| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168 |
- import Ignore_ReadUTF8File as ReadUTF8File
- import com.dySweetFishPlugin.tool.crypto.encoder.BASE64Decoder
- import com.sweetfish.convert.json.JsonConvert
- import com.sweetfish.service.RetResult
- import com.yinjie.heating.common.api.BusinessExecutor
- import com.yinjie.heating.common.datas.ERPModule
- import com.yinjie.heating.common.entity.base.ProcessMapItem
- import com.yinjie.heating.common.entity.callthird.DownloadBillResponse
- import com.yinjie.heating.common.entity.heating.HeatingApp
- import com.yinjie.heating.common.tool.PaySignatureUtil
- import org.apache.commons.lang3.StringUtils
- import org.apache.logging.log4j.LogManager
- import org.apache.logging.log4j.Logger
- import org.rex.RMap
- import javax.annotation.Resource
- import javax.crypto.Cipher
- import javax.crypto.KeyGenerator
- import javax.crypto.SecretKey
- import javax.crypto.spec.IvParameterSpec
- import java.nio.file.Files
- import java.nio.file.Path
- import java.nio.file.Paths
- import java.security.KeyFactory
- import java.security.PublicKey
- import java.security.SecureRandom
- import java.security.spec.X509EncodedKeySpec
- import java.time.LocalDateTime
- class BE_Call_DownloadBillFile implements BusinessExecutor<ProcessMapItem, DownloadBillResponse> {
- private final Logger logger = LogManager.getLogger(this.getClass().getSimpleName())
- @Resource
- private JsonConvert jsonConvert
- @Resource(name = "property.downloadBillRoot")
- private String downloadBillRoot
- @Override
- String scriptName() {
- return "外部热力服务商调用-下载对账单,需加密"
- }
- @Override
- ERPModule module() {
- return ERPModule.CALL_THIRD
- }
- private static byte[] encryptFile(SecretKey aesKey, byte[] fileData) throws Exception {
- // 生成随机的16字节初始化向量 (IV)
- byte[] iv = new byte[16];
- new SecureRandom().nextBytes(iv);
- IvParameterSpec ivSpec = new IvParameterSpec(iv);
- Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
- cipher.init(Cipher.ENCRYPT_MODE, aesKey, ivSpec);
- // 将IV和加密后的数据一起返回,IV不需要保密,但需要用于解密
- byte[] encryptedData = cipher.doFinal(fileData);
- ByteArrayOutputStream outputStream = new ByteArrayOutputStream();
- outputStream.write(iv);
- outputStream.write(encryptedData);
- return outputStream.toByteArray();
- }
- private static byte[] encryptAESKey(String publicKeyStr, SecretKey aesKey) throws Exception {
- byte[] keyBytes = (new BASE64Decoder()).decodeBuffer(publicKeyStr);
- X509EncodedKeySpec keySpec = new X509EncodedKeySpec(keyBytes);
- KeyFactory keyFactory = KeyFactory.getInstance("RSA");
- PublicKey publicKey = keyFactory.generatePublic(keySpec);
- Cipher cipher = Cipher.getInstance("RSA/ECB/PKCS1Padding");
- cipher.init(Cipher.ENCRYPT_MODE, publicKey);
- return cipher.doFinal(aesKey.getEncoded());
- }
- RetResult<DownloadBillResponse> execute(ProcessMapItem source) {
- long currentTime = LocalDateTime.now().toDate().time
- RMap params = source.itemData
- String dataSourceId = source.dataSourceId
- long supplierCode = source.supplierCode
- String payDate = params.getString("payDate")
- HeatingApp app = params.get("app") as HeatingApp
- params.remove("app")//避免影响下面验签
- //接口均返回正确,错误放在result里
- if (app == null) {
- logger.error("下载对账单传入app为空")
- return RetResult.<DownloadBillResponse> successT().result(new DownloadBillResponse.Builder()
- .respCode("DEF0010")
- .respMsg("用户不存在")
- .timeStamp((new Date()).time as String)
- .build())
- }
- if (StringUtils.isBlank(payDate)) {
- logger.error("下载对账单传入参数不正确")
- return RetResult.<DownloadBillResponse> successT().result(new DownloadBillResponse.Builder()
- .respCode("DEF0006")
- .respMsg("系统错误")
- .timeStamp((new Date()).time as String)
- .build())
- }
- //签名
- String sign = params.getString("sign")
- if (PaySignatureUtil.verifySign(sign, "RSA_1_256", params, app.supplyPublicKey, "")) {
- logger.info("下载对账单验签成功")
- //查找对应日期的文件夹是否存在
- Path dirPath = Paths.get(downloadBillRoot + File.separator + payDate)
- if (Files.exists(dirPath) && (Files.isDirectory(dirPath))) {
- Path filePath = Paths.get(downloadBillRoot + File.separator + payDate + File.separator + "GD_" + payDate + "_" + app.upperChannelAppId + ".txt")
- if (Files.exists(filePath)) {
- //读取文件内容并加密
- KeyGenerator keyGenerator = KeyGenerator.getInstance("AES")
- keyGenerator.init(128) // 使用128位密钥长度
- SecretKey aesKey = keyGenerator.generateKey()
- String fileStr = ReadUTF8File.execute(filePath, false, logger)
- byte[] fileData = fileStr.getBytes("UTF-8")
- byte[] encryptedFileData = encryptFile(aesKey, fileData) //加密的文件
- byte[] encryptedAESKey = encryptAESKey(app.supplyPublicKey, aesKey) //加密的密钥
- return RetResult.<DownloadBillResponse> successT().result(new DownloadBillResponse.Builder()
- .respCode("00000")
- .respMsg("success")
- .appId(app.appId)
- .fileKey(encryptedAESKey)
- .fileContent(encryptedFileData)
- .timeStamp((new Date()).time as String)
- .build())
- } else {
- logger.error("找不到对账单" + filePath.toString())
- return RetResult.<DownloadBillResponse> successT().result(new DownloadBillResponse.Builder()
- .respCode("DEF0020")
- .respMsg("该日期账单文件暂未生成")
- .timeStamp((new Date()).time as String)
- .build())
- }
- } else {
- logger.error("找不到对账单日期" + payDate + "的目录")
- return RetResult.<DownloadBillResponse> successT().result(new DownloadBillResponse.Builder()
- .respCode("DEF0020")
- .respMsg("该日期账单文件暂未生成")
- .timeStamp((new Date()).time as String)
- .build())
- }
- } else {
- logger.error("下载对账单验签失败")
- return RetResult.<DownloadBillResponse> successT().result(new DownloadBillResponse.Builder()
- .respCode("DEF0030")
- .respMsg("验签失败")
- .timeStamp((new Date()).time as String)
- .build())
- }
- }
- }
|
