志邦优家羡慕
blame | 历史 | 补丁 | 提交 | 提交对比 | 忽略空白
jiangping
2024-07-25 541139912b7583007bfd2120e6a12a337af48d07 
 server/web/src/main/java/com/doumee/api/web/CustomerManageApi.java


@@ -2,7 +2,6 @@




import cn.hutool.http.HttpRequest;


import com.amazonaws.util.Md5Utils;


import com.amazonaws.util.StringUtils;


import com.doumee.biz.system.SystemDataPermissionBiz;


import com.doumee.biz.system.SystemDictDataBiz;


import com.doumee.biz.zbom.ZbomCRMService;


@@ -31,6 +30,7 @@


import lombok.extern.slf4j.Slf4j;


import org.apache.commons.codec.digest.DigestUtils;


import org.apache.commons.codec.digest.Md5Crypt;


import org.apache.commons.lang3.StringUtils;


import org.apache.shiro.authz.annotation.RequiresPermissions;


import org.apache.tomcat.util.security.MD5Encoder;


import org.springframework.beans.factory.annotation.Autowired;


@@ -130,15 +130,18 @@


    @ApiOperation(value = "生成小程序码", notes = "PAD端")


    @PostMapping("/getQrCode")


    @ApiImplicitParams({


            @ApiImplicitParam(paramType = "header", dataType = "String", name = "interfaceToken", value = "token", required = true),


            @ApiImplicitParam(paramType = "header", dataType = "String", name = "timestamp", value = "时间戳", required = true),


            @ApiImplicitParam(paramType = "header", dataType = "String", name = "sign", value = "签名(使用timestamp+appkey进行md5加密)", required = true),


            @ApiImplicitParam(paramType = "header", dataType = "String", name = "timestamp", value = "时间戳(当前时间毫秒,2小时内有效)", required = true),


    })


    public void getQrCode(@RequestBody GenerateQRCodeRequest generateQRCodeRequest, HttpServletRequest httpServletRequest, HttpServletResponse response) {


        String interfaceToken = httpServletRequest.getHeader("interfaceToken");


        String timestamp = httpServletRequest.getHeader("timestamp");


    public void getQrCode(@RequestParam(value = "sign")String sign,


                          @RequestParam(value = "timestamp")Long timestamp,


                          @RequestBody GenerateQRCodeRequest generateQRCodeRequest,HttpServletResponse response) {


        if(StringUtils.isBlank(sign) || timestamp == null){


            throw  new BusinessException(ResponseStatus.BAD_REQUEST);


        }


        String interfaceKey = systemDictDataBiz.queryByCode(Constants.ZBOM,Constants.ZBOM_PAD_INTERFACE_KEY).getCode();


        String token = DigestUtils.md5Hex(timestamp+interfaceKey);


        if(!token.equals(interfaceToken)){


        if(!token.equals(sign)){


            throw new BusinessException(ResponseStatus.NOT_ALLOWED.getCode(),"token已失效!");


        }


        try{