Skip to content

Commit

Permalink
add: 添加aes加密中间件,在使用fractal的collection()、item()情况的单元测试
Browse files Browse the repository at this point in the history
  • Loading branch information
@XBPk3T
XBPk3T committed Feb 28, 2021
1 parent 1a522f2 commit 2ce9bef
Show file tree
Hide file tree
Showing 4 changed files with 55 additions and 52 deletions.
16 changes: 16 additions & 0 deletions Modules/Api/Transformers/User/UserTransformer.php
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,16 @@
<?php

namespace Modules\Api\Transformers\User;

use League\Fractal\TransformerAbstract;

class UserTransformer extends TransformerAbstract
{
public function transform($user)
{
return [
'username' => $user->username,
'mobile' => $user->mobile,
];
}
}
1 change: 1 addition & 0 deletions Modules/Common/Utils/ApiEncrypt/AES/AesDecryptMiddleware.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -35,6 +35,7 @@ public function handle($request, Closure $next)

try {
$content = $this->decrypt($request->getContent());
// 判断是否是json
} catch (DecryptException $exception) {
abort(403);
}
Expand Down
74 changes: 34 additions & 40 deletions Modules/Common/Utils/ApiEncrypt/AES/Tests/AesTest.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,70 +2,64 @@

namespace Modules\Common\Utils\ApiEncrypt\AES\Tests;

use Tests\TestCase;
use Route;
use Illuminate\Http\Request;
use Modules\Api\Entities\User;
use Modules\Common\Traits\RestfulResponse;
use Modules\Common\Tests\Feature\BaseTestCase;
use Modules\Api\Transformers\User\UserTransformer;

/**
* @coversNothing
*/
class AesTest extends TestCase
class AesTest extends BaseTestCase
{
use RestfulResponse;

protected $encryptUrl = '/user/encrypt';
protected $decryptUrl = '/user/decrypt';

protected function setUp(): void
{
parent::setUp();

config()->set('app.key', 'base64:UPop+S4yrbflbANL517/z1TUHvisT3pXB1+K6W9V4No=');

// todo unittest里中间件执行顺序不对
\Route::middleware([
'aes.decrypt',
Route::middleware([
'aes.encrypt',
])->any('/api/sign', function (Request $request) {
dump($request->all());
])->post($this->encryptUrl, function (Request $request) {
$users = User::query()->where('mobile', '18616287252')->first();

return $this->response->item($users, new UserTransFormer());
});

return $this->okList(['username' => 'jf']);
Route::middleware([
'aes.decrypt',
])->post($this->decryptUrl, function (Request $request) {
return $request->all();
});
}

public function testAes()
public function testAesCollectionDecrypt()
{
$httpVerbs = ['get', 'post', 'put', 'delete', 'patch'];
$en = $this->getEncryptCtx();

$cipher = $this->mockClient();
$response = $this->call('post', $this->decryptUrl, [], [], [],
array_merge($this->header, ['CONTENT_TYPE' => 'application/json']),
$en);

foreach ($httpVerbs as $verb) {
$response = $this->withMiddleware([
'aes.decrypt',
'aes.encrypt',
])->call($verb, '/api/sign', [], [], [], [
'Accept' => 'application/prs.starter.v1.0+json',
], $cipher);

$response->assertStatus(200);
}
$response->assertStatus(200);
$this->assertEquals([
'id' => 4,
'username' => 'd729c0e7-e726-46c1-86f5-ccfd96c9acbf',
'mobile' => '18616287252',
'created_at' => '2021-02-22T16:08:49.000000Z',
'updated_at' => '2021-02-22T16:08:49.000000Z',
], $response->getOriginalContent());
}

// 接收服务端返回的密串,解密,处理后将返回加密,再发送到服务端
protected function mockClient()
private function getEncryptCtx()
{
$res = jsonEncode([
'userInfo' => [
'avatar' => 'https://kernel.taobao.org//2020/11/talking_of_atomic_operations/',
'username' => 'jeffcott',
'balance' => 8888.88,
],
'activity' => [
'AEP的驱动使用一个称为index block的结构来管理元数据',
'写日志算是实现事务最通用的方式了,日志一般分为redo和undo两种日志,为了加快恢复速度,一般还会引入检查点(checkpoint)的概念。在文件系统和数据库的实现中,基本上都能看到事务的身影。',
],
'isPermanent' => true,
]);

$en = encrypt($res);
$response = $this->withHeaders($this->header)->json('post', $this->encryptUrl);

return $en;
return $response->getContent();
}
}
16 changes: 4 additions & 12 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -57,17 +57,9 @@
RSA接口加密

1. docker-compose部署
3.
1. 第三方登录(微信登录、qq登录)
2. 第三方支付(微信支付、支付宝)
2. 第三方登录(微信登录、qq登录)
3. 第三方支付(微信支付、支付宝)
4. 添加类似ThinkPHP5的验证场景
5. 链路追踪: 使用zipkin作为laravel的链路追踪方案

## v1.2

用pm2管理laravel队列
发送短信表需要一个driver字段
手动部署也可以直接使用命令初始化项目,优化使用体验

支持类似ThinkPHP5的验证场景
所有中间件的unittest
链路追踪: 使用zipkin作为laravel的链路追踪方案
test一下aes加密,在使用fractal的collection()、item()的情况下是否work

0 comments on commit 2ce9bef

Please sign in to comment.