command :history do |c|
+        c.syntax = 'iapserver history [transaction_id]'
+        c.description = 'iap历史交易查询'
+        c.action do |args, options|
+          IAPServer::History.new.run(options, args)
+        end
+      end
+
+      command :transaction do |c|
+        c.syntax = 'iapserver transaction [transaction_id]'
+        c.description = 'iap交易详情'
+        c.action do |args, options|
+          IAPServer::Transaction.new.run(options, args)
+        end
+      end
+
+      command :subscription do |c|
+        c.syntax = 'iapserver subscription [transaction_id]'
+        c.description = 'iap订阅信息'
+        c.action do |args, options|
+          IAPServer::Subscription.new.run(options, args)
+        end
+      end
+
+      command :refund do |c|
+        c.syntax = 'iapserver refund [transaction_id]'
+        c.description = 'iap退款信息'
+        c.action do |args, options|
+          IAPServer::Refund.new.run(options, args)
+        end
+      end
+
+      command :noti_history do |c|
+        c.syntax = 'iapserver noti_history [transaction_id]'
+        c.description = 'iap服务端通知'
+        c.option '--lastdays INTEGER', Integer, '查询过去多少天的服务端通知[1-180]。默认30天'
+        c.option '--only-failures', '仅请求未成功到达服务器的通知'
+        c.option '--noti-type STRING', String, '通知类型。参考：`https://developer.apple.com/documentation/appstoreservernotifications/notificationtype`'
+        c.option '--noti-subtype STRING', String, '参考：`https://developer.apple.com/documentation/appstoreservernotifications/subtype`'
+        c.option '--token STRING', String, 'paginationToken'
+        c.action do |args, options|
+          options.default :lastdays => 30, :only_failures => false
+          IAPServer::NotificationHistory.new.run(options, args)
+        end
+      end
+
+      command :config do |c|
+        c.syntax = 'iapserver config [options]'
+        c.description = 'Apple Store Connect配置'
+        c.option '-d', '--detail', '列出Apple Store Connect秘钥配置详情'
+        c.option '-r', '--remove', '列出并选择删除配置的密钥'
+        c.option '-a', '--add NAME', String, '添加单个配置'
+        c.option '-c', '--config JSON PATH', String, 'Apple Store Connect配置。JSON: [{"name":"名称","key":"秘钥","kid":"秘钥ID","iss":"issuser id","bid":"bundle id"}]'
+        #, &multiple_values_option_proc(c, "config", &proc { |value| value.split('=', 2) })
+        c.action do |args, options|
+          IAPServer::Config.new.run(options, args)
+        end
+      end
+    end
+
+    def multiple_values_option_proc(command, name)
+      proc do |value|
+        value = yield(value) if block_given?
+        option = command.proxy_options.find { |opt| opt[0] == name } || []
+        values = option[1] || []
+        values << value
+    
+        command.proxy_options.delete option
+        command.proxy_options << [name, values]
+      end
+    end
+  end
+end

data/lib/version.rb

@@ -0,0 +1,4 @@
+
+module IAPServer
+  VERSION = "0.1.0"
+end

metadata

@@ -0,0 +1,157 @@
+--- !ruby/object:Gem::Specification
+name: iapserver
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Cary
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2023-11-01 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.7'
+- !ruby/object:Gem::Dependency
+  name: uuidtools
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.2.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.2.0
+- !ruby/object:Gem::Dependency
+  name: openssl
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.2'
+- !ruby/object:Gem::Dependency
+  name: pathname
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: fileutils
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: colored2
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+- !ruby/object:Gem::Dependency
+  name: commander
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.6'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.6'
+description: 苹果内购票据验证、苹果AppStore Connect API查询命令行工具
+email:
+- guojiashuang@live.com
+executables:
+- iapserver
+extensions: []
+extra_rdoc_files: []
+files:
+- assets/AppleRootCA-G3.cer
+- bin/iapserver
+- lib/iap/appstore_config.rb
+- lib/iap/config.rb
+- lib/iap/history.rb
+- lib/iap/jwttools.rb
+- lib/iap/notification_history.rb
+- lib/iap/order.rb
+- lib/iap/receipt.rb
+- lib/iap/refund.rb
+- lib/iap/request.rb
+- lib/iap/subscription.rb
+- lib/iap/transaction.rb
+- lib/iapserver.rb
+- lib/version.rb
+homepage: https://github.com/CaryGo/iapserver
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.6.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.1.2
+signing_key: 
+specification_version: 4
+summary: 苹果内购票据验证、苹果AppStore Connect API查询命令行工具
+test_files: []