package com.gkhy.exam.pay.utils; import cn.com.jit.new_vstk.AdvanceSignClient; import cn.com.jit.new_vstk.Bean.*; import cn.com.jit.new_vstk.SignClient; import cn.com.jit.new_vstk.exception.NewCSSException; import com.alibaba.fastjson2.JSONObject; import com.gkhy.exam.pay.entity.PayReqData; import lombok.extern.slf4j.Slf4j; import org.apache.commons.codec.digest.DigestUtils; import org.apache.http.HttpEntity; import org.apache.http.HttpResponse; import org.apache.http.NameValuePair; import org.apache.http.StatusLine; import org.apache.http.client.ClientProtocolException; import org.apache.http.client.HttpClient; import org.apache.http.client.HttpResponseException; import org.apache.http.client.ResponseHandler; import org.apache.http.client.config.AuthSchemes; import org.apache.http.client.config.CookieSpecs; import org.apache.http.client.config.RequestConfig; import org.apache.http.client.entity.UrlEncodedFormEntity; import org.apache.http.client.methods.HttpPost; import org.apache.http.config.Registry; import org.apache.http.config.RegistryBuilder; import org.apache.http.conn.socket.ConnectionSocketFactory; import org.apache.http.conn.socket.PlainConnectionSocketFactory; import org.apache.http.conn.ssl.NoopHostnameVerifier; import org.apache.http.conn.ssl.SSLConnectionSocketFactory; import org.apache.http.entity.ContentType; import org.apache.http.impl.client.CloseableHttpClient; import org.apache.http.impl.client.HttpClients; import org.apache.http.impl.conn.PoolingHttpClientConnectionManager; import org.apache.http.message.BasicNameValuePair; import org.apache.http.util.EntityUtils; import org.dom4j.Element; import org.dom4j.io.OutputFormat; import org.dom4j.io.XMLWriter; import org.springframework.beans.factory.annotation.Value; import org.springframework.http.ResponseEntity; import org.springframework.stereotype.Component; import javax.net.ssl.SSLContext; import javax.net.ssl.TrustManager; import javax.net.ssl.X509TrustManager; import java.io.*; import java.nio.charset.StandardCharsets; import java.security.KeyManagementException; import java.security.NoSuchAlgorithmException; import java.security.cert.X509Certificate; import java.util.*; /** * 缴费相关接口 */ @Component @Slf4j public class PayUtils { // private final static String appid = "ED76A5F1703540BE977D34780B371FEB"; @Value("${finance.orderUrl}") private String orderUrl; @Value("${finance.payNotifyUrl}") private String payNotifyUrl; @Value("${finance.payQueryUrl}") private String payQueryUrl; @Value("${finance.apiId}") private String appId; @Value("${finance.queryUrl}") private String queryUrl; @Value("${finance.uploadXmlUrl}") private String uploadXmlUrl; /** * 请求开票,发起支付 * @param payReqData * @return * @throws IOException */ public ResultVo sendApiPost(PayReqData payReqData) throws IOException { Map param = new HashMap<>(); HttpPost httpPost = new HttpPost("http://finpt.xjcz.gov.cn/fs-service-test/fs-pay/invoice.do"); log.info("请求地址:"+"http://finpt.xjcz.gov.cn/fs-service-test/fs-pay/invoice.do"); //请求参数转为json格式base64编码 String reqData = Base64.getEncoder().encodeToString(JSONObject.toJSONString(payReqData).getBytes()); String mac = "ED76A5F1703540BE977D34780B371FEB" + "||" + reqData; mac = DigestUtils.md5Hex(mac.getBytes()); param.put("appid", "ED76A5F1703540BE977D34780B371FEB"); log.info("请求appid:"+"ED76A5F1703540BE977D34780B371FEB"); param.put("reqdata", reqData); param.put("mac", mac); httpPost.setEntity(assemblyFormEntity(param, "utf-8")); HttpClient httpClient = getHttpClient("http://finpt.xjcz.gov.cn/fs-service-test/fs-pay/invoice.do"); HttpResultVo execute = httpClient.execute(httpPost, getResponseHandler()); String stringContent = execute.getStringContent(); ResultVo resultVo = JSONObject.parseObject(stringContent, ResultVo.class); log.info("请求结果为:"+resultVo); return resultVo; } //组装请求体 private static UrlEncodedFormEntity assemblyFormEntity(Map parameters, String charset) { List formParameters = assemblyParameter(parameters); UrlEncodedFormEntity formEntity = null; try { if (charset != null) { formEntity = new UrlEncodedFormEntity(formParameters, charset); } else { formEntity = new UrlEncodedFormEntity(formParameters); } } catch (UnsupportedEncodingException e) { e.printStackTrace(); } return formEntity; } private static List assemblyParameter(Map parameters) { List allParameter = new ArrayList<>(); if (parameters != null && !parameters.isEmpty()) { for (String name : parameters.keySet()) { NameValuePair parameter = new BasicNameValuePair(name, parameters.get(name)); allParameter.add(parameter); } } return allParameter; } public static HttpClient getHttpClient(String url) { // 判断https访问 if (url.startsWith("https")) { return sslClient(); } return HttpClients.createDefault(); } //在调用SSL之前需要重写验证方法,取消检测SSL 创建ConnectionManager,添加Connection配置信息 private static HttpClient sslClient() { try { // 在调用SSL之前需要重写验证方法,取消检测SSL X509TrustManager trustManager = new X509TrustManager() { @Override public X509Certificate[] getAcceptedIssuers() { return null; } @Override public void checkClientTrusted(X509Certificate[] xcs, String str) { } @Override public void checkServerTrusted(X509Certificate[] xcs, String str) { } }; SSLContext ctx = SSLContext.getInstance(SSLConnectionSocketFactory.TLS); ctx.init(null, new TrustManager[]{trustManager}, null); SSLConnectionSocketFactory socketFactory = new SSLConnectionSocketFactory(ctx, NoopHostnameVerifier.INSTANCE); // 创建Registry RequestConfig requestConfig = RequestConfig.custom().setCookieSpec(CookieSpecs.STANDARD_STRICT).setExpectContinueEnabled(Boolean.TRUE) .setTargetPreferredAuthSchemes(Arrays.asList(AuthSchemes.NTLM, AuthSchemes.DIGEST)) .setProxyPreferredAuthSchemes(Arrays.asList(AuthSchemes.BASIC)).build(); Registry socketFactoryRegistry = RegistryBuilder.create() .register("http", PlainConnectionSocketFactory.INSTANCE).register("https", socketFactory).build(); // 创建ConnectionManager,添加Connection配置信息 PoolingHttpClientConnectionManager connectionManager = new PoolingHttpClientConnectionManager(socketFactoryRegistry); CloseableHttpClient closeableHttpClient = HttpClients.custom().setConnectionManager(connectionManager) .setDefaultRequestConfig(requestConfig).build(); return closeableHttpClient; } catch (KeyManagementException ex) { throw new RuntimeException(ex); } catch (NoSuchAlgorithmException ex) { throw new RuntimeException(ex); } } //获取响应结果处理器,将响应结果封装为HttpResult对象 private static ResponseHandler getResponseHandler() { ResponseHandler responseHandler = new ResponseHandler() { @Override public HttpResultVo handleResponse(HttpResponse httpResponse) throws ClientProtocolException, IOException { if (httpResponse == null) { throw new ClientProtocolException("HttpResponse is null"); } StatusLine statusLine = httpResponse.getStatusLine(); HttpEntity httpEntity = httpResponse.getEntity(); if (statusLine == null) { throw new ClientProtocolException("HttpResponse contains no StatusLine"); } if (statusLine.getStatusCode() != 200) { throw new HttpResponseException(statusLine.getStatusCode(), statusLine.getReasonPhrase()); } if (httpEntity == null) { throw new ClientProtocolException("HttpResponse contains no HttpEntity"); } HttpResultVo httpResult = new HttpResultVo(); httpResult.setStatusCode(statusLine.getStatusCode()); ContentType contentType = ContentType.getOrDefault(httpEntity); httpResult.setContentType(contentType.toString()); boolean isTextType = isTextType(contentType); httpResult.setTextType(isTextType); if (isTextType) { httpResult.setStringContent(EntityUtils.toString(httpEntity)); } else { httpResult.setByteArrayContent(EntityUtils.toByteArray(httpEntity)); } httpResult.setHeaders(httpResponse.getAllHeaders()); return httpResult; } }; return responseHandler; } //判断相应内容是否为文本类型 private static boolean isTextType(ContentType contentType) { if (contentType == null) { throw new RuntimeException("ContentType is null"); } if (contentType.getMimeType().startsWith("text")) { return true; } else if (contentType.getMimeType().startsWith("image")) { return false; } else if (contentType.getMimeType().startsWith("application")) { if (contentType.getMimeType().contains("json") || contentType.getMimeType().contains("xml")) { return true; } else { return false; } } else if (contentType.getMimeType().startsWith("multipart")) { return false; } else { return true; } } //缴费结果通知 public Map receive(JSONObject jsonObject) throws IOException { Map params = new HashMap<>(); JSONObject reqdata = new JSONObject(); Map result = (Map) jsonObject.get("reqdata"); String orderNo = result.get("orderNo"); //确认是否成功 String notarize = affirmPost(orderNo); reqdata.put("orderNo", orderNo); reqdata.put("status", notarize); String req = Base64.getEncoder().encodeToString(reqdata.toJSONString().getBytes()); String mac = appId + "||" + req; mac = DigestUtils.md5Hex(mac.getBytes()); params.put("appid", appId); params.put("reqdata", req); params.put("mac", mac); return params; } //缴费结果确认查询 public String affirmPost(String orderNo) throws IOException { HashMap param = new HashMap<>(); JSONObject jsonObject = new JSONObject(); jsonObject.put("orderNo", orderNo); String reqdata = Base64.getEncoder().encodeToString(jsonObject.toJSONString().getBytes()); String mac = appId + "||" + reqdata; mac = DigestUtils.md5Hex(mac.getBytes()); param.put("appid", appId); param.put("reqdata", reqdata); param.put("mac", mac); HttpPost httppost = new HttpPost(payNotifyUrl); httppost.setEntity(assemblyFormEntity(param, "utf-8")); HttpClient httpClient = getHttpClient(payNotifyUrl); HttpResultVo execute = httpClient.execute(httppost, getResponseHandler()); String stringContent = execute.getStringContent(); ResultVo resultVo = JSONObject.parseObject(stringContent, ResultVo.class); log.info("请求结果为:" + resultVo); if (resultVo.getRespcode().equals("BUS0000")) { return "success"; } return "fail"; } //缴费结果查询 public JSONObject query(String orderNo) throws IOException { HashMap param = new HashMap<>(); JSONObject jsonObject = new JSONObject(); jsonObject.put("orderNo", orderNo); String reqdata = Base64.getEncoder().encodeToString(jsonObject.toJSONString().getBytes()); String mac = appId + "||" + reqdata; mac = DigestUtils.md5Hex(mac.getBytes()); param.put("appid", appId); param.put("reqdata", reqdata); param.put("mac", mac); HttpPost httppost = new HttpPost(payQueryUrl); httppost.setEntity(assemblyFormEntity(param, "utf-8")); HttpClient httpClient = getHttpClient(payQueryUrl); HttpResultVo execute = httpClient.execute(httppost, getResponseHandler()); String stringContent = execute.getStringContent(); JSONObject result = JSONObject.parseObject(stringContent); log.info("请求结果json为:" + result); return result; } //票据查询 public ResponseEntity findBill(String billNO) throws IOException { Map params = new HashMap<>(); JSONObject jsonObject = new JSONObject(); jsonObject.put("billNo",billNO); String reqdata = Base64.getEncoder().encodeToString(jsonObject.toJSONString().getBytes()); String mac = appId+"||"+reqdata; mac = DigestUtils.md5Hex(mac.getBytes()); params.put("appid",appId); params.put("reqdata",reqdata); params.put("mac",mac); HttpPost httpPost = new HttpPost(queryUrl); httpPost.setEntity(assemblyFormEntity(params,"utf-8")); HttpClient httpClient = getHttpClient(queryUrl); HttpResultVo execute = httpClient.execute(httpPost, getResponseHandler()); String stringContent = execute.getStringContent(); JSONObject jsonObject1 = JSONObject.parseObject(stringContent); log.info("请求结果转json后为:"+jsonObject1); String result = (String) jsonObject1.get("reqdata"); return ResponseEntity.ok(result); } //上传财政电子票据签名文件 public ResultVo uploadXml(String orderId, byte[] plain) throws IOException { Map params = new HashMap<>(); Sign sign = new Sign(); SignResult sign1 = this.sign(plain); log.info("签名结果为:"+ Arrays.toString(sign1.getSignData())); VerifyResult verify = this.verify(plain, new String(sign1.getSignData())); SignDto signDto = new SignDto("SM3", "Base64", new Date(), verify.getReturnData(), verify.getSerialNumber(), verify.getIssure()); Element signature = sign.getSignature(signDto); JSONObject jsonObject = new JSONObject(); jsonObject.put("orderNo",orderId); jsonObject.put("fileData", Base64.getEncoder().encodeToString(convertElementToByteArray(signature))); String reqdata = Base64.getEncoder().encodeToString(jsonObject.toJSONString().getBytes()); String mac = appId+"||" +reqdata; mac = DigestUtils.md5Hex(mac.getBytes()); params.put("appid",appId); params.put("reqdata",reqdata); params.put("mac",mac); HttpPost httpPost = new HttpPost(uploadXmlUrl); httpPost.setEntity(assemblyFormEntity(params,"utf-8")); HttpClient httpClient = getHttpClient(uploadXmlUrl); HttpResultVo execute = httpClient.execute(httpPost, getResponseHandler()); String stringContent = execute.getStringContent(); ResultVo resultVo = JSONObject.parseObject(stringContent, ResultVo.class); log.info("请求结果转为:"+resultVo); return resultVo; } //获取XML文件字节码 public static byte[] convertElementToByteArray(Element element) { ByteArrayOutputStream byteArrayOutputStream = new ByteArrayOutputStream(); try { // 设置输出格式 OutputFormat format = OutputFormat.createPrettyPrint(); format.setEncoding("UTF-8"); // 设置编码为UTF-8 // 创建 XMLWriter XMLWriter writer = new XMLWriter(new OutputStreamWriter(byteArrayOutputStream, StandardCharsets.UTF_8), format); // 写入 Element 对象 writer.write(element.getDocument()); writer.close(); // 关闭 writer,确保所有数据都被写入 } catch (IOException e) { e.printStackTrace(); // 打印异常信息 // 处理异常,比如返回一个空的字节数组或重新抛出异常 return new byte[0]; } // 返回字节数组 return byteArrayOutputStream.toByteArray(); } //签名 public SignResult sign(byte[] strData) { SignResult result = null; String certId = "rsa"; try { AdvanceSignClient client = new AdvanceSignClient("cssconfig.properties"); result = client.sign(certId,strData); log.info("***签名成功***"); byte[] signData = result.getSignData(); String s = new String(Base64.getEncoder().encode(signData)); log.info("签名结果为:"+s); } catch (NewCSSException e) { log.info("签名失败"); log.info("错误号为:" + e.getCode()); log.info("错误描述为: " + e.getDescription()); log.info("日志标识码: " + e.getSerialNumber()); } return result; } /** * 验签名 */ public VerifyResult verify(byte[] strData,String signData){ VerifyResult verify = null; try { AdvanceSignClient client = new AdvanceSignClient("src/main/resources/cssconfig.properties"); byte[] plain = strData; byte[] sign = signData.getBytes(); verify = client.verify(sign, plain); log.info("验签成功"); log.info(" 证书subjectdn: " + verify.getSubjectdn()); log.info(" 证书issuer: " + verify.getIssure()); log.info(" 证书SN: " + verify.getSn()); log.info(" 证书实体base64: " + verify.getDsCert()); } catch (NewCSSException e) { log.info("****操作失败****"); log.info("错误号为:" + e.getCode()); log.info("错误描述为: " + e.getDescription()); log.info("日志标识码: " + e.getSerialNumber()); } return verify; } /** * 制作数字信封 */ public EnvelopResult encryptEnvelop(String plain){ EnvelopResult envelopResult = null; try { AdvanceSignClient client = new AdvanceSignClient("cssconfig.properties"); String certId = "rsa"; CertIdParams certIdParams = new CertIdParams(certId); //将封装好的加密证书参数对象放入 数组中 CertParams[] envelopCerts = new CertIdParams[]{certIdParams}; byte[] bytes = plain.getBytes(); /* 制作信封 */ envelopResult = client.encryptEnvelop(envelopCerts, bytes); byte[] envelopData = envelopResult.getEnvelopData(); log.info("信封结果:["+envelopData+"]"); } catch (NewCSSException e) { throw new RuntimeException(e); } return envelopResult; } /** * 解密数字信封 */ public DecryptResult decryptEnvelop(String signData){ DecryptResult result = null; try { AdvanceSignClient client = new AdvanceSignClient("cssconfig.properties"); byte[] enc_data = signData.getBytes(); result = client.decryptEnvelop(enc_data); log.info("解密数字信封结果成功"); String plainData = new String(result.getPlainData()); log.info("原文:"+plainData); log.info(" 证书subjectdn: " + result.getSubjectdn()); log.info(" 证书issuer: " + result.getIssure()); log.info(" 证书SN: " + result.getSn()); log.info(" 证书实体base64: " + result.getDsCert()); } catch (NewCSSException e) { log.info("****操作失败****"); log.info("错误号为:" + e.getCode()); log.info("错误描述为: " + e.getDescription()); log.info("日志标识码: " + e.getSerialNumber()); } return result; } }