loumengning
/
shop
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
256 Commits
3 Branches
51 MiB
 
 
 
 
 
 
Tree: 2eac050e82
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2eac050e82'
${ noResults }
shop/vendor/overtrue/wechat/src/Server/Guard.php

499 lines
11 KiB
Raw Blame History 

  1. <?php

  2. 

  3. /*

  4.  * This file is part of the overtrue/wechat.

  5.  *

  6.  * (c) overtrue <i@overtrue.me>

  7.  *

  8.  * This source file is subject to the MIT license that is bundled

  9.  * with this source code in the file LICENSE.

  10.  */

  11. 

  12. /**

  13.  * Guard.php.

  14.  *

  15.  * @author    overtrue <i@overtrue.me>

  16.  * @copyright 2015 overtrue <i@overtrue.me>

  17.  *

  18.  * @see      https://github.com/overtrue

  19.  * @see      http://overtrue.me

  20.  */

  21. 

  22. namespace EasyWeChat\Server;

  23. 

  24. use EasyWeChat\Core\Exceptions\FaultException;

  25. use EasyWeChat\Core\Exceptions\InvalidArgumentException;

  26. use EasyWeChat\Core\Exceptions\RuntimeException;

  27. use EasyWeChat\Encryption\Encryptor;

  28. use EasyWeChat\Message\AbstractMessage;

  29. use EasyWeChat\Message\Raw as RawMessage;

  30. use EasyWeChat\Message\Text;

  31. use EasyWeChat\Support\Collection;

  32. use EasyWeChat\Support\Log;

  33. use EasyWeChat\Support\XML;

  34. use Symfony\Component\HttpFoundation\Request;

  35. use Symfony\Component\HttpFoundation\Response;

  36. 

  37. /**

  38.  * Class Guard.

  39.  */

  40. class Guard

  41. {

  42.     /**

  43.      * Empty string.

  44.      */

  45.     const SUCCESS_EMPTY_RESPONSE = 'success';

  46. 

  47.     const TEXT_MSG = 2;

  48.     const IMAGE_MSG = 4;

  49.     const VOICE_MSG = 8;

  50.     const VIDEO_MSG = 16;

  51.     const SHORT_VIDEO_MSG = 32;

  52.     const LOCATION_MSG = 64;

  53.     const LINK_MSG = 128;

  54.     const DEVICE_EVENT_MSG = 256;

  55.     const DEVICE_TEXT_MSG = 512;

  56.     const FILE_MSG = 1024;

  57.     const EVENT_MSG = 1048576;

  58.     const ALL_MSG = 1050622;

  59. 

  60.     /**

  61.      * @var Request

  62.      */

  63.     protected $request;

  64. 

  65.     /**

  66.      * @var string

  67.      */

  68.     protected $token;

  69. 

  70.     /**

  71.      * @var Encryptor

  72.      */

  73.     protected $encryptor;

  74. 

  75.     /**

  76.      * @var string|callable

  77.      */

  78.     protected $messageHandler;

  79. 

  80.     /**

  81.      * @var int

  82.      */

  83.     protected $messageFilter;

  84. 

  85.     /**

  86.      * @var array

  87.      */

  88.     protected $messageTypeMapping = [

  89.         'text' => 2,

  90.         'image' => 4,

  91.         'voice' => 8,

  92.         'video' => 16,

  93.         'shortvideo' => 32,

  94.         'location' => 64,

  95.         'link' => 128,

  96.         'device_event' => 256,

  97.         'device_text' => 512,

  98.         'file' => 1024,

  99.         'event' => 1048576,

  100.     ];

  101. 

  102.     /**

  103.      * @var bool

  104.      */

  105.     protected $debug = false;

  106. 

  107.     /**

  108.      * Constructor.

  109.      *

  110.      * @param string  $token

  111.      * @param Request $request

  112.      */

  113.     public function __construct($token, Request $request = null)

  114.     {

  115.         $this->token = $token;

  116.         $this->request = $request ?: Request::createFromGlobals();

  117.     }

  118. 

  119.     /**

  120.      * Enable/Disable debug mode.

  121.      *

  122.      * @param bool $debug

  123.      *

  124.      * @return $this

  125.      */

  126.     public function debug($debug = true)

  127.     {

  128.         $this->debug = $debug;

  129. 

  130.         return $this;

  131.     }

  132. 

  133.     /**

  134.      * Handle and return response.

  135.      *

  136.      * @return Response

  137.      *

  138.      * @throws BadRequestException

  139.      */

  140.     public function serve()

  141.     {

  142.         Log::debug('Request received:', [

  143.             'Method' => $this->request->getMethod(),

  144.             'URI' => $this->request->getRequestUri(),

  145.             'Query' => $this->request->getQueryString(),

  146.             'Protocal' => $this->request->server->get('SERVER_PROTOCOL'),

  147.             'Content' => $this->request->getContent(),

  148.         ]);

  149. 

  150.         $this->validate($this->token);

  151. 

  152.         if ($str = $this->request->get('echostr')) {

  153.             Log::debug("Output 'echostr' is '$str'.");

  154. 

  155.             return new Response($str);

  156.         }

  157. 

  158.         $result = $this->handleRequest();

  159. 

  160.         $response = $this->buildResponse($result['to'], $result['from'], $result['response']);

  161. 

  162.         Log::debug('Server response created:', compact('response'));

  163. 

  164.         return new Response($response);

  165.     }

  166. 

  167.     /**

  168.      * Validation request params.

  169.      *

  170.      * @param string $token

  171.      *

  172.      * @throws FaultException

  173.      */

  174.     public function validate($token)

  175.     {

  176.         $params = [

  177.             $token,

  178.             $this->request->get('timestamp'),

  179.             $this->request->get('nonce'),

  180.         ];

  181. 

  182.         if (!$this->debug && $this->request->get('signature') !== $this->signature($params)) {

  183.             throw new FaultException('Invalid request signature.', 400);

  184.         }

  185.     }

  186. 

  187.     /**

  188.      * Add a event listener.

  189.      *

  190.      * @param callable $callback

  191.      * @param int      $option

  192.      *

  193.      * @return Guard

  194.      *

  195.      * @throws InvalidArgumentException

  196.      */

  197.     public function setMessageHandler($callback = null, $option = self::ALL_MSG)

  198.     {

  199.         if (!is_callable($callback)) {

  200.             throw new InvalidArgumentException('Argument #2 is not callable.');

  201.         }

  202. 

  203.         $this->messageHandler = $callback;

  204.         $this->messageFilter = $option;

  205. 

  206.         return $this;

  207.     }

  208. 

  209.     /**

  210.      * Return the message listener.

  211.      *

  212.      * @return string

  213.      */

  214.     public function getMessageHandler()

  215.     {

  216.         return $this->messageHandler;

  217.     }

  218. 

  219.     /**

  220.      * Request getter.

  221.      *

  222.      * @return Request

  223.      */

  224.     public function getRequest()

  225.     {

  226.         return $this->request;

  227.     }

  228. 

  229.     /**

  230.      * Request setter.

  231.      *

  232.      * @param Request $request

  233.      *

  234.      * @return $this

  235.      */

  236.     public function setRequest(Request $request)

  237.     {

  238.         $this->request = $request;

  239. 

  240.         return $this;

  241.     }

  242. 

  243.     /**

  244.      * Set Encryptor.

  245.      *

  246.      * @param Encryptor $encryptor

  247.      *

  248.      * @return Guard

  249.      */

  250.     public function setEncryptor(Encryptor $encryptor)

  251.     {

  252.         $this->encryptor = $encryptor;

  253. 

  254.         return $this;

  255.     }

  256. 

  257.     /**

  258.      * Return the encryptor instance.

  259.      *

  260.      * @return Encryptor

  261.      */

  262.     public function getEncryptor()

  263.     {

  264.         return $this->encryptor;

  265.     }

  266. 

  267.     /**

  268.      * Build response.

  269.      *

  270.      * @param $to

  271.      * @param $from

  272.      * @param mixed $message

  273.      *

  274.      * @return string

  275.      *

  276.      * @throws \EasyWeChat\Core\Exceptions\InvalidArgumentException

  277.      */

  278.     protected function buildResponse($to, $from, $message)

  279.     {

  280.         if (empty($message) || self::SUCCESS_EMPTY_RESPONSE === $message) {

  281.             return self::SUCCESS_EMPTY_RESPONSE;

  282.         }

  283. 

  284.         if ($message instanceof RawMessage) {

  285.             return $message->get('content', self::SUCCESS_EMPTY_RESPONSE);

  286.         }

  287. 

  288.         if (is_string($message) || is_numeric($message)) {

  289.             $message = new Text(['content' => $message]);

  290.         }

  291. 

  292.         if (!$this->isMessage($message)) {

  293.             $messageType = gettype($message);

  294. 

  295.             throw new InvalidArgumentException("Invalid Message type .'{$messageType}'");

  296.         }

  297. 

  298.         $response = $this->buildReply($to, $from, $message);

  299. 

  300.         if ($this->isSafeMode()) {

  301.             Log::debug('Message safe mode is enable.');

  302.             $response = $this->encryptor->encryptMsg(

  303.                 $response,

  304.                 $this->request->get('nonce'),

  305.                 $this->request->get('timestamp')

  306.             );

  307.         }

  308. 

  309.         return $response;

  310.     }

  311. 

  312.     /**

  313.      * Whether response is message.

  314.      *

  315.      * @param mixed $message

  316.      *

  317.      * @return bool

  318.      */

  319.     protected function isMessage($message)

  320.     {

  321.         if (is_array($message)) {

  322.             foreach ($message as $element) {

  323.                 if (!is_subclass_of($element, AbstractMessage::class)) {

  324.                     return false;

  325.                 }

  326.             }

  327. 

  328.             return true;

  329.         }

  330. 

  331.         return is_subclass_of($message, AbstractMessage::class);

  332.     }

  333. 

  334.     /**

  335.      * Get request message.

  336.      *

  337.      * @return array

  338.      *

  339.      * @throws BadRequestException

  340.      */

  341.     public function getMessage()

  342.     {

  343.         $message = $this->parseMessageFromRequest($this->request->getContent(false));

  344. 

  345.         if (!is_array($message) || empty($message)) {

  346.             throw new BadRequestException('Invalid request.');

  347.         }

  348. 

  349.         return $message;

  350.     }

  351. 

  352.     /**

  353.      * Handle request.

  354.      *

  355.      * @return array

  356.      *

  357.      * @throws \EasyWeChat\Core\Exceptions\RuntimeException

  358.      * @throws \EasyWeChat\Server\BadRequestException

  359.      */

  360.     protected function handleRequest()

  361.     {

  362.         $message = $this->getMessage();

  363.         $response = $this->handleMessage($message);

  364. 

  365.         $messageType = isset($message['msg_type']) ? $message['msg_type'] : $message['MsgType'];

  366. 

  367.         if ('device_text' === $messageType) {

  368.             $message['FromUserName'] = '';

  369.             $message['ToUserName'] = '';

  370.         }

  371. 

  372.         return [

  373.             'to' => $message['FromUserName'],

  374.             'from' => $message['ToUserName'],

  375.             'response' => $response,

  376.         ];

  377.     }

  378. 

  379.     /**

  380.      * Handle message.

  381.      *

  382.      * @param array $message

  383.      *

  384.      * @return mixed

  385.      */

  386.     protected function handleMessage(array $message)

  387.     {

  388.         $handler = $this->messageHandler;

  389. 

  390.         if (!is_callable($handler)) {

  391.             Log::debug('No handler enabled.');

  392. 

  393.             return null;

  394.         }

  395. 

  396.         Log::debug('Message detail:', $message);

  397. 

  398.         $message = new Collection($message);

  399. 

  400.         $messageType = $message->get('msg_type', $message->get('MsgType'));

  401. 

  402.         $type = $this->messageTypeMapping[$messageType];

  403. 

  404.         $response = null;

  405. 

  406.         if ($this->messageFilter & $type) {

  407.             $response = call_user_func_array($handler, [$message]);

  408.         }

  409. 

  410.         return $response;

  411.     }

  412. 

  413.     /**

  414.      * Build reply XML.

  415.      *

  416.      * @param string          $to

  417.      * @param string          $from

  418.      * @param AbstractMessage $message

  419.      *

  420.      * @return string

  421.      */

  422.     protected function buildReply($to, $from, $message)

  423.     {

  424.         $base = [

  425.             'ToUserName' => $to,

  426.             'FromUserName' => $from,

  427.             'CreateTime' => time(),

  428.             'MsgType' => is_array($message) ? current($message)->getType() : $message->getType(),

  429.         ];

  430. 

  431.         $transformer = new Transformer();

  432. 

  433.         return XML::build(array_merge($base, $transformer->transform($message)));

  434.     }

  435. 

  436.     /**

  437.      * Get signature.

  438.      *

  439.      * @param array $request

  440.      *

  441.      * @return string

  442.      */

  443.     protected function signature($request)

  444.     {

  445.         sort($request, SORT_STRING);

  446. 

  447.         return sha1(implode($request));

  448.     }

  449. 

  450.     /**

  451.      * Parse message array from raw php input.

  452.      *

  453.      * @param string|resource $content

  454.      *

  455.      * @throws \EasyWeChat\Core\Exceptions\RuntimeException

  456.      * @throws \EasyWeChat\Encryption\EncryptionException

  457.      *

  458.      * @return array

  459.      */

  460.     protected function parseMessageFromRequest($content)

  461.     {

  462.         $content = strval($content);

  463. 

  464.         $dataSet = json_decode($content, true);

  465.         if ($dataSet && (JSON_ERROR_NONE === json_last_error())) {

  466.             // For mini-program JSON formats.

  467.             // Convert to XML if the given string can be decode into a data array.

  468.             $content = XML::build($dataSet);

  469.         }

  470. 

  471.         if ($this->isSafeMode()) {

  472.             if (!$this->encryptor) {

  473.                 throw new RuntimeException('Safe mode Encryptor is necessary, please use Guard::setEncryptor(Encryptor $encryptor) set the encryptor instance.');

  474.             }

  475. 

  476.             $message = $this->encryptor->decryptMsg(

  477.                 $this->request->get('msg_signature'),

  478.                 $this->request->get('nonce'),

  479.                 $this->request->get('timestamp'),

  480.                 $content

  481.             );

  482.         } else {

  483.             $message = XML::parse($content);

  484.         }

  485. 

  486.         return $message;

  487.     }

  488. 

  489.     /**

  490.      * Check the request message safe mode.

  491.      *

  492.      * @return bool

  493.      */

  494.     private function isSafeMode()

  495.     {

  496.         return $this->request->get('encrypt_type') && 'aes' === $this->request->get('encrypt_type');

  497.     }

  498. }