| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 |
- #!/usr/bin/env python3
- # -*- coding: utf-8 -*-
- from . import mpfun
- from models import *
- from utils import *
- from sqlalchemy.orm import Session
- # 操作日志表
- # 加密和HMAC签名
- def sign_row(db: Session, row: CzrzEntity) -> None:
- if row.sign != '':
- return
-
- user_id = str(row.user_id) # 用户ID
- user_name = mpfun.enc_data(row.user_name) # 用户账号
- nick_name = mpfun.base64_data(row.nick_name) # 用户昵称
- czrz = mpfun.base64_data(row.czrz) # 操作日志
- gxsj = get_datetime_str(row.gxsj) # 更新时间
- ip = str(row.ip) # IP地址
- action = mpfun.base64_data(row.action) # 动作
- sign_data = ",".join([user_id, user_name, nick_name, czrz, gxsj, ip, action])
- sign_hmac = mpfun.sign_data(sign_data)
- # print('sign_tbl_czrz sign_data:', sign_data)
- # print('sign_tbl_czrz sign_hmac:', sign_hmac)
- row.user_name = user_name
- row.sign = sign_hmac
-
- db.commit()
-
- # 比较字段合并字符串是否和MAC值匹配上,调用密码服务器[验证HMAC]接口
- def sign_valid_row(row: CzrzEntity) -> bool:
- if row.sign == '':
- return True
- # 关键字段合并字符串
- sign_data = get_sign_str(row)
- # print('sys_user sign_data:', sign_data)
-
- # 原HMACSM3数值
- sign_hmac = row.sign
- # print('sign_hmac:', sign_hmac)
- return mpfun.hmac_verify(sign_data, sign_hmac)
- # 生成待签名的字符串
- def get_sign_str(row: CzrzEntity) -> str:
- user_id = str(row.user_id) # 用户ID
- user_name = row.user_name # 用户账号
- nick_name = mpfun.base64_data(row.nick_name) # 用户昵称
- czrz = mpfun.base64_data(row.czrz) # 操作日志
- gxsj = get_datetime_str(row.gxsj) # 更新时间
- ip = str(row.ip) # IP地址
- action = mpfun.base64_data(row.action) # 动作
- # 关键字段合并字符串
- sign_data = ",".join([user_id, user_name, nick_name, czrz, gxsj, ip, action])
- return sign_data
- # 生成HAMC签名值
- def get_sign_hmac(row: CzrzEntity) -> str:
- sign_data = get_sign_str(row)
- return mpfun.sign_data(sign_data)
|
