From 04eca32b1b0624daa379ef214e5b2a5ceb19cceb Mon Sep 17 00:00:00 2001 From: sbzhu Date: Thu, 1 Nov 2018 21:03:23 +0800 Subject: [PATCH 01/23] add callback_json --- callback_json/Readme.txt | 5 + callback_json/Sample.py | 108 +++++++++++++ callback_json/WXBizMsgCrypt.py | 275 +++++++++++++++++++++++++++++++++ callback_json/ierror.py | 20 +++ 4 files changed, 408 insertions(+) create mode 100644 callback_json/Readme.txt create mode 100644 callback_json/Sample.py create mode 100644 callback_json/WXBizMsgCrypt.py create mode 100644 callback_json/ierror.py diff --git a/callback_json/Readme.txt b/callback_json/Readme.txt new file mode 100644 index 0000000..79ebb21 --- /dev/null +++ b/callback_json/Readme.txt @@ -0,0 +1,5 @@ +注意事项 +1.WXBizMsgCrypt.py文件封装了WXBizMsgCrypt接口类,提供了用户接入企业微信的三个接口,Sample.py文件提供了如何使用这三个接口的示例,ierror.py提供了错误码。 +2.WXBizMsgCrypt封装了VerifyURL, DecryptMsg, EncryptMsg三个接口,分别用于开发者验证回调url,收到用户回复消息的解密以及开发者回复消息的加密过程。使用方法可以参考Sample.py文件。 +3.加解密协议请参考企业微信官方文档。 +4.本代码用到了pycrypto第三方库,请开发者自行安装此库再使用。 \ No newline at end of file diff --git a/callback_json/Sample.py b/callback_json/Sample.py new file mode 100644 index 0000000..4e31937 --- /dev/null +++ b/callback_json/Sample.py @@ -0,0 +1,108 @@ +#!/usr/bin/env python +# -*- coding: utf-8 -*- +######################################################################### +# Author: jonyqin +# Created Time: Thu 11 Sep 2014 03:55:41 PM CST +# File Name: Sample.py +# Description: WXBizMsgCrypt 浣跨敤demo鏂囦欢 +######################################################################### +from WXBizMsgCrypt import WXBizMsgCrypt +import sys + +if __name__ == "__main__": + #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 + sToken = "hJqcu3uJ9Tn2gXPmxx2w9kkCkCE2EPYo" + sEncodingAESKey = "6qkdMrq68nTKduznJYO1A37W2oEgpkMUvkttRToqhUt" + sCorpID = "ww1436e0e65a779aee" + ''' + ------------浣跨敤绀轰緥涓锛氶獙璇佸洖璋僓RL--------------- + *浼佷笟寮鍚洖璋冩ā寮忔椂锛屼紒涓氬彿浼氬悜楠岃瘉url鍙戦佷竴涓猤et璇锋眰 + 鍋囪鐐瑰嚮楠岃瘉鏃讹紝浼佷笟鏀跺埌绫讳技璇锋眰锛 + * GET /cgi-bin/wxpush?msg_signature=5c45ff5e21c57e6ad56bac8758b79b1d9ac89fd3×tamp=1409659589&nonce=263014780&echostr=P9nAzCzyDtyTWESHep1vC5X9xho%2FqYX3Zpb4yKa9SKld1DsH3Iyt3tP3zNdtp%2B4RPcs8TgAE7OaBO%2BFZXvnaqQ%3D%3D + * HTTP/1.1 Host: qy.weixin.qq.com + + 鎺ユ敹鍒拌璇锋眰鏃讹紝浼佷笟搴 1.瑙f瀽鍑篏et璇锋眰鐨勫弬鏁帮紝鍖呮嫭娑堟伅浣撶鍚(msg_signature)锛屾椂闂存埑(timestamp)锛岄殢鏈烘暟瀛椾覆(nonce)浠ュ強浼佷笟寰俊鎺ㄩ佽繃鏉ョ殑闅忔満鍔犲瘑瀛楃涓(echostr), + 杩欎竴姝ユ敞鎰忎綔URL瑙g爜銆 + 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬 + 3. 瑙e瘑鍑篹chostr鍘熸枃锛屽皢鍘熸枃褰撲綔Get璇锋眰鐨剅esponse锛岃繑鍥炵粰浼佷笟寰俊 + 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟VerifyURL鏉ュ疄鐜般 + ''' + wxcpt=WXBizMsgCrypt(sToken,sEncodingAESKey,sCorpID) + sVerifyMsgSig="012bc692d0a58dd4b10f8dfe5c4ac00ae211ebeb" + sVerifyTimeStamp="1476416373" + sVerifyNonce="47744683" + sVerifyEchoStr="fsi1xnbH4yQh0+PJxcOdhhK6TDXkjMyhEPA7xB2TGz6b+g7xyAbEkRxN/3cNXW9qdqjnoVzEtpbhnFyq6SVHyA==" + ret,sEchoStr=wxcpt.VerifyURL(sVerifyMsgSig, sVerifyTimeStamp,sVerifyNonce,sVerifyEchoStr) + if(ret!=0): + print "ERR: VerifyURL ret: " + str(ret) + sys.exit(1) + else: + print "done VerifyURL" + #楠岃瘉URL鎴愬姛锛屽皢sEchoStr杩斿洖缁欎紒涓氬彿 + + print "==============================" + ''' + ------------浣跨敤绀轰緥浜岋細瀵圭敤鎴峰洖澶嶇殑娑堟伅瑙e瘑--------------- + 鐢ㄦ埛鍥炲娑堟伅鎴栬呯偣鍑讳簨浠跺搷搴旀椂锛屼紒涓氫細鏀跺埌鍥炶皟娑堟伅锛屾娑堟伅鏄粡杩囦紒涓氬井淇″姞瀵嗕箣鍚庣殑瀵嗘枃浠ost褰㈠紡鍙戦佺粰浼佷笟锛屽瘑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 + 鍋囪浼佷笟鏀跺埌浼佷笟寰俊鐨勫洖璋冩秷鎭涓嬶細 + POST /cgi-bin/wxpush? msg_signature=e3647471e395139e2308c1fa963f2d648a00b90e×tamp=1409659813&nonce=1372623149 HTTP/1.1 + Host: qy.weixin.qq.com + + { + "ToUserName": "wx5823bf96d3bd56c7", + "Encrypt": "cjhLUX7UU4yCSelv1vz7T0zT8huF51bAMVWriNvO1FMegHrQZNrtvRxbwf0fUPsFvwqR0U0fgiJNEA5Y30F2MoI2S7vv3EjVQ68C0cjw9frBoUE2Hj0BvFp9h3u6Vbsg4lc1C8AtHdaN8orKuNKkLRLuYEL52R1J3v8olJGZRLnRdVKIivixmX/eQpzgeExtp20jI1HxRP1AAZ6xZoILdqDPO549LO4WeG+685JRUTdiwcY5fjZlqeMxuT4PpMn1X9OWsS7NRj06Wa5E3Tvg4twjWp39KPfOdRte6P1T4JU=", + "AgentID": 218 + } + + 浼佷笟鏀跺埌post璇锋眰涔嬪悗搴旇 1.瑙f瀽鍑簎rl涓婄殑鍙傛暟锛屽寘鎷秷鎭綋绛惧悕(msg_signature)锛屾椂闂存埑(timestamp)浠ュ強闅忔満鏁板瓧涓(nonce) + 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬с 3.灏唒ost璇锋眰鐨勬暟鎹繘琛宩son瑙f瀽锛屽苟灏鏍囩鐨勫唴瀹硅繘琛岃В瀵嗭紝瑙e瘑鍑烘潵鐨勬槑鏂囧嵆鏄敤鎴峰洖澶嶆秷鎭殑鏄庢枃锛屾槑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 + 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟DecryptMsg鏉ュ疄鐜般 + ''' + + sReqNonce = "1372623149" + sReqTimeStamp = "1409659813" + + sReqMsgSig = "e3647471e395139e2308c1fa963f2d648a00b90e" + sReqData = '{ "ToUserName": "wx5823bf96d3bd56c7", "Encrypt": "cjhLUX7UU4yCSelv1vz7T0zT8huF51bAMVWriNvO1FMegHrQZNrtvRxbwf0fUPsFvwqR0U0fgiJNEA5Y30F2MoI2S7vv3EjVQ68C0cjw9frBoUE2Hj0BvFp9h3u6Vbsg4lc1C8AtHdaN8orKuNKkLRLuYEL52R1J3v8olJGZRLnRdVKIivixmX/eQpzgeExtp20jI1HxRP1AAZ6xZoILdqDPO549LO4WeG+685JRUTdiwcY5fjZlqeMxuT4PpMn1X9OWsS7NRj06Wa5E3Tvg4twjWp39KPfOdRte6P1T4JU=", "AgentID": 218 }'; + ret,sMsg=wxcpt.DecryptMsg( sReqData, sReqMsgSig, sReqTimeStamp, sReqNonce) + if( ret!=0 ): + print "ERR: DecryptMsg ret: " + str(ret) + sys.exit(1) + else: + print sMsg + # 瑙e瘑鎴愬姛锛宻Msg鍗充负json鏍煎紡鐨勬槑鏂 + # TODO: 瀵规槑鏂囩殑澶勭悊 + # ... + # ... + + print "==============================" + + ''' + ------------浣跨敤绀轰緥涓夛細浼佷笟鍥炲鐢ㄦ埛娑堟伅鐨勫姞瀵--------------- + 浼佷笟琚姩鍥炲鐢ㄦ埛鐨勬秷鎭篃闇瑕佽繘琛屽姞瀵嗭紝骞朵笖鎷兼帴鎴愬瘑鏂囨牸寮忕殑json涓层 + 鍋囪浼佷笟闇瑕佸洖澶嶇敤鎴风殑鏄庢枃濡備笅锛 + + { + "ToUserName": "mycreate", + "FromUserName":"wx5823bf96d3bd56c7", + "CreateTime": 1348831860, + "MsgType": "text", + "Content": "this is a test", + "MsgId": 1234567890123456, + "AgentID": 128 + } + + 涓轰簡灏嗘娈垫槑鏂囧洖澶嶇粰鐢ㄦ埛锛屼紒涓氬簲锛 1.鑷繁鐢熸垚鏃堕棿鏃堕棿鎴(timestamp),闅忔満鏁板瓧涓(nonce)浠ヤ究鐢熸垚娑堟伅浣撶鍚嶏紝涔熷彲浠ョ洿鎺ョ敤浠庝紒涓氬井淇$殑post url涓婅В鏋愬嚭鐨勫搴斿笺 + 2.灏嗘槑鏂囧姞瀵嗗緱鍒板瘑鏂囥 3.鐢ㄥ瘑鏂囷紝姝ラ1鐢熸垚鐨則imestamp,nonce鍜屼紒涓氬湪浼佷笟寰俊璁惧畾鐨則oken鐢熸垚娑堟伅浣撶鍚嶃 4.灏嗗瘑鏂囷紝娑堟伅浣撶鍚嶏紝鏃堕棿鎴筹紝闅忔満鏁板瓧涓叉嫾鎺ユ垚json鏍煎紡鐨勫瓧绗︿覆锛屽彂閫佺粰浼佷笟鍙枫 + 浠ヤ笂2锛3锛4姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟EncryptMsg鏉ュ疄鐜般 + ''' + #sRespData = ' { "ToUserName": "mycreate", "FromUserName":"wx5823bf96d3bd56c7", "CreateTime": 1348831860, "MsgType": "text", "Content": "this is a test", "MsgId": 1234567890123456, "AgentID": 128 }'; + sRespData = '{ "ToUserName": "wx5823bf96d3bd56c7", "FromUserName": :mycreate", "CreateTime": 1409659813, "MsgType": "text", "Content": "hello", "MsgId": 4561255354251345929, "AgentID": 218}' + ret,sEncryptMsg=wxcpt.EncryptMsg(sRespData, sReqNonce, sReqTimeStamp) + if( ret!=0 ): + print "ERR: EncryptMsg ret: " + str(ret) + sys.exit(1) + else: + print sEncryptMsg + #ret == 0 鍔犲瘑鎴愬姛锛屼紒涓氶渶瑕佸皢sEncryptMsg杩斿洖缁欎紒涓氬彿 + print "==============================" diff --git a/callback_json/WXBizMsgCrypt.py b/callback_json/WXBizMsgCrypt.py new file mode 100644 index 0000000..6ea7dd4 --- /dev/null +++ b/callback_json/WXBizMsgCrypt.py @@ -0,0 +1,275 @@ +#!/usr/bin/env python +#-*- encoding:utf-8 -*- + +""" 瀵逛紒涓氬井淇″彂閫佺粰浼佷笟鍚庡彴鐨勬秷鎭姞瑙e瘑绀轰緥浠g爜. +@copyright: Copyright (c) 1998-2014 Tencent Inc. + +""" +# ------------------------------------------------------------------------ + +import base64 +import string +import random +import hashlib +import time +import struct +from Crypto.Cipher import AES +import sys +import socket +import json + +reload(sys) +import ierror +sys.setdefaultencoding('utf-8') + +""" +鍏充簬Crypto.Cipher妯″潡锛孖mportError: No module named 'Crypto'瑙e喅鏂规 +璇峰埌瀹樻柟缃戠珯 https://www.dlitz.net/software/pycrypto/ 涓嬭浇pycrypto銆 +涓嬭浇鍚庯紝鎸夌収README涓殑鈥淚nstallation鈥濆皬鑺傜殑鎻愮ず杩涜pycrypto瀹夎銆 +""" +class FormatException(Exception): + pass + +def throw_exception(message, exception_class=FormatException): + """my define raise exception function""" + raise exception_class(message) + +class SHA1: + """璁$畻浼佷笟寰俊鐨勬秷鎭鍚嶆帴鍙""" + + def getSHA1(self, token, timestamp, nonce, encrypt): + """鐢⊿HA1绠楁硶鐢熸垚瀹夊叏绛惧悕 + @param token: 绁ㄦ嵁 + @param timestamp: 鏃堕棿鎴 + @param encrypt: 瀵嗘枃 + @param nonce: 闅忔満瀛楃涓 + @return: 瀹夊叏绛惧悕 + """ + try: + sortlist = [token, timestamp, nonce, encrypt] + sortlist.sort() + sha = hashlib.sha1() + sha.update("".join(sortlist)) + return ierror.WXBizMsgCrypt_OK, sha.hexdigest() + except Exception,e: + print e + return ierror.WXBizMsgCrypt_ComputeSignature_Error, None + + +class JsonParse: + """鎻愪緵鎻愬彇娑堟伅鏍煎紡涓殑瀵嗘枃鍙婄敓鎴愬洖澶嶆秷鎭牸寮忕殑鎺ュ彛""" + + # json娑堟伅妯℃澘 + AES_TEXT_RESPONSE_TEMPLATE = '''{ +"Encrypt": "%(msg_encrypt)s", +"MsgSignature": "%(msg_signaturet)s", +"TimeStamp": %(timestamp)s, +"Nonce": "%(nonce)s" +}''' + + def extract(self, jsontext): + """鎻愬彇鍑簀son鏁版嵁鍖呬腑鐨勫姞瀵嗘秷鎭 + @param jsontext: 寰呮彁鍙栫殑json瀛楃涓 + @return: 鎻愬彇鍑虹殑鍔犲瘑娑堟伅瀛楃涓 + """ + try: + json_dict = json.loads(jsontext) + return ierror.WXBizMsgCrypt_OK, json_dict['Encrypt'] + except Exception,e: + print e + return ierror.WXBizMsgCrypt_ParseXml_Error, None + def generate(self, encrypt, signature, timestamp, nonce): + """鐢熸垚json娑堟伅 + @param encrypt: 鍔犲瘑鍚庣殑娑堟伅瀵嗘枃 + @param signature: 瀹夊叏绛惧悕 + @param timestamp: 鏃堕棿鎴 + @param nonce: 闅忔満瀛楃涓 + @return: 鐢熸垚鐨刯son瀛楃涓 + """ + resp_dict = { + 'msg_encrypt' : encrypt, + 'msg_signaturet': signature, + 'timestamp' : timestamp, + 'nonce' : nonce, + } + resp_json = self.AES_TEXT_RESPONSE_TEMPLATE % resp_dict + return resp_json + + +class PKCS7Encoder(): + """鎻愪緵鍩轰簬PKCS7绠楁硶鐨勫姞瑙e瘑鎺ュ彛""" + + block_size = 32 + def encode(self, text): + """ 瀵归渶瑕佸姞瀵嗙殑鏄庢枃杩涜濉厖琛ヤ綅 + @param text: 闇瑕佽繘琛屽~鍏呰ˉ浣嶆搷浣滅殑鏄庢枃 + @return: 琛ラ綈鏄庢枃瀛楃涓 + """ + text_length = len(text) + # 璁$畻闇瑕佸~鍏呯殑浣嶆暟 + amount_to_pad = self.block_size - (text_length % self.block_size) + if amount_to_pad == 0: + amount_to_pad = self.block_size + # 鑾峰緱琛ヤ綅鎵鐢ㄧ殑瀛楃 + pad = chr(amount_to_pad) + return text + pad * amount_to_pad + + def decode(self, decrypted): + """鍒犻櫎瑙e瘑鍚庢槑鏂囩殑琛ヤ綅瀛楃 + @param decrypted: 瑙e瘑鍚庣殑鏄庢枃 + @return: 鍒犻櫎琛ヤ綅瀛楃鍚庣殑鏄庢枃 + """ + pad = ord(decrypted[-1]) + if pad<1 or pad >32: + pad = 0 + return decrypted[:-pad] + + +class Prpcrypt(object): + """鎻愪緵鎺ユ敹鍜屾帹閫佺粰浼佷笟寰俊娑堟伅鐨勫姞瑙e瘑鎺ュ彛""" + + def __init__(self,key): + + #self.key = base64.b64decode(key+"=") + self.key = key + # 璁剧疆鍔犺В瀵嗘ā寮忎负AES鐨凜BC妯″紡 + self.mode = AES.MODE_CBC + + + def encrypt(self,text,receiveid): + """瀵规槑鏂囪繘琛屽姞瀵 + @param text: 闇瑕佸姞瀵嗙殑鏄庢枃 + @return: 鍔犲瘑寰楀埌鐨勫瓧绗︿覆 + """ + # 16浣嶉殢鏈哄瓧绗︿覆娣诲姞鍒版槑鏂囧紑澶 + text = self.get_random_str() + struct.pack("I",socket.htonl(len(text))) + text + receiveid + # 浣跨敤鑷畾涔夌殑濉厖鏂瑰紡瀵规槑鏂囪繘琛岃ˉ浣嶅~鍏 + pkcs7 = PKCS7Encoder() + text = pkcs7.encode(text) + # 鍔犲瘑 + cryptor = AES.new(self.key,self.mode,self.key[:16]) + try: + ciphertext = cryptor.encrypt(text) + # 浣跨敤BASE64瀵瑰姞瀵嗗悗鐨勫瓧绗︿覆杩涜缂栫爜 + return ierror.WXBizMsgCrypt_OK, base64.b64encode(ciphertext) + except Exception,e: + print e + return ierror.WXBizMsgCrypt_EncryptAES_Error,None + + def decrypt(self,text,receiveid): + """瀵硅В瀵嗗悗鐨勬槑鏂囪繘琛岃ˉ浣嶅垹闄 + @param text: 瀵嗘枃 + @return: 鍒犻櫎濉厖琛ヤ綅鍚庣殑鏄庢枃 + """ + try: + cryptor = AES.new(self.key,self.mode,self.key[:16]) + # 浣跨敤BASE64瀵瑰瘑鏂囪繘琛岃В鐮侊紝鐒跺悗AES-CBC瑙e瘑 + plain_text = cryptor.decrypt(base64.b64decode(text)) + except Exception,e: + print e + return ierror.WXBizMsgCrypt_DecryptAES_Error,None + try: + pad = ord(plain_text[-1]) + # 鍘绘帀琛ヤ綅瀛楃涓 + #pkcs7 = PKCS7Encoder() + #plain_text = pkcs7.encode(plain_text) + # 鍘婚櫎16浣嶉殢鏈哄瓧绗︿覆 + content = plain_text[16:-pad] + json_len = socket.ntohl(struct.unpack("I",content[ : 4])[0]) + json_content = content[4 : json_len+4] + from_receiveid = content[json_len+4:] + except Exception,e: + print e + return ierror.WXBizMsgCrypt_IllegalBuffer,None + if from_receiveid != receiveid: + print "receiveid not match" + print from_receiveid + return ierror.WXBizMsgCrypt_ValidateCorpid_Error,None + return 0,json_content + + def get_random_str(self): + """ 闅忔満鐢熸垚16浣嶅瓧绗︿覆 + @return: 16浣嶅瓧绗︿覆 + """ + rule = string.letters + string.digits + str = random.sample(rule, 16) + return "".join(str) + +class WXBizMsgCrypt(object): + #鏋勯犲嚱鏁 + def __init__(self,sToken,sEncodingAESKey,sReceiveId): + try: + self.key = base64.b64decode(sEncodingAESKey+"=") + assert len(self.key) == 32 + except: + throw_exception("[error]: EncodingAESKey unvalid !", FormatException) + # return ierror.WXBizMsgCrypt_IllegalAesKey,None + self.m_sToken = sToken + self.m_sReceiveId = sReceiveId + + #楠岃瘉URL + #@param sMsgSignature: 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature + #@param sTimeStamp: 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp + #@param sNonce: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once + #@param sEchoStr: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨別chostr + #@param sReplyEchoStr: 瑙e瘑涔嬪悗鐨別chostr锛屽綋return杩斿洖0鏃舵湁鏁 + #@return锛氭垚鍔0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 + + def VerifyURL(self, sMsgSignature, sTimeStamp, sNonce, sEchoStr): + sha1 = SHA1() + ret,signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, sEchoStr) + if ret != 0: + return ret, None + if not signature == sMsgSignature: + return ierror.WXBizMsgCrypt_ValidateSignature_Error, None + pc = Prpcrypt(self.key) + ret,sReplyEchoStr = pc.decrypt(sEchoStr,self.m_sReceiveId) + return ret,sReplyEchoStr + + def EncryptMsg(self, sReplyMsg, sNonce, timestamp = None): + #灏嗕紒涓氬洖澶嶇敤鎴风殑娑堟伅鍔犲瘑鎵撳寘 + #@param sReplyMsg: 浼佷笟鍙峰緟鍥炲鐢ㄦ埛鐨勬秷鎭紝json鏍煎紡鐨勫瓧绗︿覆 + #@param sTimeStamp: 鏃堕棿鎴筹紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨則imestamp,濡備负None鍒欒嚜鍔ㄧ敤褰撳墠鏃堕棿 + #@param sNonce: 闅忔満涓诧紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨刵once + #sEncryptMsg: 鍔犲瘑鍚庣殑鍙互鐩存帴鍥炲鐢ㄦ埛鐨勫瘑鏂囷紝鍖呮嫭msg_signature, timestamp, nonce, encrypt鐨刯son鏍煎紡鐨勫瓧绗︿覆, + #return锛氭垚鍔0锛宻EncryptMsg,澶辫触杩斿洖瀵瑰簲鐨勯敊璇爜None + pc = Prpcrypt(self.key) + ret,encrypt = pc.encrypt(sReplyMsg, self.m_sReceiveId) + if ret != 0: + return ret,None + if timestamp is None: + timestamp = str(int(time.time())) + # 鐢熸垚瀹夊叏绛惧悕 + sha1 = SHA1() + ret,signature = sha1.getSHA1(self.m_sToken, timestamp, sNonce, encrypt) + if ret != 0: + return ret,None + jsonParse = JsonParse() + return ret,jsonParse.generate(encrypt, signature, timestamp, sNonce) + + def DecryptMsg(self, sPostData, sMsgSignature, sTimeStamp, sNonce): + # 妫楠屾秷鎭殑鐪熷疄鎬э紝骞朵笖鑾峰彇瑙e瘑鍚庣殑鏄庢枃 + # @param sMsgSignature: 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature + # @param sTimeStamp: 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp + # @param sNonce: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once + # @param sPostData: 瀵嗘枃锛屽搴擯OST璇锋眰鐨勬暟鎹 + # json_content: 瑙e瘑鍚庣殑鍘熸枃锛屽綋return杩斿洖0鏃舵湁鏁 + # @return: 鎴愬姛0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 + # 楠岃瘉瀹夊叏绛惧悕 + jsonParse = JsonParse() + ret,encrypt = jsonParse.extract(sPostData) + if ret != 0: + return ret, None + sha1 = SHA1() + ret,signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, encrypt) + if ret != 0: + return ret, None + if not signature == sMsgSignature: + print "signature not match" + print signature + return ierror.WXBizMsgCrypt_ValidateSignature_Error, None + pc = Prpcrypt(self.key) + ret,json_content = pc.decrypt(encrypt,self.m_sReceiveId) + return ret,json_content + + diff --git a/callback_json/ierror.py b/callback_json/ierror.py new file mode 100644 index 0000000..6678fec --- /dev/null +++ b/callback_json/ierror.py @@ -0,0 +1,20 @@ +#!/usr/bin/env python +# -*- coding: utf-8 -*- +######################################################################### +# Author: jonyqin +# Created Time: Thu 11 Sep 2014 01:53:58 PM CST +# File Name: ierror.py +# Description:瀹氫箟閿欒鐮佸惈涔 +######################################################################### +WXBizMsgCrypt_OK = 0 +WXBizMsgCrypt_ValidateSignature_Error = -40001 +WXBizMsgCrypt_ParseXml_Error = -40002 +WXBizMsgCrypt_ComputeSignature_Error = -40003 +WXBizMsgCrypt_IllegalAesKey = -40004 +WXBizMsgCrypt_ValidateCorpid_Error = -40005 +WXBizMsgCrypt_EncryptAES_Error = -40006 +WXBizMsgCrypt_DecryptAES_Error = -40007 +WXBizMsgCrypt_IllegalBuffer = -40008 +WXBizMsgCrypt_EncodeBase64_Error = -40009 +WXBizMsgCrypt_DecodeBase64_Error = -40010 +WXBizMsgCrypt_GenReturnXml_Error = -40011 From dfbcbb0eb4086f5116f9516e57e42865bd8ec366 Mon Sep 17 00:00:00 2001 From: abelzhu Date: Tue, 18 Dec 2018 17:31:11 +0800 Subject: [PATCH 02/23] Update README.md --- README.md | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index 89e57a3..99025a6 100644 --- a/README.md +++ b/README.md @@ -5,9 +5,10 @@ weworkapi_python 鏄负浜嗙畝鍖栧紑鍙戣呭浼佷笟寰俊API鎺ュ彛鐨勪娇鐢ㄨ岃 浣滆呬細涓嶅畾鏈熸洿鏂版湰搴擄紝浣嗕笉淇濊瘉涓庡畼鏂笰PI鎺ュ彛鏂囨。鍚屾锛屽洜姝や竴鍒囦互[瀹樻柟鏂囨。](https://work.weixin.qq.com/api/doc)涓哄噯銆 鏇村鏉ヨ嚜涓汉寮鍙戣呯殑鍏跺畠璇█鐨勫簱鎺ㄨ崘锛 -python : https://github.com/sbzhu/weworkapi_python -ruby 锛 https://github.com/mycolorway/wework -php : https://github.com/sbzhu/weworkapi_php +python : https://github.com/sbzhu/weworkapi_python abelzhu@tencent.com(浼佷笟寰俊鍥㈤槦) +ruby 锛 https://github.com/mycolorway/wework MyColorway(涓汉寮鍙戣) +php : https://github.com/sbzhu/weworkapi_php abelzhu@tencent.com(浼佷笟寰俊鍥㈤槦) +golang : https://github.com/doubliekill/EnterpriseWechatSDK 1006401052yh@gmail.com(涓汉寮鍙戣) # Director From 47a4002cb4640299de96128095ee7fea164283db Mon Sep 17 00:00:00 2001 From: abelzhu Date: Tue, 18 Dec 2018 17:31:24 +0800 Subject: [PATCH 03/23] Update README.md --- README.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/README.md b/README.md index 99025a6..3595de6 100644 --- a/README.md +++ b/README.md @@ -5,10 +5,10 @@ weworkapi_python 鏄负浜嗙畝鍖栧紑鍙戣呭浼佷笟寰俊API鎺ュ彛鐨勪娇鐢ㄨ岃 浣滆呬細涓嶅畾鏈熸洿鏂版湰搴擄紝浣嗕笉淇濊瘉涓庡畼鏂笰PI鎺ュ彛鏂囨。鍚屾锛屽洜姝や竴鍒囦互[瀹樻柟鏂囨。](https://work.weixin.qq.com/api/doc)涓哄噯銆 鏇村鏉ヨ嚜涓汉寮鍙戣呯殑鍏跺畠璇█鐨勫簱鎺ㄨ崘锛 -python : https://github.com/sbzhu/weworkapi_python abelzhu@tencent.com(浼佷笟寰俊鍥㈤槦) -ruby 锛 https://github.com/mycolorway/wework MyColorway(涓汉寮鍙戣) -php : https://github.com/sbzhu/weworkapi_php abelzhu@tencent.com(浼佷笟寰俊鍥㈤槦) -golang : https://github.com/doubliekill/EnterpriseWechatSDK 1006401052yh@gmail.com(涓汉寮鍙戣) +python : https://github.com/sbzhu/weworkapi_python abelzhu@tencent.com(浼佷笟寰俊鍥㈤槦) +ruby 锛 https://github.com/mycolorway/wework MyColorway(涓汉寮鍙戣) +php : https://github.com/sbzhu/weworkapi_php abelzhu@tencent.com(浼佷笟寰俊鍥㈤槦) +golang : https://github.com/doubliekill/EnterpriseWechatSDK 1006401052yh@gmail.com(涓汉寮鍙戣) # Director From 05b1e226faddec2383c31224df0ebb105f257de0 Mon Sep 17 00:00:00 2001 From: abelzhu Date: Fri, 18 Jan 2019 11:22:38 +0800 Subject: [PATCH 04/23] Update README.md --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 3595de6..492f2da 100644 --- a/README.md +++ b/README.md @@ -8,6 +8,7 @@ weworkapi_python 鏄负浜嗙畝鍖栧紑鍙戣呭浼佷笟寰俊API鎺ュ彛鐨勪娇鐢ㄨ岃 python : https://github.com/sbzhu/weworkapi_python abelzhu@tencent.com(浼佷笟寰俊鍥㈤槦) ruby 锛 https://github.com/mycolorway/wework MyColorway(涓汉寮鍙戣) php : https://github.com/sbzhu/weworkapi_php abelzhu@tencent.com(浼佷笟寰俊鍥㈤槦) +golang : https://github.com/sbzhu/weworkapi_golang ryanjelin@tencent.com(浼佷笟寰俊鍥㈤槦) golang : https://github.com/doubliekill/EnterpriseWechatSDK 1006401052yh@gmail.com(涓汉寮鍙戣) # Director From 6d475875ff8d6f28470e05496199d3deba1a16e5 Mon Sep 17 00:00:00 2001 From: abelzhu Date: Mon, 18 Feb 2019 15:10:08 +0800 Subject: [PATCH 05/23] =?UTF-8?q?print=20=E5=A4=B1=E6=95=88=E9=97=AE?= =?UTF-8?q?=E9=A2=98?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- callback/WXBizMsgCrypt.py | 2 ++ 1 file changed, 2 insertions(+) diff --git a/callback/WXBizMsgCrypt.py b/callback/WXBizMsgCrypt.py index 97e7a22..41e578f 100644 --- a/callback/WXBizMsgCrypt.py +++ b/callback/WXBizMsgCrypt.py @@ -17,7 +17,9 @@ import xml.etree.cElementTree as ET import sys import socket +stdi,stdo,stde=sys.stdin,sys.stdout,sys.stderr reload(sys) +sys.stdin,sys.stdout,sys.stderr=stdi,stdo,stde import ierror sys.setdefaultencoding('utf-8') From 125e624c0aafdd87fe19330c8c6b2ac56b4ce560 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=E9=99=88=E7=84=B0?= Date: Wed, 3 Apr 2019 18:28:10 +0800 Subject: [PATCH 06/23] =?UTF-8?q?python3=20=E9=80=82=E9=85=8D?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit 1. print銆乪xcept 璇硶 2. string 鍜 binary string锛 鍚勭decode --- callback/WXBizMsgCrypt3.py | 280 +++++++++++++++++++++++++++++++++++++ 1 file changed, 280 insertions(+) create mode 100644 callback/WXBizMsgCrypt3.py diff --git a/callback/WXBizMsgCrypt3.py b/callback/WXBizMsgCrypt3.py new file mode 100644 index 0000000..c0256dd --- /dev/null +++ b/callback/WXBizMsgCrypt3.py @@ -0,0 +1,280 @@ +#!/usr/bin/env python +# -*- encoding:utf-8 -*- + +""" 瀵逛紒涓氬井淇″彂閫佺粰浼佷笟鍚庡彴鐨勬秷鎭姞瑙e瘑绀轰緥浠g爜. +@copyright: Copyright (c) 1998-2014 Tencent Inc. + +""" +# ------------------------------------------------------------------------ +import logging +import base64 +import random +import hashlib +import time +import struct +from Crypto.Cipher import AES +import xml.etree.cElementTree as ET +import socket + +import ierror + + +""" +鍏充簬Crypto.Cipher妯″潡锛孖mportError: No module named 'Crypto'瑙e喅鏂规 +璇峰埌瀹樻柟缃戠珯 https://www.dlitz.net/software/pycrypto/ 涓嬭浇pycrypto銆 +涓嬭浇鍚庯紝鎸夌収README涓殑鈥淚nstallation鈥濆皬鑺傜殑鎻愮ず杩涜pycrypto瀹夎銆 +""" + + +class FormatException(Exception): + pass + + +def throw_exception(message, exception_class=FormatException): + """my define raise exception function""" + raise exception_class(message) + + +class SHA1: + """璁$畻浼佷笟寰俊鐨勬秷鎭鍚嶆帴鍙""" + + def getSHA1(self, token, timestamp, nonce, encrypt): + """鐢⊿HA1绠楁硶鐢熸垚瀹夊叏绛惧悕 + @param token: 绁ㄦ嵁 + @param timestamp: 鏃堕棿鎴 + @param encrypt: 瀵嗘枃 + @param nonce: 闅忔満瀛楃涓 + @return: 瀹夊叏绛惧悕 + """ + try: + sortlist = [token, timestamp, nonce, encrypt] + sortlist.sort() + sha = hashlib.sha1() + sha.update("".join(sortlist).encode()) + return ierror.WXBizMsgCrypt_OK, sha.hexdigest() + except Exception as e: + logger = logging.getLogger() + logger.error(e) + return ierror.WXBizMsgCrypt_ComputeSignature_Error, None + + +class XMLParse: + """鎻愪緵鎻愬彇娑堟伅鏍煎紡涓殑瀵嗘枃鍙婄敓鎴愬洖澶嶆秷鎭牸寮忕殑鎺ュ彛""" + + # xml娑堟伅妯℃澘 + AES_TEXT_RESPONSE_TEMPLATE = """ + + +%(timestamp)s + +""" + + def extract(self, xmltext): + """鎻愬彇鍑簒ml鏁版嵁鍖呬腑鐨勫姞瀵嗘秷鎭 + @param xmltext: 寰呮彁鍙栫殑xml瀛楃涓 + @return: 鎻愬彇鍑虹殑鍔犲瘑娑堟伅瀛楃涓 + """ + try: + xml_tree = ET.fromstring(xmltext) + encrypt = xml_tree.find("Encrypt") + return ierror.WXBizMsgCrypt_OK, encrypt.text + except Exception as e: + logger = logging.getLogger() + logger.error(e) + return ierror.WXBizMsgCrypt_ParseXml_Error, None, None + + def generate(self, encrypt, signature, timestamp, nonce): + """鐢熸垚xml娑堟伅 + @param encrypt: 鍔犲瘑鍚庣殑娑堟伅瀵嗘枃 + @param signature: 瀹夊叏绛惧悕 + @param timestamp: 鏃堕棿鎴 + @param nonce: 闅忔満瀛楃涓 + @return: 鐢熸垚鐨剎ml瀛楃涓 + """ + resp_dict = { + 'msg_encrypt': encrypt, + 'msg_signaturet': signature, + 'timestamp': timestamp, + 'nonce': nonce, + } + resp_xml = self.AES_TEXT_RESPONSE_TEMPLATE % resp_dict + return resp_xml + + +class PKCS7Encoder(): + """鎻愪緵鍩轰簬PKCS7绠楁硶鐨勫姞瑙e瘑鎺ュ彛""" + + block_size = 32 + + def encode(self, text): + """ 瀵归渶瑕佸姞瀵嗙殑鏄庢枃杩涜濉厖琛ヤ綅 + @param text: 闇瑕佽繘琛屽~鍏呰ˉ浣嶆搷浣滅殑鏄庢枃 + @return: 琛ラ綈鏄庢枃瀛楃涓 + """ + text_length = len(text) + # 璁$畻闇瑕佸~鍏呯殑浣嶆暟 + amount_to_pad = self.block_size - (text_length % self.block_size) + if amount_to_pad == 0: + amount_to_pad = self.block_size + # 鑾峰緱琛ヤ綅鎵鐢ㄧ殑瀛楃 + pad = chr(amount_to_pad) + return text + (pad * amount_to_pad).encode() + + def decode(self, decrypted): + """鍒犻櫎瑙e瘑鍚庢槑鏂囩殑琛ヤ綅瀛楃 + @param decrypted: 瑙e瘑鍚庣殑鏄庢枃 + @return: 鍒犻櫎琛ヤ綅瀛楃鍚庣殑鏄庢枃 + """ + pad = ord(decrypted[-1]) + if pad < 1 or pad > 32: + pad = 0 + return decrypted[:-pad] + + +class Prpcrypt(object): + """鎻愪緵鎺ユ敹鍜屾帹閫佺粰浼佷笟寰俊娑堟伅鐨勫姞瑙e瘑鎺ュ彛""" + + def __init__(self, key): + + # self.key = base64.b64decode(key+"=") + self.key = key + # 璁剧疆鍔犺В瀵嗘ā寮忎负AES鐨凜BC妯″紡 + self.mode = AES.MODE_CBC + + def encrypt(self, text, receiveid): + """瀵规槑鏂囪繘琛屽姞瀵 + @param text: 闇瑕佸姞瀵嗙殑鏄庢枃 + @return: 鍔犲瘑寰楀埌鐨勫瓧绗︿覆 + """ + # 16浣嶉殢鏈哄瓧绗︿覆娣诲姞鍒版槑鏂囧紑澶 + text = text.encode() + text = self.get_random_str() + struct.pack("I", socket.htonl(len(text))) + text + receiveid.encode() + + # 浣跨敤鑷畾涔夌殑濉厖鏂瑰紡瀵规槑鏂囪繘琛岃ˉ浣嶅~鍏 + pkcs7 = PKCS7Encoder() + text = pkcs7.encode(text) + # 鍔犲瘑 + cryptor = AES.new(self.key, self.mode, self.key[:16]) + try: + ciphertext = cryptor.encrypt(text) + # 浣跨敤BASE64瀵瑰姞瀵嗗悗鐨勫瓧绗︿覆杩涜缂栫爜 + return ierror.WXBizMsgCrypt_OK, base64.b64encode(ciphertext) + except Exception as e: + logger = logging.getLogger() + logger.error(e) + return ierror.WXBizMsgCrypt_EncryptAES_Error, None + + def decrypt(self, text, receiveid): + """瀵硅В瀵嗗悗鐨勬槑鏂囪繘琛岃ˉ浣嶅垹闄 + @param text: 瀵嗘枃 + @return: 鍒犻櫎濉厖琛ヤ綅鍚庣殑鏄庢枃 + """ + try: + cryptor = AES.new(self.key, self.mode, self.key[:16]) + # 浣跨敤BASE64瀵瑰瘑鏂囪繘琛岃В鐮侊紝鐒跺悗AES-CBC瑙e瘑 + plain_text = cryptor.decrypt(base64.b64decode(text)) + except Exception as e: + logger = logging.getLogger() + logger.error(e) + return ierror.WXBizMsgCrypt_DecryptAES_Error, None + try: + pad = plain_text[-1] + # 鍘绘帀琛ヤ綅瀛楃涓 + # pkcs7 = PKCS7Encoder() + # plain_text = pkcs7.encode(plain_text) + # 鍘婚櫎16浣嶉殢鏈哄瓧绗︿覆 + content = plain_text[16:-pad] + xml_len = socket.ntohl(struct.unpack("I", content[: 4])[0]) + xml_content = content[4: xml_len + 4] + from_receiveid = content[xml_len + 4:] + except Exception as e: + logger = logging.getLogger() + logger.error(e) + return ierror.WXBizMsgCrypt_IllegalBuffer, None + + if from_receiveid.decode('utf8') != receiveid: + return ierror.WXBizMsgCrypt_ValidateCorpid_Error, None + return 0, xml_content + + def get_random_str(self): + """ 闅忔満鐢熸垚16浣嶅瓧绗︿覆 + @return: 16浣嶅瓧绗︿覆 + """ + return str(random.randint(1000000000000000, 9999999999999999)).encode() + + +class WXBizMsgCrypt(object): + # 鏋勯犲嚱鏁 + def __init__(self, sToken, sEncodingAESKey, sReceiveId): + try: + self.key = base64.b64decode(sEncodingAESKey + "=") + assert len(self.key) == 32 + except: + throw_exception("[error]: EncodingAESKey unvalid !", FormatException) + # return ierror.WXBizMsgCrypt_IllegalAesKey,None + self.m_sToken = sToken + self.m_sReceiveId = sReceiveId + + # 楠岃瘉URL + # @param sMsgSignature: 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature + # @param sTimeStamp: 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp + # @param sNonce: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once + # @param sEchoStr: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨別chostr + # @param sReplyEchoStr: 瑙e瘑涔嬪悗鐨別chostr锛屽綋return杩斿洖0鏃舵湁鏁 + # @return锛氭垚鍔0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 + + def VerifyURL(self, sMsgSignature, sTimeStamp, sNonce, sEchoStr): + sha1 = SHA1() + ret, signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, sEchoStr) + if ret != 0: + return ret, None + if not signature == sMsgSignature: + return ierror.WXBizMsgCrypt_ValidateSignature_Error, None + pc = Prpcrypt(self.key) + ret, sReplyEchoStr = pc.decrypt(sEchoStr, self.m_sReceiveId) + return ret, sReplyEchoStr + + def EncryptMsg(self, sReplyMsg, sNonce, timestamp=None): + # 灏嗕紒涓氬洖澶嶇敤鎴风殑娑堟伅鍔犲瘑鎵撳寘 + # @param sReplyMsg: 浼佷笟鍙峰緟鍥炲鐢ㄦ埛鐨勬秷鎭紝xml鏍煎紡鐨勫瓧绗︿覆 + # @param sTimeStamp: 鏃堕棿鎴筹紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨則imestamp,濡備负None鍒欒嚜鍔ㄧ敤褰撳墠鏃堕棿 + # @param sNonce: 闅忔満涓诧紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨刵once + # sEncryptMsg: 鍔犲瘑鍚庣殑鍙互鐩存帴鍥炲鐢ㄦ埛鐨勫瘑鏂囷紝鍖呮嫭msg_signature, timestamp, nonce, encrypt鐨剎ml鏍煎紡鐨勫瓧绗︿覆, + # return锛氭垚鍔0锛宻EncryptMsg,澶辫触杩斿洖瀵瑰簲鐨勯敊璇爜None + pc = Prpcrypt(self.key) + ret, encrypt = pc.encrypt(sReplyMsg, self.m_sReceiveId) + encrypt = encrypt.decode('utf8') + if ret != 0: + return ret, None + if timestamp is None: + timestamp = str(int(time.time())) + # 鐢熸垚瀹夊叏绛惧悕 + sha1 = SHA1() + ret, signature = sha1.getSHA1(self.m_sToken, timestamp, sNonce, encrypt) + if ret != 0: + return ret, None + xmlParse = XMLParse() + return ret, xmlParse.generate(encrypt, signature, timestamp, sNonce) + + def DecryptMsg(self, sPostData, sMsgSignature, sTimeStamp, sNonce): + # 妫楠屾秷鎭殑鐪熷疄鎬э紝骞朵笖鑾峰彇瑙e瘑鍚庣殑鏄庢枃 + # @param sMsgSignature: 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature + # @param sTimeStamp: 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp + # @param sNonce: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once + # @param sPostData: 瀵嗘枃锛屽搴擯OST璇锋眰鐨勬暟鎹 + # xml_content: 瑙e瘑鍚庣殑鍘熸枃锛屽綋return杩斿洖0鏃舵湁鏁 + # @return: 鎴愬姛0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 + # 楠岃瘉瀹夊叏绛惧悕 + xmlParse = XMLParse() + ret, encrypt = xmlParse.extract(sPostData) + if ret != 0: + return ret, None + sha1 = SHA1() + ret, signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, encrypt) + if ret != 0: + return ret, None + if not signature == sMsgSignature: + return ierror.WXBizMsgCrypt_ValidateSignature_Error, None + pc = Prpcrypt(self.key) + ret, xml_content = pc.decrypt(encrypt, self.m_sReceiveId) + return ret, xml_content From 91e693367727a90081ade3232bbc0ed44dc25ade Mon Sep 17 00:00:00 2001 From: Xiao Chun Date: Wed, 4 Sep 2019 15:21:01 +0800 Subject: [PATCH 07/23] =?UTF-8?q?=E5=88=A0=E9=99=A4api-url=E5=AD=97?= =?UTF-8?q?=E5=85=B8key=E5=A4=9A=E4=BD=99=E7=A9=BA=E6=A0=BC?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- api/src/CorpApi.py | 26 +++++++++++++------------- 1 file changed, 13 insertions(+), 13 deletions(-) diff --git a/api/src/CorpApi.py b/api/src/CorpApi.py index 9cca92f..4f04a23 100644 --- a/api/src/CorpApi.py +++ b/api/src/CorpApi.py @@ -2,25 +2,25 @@ # -*- coding:utf-8 -*- ## # Copyright (C) 2018 All rights reserved. - # + # # @File CorpApi.py - # @Brief + # @Brief # @Author abelzhu, abelzhu@tencent.com # @Version 1.0 # @Date 2018-02-24 # # - + from AbstractApi import * -CORP_API_TYPE = { +CORP_API_TYPE = { 'GET_ACCESS_TOKEN' : ['/cgi-bin/gettoken', 'GET'], 'USER_CREATE' : ['/cgi-bin/user/create?access_token=ACCESS_TOKEN', 'POST'], 'USER_GET' : ['/cgi-bin/user/get?access_token=ACCESS_TOKEN', 'GET'], 'USER_UPDATE' : ['/cgi-bin/user/update?access_token=ACCESS_TOKEN', 'POST'], 'USER_DELETE' : ['/cgi-bin/user/delete?access_token=ACCESS_TOKEN', 'GET'], 'USER_BATCH_DELETE': ['/cgi-bin/user/batchdelete?access_token=ACCESS_TOKEN', 'POST'], - 'USER_SIMPLE_LIST ': ['/cgi-bin/user/simplelist?access_token=ACCESS_TOKEN', 'GET'], + 'USER_SIMPLE_LIST': ['/cgi-bin/user/simplelist?access_token=ACCESS_TOKEN', 'GET'], 'USER_LIST' : ['/cgi-bin/user/list?access_token=ACCESS_TOKEN', 'GET'], 'USERID_TO_OPENID' : ['/cgi-bin/user/convert_to_openid?access_token=ACCESS_TOKEN', 'POST'], 'OPENID_TO_USERID' : ['/cgi-bin/user/convert_to_userid?access_token=ACCESS_TOKEN', 'POST'], @@ -67,12 +67,12 @@ 'GET_APPROVAL_DATA': ['/cgi-bin/corp/getapprovaldata?access_token=ACCESS_TOKEN', 'POST'], 'GET_INVOICE_INFO' : ['/cgi-bin/card/invoice/reimburse/getinvoiceinfo?access_token=ACCESS_TOKEN', 'POST'], - 'UPDATE_INVOICE_STATUS' : + 'UPDATE_INVOICE_STATUS' : ['/cgi-bin/card/invoice/reimburse/updateinvoicestatus?access_token=ACCESS_TOKEN', 'POST'], - 'BATCH_UPDATE_INVOICE_STATUS' : + 'BATCH_UPDATE_INVOICE_STATUS' : ['/cgi-bin/card/invoice/reimburse/updatestatusbatch?access_token=ACCESS_TOKEN', 'POST'], - 'BATCH_GET_INVOICE_INFO' : - ['/cgi-bin/card/invoice/reimburse/getinvoiceinfobatch?access_token=ACCESS_TOKEN', 'POST'], + 'BATCH_GET_INVOICE_INFO' : + ['/cgi-bin/card/invoice/reimburse/getinvoiceinfobatch?access_token=ACCESS_TOKEN', 'POST'], 'APP_CHAT_CREATE' : ['/cgi-bin/appchat/create?access_token=ACCESS_TOKEN', 'POST'], 'APP_CHAT_GET' : ['/cgi-bin/appchat/get?access_token=ACCESS_TOKEN', 'GET'], @@ -85,7 +85,7 @@ class CorpApi(AbstractApi) : def __init__(self, corpid, secret) : self.corpid = corpid - self.secret = secret + self.secret = secret self.access_token = None def getAccessToken(self) : @@ -97,8 +97,8 @@ def refreshAccessToken(self) : response = self.httpCall( CORP_API_TYPE['GET_ACCESS_TOKEN'], { - 'corpid' : self.corpid, - 'corpsecret': self.secret, + 'corpid' : self.corpid, + 'corpsecret': self.secret, }) - self.access_token = response.get('access_token') + self.access_token = response.get('access_token') From 90a4ce5fea6a7bf82117b8d740bc818c74e8f8f0 Mon Sep 17 00:00:00 2001 From: abelzhu Date: Fri, 29 May 2020 20:19:29 +0800 Subject: [PATCH 08/23] fix bug --- callback/WXBizMsgCrypt.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/callback/WXBizMsgCrypt.py b/callback/WXBizMsgCrypt.py index 41e578f..94e4e12 100644 --- a/callback/WXBizMsgCrypt.py +++ b/callback/WXBizMsgCrypt.py @@ -79,7 +79,7 @@ def extract(self, xmltext): return ierror.WXBizMsgCrypt_OK, encrypt.text except Exception,e: print e - return ierror.WXBizMsgCrypt_ParseXml_Error,None,None + return ierror.WXBizMsgCrypt_ParseXml_Error,None def generate(self, encrypt, signature, timestamp, nonce): """鐢熸垚xml娑堟伅 From bcfd57727916db58d038e551605475ecbe0f63a5 Mon Sep 17 00:00:00 2001 From: abelzhu Date: Fri, 29 May 2020 20:20:05 +0800 Subject: [PATCH 09/23] fix bug --- callback/WXBizMsgCrypt3.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/callback/WXBizMsgCrypt3.py b/callback/WXBizMsgCrypt3.py index c0256dd..fb9508c 100644 --- a/callback/WXBizMsgCrypt3.py +++ b/callback/WXBizMsgCrypt3.py @@ -81,7 +81,7 @@ def extract(self, xmltext): except Exception as e: logger = logging.getLogger() logger.error(e) - return ierror.WXBizMsgCrypt_ParseXml_Error, None, None + return ierror.WXBizMsgCrypt_ParseXml_Error, None def generate(self, encrypt, signature, timestamp, nonce): """鐢熸垚xml娑堟伅 From fd593a8b5d17d6d7f2b7ab25d8852a04e05b07d7 Mon Sep 17 00:00:00 2001 From: abelzhu Date: Wed, 22 Jul 2020 22:17:40 +0800 Subject: [PATCH 10/23] Update WXBizMsgCrypt.py --- callback_json/WXBizMsgCrypt.py | 31 +++++++++++++++---------------- 1 file changed, 15 insertions(+), 16 deletions(-) diff --git a/callback_json/WXBizMsgCrypt.py b/callback_json/WXBizMsgCrypt.py index 6ea7dd4..2f3875a 100644 --- a/callback_json/WXBizMsgCrypt.py +++ b/callback_json/WXBizMsgCrypt.py @@ -61,20 +61,21 @@ class JsonParse: # json娑堟伅妯℃澘 AES_TEXT_RESPONSE_TEMPLATE = '''{ -"Encrypt": "%(msg_encrypt)s", -"MsgSignature": "%(msg_signaturet)s", -"TimeStamp": %(timestamp)s, -"Nonce": "%(nonce)s" -}''' + "encrypt": "%(msg_encrypt)s", + "msgsignature": "%(msg_signaturet)s", + "timestamp": %(timestamp)s, + "nonce": "%(nonce)s" + }''' def extract(self, jsontext): """鎻愬彇鍑簀son鏁版嵁鍖呬腑鐨勫姞瀵嗘秷鎭 @param jsontext: 寰呮彁鍙栫殑json瀛楃涓 @return: 鎻愬彇鍑虹殑鍔犲瘑娑堟伅瀛楃涓 """ + print jsontext try: json_dict = json.loads(jsontext) - return ierror.WXBizMsgCrypt_OK, json_dict['Encrypt'] + return ierror.WXBizMsgCrypt_OK, json_dict['encrypt'] except Exception,e: print e return ierror.WXBizMsgCrypt_ParseXml_Error, None @@ -87,11 +88,11 @@ def generate(self, encrypt, signature, timestamp, nonce): @return: 鐢熸垚鐨刯son瀛楃涓 """ resp_dict = { - 'msg_encrypt' : encrypt, - 'msg_signaturet': signature, - 'timestamp' : timestamp, - 'nonce' : nonce, - } + 'msg_encrypt' : encrypt, + 'msg_signaturet': signature, + 'timestamp' : timestamp, + 'nonce' : nonce, + } resp_json = self.AES_TEXT_RESPONSE_TEMPLATE % resp_dict return resp_json @@ -207,13 +208,13 @@ def __init__(self,sToken,sEncodingAESKey,sReceiveId): self.m_sToken = sToken self.m_sReceiveId = sReceiveId - #楠岃瘉URL + #楠岃瘉URL #@param sMsgSignature: 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature #@param sTimeStamp: 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp #@param sNonce: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once #@param sEchoStr: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨別chostr #@param sReplyEchoStr: 瑙e瘑涔嬪悗鐨別chostr锛屽綋return杩斿洖0鏃舵湁鏁 - #@return锛氭垚鍔0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 + #@return锛氭垚鍔0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 def VerifyURL(self, sMsgSignature, sTimeStamp, sNonce, sEchoStr): sha1 = SHA1() @@ -225,7 +226,7 @@ def VerifyURL(self, sMsgSignature, sTimeStamp, sNonce, sEchoStr): pc = Prpcrypt(self.key) ret,sReplyEchoStr = pc.decrypt(sEchoStr,self.m_sReceiveId) return ret,sReplyEchoStr - + def EncryptMsg(self, sReplyMsg, sNonce, timestamp = None): #灏嗕紒涓氬洖澶嶇敤鎴风殑娑堟伅鍔犲瘑鎵撳寘 #@param sReplyMsg: 浼佷笟鍙峰緟鍥炲鐢ㄦ埛鐨勬秷鎭紝json鏍煎紡鐨勫瓧绗︿覆 @@ -271,5 +272,3 @@ def DecryptMsg(self, sPostData, sMsgSignature, sTimeStamp, sNonce): pc = Prpcrypt(self.key) ret,json_content = pc.decrypt(encrypt,self.m_sReceiveId) return ret,json_content - - From dc0635f519ff4bfe15f654a1af4801a9eee9efeb Mon Sep 17 00:00:00 2001 From: abelzhu Date: Thu, 27 Aug 2020 21:28:01 +0800 Subject: [PATCH 11/23] Add files via upload --- callback_json/Sample.py | 216 +++++++++++----------- callback_json/WXBizJsonMsgCrypt.py | 275 +++++++++++++++++++++++++++++ callback_json/ierror.py | 40 ++--- 3 files changed, 403 insertions(+), 128 deletions(-) create mode 100644 callback_json/WXBizJsonMsgCrypt.py diff --git a/callback_json/Sample.py b/callback_json/Sample.py index 4e31937..ab47c01 100644 --- a/callback_json/Sample.py +++ b/callback_json/Sample.py @@ -1,108 +1,108 @@ -#!/usr/bin/env python -# -*- coding: utf-8 -*- -######################################################################### -# Author: jonyqin -# Created Time: Thu 11 Sep 2014 03:55:41 PM CST -# File Name: Sample.py -# Description: WXBizMsgCrypt 浣跨敤demo鏂囦欢 -######################################################################### -from WXBizMsgCrypt import WXBizMsgCrypt -import sys - -if __name__ == "__main__": - #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 - sToken = "hJqcu3uJ9Tn2gXPmxx2w9kkCkCE2EPYo" - sEncodingAESKey = "6qkdMrq68nTKduznJYO1A37W2oEgpkMUvkttRToqhUt" - sCorpID = "ww1436e0e65a779aee" - ''' - ------------浣跨敤绀轰緥涓锛氶獙璇佸洖璋僓RL--------------- - *浼佷笟寮鍚洖璋冩ā寮忔椂锛屼紒涓氬彿浼氬悜楠岃瘉url鍙戦佷竴涓猤et璇锋眰 - 鍋囪鐐瑰嚮楠岃瘉鏃讹紝浼佷笟鏀跺埌绫讳技璇锋眰锛 - * GET /cgi-bin/wxpush?msg_signature=5c45ff5e21c57e6ad56bac8758b79b1d9ac89fd3×tamp=1409659589&nonce=263014780&echostr=P9nAzCzyDtyTWESHep1vC5X9xho%2FqYX3Zpb4yKa9SKld1DsH3Iyt3tP3zNdtp%2B4RPcs8TgAE7OaBO%2BFZXvnaqQ%3D%3D - * HTTP/1.1 Host: qy.weixin.qq.com - - 鎺ユ敹鍒拌璇锋眰鏃讹紝浼佷笟搴 1.瑙f瀽鍑篏et璇锋眰鐨勫弬鏁帮紝鍖呮嫭娑堟伅浣撶鍚(msg_signature)锛屾椂闂存埑(timestamp)锛岄殢鏈烘暟瀛椾覆(nonce)浠ュ強浼佷笟寰俊鎺ㄩ佽繃鏉ョ殑闅忔満鍔犲瘑瀛楃涓(echostr), - 杩欎竴姝ユ敞鎰忎綔URL瑙g爜銆 - 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬 - 3. 瑙e瘑鍑篹chostr鍘熸枃锛屽皢鍘熸枃褰撲綔Get璇锋眰鐨剅esponse锛岃繑鍥炵粰浼佷笟寰俊 - 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟VerifyURL鏉ュ疄鐜般 - ''' - wxcpt=WXBizMsgCrypt(sToken,sEncodingAESKey,sCorpID) - sVerifyMsgSig="012bc692d0a58dd4b10f8dfe5c4ac00ae211ebeb" - sVerifyTimeStamp="1476416373" - sVerifyNonce="47744683" - sVerifyEchoStr="fsi1xnbH4yQh0+PJxcOdhhK6TDXkjMyhEPA7xB2TGz6b+g7xyAbEkRxN/3cNXW9qdqjnoVzEtpbhnFyq6SVHyA==" - ret,sEchoStr=wxcpt.VerifyURL(sVerifyMsgSig, sVerifyTimeStamp,sVerifyNonce,sVerifyEchoStr) - if(ret!=0): - print "ERR: VerifyURL ret: " + str(ret) - sys.exit(1) - else: - print "done VerifyURL" - #楠岃瘉URL鎴愬姛锛屽皢sEchoStr杩斿洖缁欎紒涓氬彿 - - print "==============================" - ''' - ------------浣跨敤绀轰緥浜岋細瀵圭敤鎴峰洖澶嶇殑娑堟伅瑙e瘑--------------- - 鐢ㄦ埛鍥炲娑堟伅鎴栬呯偣鍑讳簨浠跺搷搴旀椂锛屼紒涓氫細鏀跺埌鍥炶皟娑堟伅锛屾娑堟伅鏄粡杩囦紒涓氬井淇″姞瀵嗕箣鍚庣殑瀵嗘枃浠ost褰㈠紡鍙戦佺粰浼佷笟锛屽瘑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 - 鍋囪浼佷笟鏀跺埌浼佷笟寰俊鐨勫洖璋冩秷鎭涓嬶細 - POST /cgi-bin/wxpush? msg_signature=e3647471e395139e2308c1fa963f2d648a00b90e×tamp=1409659813&nonce=1372623149 HTTP/1.1 - Host: qy.weixin.qq.com - - { - "ToUserName": "wx5823bf96d3bd56c7", - "Encrypt": "cjhLUX7UU4yCSelv1vz7T0zT8huF51bAMVWriNvO1FMegHrQZNrtvRxbwf0fUPsFvwqR0U0fgiJNEA5Y30F2MoI2S7vv3EjVQ68C0cjw9frBoUE2Hj0BvFp9h3u6Vbsg4lc1C8AtHdaN8orKuNKkLRLuYEL52R1J3v8olJGZRLnRdVKIivixmX/eQpzgeExtp20jI1HxRP1AAZ6xZoILdqDPO549LO4WeG+685JRUTdiwcY5fjZlqeMxuT4PpMn1X9OWsS7NRj06Wa5E3Tvg4twjWp39KPfOdRte6P1T4JU=", - "AgentID": 218 - } - - 浼佷笟鏀跺埌post璇锋眰涔嬪悗搴旇 1.瑙f瀽鍑簎rl涓婄殑鍙傛暟锛屽寘鎷秷鎭綋绛惧悕(msg_signature)锛屾椂闂存埑(timestamp)浠ュ強闅忔満鏁板瓧涓(nonce) - 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬с 3.灏唒ost璇锋眰鐨勬暟鎹繘琛宩son瑙f瀽锛屽苟灏鏍囩鐨勫唴瀹硅繘琛岃В瀵嗭紝瑙e瘑鍑烘潵鐨勬槑鏂囧嵆鏄敤鎴峰洖澶嶆秷鎭殑鏄庢枃锛屾槑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 - 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟DecryptMsg鏉ュ疄鐜般 - ''' - - sReqNonce = "1372623149" - sReqTimeStamp = "1409659813" - - sReqMsgSig = "e3647471e395139e2308c1fa963f2d648a00b90e" - sReqData = '{ "ToUserName": "wx5823bf96d3bd56c7", "Encrypt": "cjhLUX7UU4yCSelv1vz7T0zT8huF51bAMVWriNvO1FMegHrQZNrtvRxbwf0fUPsFvwqR0U0fgiJNEA5Y30F2MoI2S7vv3EjVQ68C0cjw9frBoUE2Hj0BvFp9h3u6Vbsg4lc1C8AtHdaN8orKuNKkLRLuYEL52R1J3v8olJGZRLnRdVKIivixmX/eQpzgeExtp20jI1HxRP1AAZ6xZoILdqDPO549LO4WeG+685JRUTdiwcY5fjZlqeMxuT4PpMn1X9OWsS7NRj06Wa5E3Tvg4twjWp39KPfOdRte6P1T4JU=", "AgentID": 218 }'; - ret,sMsg=wxcpt.DecryptMsg( sReqData, sReqMsgSig, sReqTimeStamp, sReqNonce) - if( ret!=0 ): - print "ERR: DecryptMsg ret: " + str(ret) - sys.exit(1) - else: - print sMsg - # 瑙e瘑鎴愬姛锛宻Msg鍗充负json鏍煎紡鐨勬槑鏂 - # TODO: 瀵规槑鏂囩殑澶勭悊 - # ... - # ... - - print "==============================" - - ''' - ------------浣跨敤绀轰緥涓夛細浼佷笟鍥炲鐢ㄦ埛娑堟伅鐨勫姞瀵--------------- - 浼佷笟琚姩鍥炲鐢ㄦ埛鐨勬秷鎭篃闇瑕佽繘琛屽姞瀵嗭紝骞朵笖鎷兼帴鎴愬瘑鏂囨牸寮忕殑json涓层 - 鍋囪浼佷笟闇瑕佸洖澶嶇敤鎴风殑鏄庢枃濡備笅锛 - - { - "ToUserName": "mycreate", - "FromUserName":"wx5823bf96d3bd56c7", - "CreateTime": 1348831860, - "MsgType": "text", - "Content": "this is a test", - "MsgId": 1234567890123456, - "AgentID": 128 - } - - 涓轰簡灏嗘娈垫槑鏂囧洖澶嶇粰鐢ㄦ埛锛屼紒涓氬簲锛 1.鑷繁鐢熸垚鏃堕棿鏃堕棿鎴(timestamp),闅忔満鏁板瓧涓(nonce)浠ヤ究鐢熸垚娑堟伅浣撶鍚嶏紝涔熷彲浠ョ洿鎺ョ敤浠庝紒涓氬井淇$殑post url涓婅В鏋愬嚭鐨勫搴斿笺 - 2.灏嗘槑鏂囧姞瀵嗗緱鍒板瘑鏂囥 3.鐢ㄥ瘑鏂囷紝姝ラ1鐢熸垚鐨則imestamp,nonce鍜屼紒涓氬湪浼佷笟寰俊璁惧畾鐨則oken鐢熸垚娑堟伅浣撶鍚嶃 4.灏嗗瘑鏂囷紝娑堟伅浣撶鍚嶏紝鏃堕棿鎴筹紝闅忔満鏁板瓧涓叉嫾鎺ユ垚json鏍煎紡鐨勫瓧绗︿覆锛屽彂閫佺粰浼佷笟鍙枫 - 浠ヤ笂2锛3锛4姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟EncryptMsg鏉ュ疄鐜般 - ''' - #sRespData = ' { "ToUserName": "mycreate", "FromUserName":"wx5823bf96d3bd56c7", "CreateTime": 1348831860, "MsgType": "text", "Content": "this is a test", "MsgId": 1234567890123456, "AgentID": 128 }'; - sRespData = '{ "ToUserName": "wx5823bf96d3bd56c7", "FromUserName": :mycreate", "CreateTime": 1409659813, "MsgType": "text", "Content": "hello", "MsgId": 4561255354251345929, "AgentID": 218}' - ret,sEncryptMsg=wxcpt.EncryptMsg(sRespData, sReqNonce, sReqTimeStamp) - if( ret!=0 ): - print "ERR: EncryptMsg ret: " + str(ret) - sys.exit(1) - else: - print sEncryptMsg - #ret == 0 鍔犲瘑鎴愬姛锛屼紒涓氶渶瑕佸皢sEncryptMsg杩斿洖缁欎紒涓氬彿 - print "==============================" +#!/usr/bin/env python +# -*- coding: utf-8 -*- +######################################################################### +# Author: jonyqin +# Created Time: Thu 11 Sep 2014 03:55:41 PM CST +# File Name: Sample.py +# Description: WXBizJsonMsgCrypt 浣跨敤demo鏂囦欢 +######################################################################### +from WXBizJsonMsgCrypt import WXBizJsonMsgCrypt +import sys + +if __name__ == "__main__": + #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 + sToken = "hJqcu3uJ9Tn2gXPmxx2w9kkCkCE2EPYo" + sEncodingAESKey = "6qkdMrq68nTKduznJYO1A37W2oEgpkMUvkttRToqhUt" + sCorpID = "ww1436e0e65a779aee" + ''' + ------------浣跨敤绀轰緥涓锛氶獙璇佸洖璋僓RL--------------- + *浼佷笟寮鍚洖璋冩ā寮忔椂锛屼紒涓氬彿浼氬悜楠岃瘉url鍙戦佷竴涓猤et璇锋眰 + 鍋囪鐐瑰嚮楠岃瘉鏃讹紝浼佷笟鏀跺埌绫讳技璇锋眰锛 + * GET /cgi-bin/wxpush?msg_signature=5c45ff5e21c57e6ad56bac8758b79b1d9ac89fd3×tamp=1409659589&nonce=263014780&echostr=P9nAzCzyDtyTWESHep1vC5X9xho%2FqYX3Zpb4yKa9SKld1DsH3Iyt3tP3zNdtp%2B4RPcs8TgAE7OaBO%2BFZXvnaqQ%3D%3D + * HTTP/1.1 Host: qy.weixin.qq.com + + 鎺ユ敹鍒拌璇锋眰鏃讹紝浼佷笟搴 1.瑙f瀽鍑篏et璇锋眰鐨勫弬鏁帮紝鍖呮嫭娑堟伅浣撶鍚(msg_signature)锛屾椂闂存埑(timestamp)锛岄殢鏈烘暟瀛椾覆(nonce)浠ュ強浼佷笟寰俊鎺ㄩ佽繃鏉ョ殑闅忔満鍔犲瘑瀛楃涓(echostr), + 杩欎竴姝ユ敞鎰忎綔URL瑙g爜銆 + 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬 + 3. 瑙e瘑鍑篹chostr鍘熸枃锛屽皢鍘熸枃褰撲綔Get璇锋眰鐨剅esponse锛岃繑鍥炵粰浼佷笟寰俊 + 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟VerifyURL鏉ュ疄鐜般 + ''' + wxcpt=WXBizJsonMsgCrypt(sToken,sEncodingAESKey,sCorpID) + sVerifyMsgSig="012bc692d0a58dd4b10f8dfe5c4ac00ae211ebeb" + sVerifyTimeStamp="1476416373" + sVerifyNonce="47744683" + sVerifyEchoStr="fsi1xnbH4yQh0+PJxcOdhhK6TDXkjMyhEPA7xB2TGz6b+g7xyAbEkRxN/3cNXW9qdqjnoVzEtpbhnFyq6SVHyA==" + ret,sEchoStr=wxcpt.VerifyURL(sVerifyMsgSig, sVerifyTimeStamp,sVerifyNonce,sVerifyEchoStr) + if(ret!=0): + print "ERR: VerifyURL ret: " + str(ret) + sys.exit(1) + else: + print "done VerifyURL" + #楠岃瘉URL鎴愬姛锛屽皢sEchoStr杩斿洖缁欎紒涓氬彿 + + print "==============================" + ''' + ------------浣跨敤绀轰緥浜岋細瀵圭敤鎴峰洖澶嶇殑娑堟伅瑙e瘑--------------- + 鐢ㄦ埛鍥炲娑堟伅鎴栬呯偣鍑讳簨浠跺搷搴旀椂锛屼紒涓氫細鏀跺埌鍥炶皟娑堟伅锛屾娑堟伅鏄粡杩囦紒涓氬井淇″姞瀵嗕箣鍚庣殑瀵嗘枃浠ost褰㈠紡鍙戦佺粰浼佷笟锛屽瘑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 + 鍋囪浼佷笟鏀跺埌浼佷笟寰俊鐨勫洖璋冩秷鎭涓嬶細 + POST /cgi-bin/wxpush? msg_signature=e3647471e395139e2308c1fa963f2d648a00b90e×tamp=1409659813&nonce=1372623149 HTTP/1.1 + Host: qy.weixin.qq.com + + { + "tousername": "wx5823bf96d3bd56c7", + "encrypt": "cjhLUX7UU4yCSelv1vz7T0zT8huF51bAMVWriNvO1FMegHrQZNrtvRxbwf0fUPsFvwqR0U0fgiJNEA5Y30F2MoI2S7vv3EjVQ68C0cjw9frBoUE2Hj0BvFp9h3u6Vbsg4lc1C8AtHdaN8orKuNKkLRLuYEL52R1J3v8olJGZRLnRdVKIivixmX/eQpzgeExtp20jI1HxRP1AAZ6xZoILdqDPO549LO4WeG+685JRUTdiwcY5fjZlqeMxuT4PpMn1X9OWsS7NRj06Wa5E3Tvg4twjWp39KPfOdRte6P1T4JU=", + "agentid": 218 + } + + 浼佷笟鏀跺埌post璇锋眰涔嬪悗搴旇 1.瑙f瀽鍑簎rl涓婄殑鍙傛暟锛屽寘鎷秷鎭綋绛惧悕(msg_signature)锛屾椂闂存埑(timestamp)浠ュ強闅忔満鏁板瓧涓(nonce) + 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬с 3.灏唒ost璇锋眰鐨勬暟鎹繘琛宩son瑙f瀽锛屽苟灏"encrypt"鏍囩鐨勫唴瀹硅繘琛岃В瀵嗭紝瑙e瘑鍑烘潵鐨勬槑鏂囧嵆鏄敤鎴峰洖澶嶆秷鎭殑鏄庢枃锛屾槑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 + 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟DecryptMsg鏉ュ疄鐜般 + ''' + + sReqNonce = "1372623149" + sReqTimeStamp = "1409659813" + + sReqMsgSig = "e3647471e395139e2308c1fa963f2d648a00b90e" + sReqData = '{ "tousername": "wx5823bf96d3bd56c7", "encrypt": "cjhLUX7UU4yCSelv1vz7T0zT8huF51bAMVWriNvO1FMegHrQZNrtvRxbwf0fUPsFvwqR0U0fgiJNEA5Y30F2MoI2S7vv3EjVQ68C0cjw9frBoUE2Hj0BvFp9h3u6Vbsg4lc1C8AtHdaN8orKuNKkLRLuYEL52R1J3v8olJGZRLnRdVKIivixmX/eQpzgeExtp20jI1HxRP1AAZ6xZoILdqDPO549LO4WeG+685JRUTdiwcY5fjZlqeMxuT4PpMn1X9OWsS7NRj06Wa5E3Tvg4twjWp39KPfOdRte6P1T4JU=", "agentid": 218 }'; + ret,sMsg=wxcpt.DecryptMsg( sReqData, sReqMsgSig, sReqTimeStamp, sReqNonce) + if( ret!=0 ): + print "ERR: DecryptMsg ret: " + str(ret) + sys.exit(1) + else: + print sMsg + # 瑙e瘑鎴愬姛锛宻Msg鍗充负json鏍煎紡鐨勬槑鏂 + # TODO: 瀵规槑鏂囩殑澶勭悊 + # ... + # ... + + print "==============================" + + ''' + ------------浣跨敤绀轰緥涓夛細浼佷笟鍥炲鐢ㄦ埛娑堟伅鐨勫姞瀵--------------- + 浼佷笟琚姩鍥炲鐢ㄦ埛鐨勬秷鎭篃闇瑕佽繘琛屽姞瀵嗭紝骞朵笖鎷兼帴鎴愬瘑鏂囨牸寮忕殑json涓层 + 鍋囪浼佷笟闇瑕佸洖澶嶇敤鎴风殑鏄庢枃濡備笅锛 + + { + "ToUserName": "mycreate", + "FromUserName":"wx5823bf96d3bd56c7", + "CreateTime": 1348831860, + "MsgType": "text", + "Content": "this is a test", + "MsgId": 1234567890123456, + "AgentID": 128 + } + + 涓轰簡灏嗘娈垫槑鏂囧洖澶嶇粰鐢ㄦ埛锛屼紒涓氬簲锛 1.鑷繁鐢熸垚鏃堕棿鏃堕棿鎴(timestamp),闅忔満鏁板瓧涓(nonce)浠ヤ究鐢熸垚娑堟伅浣撶鍚嶏紝涔熷彲浠ョ洿鎺ョ敤浠庝紒涓氬井淇$殑post url涓婅В鏋愬嚭鐨勫搴斿笺 + 2.灏嗘槑鏂囧姞瀵嗗緱鍒板瘑鏂囥 3.鐢ㄥ瘑鏂囷紝姝ラ1鐢熸垚鐨則imestamp,nonce鍜屼紒涓氬湪浼佷笟寰俊璁惧畾鐨則oken鐢熸垚娑堟伅浣撶鍚嶃 4.灏嗗瘑鏂囷紝娑堟伅浣撶鍚嶏紝鏃堕棿鎴筹紝闅忔満鏁板瓧涓叉嫾鎺ユ垚json鏍煎紡鐨勫瓧绗︿覆锛屽彂閫佺粰浼佷笟鍙枫 + 浠ヤ笂2锛3锛4姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟EncryptMsg鏉ュ疄鐜般 + ''' + #sRespData = ' { "ToUserName": "mycreate", "FromUserName":"wx5823bf96d3bd56c7", "CreateTime": 1348831860, "MsgType": "text", "Content": "this is a test", "MsgId": 1234567890123456, "AgentID": 128 }'; + sRespData = '{ "ToUserName": "wx5823bf96d3bd56c7", "FromUserName": :mycreate", "CreateTime": 1409659813, "MsgType": "text", "Content": "hello", "MsgId": 4561255354251345929, "AgentID": 218}' + ret,sEncryptMsg=wxcpt.EncryptMsg(sRespData, sReqNonce, sReqTimeStamp) + if( ret!=0 ): + print "ERR: EncryptMsg ret: " + str(ret) + sys.exit(1) + else: + print sEncryptMsg + #ret == 0 鍔犲瘑鎴愬姛锛屼紒涓氶渶瑕佸皢sEncryptMsg杩斿洖缁欎紒涓氬彿 + print "==============================" diff --git a/callback_json/WXBizJsonMsgCrypt.py b/callback_json/WXBizJsonMsgCrypt.py new file mode 100644 index 0000000..d0be3cc --- /dev/null +++ b/callback_json/WXBizJsonMsgCrypt.py @@ -0,0 +1,275 @@ +#!/usr/bin/env python +#-*- encoding:utf-8 -*- + +""" 瀵逛紒涓氬井淇″彂閫佺粰浼佷笟鍚庡彴鐨勬秷鎭姞瑙e瘑绀轰緥浠g爜. +@copyright: Copyright (c) 1998-2020 Tencent Inc. + +""" +# ------------------------------------------------------------------------ + +import base64 +import string +import random +import hashlib +import time +import struct +from Crypto.Cipher import AES +import sys +import socket +import json + +reload(sys) +import ierror +sys.setdefaultencoding('utf-8') + +""" +鍏充簬Crypto.Cipher妯″潡锛孖mportError: No module named 'Crypto'瑙e喅鏂规 +璇峰埌瀹樻柟缃戠珯 https://www.dlitz.net/software/pycrypto/ 涓嬭浇pycrypto銆 +涓嬭浇鍚庯紝鎸夌収README涓殑鈥淚nstallation鈥濆皬鑺傜殑鎻愮ず杩涜pycrypto瀹夎銆 +""" +class FormatException(Exception): + pass + +def throw_exception(message, exception_class=FormatException): + """my define raise exception function""" + raise exception_class(message) + +class SHA1: + """璁$畻浼佷笟寰俊鐨勬秷鎭鍚嶆帴鍙""" + + def getSHA1(self, token, timestamp, nonce, encrypt): + """鐢⊿HA1绠楁硶鐢熸垚瀹夊叏绛惧悕 + @param token: 绁ㄦ嵁 + @param timestamp: 鏃堕棿鎴 + @param encrypt: 瀵嗘枃 + @param nonce: 闅忔満瀛楃涓 + @return: 瀹夊叏绛惧悕 + """ + try: + sortlist = [token, timestamp, nonce, encrypt] + sortlist.sort() + sha = hashlib.sha1() + sha.update("".join(sortlist)) + return ierror.WXBizMsgCrypt_OK, sha.hexdigest() + except Exception,e: + print e + return ierror.WXBizMsgCrypt_ComputeSignature_Error, None + + +class JsonParse: + """鎻愪緵鎻愬彇娑堟伅鏍煎紡涓殑瀵嗘枃鍙婄敓鎴愬洖澶嶆秷鎭牸寮忕殑鎺ュ彛""" + + # json娑堟伅妯℃澘 + AES_TEXT_RESPONSE_TEMPLATE = '''{ + "encrypt": "%(msg_encrypt)s", + "msgsignature": "%(msg_signaturet)s", + "timestamp": "%(timestamp)s", + "nonce": "%(nonce)s" + }''' + + def extract(self, jsontext): + """鎻愬彇鍑簀son鏁版嵁鍖呬腑鐨勫姞瀵嗘秷鎭 + @param jsontext: 寰呮彁鍙栫殑json瀛楃涓 + @return: 鎻愬彇鍑虹殑鍔犲瘑娑堟伅瀛楃涓 + """ + try: + json_dict = json.loads(jsontext) + return ierror.WXBizMsgCrypt_OK, json_dict['encrypt'] + except Exception,e: + print e + return ierror.WXBizMsgCrypt_ParseJson_Error, None + def generate(self, encrypt, signature, timestamp, nonce): + """鐢熸垚json娑堟伅 + @param encrypt: 鍔犲瘑鍚庣殑娑堟伅瀵嗘枃 + @param signature: 瀹夊叏绛惧悕 + @param timestamp: 鏃堕棿鎴 + @param nonce: 闅忔満瀛楃涓 + @return: 鐢熸垚鐨刯son瀛楃涓 + """ + resp_dict = { + 'msg_encrypt' : encrypt, + 'msg_signaturet': signature, + 'timestamp' : timestamp, + 'nonce' : nonce, + } + resp_json = self.AES_TEXT_RESPONSE_TEMPLATE % resp_dict + return resp_json + + +class PKCS7Encoder(): + """鎻愪緵鍩轰簬PKCS7绠楁硶鐨勫姞瑙e瘑鎺ュ彛""" + + block_size = 32 + def encode(self, text): + """ 瀵归渶瑕佸姞瀵嗙殑鏄庢枃杩涜濉厖琛ヤ綅 + @param text: 闇瑕佽繘琛屽~鍏呰ˉ浣嶆搷浣滅殑鏄庢枃 + @return: 琛ラ綈鏄庢枃瀛楃涓 + """ + text_length = len(text) + # 璁$畻闇瑕佸~鍏呯殑浣嶆暟 + amount_to_pad = self.block_size - (text_length % self.block_size) + if amount_to_pad == 0: + amount_to_pad = self.block_size + # 鑾峰緱琛ヤ綅鎵鐢ㄧ殑瀛楃 + pad = chr(amount_to_pad) + return text + pad * amount_to_pad + + def decode(self, decrypted): + """鍒犻櫎瑙e瘑鍚庢槑鏂囩殑琛ヤ綅瀛楃 + @param decrypted: 瑙e瘑鍚庣殑鏄庢枃 + @return: 鍒犻櫎琛ヤ綅瀛楃鍚庣殑鏄庢枃 + """ + pad = ord(decrypted[-1]) + if pad<1 or pad >32: + pad = 0 + return decrypted[:-pad] + + +class Prpcrypt(object): + """鎻愪緵鎺ユ敹鍜屾帹閫佺粰浼佷笟寰俊娑堟伅鐨勫姞瑙e瘑鎺ュ彛""" + + def __init__(self,key): + + #self.key = base64.b64decode(key+"=") + self.key = key + # 璁剧疆鍔犺В瀵嗘ā寮忎负AES鐨凜BC妯″紡 + self.mode = AES.MODE_CBC + + + def encrypt(self,text,receiveid): + """瀵规槑鏂囪繘琛屽姞瀵 + @param text: 闇瑕佸姞瀵嗙殑鏄庢枃 + @return: 鍔犲瘑寰楀埌鐨勫瓧绗︿覆 + """ + # 16浣嶉殢鏈哄瓧绗︿覆娣诲姞鍒版槑鏂囧紑澶 + text = self.get_random_str() + struct.pack("I",socket.htonl(len(text))) + text + receiveid + # 浣跨敤鑷畾涔夌殑濉厖鏂瑰紡瀵规槑鏂囪繘琛岃ˉ浣嶅~鍏 + pkcs7 = PKCS7Encoder() + text = pkcs7.encode(text) + # 鍔犲瘑 + cryptor = AES.new(self.key,self.mode,self.key[:16]) + try: + ciphertext = cryptor.encrypt(text) + # 浣跨敤BASE64瀵瑰姞瀵嗗悗鐨勫瓧绗︿覆杩涜缂栫爜 + return ierror.WXBizMsgCrypt_OK, base64.b64encode(ciphertext) + except Exception,e: + print e + return ierror.WXBizMsgCrypt_EncryptAES_Error,None + + def decrypt(self,text,receiveid): + """瀵硅В瀵嗗悗鐨勬槑鏂囪繘琛岃ˉ浣嶅垹闄 + @param text: 瀵嗘枃 + @return: 鍒犻櫎濉厖琛ヤ綅鍚庣殑鏄庢枃 + """ + try: + cryptor = AES.new(self.key,self.mode,self.key[:16]) + # 浣跨敤BASE64瀵瑰瘑鏂囪繘琛岃В鐮侊紝鐒跺悗AES-CBC瑙e瘑 + plain_text = cryptor.decrypt(base64.b64decode(text)) + except Exception,e: + print e + return ierror.WXBizMsgCrypt_DecryptAES_Error,None + try: + pad = ord(plain_text[-1]) + # 鍘绘帀琛ヤ綅瀛楃涓 + #pkcs7 = PKCS7Encoder() + #plain_text = pkcs7.encode(plain_text) + # 鍘婚櫎16浣嶉殢鏈哄瓧绗︿覆 + content = plain_text[16:-pad] + json_len = socket.ntohl(struct.unpack("I",content[ : 4])[0]) + json_content = content[4 : json_len+4] + from_receiveid = content[json_len+4:] + except Exception,e: + print e + return ierror.WXBizMsgCrypt_IllegalBuffer,None + if from_receiveid != receiveid: + print "receiveid not match" + print from_receiveid + return ierror.WXBizMsgCrypt_ValidateCorpid_Error,None + return 0,json_content + + def get_random_str(self): + """ 闅忔満鐢熸垚16浣嶅瓧绗︿覆 + @return: 16浣嶅瓧绗︿覆 + """ + rule = string.letters + string.digits + str = random.sample(rule, 16) + return "".join(str) + +class WXBizJsonMsgCrypt(object): + #鏋勯犲嚱鏁 + def __init__(self,sToken,sEncodingAESKey,sReceiveId): + try: + self.key = base64.b64decode(sEncodingAESKey+"=") + assert len(self.key) == 32 + except: + throw_exception("[error]: EncodingAESKey unvalid !", FormatException) + # return ierror.WXBizMsgCrypt_IllegalAesKey,None + self.m_sToken = sToken + self.m_sReceiveId = sReceiveId + + #楠岃瘉URL + #@param sMsgSignature: 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature + #@param sTimeStamp: 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp + #@param sNonce: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once + #@param sEchoStr: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨別chostr + #@param sReplyEchoStr: 瑙e瘑涔嬪悗鐨別chostr锛屽綋return杩斿洖0鏃舵湁鏁 + #@return锛氭垚鍔0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 + + def VerifyURL(self, sMsgSignature, sTimeStamp, sNonce, sEchoStr): + sha1 = SHA1() + ret,signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, sEchoStr) + if ret != 0: + return ret, None + if not signature == sMsgSignature: + return ierror.WXBizMsgCrypt_ValidateSignature_Error, None + pc = Prpcrypt(self.key) + ret,sReplyEchoStr = pc.decrypt(sEchoStr,self.m_sReceiveId) + return ret,sReplyEchoStr + + def EncryptMsg(self, sReplyMsg, sNonce, timestamp = None): + #灏嗕紒涓氬洖澶嶇敤鎴风殑娑堟伅鍔犲瘑鎵撳寘 + #@param sReplyMsg: 浼佷笟鍙峰緟鍥炲鐢ㄦ埛鐨勬秷鎭紝json鏍煎紡鐨勫瓧绗︿覆 + #@param sTimeStamp: 鏃堕棿鎴筹紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨則imestamp,濡備负None鍒欒嚜鍔ㄧ敤褰撳墠鏃堕棿 + #@param sNonce: 闅忔満涓诧紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨刵once + #sEncryptMsg: 鍔犲瘑鍚庣殑鍙互鐩存帴鍥炲鐢ㄦ埛鐨勫瘑鏂囷紝鍖呮嫭msg_signature, timestamp, nonce, encrypt鐨刯son鏍煎紡鐨勫瓧绗︿覆, + #return锛氭垚鍔0锛宻EncryptMsg,澶辫触杩斿洖瀵瑰簲鐨勯敊璇爜None + pc = Prpcrypt(self.key) + ret,encrypt = pc.encrypt(sReplyMsg, self.m_sReceiveId) + if ret != 0: + return ret,None + if timestamp is None: + timestamp = str(int(time.time())) + # 鐢熸垚瀹夊叏绛惧悕 + sha1 = SHA1() + ret,signature = sha1.getSHA1(self.m_sToken, timestamp, sNonce, encrypt) + if ret != 0: + return ret,None + jsonParse = JsonParse() + return ret,jsonParse.generate(encrypt, signature, timestamp, sNonce) + + def DecryptMsg(self, sPostData, sMsgSignature, sTimeStamp, sNonce): + # 妫楠屾秷鎭殑鐪熷疄鎬э紝骞朵笖鑾峰彇瑙e瘑鍚庣殑鏄庢枃 + # @param sMsgSignature: 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature + # @param sTimeStamp: 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp + # @param sNonce: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once + # @param sPostData: 瀵嗘枃锛屽搴擯OST璇锋眰鐨勬暟鎹 + # json_content: 瑙e瘑鍚庣殑鍘熸枃锛屽綋return杩斿洖0鏃舵湁鏁 + # @return: 鎴愬姛0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 + # 楠岃瘉瀹夊叏绛惧悕 + jsonParse = JsonParse() + ret,encrypt = jsonParse.extract(sPostData) + if ret != 0: + return ret, None + sha1 = SHA1() + ret,signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, encrypt) + if ret != 0: + return ret, None + if not signature == sMsgSignature: + print "signature not match" + print signature + return ierror.WXBizMsgCrypt_ValidateSignature_Error, None + pc = Prpcrypt(self.key) + ret,json_content = pc.decrypt(encrypt,self.m_sReceiveId) + return ret,json_content + + diff --git a/callback_json/ierror.py b/callback_json/ierror.py index 6678fec..51c02c3 100644 --- a/callback_json/ierror.py +++ b/callback_json/ierror.py @@ -1,20 +1,20 @@ -#!/usr/bin/env python -# -*- coding: utf-8 -*- -######################################################################### -# Author: jonyqin -# Created Time: Thu 11 Sep 2014 01:53:58 PM CST -# File Name: ierror.py -# Description:瀹氫箟閿欒鐮佸惈涔 -######################################################################### -WXBizMsgCrypt_OK = 0 -WXBizMsgCrypt_ValidateSignature_Error = -40001 -WXBizMsgCrypt_ParseXml_Error = -40002 -WXBizMsgCrypt_ComputeSignature_Error = -40003 -WXBizMsgCrypt_IllegalAesKey = -40004 -WXBizMsgCrypt_ValidateCorpid_Error = -40005 -WXBizMsgCrypt_EncryptAES_Error = -40006 -WXBizMsgCrypt_DecryptAES_Error = -40007 -WXBizMsgCrypt_IllegalBuffer = -40008 -WXBizMsgCrypt_EncodeBase64_Error = -40009 -WXBizMsgCrypt_DecodeBase64_Error = -40010 -WXBizMsgCrypt_GenReturnXml_Error = -40011 +#!/usr/bin/env python +# -*- coding: utf-8 -*- +######################################################################### +# Author: jonyqin +# Created Time: Thu 11 Sep 2014 01:53:58 PM CST +# File Name: ierror.py +# Description:瀹氫箟閿欒鐮佸惈涔 +######################################################################### +WXBizMsgCrypt_OK = 0 +WXBizMsgCrypt_ValidateSignature_Error = -40001 +WXBizMsgCrypt_ParseJson_Error = -40002 +WXBizMsgCrypt_ComputeSignature_Error = -40003 +WXBizMsgCrypt_IllegalAesKey = -40004 +WXBizMsgCrypt_ValidateCorpid_Error = -40005 +WXBizMsgCrypt_EncryptAES_Error = -40006 +WXBizMsgCrypt_DecryptAES_Error = -40007 +WXBizMsgCrypt_IllegalBuffer = -40008 +WXBizMsgCrypt_EncodeBase64_Error = -40009 +WXBizMsgCrypt_DecodeBase64_Error = -40010 +WXBizMsgCrypt_GenReturnJson_Error = -40011 From 2d3dd0c9a13fdf4f3b38cc68ee995d38677c0cc3 Mon Sep 17 00:00:00 2001 From: abelzhu Date: Thu, 27 Aug 2020 21:28:53 +0800 Subject: [PATCH 12/23] Delete WXBizMsgCrypt.py --- callback_json/WXBizMsgCrypt.py | 274 --------------------------------- 1 file changed, 274 deletions(-) delete mode 100644 callback_json/WXBizMsgCrypt.py diff --git a/callback_json/WXBizMsgCrypt.py b/callback_json/WXBizMsgCrypt.py deleted file mode 100644 index 2f3875a..0000000 --- a/callback_json/WXBizMsgCrypt.py +++ /dev/null @@ -1,274 +0,0 @@ -#!/usr/bin/env python -#-*- encoding:utf-8 -*- - -""" 瀵逛紒涓氬井淇″彂閫佺粰浼佷笟鍚庡彴鐨勬秷鎭姞瑙e瘑绀轰緥浠g爜. -@copyright: Copyright (c) 1998-2014 Tencent Inc. - -""" -# ------------------------------------------------------------------------ - -import base64 -import string -import random -import hashlib -import time -import struct -from Crypto.Cipher import AES -import sys -import socket -import json - -reload(sys) -import ierror -sys.setdefaultencoding('utf-8') - -""" -鍏充簬Crypto.Cipher妯″潡锛孖mportError: No module named 'Crypto'瑙e喅鏂规 -璇峰埌瀹樻柟缃戠珯 https://www.dlitz.net/software/pycrypto/ 涓嬭浇pycrypto銆 -涓嬭浇鍚庯紝鎸夌収README涓殑鈥淚nstallation鈥濆皬鑺傜殑鎻愮ず杩涜pycrypto瀹夎銆 -""" -class FormatException(Exception): - pass - -def throw_exception(message, exception_class=FormatException): - """my define raise exception function""" - raise exception_class(message) - -class SHA1: - """璁$畻浼佷笟寰俊鐨勬秷鎭鍚嶆帴鍙""" - - def getSHA1(self, token, timestamp, nonce, encrypt): - """鐢⊿HA1绠楁硶鐢熸垚瀹夊叏绛惧悕 - @param token: 绁ㄦ嵁 - @param timestamp: 鏃堕棿鎴 - @param encrypt: 瀵嗘枃 - @param nonce: 闅忔満瀛楃涓 - @return: 瀹夊叏绛惧悕 - """ - try: - sortlist = [token, timestamp, nonce, encrypt] - sortlist.sort() - sha = hashlib.sha1() - sha.update("".join(sortlist)) - return ierror.WXBizMsgCrypt_OK, sha.hexdigest() - except Exception,e: - print e - return ierror.WXBizMsgCrypt_ComputeSignature_Error, None - - -class JsonParse: - """鎻愪緵鎻愬彇娑堟伅鏍煎紡涓殑瀵嗘枃鍙婄敓鎴愬洖澶嶆秷鎭牸寮忕殑鎺ュ彛""" - - # json娑堟伅妯℃澘 - AES_TEXT_RESPONSE_TEMPLATE = '''{ - "encrypt": "%(msg_encrypt)s", - "msgsignature": "%(msg_signaturet)s", - "timestamp": %(timestamp)s, - "nonce": "%(nonce)s" - }''' - - def extract(self, jsontext): - """鎻愬彇鍑簀son鏁版嵁鍖呬腑鐨勫姞瀵嗘秷鎭 - @param jsontext: 寰呮彁鍙栫殑json瀛楃涓 - @return: 鎻愬彇鍑虹殑鍔犲瘑娑堟伅瀛楃涓 - """ - print jsontext - try: - json_dict = json.loads(jsontext) - return ierror.WXBizMsgCrypt_OK, json_dict['encrypt'] - except Exception,e: - print e - return ierror.WXBizMsgCrypt_ParseXml_Error, None - def generate(self, encrypt, signature, timestamp, nonce): - """鐢熸垚json娑堟伅 - @param encrypt: 鍔犲瘑鍚庣殑娑堟伅瀵嗘枃 - @param signature: 瀹夊叏绛惧悕 - @param timestamp: 鏃堕棿鎴 - @param nonce: 闅忔満瀛楃涓 - @return: 鐢熸垚鐨刯son瀛楃涓 - """ - resp_dict = { - 'msg_encrypt' : encrypt, - 'msg_signaturet': signature, - 'timestamp' : timestamp, - 'nonce' : nonce, - } - resp_json = self.AES_TEXT_RESPONSE_TEMPLATE % resp_dict - return resp_json - - -class PKCS7Encoder(): - """鎻愪緵鍩轰簬PKCS7绠楁硶鐨勫姞瑙e瘑鎺ュ彛""" - - block_size = 32 - def encode(self, text): - """ 瀵归渶瑕佸姞瀵嗙殑鏄庢枃杩涜濉厖琛ヤ綅 - @param text: 闇瑕佽繘琛屽~鍏呰ˉ浣嶆搷浣滅殑鏄庢枃 - @return: 琛ラ綈鏄庢枃瀛楃涓 - """ - text_length = len(text) - # 璁$畻闇瑕佸~鍏呯殑浣嶆暟 - amount_to_pad = self.block_size - (text_length % self.block_size) - if amount_to_pad == 0: - amount_to_pad = self.block_size - # 鑾峰緱琛ヤ綅鎵鐢ㄧ殑瀛楃 - pad = chr(amount_to_pad) - return text + pad * amount_to_pad - - def decode(self, decrypted): - """鍒犻櫎瑙e瘑鍚庢槑鏂囩殑琛ヤ綅瀛楃 - @param decrypted: 瑙e瘑鍚庣殑鏄庢枃 - @return: 鍒犻櫎琛ヤ綅瀛楃鍚庣殑鏄庢枃 - """ - pad = ord(decrypted[-1]) - if pad<1 or pad >32: - pad = 0 - return decrypted[:-pad] - - -class Prpcrypt(object): - """鎻愪緵鎺ユ敹鍜屾帹閫佺粰浼佷笟寰俊娑堟伅鐨勫姞瑙e瘑鎺ュ彛""" - - def __init__(self,key): - - #self.key = base64.b64decode(key+"=") - self.key = key - # 璁剧疆鍔犺В瀵嗘ā寮忎负AES鐨凜BC妯″紡 - self.mode = AES.MODE_CBC - - - def encrypt(self,text,receiveid): - """瀵规槑鏂囪繘琛屽姞瀵 - @param text: 闇瑕佸姞瀵嗙殑鏄庢枃 - @return: 鍔犲瘑寰楀埌鐨勫瓧绗︿覆 - """ - # 16浣嶉殢鏈哄瓧绗︿覆娣诲姞鍒版槑鏂囧紑澶 - text = self.get_random_str() + struct.pack("I",socket.htonl(len(text))) + text + receiveid - # 浣跨敤鑷畾涔夌殑濉厖鏂瑰紡瀵规槑鏂囪繘琛岃ˉ浣嶅~鍏 - pkcs7 = PKCS7Encoder() - text = pkcs7.encode(text) - # 鍔犲瘑 - cryptor = AES.new(self.key,self.mode,self.key[:16]) - try: - ciphertext = cryptor.encrypt(text) - # 浣跨敤BASE64瀵瑰姞瀵嗗悗鐨勫瓧绗︿覆杩涜缂栫爜 - return ierror.WXBizMsgCrypt_OK, base64.b64encode(ciphertext) - except Exception,e: - print e - return ierror.WXBizMsgCrypt_EncryptAES_Error,None - - def decrypt(self,text,receiveid): - """瀵硅В瀵嗗悗鐨勬槑鏂囪繘琛岃ˉ浣嶅垹闄 - @param text: 瀵嗘枃 - @return: 鍒犻櫎濉厖琛ヤ綅鍚庣殑鏄庢枃 - """ - try: - cryptor = AES.new(self.key,self.mode,self.key[:16]) - # 浣跨敤BASE64瀵瑰瘑鏂囪繘琛岃В鐮侊紝鐒跺悗AES-CBC瑙e瘑 - plain_text = cryptor.decrypt(base64.b64decode(text)) - except Exception,e: - print e - return ierror.WXBizMsgCrypt_DecryptAES_Error,None - try: - pad = ord(plain_text[-1]) - # 鍘绘帀琛ヤ綅瀛楃涓 - #pkcs7 = PKCS7Encoder() - #plain_text = pkcs7.encode(plain_text) - # 鍘婚櫎16浣嶉殢鏈哄瓧绗︿覆 - content = plain_text[16:-pad] - json_len = socket.ntohl(struct.unpack("I",content[ : 4])[0]) - json_content = content[4 : json_len+4] - from_receiveid = content[json_len+4:] - except Exception,e: - print e - return ierror.WXBizMsgCrypt_IllegalBuffer,None - if from_receiveid != receiveid: - print "receiveid not match" - print from_receiveid - return ierror.WXBizMsgCrypt_ValidateCorpid_Error,None - return 0,json_content - - def get_random_str(self): - """ 闅忔満鐢熸垚16浣嶅瓧绗︿覆 - @return: 16浣嶅瓧绗︿覆 - """ - rule = string.letters + string.digits - str = random.sample(rule, 16) - return "".join(str) - -class WXBizMsgCrypt(object): - #鏋勯犲嚱鏁 - def __init__(self,sToken,sEncodingAESKey,sReceiveId): - try: - self.key = base64.b64decode(sEncodingAESKey+"=") - assert len(self.key) == 32 - except: - throw_exception("[error]: EncodingAESKey unvalid !", FormatException) - # return ierror.WXBizMsgCrypt_IllegalAesKey,None - self.m_sToken = sToken - self.m_sReceiveId = sReceiveId - - #楠岃瘉URL - #@param sMsgSignature: 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature - #@param sTimeStamp: 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp - #@param sNonce: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once - #@param sEchoStr: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨別chostr - #@param sReplyEchoStr: 瑙e瘑涔嬪悗鐨別chostr锛屽綋return杩斿洖0鏃舵湁鏁 - #@return锛氭垚鍔0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 - - def VerifyURL(self, sMsgSignature, sTimeStamp, sNonce, sEchoStr): - sha1 = SHA1() - ret,signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, sEchoStr) - if ret != 0: - return ret, None - if not signature == sMsgSignature: - return ierror.WXBizMsgCrypt_ValidateSignature_Error, None - pc = Prpcrypt(self.key) - ret,sReplyEchoStr = pc.decrypt(sEchoStr,self.m_sReceiveId) - return ret,sReplyEchoStr - - def EncryptMsg(self, sReplyMsg, sNonce, timestamp = None): - #灏嗕紒涓氬洖澶嶇敤鎴风殑娑堟伅鍔犲瘑鎵撳寘 - #@param sReplyMsg: 浼佷笟鍙峰緟鍥炲鐢ㄦ埛鐨勬秷鎭紝json鏍煎紡鐨勫瓧绗︿覆 - #@param sTimeStamp: 鏃堕棿鎴筹紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨則imestamp,濡備负None鍒欒嚜鍔ㄧ敤褰撳墠鏃堕棿 - #@param sNonce: 闅忔満涓诧紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨刵once - #sEncryptMsg: 鍔犲瘑鍚庣殑鍙互鐩存帴鍥炲鐢ㄦ埛鐨勫瘑鏂囷紝鍖呮嫭msg_signature, timestamp, nonce, encrypt鐨刯son鏍煎紡鐨勫瓧绗︿覆, - #return锛氭垚鍔0锛宻EncryptMsg,澶辫触杩斿洖瀵瑰簲鐨勯敊璇爜None - pc = Prpcrypt(self.key) - ret,encrypt = pc.encrypt(sReplyMsg, self.m_sReceiveId) - if ret != 0: - return ret,None - if timestamp is None: - timestamp = str(int(time.time())) - # 鐢熸垚瀹夊叏绛惧悕 - sha1 = SHA1() - ret,signature = sha1.getSHA1(self.m_sToken, timestamp, sNonce, encrypt) - if ret != 0: - return ret,None - jsonParse = JsonParse() - return ret,jsonParse.generate(encrypt, signature, timestamp, sNonce) - - def DecryptMsg(self, sPostData, sMsgSignature, sTimeStamp, sNonce): - # 妫楠屾秷鎭殑鐪熷疄鎬э紝骞朵笖鑾峰彇瑙e瘑鍚庣殑鏄庢枃 - # @param sMsgSignature: 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature - # @param sTimeStamp: 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp - # @param sNonce: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once - # @param sPostData: 瀵嗘枃锛屽搴擯OST璇锋眰鐨勬暟鎹 - # json_content: 瑙e瘑鍚庣殑鍘熸枃锛屽綋return杩斿洖0鏃舵湁鏁 - # @return: 鎴愬姛0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 - # 楠岃瘉瀹夊叏绛惧悕 - jsonParse = JsonParse() - ret,encrypt = jsonParse.extract(sPostData) - if ret != 0: - return ret, None - sha1 = SHA1() - ret,signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, encrypt) - if ret != 0: - return ret, None - if not signature == sMsgSignature: - print "signature not match" - print signature - return ierror.WXBizMsgCrypt_ValidateSignature_Error, None - pc = Prpcrypt(self.key) - ret,json_content = pc.decrypt(encrypt,self.m_sReceiveId) - return ret,json_content From aa41bb308a6c840602fea49a3509f39b0be3b086 Mon Sep 17 00:00:00 2001 From: abelzhu Date: Thu, 26 Nov 2020 14:47:47 +0800 Subject: [PATCH 13/23] Update README.md --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 492f2da..f0bf688 100644 --- a/README.md +++ b/README.md @@ -25,7 +25,7 @@ golang : https://github.com/doubliekill/EnterpriseWechatSDK 1006401052yh@gmail. 璇︾粏浣跨敤鏂规硶鍙傝僥xamples璺緞涓嬬殑娴嬭瘯鐢ㄤ緥 # 鍏充簬token鐨勭紦瀛 -token鏄渶瑕佺紦瀛樼殑锛屼笉鑳芥瘡娆¤皟鐢ㄩ兘鍘昏幏鍙杢oken锛孾鍚﹁呬細涓鐜囬檺鍒禲(https://work.weixin.qq.com/api/doc#10013/%E7%AC%AC%E5%9B%9B%E6%AD%A5%EF%BC%9A%E7%BC%93%E5%AD%98%E5%92%8C%E5%88%B7%E6%96%B0access_token) +token鏄渶瑕佺紦瀛樼殑锛屼笉鑳芥瘡娆¤皟鐢ㄩ兘鍘昏幏鍙杢oken锛孾鍚﹀垯浼氫腑棰戠巼闄愬埗](https://work.weixin.qq.com/api/doc#10013/%E7%AC%AC%E5%9B%9B%E6%AD%A5%EF%BC%9A%E7%BC%93%E5%AD%98%E5%92%8C%E5%88%B7%E6%96%B0access_token) 鍦ㄦ湰搴撶殑璁捐閲岋紝token鏄互绫婚噷鐨勪竴涓彉閲忕紦瀛樼殑 姣斿api/src/CorpApi.py 閲岀殑access_token鍙橀噺 鍦ㄧ被鐨勭敓鍛藉懆鏈熼噷锛岃繖涓猘ccessToken閮芥槸瀛樺湪鐨勶紝 褰撲笖浠呭綋鍙戠幇token杩囨湡锛孋orpAPI绫讳細鑷姩鍒锋柊token From 3dfbc26de61ccb22d0925244417ad623d76a8afb Mon Sep 17 00:00:00 2001 From: sbzhu Date: Tue, 15 Apr 2025 14:17:26 +0800 Subject: [PATCH 14/23] Update Readme.txt --- callback/Readme.txt | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/callback/Readme.txt b/callback/Readme.txt index 79ebb21..7b8dd0c 100644 --- a/callback/Readme.txt +++ b/callback/Readme.txt @@ -1,5 +1,5 @@ -注意事项 -1.WXBizMsgCrypt.py文件封装了WXBizMsgCrypt接口类,提供了用户接入企业微信的三个接口,Sample.py文件提供了如何使用这三个接口的示例,ierror.py提供了错误码。 -2.WXBizMsgCrypt封装了VerifyURL, DecryptMsg, EncryptMsg三个接口,分别用于开发者验证回调url,收到用户回复消息的解密以及开发者回复消息的加密过程。使用方法可以参考Sample.py文件。 -3.加解密协议请参考企业微信官方文档。 -4.本代码用到了pycrypto第三方库,请开发者自行安装此库再使用。 \ No newline at end of file +娉ㄦ剰浜嬮」 +1.WXBizMsgCrypt.py鏂囦欢灏佽浜哤XBizMsgCrypt鎺ュ彛绫(Python3浠ュ強浠ヤ笂鐗堟湰浣跨敤 WXBizMsgCrypt3.py)锛屾彁渚涗簡鐢ㄦ埛鎺ュ叆浼佷笟寰俊鐨勪笁涓帴鍙o紝Sample.py鏂囦欢鎻愪緵浜嗗浣曚娇鐢ㄨ繖涓変釜鎺ュ彛鐨勭ず渚嬶紝ierror.py鎻愪緵浜嗛敊璇爜銆 +2.WXBizMsgCrypt灏佽浜哣erifyURL, DecryptMsg, EncryptMsg涓変釜鎺ュ彛锛屽垎鍒敤浜庡紑鍙戣呴獙璇佸洖璋僽rl锛屾敹鍒扮敤鎴峰洖澶嶆秷鎭殑瑙e瘑浠ュ強寮鍙戣呭洖澶嶆秷鎭殑鍔犲瘑杩囩▼銆備娇鐢ㄦ柟娉曞彲浠ュ弬鑰僑ample.py鏂囦欢銆 +3.鍔犺В瀵嗗崗璁鍙傝冧紒涓氬井淇″畼鏂规枃妗c +4.鏈唬鐮佺敤鍒颁簡pycrypto绗笁鏂瑰簱锛岃寮鍙戣呰嚜琛屽畨瑁呮搴撳啀浣跨敤銆 From db49731830885091da117a0a16656d42b91e3dde Mon Sep 17 00:00:00 2001 From: abelzhu Date: Thu, 26 Jun 2025 13:15:48 +0800 Subject: [PATCH 15/23] =?UTF-8?q?=E6=94=AF=E6=8C=81pythonb3,=20=E4=BB=A5?= =?UTF-8?q?=E5=8F=8APython3=E7=9A=84json=E5=8A=A0=E8=A7=A3=E5=AF=86?= =?UTF-8?q?=E5=BA=93?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- README.md | 9 +- callback_json_python3/Readme.txt | 5 + callback_json_python3/Sample.py | 108 +++++++ callback_json_python3/WXBizJsonMsgCrypt.py | 287 ++++++++++++++++++ callback_json_python3/ierror.py | 20 ++ callback_python3/Readme.txt | 5 + callback_python3/Sample.py | 109 +++++++ .../WXBizMsgCrypt.py | 0 callback_python3/ierror.py | 20 ++ 9 files changed, 560 insertions(+), 3 deletions(-) create mode 100644 callback_json_python3/Readme.txt create mode 100644 callback_json_python3/Sample.py create mode 100644 callback_json_python3/WXBizJsonMsgCrypt.py create mode 100644 callback_json_python3/ierror.py create mode 100644 callback_python3/Readme.txt create mode 100644 callback_python3/Sample.py rename callback/WXBizMsgCrypt3.py => callback_python3/WXBizMsgCrypt.py (100%) create mode 100644 callback_python3/ierror.py diff --git a/README.md b/README.md index f0bf688..140e9fe 100644 --- a/README.md +++ b/README.md @@ -12,13 +12,16 @@ golang : https://github.com/sbzhu/weworkapi_golang ryanjelin@tencent.com(浼佷笟 golang : https://github.com/doubliekill/EnterpriseWechatSDK 1006401052yh@gmail.com(涓汉寮鍙戣) # Director - 鈹溾攢鈹 api // API 鎺ュ彛 鈹偮犅 鈹溾攢鈹 examples // API鎺ュ彛鐨勬祴璇曠敤渚 鈹偮犅 鈹溾攢鈹 README.md 鈹偮犅 鈹斺攢鈹 src // API鎺ュ彛鐨勫叧閿昏緫 -鈹溾攢鈹 conf.py -鈹溾攢鈹 README.md +鈹溾攢鈹 callback // 鍔犺В瀵嗗簱(python2, xml鏍煎紡) +鈹溾攢鈹 callback_json // 鍔犺В瀵嗗簱(Python2, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜) +鈹溾攢鈹 callback_json_python3 // 鍔犺В瀵嗗簱(Python3, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜) +鈹溾攢鈹 callback_python3 // 鍔犺В瀵嗗簱(python2, xml鏍煎紡) +鈹溾攢鈹 conf.py +鈹斺攢鈹 README.md # Usage 灏嗘湰椤圭洰涓嬭浇鍒颁綘鐨勭洰褰曪紝鏃㈠彲鐩存帴寮曠敤鐩稿叧鏂囦欢 聽 diff --git a/callback_json_python3/Readme.txt b/callback_json_python3/Readme.txt new file mode 100644 index 0000000..79ebb21 --- /dev/null +++ b/callback_json_python3/Readme.txt @@ -0,0 +1,5 @@ +注意事项 +1.WXBizMsgCrypt.py文件封装了WXBizMsgCrypt接口类,提供了用户接入企业微信的三个接口,Sample.py文件提供了如何使用这三个接口的示例,ierror.py提供了错误码。 +2.WXBizMsgCrypt封装了VerifyURL, DecryptMsg, EncryptMsg三个接口,分别用于开发者验证回调url,收到用户回复消息的解密以及开发者回复消息的加密过程。使用方法可以参考Sample.py文件。 +3.加解密协议请参考企业微信官方文档。 +4.本代码用到了pycrypto第三方库,请开发者自行安装此库再使用。 \ No newline at end of file diff --git a/callback_json_python3/Sample.py b/callback_json_python3/Sample.py new file mode 100644 index 0000000..740de23 --- /dev/null +++ b/callback_json_python3/Sample.py @@ -0,0 +1,108 @@ +#!/usr/bin/env python +# -*- coding: utf-8 -*- +######################################################################### +# Author: jonyqin +# Created Time: Thu 11 Sep 2014 03:55:41 PM CST +# File Name: Sample.py +# Description: WXBizJsonMsgCrypt 浣跨敤demo鏂囦欢 +######################################################################### +from WXBizJsonMsgCrypt import WXBizJsonMsgCrypt +import sys + +if __name__ == "__main__": + #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 + sToken = "hJqcu3uJ9Tn2gXPmxx2w9kkCkCE2EPYo" + sEncodingAESKey = "6qkdMrq68nTKduznJYO1A37W2oEgpkMUvkttRToqhUt" + sCorpID = "ww1436e0e65a779aee" + ''' + ------------浣跨敤绀轰緥涓锛氶獙璇佸洖璋僓RL--------------- + *浼佷笟寮鍚洖璋冩ā寮忔椂锛屼紒涓氬彿浼氬悜楠岃瘉url鍙戦佷竴涓猤et璇锋眰 + 鍋囪鐐瑰嚮楠岃瘉鏃讹紝浼佷笟鏀跺埌绫讳技璇锋眰锛 + * GET /cgi-bin/wxpush?msg_signature=5c45ff5e21c57e6ad56bac8758b79b1d9ac89fd3×tamp=1409659589&nonce=263014780&echostr=P9nAzCzyDtyTWESHep1vC5X9xho%2FqYX3Zpb4yKa9SKld1DsH3Iyt3tP3zNdtp%2B4RPcs8TgAE7OaBO%2BFZXvnaqQ%3D%3D + * HTTP/1.1 Host: qy.weixin.qq.com + + 鎺ユ敹鍒拌璇锋眰鏃讹紝浼佷笟搴 1.瑙f瀽鍑篏et璇锋眰鐨勫弬鏁帮紝鍖呮嫭娑堟伅浣撶鍚(msg_signature)锛屾椂闂存埑(timestamp)锛岄殢鏈烘暟瀛椾覆(nonce)浠ュ強浼佷笟寰俊鎺ㄩ佽繃鏉ョ殑闅忔満鍔犲瘑瀛楃涓(echostr), + 杩欎竴姝ユ敞鎰忎綔URL瑙g爜銆 + 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬 + 3. 瑙e瘑鍑篹chostr鍘熸枃锛屽皢鍘熸枃褰撲綔Get璇锋眰鐨剅esponse锛岃繑鍥炵粰浼佷笟寰俊 + 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟VerifyURL鏉ュ疄鐜般 + ''' + wxcpt=WXBizJsonMsgCrypt(sToken,sEncodingAESKey,sCorpID) + sVerifyMsgSig="012bc692d0a58dd4b10f8dfe5c4ac00ae211ebeb" + sVerifyTimeStamp="1476416373" + sVerifyNonce="47744683" + sVerifyEchoStr="fsi1xnbH4yQh0+PJxcOdhhK6TDXkjMyhEPA7xB2TGz6b+g7xyAbEkRxN/3cNXW9qdqjnoVzEtpbhnFyq6SVHyA==" + ret,sEchoStr=wxcpt.VerifyURL(sVerifyMsgSig, sVerifyTimeStamp,sVerifyNonce,sVerifyEchoStr) + if(ret!=0): + print("ERR: VerifyURL ret: " + str(ret)) + sys.exit(1) + else: + print("done VerifyURL") + #楠岃瘉URL鎴愬姛锛屽皢sEchoStr杩斿洖缁欎紒涓氬彿 + + print("==============================") + ''' + ------------浣跨敤绀轰緥浜岋細瀵圭敤鎴峰洖澶嶇殑娑堟伅瑙e瘑--------------- + 鐢ㄦ埛鍥炲娑堟伅鎴栬呯偣鍑讳簨浠跺搷搴旀椂锛屼紒涓氫細鏀跺埌鍥炶皟娑堟伅锛屾娑堟伅鏄粡杩囦紒涓氬井淇″姞瀵嗕箣鍚庣殑瀵嗘枃浠ost褰㈠紡鍙戦佺粰浼佷笟锛屽瘑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 + 鍋囪浼佷笟鏀跺埌浼佷笟寰俊鐨勫洖璋冩秷鎭涓嬶細 + POST /cgi-bin/wxpush? msg_signature=e3647471e395139e2308c1fa963f2d648a00b90e×tamp=1409659813&nonce=1372623149 HTTP/1.1 + Host: qy.weixin.qq.com + + { + "tousername": "wx5823bf96d3bd56c7", + "encrypt": "cjhLUX7UU4yCSelv1vz7T0zT8huF51bAMVWriNvO1FMegHrQZNrtvRxbwf0fUPsFvwqR0U0fgiJNEA5Y30F2MoI2S7vv3EjVQ68C0cjw9frBoUE2Hj0BvFp9h3u6Vbsg4lc1C8AtHdaN8orKuNKkLRLuYEL52R1J3v8olJGZRLnRdVKIivixmX/eQpzgeExtp20jI1HxRP1AAZ6xZoILdqDPO549LO4WeG+685JRUTdiwcY5fjZlqeMxuT4PpMn1X9OWsS7NRj06Wa5E3Tvg4twjWp39KPfOdRte6P1T4JU=", + "agentid": 218 + } + + 浼佷笟鏀跺埌post璇锋眰涔嬪悗搴旇 1.瑙f瀽鍑簎rl涓婄殑鍙傛暟锛屽寘鎷秷鎭綋绛惧悕(msg_signature)锛屾椂闂存埑(timestamp)浠ュ強闅忔満鏁板瓧涓(nonce) + 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬с 3.灏唒ost璇锋眰鐨勬暟鎹繘琛宩son瑙f瀽锛屽苟灏"encrypt"鏍囩鐨勫唴瀹硅繘琛岃В瀵嗭紝瑙e瘑鍑烘潵鐨勬槑鏂囧嵆鏄敤鎴峰洖澶嶆秷鎭殑鏄庢枃锛屾槑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 + 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟DecryptMsg鏉ュ疄鐜般 + ''' + + sReqNonce = "1372623149" + sReqTimeStamp = "1409659813" + + sReqMsgSig = "e3647471e395139e2308c1fa963f2d648a00b90e" + sReqData = '{ "tousername": "wx5823bf96d3bd56c7", "encrypt": "cjhLUX7UU4yCSelv1vz7T0zT8huF51bAMVWriNvO1FMegHrQZNrtvRxbwf0fUPsFvwqR0U0fgiJNEA5Y30F2MoI2S7vv3EjVQ68C0cjw9frBoUE2Hj0BvFp9h3u6Vbsg4lc1C8AtHdaN8orKuNKkLRLuYEL52R1J3v8olJGZRLnRdVKIivixmX/eQpzgeExtp20jI1HxRP1AAZ6xZoILdqDPO549LO4WeG+685JRUTdiwcY5fjZlqeMxuT4PpMn1X9OWsS7NRj06Wa5E3Tvg4twjWp39KPfOdRte6P1T4JU=", "agentid": 218 }'; + ret,sMsg=wxcpt.DecryptMsg( sReqData, sReqMsgSig, sReqTimeStamp, sReqNonce) + if( ret!=0 ): + print("ERR: DecryptMsg ret: " + str(ret)) + sys.exit(1) + else: + print(sMsg) + # 瑙e瘑鎴愬姛锛宻Msg鍗充负json鏍煎紡鐨勬槑鏂 + # TODO: 瀵规槑鏂囩殑澶勭悊 + # ... + # ... + + print("==============================") + + ''' + ------------浣跨敤绀轰緥涓夛細浼佷笟鍥炲鐢ㄦ埛娑堟伅鐨勫姞瀵--------------- + 浼佷笟琚姩鍥炲鐢ㄦ埛鐨勬秷鎭篃闇瑕佽繘琛屽姞瀵嗭紝骞朵笖鎷兼帴鎴愬瘑鏂囨牸寮忕殑json涓层 + 鍋囪浼佷笟闇瑕佸洖澶嶇敤鎴风殑鏄庢枃濡備笅锛 + + { + "ToUserName": "mycreate", + "FromUserName":"wx5823bf96d3bd56c7", + "CreateTime": 1348831860, + "MsgType": "text", + "Content": "this is a test", + "MsgId": 1234567890123456, + "AgentID": 128 + } + + 涓轰簡灏嗘娈垫槑鏂囧洖澶嶇粰鐢ㄦ埛锛屼紒涓氬簲锛 1.鑷繁鐢熸垚鏃堕棿鏃堕棿鎴(timestamp),闅忔満鏁板瓧涓(nonce)浠ヤ究鐢熸垚娑堟伅浣撶鍚嶏紝涔熷彲浠ョ洿鎺ョ敤浠庝紒涓氬井淇$殑post url涓婅В鏋愬嚭鐨勫搴斿笺 + 2.灏嗘槑鏂囧姞瀵嗗緱鍒板瘑鏂囥 3.鐢ㄥ瘑鏂囷紝姝ラ1鐢熸垚鐨則imestamp,nonce鍜屼紒涓氬湪浼佷笟寰俊璁惧畾鐨則oken鐢熸垚娑堟伅浣撶鍚嶃 4.灏嗗瘑鏂囷紝娑堟伅浣撶鍚嶏紝鏃堕棿鎴筹紝闅忔満鏁板瓧涓叉嫾鎺ユ垚json鏍煎紡鐨勫瓧绗︿覆锛屽彂閫佺粰浼佷笟鍙枫 + 浠ヤ笂2锛3锛4姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟EncryptMsg鏉ュ疄鐜般 + ''' + #sRespData = ' { "ToUserName": "mycreate", "FromUserName":"wx5823bf96d3bd56c7", "CreateTime": 1348831860, "MsgType": "text", "Content": "this is a test", "MsgId": 1234567890123456, "AgentID": 128 }'; + sRespData = '{ "ToUserName": "wx5823bf96d3bd56c7", "FromUserName": :mycreate", "CreateTime": 1409659813, "MsgType": "text", "Content": "hello", "MsgId": 4561255354251345929, "AgentID": 218}' + ret,sEncryptMsg=wxcpt.EncryptMsg(sRespData, sReqNonce, sReqTimeStamp) + if( ret!=0 ): + print("ERR: EncryptMsg ret: " + str(ret)) + sys.exit(1) + else: + print(sEncryptMsg) + #ret == 0 鍔犲瘑鎴愬姛锛屼紒涓氶渶瑕佸皢sEncryptMsg杩斿洖缁欎紒涓氬彿 + print("==============================") diff --git a/callback_json_python3/WXBizJsonMsgCrypt.py b/callback_json_python3/WXBizJsonMsgCrypt.py new file mode 100644 index 0000000..b3039fb --- /dev/null +++ b/callback_json_python3/WXBizJsonMsgCrypt.py @@ -0,0 +1,287 @@ +#!/usr/bin/env python +#-*- encoding:utf-8 -*- + +""" 瀵逛紒涓氬井淇″彂閫佺粰浼佷笟鍚庡彴鐨勬秷鎭姞瑙e瘑绀轰緥浠g爜. +@copyright: Copyright (c) 1998-2020 Tencent Inc. + +""" +# ------------------------------------------------------------------------ + +import base64 +import string +import random +import hashlib +import time +import struct +from Crypto.Cipher import AES +import sys +import socket +import json + +import ierror + +""" +鍏充簬Crypto.Cipher妯″潡锛孖mportError: No module named 'Crypto'瑙e喅鏂规 +璇峰埌瀹樻柟缃戠珯 https://www.dlitz.net/software/pycrypto/ 涓嬭浇pycrypto銆 +涓嬭浇鍚庯紝鎸夌収README涓殑鈥淚nstallation鈥濆皬鑺傜殑鎻愮ず杩涜pycrypto瀹夎銆 +""" +class FormatException(Exception): + pass + +def throw_exception(message, exception_class=FormatException): + """my define raise exception function""" + raise exception_class(message) + +class SHA1: + """璁$畻浼佷笟寰俊鐨勬秷鎭鍚嶆帴鍙""" + + def getSHA1(self, token, timestamp, nonce, encrypt): + """鐢⊿HA1绠楁硶鐢熸垚瀹夊叏绛惧悕 + @param token: 绁ㄦ嵁 + @param timestamp: 鏃堕棿鎴 + @param encrypt: 瀵嗘枃 + @param nonce: 闅忔満瀛楃涓 + @return: 瀹夊叏绛惧悕 + """ + try: + # 纭繚鎵鏈夎緭鍏ラ兘鏄瓧绗︿覆绫诲瀷 + if isinstance(encrypt, bytes): + encrypt = encrypt.decode('utf-8') + + sortlist = [str(token), str(timestamp), str(nonce), str(encrypt)] + sortlist.sort() + sha = hashlib.sha1() + sha.update("".join(sortlist).encode('utf-8')) + return ierror.WXBizMsgCrypt_OK, sha.hexdigest() + + except Exception as e: + print(e) + return ierror.WXBizMsgCrypt_ComputeSignature_Error, None + + +class JsonParse: + """鎻愪緵鎻愬彇娑堟伅鏍煎紡涓殑瀵嗘枃鍙婄敓鎴愬洖澶嶆秷鎭牸寮忕殑鎺ュ彛""" + + # json娑堟伅妯℃澘 + AES_TEXT_RESPONSE_TEMPLATE = '''{ + "encrypt": "%(msg_encrypt)s", + "msgsignature": "%(msg_signaturet)s", + "timestamp": "%(timestamp)s", + "nonce": "%(nonce)s" + }''' + + def extract(self, jsontext): + """鎻愬彇鍑簀son鏁版嵁鍖呬腑鐨勫姞瀵嗘秷鎭 + @param jsontext: 寰呮彁鍙栫殑json瀛楃涓 + @return: 鎻愬彇鍑虹殑鍔犲瘑娑堟伅瀛楃涓 + """ + try: + json_dict = json.loads(jsontext) + return ierror.WXBizMsgCrypt_OK, json_dict['encrypt'] + except Exception as e: + print(e) + return ierror.WXBizMsgCrypt_ParseJson_Error, None + def generate(self, encrypt, signature, timestamp, nonce): + """鐢熸垚json娑堟伅 + @param encrypt: 鍔犲瘑鍚庣殑娑堟伅瀵嗘枃 + @param signature: 瀹夊叏绛惧悕 + @param timestamp: 鏃堕棿鎴 + @param nonce: 闅忔満瀛楃涓 + @return: 鐢熸垚鐨刯son瀛楃涓 + """ + resp_dict = { + 'msg_encrypt' : encrypt, + 'msg_signaturet': signature, + 'timestamp' : timestamp, + 'nonce' : nonce, + } + resp_json = self.AES_TEXT_RESPONSE_TEMPLATE % resp_dict + return resp_json + + +class PKCS7Encoder(): + """鎻愪緵鍩轰簬PKCS7绠楁硶鐨勫姞瑙e瘑鎺ュ彛""" + + block_size = 32 + def encode(self, text): + """ 瀵归渶瑕佸姞瀵嗙殑鏄庢枃杩涜濉厖琛ヤ綅 + @param text: 闇瑕佽繘琛屽~鍏呰ˉ浣嶆搷浣滅殑鏄庢枃(bytes绫诲瀷) + @return: 琛ラ綈鏄庢枃瀛楃涓(bytes绫诲瀷) + """ + text_length = len(text) + # 璁$畻闇瑕佸~鍏呯殑浣嶆暟 + amount_to_pad = self.block_size - (text_length % self.block_size) + if amount_to_pad == 0: + amount_to_pad = self.block_size + # 鑾峰緱琛ヤ綅鎵鐢ㄧ殑瀛楃 + pad = bytes([amount_to_pad]) + # 纭繚text鏄痓ytes绫诲瀷 + if isinstance(text, str): + text = text.encode('utf-8') + return text + pad * amount_to_pad + + def decode(self, decrypted): + """鍒犻櫎瑙e瘑鍚庢槑鏂囩殑琛ヤ綅瀛楃 + @param decrypted: 瑙e瘑鍚庣殑鏄庢枃 + @return: 鍒犻櫎琛ヤ綅瀛楃鍚庣殑鏄庢枃 + """ + pad = ord(decrypted[-1]) + if pad<1 or pad >32: + pad = 0 + return decrypted[:-pad] + + +class Prpcrypt(object): + """鎻愪緵鎺ユ敹鍜屾帹閫佺粰浼佷笟寰俊娑堟伅鐨勫姞瑙e瘑鎺ュ彛""" + + def __init__(self,key): + + #self.key = base64.b64decode(key+"=") + self.key = key + # 璁剧疆鍔犺В瀵嗘ā寮忎负AES鐨凜BC妯″紡 + self.mode = AES.MODE_CBC + + + def encrypt(self,text,receiveid): + """瀵规槑鏂囪繘琛屽姞瀵 + @param text: 闇瑕佸姞瀵嗙殑鏄庢枃 + @return: 鍔犲瘑寰楀埌鐨勫瓧绗︿覆 + """ + # 灏唗ext鍜宺eceiveid杞崲涓篵ytes绫诲瀷 + text = text.encode('utf-8') + receiveid = receiveid.encode('utf-8') + + # 16浣嶉殢鏈哄瓧绗︿覆娣诲姞鍒版槑鏂囧紑澶 + random_str = self.get_random_str().encode('utf-8') + text = random_str + struct.pack("I",socket.htonl(len(text))) + text + receiveid + + # 浣跨敤鑷畾涔夌殑濉厖鏂瑰紡瀵规槑鏂囪繘琛岃ˉ浣嶅~鍏 + pkcs7 = PKCS7Encoder() + text = pkcs7.encode(text) + + # 鍔犲瘑 + cryptor = AES.new(self.key,self.mode,self.key[:16]) + try: + ciphertext = cryptor.encrypt(text) + # 浣跨敤BASE64瀵瑰姞瀵嗗悗鐨勫瓧绗︿覆杩涜缂栫爜 + return ierror.WXBizMsgCrypt_OK, base64.b64encode(ciphertext) + except Exception as e: + print(e) + return ierror.WXBizMsgCrypt_EncryptAES_Error,None + + def decrypt(self,text,receiveid): + """瀵硅В瀵嗗悗鐨勬槑鏂囪繘琛岃ˉ浣嶅垹闄 + @param text: 瀵嗘枃 + @return: 鍒犻櫎濉厖琛ヤ綅鍚庣殑鏄庢枃 + """ + try: + cryptor = AES.new(self.key,self.mode,self.key[:16]) + # 浣跨敤BASE64瀵瑰瘑鏂囪繘琛岃В鐮侊紝鐒跺悗AES-CBC瑙e瘑 + plain_text = cryptor.decrypt(base64.b64decode(text)) + except Exception as e: + print(e) + return ierror.WXBizMsgCrypt_DecryptAES_Error,None + try: + pad = plain_text[-1] + # 鍘绘帀琛ヤ綅瀛楃涓 + #pkcs7 = PKCS7Encoder() + #plain_text = pkcs7.encode(plain_text) + # 鍘婚櫎16浣嶉殢鏈哄瓧绗︿覆 + content = plain_text[16:-pad] + json_len = socket.ntohl(struct.unpack("I",content[ : 4])[0]) + json_content = content[4 : json_len+4].decode('utf-8') + from_receiveid = content[json_len+4:].decode('utf-8') + except Exception as e: + print(e) + return ierror.WXBizMsgCrypt_IllegalBuffer,None + if from_receiveid != receiveid: + print("receiveid not match", receiveid, from_receiveid) + return ierror.WXBizMsgCrypt_ValidateCorpid_Error,None + return 0,json_content + + def get_random_str(self): + """ 闅忔満鐢熸垚16浣嶅瓧绗︿覆 + @return: 16浣嶅瓧绗︿覆 + """ + rule = string.ascii_letters + string.digits + str = random.sample(rule, 16) + return "".join(str) + +class WXBizJsonMsgCrypt(object): + #鏋勯犲嚱鏁 + def __init__(self,sToken,sEncodingAESKey,sReceiveId): + try: + self.key = base64.b64decode(sEncodingAESKey+"=") + assert len(self.key) == 32 + except: + throw_exception("[error]: EncodingAESKey unvalid !", FormatException) + # return ierror.WXBizMsgCrypt_IllegalAesKey,None + self.m_sToken = sToken + self.m_sReceiveId = sReceiveId + + #楠岃瘉URL + #@param sMsgSignature: 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature + #@param sTimeStamp: 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp + #@param sNonce: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once + #@param sEchoStr: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨別chostr + #@param sReplyEchoStr: 瑙e瘑涔嬪悗鐨別chostr锛屽綋return杩斿洖0鏃舵湁鏁 + #@return锛氭垚鍔0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 + + def VerifyURL(self, sMsgSignature, sTimeStamp, sNonce, sEchoStr): + sha1 = SHA1() + ret,signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, sEchoStr) + if ret != 0: + return ret, None + if not signature == sMsgSignature: + return ierror.WXBizMsgCrypt_ValidateSignature_Error, None + pc = Prpcrypt(self.key) + ret,sReplyEchoStr = pc.decrypt(sEchoStr,self.m_sReceiveId) + return ret,sReplyEchoStr + + def EncryptMsg(self, sReplyMsg, sNonce, timestamp = None): + #灏嗕紒涓氬洖澶嶇敤鎴风殑娑堟伅鍔犲瘑鎵撳寘 + #@param sReplyMsg: 浼佷笟鍙峰緟鍥炲鐢ㄦ埛鐨勬秷鎭紝json鏍煎紡鐨勫瓧绗︿覆 + #@param sTimeStamp: 鏃堕棿鎴筹紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨則imestamp,濡備负None鍒欒嚜鍔ㄧ敤褰撳墠鏃堕棿 + #@param sNonce: 闅忔満涓诧紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨刵once + #sEncryptMsg: 鍔犲瘑鍚庣殑鍙互鐩存帴鍥炲鐢ㄦ埛鐨勫瘑鏂囷紝鍖呮嫭msg_signature, timestamp, nonce, encrypt鐨刯son鏍煎紡鐨勫瓧绗︿覆, + #return锛氭垚鍔0锛宻EncryptMsg,澶辫触杩斿洖瀵瑰簲鐨勯敊璇爜None + pc = Prpcrypt(self.key) + ret,encrypt = pc.encrypt(sReplyMsg, self.m_sReceiveId) + if ret != 0: + return ret,None + if timestamp is None: + timestamp = str(int(time.time())) + # 鐢熸垚瀹夊叏绛惧悕 + sha1 = SHA1() + ret,signature = sha1.getSHA1(self.m_sToken, timestamp, sNonce, encrypt) + if ret != 0: + return ret,None + jsonParse = JsonParse() + return ret,jsonParse.generate(encrypt, signature, timestamp, sNonce) + + def DecryptMsg(self, sPostData, sMsgSignature, sTimeStamp, sNonce): + # 妫楠屾秷鎭殑鐪熷疄鎬э紝骞朵笖鑾峰彇瑙e瘑鍚庣殑鏄庢枃 + # @param sMsgSignature: 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature + # @param sTimeStamp: 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp + # @param sNonce: 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once + # @param sPostData: 瀵嗘枃锛屽搴擯OST璇锋眰鐨勬暟鎹 + # json_content: 瑙e瘑鍚庣殑鍘熸枃锛屽綋return杩斿洖0鏃舵湁鏁 + # @return: 鎴愬姛0锛屽け璐ヨ繑鍥炲搴旂殑閿欒鐮 + # 楠岃瘉瀹夊叏绛惧悕 + jsonParse = JsonParse() + ret,encrypt = jsonParse.extract(sPostData) + if ret != 0: + return ret, None + sha1 = SHA1() + ret,signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, encrypt) + if ret != 0: + return ret, None + if not signature == sMsgSignature: + print("signature not match") + print(signature) + return ierror.WXBizMsgCrypt_ValidateSignature_Error, None + pc = Prpcrypt(self.key) + ret,json_content = pc.decrypt(encrypt,self.m_sReceiveId) + return ret,json_content + + diff --git a/callback_json_python3/ierror.py b/callback_json_python3/ierror.py new file mode 100644 index 0000000..51c02c3 --- /dev/null +++ b/callback_json_python3/ierror.py @@ -0,0 +1,20 @@ +#!/usr/bin/env python +# -*- coding: utf-8 -*- +######################################################################### +# Author: jonyqin +# Created Time: Thu 11 Sep 2014 01:53:58 PM CST +# File Name: ierror.py +# Description:瀹氫箟閿欒鐮佸惈涔 +######################################################################### +WXBizMsgCrypt_OK = 0 +WXBizMsgCrypt_ValidateSignature_Error = -40001 +WXBizMsgCrypt_ParseJson_Error = -40002 +WXBizMsgCrypt_ComputeSignature_Error = -40003 +WXBizMsgCrypt_IllegalAesKey = -40004 +WXBizMsgCrypt_ValidateCorpid_Error = -40005 +WXBizMsgCrypt_EncryptAES_Error = -40006 +WXBizMsgCrypt_DecryptAES_Error = -40007 +WXBizMsgCrypt_IllegalBuffer = -40008 +WXBizMsgCrypt_EncodeBase64_Error = -40009 +WXBizMsgCrypt_DecodeBase64_Error = -40010 +WXBizMsgCrypt_GenReturnJson_Error = -40011 diff --git a/callback_python3/Readme.txt b/callback_python3/Readme.txt new file mode 100644 index 0000000..7b8dd0c --- /dev/null +++ b/callback_python3/Readme.txt @@ -0,0 +1,5 @@ +娉ㄦ剰浜嬮」 +1.WXBizMsgCrypt.py鏂囦欢灏佽浜哤XBizMsgCrypt鎺ュ彛绫(Python3浠ュ強浠ヤ笂鐗堟湰浣跨敤 WXBizMsgCrypt3.py)锛屾彁渚涗簡鐢ㄦ埛鎺ュ叆浼佷笟寰俊鐨勪笁涓帴鍙o紝Sample.py鏂囦欢鎻愪緵浜嗗浣曚娇鐢ㄨ繖涓変釜鎺ュ彛鐨勭ず渚嬶紝ierror.py鎻愪緵浜嗛敊璇爜銆 +2.WXBizMsgCrypt灏佽浜哣erifyURL, DecryptMsg, EncryptMsg涓変釜鎺ュ彛锛屽垎鍒敤浜庡紑鍙戣呴獙璇佸洖璋僽rl锛屾敹鍒扮敤鎴峰洖澶嶆秷鎭殑瑙e瘑浠ュ強寮鍙戣呭洖澶嶆秷鎭殑鍔犲瘑杩囩▼銆備娇鐢ㄦ柟娉曞彲浠ュ弬鑰僑ample.py鏂囦欢銆 +3.鍔犺В瀵嗗崗璁鍙傝冧紒涓氬井淇″畼鏂规枃妗c +4.鏈唬鐮佺敤鍒颁簡pycrypto绗笁鏂瑰簱锛岃寮鍙戣呰嚜琛屽畨瑁呮搴撳啀浣跨敤銆 diff --git a/callback_python3/Sample.py b/callback_python3/Sample.py new file mode 100644 index 0000000..68b1f9d --- /dev/null +++ b/callback_python3/Sample.py @@ -0,0 +1,109 @@ +#!/usr/bin/env python +# -*- coding: utf-8 -*- +######################################################################### +# Author: jonyqin +# Created Time: Thu 11 Sep 2014 03:55:41 PM CST +# File Name: Sample.py +# Description: WXBizMsgCrypt 浣跨敤demo鏂囦欢 +######################################################################### +from WXBizMsgCrypt import WXBizMsgCrypt +import xml.etree.cElementTree as ET +import sys + +if __name__ == "__main__": + #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 + sToken = "hJqcu3uJ9Tn2gXPmxx2w9kkCkCE2EPYo" + sEncodingAESKey = "6qkdMrq68nTKduznJYO1A37W2oEgpkMUvkttRToqhUt" + sCorpID = "ww1436e0e65a779aee" + ''' + ------------浣跨敤绀轰緥涓锛氶獙璇佸洖璋僓RL--------------- + *浼佷笟寮鍚洖璋冩ā寮忔椂锛屼紒涓氬彿浼氬悜楠岃瘉url鍙戦佷竴涓猤et璇锋眰 + 鍋囪鐐瑰嚮楠岃瘉鏃讹紝浼佷笟鏀跺埌绫讳技璇锋眰锛 + * GET /cgi-bin/wxpush?msg_signature=5c45ff5e21c57e6ad56bac8758b79b1d9ac89fd3×tamp=1409659589&nonce=263014780&echostr=P9nAzCzyDtyTWESHep1vC5X9xho%2FqYX3Zpb4yKa9SKld1DsH3Iyt3tP3zNdtp%2B4RPcs8TgAE7OaBO%2BFZXvnaqQ%3D%3D + * HTTP/1.1 Host: qy.weixin.qq.com + + 鎺ユ敹鍒拌璇锋眰鏃讹紝浼佷笟搴 1.瑙f瀽鍑篏et璇锋眰鐨勫弬鏁帮紝鍖呮嫭娑堟伅浣撶鍚(msg_signature)锛屾椂闂存埑(timestamp)锛岄殢鏈烘暟瀛椾覆(nonce)浠ュ強浼佷笟寰俊鎺ㄩ佽繃鏉ョ殑闅忔満鍔犲瘑瀛楃涓(echostr), + 杩欎竴姝ユ敞鎰忎綔URL瑙g爜銆 + 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬 + 3. 瑙e瘑鍑篹chostr鍘熸枃锛屽皢鍘熸枃褰撲綔Get璇锋眰鐨剅esponse锛岃繑鍥炵粰浼佷笟寰俊 + 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟VerifyURL鏉ュ疄鐜般 + ''' + wxcpt=WXBizMsgCrypt(sToken,sEncodingAESKey,sCorpID) + #sVerifyMsgSig=HttpUtils.ParseUrl("msg_signature") + #ret = wxcpt.VerifyAESKey() + #print ret + sVerifyMsgSig="012bc692d0a58dd4b10f8dfe5c4ac00ae211ebeb" + #sVerifyTimeStamp=HttpUtils.ParseUrl("timestamp") + sVerifyTimeStamp="1476416373" + #sVerifyNonce=HttpUitls.ParseUrl("nonce") + sVerifyNonce="47744683" + #sVerifyEchoStr=HttpUtils.ParseUrl("echostr") + sVerifyEchoStr="fsi1xnbH4yQh0+PJxcOdhhK6TDXkjMyhEPA7xB2TGz6b+g7xyAbEkRxN/3cNXW9qdqjnoVzEtpbhnFyq6SVHyA==" + ret,sEchoStr=wxcpt.VerifyURL(sVerifyMsgSig, sVerifyTimeStamp,sVerifyNonce,sVerifyEchoStr) + if(ret!=0): + print("ERR: VerifyURL ret: " + str(ret)) + sys.exit(1) + #楠岃瘉URL鎴愬姛锛屽皢sEchoStr杩斿洖缁欎紒涓氬彿 + #HttpUtils.SetResponse(sEchoStr) + + ''' + ------------浣跨敤绀轰緥浜岋細瀵圭敤鎴峰洖澶嶇殑娑堟伅瑙e瘑--------------- + 鐢ㄦ埛鍥炲娑堟伅鎴栬呯偣鍑讳簨浠跺搷搴旀椂锛屼紒涓氫細鏀跺埌鍥炶皟娑堟伅锛屾娑堟伅鏄粡杩囦紒涓氬井淇″姞瀵嗕箣鍚庣殑瀵嗘枃浠ost褰㈠紡鍙戦佺粰浼佷笟锛屽瘑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 + 鍋囪浼佷笟鏀跺埌浼佷笟寰俊鐨勫洖璋冩秷鎭涓嬶細 + POST /cgi-bin/wxpush? msg_signature=477715d11cdb4164915debcba66cb864d751f3e6×tamp=1409659813&nonce=1372623149 HTTP/1.1 + Host: qy.weixin.qq.com + Content-Length: 613 + + + + + 浼佷笟鏀跺埌post璇锋眰涔嬪悗搴旇 1.瑙f瀽鍑簎rl涓婄殑鍙傛暟锛屽寘鎷秷鎭綋绛惧悕(msg_signature)锛屾椂闂存埑(timestamp)浠ュ強闅忔満鏁板瓧涓(nonce) + 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬с 3.灏唒ost璇锋眰鐨勬暟鎹繘琛寈ml瑙f瀽锛屽苟灏鏍囩鐨勫唴瀹硅繘琛岃В瀵嗭紝瑙e瘑鍑烘潵鐨勬槑鏂囧嵆鏄敤鎴峰洖澶嶆秷鎭殑鏄庢枃锛屾槑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 + 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟DecryptMsg鏉ュ疄鐜般 + ''' + # sReqMsgSig = HttpUtils.ParseUrl("msg_signature") + sReqMsgSig = "0c3914025cb4b4d68103f6bfc8db550f79dcf48e" + sReqTimeStamp = "1476422779" + sReqNonce = "1597212914" + sReqData = "\n\n\n" + ret,sMsg=wxcpt.DecryptMsg( sReqData, sReqMsgSig, sReqTimeStamp, sReqNonce) + print(ret,sMsg) + if( ret!=0 ): + print("ERR: DecryptMsg ret: " + str(ret)) + sys.exit(1) + # 瑙e瘑鎴愬姛锛宻Msg鍗充负xml鏍煎紡鐨勬槑鏂 + # TODO: 瀵规槑鏂囩殑澶勭悊 + # For example: + xml_tree = ET.fromstring(sMsg) + content = xml_tree.find("Content").text + print(content) + # ... + # ... + + ''' + ------------浣跨敤绀轰緥涓夛細浼佷笟鍥炲鐢ㄦ埛娑堟伅鐨勫姞瀵--------------- + 浼佷笟琚姩鍥炲鐢ㄦ埛鐨勬秷鎭篃闇瑕佽繘琛屽姞瀵嗭紝骞朵笖鎷兼帴鎴愬瘑鏂囨牸寮忕殑xml涓层 + 鍋囪浼佷笟闇瑕佸洖澶嶇敤鎴风殑鏄庢枃濡備笅锛 + + + + 1348831860 + + + 1234567890123456 + 128 + + + 涓轰簡灏嗘娈垫槑鏂囧洖澶嶇粰鐢ㄦ埛锛屼紒涓氬簲锛 1.鑷繁鐢熸垚鏃堕棿鏃堕棿鎴(timestamp),闅忔満鏁板瓧涓(nonce)浠ヤ究鐢熸垚娑堟伅浣撶鍚嶏紝涔熷彲浠ョ洿鎺ョ敤浠庝紒涓氬井淇$殑post url涓婅В鏋愬嚭鐨勫搴斿笺 + 2.灏嗘槑鏂囧姞瀵嗗緱鍒板瘑鏂囥 3.鐢ㄥ瘑鏂囷紝姝ラ1鐢熸垚鐨則imestamp,nonce鍜屼紒涓氬湪浼佷笟寰俊璁惧畾鐨則oken鐢熸垚娑堟伅浣撶鍚嶃 4.灏嗗瘑鏂囷紝娑堟伅浣撶鍚嶏紝鏃堕棿鎴筹紝闅忔満鏁板瓧涓叉嫾鎺ユ垚xml鏍煎紡鐨勫瓧绗︿覆锛屽彂閫佺粰浼佷笟鍙枫 + 浠ヤ笂2锛3锛4姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟EncryptMsg鏉ュ疄鐜般 + ''' + sRespData = "ww1436e0e65a779aeeChenJiaShun1476422779text浣犲ソ14564537201000002" + ret,sEncryptMsg=wxcpt.EncryptMsg(sRespData, sReqNonce, sReqTimeStamp) + if( ret!=0 ): + print("ERR: EncryptMsg ret: " + str(ret)) + sys.exit(1) + print("sEncryptMsg: " + sEncryptMsg) + #ret == 0 鍔犲瘑鎴愬姛锛屼紒涓氶渶瑕佸皢sEncryptMsg杩斿洖缁欎紒涓氬彿 + #TODO: + #HttpUitls.SetResponse(sEncryptMsg) diff --git a/callback/WXBizMsgCrypt3.py b/callback_python3/WXBizMsgCrypt.py similarity index 100% rename from callback/WXBizMsgCrypt3.py rename to callback_python3/WXBizMsgCrypt.py diff --git a/callback_python3/ierror.py b/callback_python3/ierror.py new file mode 100644 index 0000000..6678fec --- /dev/null +++ b/callback_python3/ierror.py @@ -0,0 +1,20 @@ +#!/usr/bin/env python +# -*- coding: utf-8 -*- +######################################################################### +# Author: jonyqin +# Created Time: Thu 11 Sep 2014 01:53:58 PM CST +# File Name: ierror.py +# Description:瀹氫箟閿欒鐮佸惈涔 +######################################################################### +WXBizMsgCrypt_OK = 0 +WXBizMsgCrypt_ValidateSignature_Error = -40001 +WXBizMsgCrypt_ParseXml_Error = -40002 +WXBizMsgCrypt_ComputeSignature_Error = -40003 +WXBizMsgCrypt_IllegalAesKey = -40004 +WXBizMsgCrypt_ValidateCorpid_Error = -40005 +WXBizMsgCrypt_EncryptAES_Error = -40006 +WXBizMsgCrypt_DecryptAES_Error = -40007 +WXBizMsgCrypt_IllegalBuffer = -40008 +WXBizMsgCrypt_EncodeBase64_Error = -40009 +WXBizMsgCrypt_DecodeBase64_Error = -40010 +WXBizMsgCrypt_GenReturnXml_Error = -40011 From 00871f85023e10a8002f79ebb742272eb1e0ffa7 Mon Sep 17 00:00:00 2001 From: sbzhu Date: Thu, 26 Jun 2025 13:17:18 +0800 Subject: [PATCH 16/23] Update README.md --- README.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/README.md b/README.md index 140e9fe..069005c 100644 --- a/README.md +++ b/README.md @@ -16,10 +16,10 @@ golang : https://github.com/doubliekill/EnterpriseWechatSDK 1006401052yh@gmail. 鈹偮犅 鈹溾攢鈹 examples // API鎺ュ彛鐨勬祴璇曠敤渚 鈹偮犅 鈹溾攢鈹 README.md 鈹偮犅 鈹斺攢鈹 src // API鎺ュ彛鐨勫叧閿昏緫 -鈹溾攢鈹 callback // 鍔犺В瀵嗗簱(python2, xml鏍煎紡) -鈹溾攢鈹 callback_json // 鍔犺В瀵嗗簱(Python2, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜) -鈹溾攢鈹 callback_json_python3 // 鍔犺В瀵嗗簱(Python3, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜) -鈹溾攢鈹 callback_python3 // 鍔犺В瀵嗗簱(python2, xml鏍煎紡) +鈹溾攢鈹 callback // 鍔犺В瀵嗗簱(python2, xml鏍煎紡) +鈹溾攢鈹 callback_json // 鍔犺В瀵嗗簱(Python2, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜) +鈹溾攢鈹 callback_json_python3 // 鍔犺В瀵嗗簱(Python3, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜) +鈹溾攢鈹 callback_python3 // 鍔犺В瀵嗗簱(python2, xml鏍煎紡) 鈹溾攢鈹 conf.py 鈹斺攢鈹 README.md From eee725a65456cf4cf755ebe35c777434b59ec94f Mon Sep 17 00:00:00 2001 From: sbzhu Date: Thu, 26 Jun 2025 13:17:53 +0800 Subject: [PATCH 17/23] Update README.md --- README.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/README.md b/README.md index 069005c..46eb88b 100644 --- a/README.md +++ b/README.md @@ -16,10 +16,10 @@ golang : https://github.com/doubliekill/EnterpriseWechatSDK 1006401052yh@gmail. 鈹偮犅 鈹溾攢鈹 examples // API鎺ュ彛鐨勬祴璇曠敤渚 鈹偮犅 鈹溾攢鈹 README.md 鈹偮犅 鈹斺攢鈹 src // API鎺ュ彛鐨勫叧閿昏緫 -鈹溾攢鈹 callback // 鍔犺В瀵嗗簱(python2, xml鏍煎紡) -鈹溾攢鈹 callback_json // 鍔犺В瀵嗗簱(Python2, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜) -鈹溾攢鈹 callback_json_python3 // 鍔犺В瀵嗗簱(Python3, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜) -鈹溾攢鈹 callback_python3 // 鍔犺В瀵嗗簱(python2, xml鏍煎紡) +鈹溾攢鈹 callback // 鍔犺В瀵嗗簱,python2, xml鏍煎紡) +鈹溾攢鈹 callback_json // 鍔犺В瀵嗗簱,Python2, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜 +鈹溾攢鈹 callback_json_python3 // 鍔犺В瀵嗗簱,Python3, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜 +鈹溾攢鈹 callback_python3 // 鍔犺В瀵嗗簱,python2, xml鏍煎紡 鈹溾攢鈹 conf.py 鈹斺攢鈹 README.md From 0af1ebe214d2f538e88cbebedc75159721d9b55c Mon Sep 17 00:00:00 2001 From: sbzhu Date: Thu, 26 Jun 2025 13:18:21 +0800 Subject: [PATCH 18/23] Update README.md --- README.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/README.md b/README.md index 46eb88b..6d3cca3 100644 --- a/README.md +++ b/README.md @@ -17,9 +17,13 @@ golang : https://github.com/doubliekill/EnterpriseWechatSDK 1006401052yh@gmail. 鈹偮犅 鈹溾攢鈹 README.md 鈹偮犅 鈹斺攢鈹 src // API鎺ュ彛鐨勫叧閿昏緫 鈹溾攢鈹 callback // 鍔犺В瀵嗗簱,python2, xml鏍煎紡) + 鈹溾攢鈹 callback_json // 鍔犺В瀵嗗簱,Python2, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜 + 鈹溾攢鈹 callback_json_python3 // 鍔犺В瀵嗗簱,Python3, json鏍煎紡, 浠呴傜敤浜庝紒涓氭満鍣ㄤ汉/鏅鸿兘鏈哄櫒浜 + 鈹溾攢鈹 callback_python3 // 鍔犺В瀵嗗簱,python2, xml鏍煎紡 + 鈹溾攢鈹 conf.py 鈹斺攢鈹 README.md From f20767a3e091e43c20fbd351a6789e7fe846593d Mon Sep 17 00:00:00 2001 From: sbzhu Date: Wed, 16 Jul 2025 14:12:44 +0800 Subject: [PATCH 19/23] Add files via upload MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit 娴嬭瘯瑙e瘑 --- callback_json_python3/Sample.py | 15 +++++++++++++++ 1 file changed, 15 insertions(+) diff --git a/callback_json_python3/Sample.py b/callback_json_python3/Sample.py index 740de23..31e2618 100644 --- a/callback_json_python3/Sample.py +++ b/callback_json_python3/Sample.py @@ -8,6 +8,7 @@ ######################################################################### from WXBizJsonMsgCrypt import WXBizJsonMsgCrypt import sys +import json if __name__ == "__main__": #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 @@ -106,3 +107,17 @@ print(sEncryptMsg) #ret == 0 鍔犲瘑鎴愬姛锛屼紒涓氶渶瑕佸皢sEncryptMsg杩斿洖缁欎紒涓氬彿 print("==============================") + + ''' + 瀵逛笂闈㈠姞瀵嗙殑鍖呰繘琛岃В瀵 + ''' + sReqMsgSig = json.loads(sEncryptMsg)['msgsignature'] + sReqTimeStamp = json.loads(sEncryptMsg)['timestamp'] + sReqNonce = json.loads(sEncryptMsg)['nonce'] + + ret,sMsg=wxcpt.DecryptMsg( sEncryptMsg, sReqMsgSig, sReqTimeStamp, sReqNonce) + if( ret!=0 ): + print("ERR: DecryptMsg ret: " + str(ret)) + sys.exit(1) + else: + print(sMsg) From f6adf5510808755e5300af0881e9b97abe3e21ca Mon Sep 17 00:00:00 2001 From: sbzhu Date: Wed, 16 Jul 2025 14:13:31 +0800 Subject: [PATCH 20/23] =?UTF-8?q?=E6=B5=8B=E8=AF=95=E8=A7=A3=E5=AF=86?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- callback_python3/Sample.py | 232 ++++++++++++++++++++----------------- 1 file changed, 123 insertions(+), 109 deletions(-) diff --git a/callback_python3/Sample.py b/callback_python3/Sample.py index 68b1f9d..31e2618 100644 --- a/callback_python3/Sample.py +++ b/callback_python3/Sample.py @@ -1,109 +1,123 @@ -#!/usr/bin/env python -# -*- coding: utf-8 -*- -######################################################################### -# Author: jonyqin -# Created Time: Thu 11 Sep 2014 03:55:41 PM CST -# File Name: Sample.py -# Description: WXBizMsgCrypt 浣跨敤demo鏂囦欢 -######################################################################### -from WXBizMsgCrypt import WXBizMsgCrypt -import xml.etree.cElementTree as ET -import sys - -if __name__ == "__main__": - #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 - sToken = "hJqcu3uJ9Tn2gXPmxx2w9kkCkCE2EPYo" - sEncodingAESKey = "6qkdMrq68nTKduznJYO1A37W2oEgpkMUvkttRToqhUt" - sCorpID = "ww1436e0e65a779aee" - ''' - ------------浣跨敤绀轰緥涓锛氶獙璇佸洖璋僓RL--------------- - *浼佷笟寮鍚洖璋冩ā寮忔椂锛屼紒涓氬彿浼氬悜楠岃瘉url鍙戦佷竴涓猤et璇锋眰 - 鍋囪鐐瑰嚮楠岃瘉鏃讹紝浼佷笟鏀跺埌绫讳技璇锋眰锛 - * GET /cgi-bin/wxpush?msg_signature=5c45ff5e21c57e6ad56bac8758b79b1d9ac89fd3×tamp=1409659589&nonce=263014780&echostr=P9nAzCzyDtyTWESHep1vC5X9xho%2FqYX3Zpb4yKa9SKld1DsH3Iyt3tP3zNdtp%2B4RPcs8TgAE7OaBO%2BFZXvnaqQ%3D%3D - * HTTP/1.1 Host: qy.weixin.qq.com - - 鎺ユ敹鍒拌璇锋眰鏃讹紝浼佷笟搴 1.瑙f瀽鍑篏et璇锋眰鐨勫弬鏁帮紝鍖呮嫭娑堟伅浣撶鍚(msg_signature)锛屾椂闂存埑(timestamp)锛岄殢鏈烘暟瀛椾覆(nonce)浠ュ強浼佷笟寰俊鎺ㄩ佽繃鏉ョ殑闅忔満鍔犲瘑瀛楃涓(echostr), - 杩欎竴姝ユ敞鎰忎綔URL瑙g爜銆 - 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬 - 3. 瑙e瘑鍑篹chostr鍘熸枃锛屽皢鍘熸枃褰撲綔Get璇锋眰鐨剅esponse锛岃繑鍥炵粰浼佷笟寰俊 - 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟VerifyURL鏉ュ疄鐜般 - ''' - wxcpt=WXBizMsgCrypt(sToken,sEncodingAESKey,sCorpID) - #sVerifyMsgSig=HttpUtils.ParseUrl("msg_signature") - #ret = wxcpt.VerifyAESKey() - #print ret - sVerifyMsgSig="012bc692d0a58dd4b10f8dfe5c4ac00ae211ebeb" - #sVerifyTimeStamp=HttpUtils.ParseUrl("timestamp") - sVerifyTimeStamp="1476416373" - #sVerifyNonce=HttpUitls.ParseUrl("nonce") - sVerifyNonce="47744683" - #sVerifyEchoStr=HttpUtils.ParseUrl("echostr") - sVerifyEchoStr="fsi1xnbH4yQh0+PJxcOdhhK6TDXkjMyhEPA7xB2TGz6b+g7xyAbEkRxN/3cNXW9qdqjnoVzEtpbhnFyq6SVHyA==" - ret,sEchoStr=wxcpt.VerifyURL(sVerifyMsgSig, sVerifyTimeStamp,sVerifyNonce,sVerifyEchoStr) - if(ret!=0): - print("ERR: VerifyURL ret: " + str(ret)) - sys.exit(1) - #楠岃瘉URL鎴愬姛锛屽皢sEchoStr杩斿洖缁欎紒涓氬彿 - #HttpUtils.SetResponse(sEchoStr) - - ''' - ------------浣跨敤绀轰緥浜岋細瀵圭敤鎴峰洖澶嶇殑娑堟伅瑙e瘑--------------- - 鐢ㄦ埛鍥炲娑堟伅鎴栬呯偣鍑讳簨浠跺搷搴旀椂锛屼紒涓氫細鏀跺埌鍥炶皟娑堟伅锛屾娑堟伅鏄粡杩囦紒涓氬井淇″姞瀵嗕箣鍚庣殑瀵嗘枃浠ost褰㈠紡鍙戦佺粰浼佷笟锛屽瘑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 - 鍋囪浼佷笟鏀跺埌浼佷笟寰俊鐨勫洖璋冩秷鎭涓嬶細 - POST /cgi-bin/wxpush? msg_signature=477715d11cdb4164915debcba66cb864d751f3e6×tamp=1409659813&nonce=1372623149 HTTP/1.1 - Host: qy.weixin.qq.com - Content-Length: 613 - - - - - 浼佷笟鏀跺埌post璇锋眰涔嬪悗搴旇 1.瑙f瀽鍑簎rl涓婄殑鍙傛暟锛屽寘鎷秷鎭綋绛惧悕(msg_signature)锛屾椂闂存埑(timestamp)浠ュ強闅忔満鏁板瓧涓(nonce) - 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬с 3.灏唒ost璇锋眰鐨勬暟鎹繘琛寈ml瑙f瀽锛屽苟灏鏍囩鐨勫唴瀹硅繘琛岃В瀵嗭紝瑙e瘑鍑烘潵鐨勬槑鏂囧嵆鏄敤鎴峰洖澶嶆秷鎭殑鏄庢枃锛屾槑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 - 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟DecryptMsg鏉ュ疄鐜般 - ''' - # sReqMsgSig = HttpUtils.ParseUrl("msg_signature") - sReqMsgSig = "0c3914025cb4b4d68103f6bfc8db550f79dcf48e" - sReqTimeStamp = "1476422779" - sReqNonce = "1597212914" - sReqData = "\n\n\n" - ret,sMsg=wxcpt.DecryptMsg( sReqData, sReqMsgSig, sReqTimeStamp, sReqNonce) - print(ret,sMsg) - if( ret!=0 ): - print("ERR: DecryptMsg ret: " + str(ret)) - sys.exit(1) - # 瑙e瘑鎴愬姛锛宻Msg鍗充负xml鏍煎紡鐨勬槑鏂 - # TODO: 瀵规槑鏂囩殑澶勭悊 - # For example: - xml_tree = ET.fromstring(sMsg) - content = xml_tree.find("Content").text - print(content) - # ... - # ... - - ''' - ------------浣跨敤绀轰緥涓夛細浼佷笟鍥炲鐢ㄦ埛娑堟伅鐨勫姞瀵--------------- - 浼佷笟琚姩鍥炲鐢ㄦ埛鐨勬秷鎭篃闇瑕佽繘琛屽姞瀵嗭紝骞朵笖鎷兼帴鎴愬瘑鏂囨牸寮忕殑xml涓层 - 鍋囪浼佷笟闇瑕佸洖澶嶇敤鎴风殑鏄庢枃濡備笅锛 - - - - 1348831860 - - - 1234567890123456 - 128 - - - 涓轰簡灏嗘娈垫槑鏂囧洖澶嶇粰鐢ㄦ埛锛屼紒涓氬簲锛 1.鑷繁鐢熸垚鏃堕棿鏃堕棿鎴(timestamp),闅忔満鏁板瓧涓(nonce)浠ヤ究鐢熸垚娑堟伅浣撶鍚嶏紝涔熷彲浠ョ洿鎺ョ敤浠庝紒涓氬井淇$殑post url涓婅В鏋愬嚭鐨勫搴斿笺 - 2.灏嗘槑鏂囧姞瀵嗗緱鍒板瘑鏂囥 3.鐢ㄥ瘑鏂囷紝姝ラ1鐢熸垚鐨則imestamp,nonce鍜屼紒涓氬湪浼佷笟寰俊璁惧畾鐨則oken鐢熸垚娑堟伅浣撶鍚嶃 4.灏嗗瘑鏂囷紝娑堟伅浣撶鍚嶏紝鏃堕棿鎴筹紝闅忔満鏁板瓧涓叉嫾鎺ユ垚xml鏍煎紡鐨勫瓧绗︿覆锛屽彂閫佺粰浼佷笟鍙枫 - 浠ヤ笂2锛3锛4姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟EncryptMsg鏉ュ疄鐜般 - ''' - sRespData = "ww1436e0e65a779aeeChenJiaShun1476422779text浣犲ソ14564537201000002" - ret,sEncryptMsg=wxcpt.EncryptMsg(sRespData, sReqNonce, sReqTimeStamp) - if( ret!=0 ): - print("ERR: EncryptMsg ret: " + str(ret)) - sys.exit(1) - print("sEncryptMsg: " + sEncryptMsg) - #ret == 0 鍔犲瘑鎴愬姛锛屼紒涓氶渶瑕佸皢sEncryptMsg杩斿洖缁欎紒涓氬彿 - #TODO: - #HttpUitls.SetResponse(sEncryptMsg) +#!/usr/bin/env python +# -*- coding: utf-8 -*- +######################################################################### +# Author: jonyqin +# Created Time: Thu 11 Sep 2014 03:55:41 PM CST +# File Name: Sample.py +# Description: WXBizJsonMsgCrypt 浣跨敤demo鏂囦欢 +######################################################################### +from WXBizJsonMsgCrypt import WXBizJsonMsgCrypt +import sys +import json + +if __name__ == "__main__": + #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 + sToken = "hJqcu3uJ9Tn2gXPmxx2w9kkCkCE2EPYo" + sEncodingAESKey = "6qkdMrq68nTKduznJYO1A37W2oEgpkMUvkttRToqhUt" + sCorpID = "ww1436e0e65a779aee" + ''' + ------------浣跨敤绀轰緥涓锛氶獙璇佸洖璋僓RL--------------- + *浼佷笟寮鍚洖璋冩ā寮忔椂锛屼紒涓氬彿浼氬悜楠岃瘉url鍙戦佷竴涓猤et璇锋眰 + 鍋囪鐐瑰嚮楠岃瘉鏃讹紝浼佷笟鏀跺埌绫讳技璇锋眰锛 + * GET /cgi-bin/wxpush?msg_signature=5c45ff5e21c57e6ad56bac8758b79b1d9ac89fd3×tamp=1409659589&nonce=263014780&echostr=P9nAzCzyDtyTWESHep1vC5X9xho%2FqYX3Zpb4yKa9SKld1DsH3Iyt3tP3zNdtp%2B4RPcs8TgAE7OaBO%2BFZXvnaqQ%3D%3D + * HTTP/1.1 Host: qy.weixin.qq.com + + 鎺ユ敹鍒拌璇锋眰鏃讹紝浼佷笟搴 1.瑙f瀽鍑篏et璇锋眰鐨勫弬鏁帮紝鍖呮嫭娑堟伅浣撶鍚(msg_signature)锛屾椂闂存埑(timestamp)锛岄殢鏈烘暟瀛椾覆(nonce)浠ュ強浼佷笟寰俊鎺ㄩ佽繃鏉ョ殑闅忔満鍔犲瘑瀛楃涓(echostr), + 杩欎竴姝ユ敞鎰忎綔URL瑙g爜銆 + 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬 + 3. 瑙e瘑鍑篹chostr鍘熸枃锛屽皢鍘熸枃褰撲綔Get璇锋眰鐨剅esponse锛岃繑鍥炵粰浼佷笟寰俊 + 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟VerifyURL鏉ュ疄鐜般 + ''' + wxcpt=WXBizJsonMsgCrypt(sToken,sEncodingAESKey,sCorpID) + sVerifyMsgSig="012bc692d0a58dd4b10f8dfe5c4ac00ae211ebeb" + sVerifyTimeStamp="1476416373" + sVerifyNonce="47744683" + sVerifyEchoStr="fsi1xnbH4yQh0+PJxcOdhhK6TDXkjMyhEPA7xB2TGz6b+g7xyAbEkRxN/3cNXW9qdqjnoVzEtpbhnFyq6SVHyA==" + ret,sEchoStr=wxcpt.VerifyURL(sVerifyMsgSig, sVerifyTimeStamp,sVerifyNonce,sVerifyEchoStr) + if(ret!=0): + print("ERR: VerifyURL ret: " + str(ret)) + sys.exit(1) + else: + print("done VerifyURL") + #楠岃瘉URL鎴愬姛锛屽皢sEchoStr杩斿洖缁欎紒涓氬彿 + + print("==============================") + ''' + ------------浣跨敤绀轰緥浜岋細瀵圭敤鎴峰洖澶嶇殑娑堟伅瑙e瘑--------------- + 鐢ㄦ埛鍥炲娑堟伅鎴栬呯偣鍑讳簨浠跺搷搴旀椂锛屼紒涓氫細鏀跺埌鍥炶皟娑堟伅锛屾娑堟伅鏄粡杩囦紒涓氬井淇″姞瀵嗕箣鍚庣殑瀵嗘枃浠ost褰㈠紡鍙戦佺粰浼佷笟锛屽瘑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 + 鍋囪浼佷笟鏀跺埌浼佷笟寰俊鐨勫洖璋冩秷鎭涓嬶細 + POST /cgi-bin/wxpush? msg_signature=e3647471e395139e2308c1fa963f2d648a00b90e×tamp=1409659813&nonce=1372623149 HTTP/1.1 + Host: qy.weixin.qq.com + + { + "tousername": "wx5823bf96d3bd56c7", + "encrypt": "cjhLUX7UU4yCSelv1vz7T0zT8huF51bAMVWriNvO1FMegHrQZNrtvRxbwf0fUPsFvwqR0U0fgiJNEA5Y30F2MoI2S7vv3EjVQ68C0cjw9frBoUE2Hj0BvFp9h3u6Vbsg4lc1C8AtHdaN8orKuNKkLRLuYEL52R1J3v8olJGZRLnRdVKIivixmX/eQpzgeExtp20jI1HxRP1AAZ6xZoILdqDPO549LO4WeG+685JRUTdiwcY5fjZlqeMxuT4PpMn1X9OWsS7NRj06Wa5E3Tvg4twjWp39KPfOdRte6P1T4JU=", + "agentid": 218 + } + + 浼佷笟鏀跺埌post璇锋眰涔嬪悗搴旇 1.瑙f瀽鍑簎rl涓婄殑鍙傛暟锛屽寘鎷秷鎭綋绛惧悕(msg_signature)锛屾椂闂存埑(timestamp)浠ュ強闅忔満鏁板瓧涓(nonce) + 2.楠岃瘉娑堟伅浣撶鍚嶇殑姝g‘鎬с 3.灏唒ost璇锋眰鐨勬暟鎹繘琛宩son瑙f瀽锛屽苟灏"encrypt"鏍囩鐨勫唴瀹硅繘琛岃В瀵嗭紝瑙e瘑鍑烘潵鐨勬槑鏂囧嵆鏄敤鎴峰洖澶嶆秷鎭殑鏄庢枃锛屾槑鏂囨牸寮忚鍙傝冨畼鏂规枃妗 + 绗2锛3姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟DecryptMsg鏉ュ疄鐜般 + ''' + + sReqNonce = "1372623149" + sReqTimeStamp = "1409659813" + + sReqMsgSig = "e3647471e395139e2308c1fa963f2d648a00b90e" + sReqData = '{ "tousername": "wx5823bf96d3bd56c7", "encrypt": "cjhLUX7UU4yCSelv1vz7T0zT8huF51bAMVWriNvO1FMegHrQZNrtvRxbwf0fUPsFvwqR0U0fgiJNEA5Y30F2MoI2S7vv3EjVQ68C0cjw9frBoUE2Hj0BvFp9h3u6Vbsg4lc1C8AtHdaN8orKuNKkLRLuYEL52R1J3v8olJGZRLnRdVKIivixmX/eQpzgeExtp20jI1HxRP1AAZ6xZoILdqDPO549LO4WeG+685JRUTdiwcY5fjZlqeMxuT4PpMn1X9OWsS7NRj06Wa5E3Tvg4twjWp39KPfOdRte6P1T4JU=", "agentid": 218 }'; + ret,sMsg=wxcpt.DecryptMsg( sReqData, sReqMsgSig, sReqTimeStamp, sReqNonce) + if( ret!=0 ): + print("ERR: DecryptMsg ret: " + str(ret)) + sys.exit(1) + else: + print(sMsg) + # 瑙e瘑鎴愬姛锛宻Msg鍗充负json鏍煎紡鐨勬槑鏂 + # TODO: 瀵规槑鏂囩殑澶勭悊 + # ... + # ... + + print("==============================") + + ''' + ------------浣跨敤绀轰緥涓夛細浼佷笟鍥炲鐢ㄦ埛娑堟伅鐨勫姞瀵--------------- + 浼佷笟琚姩鍥炲鐢ㄦ埛鐨勬秷鎭篃闇瑕佽繘琛屽姞瀵嗭紝骞朵笖鎷兼帴鎴愬瘑鏂囨牸寮忕殑json涓层 + 鍋囪浼佷笟闇瑕佸洖澶嶇敤鎴风殑鏄庢枃濡備笅锛 + + { + "ToUserName": "mycreate", + "FromUserName":"wx5823bf96d3bd56c7", + "CreateTime": 1348831860, + "MsgType": "text", + "Content": "this is a test", + "MsgId": 1234567890123456, + "AgentID": 128 + } + + 涓轰簡灏嗘娈垫槑鏂囧洖澶嶇粰鐢ㄦ埛锛屼紒涓氬簲锛 1.鑷繁鐢熸垚鏃堕棿鏃堕棿鎴(timestamp),闅忔満鏁板瓧涓(nonce)浠ヤ究鐢熸垚娑堟伅浣撶鍚嶏紝涔熷彲浠ョ洿鎺ョ敤浠庝紒涓氬井淇$殑post url涓婅В鏋愬嚭鐨勫搴斿笺 + 2.灏嗘槑鏂囧姞瀵嗗緱鍒板瘑鏂囥 3.鐢ㄥ瘑鏂囷紝姝ラ1鐢熸垚鐨則imestamp,nonce鍜屼紒涓氬湪浼佷笟寰俊璁惧畾鐨則oken鐢熸垚娑堟伅浣撶鍚嶃 4.灏嗗瘑鏂囷紝娑堟伅浣撶鍚嶏紝鏃堕棿鎴筹紝闅忔満鏁板瓧涓叉嫾鎺ユ垚json鏍煎紡鐨勫瓧绗︿覆锛屽彂閫佺粰浼佷笟鍙枫 + 浠ヤ笂2锛3锛4姝ュ彲浠ョ敤浼佷笟寰俊鎻愪緵鐨勫簱鍑芥暟EncryptMsg鏉ュ疄鐜般 + ''' + #sRespData = ' { "ToUserName": "mycreate", "FromUserName":"wx5823bf96d3bd56c7", "CreateTime": 1348831860, "MsgType": "text", "Content": "this is a test", "MsgId": 1234567890123456, "AgentID": 128 }'; + sRespData = '{ "ToUserName": "wx5823bf96d3bd56c7", "FromUserName": :mycreate", "CreateTime": 1409659813, "MsgType": "text", "Content": "hello", "MsgId": 4561255354251345929, "AgentID": 218}' + ret,sEncryptMsg=wxcpt.EncryptMsg(sRespData, sReqNonce, sReqTimeStamp) + if( ret!=0 ): + print("ERR: EncryptMsg ret: " + str(ret)) + sys.exit(1) + else: + print(sEncryptMsg) + #ret == 0 鍔犲瘑鎴愬姛锛屼紒涓氶渶瑕佸皢sEncryptMsg杩斿洖缁欎紒涓氬彿 + print("==============================") + + ''' + 瀵逛笂闈㈠姞瀵嗙殑鍖呰繘琛岃В瀵 + ''' + sReqMsgSig = json.loads(sEncryptMsg)['msgsignature'] + sReqTimeStamp = json.loads(sEncryptMsg)['timestamp'] + sReqNonce = json.loads(sEncryptMsg)['nonce'] + + ret,sMsg=wxcpt.DecryptMsg( sEncryptMsg, sReqMsgSig, sReqTimeStamp, sReqNonce) + if( ret!=0 ): + print("ERR: DecryptMsg ret: " + str(ret)) + sys.exit(1) + else: + print(sMsg) From 609f46003566518d4bc24bc54d736deeddda0e08 Mon Sep 17 00:00:00 2001 From: sbzhu Date: Wed, 16 Jul 2025 14:14:11 +0800 Subject: [PATCH 21/23] Update Sample.py --- callback/Sample.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/callback/Sample.py b/callback/Sample.py index 4915ff2..842999f 100644 --- a/callback/Sample.py +++ b/callback/Sample.py @@ -105,4 +105,4 @@ sys.exit(1) #ret == 0 鍔犲瘑鎴愬姛锛屼紒涓氶渶瑕佸皢sEncryptMsg杩斿洖缁欎紒涓氬彿 #TODO: - #HttpUitls.SetResponse(sEncryptMsg) + #HttpUitls.SetResponse(sEncryptMsg) #娴嬭瘯瑙e瘑 From 16e0b0524e64ef75bb5040f8efd5172f64e18e21 Mon Sep 17 00:00:00 2001 From: sbzhu Date: Wed, 16 Jul 2025 15:50:58 +0800 Subject: [PATCH 22/23] =?UTF-8?q?=E4=BF=AE=E5=A4=8Dbug?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- callback_json_python3/WXBizJsonMsgCrypt.py | 33 +++++++++------------- 1 file changed, 14 insertions(+), 19 deletions(-) diff --git a/callback_json_python3/WXBizJsonMsgCrypt.py b/callback_json_python3/WXBizJsonMsgCrypt.py index b3039fb..a954283 100644 --- a/callback_json_python3/WXBizJsonMsgCrypt.py +++ b/callback_json_python3/WXBizJsonMsgCrypt.py @@ -141,33 +141,29 @@ def __init__(self,key): # 璁剧疆鍔犺В瀵嗘ā寮忎负AES鐨凜BC妯″紡 self.mode = AES.MODE_CBC - - def encrypt(self,text,receiveid): + + def encrypt(self, text, receiveid): """瀵规槑鏂囪繘琛屽姞瀵 @param text: 闇瑕佸姞瀵嗙殑鏄庢枃 @return: 鍔犲瘑寰楀埌鐨勫瓧绗︿覆 - """ - # 灏唗ext鍜宺eceiveid杞崲涓篵ytes绫诲瀷 - text = text.encode('utf-8') - receiveid = receiveid.encode('utf-8') - + """ # 16浣嶉殢鏈哄瓧绗︿覆娣诲姞鍒版槑鏂囧紑澶 - random_str = self.get_random_str().encode('utf-8') - text = random_str + struct.pack("I",socket.htonl(len(text))) + text + receiveid - + text = text.encode() + text = self.get_random_str() + struct.pack("I", socket.htonl(len(text))) + text + receiveid.encode() + # 浣跨敤鑷畾涔夌殑濉厖鏂瑰紡瀵规槑鏂囪繘琛岃ˉ浣嶅~鍏 pkcs7 = PKCS7Encoder() text = pkcs7.encode(text) - - # 鍔犲瘑 - cryptor = AES.new(self.key,self.mode,self.key[:16]) + # 鍔犲瘑 + cryptor = AES.new(self.key, self.mode, self.key[:16]) try: ciphertext = cryptor.encrypt(text) # 浣跨敤BASE64瀵瑰姞瀵嗗悗鐨勫瓧绗︿覆杩涜缂栫爜 return ierror.WXBizMsgCrypt_OK, base64.b64encode(ciphertext) except Exception as e: - print(e) - return ierror.WXBizMsgCrypt_EncryptAES_Error,None + logger = logging.getLogger() + logger.error(e) + return ierror.WXBizMsgCrypt_EncryptAES_Error, None def decrypt(self,text,receiveid): """瀵硅В瀵嗗悗鐨勬槑鏂囪繘琛岃ˉ浣嶅垹闄 @@ -202,10 +198,8 @@ def decrypt(self,text,receiveid): def get_random_str(self): """ 闅忔満鐢熸垚16浣嶅瓧绗︿覆 @return: 16浣嶅瓧绗︿覆 - """ - rule = string.ascii_letters + string.digits - str = random.sample(rule, 16) - return "".join(str) + """ + return str(random.randint(1000000000000000, 9999999999999999)).encode() class WXBizJsonMsgCrypt(object): #鏋勯犲嚱鏁 @@ -247,6 +241,7 @@ def EncryptMsg(self, sReplyMsg, sNonce, timestamp = None): #return锛氭垚鍔0锛宻EncryptMsg,澶辫触杩斿洖瀵瑰簲鐨勯敊璇爜None pc = Prpcrypt(self.key) ret,encrypt = pc.encrypt(sReplyMsg, self.m_sReceiveId) + encrypt = encrypt.decode('utf-8') if ret != 0: return ret,None if timestamp is None: From 71441bf837646984a64065d8faf539fe13eb72c4 Mon Sep 17 00:00:00 2001 From: abelzhu Date: Fri, 8 Aug 2025 20:20:27 +0800 Subject: [PATCH 23/23] =?UTF-8?q?=E5=88=A0=E6=8E=89token=E5=92=8Caeskey?= =?UTF-8?q?=EF=BC=8C=E8=AE=A9=E5=BC=80=E5=8F=91=E8=80=85=E8=87=AA=E5=B7=B1?= =?UTF-8?q?=E5=A1=AB=E5=86=99?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- callback/Sample.py | 6 +++--- callback_json/Sample.py | 6 +++--- callback_json_python3/Sample.py | 6 +++--- callback_python3/Sample.py | 6 +++--- 4 files changed, 12 insertions(+), 12 deletions(-) diff --git a/callback/Sample.py b/callback/Sample.py index 842999f..f1faa7c 100644 --- a/callback/Sample.py +++ b/callback/Sample.py @@ -11,9 +11,9 @@ import sys if __name__ == "__main__": - #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 - sToken = "hJqcu3uJ9Tn2gXPmxx2w9kkCkCE2EPYo" - sEncodingAESKey = "6qkdMrq68nTKduznJYO1A37W2oEgpkMUvkttRToqhUt" + # 浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫瘑閽ョ浉鍏抽厤缃湪杩欓噷 TODO + sToken = "xxxxxxx" + sEncodingAESKey = "xxxxxxx" sCorpID = "ww1436e0e65a779aee" ''' ------------浣跨敤绀轰緥涓锛氶獙璇佸洖璋僓RL--------------- diff --git a/callback_json/Sample.py b/callback_json/Sample.py index ab47c01..5819337 100644 --- a/callback_json/Sample.py +++ b/callback_json/Sample.py @@ -10,9 +10,9 @@ import sys if __name__ == "__main__": - #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 - sToken = "hJqcu3uJ9Tn2gXPmxx2w9kkCkCE2EPYo" - sEncodingAESKey = "6qkdMrq68nTKduznJYO1A37W2oEgpkMUvkttRToqhUt" + # 浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫瘑閽ョ浉鍏抽厤缃湪杩欓噷 TODO + sToken = "xxxxxxx" + sEncodingAESKey = "xxxxxxx" sCorpID = "ww1436e0e65a779aee" ''' ------------浣跨敤绀轰緥涓锛氶獙璇佸洖璋僓RL--------------- diff --git a/callback_json_python3/Sample.py b/callback_json_python3/Sample.py index 31e2618..7b76caf 100644 --- a/callback_json_python3/Sample.py +++ b/callback_json_python3/Sample.py @@ -11,9 +11,9 @@ import json if __name__ == "__main__": - #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 - sToken = "hJqcu3uJ9Tn2gXPmxx2w9kkCkCE2EPYo" - sEncodingAESKey = "6qkdMrq68nTKduznJYO1A37W2oEgpkMUvkttRToqhUt" + # 浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫瘑閽ョ浉鍏抽厤缃湪杩欓噷 TODO + sToken = "xxxxxxx" + sEncodingAESKey = "xxxxxxx" sCorpID = "ww1436e0e65a779aee" ''' ------------浣跨敤绀轰緥涓锛氶獙璇佸洖璋僓RL--------------- diff --git a/callback_python3/Sample.py b/callback_python3/Sample.py index 31e2618..7b76caf 100644 --- a/callback_python3/Sample.py +++ b/callback_python3/Sample.py @@ -11,9 +11,9 @@ import json if __name__ == "__main__": - #鍋囪浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫弬鏁板涓 - sToken = "hJqcu3uJ9Tn2gXPmxx2w9kkCkCE2EPYo" - sEncodingAESKey = "6qkdMrq68nTKduznJYO1A37W2oEgpkMUvkttRToqhUt" + # 浼佷笟鍦ㄤ紒涓氬井淇″悗鍙颁笂璁剧疆鐨勫瘑閽ョ浉鍏抽厤缃湪杩欓噷 TODO + sToken = "xxxxxxx" + sEncodingAESKey = "xxxxxxx" sCorpID = "ww1436e0e65a779aee" ''' ------------浣跨敤绀轰緥涓锛氶獙璇佸洖璋僓RL---------------