打开验签

b2279cd7 · jiangxiulong · 86d7e97e · b2279cd7
Commit b2279cd7 authored Oct 11, 2021 by jiangxiulong
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 5 deletions

SweetWechatActionCallbackController.java ...sweet/controller/SweetWechatActionCallbackController.java +4 -5

No files found.
--- a/liquidnet-bus-service/liquidnet-service-sweet/src/main/java/com/liquidnet/service/sweet/controller/SweetWechatActionCallbackController.java
+++ b/liquidnet-bus-service/liquidnet-service-sweet/src/main/java/com/liquidnet/service/sweet/controller/SweetWechatActionCallbackController.java
@@ -49,9 +49,8 @@ public class SweetWechatActionCallbackController {
    @PostMapping("record")
    @ApiOperation("用户动作微信回调")
    public String record(
-//            @RequestBody String requestBody,
-            @RequestParam() String requestBody,
-//            @RequestParam("requestBody") String requestBody,
+            @RequestBody String requestBody,
+//            @RequestParam() String requestBody,
            @RequestParam("type") Integer type,
            @RequestParam("signature") String signature,
            @RequestParam("timestamp") String timestamp,
@@ -63,10 +62,10 @@ public class SweetWechatActionCallbackController {
        log.info("\n接收微信请求：[type=[{}], openid=[{}], [signature=[{}], encType=[{}], msgSignature=[{}],"
                        + " timestamp=[{}], nonce=[{}], requestBody=[\n{}\n] ",
                type, openid, signature, encType, msgSignature, timestamp, nonce, requestBody);
-/*        if (!wechatSignUtils.checkSignature(signature, timestamp, nonce)) {
+        if (!wechatSignUtils.checkSignature(signature, timestamp, nonce)) {
            log.info("验签未通过，非法请求，可能属于伪造的请求！");
            return "";
-        }*/
+        }
        return sweetWechatCallbackService.record(requestBody, type, timestamp, nonce, encType, msgSignature);
    }
 }