package cn.mb.cloud.gateway.auth;


import org.apache.commons.lang.StringUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.stereotype.Service;

import java.net.URLDecoder;
import java.util.Map;


@Service
public class AuthService {
	
	private final static Logger log = LoggerFactory.getLogger(AuthService.class);

	public static final AuthService me = new AuthService();
	
	/**
	 * 鉴权
	 * @param appid
	 * @param sign
	 * @return
	 */
	public ResultUtil checkSyncAuth(String appid, String uri, String sign, Map<String, Object> queryParams) {
		try {
			sign = URLDecoder.decode(sign, "UTF-8");
			if (StringUtils.isBlank(sign)) {
				return ResultUtil.sign();
			}
			// 1.鉴权
			String signUrl = AuthenticationKit.getSignUrl(uri, queryParams, "sign");
			signUrl = signUrl.replaceAll("& #40;", "\\(");
			signUrl = signUrl.replaceAll("& #41;", "\\)");
			String signUrlEncode = AuthenticationKit.signUrlEncode(signUrl, appid);
			if(sign.indexOf(" ") != -1 && signUrlEncode.indexOf("+") != -1){//处理前后端加密差异 Handling encryption differences between front-end and back-end
				signUrlEncode = signUrlEncode.replaceAll("\\+", " ");
			}

			// 签名无 not sign
			if (StringUtils.isBlank(sign) || !sign.equals(signUrlEncode)) {
				return ResultUtil.sign();
			}
		} catch (Exception e) {
			e.printStackTrace();
			return ResultUtil.runErr();
		}
		return ResultUtil.success();
	}
}