• 微信支付回调 敏感信息解密 v3 php




    $xml = ['id' => 'xxx',
                'create_time' => '2020-08-19T12:16:56+08:00',
                'resource_type' => 'xxx',
                'event_type' => 'TRANSACTION.SUCCESS',
                'summary' => '支付成功',
                'resource' => [
                    'original_type' => 'xxxx',
                    'algorithm' => 'AEAD_AES_256_GCM',
                    'ciphertext' => 'xxx',
                    'associated_data' => 'xxxx',
                    'nonce' => 'xxx',]

    2.你想要的信息在 resource 里面,但是是经过加密的,接下来需要解密一波

    先创建一个 AesUtil.php,复制以下代码粘进去

    class AesUtil
         * AES key
         * @var string
        private $aesKey;
        const KEY_LENGTH_BYTE = 32;
        const AUTH_TAG_LENGTH_BYTE = 16;
         * Constructor
        public function __construct($aesKey)
            if (strlen($aesKey) != self::KEY_LENGTH_BYTE) {
                throw new InvalidArgumentException('无效的ApiV3Key,长度应为32个字节');
            $this->aesKey = $aesKey;
         * Decrypt AEAD_AES_256_GCM ciphertext
         * @param string    $associatedData     AES GCM additional authentication data
         * @param string    $nonceStr           AES GCM nonce
         * @param string    $ciphertext         AES GCM cipher text
         * @return string|bool      Decrypted string on success or FALSE on failure
        public function decryptToString($associatedData, $nonceStr, $ciphertext)
            $ciphertext = base64_decode($ciphertext);
            if (strlen($ciphertext) <= self::AUTH_TAG_LENGTH_BYTE) {
                return false;
            // ext-sodium (default installed on >= PHP 7.2)
            if (function_exists('sodium_crypto_aead_aes256gcm_is_available') &&
                sodium_crypto_aead_aes256gcm_is_available()) {
                return sodium_crypto_aead_aes256gcm_decrypt($ciphertext, $associatedData, $nonceStr, $this->aesKey);
            // ext-libsodium (need install libsodium-php 1.x via pecl)
            if (function_exists('Sodiumcrypto_aead_aes256gcm_is_available') &&
                Sodiumcrypto_aead_aes256gcm_is_available()) {
                return Sodiumcrypto_aead_aes256gcm_decrypt($ciphertext, $associatedData, $nonceStr, $this->aesKey);
            // openssl (PHP >= 7.1 support AEAD)
            if (PHP_VERSION_ID >= 70100 && in_array('aes-256-gcm', openssl_get_cipher_methods())) {
                $ctext = substr($ciphertext, 0, -self::AUTH_TAG_LENGTH_BYTE);
                $authTag = substr($ciphertext, -self::AUTH_TAG_LENGTH_BYTE);
                return openssl_decrypt($ctext, 'aes-256-gcm', $this->aesKey, OPENSSL_RAW_DATA, $nonceStr,
                    $authTag, $associatedData);
            throw new RuntimeException('AEAD_AES_256_GCM需要PHP 7.1以上或者安装libsodium-php');


    var_dump((new AesUtil('你的APIv3秘钥'))->decryptToString($xml['resource']['associated_data'],$xml['resource']['nonce'],$xml['resource']['ciphertext']));



  • 相关阅读:
    load xml with xls
    t-sql read xlsx
    test js online link
    export to pdf
    silverlight browse information
    ckeditor link
    Linq to Xml
    webpack -p压缩打包react报语法错误处理
  • 原文地址:https://www.cnblogs.com/junyi-bk/p/13530765.html
Copyright © 2020-2023  润新知