devbox
Gausst松鼠会
这个屌丝很懒,什么也没留下!
关注作者
热门标签
热门文章
当前位置:   article > 正文

PHP 支付宝SDK加密与解密、签名与验签(含php原生写法)_php 支付宝 spi加解密

作者:Gausst松鼠会 | 2024-02-21 10:11:57

php 支付宝 spi加解密

1.使用支付宝SDK,本次使用的SDK是老版

支付宝文档:https://opendocs.alipay.com/open/54/103419

首先下载或使用新上线的Web在线加密,生成应用私钥与应用公钥

以Web在线加密为示例:https://miniu.alipay.com/keytool/create

支付宝SDK代码示例:

目录结构:


代码片段:

  1. <?php
  2. //引入
  3. require_once '../AopClient.php';
  4.  
  5. class SignTest
  6. {
  7.     protected $aop;
  8.     protected $private_key;
  9.     protected $alipayrsa_public_key;
  10.  
  11.     public function __construct()
  12.     {
  13.         $aop = new AopClient();
  14.         $aop->gatewayUrl = 'https://openapi.alipay.com/gateway.do';
  15.  
  16.         $aop->appId = '2021';
  17.         $aop->apiVersion = '1.0';
  18.         $aop->signType = 'RSA2';
  19.         $aop->postCharset = 'utf-8';
  20.         $aop->format = 'json';
  21.         
  22.         //应用私钥
  23.         $private_key = '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';
  24.  
  25.         $aop->rsaPrivateKey = $private_key;
  26.  
  27.         //应用公钥
  28.         $alipayrsa_public_key = 'MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwd+e6eZAEW9u0zaOKog5orZMgXR9duL3L+mwUCwb3AntIz6Ofst/AX5TS3g74crjXvfZgD5JMrBoRhPFFxCBb66MfxViinr41J0n0LxHlm/UYAMVcN0795lV0MRmJ9PiplCa/3mxG7prAPukqxAFM5BYvaTBucVSgRKrUVODouxcQuuFvr9uNMNS/T03/mSgWJTRtUHg1Wz9bncnFJUmr56ij10yYIAQD8FjGuga87jKi79/DnSgeF90qUoXeCY6ezlsO8NJ4pwVPqppWBxRSDok4qCPYnPLRmswFB46GViXmL6b4UnI/gxUSj6pFPhq6b3J648sz5RgfTzodOipOQIDAQAB';
  29.  
  30.         $aop->alipayrsaPublicKey = $alipayrsa_public_key;
  31.         $this->aop = $aop;
  32.         $this->private_key = $private_key;
  33.         $this->alipayrsa_public_key = $alipayrsa_public_key;
  34.     }
  35.     
  36.     //生成签名与验签
  37.     public function createSign($type, $sign, $time)
  38.     {
  39.         $content = array();
  40.         $content['a'] = "1";
  41.         $con = json_encode($content);
  42.         $param['app_id'] = '2021';
  43.         $param['method'] = 'www.baidu.com';//接口名称,固定值
  44.  
  45.         $param['charset'] = 'UTF-8';//请求使用的编码格式
  46.  
  47.         $param['sign_type'] = 'RSA2';//商户生成签名字符串所使用的签名算法类型
  48.  
  49.         $param['timestamp'] = $time;//发送请求的时间
  50.  
  51.         $param['version'] = '1.0';//调用的接口版本,固定为:1.0
  52.  
  53.         $param['biz_content'] = $con;//业务请求参数的集合,长度不限,json格式,即前面一步得到的
  54.         
  55.         //类型为1 生成签名
  56.         if ($type == 1) {
  57.             $paramStr = $this->aop->getSignContent($param);//组装请求签名参数
  58.             $res = $this->aop->alonersaSign($paramStr, $this->private_key, 'RSA2', false);//生成签名
  59.             return $res;
  60.         } else {
  61.         //类型为2 验证签名,须注意验证签名,就是生成签名的原始数据传回,并把生成的签名传入
  62.             $param['sign'] = $sign;
  63.             $res = $this->aop->rsaCheckV2($param, $this->alipayrsa_public_key, 'RSA2');
  64.             return $res;
  65.         }
  66.     }
  67.  
  68.     //数据加密
  69.     public function jiami()
  70.     {
  71.         // 加密内容必须为对象信息
  72.         $str = '{"a":112}';
  73.         $res = $this->aop->rsaEncrypt($str, $this->alipayrsa_public_key, 'UTF-8');
  74.         return $res;
  75.     }
  76.     
  77.     //数据解密
  78.     public function jiemi($sign)
  79.     {
  80.         // 解密须先 base64_decode
  81.         $res = $this->aop->rsaDecrypt(base64_decode($sign, true), $this->private_key, 'UTF-8');
  82.         return $res;
  83.     }
  84. }
  85.  
  86. $type = $_POST['type'];
  87. $aop = new SignTest();
  88. //1为生成签名,2为验证签名
  89. if ($type == 1 || $type == 2) {
  90.     $sign = $_POST['sign'];
  91.     $time = $_POST['time'];
  92.     $res = $aop->createSign($type, $sign, $time);
  93.     echo $res;
  94. }
  95. //数据加密
  96. if ($type == 3) {
  97.     $res = $aop->jiami();
  98.     echo $res;
  99. }
  100. //数据解密
  101. if ($type == 4) {
  102.     // 这是数据加密的值
  103.     $sign = $_POST['sign'];
  104.     $res = $aop->jiemi($sign);
  105.     echo $res;
  106. }
  107.  
  108.

PHP原生写法示例:

  1. class SignTest2
  2. {
  3.     // 应用公钥
  4.     private $public_key = 'MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhGYnCecQix/2Pllw5UXMKF3RgryqxXWrgoace8zUumagwX/WMeI0ZjaVFtrkUdiMpANILpB/p1u0AJAifxQuJSijR2a0oQ4zIoFbjm/HDipRcXbkeuMX4gRk863zBevfu0nNAHSReNLu9BaDwAN1OzJPWtxTFtrQ1lzKRIaVCCqDs2WAIlv979G7GQfOETWrgOr1Vy6s69VhGeKgz9+D/MOhWkaTiE+06JesIgH+ohfsH4G+Evz1kf1UYZ+ax3psQZEno3x24fAJt4CGuqj157zrb7OpRAWf/VWT8OAkp6G/y3c+YW22JcAEKlhBjijN8Y/LMoFOfeo7db0kQ51vgwIDAQAB';
  5.  
  6.     //应用私钥
  7.     private $private_key = 'MIIEpAIBAAKCAQEAhGYnCecQix/2Pllw5UXMKF3RgryqxXWrgoace8zUumagwX/WMeI0ZjaVFtrkUdiMpANILpB/p1u0AJAifxQuJSijR2a0oQ4zIoFbjm/HDipRcXbkeuMX4gRk863zBevfu0nNAHSReNLu9BaDwAN1OzJPWtxTFtrQ1lzKRIaVCCqDs2WAIlv979G7GQfOETWrgOr1Vy6s69VhGeKgz9+D/MOhWkaTiE+06JesIgH+ohfsH4G+Evz1kf1UYZ+ax3psQZEno3x24fAJt4CGuqj157zrb7OpRAWf/VWT8OAkp6G/y3c+YW22JcAEKlhBjijN8Y/LMoFOfeo7db0kQ51vgwIDAQABAoIBADpUavSQ6RfyH+F+NB++bWCHXMtVZYMTAVnDBmQAbOQmXMKDGJHnj6BMgciM7TQlzGhhzcY+AQ9xdk8dMSV9dYsHaVAGrqOaBus3xGdvVWonOLRdZfHB5P69YuB8jWnZbjssG3YM5R4vB/lfhfHtVBOdaZqlILIb+w/F15LzG+t5b5UfvveibPp/HEhDpZJrkmaAlbzqFw8O54XB5ev0wg6kRH8uW/GrVSQqluAuOrrT8TKcfRa8lnIq2P5Fh1QMaWlW7xuYbbzCzNvFYPfY4lqxQUJof6Nk9A62htJhJadsW8GDhyF9kabRQSWP3Xmdlxqw+BvCvBnqtoeCGEGUynkCgYEA7+4B1fOpwL+J3X2Zdjil8JFnGsy51KUMyH9GfH/7iWQ3see/l/lvYrrLGKmYuV5cvU5zD/dXvImVVT5Os0pcjW79Lr9mexzBGTcGvza4bPH07XOsPayGCwu/AoJLnRp3FepZbW+S9UOnRZO+avi7zuNpnVHxReN0hsCi96F3mlUCgYEAjURafLrTkkDwn0FUxhuriXFPhZ9tUUZwKEdAxrp1dXsZL1o+Uj6rD+gqKSMx9nEPKA42N9Y98fY6PFLzXfu2slwVjQkCff1WpYpFX05w4ijz6GyidT+OVyON2QCjDWlYomWxhmMLuvK41jgKXtRitrh2pMl+XTNvBoia4+Mn6ncCgYEAnft5B/kOcJVuYQJ/1wFL+pCzdEkTn7oiJa7wqa/X38q2hZVUaexbdIYMjyu1HXHN3PTX/M5f3gw14VBKn/G56YMIgQyUnUH8v+6kqamNXGchYG0HIAEGriVI240R3tt7SFnsEowiFw86CC1Vd7haacsCUw2OsfcoVkZnyGhwiZUCgYA7a+ggFToPiA9u/b0aA+OY0bfgfhoumNFur+IYdbAYtan3WB9k2wV7kG3DlhFbF12HvMqjnBO8ZpVCcKX7/3hu9/r8szCALIM46LubhlRHXXCTcLa5WP2Xu9Xb1L/BUXG+Bcaxv5HclmKXgUUjdHT9ZQRK9pKXw53NAsMcXp2YqwKBgQCbpJs1vYCwbNWF3POYdMYGWRwNgt04277/uI8gcJt0NCBJ1HvAGo6D8uT+l//8l9tMs8eOwGSIg5xdwA4v2UOgb1N10Qm1x3/T2D+V1+RO4mrDGUpSmBDVtQYnDIdjfRitERUI1+1HIRPJ7qBMsQbSc9ySZ5WE4Aroq/zDmBha2A==';
  8.  
  9.     // 数据加密
  10.     public function jiami()
  11.     {
  12.         $publicKey = "-----BEGIN PUBLIC KEY-----\n" . wordwrap($this->public_key, 64, "\n", true) . "\n-----END PUBLIC KEY-----";
  13.         //需要加密的数据
  14.         $data = [
  15.           'order_no' => '20212193123',
  16.           'money' => 99,
  17.           'user_id' => 12,
  18.           'pay_time' => '2021-6-18 17:02:00'
  19.         ];
  20.  
  21.         $publicKey = openssl_pkey_get_public($publicKey); //解析公钥
  22.         $res = openssl_public_encrypt(json_encode($data), $encrypted, $publicKey) ? base64_encode($encrypted) : null;
  23.         return $res;
  24.     }
  25.  
  26.     // 解密
  27.     public function jiemi($encrypted)
  28.     {
  29.         $privateKey = "-----BEGIN RSA PRIVATE KEY-----\n" . $this->private_key . "\n-----END RSA PRIVATE KEY-----";
  30.         $key = openssl_pkey_get_private($privateKey); //解析私钥
  31.         $encrypted = base64_decode($encrypted);
  32.         //解密
  33.         $res = openssl_private_decrypt($encrypted, $decrypted, $key) ? $decrypted : null;
  34.         return $res;
  35.     }
  36.  
  37.     //生成签名
  38.     public function qianming()
  39.     {
  40.         //要签名的数据
  41.         $data = [
  42.           'order_no' => '20212193123',
  43.           'money' => 99,
  44.           'user_id' => 12,
  45.           'pay_time' => '2021-6-18 17:02:00'
  46.         ];
  47.         $privateKey = "-----BEGIN RSA PRIVATE KEY-----\n" . $this->private_key . "\n-----END RSA PRIVATE KEY-----";
  48.         $privateKey = openssl_pkey_get_private($privateKey);
  49.         $res = openssl_sign(json_encode($data), $sign, $privateKey, OPENSSL_ALGO_SHA256) ? base64_encode($sign) : null;
  50.         return $res;
  51.     }
  52.  
  53.     //验签
  54.     public function yanqian($sign)
  55.     {
  56.         //原始数据
  57.         $data = [
  58.           'order_no' => '20212193123',
  59.           'money' => 99,
  60.           'user_id' => 12,
  61.           'pay_time' => '2021-6-18 17:02:00'
  62.         ];
  63.         $publicKey = "-----BEGIN PUBLIC KEY-----\n" . wordwrap($this->public_key, 64, "\n", true) . "\n-----END PUBLIC KEY-----";
  64.         $publicKey = openssl_pkey_get_public($publicKey);
  65.         $res = openssl_verify(json_encode($data), base64_decode($sign), $publicKey, OPENSSL_ALGO_SHA256);
  66.         return $res ? '正确' : '错误';
  67.     }
  68. }
  69.  
  70. $test = new SignTest2();
  71. $type1 = $_POST['type1'];
  72. //数据加密
  73. if ($type1 == 1) {
  74.     $res = $test->jiami();
  75.     echo $res;
  76. }
  77. //加密数据解密
  78. if ($type1 == 2) {
  79.     $sign = $_POST['sign'];
  80.     $res = $test->jiemi($sign);
  81.     echo $res;
  82. }
  83. //数据加密
  84. if ($type1 == 3) {
  85.     $res = $test->qianming();
  86.     echo $res;
  87. }
  88. //加密数据解密
  89. if ($type1 == 4) {
  90.     $sign = $_POST['sign'];
  91.     $res = $test->yanqian($sign);
  92.     echo $res;
  93. }

写在最后:

这只是记录加密与解密,签名与验签的简单使用,供学习参考,谢谢!

可以相互交流学习一下哦。

声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/Gausst松鼠会/article/detail/122892?site
推荐阅读
相关标签

Copyright © 2003-2013 www.wpsshop.cn 版权所有,并保留所有权利。

  

闽ICP备14008679号