Home Verkennen Help
Registreren Inloggen
ccadmin
/
crazy_god_API
1
0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Aftakking: master
Aftakkingen Labels
crazy_god_API
/
model
/
verifykp.php

verifykp.php 2.9 KB
Permalink Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * Created by PhpStorm.
    5. 

  5.  * User: Administrator
    6. 

  6.  * Date: 2018/6/19
    7. 

  7.  * Time: 10:43
    8. 

  8.  */
    9. 

  9. class ModelVerifykp
    10. 

  10. {
    11. 

  11. 

  12.     private $rKey = [
    13. 

  13.         0 => '18257284-7F5D-348D-AB09-299E5B7DD997',
    14. 

  14.         1 => '655A957D-157D-7C21-E3A7-9CAAFA835318',
    15. 

  15.         2 => 'F467CA93-D550-346D-6BCB-173995F7C83A',
    16. 

  16.         3 => 'BD32817A-99F9-2E26-5B33-15208F7B360A'
    17. 

  17.     ];
    18. 

  18. 

  19. 

  20.     /**
    21. 

  21.      * 验证该用户信息的合法性
    22. 

  22.      * @param $data
    23. 

  23.      * @return string
    24. 

  24.      */
    25. 

  25.     public function validateKP($data)
    26. 

  26.     {
    27. 

  27.         if(empty($data)) {
    28. 

  28.             return [];
    29. 

  29.         }
    30. 

  30. 

  31.         //海外的需要判断是否是这两个个域名,*.100ko.com  *.kpzs.com
    32. 

  32.         $verifyurl = $data['verifyurl'];
    33. 

  33.         $tmpUrlArr = parse_url($verifyurl);
    34. 

  34.         $host = $tmpUrlArr['host'] ?? '';
    35. 

  35.         if(empty($host)) {
    36. 

  36.             oo::logs()->debug3('域名解析错误:'.$verifyurl, 'kpVerifyFail.php');
    37. 

  37.             return [];
    38. 

  38.         }
    39. 

  39.         $reg1  = "/.kpzs.com$/";
    40. 

  40.         $reg2 = "/.100ko.com$/";
    41. 

  41.         $ret1= preg_match($reg1, $host);
    42. 

  42. 

  43.         if(!$ret1) {
    44. 

  44.             $ret2= preg_match($reg2, $host);
    45. 

  45.             if(!$ret2) {
    46. 

  46.                 oo::logs()->debug3('域名验证不通过:'.$verifyurl, 'kpVerifyFail.php');
    47. 

  47.                 return [];
    48. 

  48.             }
    49. 

  49.         }
    50. 

  50. 

  51.         $imei = $data['imei'];
    52. 

  52.         $openid = $data['openid'];
    53. 

  53.         $tag = $data['tag'];
    54. 

  54.         $token = $data['token'];
    55. 

  55. 

  56.         $response = oo::functions()->curl($verifyurl);
    57. 

  57.         $code = $response['code'] ?? 0;
    58. 

  58.         $r = $response['r'] ?? 'A';
    59. 

  59.         $sign = $response['sign'] ?? '';
    60. 

  60.         if(!$code) {
    61. 

  61.             oo::logs()->debug3('登录验证不通过:'.json_encode($response).' data:'.$verifyurl, 'kpVerifyFail.php');
    62. 

  62.             return [];
    63. 

  63.         }
    64. 

  64. 

  65.         $result = $this->verify($code, $tag, $imei, $token, $r, $sign);
    66. 

  66.         if(!$result) {
    67. 

  67.             oo::logs()->debug3('验签失败:  openid: '.$openid.'code:'.$code.'  tag:'.$tag.' imei:'.$imei.'  token:'.$token.'  r:'.$r.'  sign:'.$sign, 'kpVerifyFail.php');
    68. 

  68.             return [];
    69. 

  69.         }
    70. 

  70.         return $data;
    71. 

  71.     }
    72. 

  72. 

  73. 

  74.     /**
    75. 

  75.      * 对参数进行处理
    76. 

  76.      * @param $data
    77. 

  77.      * @return string
    78. 

  78.      */
    79. 

  79.     private function dealUrlParam($data)
    80. 

  80.     {
    81. 

  81.         $urlParam = '';
    82. 

  82.         foreach ($data as $key => $v) {
    83. 

  83.             $urlParam .= '&'.$key .'='.$v;
    84. 

  84.         }
    85. 

  85.         $urlParam = ltrim($urlParam, '&');
    86. 

  86.         return $urlParam;
    87. 

  87.     }
    88. 

  88. 

  89.     /**
    90. 

  90.      * 返回验签 SignMD5  规则 :(code 值 tage 值 值 imei  小写值 token  小写值 R  对应的秘钥 Key)Md5
    91. 

  91.      * @param $data
    92. 

  92.      * @return string
    93. 

  93.      */
    94. 

  94.     protected function verify($code, $tag, $imei, $token ,$r, $sign)
    95. 

  95.     {
    96. 

  96.         if(!in_array($r, [0, 1, 2, 3]) || empty($sign)) {
    97. 

  97.             return false;
    98. 

  98.         }
    99. 

  99.         $imei = strtolower($imei);
    100. 

  100.         $token = strtolower($token);
    101. 

  101.         $rKey = $this->rKey[$r];
    102. 

  102.         $signTmp = md5($code.$tag.$imei.$token.$rKey);
    103. 

  103.         if($sign === $signTmp) {
    104. 

  104.             return true;
    105. 

  105.         }
    106. 

  106.         return false;
    107. 

  107.     }
    108. 

  108. 

  109. }
    110.