mirror of
https://github.com/usual2970/certimate.git
synced 2025-06-08 05:29:51 +00:00
191 lines
5.1 KiB
Go
191 lines
5.1 KiB
Go
package openapi
|
|
|
|
import (
|
|
"crypto/hmac"
|
|
"crypto/sha256"
|
|
"encoding/hex"
|
|
"encoding/json"
|
|
"fmt"
|
|
"io"
|
|
"net/http"
|
|
"net/url"
|
|
"strconv"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/go-resty/resty/v2"
|
|
)
|
|
|
|
type Client struct {
|
|
accessKey string
|
|
secretKey string
|
|
|
|
client *resty.Client
|
|
}
|
|
|
|
type Result interface {
|
|
SetRequestId(requestId string)
|
|
}
|
|
|
|
func NewClient(accessKey, secretKey string) *Client {
|
|
client := resty.New().
|
|
SetBaseURL("https://open.chinanetcenter.com").
|
|
SetHeader("Host", "open.chinanetcenter.com").
|
|
SetHeader("Accept", "application/json").
|
|
SetHeader("Content-Type", "application/json").
|
|
SetPreRequestHook(func(c *resty.Client, req *http.Request) error {
|
|
// Step 1: Get request method
|
|
method := req.Method
|
|
method = strings.ToUpper(method)
|
|
|
|
// Step 2: Get request path
|
|
path := "/"
|
|
if req.URL != nil {
|
|
path = req.URL.Path
|
|
}
|
|
|
|
// Step 3: Get unencoded query string
|
|
queryString := ""
|
|
if method != http.MethodPost && req.URL != nil {
|
|
queryString = req.URL.RawQuery
|
|
|
|
s, err := url.QueryUnescape(queryString)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
queryString = s
|
|
}
|
|
|
|
// Step 4: Get canonical headers & signed headers
|
|
canonicalHeaders := "" +
|
|
"content-type:" + strings.TrimSpace(strings.ToLower(req.Header.Get("Content-Type"))) + "\n" +
|
|
"host:" + strings.TrimSpace(strings.ToLower(req.Header.Get("Host"))) + "\n"
|
|
signedHeaders := "content-type;host"
|
|
|
|
// Step 5: Get request payload
|
|
payload := ""
|
|
if method != http.MethodGet && req.Body != nil {
|
|
reader, err := req.GetBody()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
defer reader.Close()
|
|
|
|
payloadb, err := io.ReadAll(reader)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
payload = string(payloadb)
|
|
}
|
|
hashedPayload := sha256.Sum256([]byte(payload))
|
|
hashedPayloadHex := strings.ToLower(hex.EncodeToString(hashedPayload[:]))
|
|
|
|
// Step 6: Get timestamp
|
|
var reqtime time.Time
|
|
timestampString := req.Header.Get("x-cnc-timestamp")
|
|
if timestampString == "" {
|
|
reqtime = time.Now().UTC()
|
|
timestampString = fmt.Sprintf("%d", reqtime.Unix())
|
|
} else {
|
|
timestamp, err := strconv.ParseInt(timestampString, 10, 64)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
reqtime = time.Unix(timestamp, 0).UTC()
|
|
}
|
|
|
|
// Step 7: Get canonical request string
|
|
canonicalRequest := fmt.Sprintf("%s\n%s\n%s\n%s\n%s\n%s", method, path, queryString, canonicalHeaders, signedHeaders, hashedPayloadHex)
|
|
hashedCanonicalRequest := sha256.Sum256([]byte(canonicalRequest))
|
|
hashedCanonicalRequestHex := strings.ToLower(hex.EncodeToString(hashedCanonicalRequest[:]))
|
|
|
|
// Step 8: String to sign
|
|
const SignAlgorithmHeader = "CNC-HMAC-SHA256"
|
|
stringToSign := fmt.Sprintf("%s\n%s\n%s", SignAlgorithmHeader, timestampString, hashedCanonicalRequestHex)
|
|
hmac := hmac.New(sha256.New, []byte(secretKey))
|
|
hmac.Write([]byte(stringToSign))
|
|
sign := hmac.Sum(nil)
|
|
signHex := strings.ToLower(hex.EncodeToString(sign))
|
|
|
|
// Step 9: Add headers to request
|
|
req.Header.Set("x-cnc-accesskey", accessKey)
|
|
req.Header.Set("x-cnc-timestamp", timestampString)
|
|
req.Header.Set("x-cnc-auth-method", "AKSK")
|
|
req.Header.Set("Authorization", fmt.Sprintf("%s Credential=%s, SignedHeaders=%s, Signature=%s", SignAlgorithmHeader, accessKey, signedHeaders, signHex))
|
|
req.Header.Set("Date", reqtime.Format("Mon, 02 Jan 2006 15:04:05 GMT"))
|
|
|
|
return nil
|
|
})
|
|
|
|
return &Client{
|
|
accessKey: accessKey,
|
|
secretKey: secretKey,
|
|
client: client,
|
|
}
|
|
}
|
|
|
|
func (c *Client) WithTimeout(timeout time.Duration) *Client {
|
|
c.client.SetTimeout(timeout)
|
|
return c
|
|
}
|
|
|
|
func (c *Client) sendRequest(method string, path string, params interface{}, configureReq ...func(req *resty.Request)) (*resty.Response, error) {
|
|
req := c.client.R()
|
|
req.Method = method
|
|
req.URL = path
|
|
if strings.EqualFold(method, http.MethodGet) {
|
|
qs := make(map[string]string)
|
|
if params != nil {
|
|
temp := make(map[string]any)
|
|
jsonb, _ := json.Marshal(params)
|
|
json.Unmarshal(jsonb, &temp)
|
|
for k, v := range temp {
|
|
if v != nil {
|
|
qs[k] = fmt.Sprintf("%v", v)
|
|
}
|
|
}
|
|
}
|
|
|
|
req = req.SetQueryParams(qs)
|
|
} else {
|
|
req = req.SetBody(params)
|
|
}
|
|
|
|
for _, fn := range configureReq {
|
|
fn(req)
|
|
}
|
|
|
|
resp, err := req.Send()
|
|
if err != nil {
|
|
return resp, fmt.Errorf("wangsu api error: failed to send request: %w", err)
|
|
} else if resp.IsError() {
|
|
return resp, fmt.Errorf("wangsu api error: unexpected status code: %d, resp: %s", resp.StatusCode(), resp.String())
|
|
}
|
|
|
|
return resp, nil
|
|
}
|
|
|
|
func (c *Client) SendRequestWithResult(method string, path string, params interface{}, result Result, configureReq ...func(req *resty.Request)) (*resty.Response, error) {
|
|
resp, err := c.sendRequest(method, path, params, configureReq...)
|
|
if err != nil {
|
|
if resp != nil {
|
|
json.Unmarshal(resp.Body(), &result)
|
|
result.SetRequestId(resp.Header().Get("x-cnc-request-id"))
|
|
}
|
|
return resp, err
|
|
}
|
|
|
|
respBody := resp.Body()
|
|
if len(respBody) != 0 {
|
|
if err := json.Unmarshal(respBody, &result); err != nil {
|
|
return resp, fmt.Errorf("wangsu api error: failed to unmarshal response: %w", err)
|
|
}
|
|
}
|
|
|
|
result.SetRequestId(resp.Header().Get("x-cnc-request-id"))
|
|
return resp, nil
|
|
}
|