From 1d28c69a351ae108f4116a10f19f615c89a660a2 Mon Sep 17 00:00:00 2001
From: admin <2780501319@qq.com>
Date: 星期四, 01 四月 2021 01:58:43 +0800
Subject: [PATCH] 首页数据修改
---
src/main/java/com/yeshi/buwan/aspect/SignAspect.java | 69 +++++++++++++++++++++++++++++-----
1 files changed, 59 insertions(+), 10 deletions(-)
diff --git a/src/main/java/com/yeshi/buwan/aspect/SignAspect.java b/src/main/java/com/yeshi/buwan/aspect/SignAspect.java
index 13c3555..6d9561f 100644
--- a/src/main/java/com/yeshi/buwan/aspect/SignAspect.java
+++ b/src/main/java/com/yeshi/buwan/aspect/SignAspect.java
@@ -1,5 +1,9 @@
package com.yeshi.buwan.aspect;
+import com.yeshi.buwan.domain.system.DetailSystem;
+import com.yeshi.buwan.service.imp.SystemService;
+import com.yeshi.buwan.util.JsonUtil;
+import com.yeshi.buwan.util.Utils;
import com.yeshi.buwan.vo.AcceptData;
import org.aspectj.lang.ProceedingJoinPoint;
import org.aspectj.lang.annotation.Around;
@@ -7,37 +11,82 @@
import org.springframework.stereotype.Component;
import org.springframework.web.context.request.RequestContextHolder;
import org.springframework.web.context.request.ServletRequestAttributes;
+import org.yeshi.utils.StringUtil;
+import javax.annotation.Resource;
import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
+import java.io.PrintWriter;
+import java.util.*;
@Component
@Aspect
public class SignAspect {
+ @Resource
+ private SystemService systemService;
+
//绛惧悕楠岃瘉
@Around("execution(public * com.yeshi.buwan.controller.api.*.*(..))")
- public Object verifySign(ProceedingJoinPoint joinPoint) throws IOException {
+ public Object verifySign(ProceedingJoinPoint joinPoint) throws Throwable {
ServletRequestAttributes servletContainer = (ServletRequestAttributes) RequestContextHolder.getRequestAttributes();
HttpServletRequest request = servletContainer.getRequest();
+ HttpServletResponse response = servletContainer.getResponse();
+ PrintWriter out = null;
+ AcceptData acceptData = null;
Object[] args = joinPoint.getArgs();
for (Object obj : args) {
if (obj instanceof AcceptData) {
- AcceptData acceptData = (AcceptData) obj;
- if ("ios".equalsIgnoreCase(acceptData.getPlatform())) {
- acceptData.setChannel("appstore");
+ acceptData = (AcceptData) obj;
+ if (acceptData != null) {
+ if ("ios".equalsIgnoreCase(acceptData.getPlatform())) {
+ acceptData.setChannel("appstore");
+ }
+ //娉ㄥ叆detailSystem
+ DetailSystem detailSystem = systemService.getDetailSystemByPackage(acceptData.getPackageName());
+ acceptData.setDetailSystem(detailSystem);
}
+
+ } else if (obj instanceof PrintWriter) {
+ out = (PrintWriter) obj;
}
}
- Object obj = null;
- try {
- obj = joinPoint.proceed(args);
- } catch (Throwable e) {
- e.printStackTrace();
+
+ //濡傛灉鏄疉ndroid鏂扮増鏈垯璋冪敤鏂扮殑绛惧悕鏂规硶
+ //甯冧父3.8.7涔嬪悗璋冪敤鏂扮殑绛惧悕鏂规硶
+ if (acceptData != null && "android".equalsIgnoreCase(acceptData.getPlatform()) && acceptData.getVersion() >= 105) {
+ Map<String, String[]> params = request.getParameterMap();
+ //绛惧悕
+ List<String> list = new ArrayList<>();
+ for (Iterator<String> its = params.keySet().iterator(); its.hasNext(); ) {
+ String key = its.next();
+ if ("sign".equalsIgnoreCase(key))
+ continue;
+ list.add(key + "=" + params.get(key)[0]);
+ }
+ Collections.sort(list);
+ String str = StringUtil.concat(list, "&");
+ String sign = StringUtil.Md5(str + "8888B&*@-uWan88/',@@^");
+ if (!sign.equalsIgnoreCase(acceptData.getSign())) {
+ if (out == null)
+ out = response.getWriter();
+ out.print(JsonUtil.loadFalseJson("绛惧悕閿欒"));
+ return null;
+ }
+
+ } else {
+ if (!Utils.signIsRight(request)) {
+ if (out == null)
+ out = response.getWriter();
+ out.print(JsonUtil.loadFalseJson("绛惧悕閿欒"));
+ return null;
+ }
}
- return obj;
+
+ return joinPoint.proceed(args);
}
--
Gitblit v1.8.0