using System; using System.Collections.Generic; using Library; using LitJson; using System.Linq; using System.Security.Cryptography.X509Certificates; using System.Security.Cryptography; using System.Text; using System.IO; using System.Net; using System.Web; using MySystem.Models; using Org.BouncyCastle.Crypto.Modes; using Org.BouncyCastle.Crypto.Parameters; using Org.BouncyCastle.Crypto.Engines; namespace MySystem { public class WeChatFunctionForHD { public readonly static WeChatFunctionForHD Instance = new WeChatFunctionForHD(); private WeChatFunctionForHD() { } public string MchId = "178590308"; public string ApiKey = "XTH7TLTSJH4SOZC3NVFQJ726B5VRNVO6"; //AesGcmDecrypt解密使用 public string serialNo = "5293C873581457469F1BE1839EA127B08ADE2D7B"; public string getSerialNo = "7C6E6AD5DA1F7EB4A1071F2333C2FED0D8CC3A46"; //平台证书序列号Wechatpay-Serial // string pubkey = "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"; //公钥 string pubkey = "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"; //公钥(通过GetPlatCert方法获取证书,解密得到) // string prikey = "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"; //私钥 string prikey = "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"; //私钥 #region 间连商户开户意愿确认(提交申请单) public string MerchantApply(MerchantAddInfo info) { Dictionary result = new Dictionary(); string business_code = DateTime.Now.ToString("yyyyMMddHHmmssfff") + function.get_Random(8); result.Add("business_code", business_code); //业务申请编号 WebCMSEntities dbpxc = new WebCMSEntities(); //超级管理员信息 Dictionary contact_info = new Dictionary(); contact_info.Add("contact_type", "LEGAL"); //联系人类型 contact_info.Add("name", RSAEncrypt(info.CertLegalPerson)); //联系人姓名 contact_info.Add("id_card_number", RSAEncrypt(info.IdCardNumber)); //超级管理员身份证件号码 contact_info.Add("contact_id_doc_type", "IDENTIFICATION_TYPE_IDCARD"); //联系人证件类型 contact_info.Add("mobile", RSAEncrypt(info.MobilePhone)); //联系手机 result.Add("contact_info", contact_info); //主体资料 Dictionary subject_info = new Dictionary(); string SubjectType = info.SubjectType; if(SubjectType == "SUBJECT_TYPE_SMALL") SubjectType = "SUBJECT_TYPE_MICRO"; subject_info.Add("subject_type", SubjectType); //主体类型 Dictionary business_licence_info = new Dictionary(); business_licence_info.Add("licence_number", info.LicenseNumber); //注册号/统一社会信用代码 business_licence_info.Add("licence_copy", GetMediaId("/" + info.LicenseCopy)); //营业执照照片 business_licence_info.Add("merchant_name", info.CertMerchantName); //商户名称 business_licence_info.Add("legal_person", info.CertLegalPerson); //个体户经营者/法人姓名 business_licence_info.Add("company_address", info.BizStoreAddress); //注册地址 string PeriodEnd = info.PeriodEnd.Value.ToString("yyyy-MM-dd"); if(PeriodEnd.Substring(0, 4) == "2050") { PeriodEnd = "forever"; } business_licence_info.Add("licence_valid_date", "[\"" + info.PeriodBegin.Value.ToString("yyyy-MM-dd") + "\",\"" + PeriodEnd + "\"]"); //营业执照有效日期 subject_info.Add("business_licence_info", business_licence_info); //营业执照 result.Add("subject_info", subject_info); Dictionary identification_info = new Dictionary(); identification_info.Add("id_holder_type", "LEGAL"); //证件持有人类型 identification_info.Add("identification_type", "IDENTIFICATION_TYPE_IDCARD"); //证件类型 identification_info.Add("identification_name", RSAEncrypt(info.CertLegalPerson)); //身份证姓名 identification_info.Add("identification_number", RSAEncrypt(info.IdCardNumber)); //身份证号码 string CardPeriodEnd = info.CardPeriodEnd.Value.ToString("yyyy-MM-dd"); if(CardPeriodEnd.Substring(0, 4) == "2050") { CardPeriodEnd = "forever"; } identification_info.Add("identification_valid_date", "[\"" + info.CardPeriodBegin.Value.ToString("yyyy-MM-dd") + "\",\"" + CardPeriodEnd + "\"]"); //身份证有效期 identification_info.Add("identification_front_copy", GetMediaId("/" + info.IdCardCopy)); //身份证件正面照片 identification_info.Add("identification_back_copy", GetMediaId("/" + info.IdCardNational)); //身份证件反面照片 bool owner = true; if(info.SubjectType == "SUBJECT_TYPE_ENTERPRISE") { identification_info.Add("identification_address", RSAEncrypt(info.IdCardAddress)); //身份证居住地址 identification_info.Add("owner", owner); } result.Add("identification_info", identification_info); //经营者/法人身份证件 //最终受益人信息列表(UBO)----仅企业需要填写 if(info.SubjectType == "SUBJECT_TYPE_ENTERPRISE" && !owner) { List> ubo_info_list = new List>(); Dictionary ubo_info_list_item = new Dictionary(); ubo_info_list_item.Add("ubo_id_doc_type", "IDENTIFICATION_TYPE_IDCARD"); //证件类型 ubo_info_list_item.Add("ubo_id_doc_copy", GetMediaId("/" + info.IdCardCopy)); //身份证件正面照片 ubo_info_list_item.Add("ubo_id_doc_copy_back", GetMediaId("/" + info.IdCardNational)); //身份证件反面照片 ubo_info_list_item.Add("ubo_id_doc_name", RSAEncrypt(info.CertLegalPerson)); //身份证姓名 ubo_info_list_item.Add("ubo_id_doc_number", RSAEncrypt(info.IdCardNumber)); //身份证号码 ubo_info_list_item.Add("ubo_id_doc_address", RSAEncrypt(info.IdCardAddress)); //身份证居住地址 ubo_info_list_item.Add("ubo_period_begin", info.CardPeriodBegin.Value.ToString("yyyy-MM-dd")); //身份证有效期 if(CardPeriodEnd == "forever") { CardPeriodEnd = "长期"; } ubo_info_list_item.Add("ubo_period_end", CardPeriodEnd); //身份证有效期 ubo_info_list.Add(ubo_info_list_item); result.Add("ubo_info_list", ubo_info_list); } dbpxc.Dispose(); string req = Newtonsoft.Json.JsonConvert.SerializeObject(result); // 如何查看证书序列号? // 登陆商户平台【API安全】->【API证书】->【查看证书】,可查看商户API证书序列号。 // 商户API证书和微信支付平台证书均可以使用第三方的证书解析工具,查看证书内容。或者使用openssl命令行工具查看证书序列号。 // $ openssl x509 -in 1900009191_20180326_cert.pem -noout -serial // serial=1DDE55AD98ED71D6EDD4A4A16996DE7B47773A8C LogHelper.Instance.WriteLog(req, "间连商户开户意愿确认"); string resp = postJson("https://api.mch.weixin.qq.com/v3/apply4subject/applyment", req); LogHelper.Instance.WriteLog(resp + "\n\n", "间连商户开户意愿确认"); return resp; } #endregion #region 间连商户开户意愿确认(提交申请单)查询申请单状态 public string QueryMerchant(string BusinessCode) { string result = ""; try { result = postJson("https://api.mch.weixin.qq.com/v3/apply4subject/applyment?applyment_id=" + BusinessCode, "", "GET"); //"{\"applyment_state\":\"APPLYMENT_STATE_REJECTED\",\"reject_param\":\"licence_valid_date|cert_valid_date\",\"reject_reason\":\"有效期开始日期填写有误,请填写与营业执照上一致的开始日期,如影印件上无开始日期请填写成立日期/注册日期;有效期结束日期填写有误,请填写与营业执照上一致的日期,如影印件上无结束日期请填写“长期”\"}" //{\"applyment_id\":2000002247709762,\"applyment_state\":\"APPLYMENT_STATE_FINISHED\",\"applyment_state_msg\":\"商户入驻申请已完成\",\"audit_detail\":[],\"business_code\":\"0123456789\",\"sign_url\":\"https://mp.weixin.qq.com/cgi-bin/showqrcode?ticket=gQFv7zwAAAAAAAAAAS5odHRwOi8vd2VpeGluLnFxLmNvbS9xLzAyUXE1czkzb3JlUjIxZHpXbTF5Y2YAAgRjbe9hAwQAjScA\",\"sub_mchid\":\"1619775262\"} } catch (Exception ex) { LogHelper.Instance.WriteLog(DateTime.Now.ToString() + "\r\n" + ex.ToString(), "间连商户开户意愿确认(提交申请单)查询申请单状态异常"); } return result; } #endregion #region 获取平台证书 public string GetPlatCert() { string merchantId = MchId; //商户号 string result = postJson("https://api.mch.weixin.qq.com/v3/certificates", "", "GET"); return result; } #endregion #region 敏感信息加密 public string RSAEncrypt(string text) { byte[] publicKey = Convert.FromBase64String(pubkey); // var rsa = RSA.Create(); // rsa.ImportRSAPublicKey(publicKey, out _); // var buff = rsa.Encrypt(Encoding.UTF8.GetBytes(text), RSAEncryptionPadding.OaepSHA1); // return Convert.ToBase64String(buff); using (var x509 = new X509Certificate2(publicKey)) { using (var rsa = x509.GetRSAPublicKey()) { var buff = rsa.Encrypt(Encoding.UTF8.GetBytes(text), RSAEncryptionPadding.OaepSHA1); return Convert.ToBase64String(buff); } } } public string RSADecrypt(string text) { byte[] key = Encoding.UTF8.GetBytes(AppConfig.WeChatParam.AesGemKey); byte[] nonce = Encoding.UTF8.GetBytes("1234567890ab"); byte[] ciphertext = Convert.FromBase64String(text); AesGcm aes = new AesGcm(key); byte[] plaintext = new byte[ciphertext.Length]; aes.Decrypt(nonce, ciphertext, plaintext, null); return Encoding.UTF8.GetString(plaintext); } public string AesGcmDecrypt(string associatedData, string nonce, string ciphertext) { // GcmBlockCipher gcmBlockCipher = new GcmBlockCipher(new AesEngine()); // AeadParameters aeadParameters = new AeadParameters( // new KeyParameter(Encoding.UTF8.GetBytes(AppConfig.WeChatParam.AesGemKey)), // 128, // Encoding.UTF8.GetBytes(nonce), // Encoding.UTF8.GetBytes(associatedData)); // gcmBlockCipher.Init(false, aeadParameters); // byte[] data = Convert.FromBase64String(ciphertext); // byte[] plaintext = new byte[gcmBlockCipher.GetOutputSize(data.Length)]; // int length = gcmBlockCipher.ProcessBytes(data, 0, data.Length, plaintext, 0); // gcmBlockCipher.DoFinal(plaintext, length); // return Encoding.UTF8.GetString(plaintext); byte[] key = Encoding.UTF8.GetBytes(ApiKey); // 256-bit key byte[] nonceByte = Encoding.UTF8.GetBytes(nonce); // 96-bit nonce byte[] cipherByte = Convert.FromBase64String(ciphertext); byte[] associatedByte = Encoding.UTF8.GetBytes(associatedData); GcmBlockCipher cipher = new GcmBlockCipher(new AesEngine()); AeadParameters parameters = new AeadParameters(new KeyParameter(key), 128, nonceByte, associatedByte); cipher.Init(false, parameters); byte[] plaintext = new byte[cipher.GetOutputSize(cipherByte.Length)]; int len = cipher.ProcessBytes(cipherByte, 0, cipherByte.Length, plaintext, 0); cipher.DoFinal(plaintext, len); return Encoding.UTF8.GetString(plaintext); } public string postJson(string url, string postData, string method = "POST") { HttpWebRequest request = (HttpWebRequest)WebRequest.Create(url); request.Method = method; request.ContentType = "application/json;charset=UTF-8"; request.UserAgent = "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3100.0 Safari/537.36"; request.Accept = "application/json"; string Authorization = GetAuthorization(url, method, postData, prikey, MchId, serialNo); request.Headers.Add("Authorization", Authorization); request.Headers.Add("Wechatpay-Serial", getSerialNo); if (!string.IsNullOrEmpty(postData)) { byte[] paramJsonBytes; paramJsonBytes = System.Text.Encoding.UTF8.GetBytes(postData); request.ContentLength = paramJsonBytes.Length; Stream writer; try { writer = request.GetRequestStream(); } catch (Exception ex) { writer = null; LogHelper.Instance.WriteLog(DateTime.Now.ToString() + "\n" + ex.ToString(), "http请求异常"); } writer.Write(paramJsonBytes, 0, paramJsonBytes.Length); writer.Close(); } HttpWebResponse response; try { response = (HttpWebResponse)request.GetResponse(); } catch (WebException ex) { response = ex.Response as HttpWebResponse; } Stream resStream = response.GetResponseStream(); StreamReader reader = new StreamReader(resStream); string text = reader.ReadToEnd(); return text; //{\"code\":\"PARAM_ERROR\",\"message\":\"请确认待处理的消息是否为加密后的密文\"} //{\"applyment_id\":2000002247709762} } #endregion #region 图片上传 public string GetMediaId(string imgPath) { if (string.IsNullOrEmpty(imgPath)) { return ""; } if (imgPath.Contains(",")) { imgPath = imgPath.Split(',')[0]; } string key = "wechatpic:" + function.MD5_16(imgPath); string media_id = RedisDbconn.Instance.Get(key); if (!string.IsNullOrEmpty(media_id)) { return media_id; } string filePath = function.getPath(imgPath); var filename = Path.GetFileName(filePath); FileStream fs = new FileStream(filePath, FileMode.Open, FileAccess.Read); Byte[] imgBytesIn = new Byte[fs.Length]; fs.Read(imgBytesIn, 0, imgBytesIn.Length); fs.Close(); byte[] hash = SHA256Managed.Create().ComputeHash(imgBytesIn); StringBuilder builder = new StringBuilder(); for (int i = 0; i < hash.Length; i++) { builder.Append(hash[i].ToString("x2")); } var sha256 = builder.ToString(); string metaStr = "{\"filename\":\""+ filename + "\",\"sha256\":\"" + sha256 + "\"}"; media_id = UploadImgApi(metaStr, imgBytesIn, filename); RedisDbconn.Instance.Set(key, media_id); return media_id; } public string UploadImgApi(string metaStr, Byte[] imgBytesIn,string filename) { string url = "https://api.mch.weixin.qq.com/v3/merchant/media/upload"; string merchantId = MchId; //商户号 string privateKey = prikey; #region 定义请求体中的内容 并转成二进制 string boundary = "lc199aecd61b4653ef"; string Enter = "\r\n"; string campaignIDStr1 = "--" + boundary + Enter + "Content-Disposition: form-data; name=\"meta\";" + Enter + "Content-Type:application/json;" + Enter + Enter + metaStr + Enter + "--" + boundary + Enter + "Content-Disposition:form-data;name=\"file\";filename=\""+ filename + "\";" + Enter + "Content-Type:image/jpeg" + Enter + Enter; byte[] byteData2 = imgBytesIn; string campaignIDStr3 = Enter + "--" + boundary + Enter; var byteData1 = System.Text.Encoding.UTF8.GetBytes(campaignIDStr1); var byteData3 = System.Text.Encoding.UTF8.GetBytes(campaignIDStr3); #endregion string transactionsResponse = UploadImg_postJson(url, byteData1, byteData2, byteData3, metaStr, privateKey, merchantId, serialNo, boundary, "POST"); var result=JsonMapper.ToObject(transactionsResponse); return result["media_id"].ToString(); } public string UploadImg_postJson(string url, byte[] b1, byte[] b2, byte[] b3, string metaStr, string privateKey, string merchantId, string serialNo, string boundary, string method = "POST") { HttpWebRequest request = (HttpWebRequest)WebRequest.Create(url); request.Method = method; //request.ContentType = "application/json;charset=UTF-8"; request.ContentType = "multipart/form-data;boundary=" + boundary; request.UserAgent = "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3100.0 Safari/537.36"; request.Accept = "application/json"; string Authorization = GetAuthorization(url, method, metaStr, privateKey, merchantId, serialNo); request.Headers.Add("Authorization", Authorization); Stream writer; try { writer = request.GetRequestStream(); } catch (Exception) { writer = null; } writer.Write(b1, 0, b1.Length); writer.Write(b2, 0, b2.Length); writer.Write(b3, 0, b3.Length); writer.Close(); HttpWebResponse response; try { response = (HttpWebResponse)request.GetResponse(); } catch (WebException ex) { response = ex.Response as HttpWebResponse; } Stream resStream = response.GetResponseStream(); StreamReader reader = new StreamReader(resStream); string text = reader.ReadToEnd(); return text; } protected string GetAuthorization(string url, string method, string jsonParame, string privateKey, string merchantId, string serialNo) { var uri = new Uri(url); string urlPath = uri.PathAndQuery; string nonce = Guid.NewGuid().ToString(); var timestamp = DateTimeOffset.Now.ToUnixTimeSeconds(); //数据签名 HTTP请求方法\n接口地址的url\n请求时间戳\n请求随机串\n请求报文主体\n method = string.IsNullOrEmpty(method) ? "" : method; string message = string.Format("{0}\n{1}\n{2}\n{3}\n{4}\n", method, urlPath, timestamp, nonce, jsonParame); string signTxt = Sign(message, privateKey); //Authorization和格式 string authorzationTxt = string.Format("WECHATPAY2-SHA256-RSA2048 mchid=\"{0}\",nonce_str=\"{1}\",timestamp=\"{2}\",serial_no=\"{3}\",signature=\"{4}\"", merchantId, nonce, timestamp, serialNo, signTxt ); return authorzationTxt; } protected string Sign(string message, string privateKey) { byte[] keyData = Convert.FromBase64String(privateKey); byte[] data = System.Text.Encoding.UTF8.GetBytes(message); var rsa = RSA.Create(); rsa.ImportPkcs8PrivateKey(keyData, out _); return Convert.ToBase64String(rsa.SignData(data, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1)); // using (CngKey cngKey = CngKey.Import(keyData, CngKeyBlobFormat.Pkcs8PrivateBlob)) // using (RSACng rsa = new RSACng(cngKey)) // { // return Convert.ToBase64String(rsa.SignData(data, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1)); // } } #endregion #region 获取文件sha256 public string GetSha256(FileStream stream) { using (SHA256 mySHA256 = SHA256.Create()) { byte[] hashValue = mySHA256.ComputeHash(stream); return Encoding.UTF8.GetString(hashValue); } } #endregion #region 判断长期 public string CheckForever(DateTime? time) { if (time == null) { return ""; } if (time.Value.Year >= 2050) { return "长期"; } return time.Value.ToString("yyyy-MM-dd"); } #endregion } }