java对接苹果支付
java对接苹果支付
·
转自:【JAVA】接入苹果授权登录_java实现苹果登录-CSDN博客
<dependency>
<groupId>com.auth0</groupId>
<artifactId>jwks-rsa</artifactId>
<version>0.12.0</version>
</dependency>
<dependency>
<groupId>com.alibaba</groupId>
<artifactId>fastjson</artifactId>
<version>1.2.80</version>
</dependency>
<dependency>
<groupId>io.jsonwebtoken</groupId>
<artifactId>jjwt</artifactId>
<version>0.9.1</version>
</dependency>
import com.alibaba.fastjson.JSON;
import com.alibaba.fastjson.JSONArray;
import com.alibaba.fastjson.JSONObject;
import com.auth0.jwk.Jwk;
import io.jsonwebtoken.*;
import org.springframework.web.client.RestTemplate;
import java.nio.charset.StandardCharsets;
import java.security.PublicKey;
import java.util.Base64;
import java.util.Map;
/**
* @Classname IOSTokenUtils
* @Description IOS token操作工具
* @Date 2023/03/23
* @Created by Goden
*/
public class IOSTokenUtils{
public static void main(String[] args) {
// 请求的JWT
String identityToken = "***";
// 解码后的消息体
JSONObject playloadObj = IOSTokenUtils.parserIdentityToken(identityToken);
Boolean success;
try {
success = IOSTokenUtils.verifyExc(identityToken, playloadObj);
} catch (Exception e) {
throw new RuntimeException(e);
}
if (!success) {
// TODO 校验token失败具体操作
return;
}
// TODO 检验token成功具体业务操作。。。
}
private final static String authUrl = "https://appleid.apple.com/auth/keys";
private final static String authIss = "https://appleid.apple.com";
/**
* 解码identityToken
* @param identityToken
* @return
*/
public static JSONObject parserIdentityToken(String identityToken) {
String[] arr = identityToken.split("\\.");
String firstDate = new String(Base64.getDecoder().decode(arr[0]), StandardCharsets.UTF_8);
String decode = new String(Base64.getDecoder().decode(arr[1]), StandardCharsets.UTF_8);
JSONObject claimObj = JSON.parseObject(decode);
// 将第一部分获取到的kid放入消息体中,方便后续匹配对应的公钥使用
claimObj.put("kid", JSONObject.parseObject(firstDate).get("kid"));
return claimObj;
}
/**
* 根据kid获取对应的苹果公钥
* @param kid
* @return
*/
public static PublicKey getPublicKey(String kid) {
try {
RestTemplate restTemplate = new RestTemplate();
JSONObject data = restTemplate.getForObject(authUrl, JSONObject.class);
assert data != null;
JSONArray jsonArray = data.getJSONArray("keys");
for (Object obj : jsonArray) {
Map json = ((Map) obj);
// 获取kid对应的公钥
if (json.get("kid").equals(kid)) {
Jwk jwa = Jwk.fromValues(json);
return jwa.getPublicKey();
}
}
} catch (Exception e) {
}
return null;
}
/**
* 对前端传来的identityToken进行验证
*
* @param identityToken
* @param jsonObject
* @return
* @throws Exception
*/
public static Boolean verifyExc(String identityToken, JSONObject jsonObject) throws Exception {
String kid = (String) jsonObject.get("kid");
PublicKey publicKey = getPublicKey(kid);
JwtParser jwtParser = Jwts.parser().setSigningKey(publicKey);
jwtParser.requireIssuer(authIss);
jwtParser.requireAudience((String) jsonObject.get("aud"));
jwtParser.requireSubject((String) jsonObject.get("sub"));
try {
Jws<Claims> claim = jwtParser.parseClaimsJws(identityToken);
if (claim != null && claim.getBody().containsKey("auth_time")) {
return true;
}
return false;
} catch (ExpiredJwtException e) {
return false;
} catch (Exception e) {
return false;
}
}
}
技术共进,成长同行——讯飞AI开发者社区
更多推荐
1
0- 0
已为社区贡献1条内容
所有评论(0)