using Ds.Module.WeChat.Models;
using System.Security.Cryptography;
using System.Text;
namespace Ds.Module.WeChat.Utilities
{ /// 签名验证类
public class CheckSignature
{
/// 在网站没有提供Token(或传入为null)的情况下的默认Token,建议在网站中进行配置。
public const string Token = "weixin";
/// 检查签名是否正确
///
/// 需要提供:Timestamp、Nonce、Token
///
public static bool Check(string signature, PostModel postModel) => CheckSignature.Check(signature, postModel.Timestamp, postModel.Nonce, postModel.Token);
/// 检查签名是否正确
///
///
///
///
///
public static bool Check(string signature, string timestamp, string nonce, string token = null) => signature == CheckSignature.GetSignature(timestamp, nonce, token);
/// 返回正确的签名
/// 需要提供:Timestamp、Nonce、Token
///
public static string GetSignature(PostModel postModel) => CheckSignature.GetSignature(postModel.Timestamp, postModel.Nonce, postModel.Token);
/// 返回正确的签名
///
///
///
///
public static string GetSignature(string timestamp, string nonce, string token = null)
{
token = token ?? "weixin";
string s = string.Join("", ((IEnumerable)new string[3]
{
token,
timestamp,
nonce
}).OrderBy((Func)(z => z)).ToArray());
byte[] hash = SHA1.Create().ComputeHash(Encoding.UTF8.GetBytes(s));
StringBuilder stringBuilder = new StringBuilder();
foreach (byte num in hash)
stringBuilder.AppendFormat("{0:x2}", (object)num);
return stringBuilder.ToString();
}
}
}