container = $container; $this->response = $response; $this->request = $request; } public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface { if (env('APP_ENV') == 'dev' || env('APP_ENV') == 'local') { return $handler->handle($request); } // 签名校验 # 获取参数 $params = $this->request->all(); # 必须参数，签名、时间戳、随机数 if (!(isset($params['sign'])&&isset($params['timestamp'])&&isset($params['rand']))) { $content = [ "status" => 'ok', "code" => 9001, "result" => [], "message" => '接口验签失败：缺少参数' ]; return $this->response->json($content); } if (!$this->checkSign($params)) { $content = [ "status" => 'ok', "code" => 9002, "result" => [], "message" => '接口验签失败：签名错误或已失效' ]; return $this->response->json($content); } return $handler->handle($request); } private function checkSign($params) { $sign = $params['sign']; unset($params['sign']); $timestamp = $params['timestamp']; if (empty($sign) || ($timestamp+config('auth.api.sign.expire_time')) < time()) { return false; } return $sign == $this->signature($params); } private function signature($params) { ksort($params); $http_query = []; foreach ($params as $key => $value) { $http_query[] = $key.'='.$value; } return sha1(md5(implode('&', $http_query)).config('auth.api.sign.secret_key')); } }