• Home
• com.github.anylogic
• alogic-rpc
• 1.6.17
• source code
• WithRSA.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.alogic.remote.xscript.auth.WithRSA Maven / Gradle / Ivy

package com.alogic.remote.xscript.auth;

import com.alogic.remote.Request;
import com.alogic.remote.xscript.RequestHandler;
import com.alogic.xscript.ExecuteWatcher;
import com.alogic.xscript.Logiclet;
import com.alogic.xscript.LogicletContext;
import com.alogic.xscript.doc.XsObject;
import com.anysoft.util.Properties;
import com.anysoft.util.PropertiesConstants;
import com.anysoft.util.code.util.RSAUtil;
import org.apache.commons.lang3.StringUtils;

import java.util.regex.Matcher;
import java.util.regex.Pattern;

/**
 *  RSA签名验证
 *  @since 1.6.12.41 [20190902] 

 *
 * @version 1.6.12.50 [20191204] 

 * - 修正URL取值的问题
 */
public class WithRSA extends RequestHandler {

    protected static String timestampId = "x-alogic-now";
    protected static String payloadId = "x-alogic-payload";
    protected static String signatureId = "x-alogic-signature";
    protected static String keyId = "x-alogic-app";
    protected static String acGroupKeyId = "x-alogic-ac";
    protected static String acGroup = "app";

    /**
     * 应用id
     */
    protected String $key="";

    /**
     * 密钥
     */
    protected String $keyContent="";

    /**
     * 本次访问的URL
     */
    protected String $url;

    /**
     * payload的签名信息
     */
    protected String $payload;

    /**
     * 匹配完整url的表达式
     */
    protected static Pattern pattern = Pattern.compile("(\\w+):\\/\\/([^/:]+)(?::(\\d*))?(.*)");

    public WithRSA(String tag, Logiclet p) {
        super(tag, p);
    }

    @Override
    public void configure(Properties p){
        super.configure(p);

        $key = PropertiesConstants.getRaw(p,"key",$key);
        $keyContent = PropertiesConstants.getRaw(p,"keyContent",$keyContent);
        $url = PropertiesConstants.getRaw(p,"url","");
        $payload = PropertiesConstants.getRaw(p,"payload","");
        acGroup = PropertiesConstants.getString(p,"acGroup",acGroup,true);
    }

    @Override
    protected void onExecute(final Request req, final XsObject root, final XsObject current, final LogicletContext ctx,
                             final ExecuteWatcher watcher) {

        String uriPath = getUriPath(PropertiesConstants.transform(ctx,$url,""));
        if (StringUtils.isNotEmpty(uriPath)) {
            String now = String.valueOf(System.currentTimeMillis());
            String key = PropertiesConstants.transform(ctx,$key,"");
            StringBuffer toSign = new StringBuffer();
            toSign.append(key).append("\n");
            toSign.append(now).append("\n");
            toSign.append(uriPath);
            String payload = PropertiesConstants.transform(ctx,$payload,"");
            if (StringUtils.isNotEmpty(payload)) {
                toSign.append("\n").append(payload);
            }
            String signature = RSAUtil.sign(toSign.toString(), PropertiesConstants.transform(ctx,$keyContent,""));
            if (StringUtils.isNotEmpty(signature)) {
                req.setHeader(signatureId, signature);
                req.setHeader(timestampId, now);
                req.setHeader(keyId, key);
                req.setHeader(acGroupKeyId, acGroup);
            }
        }
    }

    protected static String getUriPath(String urlPath){
        Matcher matcher = pattern.matcher(urlPath);
        if (matcher.find()){
            return matcher.group(4);
        }else{
            return urlPath;
        }
    }
}