Home Explore Help
Register Sign In
zhangbj
/
scrm-go
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
scrm-go
29 Commits
1 Branches
Tree: 68921c5d36
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '68921c5d36'
${ noResults }
scrm-go/service/wechat_service/open_wechat_service.go

open_wechat_service.go 12KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437 
  1. package wechat_service

  2. 

  3. import (

  4. 	"bytes"

  5. 	"crypto/aes"

  6. 	"crypto/cipher"

  7. 	"crypto/rand"

  8. 	"crypto/sha1"

  9. 	"encoding/base64"

  10. 	"encoding/binary"

  11. 	"encoding/json"

  12. 	"encoding/xml"

  13. 	"errors"

  14. 	"fmt"

  15. 	"io"

  16. 	"io/ioutil"

  17. 	math_rand "math/rand"

  18. 	"net/http"

  19. 	"sort"

  20. 	"strings"

  21. 	"time"

  22. 

  23. 	"SCRM/service"

  24. 	"SCRM/utils"

  25. 

  26. 	"github.com/astaxie/beego"

  27. 	"github.com/astaxie/beego/context"

  28. 	"github.com/silenceper/wechat/util"

  29. )

  30. 

  31. func init() {

  32. 	AesKey = EncodingAESKey2AESKey(encodingAESKey)

  33. }

  34. 

  35. var (

  36. 	//以下均为公众号管理后台设置项

  37. 	token          = beego.AppConfig.String("openwechattoken")

  38. 	appID          = beego.AppConfig.String("openwechatappid")

  39. 	encodingAESKey = beego.AppConfig.String("openwechatencodingaeskey")

  40. )

  41. 

  42. func MakeMsgSignature(timestamp, nonce, msg_encrypt string) string {

  43. 	sl := []string{token, timestamp, nonce, msg_encrypt}

  44. 	sort.Strings(sl)

  45. 	s := sha1.New()

  46. 	io.WriteString(s, strings.Join(sl, ""))

  47. 	return fmt.Sprintf("%x", s.Sum(nil))

  48. }

  49. 

  50. func ValidateMsg(timestamp, nonce, msgEncrypt, msgSignatureIn string) bool {

  51. 	msgSignatureGen := MakeMsgSignature(timestamp, nonce, msgEncrypt)

  52. 	if msgSignatureGen != msgSignatureIn {

  53. 		return false

  54. 	}

  55. 	return true

  56. }

  57. 

  58. func AesDecrypt(cipherData []byte, aesKey []byte) ([]byte, error) {

  59. 	k := len(aesKey) //PKCS#7

  60. 	if len(cipherData)%k != 0 {

  61. 		return nil, errors.New("crypto/cipher: ciphertext size is not multiple of aes key length")

  62. 	}

  63. 

  64. 	block, err := aes.NewCipher(aesKey)

  65. 	if err != nil {

  66. 		return nil, err

  67. 	}

  68. 

  69. 	iv := make([]byte, aes.BlockSize)

  70. 	if _, err := io.ReadFull(rand.Reader, iv); err != nil {

  71. 		return nil, err

  72. 	}

  73. 	blockMode := cipher.NewCBCDecrypter(block, iv)

  74. 	plainData := make([]byte, len(cipherData))

  75. 	blockMode.CryptBlocks(plainData, cipherData)

  76. 	return plainData, nil

  77. }

  78. 

  79. var AesKey []byte

  80. 

  81. func EncodingAESKey2AESKey(encodingKey string) []byte {

  82. 	data, _ := base64.StdEncoding.DecodeString(encodingKey + "=")

  83. 	return data

  84. }

  85. func ValidateAppId(id []byte) bool {

  86. 	if string(id) == appID {

  87. 		return true

  88. 	}

  89. 	return false

  90. }

  91. 

  92. func ParseEncryptTextRequestBody(plainText []byte) (*TextRequestBody, error) {

  93. 

  94. 	// Read length

  95. 	buf := bytes.NewBuffer(plainText[16:20])

  96. 	var length int32

  97. 	binary.Read(buf, binary.BigEndian, &length)

  98. 

  99. 	// appID validation

  100. 	appIDstart := 20 + length

  101. 	id := plainText[appIDstart : int(appIDstart)+len(appID)]

  102. 	if !ValidateAppId(id) {

  103. 		return nil, errors.New("Appid is invalid")

  104. 	}

  105. 

  106. 	textRequestBody := &TextRequestBody{}

  107. 	xml.Unmarshal(plainText[20:20+length], textRequestBody)

  108. 	return textRequestBody, nil

  109. }

  110. 

  111. func Value2CDATA(v string) CDATAText {

  112. 	//return CDATAText{[]byte("<![CDATA[" + v + "]]>")}

  113. 	return CDATAText{"<![CDATA[" + v + "]]>"}

  114. }

  115. func MakeEncryptXmlData(fromUserName, toUserName, timestamp, content string) (string, error) {

  116. 	textResponseBody := &TextResponseBody{}

  117. 	textResponseBody.FromUserName = Value2CDATA(fromUserName)

  118. 	textResponseBody.ToUserName = Value2CDATA(toUserName)

  119. 	textResponseBody.MsgType = Value2CDATA("text")

  120. 	textResponseBody.Content = Value2CDATA(content)

  121. 	textResponseBody.CreateTime = timestamp

  122. 	body, err := xml.MarshalIndent(textResponseBody, " ", "  ")

  123. 	if err != nil {

  124. 		return "", errors.New("xml marshal error")

  125. 	}

  126. 

  127. 	buf := new(bytes.Buffer)

  128. 	err = binary.Write(buf, binary.BigEndian, int32(len(body)))

  129. 	if err != nil {

  130. 		return "", errors.New("Binary write err:" + err.Error())

  131. 	}

  132. 	bodyLength := buf.Bytes()

  133. 

  134. 	randomBytes := []byte("abcdefghijklmnop")

  135. 

  136. 	plainData := bytes.Join([][]byte{randomBytes, bodyLength, body, []byte(appID)}, nil)

  137. 	cipherData, err := AesEncrypt(plainData, AesKey)

  138. 	if err != nil {

  139. 		return "", errors.New("AesEncrypt error")

  140. 	}

  141. 	return base64.StdEncoding.EncodeToString(cipherData), nil

  142. }

  143. 

  144. // PadLength calculates padding length, from github.com/vgorin/cryptogo

  145. func PadLength(slice_length, blocksize int) (padlen int) {

  146. 	padlen = blocksize - slice_length%blocksize

  147. 	if padlen == 0 {

  148. 		padlen = blocksize

  149. 	}

  150. 	return padlen

  151. }

  152. 

  153. //from github.com/vgorin/cryptogo

  154. func PKCS7Pad(message []byte, blocksize int) (padded []byte) {

  155. 	// block size must be bigger or equal 2

  156. 	if blocksize < 1<<1 {

  157. 		panic("block size is too small (minimum is 2 bytes)")

  158. 	}

  159. 	// block size up to 255 requires 1 byte padding

  160. 	if blocksize < 1<<8 {

  161. 		// calculate padding length

  162. 		padlen := PadLength(len(message), blocksize)

  163. 

  164. 		// define PKCS7 padding block

  165. 		padding := bytes.Repeat([]byte{byte(padlen)}, padlen)

  166. 

  167. 		// apply padding

  168. 		padded = append(message, padding...)

  169. 		return padded

  170. 	}

  171. 	// block size bigger or equal 256 is not currently supported

  172. 	panic("unsupported block size")

  173. }

  174. func AesEncrypt(plainData []byte, aesKey []byte) ([]byte, error) {

  175. 	k := len(aesKey)

  176. 	if len(plainData)%k != 0 {

  177. 		plainData = PKCS7Pad(plainData, k)

  178. 	}

  179. 

  180. 	block, err := aes.NewCipher(aesKey)

  181. 	if err != nil {

  182. 		return nil, err

  183. 	}

  184. 

  185. 	iv := make([]byte, aes.BlockSize)

  186. 	if _, err := io.ReadFull(rand.Reader, iv); err != nil {

  187. 		return nil, err

  188. 	}

  189. 

  190. 	cipherData := make([]byte, len(plainData))

  191. 	blockMode := cipher.NewCBCEncrypter(block, iv)

  192. 	blockMode.CryptBlocks(cipherData, plainData)

  193. 

  194. 	return cipherData, nil

  195. }

  196. func MakeEncryptResponseBody(fromUserName, toUserName, content, nonce, timestamp string) ([]byte, error) {

  197. 	encryptBody := &EncryptResponseBody{}

  198. 

  199. 	encryptXmlData, _ := MakeEncryptXmlData(fromUserName, toUserName, timestamp, content)

  200. 	encryptBody.Encrypt = Value2CDATA(encryptXmlData)

  201. 	encryptBody.MsgSignature = Value2CDATA(MakeMsgSignature(timestamp, nonce, encryptXmlData))

  202. 	encryptBody.TimeStamp = timestamp

  203. 	encryptBody.Nonce = Value2CDATA(nonce)

  204. 

  205. 	return xml.MarshalIndent(encryptBody, " ", "  ")

  206. }

  207. 

  208. func SendMsgTypeTextMessage(appid string, ToUserName string, FromUserName string, text string, nonce string, timestamp string, Ctx *context.Context, orgID int64) {

  209. 

  210. 	arthorizer, err := GetAuthorizationByAppID(orgID, appid)

  211. 	if err != nil {

  212. 		utils.ErrorLog("SendMsgTypeTextMessage error:%s", err)

  213. 		Ctx.WriteString("success")

  214. 		return

  215. 	}

  216. 

  217. 	messages, err := GetTextReplyMessagesByKey(arthorizer.UserOrgId, text)

  218. 	if err != nil {

  219. 		utils.ErrorLog("SendMsgTypeTextMessage error:%s", err)

  220. 		Ctx.WriteString("success")

  221. 		return

  222. 	}

  223. 	if len(messages) == 0 {

  224. 		utils.ErrorLog("SendMsgTypeTextMessage error: messages is nil")

  225. 		Ctx.WriteString("success")

  226. 		return

  227. 	}

  228. 

  229. 	r := math_rand.New(math_rand.NewSource(time.Now().UnixNano()))

  230. 	n := r.Intn(len(messages))

  231. 

  232. 	for key, item := range messages {

  233. 		if key == n {

  234. 			//安全模式下向用户回复消息也需要加密

  235. 			respBody, e := MakeEncryptResponseBody(FromUserName, ToUserName, item.MessageContent, nonce, timestamp)

  236. 			if e != nil {

  237. 				Ctx.WriteString("success")

  238. 				return

  239. 			}

  240. 

  241. 			Ctx.WriteString(string(respBody))

  242. 			fmt.Println(string(respBody))

  243. 			return

  244. 		}

  245. 

  246. 	}

  247. 

  248. 	Ctx.WriteString("success")

  249. 	return

  250. 

  251. }

  252. 

  253. //SendSubscribeTextMessage  当用户关注微信公众号,回复ta

  254. func SendSubscribeTextMessage(appid string, ToUserName string, FromUserName string, nonce string, timestamp string, Ctx *context.Context, orgID int64) {

  255. 	arthorizer, err := GetAuthorizationByAppID(orgID, appid)

  256. 	if err != nil {

  257. 		utils.ErrorLog("SendSubscribeTextMessage error:%s", err)

  258. 		Ctx.WriteString("success")

  259. 		return

  260. 	}

  261. 

  262. 	message, err := GetSubscribeReplyMessagesByOrgID(arthorizer.UserOrgId)

  263. 	if err != nil {

  264. 		utils.ErrorLog("SendSubscribeTextMessage error:%s", err)

  265. 		Ctx.WriteString("success")

  266. 		return

  267. 	}

  268. 	if message == nil {

  269. 		utils.ErrorLog("SendSubscribeTextMessage error: message is nil")

  270. 		Ctx.WriteString("success")

  271. 		return

  272. 	}

  273. 

  274. 	respBody, e := MakeEncryptResponseBody(FromUserName, ToUserName, message.MessageContent, nonce, timestamp)

  275. 	if e != nil {

  276. 		Ctx.WriteString("success")

  277. 		return

  278. 	}

  279. 

  280. 	Ctx.WriteString(string(respBody))

  281. 	return

  282. 

  283. }

  284. 

  285. func SendClickButtonMessage(appid string, ToUserName string, FromUserName string, keyName string, nonce string, timestamp string, Ctx *context.Context, orgID int64) {

  286. 	arthorizer, err := GetAuthorizationByAppID(orgID, appid)

  287. 	if err != nil {

  288. 		utils.ErrorLog("SendClickButtonMessage error:%s", err)

  289. 		Ctx.WriteString("success")

  290. 		return

  291. 	}

  292. 	message, err := GetClickButtonReplyMessagesByOrgID(arthorizer.UserOrgId, keyName)

  293. 	if err != nil {

  294. 		utils.ErrorLog("SendClickButtonMessage error:%s", err)

  295. 		Ctx.WriteString("success")

  296. 		return

  297. 	}

  298. 	if message == nil {

  299. 		utils.ErrorLog("SendClickButtonMessage error: message is nil")

  300. 		Ctx.WriteString("success")

  301. 		return

  302. 	}

  303. 

  304. 	respBody, e := MakeEncryptResponseBody(FromUserName, ToUserName, message.MessageContent, nonce, timestamp)

  305. 	if e != nil {

  306. 		Ctx.WriteString("success")

  307. 		return

  308. 	}

  309. 

  310. 	Ctx.WriteString(string(respBody))

  311. 	return

  312. }

  313. 

  314. func GetReqPreAuthCode() (code string, err error) {

  315. 	redisClient := service.RedisClient()

  316. 	defer redisClient.Close()

  317. 

  318. 	componentAccessToken, err := redisClient.Get("sgj_patient:component_access_token").Result()

  319. 	if err != nil {

  320. 		utils.ErrorLog("component_access_token不存在")

  321. 		return

  322. 	}

  323. 

  324. 	appID := beego.AppConfig.String("openwechatappid")

  325. 

  326. 	type reqPreAuthCodeStruct struct {

  327. 		ComponentAppid string `json:"component_appid"`

  328. 	}

  329. 

  330. 	// 通过 ComponentAccessToken 取 pre_auth_code

  331. 	// 3、获取预授权码pre_auth_code

  332. 	var ReqPreAuthCode reqPreAuthCodeStruct

  333. 	ReqPreAuthCode.ComponentAppid = appID

  334. 	//创建请求

  335. 

  336. 	uri := fmt.Sprintf("%s?component_access_token=%s", "https://api.weixin.qq.com/cgi-bin/component/api_create_preauthcode", componentAccessToken)

  337. 	var responseBytes []byte

  338. 	responseBytes, err = util.PostJSON(uri, ReqPreAuthCode)

  339. 	if err != nil {

  340. 		utils.ErrorLog("%s", err)

  341. 		return

  342. 	}

  343. 

  344. 	var res MPResult

  345. 	err = json.Unmarshal(responseBytes, &res)

  346. 	if err != nil {

  347. 		utils.ErrorLog("%s", err)

  348. 		return

  349. 	}

  350. 

  351. 	if res.ErrCode > 0 {

  352. 		utils.ErrorLog("%s", res.ErrMsg)

  353. 		return

  354. 	}

  355. 

  356. 	var pre_auth_code_struct PreAuthCode

  357. 	err = json.Unmarshal(responseBytes, &pre_auth_code_struct)

  358. 	if err != nil {

  359. 		utils.ErrorLog("pre_auth_code_struct Unmarshal json error:%s", err)

  360. 		return

  361. 	}

  362. 	code = pre_auth_code_struct.PreAuthCode

  363. 	return

  364. }

  365. 

  366. //ComponentAPIQueryAuth 使用授权码换取公众号的接口调用凭据和授权信息

  367. func ComponentAPIQueryAuth(AuthorizationCode string, ComponentAccessToken string) ([]byte, error) {

  368. 

  369. 	//post的body内容,当前为json格式

  370. 	reqbody := "{\"component_appid\":\"" + beego.AppConfig.String("openwechatappid") + "\",\"authorization_code\": \"" + AuthorizationCode + "\"}"

  371. 	//创建请求

  372. 	postReq, err := http.NewRequest("POST",

  373. 		"https://api.weixin.qq.com/cgi-bin/component/api_query_auth?component_access_token="+ComponentAccessToken,

  374. 		strings.NewReader(reqbody)) //post内容

  375. 

  376. 	if err != nil {

  377. 		utils.ErrorLog("POST请求:omponent/api_query_auth请求创建失败:%s", err)

  378. 		return nil, err

  379. 	}

  380. 

  381. 	//增加header

  382. 	postReq.Header.Set("Content-Type", "application/json; encoding=utf-8")

  383. 

  384. 	//执行请求

  385. 	client := &http.Client{}

  386. 	resp, err := client.Do(postReq)

  387. 	if err != nil {

  388. 		utils.ErrorLog("POST请求:创建请求失败:%s", err)

  389. 		return nil, err

  390. 	}

  391. 	//读取响应

  392. 	body, err := ioutil.ReadAll(resp.Body) //此处可增加输入过滤

  393. 	if err != nil {

  394. 		utils.ErrorLog("POST请求:读取body失败:%s", err)

  395. 		return nil, err

  396. 	}

  397. 

  398. 	resp.Body.Close()

  399. 	return body, nil

  400. 

  401. }

  402. 

  403. //ComponentAPIGetAuthorizerInfo 利用AuthorizerAppid(公众号授权后,获取的appid)拉取公众号信息

  404. func ComponentAPIGetAuthorizerInfo(AuthorizerAppid string, ComponentAccessToken string) ([]byte, error) {

  405. 	//post的body内容,当前为json格式

  406. 	reqbody := "{\"component_appid\":\"" + beego.AppConfig.String("openwechatappid") + "\",\"authorizer_appid\": \"" + AuthorizerAppid + "\"}"

  407. 	//创建请求

  408. 	postReq, err := http.NewRequest("POST",

  409. 		"https://api.weixin.qq.com/cgi-bin/component/api_get_authorizer_info?component_access_token="+ComponentAccessToken, //post链接

  410. 		strings.NewReader(reqbody)) //post内容

  411. 

  412. 	if err != nil {

  413. 		fmt.Println("POST请求:omponent/api_get_authorizer_info请求创建失败")

  414. 		return nil, err

  415. 	}

  416. 

  417. 	//增加header

  418. 	postReq.Header.Set("Content-Type", "application/json; encoding=utf-8")

  419. 

  420. 	//执行请求

  421. 	client := &http.Client{}

  422. 	resp, err := client.Do(postReq)

  423. 	if err != nil {

  424. 		fmt.Println("POST请求:创建请求失败")

  425. 		return nil, err

  426. 	}

  427. 	//读取响应

  428. 	body, err := ioutil.ReadAll(resp.Body) //此处可增加输入过滤

  429. 	if err != nil {

  430. 		fmt.Println("POST请求:读取body失败")

  431. 		return nil, err

  432. 	}

  433. 

  434. 	resp.Body.Close()

  435. 	return body, nil

  436. }