xc-mall.git - Gitblit

			@@ -3,38 +3,36 @@
			import cc.mrbird.febs.common.properties.XcxProperties;
			import cc.mrbird.febs.common.utils.AppContants;
			import cc.mrbird.febs.common.utils.SpringContextHolder;
			import cc.mrbird.febs.mall.entity.MallInvoice;
			import cc.mrbird.febs.mall.entity.MallOrderInfo;
			import cc.mrbird.febs.mall.entity.MallOrderItem;
			import cc.mrbird.febs.mall.mapper.MallInvoiceMapper;
			import cc.mrbird.febs.mall.mapper.MallOrderInfoMapper;
			import cc.mrbird.febs.pay.model.HeaderDto;
			import cc.mrbird.febs.mall.mapper.MallOrderItemMapper;
			import cc.mrbird.febs.pay.model.FPCertificateVo;
			import cc.mrbird.febs.pay.model.FPCertificates;
			import cc.mrbird.febs.pay.model.FPEncryptCertificate;
			import cc.mrbird.febs.pay.service.WxFaPiaoService;
			import cc.mrbird.febs.pay.util.JCEUtil;
			import cc.mrbird.febs.pay.util.RandomStringGenerator;
			import cn.hutool.core.collection.CollUtil;
			import cn.hutool.core.util.ObjectUtil;
			import cn.hutool.json.JSONObject;
			import cn.hutool.json.JSONUtil;
			import com.aliyun.oss.internal.SignUtils;
			import com.wechat.pay.contrib.apache.httpclient.auth.AutoUpdateCertificatesVerifier;
			import com.wechat.pay.contrib.apache.httpclient.auth.PrivateKeySigner;
			import com.wechat.pay.contrib.apache.httpclient.auth.WechatPay2Credentials;
			import com.wechat.pay.contrib.apache.httpclient.auth.WechatPay2Validator;
			import com.wechat.pay.contrib.apache.httpclient.notification.Notification;
			import com.wechat.pay.contrib.apache.httpclient.notification.NotificationHandler;
			import com.wechat.pay.contrib.apache.httpclient.notification.NotificationRequest;
			import com.wechat.pay.contrib.apache.httpclient.util.AesUtil;
			import com.wechat.pay.java.core.notification.Resource;
			import io.undertow.util.Certificates;
			import lombok.RequiredArgsConstructor;
			import lombok.SneakyThrows;
			import lombok.extern.slf4j.Slf4j;
			import okhttp3.HttpUrl;
			import org.apache.http.HttpEntity;
			import org.apache.http.HttpResponse;
			import org.apache.http.client.methods.CloseableHttpResponse;
			import org.apache.http.client.methods.HttpGet;
			import org.apache.http.client.methods.HttpPatch;
			import org.apache.http.client.methods.HttpPost;
			import org.apache.http.client.protocol.HttpClientContext;
			import org.apache.http.entity.StringEntity;
			import org.apache.http.impl.client.CloseableHttpClient;
			import org.apache.http.impl.client.HttpClients;
			import org.apache.http.message.BasicNameValuePair;
			import org.apache.http.util.EntityUtils;
			import org.springframework.core.io.ClassPathResource;
			import org.springframework.stereotype.Service;
			@@ -42,7 +40,6 @@
			import org.springframework.web.bind.annotation.RequestBody;

			import javax.servlet.http.HttpServletRequest;
			import javax.servlet.http.HttpServletResponse;
			import java.io.*;
			import java.nio.charset.StandardCharsets;
			import java.security.*;
			@@ -50,13 +47,10 @@
			import java.security.cert.X509Certificate;
			import java.security.spec.InvalidKeySpecException;
			import java.security.spec.PKCS8EncodedKeySpec;
			import java.text.ParseException;
			import java.text.SimpleDateFormat;
			import java.util.Base64;
			import java.util.HashMap;
			import java.util.Map;
			import java.util.concurrent.ConcurrentHashMap;
			import java.util.*;
			import java.util.stream.Collectors;
			import java.util.stream.Stream;

			@Slf4j
			@Service
			@@ -64,6 +58,8 @@
			public class WxFaPiaoServiceImpl implements WxFaPiaoService {

			private final MallOrderInfoMapper mallOrderInfoMapper;
			private final MallOrderItemMapper mallOrderItemMapper;
			private final MallInvoiceMapper mallInvoiceMapper;

			private final XcxProperties xcxProperties = SpringContextHolder.getBean(XcxProperties.class);

			@@ -157,6 +153,7 @@
			String result = "";
			CloseableHttpClient httpClient = HttpClients.createDefault();
			HttpPatch httpPatch = new HttpPatch(url);
			CloseableHttpResponse response = null;
			httpPatch.setHeader("Content-type", "application/json");
			httpPatch.setHeader("Charset", "utf-8");
			httpPatch.setHeader("Accept", "application/json");
			@@ -165,11 +162,20 @@
			try {
			StringEntity data = new StringEntity(params, "utf-8");
			httpPatch.setEntity(data);
			HttpResponse response = httpClient.execute(httpPatch);
			response = httpClient.execute(httpPatch);
			HttpEntity entity = response.getEntity();
			result = EntityUtils.toString(entity);
			} catch (Exception e) {
			result = "{\"status\":\"1\",\"error\":\"" + e.getMessage() + "\"}";
			}finally {
			try {
			httpClient.close();
			if (response != null) {
			response.close();
			}
			} catch (IOException var22) {
			var22.printStackTrace();
			}
			}
			return result;
			}
			@@ -181,6 +187,7 @@
			while (true) {
			CloseableHttpClient client = HttpClients.createDefault();
			HttpPost httpPost = new HttpPost(url);
			CloseableHttpResponse response = null;
			try {
			httpPost.addHeader("Content-type", "application/json");
			httpPost.addHeader("Charset", "utf-8");
			@@ -190,7 +197,7 @@

			StringEntity data = new StringEntity(params, "utf-8");
			httpPost.setEntity(data);
			HttpResponse response = client.execute(httpPost);
			response = client.execute(httpPost);
			HttpEntity resEntity = response.getEntity();
			result = EntityUtils.toString(resEntity);
			return result;
			@@ -204,13 +211,76 @@
			} catch (InterruptedException e1) {
			result = "{\"status\":\"1\",\"errors\":\"" + e1.getMessage() + "\"}";
			}
			}finally {
			try {
			client.close();
			if (response != null) {
			response.close();
			}
			} catch (IOException var22) {
			var22.printStackTrace();
			}
			}
			}
			return result;
			}

			@Override
			public Map<String, Object> fapiaoCallBack(HttpServletRequest request, @RequestBody Map<String, Object> requestBody) throws IOException, NoSuchAlgorithmException, InvalidKeyException, SignatureException {
			public String sendGet(String url, Map<String, Object> params, String token) {
			String result = "";
			int err = 0;
			while (true) {
			CloseableHttpClient httpClient = HttpClients.createDefault();
			CloseableHttpResponse response = null;
			try {
			List<BasicNameValuePair> parameters = new ArrayList<>();
			for (Map.Entry<String, Object> entry : params.entrySet()) {
			parameters.add(new BasicNameValuePair(entry.getKey(), entry.getValue().toString()));
			}
			StringBuilder dataparm = new StringBuilder();
			params.forEach((k, v) -> dataparm.append("&" + k + "=" + v));
			String urlparm = "";
			String string = dataparm.toString();
			if (!"".equals(string)) {
			urlparm = dataparm.toString().substring(1);
			}
			HttpGet httpget = new HttpGet(url + "?" + urlparm);

			httpget.addHeader("Accept", "application/json");
			httpget.addHeader("User-Agent", "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36");
			httpget.addHeader("Content-Type", "application/x-www-form-urlencoded; charset=UTF-8");
			httpget.addHeader("Authorization", token);
			response = httpClient.execute(httpget, HttpClientContext.create());

			HttpEntity resEntity = response.getEntity();
			result = EntityUtils.toString(resEntity);
			return result;
			} catch (IOException e) {
			result = "{\"status\":\"1\",\"errors\":\"" + e.getMessage() + "\"}";
			if (err++ > 2) {
			break;
			}
			try {
			Thread.sleep((err + 2) * 1000);
			} catch (InterruptedException e1) {
			result = "{\"status\":\"1\",\"errors\":\"" + e1.getMessage() + "\"}";
			}
			}finally {
			try {
			httpClient.close();
			if (response != null) {
			response.close();
			}
			} catch (IOException var22) {
			var22.printStackTrace();
			}
			}
			}
			return result;
			}

			@Override
			public Map<String, Object> fapiaoCallBack(HttpServletRequest request, @RequestBody Map<String, Object> requestBody){
			Map<String,Object> map = new HashMap<>();
			String signature = request.getHeader("Wechatpay-Signature");
			String timestamp = request.getHeader("Wechatpay-Timestamp");
			@@ -223,50 +293,116 @@
			log.info("头信息---随机字符：" + nonce);
			log.info("头信息---平台证书序列号：" + serial);
			log.info("获取到的body信息：" + body);
			//应对签名探测流量
			if(signature.contains("WECHATPAY/SIGNTEST")){
			map.put("code",500);
			map.put("message", "失败");
			return map;
			}
			//验签
			boolean signCheck = verifySign(request, body);
			// boolean signCheck = signCheck(timestamp, nonce, requestBody, signature);
			boolean signCheck = false;
			try {
			signCheck = signCheck(timestamp, nonce, requestBody, signature);
			} catch (NoSuchAlgorithmException e) {
			e.printStackTrace();
			} catch (SignatureException e) {
			e.printStackTrace();
			} catch (IOException e) {
			e.printStackTrace();
			} catch (InvalidKeyException e) {
			e.printStackTrace();
			} catch (ParseException e) {
			e.printStackTrace();
			}
			log.info("验签结果：" + signCheck);
			if (signCheck) {
			// //解密参数
			// Resource resource = com.alibaba.fastjson.JSONObject.parseObject(com.alibaba.fastjson.JSONObject.toJSONString(requestBody.get("resource")), Resource.class);
			// AesUtil aesUtil = new AesUtil(CommonParameters.apiV3Key.getBytes("utf-8"));
			// String string = aesUtil.decryptToString(resource.getAssociated_data().getBytes("utf-8"), resource.getNonce().getBytes("utf-8"), resource.getCiphertext());
			// ComplaintInfo complaintInfo = JSONObject.parseObject(string, ComplaintInfo.class);
			// //获取投诉详情
			// ComplaintDetail complaintDetail = CommonUtils.GetComplaintsInfo(complaintInfo.getComplaint_id());
			// data.put("code", "SUCCESS");
			// data.put("message", "成功");
			// return data;
			try {
			//解析请求体
			// Resource resource = com.alibaba.fastjson.JSONObject.parseObject(com.alibaba.fastjson.JSONObject.toJSONString(requestBody.get("resource")), Resource.class);
			Notification notification = com.alibaba.fastjson.JSONObject.parseObject(String.valueOf(body),Notification.class);
			log.info("微信电子发票回调接口....解析请求体:"+notification.toString());
			String decryptData = notification.getDecryptData();//可能是支付业务的回调数据
			log.info("微信电子发票回调接口....decryptData:"+notification.toString());
			Notification.Resource resource = notification.getResource();//电子发票的回调加密数据
			log.info("微信电子发票回调接口....resource:"+notification.toString());
			JSONObject jsonObject = JSONUtil.parseObj(body);
			log.info("微信电子发票回调接口....解析请求体:"+jsonObject);

			if ("FAPIAO.USER_APPLIED".equals(notification.getEventType())//用户发票抬头填写完成类型：FAPIAO.USER_APPLIED
			&& !"encryptresource".equals(notification.getResourceType())) {//通知的资源数据类型，确认成功通知为encryptresource。
			String id = jsonObject.getStr("id");//可能是支付业务的回调数据
			String create_time = jsonObject.getStr("create_time");//可能是支付业务的回调数据
			String resource_type = jsonObject.getStr("resource_type");//可能是支付业务的回调数据
			String event_type = jsonObject.getStr("event_type");//可能是支付业务的回调数据
			String resource = jsonObject.getStr("resource");//可能是支付业务的回调数据
			log.info("微信电子发票回调接口....id:"+ id);
			log.info("微信电子发票回调接口....create_time:"+ create_time);
			log.info("微信电子发票回调接口....resource_type:"+ resource_type);
			log.info("微信电子发票回调接口....event_type:"+ event_type);
			log.info("微信电子发票回调接口....resource:"+ resource);
			if ("FAPIAO.USER_APPLIED".equals(event_type)//用户发票抬头填写完成类型：FAPIAO.USER_APPLIED
			&& "encrypt-resource".equals(resource_type)) {//通知的资源数据类型，确认成功通知为encryptresource。
			JCEUtil.removeCryptographyRestrictions();
			//解密
			AesUtil aesUtil = new AesUtil(xcxProperties.getWecharpaySecretV3().getBytes("utf-8"));
			JSONObject jsonObjectResource = JSONUtil.parseObj(resource);
			String original_type = jsonObjectResource.getStr("original_type");//可能是支付业务的回调数据
			String algorithm = jsonObjectResource.getStr("algorithm");//可能是支付业务的回调数据
			String ciphertext = jsonObjectResource.getStr("ciphertext");//可能是支付业务的回调数据
			String associated_data = jsonObjectResource.getStr("associated_data");//可能是支付业务的回调数据
			String nonceStr = jsonObjectResource.getStr("nonce");//可能是支付业务的回调数据
			String decryptToString = aesUtil.decryptToString(
			resource.getAssociatedData().getBytes("utf-8"),
			resource.getNonce().getBytes("utf-8"),
			resource.getCiphertext());
			associated_data.getBytes("utf-8"),
			nonceStr.getBytes("utf-8"),
			ciphertext);
			log.info("微信电子发票回调接口....resource解密:"+decryptToString);

			JSONObject parseObj = JSONUtil.parseObj(decryptToString);

			log.info("微信电子发票回调接口....resource解密-JSONObject:"+parseObj);
			String fapiao_apply_id = parseObj.getStr("fapiao_apply_id");
			log.info("微信电子发票回调接口....resource解密-fapiao_apply_id:"+fapiao_apply_id);
			MallOrderInfo mallOrderInfo = mallOrderInfoMapper.selectBypayOrderNo(fapiao_apply_id);
			if(ObjectUtil.isEmpty(mallOrderInfo)){
			map.put("code",404);
			map.put("message", "订单不存在");
			return map;
			}

			String mchid = String.valueOf(parseObj.get("mchid"));
			String fapiao_apply_id = String.valueOf(parseObj.get("fapiao_apply_id"));
			String apply_time = String.valueOf(parseObj.get("apply_time"));
			MallOrderInfo mallOrderInfo = mallOrderInfoMapper.selectByOrderNo(fapiao_apply_id);
			if(ObjectUtil.isNotEmpty(mallOrderInfo)){
			//更新订单状态
			// mallOrderInfo.setIsInvoice(1);
			// mallOrderInfoMapper.updateById(mallOrderInfo);
			//获取用户的抬头信息
			String userInvoiceInfo = this.getUserInvoiceInfo(fapiao_apply_id);
			JSONObject userInvoiceInfoJson = JSONUtil.parseObj(userInvoiceInfo);
			//查看当前订单是否已经开具发票
			Long memberId = mallOrderInfo.getMemberId();
			String payOrderNo = mallOrderInfo.getPayOrderNo();
			List<MallInvoice> mallInvoices = mallInvoiceMapper.selectByFapiaoApplyIdAndMemberId(fapiao_apply_id, mallOrderInfo.getMemberId());
			if(CollUtil.isEmpty(mallInvoices)){
			MallInvoice mallInvoice = new MallInvoice();
			mallInvoice.setMemberId(memberId);
			mallInvoice.setFapiaoApplyId(payOrderNo);
			mallInvoice.setOrderNo(mallOrderInfo.getOrderNo());
			mallInvoice.setOrderId(mallOrderInfo.getId());
			mallInvoice.setStatus(mallOrderInfo.getStatus());
			mallInvoice.setAmount(mallOrderInfo.getAmount());
			List<MallOrderItem> mallOrderItemList = mallOrderItemMapper.selectListByOrderId(mallOrderInfo.getId());
			mallInvoice.setGoodsImg(mallOrderItemList.get(0).getSkuImage());
			mallInvoice.setState(1);
			mallInvoice.setType(userInvoiceInfoJson.getStr("type"));
			mallInvoice.setName(userInvoiceInfoJson.getStr("name"));
			mallInvoice.setTaxpayerId(userInvoiceInfoJson.getStr("taxpayer_id"));
			mallInvoice.setAddress(userInvoiceInfoJson.getStr("address"));
			mallInvoice.setTelephone(userInvoiceInfoJson.getStr("telephone"));
			mallInvoice.setBankName(userInvoiceInfoJson.getStr("bank_name"));
			mallInvoice.setBankAccount(userInvoiceInfoJson.getStr("bank_account"));
			mallInvoiceMapper.insert(mallInvoice);
			}else{
			MallInvoice mallInvoice = mallInvoices.get(0);
			if(2 != mallInvoice.getState()){
			mallInvoice.setState(1);
			mallInvoice.setType(userInvoiceInfoJson.getStr("type"));
			mallInvoice.setName(userInvoiceInfoJson.getStr("name"));
			mallInvoice.setTaxpayerId(userInvoiceInfoJson.getStr("taxpayer_id"));
			mallInvoice.setAddress(userInvoiceInfoJson.getStr("address"));
			mallInvoice.setTelephone(userInvoiceInfoJson.getStr("telephone"));
			mallInvoice.setBankName(userInvoiceInfoJson.getStr("bank_name"));
			mallInvoice.setBankAccount(userInvoiceInfoJson.getStr("bank_account"));
			mallInvoiceMapper.updateById(mallInvoice);
			}
			}
			//省略查询订单
			//此处处理业务
			map.put("code","SUCCESS");
			@@ -275,221 +411,187 @@
			return map;
			}
			}
			map.put("code","RESOURCE_NOT_EXISTS");
			map.put("code",404);
			map.put("message", "订单不存在");
			return map;
			}catch (Exception e) {
			e.printStackTrace();
			}
			}
			map.put("code","FAIL");
			map.put("code",500);
			map.put("message", "失败");
			return map;
			}
			/**
			* 获取用户的抬头信息
			*/
			@Override
			public String getUserInvoiceInfo(String fapiaoApplyId) throws IOException {

			// /**
			// * 验证签名
			// *
			// * @param timestamp 微信平台传入的时间戳
			// * @param nonce 微信平台传入的随机字符串
			// * @param requestBody 微信平台传入的消息体
			// * @param signature 微信平台传入的签名
			// * @return
			// * @throws NoSuchAlgorithmException
			// * @throws SignatureException
			// * @throws IOException
			// * @throws InvalidKeyException
			// */
			// public static boolean signCheck(String timestamp, String nonce, Map<String, Object> requestBody, String signature) throws NoSuchAlgorithmException, SignatureException, IOException, InvalidKeyException {
			// //构造验签名串
			// String signatureStr = timestamp + "\n" + nonce + "\n" + com.alibaba.fastjson.JSONObject.toJSONString(requestBody) + "\n";
			// // 加载SHA256withRSA签名器
			// Signature signer = Signature.getInstance("SHA256withRSA");
			// // 用微信平台公钥对签名器进行初始化（调上一节中的获取平台证书方法）
			// signer.initVerify(getCertificates());
			// // 把我们构造的验签名串更新到签名器中
			// signer.update(signatureStr.getBytes(StandardCharsets.UTF_8));
			// // 把请求头中微信服务器返回的签名用Base64解码并使用签名器进行验证
			// boolean result = signer.verify(Base64Utils.decodeFromString(signature));
			// return result;
			// }
			//初始化请求参数
			Map<String, Object> params = new HashMap<>();
			params.put("scene","WITH_WECHATPAY");
			// params.put("fapiao_apply_id","4200002070202401175245187105");
			params.put("fapiao_apply_id",fapiaoApplyId);

			String baseUrl = "https://api.mch.weixin.qq.com";
			String canonicalUrl = "/v3/new-tax-control-fapiao/user-title";

			String urlparm = baseUrl+canonicalUrl;//有参数的get请求，加密是需要把参数加载进去URL
			List<BasicNameValuePair> parameters = new ArrayList<>();
			for (Map.Entry<String, Object> entry : params.entrySet()) {
			parameters.add(new BasicNameValuePair(entry.getKey(), entry.getValue().toString()));
			}
			StringBuilder dataparm = new StringBuilder();
			params.forEach((k, v) -> dataparm.append("&" + k + "=" + v));
			String string = dataparm.toString();
			if (!"".equals(string)) {
			urlparm = baseUrl+canonicalUrl + "?" + dataparm.substring(1);
			}
			PrivateKey privateKey = this.getPrivateKeyV3();
			String postStr = null;
			try {
			postStr = this.createAuthorization(
			"GET",
			urlparm,
			"",
			privateKey
			);
			} catch (NoSuchAlgorithmException e) {
			e.printStackTrace();
			}
			return this.sendGet(baseUrl+canonicalUrl, params, "WECHATPAY2-SHA256-RSA2048 "+postStr);
			}

			/**
			* 验证签名
			*
			* @param timestamp 微信平台传入的时间戳
			* @param nonce 微信平台传入的随机字符串
			* @param requestBody 微信平台传入的消息体
			* @param signature 微信平台传入的签名
			* @return
			* @throws NoSuchAlgorithmException
			* @throws SignatureException
			* @throws IOException
			* @throws InvalidKeyException
			*/
			public boolean signCheck(String timestamp, String nonce, Map<String, Object> requestBody, String signature) throws
			NoSuchAlgorithmException,
			SignatureException,
			IOException,
			InvalidKeyException,
			ParseException {
			//构造验签名串
			String signatureStr = timestamp + "\n" + nonce + "\n" + com.alibaba.fastjson.JSONObject.toJSONString(requestBody) + "\n";
			// 加载SHA256withRSA签名器
			Signature signer = Signature.getInstance("SHA256withRSA");
			// 用微信平台公钥对签名器进行初始化（调上一节中的获取平台证书方法）
			signer.initVerify(getCertificates());
			// 把我们构造的验签名串更新到签名器中
			signer.update(signatureStr.getBytes(StandardCharsets.UTF_8));
			// 把请求头中微信服务器返回的签名用Base64解码并使用签名器进行验证
			boolean result = signer.verify(Base64Utils.decodeFromString(signature));
			return result;
			}


			/**
			* 获取平台证书
			*/
			// public static X509Certificate getCertificates() throws IOException, NoSuchAlgorithmException, SignatureException, InvalidKeyException {
			// SimpleDateFormat format = new SimpleDateFormat("yyyy-MM-dd'T'HH:mm:ss");
			// CloseableHttpClient httpClient = CommonUtils.httpClient();
			// //请求URL
			// HttpGet httpGet = new HttpGet("https://api.mch.weixin.qq.com/v3/certificates");
			// httpGet.setHeader("Accept", "application/json");
			// //生成签名
			// httpGet.setHeader("Authorization ", SignUtils.getSign("GET", HttpUrl.parse("https://api.mch.weixin.qq.com/v3/certificates"), ""));
			// httpGet.setHeader("User-Agent", "https://zh.wikipedia.org/wiki/User_agent");
			// //完成签名并执行请求
			// CloseableHttpResponse response = httpClient.execute(httpGet);
			// X509Certificate x509Certificate = null;
			// try {
			// int statusCode = response.getStatusLine().getStatusCode();
			// if (statusCode == 200) { //处理成功
			//// System.out.println("success,return body = " + EntityUtils.toString(response.getEntity()));
			// CertificateVo certificateVo = JSONObject.parseObject(EntityUtils.toString(response.getEntity()), CertificateVo.class);
			// for (Certificates certificates : certificateVo.getData()) {
			// if (format.parse(certificates.getEffective_time()).before(new Date()) && format.parse(certificates.getExpire_time()).after(new Date())) {
			// EncryptCertificate encrypt_certificate = certificates.getEncrypt_certificate();
			// //解密
			// AesUtil aesUtil = new AesUtil(CommonParameters.apiV3Key.getBytes("utf-8"));
			// String pulicKey = aesUtil.decryptToString(encrypt_certificate.getAssociated_data().getBytes("utf-8"), encrypt_certificate.getNonce().getBytes("utf-8"), encrypt_certificate.getCiphertext());
			//
			//　　　　　　　　　　　　　　 //获取平台证书
			// final CertificateFactory cf = CertificateFactory.getInstance("X509");
			//
			// ByteArrayInputStream inputStream = new ByteArrayInputStream(pulicKey.getBytes(StandardCharsets.UTF_8));
			//
			// x509Certificate = (X509Certificate) cf.generateCertificate(inputStream);
			// }
			// }
			// return x509Certificate;
			// } else if (statusCode == 204) { //处理成功，无返回Body
			// System.out.println("success");
			// return x509Certificate;
			// } else {
			// System.out.println("failed,resp code = " + statusCode + ",return body = " + EntityUtils.toString(response.getEntity()));
			// return x509Certificate;
			// }
			// } catch (GeneralSecurityException \| ParseException e) {
			// e.printStackTrace();
			// return null;
			// } finally {
			// response.close();
			// CommonUtils.after(httpClient);
			// }
			// }
			public X509Certificate getCertificates() throws IOException, NoSuchAlgorithmException, SignatureException, InvalidKeyException, ParseException {
			JCEUtil.removeCryptographyRestrictions();
			SimpleDateFormat format = new SimpleDateFormat("yyyy-MM-dd'T'HH:mm:ss");

			/**
			* 功能描述: 验证签名
			* 注意：使用微信支付平台公钥验签
			* Wechatpay-Signature 微信返签名
			* Wechatpay-Serial 微信平台证书序列号
			*
			* @return java.lang.String
			* @author 影子
			*/
			@SneakyThrows
			public boolean verifySign(HttpServletRequest request,String body) {
			boolean verify = false;
			PrivateKey privateKey = this.getPrivateKeyV3();
			String baseUrl = "https://api.mch.weixin.qq.com";
			String canonicalUrl = "/v3/certificates";
			String postStr = null;
			try {
			String wechatPaySignature = request.getHeader("Wechatpay-Signature");
			String wechatPayTimestamp = request.getHeader("Wechatpay-Timestamp");
			String wechatPayNonce = request.getHeader("Wechatpay-Nonce");
			String wechatPaySerial = request.getHeader("Wechatpay-Serial");
			//组装签名串
			String signStr = Stream.of(wechatPayTimestamp, wechatPayNonce, body)
			.collect(Collectors.joining("\n", "", "\n"));
			//获取平台证书
			AutoUpdateCertificatesVerifier verifier = getVerifier(wechatPaySerial);
			//获取失败验证失败
			if (verifier != null) {
			Signature signature = Signature.getInstance("SHA256withRSA");
			signature.initVerify(verifier.getValidCertificate());
			//放入签名串
			signature.update(signStr.getBytes(StandardCharsets.UTF_8));
			verify = signature.verify(Base64.getDecoder().decode(wechatPaySignature.getBytes()));
			}
			} catch (InvalidKeyException e) {
			e.printStackTrace();
			postStr = this.createAuthorization(
			"GET",
			baseUrl+canonicalUrl,
			"",
			privateKey

			);
			} catch (NoSuchAlgorithmException e) {
			e.printStackTrace();
			}
			return verify;
			}

			/**
			* 保存微信平台证书
			*/
			private static final ConcurrentHashMap<String, AutoUpdateCertificatesVerifier> verifierMap = new ConcurrentHashMap<>();

			/**
			* 功能描述:获取平台证书，自动更新
			* 注意：这个方法内置了平台证书的获取和返回值解密
			*/
			public AutoUpdateCertificatesVerifier getVerifier(String mchSerialNo) {
			AutoUpdateCertificatesVerifier verifier = null;
			if (verifierMap.isEmpty() \|\| !verifierMap.containsKey(mchSerialNo)) {
			verifierMap.clear();
			try {
			//传入证书
			PrivateKey privateKey = getPrivateKeyV3();
			//刷新
			PrivateKeySigner signer = new PrivateKeySigner(mchSerialNo, privateKey);
			WechatPay2Credentials credentials = new WechatPay2Credentials(xcxProperties.getWecharpayMchid(), signer);
			verifier = new AutoUpdateCertificatesVerifier(credentials
			, xcxProperties.getWecharpaySecretV3().getBytes("utf-8"));
			verifierMap.put(verifier.getValidCertificate().getSerialNumber()+"", verifier);

			// AutoUpdateCertificatesVerifier verifierNew = new AutoUpdateCertificatesVerifier(
			// new WechatPay2Credentials(
			// xcxProperties.getWecharpayMchid(),
			// new PrivateKeySigner(
			// mchSerialNo,
			// privateKey)),
			// xcxProperties.getWecharpaySecretV3().getBytes("utf-8"));
			// new WechatPay2Validator(verifierNew).;
			} catch (UnsupportedEncodingException e) {
			e.printStackTrace();
			} catch (IOException e) {
			e.printStackTrace();
			}
			} else {
			verifier = verifierMap.get(mchSerialNo);
			}
			return verifier;
			}


			/**
			* 获取公私钥.通过证书
			*/
			private KeyStore store;
			private final Object lock = new Object();
			public KeyPair createPKCS12(String keyAlias, String keyPass) {
			// ClassPathResource resource = new ClassPathResource(xcxProperties.getCertLocalPath());
			ClassPathResource resource = new ClassPathResource("wxP12/apiclient_cert.p12");
			// File file = new File("src/main/resources/wxP12/apiclient_cert.p12");
			char[] pem = keyPass.toCharArray();
			//完成签名并执行请求
			X509Certificate x509Certificate = null;
			try {
			synchronized (lock) {
			if (store == null) {
			synchronized (lock) {
			store = KeyStore.getInstance("PKCS12");
			store.load(resource.getInputStream(), pem);
			// store.load(new FileInputStream(file), pem);
			}
			String responseBodyAsString = this.sendGet(baseUrl + canonicalUrl, new HashMap<>(), "WECHATPAY2-SHA256-RSA2048 "+postStr);
			FPCertificateVo certificateVo = com.alibaba.fastjson.JSONObject.parseObject(responseBodyAsString, FPCertificateVo.class);
			for (FPCertificates certificates : certificateVo.getData()) {
			if (format.parse(certificates.getEffective_time()).before(new Date())
			&& format.parse(certificates.getExpire_time()).after(new Date())) {
			FPEncryptCertificate encrypt_certificate = certificates.getEncrypt_certificate();
			//解密
			AesUtil aesUtil = new AesUtil(xcxProperties.getWecharpaySecretV3().getBytes("utf-8"));
			String pulicKey = aesUtil.decryptToString(
			encrypt_certificate.getAssociated_data().getBytes("utf-8"),
			encrypt_certificate.getNonce().getBytes("utf-8"),
			encrypt_certificate.getCiphertext());
			//获取平台证书
			final CertificateFactory cf = CertificateFactory.getInstance("X509");

			ByteArrayInputStream inputStream = new ByteArrayInputStream(pulicKey.getBytes(StandardCharsets.UTF_8));

			x509Certificate = (X509Certificate) cf.generateCertificate(inputStream);
			}
			}
			X509Certificate certificate = (X509Certificate) store.getCertificate(keyAlias);
			certificate.checkValidity();
			// 证书的序列号也有用 50F37206347BCC9E6AC9860DAACE52AC035F7C24
			String serialNumber = certificate.getSerialNumber().toString(16).toUpperCase();
			// 证书的公钥
			PublicKey publicKey = certificate.getPublicKey();
			// 证书的私钥
			PrivateKey storeKey = (PrivateKey) store.getKey(keyAlias, pem);
			return new KeyPair(publicKey, storeKey);
			} catch (Exception e) {
			throw new IllegalStateException("Cannot load keys from store: " , e);
			}
			}

			public static void main(String[] args) {
			byte[] bytes = new byte[0];
			try {
			bytes = "DVREEVEREBERykpbgqcfsdsfggsdg".getBytes("utf-8");
			} catch (UnsupportedEncodingException e) {
			return x509Certificate;
			} catch (GeneralSecurityException \| ParseException e) {
			e.printStackTrace();
			}
			System.out.println(bytes.length);
			return null;
			}

			public static void main(String[] args) throws UnsupportedEncodingException, GeneralSecurityException {
			String signature = "WECHATPAY/SIGNTEST/9WwfXW/noMdzDPcOrFD51Bf5YIThXLTtLCl5hoGlSfIBdY2UpE+5eHLs0XyF7y2cQc4OlzTzDDxSMTp/p/8ZenE2hMBaQjxVrdbTtrOLA1h13/WjCNaTr1URTqQ5+IF5bLCxAW8BmZ0jEqpmI/HYR3wdK8/7W91c1zfKODYgkvJzxFzd8OWi2GtELE5tLamkOLyb0GEcsGww2DUOypO5HjNyITgsy9R00w3OH92UInCD8Z6c5BAsQNySqFK8N52y38AlIWTtKROHmJtu+kHbt+nMOU0kbB5bZcPAptsnVYpp9KMmjMrmyjiKtHZb2TGIWiN/L+bgceyN3g==";
			if(signature.contains("WECHATPAY/SIGNTEST")){
			System.out.println(1);
			}

			// JCEUtil.removeCryptographyRestrictions();
			// String body = "{\"id\":\"5fb7f522-466f-5c99-a325-0eb4001f1ec3\",\"create_time\":\"2024-01-17T15:38:33+08:00\",\"resource_type\":\"encrypt-resource\",\"event_type\":\"FAPIAO.USER_APPLIED\",\"summary\":\"用户已申请开票\",\"resource\":{\"original_type\":\"fapiao\",\"algorithm\":\"AEAD_AES_256_GCM\",\"ciphertext\":\"bBOs5WTUV1AhwiYSIUugaw9z4EHXxC28ZVsGHOppCNP4qpxYgnR+W+l983UyETmD/Wgu8ukJhe/xYkSsF947pgDP1ElTXC8MJA3lCc8NlsXQ1csPfWTS6A0XrxBoNMgwGEsYFo/7tPW/zDrEpzRZL/GgEwEtK6X1Y4Ci9IofzeI=\",\"associated_data\":\"fapiao\",\"nonce\":\"7a5dzuYqStef\"}}";
			// JSONObject jsonObject = JSONUtil.parseObj(body);
			// log.info("微信电子发票回调接口....解析请求体:"+jsonObject);
			//
			// String id = jsonObject.getStr("id");//可能是支付业务的回调数据
			// String create_time = jsonObject.getStr("create_time");//可能是支付业务的回调数据
			// String resource_type = jsonObject.getStr("resource_type");//可能是支付业务的回调数据
			// String event_type = jsonObject.getStr("event_type");//可能是支付业务的回调数据
			// String resource = jsonObject.getStr("resource");//可能是支付业务的回调数据
			// log.info("微信电子发票回调接口....id:"+ id);
			// log.info("微信电子发票回调接口....create_time:"+ create_time);
			// log.info("微信电子发票回调接口....resource_type:"+ resource_type);
			// log.info("微信电子发票回调接口....event_type:"+ event_type);
			// log.info("微信电子发票回调接口....resource:"+ resource);
			//
			// if ("FAPIAO.USER_APPLIED".equals(event_type)//用户发票抬头填写完成类型：FAPIAO.USER_APPLIED
			// && !"encryptresource".equals(resource_type)) {//通知的资源数据类型，确认成功通知为encryptresource。
			// //解密
			// AesUtil aesUtil = new AesUtil("daL341aN5orDt13puXadsAf2rpuX12v3".getBytes("utf-8"));
			// JSONObject jsonObjectResource = JSONUtil.parseObj(resource);
			//// String original_type = jsonObjectResource.getStr("original_type");//可能是支付业务的回调数据
			//// String algorithm = jsonObjectResource.getStr("algorithm");//可能是支付业务的回调数据
			// String ciphertext = jsonObjectResource.getStr("ciphertext");//可能是支付业务的回调数据
			// String associated_data = jsonObjectResource.getStr("associated_data");//可能是支付业务的回调数据
			// String nonce = jsonObjectResource.getStr("nonce");//可能是支付业务的回调数据
			// String decryptToString = aesUtil.decryptToString(
			// associated_data.getBytes("utf-8"),
			// nonce.getBytes("utf-8"),
			// ciphertext);
			// log.info("微信电子发票回调接口....resource解密:"+decryptToString);
			//
			// JSONObject parseObj = JSONUtil.parseObj(decryptToString);
			// log.info("微信电子发票回调接口....resource解密-JSONObject:"+parseObj);
			// String fapiao_apply_id = parseObj.getStr("fapiao_apply_id");
			// log.info("微信电子发票回调接口....resource解密-fapiao_apply_id:"+fapiao_apply_id);
			//
			// }
			}

			}