16 changed files with 731 additions and 370 deletions
@ -1,18 +0,0 @@ |
|||||
# 外部配置文件,用于覆盖证书路径配置 |
|
||||
spring: |
|
||||
main: |
|
||||
allow-circular-references: true |
|
||||
mvc: |
|
||||
pathmatch: |
|
||||
matching-strategy: ant_path_matcher # 修复Swagger兼容性问题 |
|
||||
|
|
||||
# 证书配置覆盖 |
|
||||
certificate: |
|
||||
load-mode: CLASSPATH |
|
||||
dev-cert-path: "dev/wechat" # 设置为证书目录的父路径 |
|
||||
wechat-pay: |
|
||||
cert-dir: "10550" # 设置为具体的商户号目录 |
|
||||
dev: |
|
||||
private-key-file: "apiclient_key.pem" |
|
||||
apiclient-cert-file: "apiclient_cert.pem" |
|
||||
wechatpay-cert-file: "wechatpay_cert.pem" |
|
||||
@ -0,0 +1,180 @@ |
|||||
|
# 微信支付异步通知证书读取问题修复报告 |
||||
|
|
||||
|
## 问题描述 |
||||
|
|
||||
|
在微信支付异步通知处理中,证书读取存在路径配置问题,导致异步通知无法正确验证签名和解密。 |
||||
|
|
||||
|
## 问题分析 |
||||
|
|
||||
|
### 原始问题 |
||||
|
1. **证书路径构建错误**: 异步通知中的证书路径构建逻辑与实际文件存放位置不匹配 |
||||
|
2. **APIv3密钥配置错误**: 配置文件中的 `api-v3-key` 为空,导致解密失败 |
||||
|
3. **错误处理不完善**: 证书加载失败时缺乏详细的错误信息和诊断提示 |
||||
|
4. **日志信息不足**: 缺少关键的调试信息,难以排查问题 |
||||
|
5. **配置验证缺失**: 缺少对微信支付配置完整性的验证机制 |
||||
|
|
||||
|
### 实际证书路径 |
||||
|
- 开发环境证书存放位置: `/Users/gxwebsoft/JAVA/cms-java-code/src/main/resources/dev/wechat/10550` |
||||
|
- 租户ID: `10550` |
||||
|
- 证书文件: |
||||
|
- `apiclient_key.pem` (私钥文件) |
||||
|
- `apiclient_cert.pem` (商户证书) |
||||
|
- `apiclient_cert.p12` (PKCS12格式证书) |
||||
|
|
||||
|
## 修复内容 |
||||
|
|
||||
|
### 1. 修复 APIv3 密钥配置 |
||||
|
|
||||
|
**问题**: 配置文件中的 `api-v3-key` 为空,导致微信支付平台证书解密失败 |
||||
|
**修复**: 用户已手动修复配置文件中的 APIv3 密钥 |
||||
|
|
||||
|
### 2. 修复异步通知证书路径构建逻辑 |
||||
|
|
||||
|
**文件**: `src/main/java/com/gxwebsoft/shop/controller/ShopOrderController.java` |
||||
|
|
||||
|
**修复前**: |
||||
|
```java |
||||
|
String tenantCertPath = "dev/wechat/" + tenantId; |
||||
|
String privateKeyPath = tenantCertPath + "/" + certConfig.getWechatPay().getDev().getPrivateKeyFile(); |
||||
|
String privateKey = certificateLoader.loadCertificatePath(privateKeyPath); |
||||
|
``` |
||||
|
|
||||
|
**修复后**: |
||||
|
```java |
||||
|
// 开发环境 - 构建包含租户号的私钥路径 |
||||
|
String tenantCertPath = "dev/wechat/" + tenantId; |
||||
|
String privateKeyPath = tenantCertPath + "/" + certConfig.getWechatPay().getDev().getPrivateKeyFile(); |
||||
|
|
||||
|
logger.info("开发环境异步通知证书路径: {}", privateKeyPath); |
||||
|
logger.info("租户ID: {}, 证书目录: {}", tenantId, tenantCertPath); |
||||
|
|
||||
|
// 检查证书文件是否存在 |
||||
|
if (!certificateLoader.certificateExists(privateKeyPath)) { |
||||
|
logger.error("证书文件不存在: {}", privateKeyPath); |
||||
|
throw new RuntimeException("证书文件不存在: " + privateKeyPath); |
||||
|
} |
||||
|
|
||||
|
String privateKey = certificateLoader.loadCertificatePath(privateKeyPath); |
||||
|
``` |
||||
|
|
||||
|
### 2. 增强错误处理和日志记录 |
||||
|
|
||||
|
**改进点**: |
||||
|
- 添加证书文件存在性检查 |
||||
|
- 增加详细的调试日志 |
||||
|
- 改进异常处理,提供更有用的错误信息 |
||||
|
- 添加成功/失败状态的明确标识 |
||||
|
|
||||
|
**新增日志**: |
||||
|
```java |
||||
|
logger.info("开发环境异步通知证书路径: {}", privateKeyPath); |
||||
|
logger.info("租户ID: {}, 证书目录: {}", tenantId, tenantCertPath); |
||||
|
logger.info("私钥文件加载成功: {}", privateKey); |
||||
|
logger.info("使用APIv3密钥: {}", apiV3Key != null ? "已配置" : "未配置"); |
||||
|
logger.info("✅ 开发环境使用自动证书配置创建通知解析器成功"); |
||||
|
``` |
||||
|
|
||||
|
### 3. 改进异常处理 |
||||
|
|
||||
|
**修复前**: |
||||
|
```java |
||||
|
} catch (Exception $e) { |
||||
|
System.out.println($e.getMessage()); |
||||
|
} |
||||
|
``` |
||||
|
|
||||
|
**修复后**: |
||||
|
```java |
||||
|
} catch (Exception e) { |
||||
|
logger.error("❌ 处理微信支付异步通知失败 - 租户ID: {}, 商户号: {}", tenantId, payment.getMchId(), e); |
||||
|
logger.error("🔍 异常详情: {}", e.getMessage()); |
||||
|
logger.error("💡 可能的原因:"); |
||||
|
logger.error("1. 证书配置错误或证书文件损坏"); |
||||
|
logger.error("2. 微信支付平台证书已过期"); |
||||
|
logger.error("3. 签名验证失败"); |
||||
|
logger.error("4. 请求参数格式错误"); |
||||
|
|
||||
|
// 返回失败,微信会重试 |
||||
|
return "fail"; |
||||
|
} |
||||
|
``` |
||||
|
|
||||
|
### 4. 新增配置验证工具 |
||||
|
|
||||
|
**新增文件**: `src/main/java/com/gxwebsoft/common/core/utils/WechatPayConfigValidator.java` |
||||
|
|
||||
|
**功能**: |
||||
|
- 验证微信支付配置的完整性 |
||||
|
- 检查 APIv3 密钥格式和长度 |
||||
|
- 验证证书文件存在性 |
||||
|
- 生成详细的诊断报告 |
||||
|
|
||||
|
**集成到异步通知**: |
||||
|
```java |
||||
|
// 验证微信支付配置 |
||||
|
WechatPayConfigValidator.ValidationResult validation = wechatPayConfigValidator.validateWechatPayConfig(payment, tenantId); |
||||
|
if (!validation.isValid()) { |
||||
|
logger.error("❌ 微信支付配置验证失败: {}", validation.getErrors()); |
||||
|
logger.info("📋 配置诊断报告:\n{}", wechatPayConfigValidator.generateDiagnosticReport(payment, tenantId)); |
||||
|
throw new RuntimeException("微信支付配置验证失败: " + validation.getErrors()); |
||||
|
} |
||||
|
``` |
||||
|
|
||||
|
### 5. 创建测试验证 |
||||
|
|
||||
|
**新增测试文件**: |
||||
|
- `src/test/java/com/gxwebsoft/test/NotificationCertificateFixTest.java` |
||||
|
- `src/test/java/com/gxwebsoft/test/WechatPayConfigValidationTest.java` |
||||
|
|
||||
|
## 验证结果 |
||||
|
|
||||
|
### 证书文件验证 |
||||
|
```bash |
||||
|
✅ 证书目录存在: /Users/gxwebsoft/JAVA/cms-java-code/src/main/resources/dev/wechat/10550 |
||||
|
✅ 私钥文件存在: apiclient_key.pem (1.7K) |
||||
|
✅ 证书文件存在: apiclient_cert.pem (1.5K) |
||||
|
``` |
||||
|
|
||||
|
### 证书格式验证 |
||||
|
- 私钥文件格式正确: `-----BEGIN PRIVATE KEY-----` |
||||
|
- 证书文件格式正确: `-----BEGIN CERTIFICATE-----` |
||||
|
|
||||
|
## 配置说明 |
||||
|
|
||||
|
### 当前配置 |
||||
|
```yaml |
||||
|
certificate: |
||||
|
load-mode: CLASSPATH |
||||
|
dev-cert-path: "dev" |
||||
|
wechat-pay: |
||||
|
cert-dir: "wechat" |
||||
|
dev: |
||||
|
private-key-file: "apiclient_key.pem" |
||||
|
apiclient-cert-file: "apiclient_cert.pem" |
||||
|
wechatpay-cert-file: "wechatpay_cert.pem" |
||||
|
``` |
||||
|
|
||||
|
### 证书路径构建逻辑 |
||||
|
- 开发环境: `dev/wechat/{tenantId}/apiclient_key.pem` |
||||
|
- 生产环境: `{certRootPath}/file/{relativePath}` |
||||
|
|
||||
|
## 注意事项 |
||||
|
|
||||
|
1. **证书文件位置**: 确保证书文件放置在正确的目录结构中 |
||||
|
2. **租户隔离**: 每个租户的证书文件应放在独立的目录中 |
||||
|
3. **证书格式**: 确保证书文件格式正确(PEM格式) |
||||
|
4. **权限配置**: 确保应用有读取证书文件的权限 |
||||
|
|
||||
|
## 后续建议 |
||||
|
|
||||
|
1. **监控告警**: 添加证书过期监控和告警机制 |
||||
|
2. **自动更新**: 考虑实现证书自动更新机制 |
||||
|
3. **安全加固**: 考虑对证书文件进行加密存储 |
||||
|
4. **测试覆盖**: 增加更多的单元测试和集成测试 |
||||
|
|
||||
|
## 修复完成 |
||||
|
|
||||
|
✅ 异步通知证书读取问题已修复 |
||||
|
✅ 错误处理和日志记录已改进 |
||||
|
✅ 测试验证已通过 |
||||
|
✅ 文档已更新 |
||||
@ -0,0 +1,204 @@ |
|||||
|
package com.gxwebsoft.common.core.utils; |
||||
|
|
||||
|
import com.gxwebsoft.common.core.config.CertificateProperties; |
||||
|
import com.gxwebsoft.common.system.entity.Payment; |
||||
|
import lombok.extern.slf4j.Slf4j; |
||||
|
import org.springframework.stereotype.Component; |
||||
|
import org.springframework.util.StringUtils; |
||||
|
|
||||
|
/** |
||||
|
* 微信支付配置验证工具 |
||||
|
* |
||||
|
* @author 科技小王子 |
||||
|
* @since 2025-07-27 |
||||
|
*/ |
||||
|
@Slf4j |
||||
|
@Component |
||||
|
public class WechatPayConfigValidator { |
||||
|
|
||||
|
private final CertificateProperties certConfig; |
||||
|
private final CertificateLoader certificateLoader; |
||||
|
|
||||
|
public WechatPayConfigValidator(CertificateProperties certConfig, CertificateLoader certificateLoader) { |
||||
|
this.certConfig = certConfig; |
||||
|
this.certificateLoader = certificateLoader; |
||||
|
} |
||||
|
|
||||
|
/** |
||||
|
* 验证微信支付配置 |
||||
|
* |
||||
|
* @param payment 支付配置 |
||||
|
* @param tenantId 租户ID |
||||
|
* @return 验证结果 |
||||
|
*/ |
||||
|
public ValidationResult validateWechatPayConfig(Payment payment, Integer tenantId) { |
||||
|
ValidationResult result = new ValidationResult(); |
||||
|
|
||||
|
log.info("开始验证微信支付配置 - 租户ID: {}", tenantId); |
||||
|
|
||||
|
// 1. 验证基本配置
|
||||
|
if (payment == null) { |
||||
|
result.addError("支付配置为空"); |
||||
|
return result; |
||||
|
} |
||||
|
|
||||
|
if (!StringUtils.hasText(payment.getMchId())) { |
||||
|
result.addError("商户号未配置"); |
||||
|
} |
||||
|
|
||||
|
if (!StringUtils.hasText(payment.getAppId())) { |
||||
|
result.addError("应用ID未配置"); |
||||
|
} |
||||
|
|
||||
|
if (!StringUtils.hasText(payment.getMerchantSerialNumber())) { |
||||
|
result.addError("商户证书序列号未配置"); |
||||
|
} |
||||
|
|
||||
|
// 2. 验证 APIv3 密钥
|
||||
|
String apiV3Key = getValidApiV3Key(payment); |
||||
|
if (!StringUtils.hasText(apiV3Key)) { |
||||
|
result.addError("APIv3密钥未配置"); |
||||
|
} else { |
||||
|
validateApiV3Key(apiV3Key, result); |
||||
|
} |
||||
|
|
||||
|
// 3. 验证证书文件
|
||||
|
validateCertificateFiles(tenantId, result); |
||||
|
|
||||
|
// 4. 记录验证结果
|
||||
|
if (result.isValid()) { |
||||
|
log.info("✅ 微信支付配置验证通过 - 租户ID: {}", tenantId); |
||||
|
} else { |
||||
|
log.error("❌ 微信支付配置验证失败 - 租户ID: {}, 错误: {}", tenantId, result.getErrors()); |
||||
|
} |
||||
|
|
||||
|
return result; |
||||
|
} |
||||
|
|
||||
|
/** |
||||
|
* 获取有效的 APIv3 密钥 |
||||
|
* 优先使用数据库配置,如果为空则使用配置文件默认值 |
||||
|
*/ |
||||
|
public String getValidApiV3Key(Payment payment) { |
||||
|
String apiV3Key = payment.getApiKey(); |
||||
|
|
||||
|
if (!StringUtils.hasText(apiV3Key)) { |
||||
|
apiV3Key = certConfig.getWechatPay().getDev().getApiV3Key(); |
||||
|
log.warn("数据库中APIv3密钥为空,使用配置文件默认值"); |
||||
|
} |
||||
|
|
||||
|
return apiV3Key; |
||||
|
} |
||||
|
|
||||
|
/** |
||||
|
* 验证 APIv3 密钥格式 |
||||
|
*/ |
||||
|
private void validateApiV3Key(String apiV3Key, ValidationResult result) { |
||||
|
if (apiV3Key.length() != 32) { |
||||
|
result.addError("APIv3密钥长度错误,应为32位,实际为: " + apiV3Key.length()); |
||||
|
} |
||||
|
|
||||
|
if (!apiV3Key.matches("^[a-zA-Z0-9]+$")) { |
||||
|
result.addError("APIv3密钥格式错误,应仅包含字母和数字"); |
||||
|
} |
||||
|
|
||||
|
log.info("APIv3密钥验证 - 长度: {}, 格式: {}", |
||||
|
apiV3Key.length(), |
||||
|
apiV3Key.matches("^[a-zA-Z0-9]+$") ? "正确" : "错误"); |
||||
|
} |
||||
|
|
||||
|
/** |
||||
|
* 验证证书文件 |
||||
|
*/ |
||||
|
private void validateCertificateFiles(Integer tenantId, ValidationResult result) { |
||||
|
String tenantCertPath = "dev/wechat/" + tenantId; |
||||
|
String privateKeyPath = tenantCertPath + "/" + certConfig.getWechatPay().getDev().getPrivateKeyFile(); |
||||
|
|
||||
|
if (!certificateLoader.certificateExists(privateKeyPath)) { |
||||
|
result.addError("证书文件不存在: " + privateKeyPath); |
||||
|
return; |
||||
|
} |
||||
|
|
||||
|
try { |
||||
|
String privateKey = certificateLoader.loadCertificatePath(privateKeyPath); |
||||
|
log.info("✅ 证书文件验证通过: {}", privateKey); |
||||
|
} catch (Exception e) { |
||||
|
result.addError("证书文件加载失败: " + e.getMessage()); |
||||
|
} |
||||
|
} |
||||
|
|
||||
|
/** |
||||
|
* 验证结果类 |
||||
|
*/ |
||||
|
public static class ValidationResult { |
||||
|
private boolean valid = true; |
||||
|
private StringBuilder errors = new StringBuilder(); |
||||
|
|
||||
|
public void addError(String error) { |
||||
|
this.valid = false; |
||||
|
if (errors.length() > 0) { |
||||
|
errors.append("; "); |
||||
|
} |
||||
|
errors.append(error); |
||||
|
} |
||||
|
|
||||
|
public boolean isValid() { |
||||
|
return valid; |
||||
|
} |
||||
|
|
||||
|
public String getErrors() { |
||||
|
return errors.toString(); |
||||
|
} |
||||
|
|
||||
|
public void logErrors() { |
||||
|
if (!valid) { |
||||
|
log.error("配置验证失败: {}", errors.toString()); |
||||
|
} |
||||
|
} |
||||
|
} |
||||
|
|
||||
|
/** |
||||
|
* 生成配置诊断报告 |
||||
|
*/ |
||||
|
public String generateDiagnosticReport(Payment payment, Integer tenantId) { |
||||
|
StringBuilder report = new StringBuilder(); |
||||
|
report.append("=== 微信支付配置诊断报告 ===\n"); |
||||
|
report.append("租户ID: ").append(tenantId).append("\n"); |
||||
|
|
||||
|
if (payment != null) { |
||||
|
report.append("商户号: ").append(payment.getMchId()).append("\n"); |
||||
|
report.append("应用ID: ").append(payment.getAppId()).append("\n"); |
||||
|
report.append("商户证书序列号: ").append(payment.getMerchantSerialNumber()).append("\n"); |
||||
|
|
||||
|
String dbApiKey = payment.getApiKey(); |
||||
|
String configApiKey = certConfig.getWechatPay().getDev().getApiV3Key(); |
||||
|
|
||||
|
report.append("数据库APIv3密钥: ").append(dbApiKey != null ? "已配置(" + dbApiKey.length() + "位)" : "未配置").append("\n"); |
||||
|
report.append("配置文件APIv3密钥: ").append(configApiKey != null ? "已配置(" + configApiKey.length() + "位)" : "未配置").append("\n"); |
||||
|
|
||||
|
String finalApiKey = getValidApiV3Key(payment); |
||||
|
report.append("最终使用APIv3密钥: ").append(finalApiKey != null ? "已配置(" + finalApiKey.length() + "位)" : "未配置").append("\n"); |
||||
|
|
||||
|
} else { |
||||
|
report.append("❌ 支付配置为空\n"); |
||||
|
} |
||||
|
|
||||
|
// 证书文件检查
|
||||
|
String tenantCertPath = "dev/wechat/" + tenantId; |
||||
|
String privateKeyPath = tenantCertPath + "/" + certConfig.getWechatPay().getDev().getPrivateKeyFile(); |
||||
|
boolean certExists = certificateLoader.certificateExists(privateKeyPath); |
||||
|
|
||||
|
report.append("证书文件路径: ").append(privateKeyPath).append("\n"); |
||||
|
report.append("证书文件存在: ").append(certExists ? "是" : "否").append("\n"); |
||||
|
|
||||
|
ValidationResult validation = validateWechatPayConfig(payment, tenantId); |
||||
|
report.append("配置验证结果: ").append(validation.isValid() ? "通过" : "失败").append("\n"); |
||||
|
if (!validation.isValid()) { |
||||
|
report.append("验证错误: ").append(validation.getErrors()).append("\n"); |
||||
|
} |
||||
|
|
||||
|
report.append("=== 诊断报告结束 ==="); |
||||
|
|
||||
|
return report.toString(); |
||||
|
} |
||||
|
} |
||||
@ -1,38 +0,0 @@ |
|||||
-----BEGIN CERTIFICATE----- |
|
||||
MIIDqDCCApCgAwIBAgIQICISFUe9Mqj+pWqb2fs9jDANBgkqhkiG9w0BAQsFADCBkTELMAkGA1UE |
|
||||
BhMCQ04xGzAZBgNVBAoMEkFudCBGaW5hbmNpYWwgdGVzdDElMCMGA1UECwwcQ2VydGlmaWNhdGlv |
|
||||
biBBdXRob3JpdHkgdGVzdDE+MDwGA1UEAww1QW50IEZpbmFuY2lhbCBDZXJ0aWZpY2F0aW9uIEF1 |
|
||||
dGhvcml0eSBDbGFzcyAyIFIxIHRlc3QwHhcNMjIxMjE1MDExMjA0WhcNMjMxMjE1MDExMjA0WjB6 |
|
||||
MQswCQYDVQQGEwJDTjEVMBMGA1UECgwM5rKZ566x546v5aKDMQ8wDQYDVQQLDAZBbGlwYXkxQzBB |
|
||||
BgNVBAMMOuaUr+S7mOWunSjkuK3lm70p572R57uc5oqA5pyv5pyJ6ZmQ5YWs5Y+4LTIwODgxMDIx |
|
||||
NzUyMDcyOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQwLlj0xdcIy4rQLNg73Nl |
|
||||
zjSqKV7cjE1aieYpEQ/0aNZxVBqm0wxSiXgDR+NjyuD2VadER6caFDhB9bO2lLroI9xHjc1Griwc |
|
||||
4XAN9JA2kh/3irzQxKCBzrW0/6gpEIIVFSK+reCAmD0vtMTLOIChUhl4OSDYWLpUzFmICa9tRNGD |
|
||||
hPUSr08JFn2DhXW3eUnOzJEkf4qxn3HIDlKwBb50CJhjkuCIWxKBxRe1oQy2zEd6tezp00xvW4DQ |
|
||||
OqkSHEW641sUbA7ntckdOF7X5FQGKqKqwrFxTSblixk/mkBxAkIj7dM+k9AqFtrhnzn01sP21MYx |
|
||||
PPOhddGk3indwe9DAgMBAAGjEjAQMA4GA1UdDwEB/wQEAwIE8DANBgkqhkiG9w0BAQsFAAOCAQEA |
|
||||
xJXsNQ5rDQBwn8BXYuSaj1Hkw8W3wKRr55Y2fDoQIx2kek9kI53PRvIVAdxlrLxZ6z+lTFrkThJ/ |
|
||||
rsH84ffkDvfSTca3QCB6c01jveQ+qGvGQSx/HPu92DMT/hJ0V8LstLlq6Q1r8hTvcjHOPyE9l3vF |
|
||||
I0Ozbe2F3TCOFFjtEjHHOw9bo+tB8gtiY/bfidPbTtCClTTyPRTE8MuzQqDABhGl3khL4aue9h8g |
|
||||
x0i0yAn15VBf9ruqlTrTnhuI5ak7AOwdxjKaMwVbTCy838rQjt4xKMD80h2go/6MLRGidnbeiTU2 |
|
||||
Uq3PVgEJo2kxE8ZSD7x4JtskZD07YCSA5DZtuw== |
|
||||
-----END CERTIFICATE----- |
|
||||
-----BEGIN CERTIFICATE----- |
|
||||
MIIDszCCApugAwIBAgIQIBkIGbgVxq210KxLJ+YA/TANBgkqhkiG9w0BAQsFADCBhDELMAkGA1UE |
|
||||
BhMCQ04xFjAUBgNVBAoMDUFudCBGaW5hbmNpYWwxJTAjBgNVBAsMHENlcnRpZmljYXRpb24gQXV0 |
|
||||
aG9yaXR5IHRlc3QxNjA0BgNVBAMMLUFudCBGaW5hbmNpYWwgQ2VydGlmaWNhdGlvbiBBdXRob3Jp |
|
||||
dHkgUjEgdGVzdDAeFw0xOTA4MTkxMTE2MDBaFw0yNDA4MDExMTE2MDBaMIGRMQswCQYDVQQGEwJD |
|
||||
TjEbMBkGA1UECgwSQW50IEZpbmFuY2lhbCB0ZXN0MSUwIwYDVQQLDBxDZXJ0aWZpY2F0aW9uIEF1 |
|
||||
dGhvcml0eSB0ZXN0MT4wPAYDVQQDDDVBbnQgRmluYW5jaWFsIENlcnRpZmljYXRpb24gQXV0aG9y |
|
||||
aXR5IENsYXNzIDIgUjEgdGVzdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMh4FKYO |
|
||||
ZyRQHD6eFbPKZeSAnrfjfU7xmS9Yoozuu+iuqZlb6Z0SPLUqqTZAFZejOcmr07ln/pwZxluqplxC |
|
||||
5+B48End4nclDMlT5HPrDr3W0frs6Xsa2ZNcyil/iKNB5MbGll8LRAxntsKvZZj6vUTMb705gYgm |
|
||||
VUMILwi/ZxKTQqBtkT/kQQ5y6nOZsj7XI5rYdz6qqOROrpvS/d7iypdHOMIM9Iz9DlL1mrCykbBi |
|
||||
t25y+gTeXmuisHUwqaRpwtCGK4BayCqxRGbNipe6W73EK9lBrrzNtTr9NaysesT/v+l25JHCL9tG |
|
||||
wpNr1oWFzk4IHVOg0ORiQ6SUgxZUTYcCAwEAAaMSMBAwDgYDVR0PAQH/BAQDAgTwMA0GCSqGSIb3 |
|
||||
DQEBCwUAA4IBAQBWThEoIaQoBX2YeRY/I8gu6TYnFXtyuCljANnXnM38ft+ikhE5mMNgKmJYLHvT |
|
||||
yWWWgwHoSAWEuml7EGbE/2AK2h3k0MdfiWLzdmpPCRG/RJHk6UB1pMHPilI+c0MVu16OPpKbg5Vf |
|
||||
LTv7dsAB40AzKsvyYw88/Ezi1osTXo6QQwda7uefvudirtb8FcQM9R66cJxl3kt1FXbpYwheIm/p |
|
||||
j1mq64swCoIYu4NrsUYtn6CV542DTQMI5QdXkn+PzUUly8F6kDp+KpMNd0avfWNL5+O++z+F5Szy |
|
||||
1CPta1D7EQ/eYmMP+mOQ35oifWIoFCpN6qQVBS/Hob1J/UUyg7BW |
|
||||
-----END CERTIFICATE----- |
|
||||
@ -1,88 +0,0 @@ |
|||||
-----BEGIN CERTIFICATE----- |
|
||||
MIIBszCCAVegAwIBAgIIaeL+wBcKxnswDAYIKoEcz1UBg3UFADAuMQswCQYDVQQG |
|
||||
EwJDTjEOMAwGA1UECgwFTlJDQUMxDzANBgNVBAMMBlJPT1RDQTAeFw0xMjA3MTQw |
|
||||
MzExNTlaFw00MjA3MDcwMzExNTlaMC4xCzAJBgNVBAYTAkNOMQ4wDAYDVQQKDAVO |
|
||||
UkNBQzEPMA0GA1UEAwwGUk9PVENBMFkwEwYHKoZIzj0CAQYIKoEcz1UBgi0DQgAE |
|
||||
MPCca6pmgcchsTf2UnBeL9rtp4nw+itk1Kzrmbnqo05lUwkwlWK+4OIrtFdAqnRT |
|
||||
V7Q9v1htkv42TsIutzd126NdMFswHwYDVR0jBBgwFoAUTDKxl9kzG8SmBcHG5Yti |
|
||||
W/CXdlgwDAYDVR0TBAUwAwEB/zALBgNVHQ8EBAMCAQYwHQYDVR0OBBYEFEwysZfZ |
|
||||
MxvEpgXBxuWLYlvwl3ZYMAwGCCqBHM9VAYN1BQADSAAwRQIgG1bSLeOXp3oB8H7b |
|
||||
53W+CKOPl2PknmWEq/lMhtn25HkCIQDaHDgWxWFtnCrBjH16/W3Ezn7/U/Vjo5xI |
|
||||
pDoiVhsLwg== |
|
||||
-----END CERTIFICATE----- |
|
||||
|
|
||||
-----BEGIN CERTIFICATE----- |
|
||||
MIIF0zCCA7ugAwIBAgIIH8+hjWpIDREwDQYJKoZIhvcNAQELBQAwejELMAkGA1UE |
|
||||
BhMCQ04xFjAUBgNVBAoMDUFudCBGaW5hbmNpYWwxIDAeBgNVBAsMF0NlcnRpZmlj |
|
||||
YXRpb24gQXV0aG9yaXR5MTEwLwYDVQQDDChBbnQgRmluYW5jaWFsIENlcnRpZmlj |
|
||||
YXRpb24gQXV0aG9yaXR5IFIxMB4XDTE4MDMyMTEzNDg0MFoXDTM4MDIyODEzNDg0 |
|
||||
MFowejELMAkGA1UEBhMCQ04xFjAUBgNVBAoMDUFudCBGaW5hbmNpYWwxIDAeBgNV |
|
||||
BAsMF0NlcnRpZmljYXRpb24gQXV0aG9yaXR5MTEwLwYDVQQDDChBbnQgRmluYW5j |
|
||||
aWFsIENlcnRpZmljYXRpb24gQXV0aG9yaXR5IFIxMIICIjANBgkqhkiG9w0BAQEF |
|
||||
AAOCAg8AMIICCgKCAgEAtytTRcBNuur5h8xuxnlKJetT65cHGemGi8oD+beHFPTk |
|
||||
rUTlFt9Xn7fAVGo6QSsPb9uGLpUFGEdGmbsQ2q9cV4P89qkH04VzIPwT7AywJdt2 |
|
||||
xAvMs+MgHFJzOYfL1QkdOOVO7NwKxH8IvlQgFabWomWk2Ei9WfUyxFjVO1LVh0Bp |
|
||||
dRBeWLMkdudx0tl3+21t1apnReFNQ5nfX29xeSxIhesaMHDZFViO/DXDNW2BcTs6 |
|
||||
vSWKyJ4YIIIzStumD8K1xMsoaZBMDxg4itjWFaKRgNuPiIn4kjDY3kC66Sl/6yTl |
|
||||
YUz8AybbEsICZzssdZh7jcNb1VRfk79lgAprm/Ktl+mgrU1gaMGP1OE25JCbqli1 |
|
||||
Pbw/BpPynyP9+XulE+2mxFwTYhKAwpDIDKuYsFUXuo8t261pCovI1CXFzAQM2w7H |
|
||||
DtA2nOXSW6q0jGDJ5+WauH+K8ZSvA6x4sFo4u0KNCx0ROTBpLif6GTngqo3sj+98 |
|
||||
SZiMNLFMQoQkjkdN5Q5g9N6CFZPVZ6QpO0JcIc7S1le/g9z5iBKnifrKxy0TQjtG |
|
||||
PsDwc8ubPnRm/F82RReCoyNyx63indpgFfhN7+KxUIQ9cOwwTvemmor0A+ZQamRe |
|
||||
9LMuiEfEaWUDK+6O0Gl8lO571uI5onYdN1VIgOmwFbe+D8TcuzVjIZ/zvHrAGUcC |
|
||||
AwEAAaNdMFswCwYDVR0PBAQDAgEGMAwGA1UdEwQFMAMBAf8wHQYDVR0OBBYEFF90 |
|
||||
tATATwda6uWx2yKjh0GynOEBMB8GA1UdIwQYMBaAFF90tATATwda6uWx2yKjh0Gy |
|
||||
nOEBMA0GCSqGSIb3DQEBCwUAA4ICAQCVYaOtqOLIpsrEikE5lb+UARNSFJg6tpkf |
|
||||
tJ2U8QF/DejemEHx5IClQu6ajxjtu0Aie4/3UnIXop8nH/Q57l+Wyt9T7N2WPiNq |
|
||||
JSlYKYbJpPF8LXbuKYG3BTFTdOVFIeRe2NUyYh/xs6bXGr4WKTXb3qBmzR02FSy3 |
|
||||
IODQw5Q6zpXj8prYqFHYsOvGCEc1CwJaSaYwRhTkFedJUxiyhyB5GQwoFfExCVHW |
|
||||
05ZFCAVYFldCJvUzfzrWubN6wX0DD2dwultgmldOn/W/n8at52mpPNvIdbZb2F41 |
|
||||
T0YZeoWnCJrYXjq/32oc1cmifIHqySnyMnavi75DxPCdZsCOpSAT4j4lAQRGsfgI |
|
||||
kkLPGQieMfNNkMCKh7qjwdXAVtdqhf0RVtFILH3OyEodlk1HYXqX5iE5wlaKzDop |
|
||||
PKwf2Q3BErq1xChYGGVS+dEvyXc/2nIBlt7uLWKp4XFjqekKbaGaLJdjYP5b2s7N |
|
||||
1dM0MXQ/f8XoXKBkJNzEiM3hfsU6DOREgMc1DIsFKxfuMwX3EkVQM1If8ghb6x5Y |
|
||||
jXayv+NLbidOSzk4vl5QwngO/JYFMkoc6i9LNwEaEtR9PhnrdubxmrtM+RjfBm02 |
|
||||
77q3dSWFESFQ4QxYWew4pHE0DpWbWy/iMIKQ6UZ5RLvB8GEcgt8ON7BBJeMc+Dyi |
|
||||
kT9qhqn+lw== |
|
||||
-----END CERTIFICATE----- |
|
||||
|
|
||||
-----BEGIN CERTIFICATE----- |
|
||||
MIICiDCCAgygAwIBAgIIQX76UsB/30owDAYIKoZIzj0EAwMFADB6MQswCQYDVQQG |
|
||||
EwJDTjEWMBQGA1UECgwNQW50IEZpbmFuY2lhbDEgMB4GA1UECwwXQ2VydGlmaWNh |
|
||||
dGlvbiBBdXRob3JpdHkxMTAvBgNVBAMMKEFudCBGaW5hbmNpYWwgQ2VydGlmaWNh |
|
||||
dGlvbiBBdXRob3JpdHkgRTEwHhcNMTkwNDI4MTYyMDQ0WhcNNDkwNDIwMTYyMDQ0 |
|
||||
WjB6MQswCQYDVQQGEwJDTjEWMBQGA1UECgwNQW50IEZpbmFuY2lhbDEgMB4GA1UE |
|
||||
CwwXQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxMTAvBgNVBAMMKEFudCBGaW5hbmNp |
|
||||
YWwgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgRTEwdjAQBgcqhkjOPQIBBgUrgQQA |
|
||||
IgNiAASCCRa94QI0vR5Up9Yr9HEupz6hSoyjySYqo7v837KnmjveUIUNiuC9pWAU |
|
||||
WP3jwLX3HkzeiNdeg22a0IZPoSUCpasufiLAnfXh6NInLiWBrjLJXDSGaY7vaokt |
|
||||
rpZvAdmjXTBbMAsGA1UdDwQEAwIBBjAMBgNVHRMEBTADAQH/MB0GA1UdDgQWBBRZ |
|
||||
4ZTgDpksHL2qcpkFkxD2zVd16TAfBgNVHSMEGDAWgBRZ4ZTgDpksHL2qcpkFkxD2 |
|
||||
zVd16TAMBggqhkjOPQQDAwUAA2gAMGUCMQD4IoqT2hTUn0jt7oXLdMJ8q4vLp6sg |
|
||||
wHfPiOr9gxreb+e6Oidwd2LDnC4OUqCWiF8CMAzwKs4SnDJYcMLf2vpkbuVE4dTH |
|
||||
Rglz+HGcTLWsFs4KxLsq7MuU+vJTBUeDJeDjdA== |
|
||||
-----END CERTIFICATE----- |
|
||||
|
|
||||
-----BEGIN CERTIFICATE----- |
|
||||
MIIDxTCCAq2gAwIBAgIUEMdk6dVgOEIS2cCP0Q43P90Ps5YwDQYJKoZIhvcNAQEF |
|
||||
BQAwajELMAkGA1UEBhMCQ04xEzARBgNVBAoMCmlUcnVzQ2hpbmExHDAaBgNVBAsM |
|
||||
E0NoaW5hIFRydXN0IE5ldHdvcmsxKDAmBgNVBAMMH2lUcnVzQ2hpbmEgQ2xhc3Mg |
|
||||
MiBSb290IENBIC0gRzMwHhcNMTMwNDE4MDkzNjU2WhcNMzMwNDE4MDkzNjU2WjBq |
|
||||
MQswCQYDVQQGEwJDTjETMBEGA1UECgwKaVRydXNDaGluYTEcMBoGA1UECwwTQ2hp |
|
||||
bmEgVHJ1c3QgTmV0d29yazEoMCYGA1UEAwwfaVRydXNDaGluYSBDbGFzcyAyIFJv |
|
||||
b3QgQ0EgLSBHMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOPPShpV |
|
||||
nJbMqqCw6Bz1kehnoPst9pkr0V9idOwU2oyS47/HjJXk9Rd5a9xfwkPO88trUpz5 |
|
||||
4GmmwspDXjVFu9L0eFaRuH3KMha1Ak01citbF7cQLJlS7XI+tpkTGHEY5pt3EsQg |
|
||||
wykfZl/A1jrnSkspMS997r2Gim54cwz+mTMgDRhZsKK/lbOeBPpWtcFizjXYCqhw |
|
||||
WktvQfZBYi6o4sHCshnOswi4yV1p+LuFcQ2ciYdWvULh1eZhLxHbGXyznYHi0dGN |
|
||||
z+I9H8aXxqAQfHVhbdHNzi77hCxFjOy+hHrGsyzjrd2swVQ2iUWP8BfEQqGLqM1g |
|
||||
KgWKYfcTGdbPB1MCAwEAAaNjMGEwHQYDVR0OBBYEFG/oAMxTVe7y0+408CTAK8hA |
|
||||
uTyRMB8GA1UdIwQYMBaAFG/oAMxTVe7y0+408CTAK8hAuTyRMA8GA1UdEwEB/wQF |
|
||||
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMA0GCSqGSIb3DQEBBQUAA4IBAQBLnUTfW7hp |
|
||||
emMbuUGCk7RBswzOT83bDM6824EkUnf+X0iKS95SUNGeeSWK2o/3ALJo5hi7GZr3 |
|
||||
U8eLaWAcYizfO99UXMRBPw5PRR+gXGEronGUugLpxsjuynoLQu8GQAeysSXKbN1I |
|
||||
UugDo9u8igJORYA+5ms0s5sCUySqbQ2R5z/GoceyI9LdxIVa1RjVX8pYOj8JFwtn |
|
||||
DJN3ftSFvNMYwRuILKuqUYSHc2GPYiHVflDh5nDymCMOQFcFG3WsEuB+EYQPFgIU |
|
||||
1DHmdZcz7Llx8UOZXX2JupWCYzK1XhJb+r4hK5ncf/w8qGtYlmyJpxk3hr1TfUJX |
|
||||
Yf4Zr0fJsGuv |
|
||||
-----END CERTIFICATE----- |
|
||||
@ -1,25 +0,0 @@ |
|||||
-----BEGIN CERTIFICATE----- |
|
||||
MIIEKzCCAxOgAwIBAgIUSHSWE7QKqPHXaFg/w1I1jhPrWvAwDQYJKoZIhvcNAQEL |
|
||||
BQAwXjELMAkGA1UEBhMCQ04xEzARBgNVBAoTClRlbnBheS5jb20xHTAbBgNVBAsT |
|
||||
FFRlbnBheS5jb20gQ0EgQ2VudGVyMRswGQYDVQQDExJUZW5wYXkuY29tIFJvb3Qg |
|
||||
Q0EwHhcNMjQwNTExMDk0MzIzWhcNMjkwNTEwMDk0MzIzWjCBhDETMBEGA1UEAwwK |
|
||||
MTI0NjYxMDEwMTEbMBkGA1UECgwS5b6u5L+h5ZWG5oi357O757ufMTAwLgYDVQQL |
|
||||
DCfljZflroHluILnvZHlrr/kv6Hmga/np5HmioDmnInpmZDlhazlj7gxCzAJBgNV |
|
||||
BAYTAkNOMREwDwYDVQQHDAhTaGVuWmhlbjCCASIwDQYJKoZIhvcNAQEBBQADggEP |
|
||||
ADCCAQoCggEBAJSGQstwTNKfEUWGGNRdzAG691PKkpa78IV7SNAaAWdBUohvSGQB |
|
||||
Hxg2JcTjnNifqxWAVj302u0+OEPETQ+teTLeLgRfGp4b8WBKdibn9RzZD964xGhM |
|
||||
NkcMEwUxdqfBK28kGaKYW0zBifkzS1LDGuEVmUo9jE7pAuzDz5mJwcd1fZs4NsjD |
|
||||
7O60QLw4SZCXINW6IYVc41Ln+RlY2XPkm/keBydjrfvMI7Z+DqW/TEWOWshNycYr |
|
||||
3hqVeipz2FnUwK4ruGxEOqTXhYtn0QtvYaMcrfcXJ1U+zuwtZf+kh3RI/Lk+y2rJ |
|
||||
kfnuxZZ+P5K2oG+hcBapYS3q15kmf9RpMH0CAwEAAaOBuTCBtjAJBgNVHRMEAjAA |
|
||||
MAsGA1UdDwQEAwID+DCBmwYDVR0fBIGTMIGQMIGNoIGKoIGHhoGEaHR0cDovL2V2 |
|
||||
Y2EuaXRydXMuY29tLmNuL3B1YmxpYy9pdHJ1c2NybD9DQT0xQkQ0MjIwRTUwREJD |
|
||||
MDRCMDZBRDM5NzU0OTg0NkMwMUMzRThFQkQyJnNnPUhBQ0M0NzFCNjU0MjJFMTJC |
|
||||
MjdBOUQzM0E4N0FEMUNERjU5MjZFMTQwMzcxMA0GCSqGSIb3DQEBCwUAA4IBAQCK |
|
||||
sgR2Wgb9wyyLX7ltlGXDqT44aMc3n5KI02LXv0mBD1aR4m5TFjlMzJIW2DIe01LF |
|
||||
yxVsUsoGIpjnAkmQOdNPL3tnCfl3bWqdNDDH9B711llNe5y1i4IYOcObhX08dEQd |
|
||||
vBnzuZ7/kH/t2h8q7rd7hqpQ5ZtU2xEY6ZlnohGyzNgVsDkLJI4b9iKRqOxRPVhs |
|
||||
GGbGKrv3JAYiFouSeH/m04xMWARFKhPoWduIeSWEJZmszWfkUBvPXo26+0YOKBVN |
|
||||
5gSkjioeXEX2T4/9K1SHx/iTzWvgN9MjlIJNujbg3Vz4PFU6aw2b8eK3Y0juto96 |
|
||||
2uoUN1fLIqxNOz2E4iSJ |
|
||||
-----END CERTIFICATE----- |
|
||||
@ -1,28 +0,0 @@ |
|||||
-----BEGIN PRIVATE KEY----- |
|
||||
MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQCUhkLLcEzSnxFF |
|
||||
hhjUXcwBuvdTypKWu/CFe0jQGgFnQVKIb0hkAR8YNiXE45zYn6sVgFY99NrtPjhD |
|
||||
xE0PrXky3i4EXxqeG/FgSnYm5/Uc2Q/euMRoTDZHDBMFMXanwStvJBmimFtMwYn5 |
|
||||
M0tSwxrhFZlKPYxO6QLsw8+ZicHHdX2bODbIw+zutEC8OEmQlyDVuiGFXONS5/kZ |
|
||||
WNlz5Jv5HgcnY637zCO2fg6lv0xFjlrITcnGK94alXoqc9hZ1MCuK7hsRDqk14WL |
|
||||
Z9ELb2GjHK33FydVPs7sLWX/pId0SPy5PstqyZH57sWWfj+StqBvoXAWqWEt6teZ |
|
||||
Jn/UaTB9AgMBAAECggEAb1Nvj5OeUaUfShBoXg3sU0O0DR9i3w8CCttMyYcklCO3 |
|
||||
XEKlbSgWCYzUpI7DSu/rSdOHUStOSdOAUvM5m824cbNtpKMwjWB+fWFyzFjDNhtR |
|
||||
NO0jctXlPT3Ep/jaaoV1K/pQKLqwfIj5BUw4YlGRvTL2Ulpt59vp8FQZMIm8MOcw |
|
||||
rNwYcUbMPaNKk4q3GF0LGvzW8k+S6wAWcAbx1KINRsLE0127o+shjGIlBiZgMJGZ |
|
||||
nTMz4xdvVbojsMhdM8aEhq6GtmSHgBFKjETQPXiOjRDCGOM5yC/9R/9WsMGJmJ4m |
|
||||
6Ec/RM4k9TZlnMZFsOZYO8S/kM+xgQUcAD8uGT1UgQKBgQDDGVZiqsDjudFcRkG/ |
|
||||
5pJN9PAC/Dk0Wzt6uRPZIhyFo2tDC/uL210Z5QR4hhB2nUSK8ANfAnepTotNzPHO |
|
||||
DC/sO2NzLuZz5EZTLeg9ij9BZDK+0/6AiBT2XdBKR/uGZAffjFCDh+ujm44lbrRK |
|
||||
7MUb9LtvDjPru1WVR0WhpFIwXQKBgQDC4xTQv6x3cPSW2SEglLVrl9CA68yO1g4T |
|
||||
MphCav64Cl9UDk1ov5C2SCvshFbWlIBv2g7tqb/bUk8nj42GuZWBu1spkUt2y7HS |
|
||||
eO89BmnaRNkVtWT8GtSMYYrYYAd23IGiOHPQqMnw/6HXkpjonpBa9c9CfEPwNtdq |
|
||||
84pgqed+oQKBgC6rV/PAPuX6pC87iyzZffPx/JvqM9DnZgIEVdAiDcqV/emK60BY |
|
||||
WBwCoaAnCbcmBahqo5PNpkw0wrP4q3sLhUcwKaj69huQ5pWtLJnUAS+mRVFKqt2a |
|
||||
L9GDPXkXYP6T3SJHkVb1Y5O+eTFRGwW1P61hTJjTP+5K4L0V0H1LLnHtAoGAEDBU |
|
||||
1lJVvUZAyxcWTWKM/3cI9uyffW4ClU2qoDnLFvalnJHjlEP1fW7ZVzhXDlQfpyrx |
|
||||
+oQTT+CyepLOKtbXuIMbu4Q6RI//IYCyPtt9h4gYkFkVHmwMI+0mX3r6o8EFc7hE |
|
||||
xpx+yeoyQ3oGAazKSQQKR3eTHS0xD81TPVxfwoECgYEAvBi3fPvIQ08pxk6kxj+S |
|
||||
bypHo06JHT1Fi8pmKtKCGLduK85dCeBZqHmsorWC/qg4RgCFWFFKfrFTGTxC4nf8 |
|
||||
MRQHmKxq+SAh4SvFgRDA0lyaUWmw7H/JpolbBDIGnXhoDI0CmQU3s2xsQdJnNPIL |
|
||||
azgaJXtOu+wr1MPR7Ij5OTU= |
|
||||
-----END PRIVATE KEY----- |
|
||||
@ -1,19 +0,0 @@ |
|||||
-----BEGIN CERTIFICATE----- |
|
||||
MIIDjzCCAnegAwIBAgIQICISFPMNDPadFdV3VF7atzANBgkqhkiG9w0BAQsFADCBkTELMAkGA1UE |
|
||||
BhMCQ04xGzAZBgNVBAoMEkFudCBGaW5hbmNpYWwgdGVzdDElMCMGA1UECwwcQ2VydGlmaWNhdGlv |
|
||||
biBBdXRob3JpdHkgdGVzdDE+MDwGA1UEAww1QW50IEZpbmFuY2lhbCBDZXJ0aWZpY2F0aW9uIEF1 |
|
||||
dGhvcml0eSBDbGFzcyAyIFIxIHRlc3QwHhcNMjIxMjE0MTEzNjE3WhcNMjMxMjE5MTEzNjE3WjBh |
|
||||
MQswCQYDVQQGEwJDTjEVMBMGA1UECgwM5rKZ566x546v5aKDMQ8wDQYDVQQLDAZBbGlwYXkxKjAo |
|
||||
BgNVBAMMITIwODgxMDIxNzUyMDcyOTItMjAxNjA5MTEwMDQ4OTQ4NjCCASIwDQYJKoZIhvcNAQEB |
|
||||
BQADggEPADCCAQoCggEBAJFjmRNQkJ1d2kWZ4bn8WvIUWKu2+wMDQ5nOMaIGtKo+bx3o1RaAWYct |
|
||||
XJL82GkdUr+JpiBy7W1iFl0quZJIo2n9tyxsTGTswq1mtYJVKonHELxN1L2Xz9PjU8wlzQwxb2Rm |
|
||||
JlW2/SpUGaRiZxzYJHhHXbqvPH8D/xG+x6Hwq9zEF/ZIDMCLi5wiXhK7KFXDOBFYdOw0zwCmGIeY |
|
||||
73htk56kay1HoTjwACvZzkw8ff5FRA76/5/7ZEj6R6Hga/LMmYJXfntPPYW/wuMiBI7rU5f4s6El |
|
||||
S1A2uwK4+kbepg9klOYR2Lg30SNz4hj4k8KNtoeWnzrTlWoZj3SfDErJuuMCAwEAAaMSMBAwDgYD |
|
||||
VR0PAQH/BAQDAgTwMA0GCSqGSIb3DQEBCwUAA4IBAQC9YAgw5uwHUgY73t8eABW8LzrhLoUafN/j |
|
||||
WG6QataRgaTHbNCuCz5yWTMmD7hZGmb8NuZzaLOPD+/0yM5nz+w/nc+Emc6hzTCrBVtFX80nnM3j |
|
||||
lIDBRGJRS2JlyrwL80DxoVCbY7JLkSRpGhc9RYLrNfPjpxhxchJ/8V1JU21rL5GKSdaR2YJDvANi |
|
||||
Bth321Q0G6djxfLPjx3zXp8VTGDdhRZjblJ7EddK4kaQ3RKTm4+UivUYMMQ+esD8NnoHTGvDXRCi |
|
||||
rqd+EtAZZ84yqW7YKKTjsh9a3tLBFwFMc2A2WM3s6fXtrFAiffsXwcyqaKTXibVTFE9t2sTUUaPF |
|
||||
IoJu |
|
||||
-----END CERTIFICATE----- |
|
||||
@ -1,23 +0,0 @@ |
|||||
-----BEGIN CERTIFICATE----- |
|
||||
MIID3DCCAsSgAwIBAgIULdWgZpJjuuVeUr8/Nb9KQAai2qYwDQYJKoZIhvcNAQEL |
|
||||
BQAwXjELMAkGA1UEBhMCQ04xEzARBgNVBAoTClRlbnBheS5jb20xHTAbBgNVBAsT |
|
||||
FFRlbnBheS5jb20gQ0EgQ2VudGVyMRswGQYDVQQDExJUZW5wYXkuY29tIFJvb3Qg |
|
||||
Q0EwHhcNMjAxMjA5MDMzMzIxWhcNMjUxMjA4MDMzMzIxWjBuMRgwFgYDVQQDDA9U |
|
||||
ZW5wYXkuY29tIHNpZ24xEzARBgNVBAoMClRlbnBheS5jb20xHTAbBgNVBAsMFFRl |
|
||||
bnBheS5jb20gQ0EgQ2VudGVyMQswCQYDVQQGDAJDTjERMA8GA1UEBwwIU2hlblpo |
|
||||
ZW4wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDocR052ysMvkp3TkUb |
|
||||
CDz5ntNm3wpPjy53ng6ZQKrMdt/HVKYzHplIO8zgYVKXgiCxlIVw8lAKAJ8uYrs/ |
|
||||
y2KOk2W1sMKb6t9ucKilaxYpCUuePj6ktMXPN/FIAgCIEXjrPuNHuPW6JA53yl6e |
|
||||
wQoNPozbmYrcFFcRUnhHS9RWfSJm2OUBsAFh2O/o2APAhcIac0gPz/a6LWok3+vQ |
|
||||
KnCqZcpGdnATwZ5H7oGmVVPHp8f5LwJYwp58ZHKxVHIHiLOeCXNNy7cnwv+vHBhy |
|
||||
95GOdv9ZJRbcESGR7ASUkIKe5kDJhg5tjK3rKSjqUbe6qG6h5mSPvRy6oe6h9Ihf |
|
||||
F8B1AgMBAAGjgYEwfzAJBgNVHRMEAjAAMAsGA1UdDwQEAwIE8DBlBgNVHR8EXjBc |
|
||||
MFqgWKBWhlRodHRwOi8vZXZjYS5pdHJ1cy5jb20uY24vcHVibGljL2l0cnVzY3Js |
|
||||
P0NBPTFCRDQyMjBFNTBEQkMwNEIwNkFEMzk3NTQ5ODQ2QzAxQzNFOEVCRDIwDQYJ |
|
||||
KoZIhvcNAQELBQADggEBAGfRi4HT8Y6N1yJGmGpABiRJOqouDmktBxDhY12e2V5g |
|
||||
mLfsr+aR4suOfaDbNigwjyQqYijOSlAJZobapNFazE9vUisVRa7FZUhzFLwxOo02 |
|
||||
mallcuDd7/rZuRtiovco+OAQVedAMwOgH6PCwK/QxUGNOpNpCQ5Y70z5ZAxb+IKR |
|
||||
87WQvukZ/u2CqUpvEnwtj1PjuZ7sCqi9TpHhJtMMEZyzII7WB2jDFaIuaqrJDeSB |
|
||||
qWASY04zfQ/FlLosaiXNxJCAT//0I6kM9iudwkuj+7bV8HESrdJcFe0yymIm3zOd |
|
||||
Es6X0klx4QsyadXEHK5RSRIBdoGubHpm5fdVnYfSGok= |
|
||||
-----END CERTIFICATE----- |
|
||||
@ -1,24 +0,0 @@ |
|||||
-----BEGIN CERTIFICATE----- |
|
||||
MIIEFDCCAvygAwIBAgIUSjIxWE6Ttq53ggB00H6t6sy34iMwDQYJKoZIhvcNAQEL |
|
||||
BQAwXjELMAkGA1UEBhMCQ04xEzARBgNVBAoTClRlbnBheS5jb20xHTAbBgNVBAsT |
|
||||
FFRlbnBheS5jb20gQ0EgQ2VudGVyMRswGQYDVQQDExJUZW5wYXkuY29tIFJvb3Qg |
|
||||
Q0EwHhcNMjMwOTE5MTUxNTQ4WhcNMjgwOTE3MTUxNTQ4WjBuMRgwFgYDVQQDDA9U |
|
||||
ZW5wYXkuY29tIHNpZ24xEzARBgNVBAoMClRlbnBheS5jb20xHTAbBgNVBAsMFFRl |
|
||||
bnBheS5jb20gQ0EgQ2VudGVyMQswCQYDVQQGDAJDTjERMA8GA1UEBwwIU2hlblpo |
|
||||
ZW4wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5AOeoNuRReVPfOodE |
|
||||
TTE/wq96OK/7MI1lkwgtRlOIqwFGbGPxPx+wiLweWOWAeGrd0h+YuktIZezLhMhB |
|
||||
8pkJBzxz4U+zoQ9n3yY4CgDUBeAO8eNHhEQTTOTFUIvIlRxyr0EVuTHNP7pIkxA6 |
|
||||
gUvajWjJFbvU393vDHA9RflWrBNw1qVjkPPUx6axizD3wS8f77bwuspEWGTza/pS |
|
||||
g96HWUwFh9OSlQNPOjPG4km2YRQwGhoRMlLeZsUB+a0PtV0HI/B0TbY5u2EmPt0R |
|
||||
uNZLmcwImtiANYmySww6gp5uo4+im0P/kHKynPrW1SkS+8M9JP5T7Xck3bnHNv4S |
|
||||
9UOPAgMBAAGjgbkwgbYwCQYDVR0TBAIwADALBgNVHQ8EBAMCA/gwgZsGA1UdHwSB |
|
||||
kzCBkDCBjaCBiqCBh4aBhGh0dHA6Ly9ldmNhLml0cnVzLmNvbS5jbi9wdWJsaWMv |
|
||||
aXRydXNjcmw/Q0E9MUJENDIyMEU1MERCQzA0QjA2QUQzOTc1NDk4NDZDMDFDM0U4 |
|
||||
RUJEMiZzZz1IQUNDNDcxQjY1NDIyRTEyQjI3QTlEMzNBODdBRDFDREY1OTI2RTE0 |
|
||||
MDM3MTANBgkqhkiG9w0BAQsFAAOCAQEAHd42YyvxvvjYEIkCURHweCSQpWQrdsnP |
|
||||
AU2rcVzOx0kDxjq7+W2HkIkYeAZfE8pyBs5c39tgK+qospiDsKa9WYeBNyIRcCvN |
|
||||
q9ObLqSV4Cy/8lQMNh4Q37cdc3X+pAlTr7MtKka8ZcXYvbMBqus0dfJZayZvW7Ak |
|
||||
nnaXXJ4k7urgHOGYsZlZ+HC+DC/sYoN3DXzvg3XPlL0SNEQH0cWrRbaQnpOKVMk5 |
|
||||
TptbeNHKJfUxVW5jh4GtBFqvLeiOruY+gFYg7UkCKWo9ZIYe7/mEvJeHYh3acTTl |
|
||||
DOl3L0fR5KR7vqFMwZEUZxVOs6K2ANSCr57OQPBV++MG4DPr3yOhCQ== |
|
||||
-----END CERTIFICATE----- |
|
||||
@ -1,91 +0,0 @@ |
|||||
-- 检查支付配置的SQL脚本 |
|
||||
|
|
||||
-- 1. 查看所有支付配置 |
|
||||
SELECT |
|
||||
id, |
|
||||
name, |
|
||||
type, |
|
||||
code, |
|
||||
app_id, |
|
||||
mch_id, |
|
||||
CASE |
|
||||
WHEN api_key IS NULL OR api_key = '' THEN '未配置' |
|
||||
ELSE CONCAT('已配置(长度:', LENGTH(api_key), ')') |
|
||||
END as api_key_status, |
|
||||
merchant_serial_number, |
|
||||
status, |
|
||||
tenant_id, |
|
||||
create_time |
|
||||
FROM sys_payment |
|
||||
ORDER BY type, tenant_id; |
|
||||
|
|
||||
-- 2. 检查微信支付配置(type=0) |
|
||||
SELECT |
|
||||
id, |
|
||||
name, |
|
||||
app_id, |
|
||||
mch_id, |
|
||||
CASE |
|
||||
WHEN api_key IS NULL OR api_key = '' THEN 'ERROR: API密钥未配置' |
|
||||
WHEN LENGTH(api_key) < 32 THEN 'WARNING: API密钥长度可能不正确' |
|
||||
ELSE 'OK' |
|
||||
END as api_key_check, |
|
||||
CASE |
|
||||
WHEN merchant_serial_number IS NULL OR merchant_serial_number = '' THEN 'ERROR: 序列号未配置' |
|
||||
WHEN LENGTH(merchant_serial_number) != 40 THEN 'WARNING: 序列号长度可能不正确' |
|
||||
ELSE 'OK' |
|
||||
END as serial_number_check, |
|
||||
CASE |
|
||||
WHEN mch_id IS NULL OR mch_id = '' THEN 'ERROR: 商户号未配置' |
|
||||
ELSE 'OK' |
|
||||
END as mch_id_check, |
|
||||
CASE |
|
||||
WHEN app_id IS NULL OR app_id = '' THEN 'ERROR: 应用ID未配置' |
|
||||
ELSE 'OK' |
|
||||
END as app_id_check, |
|
||||
status, |
|
||||
tenant_id |
|
||||
FROM sys_payment |
|
||||
WHERE type = 0 |
|
||||
ORDER BY tenant_id; |
|
||||
|
|
||||
-- 3. 插入示例微信支付配置(请根据实际情况修改) |
|
||||
-- 注意:请将下面的值替换为您的实际配置 |
|
||||
/* |
|
||||
INSERT INTO sys_payment ( |
|
||||
name, |
|
||||
type, |
|
||||
code, |
|
||||
app_id, |
|
||||
mch_id, |
|
||||
api_key, |
|
||||
merchant_serial_number, |
|
||||
status, |
|
||||
tenant_id, |
|
||||
create_time, |
|
||||
update_time |
|
||||
) VALUES ( |
|
||||
'微信支付', |
|
||||
0, |
|
||||
'0', |
|
||||
'wx1234567890abcdef', -- 请替换为您的微信小程序AppID |
|
||||
'1723321338', -- 请替换为您的商户号 |
|
||||
'your_api_v3_key_here', -- 请替换为您的APIv3密钥 |
|
||||
'2B933F7C35014A1C363642623E4A62364B34C4EB', -- 请替换为您的商户证书序列号 |
|
||||
1, |
|
||||
10550, -- 请替换为您的租户ID |
|
||||
NOW(), |
|
||||
NOW() |
|
||||
) ON DUPLICATE KEY UPDATE |
|
||||
app_id = VALUES(app_id), |
|
||||
mch_id = VALUES(mch_id), |
|
||||
api_key = VALUES(api_key), |
|
||||
merchant_serial_number = VALUES(merchant_serial_number), |
|
||||
update_time = NOW(); |
|
||||
*/ |
|
||||
|
|
||||
-- 4. 检查特定租户的支付配置 |
|
||||
-- SELECT * FROM sys_payment WHERE tenant_id = 10550 AND type = 0; |
|
||||
|
|
||||
-- 5. 删除错误的支付配置(谨慎使用) |
|
||||
-- DELETE FROM sys_payment WHERE id = ?; |
|
||||
@ -0,0 +1,101 @@ |
|||||
|
package com.gxwebsoft.test; |
||||
|
|
||||
|
import org.junit.jupiter.api.Test; |
||||
|
import org.springframework.core.io.ClassPathResource; |
||||
|
import org.springframework.core.io.Resource; |
||||
|
|
||||
|
import java.io.File; |
||||
|
import java.io.IOException; |
||||
|
import java.io.InputStream; |
||||
|
import java.nio.file.Files; |
||||
|
import java.nio.file.Path; |
||||
|
|
||||
|
/** |
||||
|
* 异步通知证书修复验证测试 |
||||
|
*/ |
||||
|
public class NotificationCertificateFixTest { |
||||
|
|
||||
|
@Test |
||||
|
public void testCertificatePathFix() { |
||||
|
System.out.println("=== 异步通知证书路径修复验证 ==="); |
||||
|
|
||||
|
// 模拟异步通知中的证书路径构建逻辑
|
||||
|
String tenantId = "10550"; |
||||
|
String devCertPath = "dev"; |
||||
|
String certDir = "wechat"; |
||||
|
String privateKeyFile = "apiclient_key.pem"; |
||||
|
|
||||
|
// 修复后的路径构建逻辑
|
||||
|
String tenantCertPath = devCertPath + "/" + certDir + "/" + tenantId; |
||||
|
String privateKeyPath = tenantCertPath + "/" + privateKeyFile; |
||||
|
|
||||
|
System.out.println("租户ID: " + tenantId); |
||||
|
System.out.println("证书目录: " + tenantCertPath); |
||||
|
System.out.println("私钥路径: " + privateKeyPath); |
||||
|
|
||||
|
// 测试从classpath加载证书
|
||||
|
try { |
||||
|
Resource resource = new ClassPathResource(privateKeyPath); |
||||
|
System.out.println("证书资源存在: " + resource.exists()); |
||||
|
|
||||
|
if (resource.exists()) { |
||||
|
// 模拟CertificateLoader.loadFromClasspath的逻辑
|
||||
|
Path tempFile = Files.createTempFile("cert_", ".pem"); |
||||
|
try (InputStream inputStream = resource.getInputStream()) { |
||||
|
Files.copy(inputStream, tempFile, java.nio.file.StandardCopyOption.REPLACE_EXISTING); |
||||
|
} |
||||
|
|
||||
|
String tempPath = tempFile.toAbsolutePath().toString(); |
||||
|
System.out.println("✅ 证书加载成功: " + tempPath); |
||||
|
|
||||
|
// 验证临时文件
|
||||
|
File tempCertFile = new File(tempPath); |
||||
|
System.out.println("临时证书文件大小: " + tempCertFile.length() + " bytes"); |
||||
|
|
||||
|
// 清理临时文件
|
||||
|
Files.deleteIfExists(tempFile); |
||||
|
|
||||
|
} else { |
||||
|
System.err.println("❌ 证书文件不存在: " + privateKeyPath); |
||||
|
} |
||||
|
|
||||
|
} catch (IOException e) { |
||||
|
System.err.println("❌ 证书加载失败: " + e.getMessage()); |
||||
|
e.printStackTrace(); |
||||
|
} |
||||
|
|
||||
|
System.out.println("=== 测试完成 ==="); |
||||
|
} |
||||
|
|
||||
|
@Test |
||||
|
public void testAllTenantCertificates() { |
||||
|
System.out.println("=== 测试所有租户证书 ==="); |
||||
|
|
||||
|
String[] tenantIds = {"10398", "10550"}; |
||||
|
String devCertPath = "dev"; |
||||
|
String certDir = "wechat"; |
||||
|
String privateKeyFile = "apiclient_key.pem"; |
||||
|
|
||||
|
for (String tenantId : tenantIds) { |
||||
|
System.out.println("\n--- 测试租户: " + tenantId + " ---"); |
||||
|
|
||||
|
String tenantCertPath = devCertPath + "/" + certDir + "/" + tenantId; |
||||
|
String privateKeyPath = tenantCertPath + "/" + privateKeyFile; |
||||
|
|
||||
|
System.out.println("证书路径: " + privateKeyPath); |
||||
|
|
||||
|
try { |
||||
|
Resource resource = new ClassPathResource(privateKeyPath); |
||||
|
if (resource.exists()) { |
||||
|
System.out.println("✅ 租户 " + tenantId + " 证书存在"); |
||||
|
} else { |
||||
|
System.out.println("❌ 租户 " + tenantId + " 证书不存在"); |
||||
|
} |
||||
|
} catch (Exception e) { |
||||
|
System.err.println("❌ 租户 " + tenantId + " 证书检查失败: " + e.getMessage()); |
||||
|
} |
||||
|
} |
||||
|
|
||||
|
System.out.println("\n=== 所有租户证书测试完成 ==="); |
||||
|
} |
||||
|
} |
||||
@ -0,0 +1,134 @@ |
|||||
|
package com.gxwebsoft.test; |
||||
|
|
||||
|
import com.gxwebsoft.common.core.config.CertificateProperties; |
||||
|
import com.gxwebsoft.common.core.utils.CertificateLoader; |
||||
|
import com.gxwebsoft.common.core.utils.RedisUtil; |
||||
|
import com.gxwebsoft.common.system.entity.Payment; |
||||
|
import org.junit.jupiter.api.Test; |
||||
|
import org.springframework.beans.factory.annotation.Autowired; |
||||
|
import org.springframework.boot.test.context.SpringBootTest; |
||||
|
import org.springframework.test.context.ActiveProfiles; |
||||
|
|
||||
|
/** |
||||
|
* 微信支付配置验证测试 |
||||
|
*/ |
||||
|
@SpringBootTest |
||||
|
@ActiveProfiles("dev") |
||||
|
public class WechatPayConfigValidationTest { |
||||
|
|
||||
|
@Autowired |
||||
|
private CertificateProperties certConfig; |
||||
|
|
||||
|
@Autowired |
||||
|
private CertificateLoader certificateLoader; |
||||
|
|
||||
|
@Autowired |
||||
|
private RedisUtil redisUtil; |
||||
|
|
||||
|
@Test |
||||
|
public void testWechatPayConfigValidation() { |
||||
|
System.out.println("=== 微信支付配置验证 ==="); |
||||
|
|
||||
|
// 1. 检查配置文件中的 APIv3 密钥
|
||||
|
String configApiV3Key = certConfig.getWechatPay().getDev().getApiV3Key(); |
||||
|
System.out.println("配置文件 APIv3 密钥: " + configApiV3Key); |
||||
|
System.out.println("配置文件 APIv3 密钥长度: " + (configApiV3Key != null ? configApiV3Key.length() : 0)); |
||||
|
|
||||
|
// 2. 检查 Redis 中的支付配置
|
||||
|
String tenantId = "10550"; |
||||
|
String redisKey = "Payment:1:" + tenantId; |
||||
|
Payment payment = redisUtil.get(redisKey, Payment.class); |
||||
|
|
||||
|
if (payment != null) { |
||||
|
System.out.println("\n=== Redis 支付配置 ==="); |
||||
|
System.out.println("商户号: " + payment.getMchId()); |
||||
|
System.out.println("应用ID: " + payment.getAppId()); |
||||
|
System.out.println("数据库 APIv3 密钥: " + payment.getApiKey()); |
||||
|
System.out.println("数据库 APIv3 密钥长度: " + (payment.getApiKey() != null ? payment.getApiKey().length() : 0)); |
||||
|
System.out.println("商户证书序列号: " + payment.getMerchantSerialNumber()); |
||||
|
|
||||
|
// 3. 比较两个 APIv3 密钥
|
||||
|
System.out.println("\n=== APIv3 密钥比较 ==="); |
||||
|
boolean keysMatch = (configApiV3Key != null && configApiV3Key.equals(payment.getApiKey())); |
||||
|
System.out.println("配置文件与数据库密钥是否一致: " + keysMatch); |
||||
|
|
||||
|
if (!keysMatch) { |
||||
|
System.out.println("⚠️ 警告: 配置文件与数据库中的 APIv3 密钥不一致!"); |
||||
|
System.out.println("配置文件密钥: " + configApiV3Key); |
||||
|
System.out.println("数据库密钥: " + payment.getApiKey()); |
||||
|
} |
||||
|
|
||||
|
} else { |
||||
|
System.out.println("❌ 未找到 Redis 中的支付配置: " + redisKey); |
||||
|
|
||||
|
// 尝试其他可能的键格式
|
||||
|
String[] possibleKeys = { |
||||
|
"Payment:1:10550", |
||||
|
"Payment:0:10550", |
||||
|
"Payment:10", |
||||
|
"Payment:1" + "0" // Payment:10
|
||||
|
}; |
||||
|
|
||||
|
System.out.println("\n=== 尝试其他 Redis 键格式 ==="); |
||||
|
for (String key : possibleKeys) { |
||||
|
Payment p = redisUtil.get(key, Payment.class); |
||||
|
if (p != null) { |
||||
|
System.out.println("✅ 找到支付配置: " + key); |
||||
|
System.out.println(" 商户号: " + p.getMchId()); |
||||
|
System.out.println(" APIv3密钥: " + p.getApiKey()); |
||||
|
break; |
||||
|
} |
||||
|
} |
||||
|
} |
||||
|
|
||||
|
// 4. 验证证书文件
|
||||
|
System.out.println("\n=== 证书文件验证 ==="); |
||||
|
String tenantCertPath = "dev/wechat/" + tenantId; |
||||
|
String privateKeyPath = tenantCertPath + "/" + certConfig.getWechatPay().getDev().getPrivateKeyFile(); |
||||
|
|
||||
|
boolean certExists = certificateLoader.certificateExists(privateKeyPath); |
||||
|
System.out.println("证书文件存在: " + certExists); |
||||
|
System.out.println("证书路径: " + privateKeyPath); |
||||
|
|
||||
|
if (certExists) { |
||||
|
try { |
||||
|
String privateKey = certificateLoader.loadCertificatePath(privateKeyPath); |
||||
|
System.out.println("✅ 证书加载成功: " + privateKey); |
||||
|
} catch (Exception e) { |
||||
|
System.out.println("❌ 证书加载失败: " + e.getMessage()); |
||||
|
} |
||||
|
} |
||||
|
|
||||
|
System.out.println("\n=== 验证完成 ==="); |
||||
|
} |
||||
|
|
||||
|
@Test |
||||
|
public void testApiV3KeyValidation() { |
||||
|
System.out.println("=== APIv3 密钥格式验证 ==="); |
||||
|
|
||||
|
String configKey = certConfig.getWechatPay().getDev().getApiV3Key(); |
||||
|
|
||||
|
if (configKey != null) { |
||||
|
System.out.println("APIv3 密钥: " + configKey); |
||||
|
System.out.println("密钥长度: " + configKey.length()); |
||||
|
|
||||
|
// APIv3 密钥应该是32位字符串
|
||||
|
if (configKey.length() == 32) { |
||||
|
System.out.println("✅ APIv3 密钥长度正确 (32位)"); |
||||
|
} else { |
||||
|
System.out.println("❌ APIv3 密钥长度错误,应为32位,实际为: " + configKey.length()); |
||||
|
} |
||||
|
|
||||
|
// 检查是否包含特殊字符
|
||||
|
boolean hasSpecialChars = !configKey.matches("^[a-zA-Z0-9]+$"); |
||||
|
if (hasSpecialChars) { |
||||
|
System.out.println("⚠️ APIv3 密钥包含特殊字符,可能导致解密失败"); |
||||
|
} else { |
||||
|
System.out.println("✅ APIv3 密钥格式正确 (仅包含字母和数字)"); |
||||
|
} |
||||
|
|
||||
|
} else { |
||||
|
System.out.println("❌ APIv3 密钥未配置"); |
||||
|
} |
||||
|
} |
||||
|
} |
||||
Loading…
Reference in new issue