python-fastapi-mm-zhcs-yj-api/common/YzyApi.py

#!/usr/bin/python3
# -*- coding: utf-8 -*-
import random
import string
import hashlib
import time
import json
from utils.redis_util import *
import requests
from urllib.parse import quote
import base64
from utils import *
from exceptions import YzyException
from extensions import logger
from config import settings
from sqlalchemy.orm import Session

# 应用名称：茂名市智慧应急平台
# https://open.weixin.qq.com/connect/Oauth2/authorize?appid=wld341060039&redirect_uri=https://www.baidu.com/#/&response_type=code&scope=snsapi_base&agentid=1004302&state=xxxxxx#wechat_redirect

YZY_ACCESS_TOKEN_REDIS_KEY = "YZY_ACCESS_TOKEN_REDIS_KEY"

'''
YZY_API_ROOT = "http://19.15.0.128:8080"
YZY_AGENTID = 1004302
YZY_CORPID = "wld341060039"
YZY_CORPSECRET = "5_8aOBBjioNbP7KDwjyBKmwnJ05-y1WbaJlt4irM1eA"
YZY_PASSID = "yzy_demo"
YZY_PASSTOKEN = "WjKat55cv6PrJtpCHld0trrHsv1mbCqL"
'''

def __get_access_token():
    url = "{}/ebus/yzyapi/cgi-bin/gettoken?corpid={}&corpsecret={}".format(settings.YZY_API_ROOT, settings.YZY_CORPID, settings.YZY_CORPSECRET)
    print('yzy url:', url)

    timestamp = str(int(time.time()))
    nonce = ranstr(20)
    signature = calcResponseSign(timestamp, settings.YZY_PASSTOKEN, nonce)

    headers = {
        'Content-Type': 'application/json;charset=UTF-8',
        "x-tif-signature": signature,
        "x-tif-timestamp": timestamp,
        "x-tif-nonce": nonce,
        "x-tif-paasid": settings.YZY_PASSID
    }
    response = requests.get(url, headers=headers, timeout=15)
    print('yzy return:', response.text)
    if response.status_code == 200 :
        result = response.json()
        errcode = int(result['errcode'])
        if errcode == 0:
            return (result['access_token'], result['expires_in'])
        else:
            raise YzyException(errcode=errcode, errmsg=result['errmsg'])

def get_cache_access_token():
    access_token = redis_get(YZY_ACCESS_TOKEN_REDIS_KEY)
    if access_token is None:
        access_token, expires_in = __get_access_token()
        redis_set_with_time(YZY_ACCESS_TOKEN_REDIS_KEY, access_token, expires_in - 600)
    
    return access_token

def get_user_info(code: str):
    access_token = get_cache_access_token()
    url = "{}/ebus/yzyapi/cgi-bin/user/getuserinfo?access_token={}&code={}".format(settings.YZY_API_ROOT, access_token, code)
    return __post_url__(url, {})

def generate_deskey(secret):
    # 使用SHA256哈希然后取前8字节
    return hashlib.sha256(secret.encode()).digest()[:8]

def generate_signature(appid, secret, curtime):
    # 拼接字符串
    sign_str = appid + secret + str(curtime)
    # 计算SHA256哈希值
    sha256_hash = hashlib.sha256(sign_str.encode('utf-8')).hexdigest()
    # 转换为大写
    signature = sha256_hash.upper()
    return signature

# 2.开通用户工作台可见及第三方应用获取用户基本信息接口说明V1.3.pdf
def getuserbycode(code: str):
    url = f"{settings.YZY_API_ROOT}/ebus/applicationsyn/getuserbycode"
    
    curtime = get_datetime_str(datetime.now())
    signature = generate_signature(settings.YZY_AGENTID, settings.YZY_CORPSECRET, curtime)
    data = {
        "appid": settings.YZY_AGENTID,
        "curtime": curtime,
        "code": code,
        "signature": signature
    }
    return __post_url__(url, data)

# 管理中心已授权用户信息批量更新接口
def getauthorizedusersbyupdatetime(starttime: str, endtime: str, pageno: int = 1, pagesize: int = 500):
    url = f"{settings.YZY_API_ROOT}/ebus/applicationsyn/getauthorizedusersbyupdatetime"
    
    curtime = get_datetime_str(datetime.now())
    signature = generate_signature(settings.YZY_AGENTID, settings.YZY_CORPSECRET, curtime)
    data = {
        "appid": settings.YZY_AGENTID,
        "curtime": curtime,
        "starttime": starttime,
        "endtime": endtime,
        "pageno": pageno,
        "pagesize": pagesize,
        "signature": signature
    }
    return __post_url__(url, data)

# 4.3.3 查询应用开通的组织机构范围更新信息
def getappunitsbyupdatetime(starttime: str, endtime: str, pageno: int = 1, pagesize: int = 500):
    url = f"{settings.YZY_API_ROOT}/ebus/applicationsyn/getappunitsbyupdatetime"
    
    curtime = get_datetime_str(datetime.now())
    signature = generate_signature(settings.YZY_AGENTID, settings.YZY_CORPSECRET, curtime)
    data = {
        "appid": settings.YZY_AGENTID,
        "curtime": curtime,
        "starttime": starttime,
        "endtime": endtime,
        "pageno": pageno,
        "pagesize": pagesize,
        "signature": signature
    }
    return __post_url__(url, data)

# 4.3.4 查询应用开通的组织机构的下级机构更新信息
def getunitsbyuintidandupdatetime(unitid: str, starttime: str, endtime: str, pageno: int = 1, pagesize: int = 500):
    url = f"{settings.YZY_API_ROOT}/ebus/applicationsyn/getunitsbyuintidandupdatetime"
    
    curtime = get_datetime_str(datetime.now())
    signature = generate_signature(settings.YZY_AGENTID, settings.YZY_CORPSECRET, curtime)
    data = {
        "appid": settings.YZY_AGENTID,
        "curtime": curtime,
        "starttime": starttime,
        "endtime": endtime,
        "pageno": pageno,
        "pagesize": pagesize,
        "unitid": unitid,
        "signature": signature
    }
    return __post_url__(url, data)

# 4.3.5 查询业务应用开通的用户更新信息
def getappusersbyupdatetime(starttime: str, endtime: str, pageno: int = 1, pagesize: int = 500):
    url = f"{settings.YZY_API_ROOT}/ebus/applicationsyn/getappusersbyupdatetime"
    
    curtime = get_datetime_str(datetime.now())
    signature = generate_signature(settings.YZY_AGENTID, settings.YZY_CORPSECRET, curtime)
    data = {
        "appid": settings.YZY_AGENTID,
        "curtime": curtime,
        "starttime": starttime,
        "endtime": endtime,
        "pageno": pageno,
        "pagesize": pagesize,
        "signature": signature
    }
    return __post_url__(url, data)

def send_text_message(users, content: str):
    access_token = get_cache_access_token()
    url = "{}/ebus/yzyapi/cgi-bin/message/send?access_token={}".format(settings.YZY_API_ROOT, access_token)
    
    data = {
        "touser": "|".join(users),
        "msgtype" : "text",
        "agentid" : settings.YZY_AGENTID,
        "text": {
            "content": content
        }
    }

    return __post_url__(url, data)

def send_textcard_message(users, title: str, description: str, detail_url):
    access_token = get_cache_access_token()
    url = "{}/ebus/yzyapi/cgi-bin/message/send?access_token={}".format(settings.YZY_API_ROOT, access_token)
    
    touser = ""
    if isinstance(users, list) == True:
        touser = "|".join(users)
    else:
        touser = str(users)
    data = {
        "touser": touser,
        "msgtype" : "textcard",
        "agentid" : settings.YZY_AGENTID,
        "textcard": {
            "title": title,
            "description": description,
            "url": detail_url
        }
    }
    return __post_url__(url, data)

def __post_url__(url, data):
    print('yzy url:', url)
    print('yzy data:', data)
    json_str = json.dumps(data, ensure_ascii=False)
    data = json_str.encode('utf-8')
    
    timestamp = str(int(time.time()))
    nonce = ranstr(20)
    signature = calcResponseSign(timestamp, settings.YZY_PASSTOKEN, nonce)

    headers = {
        'Content-Type': 'application/json;charset=UTF-8',
        "x-tif-signature": signature,
        "x-tif-timestamp": timestamp,
        "x-tif-nonce": nonce,
        "x-tif-paasid": settings.YZY_PASSID
    }
    response = requests.post(url, data=data,headers=headers, timeout=5)
    print('yzy return:', response.text)
    
    if response.status_code == 200 :
        result = response.json()
        return result
        '''
        errcode = int(result['errcode'])
        if errcode == 0:
            return True
        else:
            raise YzyException(errcode=errcode, errmsg=result['errmsg'])
        '''
        

def ranstr(num):
    salt = ''.join(random.sample(
        string.ascii_letters + string.digits, num))
    return salt

#
#
# 生成校验码
#
#
def authentication(timestamp, token, nonce, uid, uinfo, ext, signature):
    sign_data_sha256 = calcRequestSign(
        timestamp, token, nonce, uid, uinfo, ext)
    return sign_data_sha256 == signature.upper()

#
#
# 计算校验码
#
#
def calcResponseSign(timestamp, token, nonce):
    sign_data = "{}{}{}{}".format(timestamp, token, nonce, timestamp)
    return hashlib.sha256(
        sign_data.encode("utf8")
        ).hexdigest().upper()

#
#
# 计算校验码
#
#
def calcRequestSign(timestamp, token, nonce, uid, uinfo, ext):
    sign_data = "{}{}{},{},".format(
        timestamp, token, nonce, uid)

    if len(uinfo) == 0:
        sign_data = sign_data + ","
    else:
        sign_data = sign_data + uinfo + ","

    if len(ext) == 0:
        sign_data = sign_data
    else:
        sign_data = sign_data + ext

    sign_data = sign_data + timestamp

    return hashlib.sha256(
        sign_data.encode("utf8")
        ).hexdigest().upper()


def format_redirect_url(url: str) -> str:
    return f"{settings.YZY_WEB_ROOT}/yjxp/#/?redirect_url={url}"

def add_to_msg_queue(db: Session, data: dict) -> None:
    new_msg = YzyMsgQueue(**data, sent_status = 0, create_time = datetime.now())
    db.add(new_msg)
    db.commit()

# 辅助类
# 调用JAVA编写的密评接口

def desDecryptValue(appSecret: str, value: str) -> any:
    data = {}
    data['appSecret'] = appSecret
    data['value'] = value
    headers = {'Content-Type': 'application/json;charset=UTF-8'}

    response = requests.post(url="http://127.0.0.1:8052/yzy" + "/DecryptValue", headers=headers, json=data, timeout=60)
    if response.status_code == 200:
        result = response.json()
        print(result)
        if result['errcode'] == 0:
            return result['data']
    return None

def desEncryptValue(appSecret: str, value: str) -> any:
    data = {}
    data['appSecret'] = appSecret
    data['value'] = value
    headers = {'Content-Type': 'application/json;charset=UTF-8'}

    response = requests.post(url="http://127.0.0.1:8052/yzy" + "/EncryptValue", headers=headers, json=data, timeout=60)
    if response.status_code == 200:
        result = response.json()
        print(result)
        if result['errcode'] == 0:
            return result['data']
    return None