make
/
recharge


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258
							//ShengtianPlay
let mysql = require('mysql');
let mysqlcn = require('../../terry/mysqlcn.js');
let query = mysqlcn.query;
let qs = require('querystring');
let checkorder = require('../../terry/checkorder.js');
let config = require('../config.js');
let express = require('express');
let router = express.Router();
let crypto = require('crypto');
const IS_TEST = 1 //1是测试2是正式

// Date.prototype.Format = function (fmt) { //author: meizz
// 	let o = {
// 			"M+": this.getMonth() + 1, //月份
// 			"d+": this.getDate(), //日
// 			"h+": this.getHours(), //小时
// 			"m+": this.getMinutes(), //分
// 			"s+": this.getSeconds(), //秒
// 			"q+": Math.floor((this.getMonth() + 3) / 3), //季度
// 			"S": this.getMilliseconds() //毫秒
// 	};
// 	if (/(y+)/.test(fmt)) fmt = fmt.replace(RegExp.$1, (this.getFullYear() + "").substr(4 - RegExp.$1.length));
// 	for (let k in o)
// 	if (new RegExp("(" + k + ")").test(fmt)) fmt = fmt.replace(RegExp.$1, (RegExp.$1.length == 1) ? (o[k]) : (("00" + o[k]).substr(("" + o[k]).length)));
// 	return fmt;
// }

// let sql_insert = function(orderid, serverid,uid,rmb,moneytype,cfid,platform,channel,overtime,flag,product_id,user_id,purchase_date_ms,talkingdata,payment_type,istest){
//     let sql = "INSERT INTO payinfo SET orderid=?, serverid=?, channel=?, submittime=?, flag=?, user_id=?, channel_order_id=?, money=?, cfid=?, platform=?,overtime=?,product_id=?,uid=?,moneytype=?,talkingdata=?,payment_type=?,istest=?";
//     let values = [orderid, serverid, channel,purchase_date_ms,flag,user_id,orderid,rmb,cfid,platform,overtime,product_id,uid,moneytype,talkingdata,payment_type,istest];
//     sql = mysql.format(sql, values);
//     return sql;
// }

// function insert_str(str, insert_str, sn) {
//     let newstr = "";
//     for (let i = 0; i < str.length; i += sn) {
//         let tmp = str.substring(i, i + sn);
//         newstr += tmp + insert_str;
//     }
//     return newstr;
// }

// let RsaSha1Check = function(str,sig,publicKey){
//     let public_key = insert_str(publicKey, '\n', 64);
//     public_key = '-----BEGIN PUBLIC KEY-----\n' + public_key + '-----END PUBLIC KEY-----';

//     let verifier = crypto.createVerify('RSA-SHA1');
//     console.log('验证签名public key:\n' + public_key);
//     console.log('验证签名src_sign:' + str);
//     verifier.update(new Buffer(str, 'utf-8'));
//     return verifier.verify(public_key, sig, 'base64');
// };

let sdk_conf = {
    'key':"fkybt_519d7c1a09",
    'secret':"226f965616a3daac306f9cfb2aa72f58"
}

//md5加密
let md5 = function (str){
	var md5sum = crypto.createHash('md5');
	md5sum.update(str);
	str = md5sum.digest('hex');
	return str;
};

let queryString = function(str){
    const pairs = str.split("&");
    let ret = {}
    pairs.forEach(pair => {
        const [key, value] = pair.split("=");
        ret[key]=value
    });
    return ret
}

let ret_str = function(code, msg){
    let status = "success"
    if(code != 200){
        status = "failure"
    }
    let ret ={
        'code': code,
        'status':status,
        'msg':"",
    }
    if (msg != null) {
        ret.msg = msg
    }
    let returndata = JSON.stringify(ret);
    return returndata
}

let pay_success = function(args, res){
    let istest = IS_TEST
    if (args==null){
        console.log("[ShengtianPlay] 无效的充值请求!");
        try{res.send(ret_str(1, "无效的充值请求"));}
        catch(e){}
        return;
    }

    let obj = null
    try {
        obj = queryString(args);
    } catch(e){
        console.log("[ShengtianPlay] 解析失败!");
        try{res.send(ret_str(1, "无效的充值请求"));}
        catch(e){}
        return
    }
    console.log(obj)
    let content = {
        app_key:obj.app_key,
        game_order_id:obj.game_order_id,
        money:obj.money,
        timestamp:obj.timestamp,
    }

    let mysign = md5(config.url_sort2(content)+sdk_conf.secret).toLowerCase()
    if(mysign!=obj.sign){
        console.log("[ShengtianPlay] 验证失败! mysign=%s, obj.sign=%s", mysign, obj.sign);
        try{res.send(ret_str(2, "验证失败"));}
        catch(e){}
        return;
    }

    let money = obj.money;              //  支付金额
    let orderid = obj.game_order_id;    //  订单id
    let channel_order_id = obj.order_id //  渠道订单id

    let platform = "Android";
    let payment_type = "ShengtianPlay"
    let ti = new Date().Format("yyyy-MM-dd hh:mm:ss");

    console.log("[ShengtianPlay] 订单 %s:\n\t, ti=%s, 请求[%s], channel_order_id=%s, platform=%s",
        orderid, ti, args, channel_order_id, platform);


    let sql = mysql.format("SELECT * FROM payinfo where orderid=?", [orderid]);//在mysql库中检查订单号
    query(sql,function(qerr,vals,fields){
        if (qerr==null){
            if (vals[0]==null){
                console.log("[ShengtianPlay] 没有找到该订单: %s", orderid);
                try{res.send(ret_str(4, "未知订单"));}
                catch(e){}
                return;
            }
            if (vals[0].overtime>0){
                console.log("[ShengtianPlay] 已经处理的订单: %s", orderid);
                try{res.send(ret_str(200, "已经处理"));}
                catch(e){}
                return;
            }

            //检查订单
            let channel = vals[0].channel
            let cfid = vals[0].cfid
            let extension
            try {
                extension = JSON.parse(decodeURIComponent(obj.extension))
            } catch(e) {
                console.log("[ShengtianPlay] 额外参数解析失败!");
                res.send(ret_str(1, "无效的充值请求"));
                return
            }
            let conf = config.parse(platform, channel+extension.currency, cfid);
            let amountnum = conf.price
            let moneytype = conf.typename;
            let uid = vals[0].uid
            let serverid = vals[0].serverid
            if (conf.cfid == 0){
                console.log("[ShengtianPlay] channel:%s获取cfid失败为platform:%s,cfid:%s",channel, platform, cfid);
                try{res.send(ret_str(3, "异常的计费点"));}
                catch(e){}
                return
            }

            if (amountnum != money) {
                console.log("[ShengtianPlay] 充值金额不匹配:amountnum = %s, money = %s!!", amountnum, money);
                try{res.send(ret_str(2, "验证失败"));}
                catch(e){}
                return
            }

            console.log("[ShengtianPlay] 订单 %s 处理:\n\t, 商品配置:%s, 金额:%s, 类型:%s, 用户:%s, 服务器:%s",
                orderid, cfid, amountnum, moneytype, uid, serverid);
            
            let timestamp = Date.parse(new Date()) / 1000;
            //填充充值信息
            let sql_1 = "UPDATE payinfo SET \
                channel_order_id=?,\
                overtime=?,\
                flag=?,\
                money=?,\
                platform=?,\
                moneytype=?,\
                payment_type=?, \
                istest=?\
                WHERE orderid=? \
                AND flag=2";//增加flag判断防止重复写入
            let values_2 = [channel_order_id,timestamp,1,amountnum,platform,moneytype,payment_type,istest,orderid];
            let sql_2 = mysql.format(sql_1, values_2);
            query(sql_2,function(qerr,rows,fields_)
            {
                if (qerr){
                    console.log("[ShengtianPlay]逻辑错误，请检查数据表结构和sql语句:\n\t%s", qerr);
                    try{res.send(ret_str(4));}
                    catch(e){}
                    return;
                }
                if (rows.affectedRows > 0){//判断修改了多少个记录
                    console.log("[ShengtianPlay]支付成功了，现在通知游戏服务器, orderId:%s, uid:%s, serverid:%s ,cfid:%s",orderid,vals[0].uid,vals[0].serverid,cfid);
                    checkorder.pushproduct(query,vals[0].serverid, orderid, function(ok){
                        if (ok) {
                            console.log("[ShengtianPlay] 订单 %s: 成功发货!", orderid);
                        } else{
                            console.log("[ShengtianPlay] 订单 %s: 发货地址无效!", orderid);//在无效时返回成功，我们自己补单中会派发flag为1支付成功但是没成功发货的单
                        }
                        try{res.send(ret_str(200));}
                        catch(e){}
                    });
                    res.send(ret_str(200));
                    return;
                }else{
                    console.log("SQL重复写入[ShengtianPlay]已经处理的订单");
                        try{res.send(ret_str(200));}
                    catch(e){}
                    return;
                }
            })
        }else{
            console.log("[ShengtianPlay] 查询订单列表错误，请检查数据表结构和sql语句:\n\t%s", qerr);
            try{res.send(ret_str(4));}
            catch(e){}
            return;
        }
    })
}

router.post('/shengtianplay', function(req, res) {
	console.log("圣天,post ,host:%s, ip:%s,date:%s",req.hostname,req.ip,new Date());
   let data = "";
   req.on("data",function(chunk){
	 data += chunk;
   })
   req.on("end",function(){
        pay_success(data,res);
   })
   req.on("error",function(err){
	   res.send(ret_str(7));
   })
});

module.exports = router;