增加微信支付通知处理器

Author: lianup

src/main/java/com/wechat/pay/contrib/apache/httpclient/exception/ParseException.java

@@ -0,0 +1,17 @@
+package com.wechat.pay.contrib.apache.httpclient.exception;
+
+/**
+ * @author lianup
+ */
+public class ParseException extends WechatPayException {
+
+    private static final long serialVersionUID = 4300538230471368120L;
+
+    public ParseException(String message) {
+        super(message);
+    }
+
+    public ParseException(String message, Throwable cause) {
+        super(message, cause);
+    }
+}

src/main/java/com/wechat/pay/contrib/apache/httpclient/exception/ValidationException.java

@@ -0,0 +1,15 @@
+package com.wechat.pay.contrib.apache.httpclient.exception;
+
+/**
+ * @author lianup
+ */
+public class ValidationException extends WechatPayException {
+
+
+    private static final long serialVersionUID = -3473204321736989263L;
+
+
+    public ValidationException(String message) {
+        super(message);
+    }
+}

src/main/java/com/wechat/pay/contrib/apache/httpclient/exception/WechatPayException.java

@@ -10,4 +10,9 @@ public abstract class WechatPayException extends Exception {
     public WechatPayException(String message) {
         super(message);
     }
+
+    public WechatPayException(String message, Throwable cause) {
+        super(message, cause);
+    }
+
 }

src/main/java/com/wechat/pay/contrib/apache/httpclient/notification/Notification.java

@@ -0,0 +1,113 @@
+package com.wechat.pay.contrib.apache.httpclient.notification;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+/**
+ * 通知结果
+ *
+ * @author lianup
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class Notification {
+
+    @JsonProperty("id")
+    private String id;
+    @JsonProperty("create_time")
+    private String createTime;
+    @JsonProperty("event_type")
+    private String eventType;
+    @JsonProperty("resource_type")
+    private String resourceType;
+    @JsonProperty("summary")
+    private String summary;
+
+    public String getResourceType() {
+        return resourceType;
+    }
+
+    public Resource getResource() {
+        return resource;
+    }
+
+    @JsonProperty("resource")
+    private Resource resource;
+    private String decryptData;
+
+    @Override
+    public String toString() {
+        return "Notification{" +
+                "id='" + id + '\'' +
+                ", createTime='" + createTime + '\'' +
+                ", eventType='" + eventType + '\'' +
+                ", resourceType='" + resourceType + '\'' +
+                ", decryptData='" + decryptData + '\'' +
+                ", summary='" + summary + '\'' +
+                ", resource=" + resource +
+                '}';
+    }
+
+    public String getId() {
+        return id;
+    }
+
+    public String getCreateTime() {
+        return createTime;
+    }
+
+    public String getEventType() {
+        return eventType;
+    }
+
+    public String getDecryptData() {
+        return decryptData;
+    }
+
+    public String getSummary() {
+        return summary;
+    }
+
+    public void setDecryptData(String decryptData) {
+        this.decryptData = decryptData;
+    }
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public class Resource {
+
+        @JsonProperty("algorithm")
+        private String algorithm;
+        @JsonProperty("ciphertext")
+        private String ciphertext;
+        @JsonProperty("associated_data")
+        private String associatedData;
+        @JsonProperty("nonce")
+        private String nonce;
+
+        public String getAlgorithm() {
+            return algorithm;
+        }
+
+        public String getCiphertext() {
+            return ciphertext;
+        }
+
+        public String getAssociatedData() {
+            return associatedData;
+        }
+
+        public String getNonce() {
+            return nonce;
+        }
+
+        @Override
+        public String toString() {
+            return "Resource{" +
+                    "algorithm='" + algorithm + '\'' +
+                    ", ciphertext='" + ciphertext + '\'' +
+                    ", associatedData='" + associatedData + '\'' +
+                    ", nonce='" + nonce + '\'' +
+                    '}';
+        }
+    }
+
+}

src/main/java/com/wechat/pay/contrib/apache/httpclient/notification/NotificationHandler.java

@@ -0,0 +1,134 @@
+package com.wechat.pay.contrib.apache.httpclient.notification;
+
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.databind.ObjectReader;
+import com.wechat.pay.contrib.apache.httpclient.auth.Verifier;
+import com.wechat.pay.contrib.apache.httpclient.exception.ParseException;
+import com.wechat.pay.contrib.apache.httpclient.exception.ValidationException;
+import com.wechat.pay.contrib.apache.httpclient.notification.Notification.Resource;
+import com.wechat.pay.contrib.apache.httpclient.util.AesUtil;
+import java.io.IOException;
+import java.nio.charset.StandardCharsets;
+import java.security.GeneralSecurityException;
+
+/**
+ * @author lianup
+ */
+public class NotificationHandler {
+
+    private final Verifier verifier;
+    private final byte[] apiV3Key;
+    private static final ObjectMapper objectMapper = new ObjectMapper();
+
+public NotificationHandler(Verifier verifier, byte[] apiV3Key) {
+    if (verifier == null) {
+        throw new IllegalArgumentException("verifier为空");
+    }
+    if (apiV3Key == null || apiV3Key.length == 0) {
+        throw new IllegalArgumentException("apiV3Key为空");
+    }
+    this.verifier = verifier;
+    this.apiV3Key = apiV3Key;
+}
+
+    /**
+     * 解析微信支付通知请求结果
+     *
+     * @param request 微信支付通知请求
+     * @return 微信支付通知报文解密结果
+     * @throws ValidationException 验签失败
+     * @throws ParseException 解析请求体失败
+     */
+    public Notification parse(Request request)
+            throws ValidationException, ParseException {
+        // 验签
+        validate(request);
+        // 解析请求体
+        return parseBody(request.getBody());
+    }
+
+    private void validate(Request request) throws ValidationException {
+        if (request == null) {
+            throw new ValidationException("request为空");
+        }
+        String serialNumber = request.getSerialNumber();
+        byte[] message = request.getMessage();
+        String signature = request.getSignature();
+        if (serialNumber == null || serialNumber.isEmpty()) {
+            throw new ValidationException("serialNumber为空");
+        }
+        if (message == null || message.length == 0) {
+            throw new ValidationException("message为空");
+        }
+        if (signature == null || signature.isEmpty()) {
+            throw new ValidationException("signature为空");
+        }
+        if (!verifier.verify(serialNumber, message, signature)) {
+            String errorMessage = String
+                    .format("验签失败：serial=[%s] message=[%s] sign=[%s]", serialNumber, new String(message), signature);
+            throw new ValidationException(errorMessage);
+        }
+    }
+
+    /**
+     * 解析请求体
+     *
+     * @param body 请求体
+     * @return 解析结果
+     * @throws ParseException 解析body失败
+     */
+    private Notification parseBody(String body) throws ParseException {
+        ObjectReader objectReader = objectMapper.reader();
+        Notification notification;
+        try {
+            notification = objectReader.readValue(body, Notification.class);
+        } catch (IOException ioException) {
+            throw new ParseException("解析body失败，body:" + body, ioException);
+        }
+        setDecryptData(notification);
+        return notification;
+    }
+
+    /**
+     * 获取解密数据
+     *
+     * @param notification 解析body得到的通知结果
+     * @return 解密数据
+     * @throws ParseException 解析body失败
+     */
+    private String setDecryptData(Notification notification) throws ParseException {
+        if (notification == null) {
+            throw new ParseException("body解析为空。notification：" + notification.toString());
+        }
+        Resource resource = notification.getResource();
+        if (resource == null) {
+            throw new ParseException("body不合法，resource为空。notification：" + notification.toString());
+        }
+        String getAssociatedData = resource.getAssociatedData();
+        String getBodyNonce = resource.getNonce();
+        String ciphertext = resource.getCiphertext();
+        if (getBodyNonce == null || getBodyNonce.isEmpty()) {
+            throw new ParseException("body不合法，associated_data为空。notification：" + notification.toString());
+        }
+        if (ciphertext == null || ciphertext.isEmpty()) {
+            throw new ParseException("body不合法，ciphertext为空。notification：" + notification.toString());
+        }
+        byte[] associatedData = null;
+        if (!getAssociatedData.isEmpty()) {
+            associatedData = getAssociatedData.getBytes(StandardCharsets.UTF_8);
+        }
+        byte[] bodyNonce = notification.getResource().getNonce().getBytes(StandardCharsets.UTF_8);
+        AesUtil aesUtil = new AesUtil(apiV3Key);
+        String decryptData;
+        try {
+            decryptData = aesUtil.decryptToString(associatedData, bodyNonce, ciphertext);
+        } catch (GeneralSecurityException e) {
+            String errorMessage = String.format("aes解密失败 apiV3Key[%s]， associatedData[%s] bodyNonce[%s] ciphertext[%s]",
+                    new String(apiV3Key), getAssociatedData, new String(bodyNonce), ciphertext);
+            throw new ParseException(errorMessage, e);
+        }
+        notification.setDecryptData(decryptData);
+        return decryptData;
+    }
+}

src/main/java/com/wechat/pay/contrib/apache/httpclient/notification/NotificationRequest.java

@@ -0,0 +1,88 @@
+package com.wechat.pay.contrib.apache.httpclient.notification;
+
+import java.nio.charset.StandardCharsets;
+
+/**
+ * @author lianup
+ */
+public class NotificationRequest implements Request {
+
+    private final String serialNumber;
+    private final String signature;
+    private final byte[] message;
+    private final String body;
+
+    private NotificationRequest(String serialNumber, String signature, byte[] message, String body) {
+        this.serialNumber = serialNumber;
+        this.signature = signature;
+        this.message = message;
+        this.body = body;
+    }
+
+    @Override
+    public String getSerialNumber() {
+        return serialNumber;
+    }
+
+    @Override
+    public byte[] getMessage() {
+        return message;
+    }
+
+    @Override
+    public String getSignature() {
+        return signature;
+    }
+
+    @Override
+    public String getBody() {
+        return body;
+    }
+
+    public static class Builder {
+
+        private String serialNumber;
+        private String timestamp;
+        private String nonce;
+        private String signature;
+        private String body;
+
+        public Builder() {
+        }
+
+        public Builder withSerialNumber(String serialNumber) {
+            this.serialNumber = serialNumber;
+            return this;
+        }
+
+        public Builder withTimestamp(String timestamp) {
+            this.timestamp = timestamp;
+            return this;
+        }
+
+        public Builder withNonce(String nonce) {
+            this.nonce = nonce;
+            return this;
+        }
+
+        public Builder withSignature(String signature) {
+            this.signature = signature;
+            return this;
+        }
+
+        public Builder withBody(String body) {
+            this.body = body;
+            return this;
+        }
+
+        public NotificationRequest build() {
+            byte[] message = buildMessage();
+            return new NotificationRequest(serialNumber, signature, message, body);
+        }
+
+        private byte[] buildMessage() {
+            String verifyMessage = timestamp + "\n" + nonce + "\n" + body + "\n";
+            return verifyMessage.getBytes(StandardCharsets.UTF_8);
+        }
+    }
+}