From 1d28c69a351ae108f4116a10f19f615c89a660a2 Mon Sep 17 00:00:00 2001
From: admin <2780501319@qq.com>
Date: 星期四, 01 四月 2021 01:58:43 +0800
Subject: [PATCH] 首页数据修改

---
 src/main/java/com/yeshi/buwan/aspect/SignAspect.java |   69 +++++++++++++++++++++++++++++-----
 1 files changed, 59 insertions(+), 10 deletions(-)

diff --git a/src/main/java/com/yeshi/buwan/aspect/SignAspect.java b/src/main/java/com/yeshi/buwan/aspect/SignAspect.java
index 13c3555..6d9561f 100644
--- a/src/main/java/com/yeshi/buwan/aspect/SignAspect.java
+++ b/src/main/java/com/yeshi/buwan/aspect/SignAspect.java
@@ -1,5 +1,9 @@
 package com.yeshi.buwan.aspect;
 
+import com.yeshi.buwan.domain.system.DetailSystem;
+import com.yeshi.buwan.service.imp.SystemService;
+import com.yeshi.buwan.util.JsonUtil;
+import com.yeshi.buwan.util.Utils;
 import com.yeshi.buwan.vo.AcceptData;
 import org.aspectj.lang.ProceedingJoinPoint;
 import org.aspectj.lang.annotation.Around;
@@ -7,37 +11,82 @@
 import org.springframework.stereotype.Component;
 import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
+import org.yeshi.utils.StringUtil;
 
+import javax.annotation.Resource;
 import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
 import java.io.IOException;
+import java.io.PrintWriter;
+import java.util.*;
 
 @Component
 @Aspect
 public class SignAspect {
 
+    @Resource
+    private SystemService systemService;
+
 
     //绛惧悕楠岃瘉
     @Around("execution(public * com.yeshi.buwan.controller.api.*.*(..))")
-    public Object verifySign(ProceedingJoinPoint joinPoint) throws IOException {
+    public Object verifySign(ProceedingJoinPoint joinPoint) throws Throwable {
         ServletRequestAttributes servletContainer = (ServletRequestAttributes) RequestContextHolder.getRequestAttributes();
         HttpServletRequest request = servletContainer.getRequest();
+        HttpServletResponse response = servletContainer.getResponse();
+        PrintWriter out = null;
+        AcceptData acceptData = null;
         Object[] args = joinPoint.getArgs();
         for (Object obj : args) {
             if (obj instanceof AcceptData) {
-                AcceptData acceptData = (AcceptData) obj;
-                if ("ios".equalsIgnoreCase(acceptData.getPlatform())) {
-                    acceptData.setChannel("appstore");
+                acceptData = (AcceptData) obj;
+                if (acceptData != null) {
+                    if ("ios".equalsIgnoreCase(acceptData.getPlatform())) {
+                        acceptData.setChannel("appstore");
+                    }
+                    //娉ㄥ叆detailSystem
+                    DetailSystem detailSystem = systemService.getDetailSystemByPackage(acceptData.getPackageName());
+                    acceptData.setDetailSystem(detailSystem);
                 }
+
+            } else if (obj instanceof PrintWriter) {
+                out = (PrintWriter) obj;
             }
         }
 
-        Object obj = null;
-        try {
-            obj = joinPoint.proceed(args);
-        } catch (Throwable e) {
-            e.printStackTrace();
+
+        //濡傛灉鏄疉ndroid鏂扮増鏈垯璋冪敤鏂扮殑绛惧悕鏂规硶
+        //甯冧父3.8.7涔嬪悗璋冪敤鏂扮殑绛惧悕鏂规硶
+        if (acceptData != null && "android".equalsIgnoreCase(acceptData.getPlatform()) && acceptData.getVersion() >= 105) {
+            Map<String, String[]> params = request.getParameterMap();
+            //绛惧悕
+            List<String> list = new ArrayList<>();
+            for (Iterator<String> its = params.keySet().iterator(); its.hasNext(); ) {
+                String key = its.next();
+                if ("sign".equalsIgnoreCase(key))
+                    continue;
+                list.add(key + "=" + params.get(key)[0]);
+            }
+            Collections.sort(list);
+            String str = StringUtil.concat(list, "&");
+            String sign = StringUtil.Md5(str + "8888B&*@-uWan88/',@@^");
+            if (!sign.equalsIgnoreCase(acceptData.getSign())) {
+                if (out == null)
+                    out = response.getWriter();
+                out.print(JsonUtil.loadFalseJson("绛惧悕閿欒"));
+                return null;
+            }
+
+        } else {
+            if (!Utils.signIsRight(request)) {
+                if (out == null)
+                    out = response.getWriter();
+                out.print(JsonUtil.loadFalseJson("绛惧悕閿欒"));
+                return null;
+            }
         }
-        return obj;
+
+        return joinPoint.proceed(args);
     }
 
 

--
Gitblit v1.8.0