Patrick
/
wechat_hitxy
Seguir 1
Destacar 0
Fork 0
Código Incidencias 0 Pull Requests 0 Lanzamientos 0 Wiki Actividad
No puede seleccionar más de 25 temas Los temas deben comenzar con una letra o número, pueden incluir guiones ('-') y pueden tener hasta 35 caracteres de largo.
38 Commits
1 Rama
9.4MB
Árbol: 991cd591d1
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde '991cd591d1'
${ noResults }
wechat_hitxy/server.go

122 líneas
2.7KB
Original Blame Histórico 

  1. package main

  2. 

  3. import (

  4. 	"crypto/sha1"

  5. 	"fmt"

  6. 	"io/ioutil"

  7. 	"log"

  8. 	"net/http"

  9. 	"net/http/httputil"

  10. 	"net/url"

  11. 	"sort"

  12. 	"strings"

  13. )

  14. 

  15. //apiV1Main  version 1 main entry for all wechat callbacks

  16. //

  17. func apiV1Main(w http.ResponseWriter, r *http.Request) {

  18. 	logRequestDebug(httputil.DumpRequest(r, true))

  19. 

  20. 	switch r.Method {

  21. 	case "POST":

  22. 		answerWechatPost(w, r)

  23. 	case "GET":

  24. 		answerInitialAuth(w, r)

  25. 	default:

  26. 		log.Fatalln(fmt.Sprintf("Unhandled HTTP %s", r.Method))

  27. 		fmt.Fprintf(w, "Protocol Error: Expect GET or POST only")

  28. 	}

  29. }

  30. 

  31. //

  32. //answerInitialAuth,  when wechat first verify our URL for API hooks

  33. //

  34. func answerInitialAuth(w http.ResponseWriter, r *http.Request) {

  35. 	rq := r.URL.RawQuery

  36. 	m, _ := url.ParseQuery(rq)

  37. 

  38. 	echostr, eok := m["echostr"]

  39. 	if checkSignature(r) && eok {

  40. 		fmt.Fprintf(w, echostr[0])

  41. 	} else {

  42. 		fmt.Fprintf(w, "wtf is wrong with the Internet")

  43. 	}

  44. }

  45. 

  46. //answerWechatPost  distribute PostRequest according to xml body info

  47. //

  48. func answerWechatPost(w http.ResponseWriter, r *http.Request) {

  49. 	body, _ := ioutil.ReadAll(r.Body)

  50. 	fmt.Printf("get body: %s", string(body))

  51. 	s := ReadEncryptedMsg(string(body))

  52. 	//fmt.Printf("to decrypt %s", s.Encrypt)

  53. 	d := Decode(s.Encrypt)

  54. 	fmt.Printf("decrypt as: %s", d)

  55. 	h := ReadCommonHeader(d)

  56. 	reply, _ := BuildTextMsg(h.MsgType, h.FromUserName)

  57. 	fmt.Fprint(w, reply)

  58. 	return

  59. }

  60. 

  61. //

  62. func checkSignature(r *http.Request) bool {

  63. 	rq := r.URL.RawQuery

  64. 	m, _ := url.ParseQuery(rq)

  65. 

  66. 	signature, sok := m["signature"]

  67. 	timestamp, tok := m["timestamp"]

  68. 	nonce, nok := m["nonce"]

  69. 	token := APIConfig.Token

  70. 	if sok && tok && nok {

  71. 		//sort token, timestamp, nonce  and join them

  72. 		strs := []string{token, timestamp[0], nonce[0]}

  73. 		sort.Strings(strs)

  74. 		s := strings.Join(strs, "")

  75. 

  76. 		//calculate sha1

  77. 		h := sha1.New()

  78. 		h.Write([]byte(s))

  79. 		calculated := fmt.Sprintf("%x", h.Sum(nil))

  80. 		return signature[0] == calculated

  81. 	}

  82. 	return false

  83. }

  84. 

  85. func checkSignature1() bool {

  86. 	s1 := "e39de9f2e28079c01ebb4b803dfc3442b819545c"

  87. 	t1 := "1492970761"

  88. 	n1 := "1850971833"

  89. 	token := APIConfig.Token

  90. 

  91. 	strs := []string{token, t1, n1}

  92. 	sort.Strings(strs)

  93. 	s := strings.Join(strs, "")

  94. 

  95. 	h := sha1.New()

  96. 	h.Write([]byte(s))

  97. 	us := fmt.Sprintf("%x", h.Sum(nil))

  98. 	return s1 == us

  99. }

  100. 

  101. //webrootHandler sending contents to client when request "/"

  102. //      essentially to prove the webserver is still alive

  103. //      echo query string to the client

  104. func webrootHandler(w http.ResponseWriter, r *http.Request) {

  105. 	fmt.Fprintf(w, "Hi there, I love %s!", r.URL.Path[1:])

  106. 	rq := r.URL.RawQuery

  107. 	m, _ := url.ParseQuery(rq)

  108. 	for index, element := range m {

  109. 		fmt.Fprintf(w, "\n%s => %s", index, element)

  110. 	}

  111. 	logRequestDebug(httputil.DumpRequest(r, true))

  112. 

  113. }

  114. 

  115. func logRequestDebug(data []byte, err error) {

  116. 	if err == nil {

  117. 		fmt.Printf("%s\n\n", data)

  118. 	} else {

  119. 		log.Fatalf("%s\n\n", err)

  120. 	}

  121. }