weixin_rails_middleware 1.2.6 → 1.3.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 6db9366b9631a4533c2fa612a5996cf672f0bdaa
-  data.tar.gz: ec318d897d3a081495b768ba4a1a771d078580ed
+  metadata.gz: b0d0b6af708c134cb59378358bbe18334a771f50
+  data.tar.gz: 5f1a555b56fe4be9a1a80405d58664fe0cbd6e3e
 SHA512:
-  metadata.gz: 5cffb01093785287807a353e690deba238e5e8d0176ff4c23eb36dbe34068637c084cd73fb416ce7d299d6c060361d0d587da6e36b2b07df2884b8132bc4c511
-  data.tar.gz: 141c682ad9f7e3b8079d6293cdcc31e88281c314d67a9c738c25beaee7dda91458c7445730a24afe976a62f383fafd8b9bbb1ccdb6d35d6b923509543ad4ea3e
+  metadata.gz: 0bb09dd78fad486410742f72691f1411ba85197faa672c1f9a599f3cc6aaad85c8f65fd6b62832ba9fa687c466bcbe4b2c711cbf779f68e1837e1046edd5641d
+  data.tar.gz: 76096e39e64335bb77941cd429120d913a991b509816457d3faf5debc08b14dcbf681b9e8a667c1fff72723480cf89112fac248f382fdbdf6d3e7ba8af6296e1

data/app/controllers/weixin_rails_middleware/weixin_controller.rb

@@ -3,6 +3,7 @@ module WeixinRailsMiddleware
     include ReplyWeixinMessageHelper
 
     skip_before_filter :verify_authenticity_token
+    before_filter :check_is_encrypt, only: [:index, :reply]
     before_filter :initialize_adapter, :check_weixin_legality, only: [:index, :reply]
     before_filter :set_weixin_public_account, :set_weixin_message, only: :reply
     before_filter :set_keyword, only: :reply
@@ -15,6 +16,15 @@ module WeixinRailsMiddleware
 
     protected
 
+      # 如果url上无encrypt_type或者其值为raw，则回复明文，否则按照上述的加密算法加密回复密文。
+      def check_is_encrypt
+        if params[:encrypt_type].blank? || params[:encrypt_type] == "raw"
+          @is_encrypt = false
+        else
+          @is_encrypt = true
+        end
+      end
+
       def initialize_adapter
         @weixin_adapter ||= WexinAdapter.init_with(params)
       end
@@ -33,13 +43,22 @@ module WeixinRailsMiddleware
       end
 
       def set_weixin_message
+        param_xml = request.body.read
+        if @is_encrypt
+          hash      = MultiXml.parse(param_xml)['xml']
+          @body_xml = OpenStruct.new(hash)
+          param_xml = Prpcrypt.decrypt(@weixin_public_account.aes_key,
+                                        @body_xml.Encrypt,
+                                        @weixin_public_account.app_id
+                                       )[0]
+        end
         # Get the current weixin message
-        @weixin_message ||= Message.factory(request.body.read)
+        @weixin_message ||= Message.factory(param_xml)
       end
 
       def set_keyword
-        @keyword = @weixin_message.Content    || # 文本消息
-                   @weixin_message.EventKey   || # 事件推送
+        @keyword = @weixin_message.Content  || # 文本消息
+                   @weixin_message.EventKey || # 事件推送
                    @weixin_message.Recognition # 接收语音识别结果
       end
 

data/lib/generators/templates/add_encrypt_message_config_migration.rb

@@ -0,0 +1,14 @@
+class AddEncryptMessageConfigColumnsTo<%= table_name.camelize %> < ActiveRecord::Migration
+  def self.up
+    change_table(:<%= table_name %>) do |t|
+      t.string :encoding_aes_key, limit: 43
+      t.string :app_id
+    end
+  end
+
+  def self.down
+    # By default, we don't want to make any assumption about how to roll back a migration when your
+    # model already existed. Please edit below which fields you would like to remove in this migration.
+    raise ActiveRecord::IrreversibleMigration
+  end
+end

data/lib/generators/templates/install_weixin_rails_middleware.rb

@@ -1,3 +1,4 @@
+# encoding: utf-8
 # Use this hook to configure WeixinRailsMiddleware bahaviors.
 WeixinRailsMiddleware.configure do |config|
 
@@ -15,6 +16,9 @@ WeixinRailsMiddleware.configure do |config|
   # config.weixin_token_string = '<%= SecureRandom.hex(12) %>'
   # using to weixin server url to validate the token can be trusted.
   # config.weixin_secret_string = '<%= WeiXinUniqueToken.generate(generator: :urlsafe_base64, size: 24) %>'
+  # 加密配置，如果需要加密，配置以下参数
+  # config.encoding_aes_key = '<%= WeiXinUniqueToken.generate(generator: :hex, size: 22)[1..43] %>'
+  # config.app_id = "your app id"
 
   ## You can custom your adapter to validate your weixin account ##
   # Wiki https://github.com/lanrion/weixin_rails_middleware/wiki/Custom-Adapter

data/lib/generators/templates/weixin_controller.rb

@@ -68,65 +68,63 @@ WeixinRailsMiddleware::WeixinController.class_eval do
       send("handle_#{event_type.downcase}_event")
     end
 
-    private
-
-      # 关注公众账号
-      def handle_subscribe_event
-        if @keyword.present?
-          # 扫描带参数二维码事件: 1. 用户未关注时，进行关注后的事件推送
-          return reply_text_message("扫描带参数二维码事件: 1. 用户未关注时，进行关注后的事件推送, keyword: #{@keyword}")
-        end
-        reply_text_message("关注公众账号")
+    # 关注公众账号
+    def handle_subscribe_event
+      if @keyword.present?
+        # 扫描带参数二维码事件: 1. 用户未关注时，进行关注后的事件推送
+        return reply_text_message("扫描带参数二维码事件: 1. 用户未关注时，进行关注后的事件推送, keyword: #{@keyword}")
       end
+      reply_text_message("关注公众账号")
+    end
 
-      # 取消关注
-      def handle_unsubscribe_event
-        Rails.logger.info("取消关注")
-      end
+    # 取消关注
+    def handle_unsubscribe_event
+      Rails.logger.info("取消关注")
+    end
 
-      # 扫描带参数二维码事件: 2. 用户已关注时的事件推送
-      def handle_scan_event
-        reply_text_message("扫描带参数二维码事件: 2. 用户已关注时的事件推送, keyword: #{@keyword}")
-      end
+    # 扫描带参数二维码事件: 2. 用户已关注时的事件推送
+    def handle_scan_event
+      reply_text_message("扫描带参数二维码事件: 2. 用户已关注时的事件推送, keyword: #{@keyword}")
+    end
 
-      def handle_location_event # 上报地理位置事件
-        @lat = @weixin_message.Latitude
-        @lgt = @weixin_message.Longitude
-        @precision = @weixin_message.Precision
-        reply_text_message("Your Location: #{@lat}, #{@lgt}, #{@precision}")
-      end
+    def handle_location_event # 上报地理位置事件
+      @lat = @weixin_message.Latitude
+      @lgt = @weixin_message.Longitude
+      @precision = @weixin_message.Precision
+      reply_text_message("Your Location: #{@lat}, #{@lgt}, #{@precision}")
+    end
 
-      # 点击菜单拉取消息时的事件推送
-      def handle_click_event
-        reply_text_message("你点击了: #{@keyword}")
-      end
+    # 点击菜单拉取消息时的事件推送
+    def handle_click_event
+      reply_text_message("你点击了: #{@keyword}")
+    end
 
-      # 点击菜单跳转链接时的事件推送
-      def handle_view_event
-        Rails.logger.info("你点击了: #{@keyword}")
-      end
+    # 点击菜单跳转链接时的事件推送
+    def handle_view_event
+      Rails.logger.info("你点击了: #{@keyword}")
+    end
 
-      # 帮助文档: https://github.com/lanrion/weixin_authorize/issues/22
-
-      # 由于群发任务提交后，群发任务可能在一定时间后才完成，因此，群发接口调用时，仅会给出群发任务是否提交成功的提示，若群发任务提交成功，则在群发任务结束时，会向开发者在公众平台填写的开发者URL（callback URL）推送事件。
-
-      # 推送的XML结构如下（发送成功时）：
-
-      # <xml>
-      # <ToUserName><![CDATA[gh_3e8adccde292]]></ToUserName>
-      # <FromUserName><![CDATA[oR5Gjjl_eiZoUpGozMo7dbBJ362A]]></FromUserName>
-      # <CreateTime>1394524295</CreateTime>
-      # <MsgType><![CDATA[event]]></MsgType>
-      # <Event><![CDATA[MASSSENDJOBFINISH]]></Event>
-      # <MsgID>1988</MsgID>
-      # <Status><![CDATA[sendsuccess]]></Status>
-      # <TotalCount>100</TotalCount>
-      # <FilterCount>80</FilterCount>
-      # <SentCount>75</SentCount>
-      # <ErrorCount>5</ErrorCount>
-      # </xml>
-      def handle_masssendjobfinish_event
-        Rails.logger.info("回调事件处理")
-      end
+    # 帮助文档: https://github.com/lanrion/weixin_authorize/issues/22
+
+    # 由于群发任务提交后，群发任务可能在一定时间后才完成，因此，群发接口调用时，仅会给出群发任务是否提交成功的提示，若群发任务提交成功，则在群发任务结束时，会向开发者在公众平台填写的开发者URL（callback URL）推送事件。
+
+    # 推送的XML结构如下（发送成功时）：
+
+    # <xml>
+    # <ToUserName><![CDATA[gh_3e8adccde292]]></ToUserName>
+    # <FromUserName><![CDATA[oR5Gjjl_eiZoUpGozMo7dbBJ362A]]></FromUserName>
+    # <CreateTime>1394524295</CreateTime>
+    # <MsgType><![CDATA[event]]></MsgType>
+    # <Event><![CDATA[MASSSENDJOBFINISH]]></Event>
+    # <MsgID>1988</MsgID>
+    # <Status><![CDATA[sendsuccess]]></Status>
+    # <TotalCount>100</TotalCount>
+    # <FilterCount>80</FilterCount>
+    # <SentCount>75</SentCount>
+    # <ErrorCount>5</ErrorCount>
+    # </xml>
+    def handle_masssendjobfinish_event
+      Rails.logger.info("回调事件处理")
+    end
 
 end

data/lib/generators/weixin_rails_middleware/encrypt_migration_generator.rb

@@ -0,0 +1,35 @@
+require 'rails/generators/active_record'
+
+module WeixinRailsMiddleware
+  module Generators
+    class EncryptMigrationGenerator < ActiveRecord::Generators::Base
+      source_root File.expand_path('../../templates', __FILE__)
+
+      desc 'Adds encrypt message config for your application.'
+      def create_migration_file
+        if !migration_exists?(table_name)
+          migration_template "add_encrypt_message_config_migration.rb", "db/migrate/add_encrypt_message_config_columns_to_#{plural_name}.rb"
+        end
+      end
+
+      private
+
+      def model_exists?
+        File.exists?(File.join(destination_root, model_path))
+      end
+
+      def model_path
+        @model_path ||= File.join("app", "models", "#{file_path}.rb")
+      end
+
+      def migration_exists?(table_name)
+        Dir.glob("#{File.join(destination_root, migration_path)}/[0-9]*_*.rb").grep(/\d+_add_encrypt_message_config_columns_to_#{table_name}.rb/).first
+      end
+
+      def migration_path
+        @migration_path ||= File.join("db", "migrate")
+      end
+
+    end
+  end
+end

data/lib/weixin_rails_middleware/adapter/multiple_public_account.rb

@@ -16,8 +16,15 @@ module WeixinRailsMiddleware
       current_weixin_public_account.try(DEFAULT_TOKEN_COLUMN_NAME)
     end
 
+    # TODO: handle Exception
     def current_weixin_public_account
-      self.class.token_model_class.where("#{DEFAULT_WEIXIN_SECRET_KEY}" => weixin_secret_key).first
+      @current_weixin_public_account ||= self.class.token_model_class.where("#{DEFAULT_WEIXIN_SECRET_KEY}" => weixin_secret_key).first
+      @current_weixin_public_account.instance_eval do
+        def aes_key
+          WexinAdapter.decode64(encoding_aes_key)
+        end
+      end
+      @current_weixin_public_account
     end
 
     def error_msg

data/lib/weixin_rails_middleware/adapter/single_public_account.rb

@@ -16,7 +16,16 @@ module WeixinRailsMiddleware
     end
 
     def current_weixin_public_account
-      nil
+      @current_weixin_public_account ||= OpenStruct.new(
+                      weixin_secret_string: self.class.weixin_secret_string,
+                      weixin_token_string: self.class.weixin_token_string,
+                      app_id: self.class.app_id)
+      @current_weixin_public_account.instance_eval do
+        def aes_key
+          WexinAdapter.decode64(WexinAdapter.encoding_aes_key)
+        end
+      end
+      @current_weixin_public_account
     end
 
     def error_msg

data/lib/weixin_rails_middleware/adapter/weixin_adapter.rb

@@ -10,7 +10,6 @@ module WeixinRailsMiddleware
       @weixin_secret_key = weixin_params[:weixin_secret_key]
       # 以下参数为什么加空字符串默认值的原因:
       # 微信偶尔会再重新发一次get请求，但是不会带上signature,timestamp,nonce的参数
-      # 一个预防措施吧。
       @signature = weixin_params[:signature] || ''
       @timestamp = weixin_params[:timestamp] || ''
       @nonce     = weixin_params[:nonce]     || ''
@@ -32,7 +31,7 @@ module WeixinRailsMiddleware
     end
 
     def check_weixin_legality
-      return render_authorize_result(403, self.class.error_msg) if !is_signature_valid?
+      return render_authorize_result(401, self.class.error_msg) if !is_signature_valid?
       render_authorize_result(200, echostr, true)
     end
 
@@ -59,12 +58,16 @@ module WeixinRailsMiddleware
       def error_msg
         "#{__FILE__}:#{__LINE__}: Weixin signature NotMatch"
       end
+
+      def decode64(encoding_aes)
+        Base64.decode64("#{encoding_aes}=")
+      end
     end
 
     private
 
       # render weixin server authorize results
-      def render_authorize_result(status=403, text=nil, valid=false)
+      def render_authorize_result(status=401, text=nil, valid=false)
         text = text || error_msg
         Rails.logger.error(text) if status != 200
         {text: text, status: status, valid: valid}
@@ -73,6 +76,5 @@ module WeixinRailsMiddleware
       def error_msg
         self.class.error_msg
       end
-
   end
 end

data/lib/weixin_rails_middleware/configuration.rb

@@ -17,24 +17,26 @@ module WeixinRailsMiddleware
   class Configuration
     attr_accessor :public_account_class
     attr_accessor :weixin_secret_string, :weixin_token_string
+    # 加密参数配置
+    attr_accessor :encoding_aes_key, :app_id
+
+    # 自定义场景
     attr_accessor :custom_adapter
   end
 
   module ConfigurationHelpers
     extend ActiveSupport::Concern
 
-    def weixin_token_string
-      @weixin_token_string ||= WeixinRailsMiddleware.config.weixin_token_string.to_s
+    [:weixin_secret_string, :weixin_token_string, :encoding_aes_key, :app_id].each do |attr_name|
+      define_method attr_name do
+        WeixinRailsMiddleware.config.send(attr_name).to_s
+      end
     end
 
     def token_model
       @public_account_class ||= WeixinRailsMiddleware.config.public_account_class
     end
 
-    def weixin_secret_string
-      @weixin_secret_string ||= WeixinRailsMiddleware.config.weixin_secret_string.to_s
-    end
-
     def token_model_class
       if token_model.blank?
         raise "You need to config `public_account_class` in 'config/initializers/weixin_rails_middleware.rb'"

data/lib/weixin_rails_middleware/helpers/pkcs7_encoder.rb

@@ -0,0 +1,28 @@
+# encoding: utf-8
+
+module WeixinRailsMiddleware
+  module PKCS7Encoder
+    extend self
+
+    BLOCK_SIZE = 32
+
+    def decode(text)
+      pad = text[-1].ord
+      pad = 0 if (pad < 1 || pad > BLOCK_SIZE)
+      size = text.size - pad
+      text[0...size]
+    end
+
+    # 对需要加密的明文进行填充补位
+    # 返回补齐明文字符串
+    def encode(text)
+      # 计算需要填充的位数
+      amount_to_pad = BLOCK_SIZE - (text.length % BLOCK_SIZE)
+      amount_to_pad = BLOCK_SIZE if amount_to_pad == 0
+      # 获得补位所用的字符
+      pad_chr = amount_to_pad.chr
+      "#{text}#{pad_chr * amount_to_pad}"
+    end
+
+  end
+end

data/lib/weixin_rails_middleware/helpers/prpcrypt.rb

@@ -0,0 +1,48 @@
+# encoding: utf-8
+require "weixin_rails_middleware/helpers/pkcs7_encoder"
+module WeixinRailsMiddleware
+  module Prpcrypt
+    extend self
+
+    # 对密文进行解密.
+    # text 需要解密的密文
+    def decrypt(aes_key, text, app_id)
+      status = 200
+      text   = Base64.decode64(text)
+      text   = handle_cipher(:decrypt, aes_key, text)
+      result = PKCS7Encoder.decode(text)
+      content  = result[16...result.length]
+      len_list = content[0...4].unpack("N")
+      xml_len  = len_list[0]
+      xml_content = content[4...4 + xml_len]
+      from_app_id = content[xml_len + 4...content.size]
+      # TODO: refactor
+      if app_id != from_app_id
+        Rails.logger.debug("#{__FILE__}:#{__LINE__} Failure because app_id != from_app_id")
+        status = 401
+      end
+      [xml_content, status]
+    end
+
+    # 加密
+    def encrypt(aes_key, text, app_id)
+      text    = text.force_encoding("ASCII-8BIT")
+      random  = SecureRandom.hex(8)
+      msg_len = [text.length].pack("N")
+      text    = "#{random}#{msg_len}#{text}#{app_id}"
+      text    = PKCS7Encoder.encode(text)
+      text    = handle_cipher(:encrypt, aes_key, text)
+      Base64.encode64(text)
+    end
+
+    private
+      def handle_cipher(action, aes_key, text)
+        cipher = OpenSSL::Cipher.new('AES-256-CBC')
+        cipher.send(action)
+        cipher.padding = 0
+        cipher.key = aes_key
+        cipher.iv  = aes_key[0...16]
+        cipher.update(text) + cipher.final
+      end
+  end
+end

data/lib/weixin_rails_middleware/helpers/reply_weixin_message_helper.rb

@@ -9,7 +9,7 @@ module WeixinRailsMiddleware
       message.FromUserName = from || @weixin_message.ToUserName
       message.ToUserName   = to   || @weixin_message.FromUserName
       message.Content      = content
-      message.to_xml
+      encrypt_message message.to_xml
     end
 
     def generate_music(title, desc, music_url, hq_music_url)
@@ -27,7 +27,7 @@ module WeixinRailsMiddleware
       message.FromUserName = from || @weixin_message.ToUserName
       message.ToUserName   = to   || @weixin_message.FromUserName
       message.Music        = music
-      message.to_xml
+      encrypt_message message.to_xml
     end
 
     def generate_article(title, desc, pic_url, link_url)
@@ -46,7 +46,7 @@ module WeixinRailsMiddleware
       message.ToUserName   = to   || @weixin_message.FromUserName
       message.Articles     = articles
       message.ArticleCount = articles.count
-      message.to_xml
+      encrypt_message message.to_xml
     end
 
     def generate_video(media_id, desc, title)
@@ -74,7 +74,7 @@ module WeixinRailsMiddleware
       message.FromUserName = from || @weixin_message.ToUserName
       message.ToUserName   = to   || @weixin_message.FromUserName
       message.Video = video
-      message.to_xml
+      encrypt_message message.to_xml
     end
 
     def generate_voice(media_id)
@@ -88,7 +88,7 @@ module WeixinRailsMiddleware
       message.FromUserName = from || @weixin_message.ToUserName
       message.ToUserName   = to   || @weixin_message.FromUserName
       message.Voice = voice
-      message.to_xml
+      encrypt_message message.to_xml
     end
 
     def generate_image(media_id)
@@ -102,15 +102,41 @@ module WeixinRailsMiddleware
       message.FromUserName = from || @weixin_message.ToUserName
       message.ToUserName   = to   || @weixin_message.FromUserName
       message.Image = image
-      message.to_xml
+      encrypt_message message.to_xml
     end
 
-
     def reply_transfer_customer_service_message(from=nil, to=nil)
       message = TransferCustomerServiceReplyMessage.new
       message.FromUserName = from || @weixin_message.ToUserName
       message.ToUserName   = to   || @weixin_message.FromUserName
-      message.to_xml
+      encrypt_message message.to_xml
     end
+
+    private
+
+      def encrypt_message(msg_xml)
+        return msg_xml if !@is_encrypt
+        # 加密回复的XML
+        encrypt_xml = Prpcrypt.encrypt(@weixin_public_account.aes_key, msg_xml, @weixin_public_account.app_id).gsub("\n","")
+        # 标准的回包
+        generate_encrypt_message(encrypt_xml)
+      end
+
+      def generate_encrypt_message(encrypt_xml)
+        msg              = EncryptMessage.new
+        msg.Encrypt      = encrypt_xml
+        msg.TimeStamp    = Time.now.to_i.to_s
+        msg.Nonce        = SecureRandom.hex(8)
+        msg.MsgSignature = generate_msg_signature(encrypt_xml, msg)
+        msg.to_xml
+      end
+
+      # dev_msg_signature=sha1(sort(token、timestamp、nonce、msg_encrypt))
+      # 生成企业签名
+      def generate_msg_signature(encrypt_msg, msg)
+        sort_params = [encrypt_msg, @weixin_adapter.current_weixin_token,
+                       msg.TimeStamp, msg.Nonce].sort.join
+        Digest::SHA1.hexdigest(sort_params)
+      end
   end
 end

data/lib/weixin_rails_middleware/models/encrypt_message.rb

@@ -0,0 +1,24 @@
+# encoding: utf-8
+# 标准的回包
+# <xml>
+#   <Encrypt><![CDATA[msg_encrypt]]></Encrypt>
+#   <MsgSignature><![CDATA[msg_signature]]></MsgSignature>
+#   <TimeStamp>timestamp</TimeStamp>
+#   <Nonce><![CDATA[nonce]]></Nonce>
+# </xml>
+
+module WeixinRailsMiddleware
+  class EncryptMessage
+    include ROXML
+    xml_name :xml
+
+    xml_accessor :Encrypt, :cdata => true
+    xml_accessor :Nonce, :cdata => true
+    xml_accessor :TimeStamp, :as => Integer
+    xml_accessor :MsgSignature, :cdata => true
+
+    def to_xml
+      super.to_xml(:encoding => 'UTF-8', :indent => 0, :save_with => 0)
+    end
+  end
+end

data/lib/weixin_rails_middleware/models/message.rb

@@ -1,9 +1,4 @@
 # encoding: utf-8
-# ref: https://github.com/wolfg1969/rack-weixin/lib/weixin/model.rb
-require 'roxml'
-require 'multi_xml'
-require 'ostruct'
-
 # multi_xml will use Nokogiri if it is available
 MultiXml.parser = :nokogiri
 
@@ -45,7 +40,7 @@ module WeixinRailsMiddleware
       when 'video'
         VideoMessage.new(hash)
       else
-        raise ArgumentError, 'Unknown Message'
+        raise ArgumentError, 'Unknown Weixin Message'
       end
     end
 

data/lib/weixin_rails_middleware/version.rb

@@ -1,3 +1,3 @@
 module WeixinRailsMiddleware
-  VERSION = "1.2.6"
+  VERSION = "1.3.0"
 end

data/lib/weixin_rails_middleware.rb

@@ -1,7 +1,16 @@
+require 'roxml'
+require 'multi_xml'
+require 'ostruct'
+
 require "weixin_rails_middleware/configuration"
 require "weixin_rails_middleware/engine"
+
+require "weixin_rails_middleware/models/encrypt_message"
 require "weixin_rails_middleware/models/message"
 require "weixin_rails_middleware/models/reply_message"
+
+require "weixin_rails_middleware/helpers/prpcrypt"
+
 require "weixin_rails_middleware/helpers/reply_weixin_message_helper"
 require "weixin_rails_middleware/helpers/unique_token_helper"
 require "weixin_rails_middleware/helpers/auto_generate_weixin_token_secret_key"

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: weixin_rails_middleware
 version: !ruby/object:Gem::Version
-  version: 1.2.6
+  version: 1.3.0
 platform: ruby
 authors:
 - lanrion
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-09-20 00:00:00.000000000 Z
+date: 2014-12-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: railties
@@ -91,9 +91,11 @@ files:
 - Rakefile
 - app/controllers/weixin_rails_middleware/weixin_controller.rb
 - config/routes.rb
+- lib/generators/templates/add_encrypt_message_config_migration.rb
 - lib/generators/templates/add_weixin_secret_key_and_weixin_token_migration.rb
 - lib/generators/templates/install_weixin_rails_middleware.rb
 - lib/generators/templates/weixin_controller.rb
+- lib/generators/weixin_rails_middleware/encrypt_migration_generator.rb
 - lib/generators/weixin_rails_middleware/install_generator.rb
 - lib/generators/weixin_rails_middleware/migration_generator.rb
 - lib/weixin_rails_middleware.rb
@@ -103,8 +105,11 @@ files:
 - lib/weixin_rails_middleware/configuration.rb
 - lib/weixin_rails_middleware/engine.rb
 - lib/weixin_rails_middleware/helpers/auto_generate_weixin_token_secret_key.rb
+- lib/weixin_rails_middleware/helpers/pkcs7_encoder.rb
+- lib/weixin_rails_middleware/helpers/prpcrypt.rb
 - lib/weixin_rails_middleware/helpers/reply_weixin_message_helper.rb
 - lib/weixin_rails_middleware/helpers/unique_token_helper.rb
+- lib/weixin_rails_middleware/models/encrypt_message.rb
 - lib/weixin_rails_middleware/models/message.rb
 - lib/weixin_rails_middleware/models/reply_message.rb
 - lib/weixin_rails_middleware/version.rb