| | |
|---|
| | | if(method != HttpMethod.POST){ |
|---|
| | | return chain.filter(exchange.mutate().request(mutate.build()).build()); |
|---|
| | | } |
|---|
| | | String sing = request.getHeaders().getFirst(TokenConstants.SING); |
|---|
| | | String sign = request.getHeaders().getFirst(TokenConstants.SIGN); |
|---|
| | | String nonce_str = request.getHeaders().getFirst(TokenConstants.NONCE_STR); |
|---|
| | | // if (parameter_signature && StringUtils.isEmpty(sing)) { |
|---|
| | | // return unauthorizedResponse(exchange, "签名不能为空!"); |
|---|
| | | // } |
|---|
| | | // if (parameter_signature && StringUtils.isEmpty(nonce_str)) { |
|---|
| | | // return unauthorizedResponse(exchange, "签名不能为空!"); |
|---|
| | | // } |
|---|
| | | if (parameter_signature && StringUtils.isEmpty(sign)) { |
|---|
| | | return unauthorizedResponse(exchange, "签名不能为空!"); |
|---|
| | | } |
|---|
| | | if (parameter_signature && StringUtils.isEmpty(nonce_str)) { |
|---|
| | | return unauthorizedResponse(exchange, "签名不能为空!"); |
|---|
| | | } |
|---|
| | | if(parameter_signature){ |
|---|
| | | return authSign(exchange, chain, sing, nonce_str); |
|---|
| | | return authSign(exchange, chain, sign, nonce_str); |
|---|
| | | } |
|---|
| | | return chain.filter(exchange.mutate().request(mutate.build()).build()); |
|---|
| | | } |
|---|
| | |
|---|
| | | * 校验签名 |
|---|
| | | * @return |
|---|
| | | */ |
|---|
| | | private Mono<Void> authSign(ServerWebExchange exchange, GatewayFilterChain chain, String sing, String nonce_str){ |
|---|
| | | private Mono<Void> authSign(ServerWebExchange exchange, GatewayFilterChain chain, String sign, String nonce_str){ |
|---|
| | | return DataBufferUtils.join(exchange.getRequest().getBody()) |
|---|
| | | .flatMap(dataBuffer -> { |
|---|
| | | byte[] bytes = new byte[dataBuffer.readableByteCount()]; |
|---|
| | | dataBuffer.read(bytes); |
|---|
| | | String bodyString = new String(bytes, StandardCharsets.UTF_8); |
|---|
| | | log.info("请求参数:{}", bodyString); |
|---|
| | | if(!authSign(JSON.parseObject(bodyString), sing, nonce_str)){ |
|---|
| | | if(!authSign(JSON.parseObject(bodyString), sign, nonce_str)){ |
|---|
| | | return unauthorizedResponse(exchange, "签名验证失败!"); |
|---|
| | | } |
|---|
| | | DataBufferUtils.release(dataBuffer); |
|---|
| | |
|---|
| | | private boolean authSign(JSONObject jsonStr, String sign, String nonce_str) { |
|---|
| | | String signUrlEncode = localSignUrl(jsonStr, nonce_str); |
|---|
| | | signUrlEncode = signUrlEncode.replaceAll("& #40;", "\\(") |
|---|
| | | .replaceAll("& #41;", "\\)") |
|---|
| | | .replaceAll("\\+", " "); |
|---|
| | | .replaceAll("& #41;", "\\)"); |
|---|
| | | if(sign.equals(signUrlEncode)){ |
|---|
| | | return true; |
|---|
| | | } |
|---|
| | | |
|---|
| | | System.err.println("签名值:" + signUrlEncode); |
|---|
| | | return false; |
|---|
| | | } |
|---|
| | | |
|---|
| | |
|---|
| | | } |
|---|
| | | } |
|---|
| | | String signUrl = sb.substring(0, sb.length() - 1); |
|---|
| | | System.err.println("签名串:" + signUrl); |
|---|
| | | return signUrlEncode(signUrl, key); |
|---|
| | | } |
|---|
| | | |
|---|
