src/IntegrationBundle/Service/Diia/DiiaService.php line 198

Open in your IDE?
  1. <?php
  3. namespace IntegrationBundle\Service\Diia;
  5. use CoreBundle\Entity\Dealer;
  6. use CoreBundle\Model\Eusphpe\Eusphpe;
  7. use GuzzleHttp\Client as HttpClient;
  8. use IntegrationBundle\Exception\HandlerNotFoundException;
  9. use IntegrationBundle\Exception\ResponseErrorException;
  10. use Psr\Log\LoggerInterface;
  11. use Symfony\Component\Yaml\Yaml;
  13. class DiiaService
  14. {
  15.     const CACHE_KEY 'diia_token';
  16.     const CACHE_LIFETIME_IN_SECONDS 7100;
  17.     const DIIA_CERT 'Diia_2022.cer';
  19. /*    Токен авторизації "Віді страхування" PV-4222*/
  20.     const DEF_AUTH_ACQUIRER_TOKEN 'YWNxdWlyZXJfNDc5OnZpZGlfdGVzdF90b2tlbl85aWt3NDU=';
  22.     use MakesHttpRequests;
  24.     /**
  25.      * The acquirer token, which you can get from the employee of 'Diia' service.
  26.      *
  27.      * @var string
  28.      */
  29.     protected $acquirerToken;
  31.     /**
  32.      * The session token, which you can get by authorizing with acquirer token.
  33.      *
  34.      * @var string|null
  35.      */
  36.     protected $sessionToken;
  37.     /**
  38.      * @var SessionHandlerProvider
  39.      */
  40.     private $handlerProvider;
  41.     /**
  42.      * @var Eusphpe
  43.      */
  44.     private $eusphpe;
  45.     /**
  46.      * @var false|string
  47.      */
  48.     private $vidiPrivateKey;
  49.     /**
  50.      * @var false|string
  51.      */
  52.     private $vidiPrivateKeyPassword;
  54.     /**
  55.      * @var false|string
  56.      */
  57.     private $diiaSert;
  59.     private ?string $diiaCredentialsPath;
  60.     private ?string $vidiPrivateKeyFilePath;
  61.     private ?string $vidiDefPrivateKey;
  62.     private ?string $diiaSertFilePath;
  64.     /**
  65.      * @param string $acquirerToken
  66.      * @param SessionHandlerProvider $handlerProvider
  67.      * @param LoggerInterface $logger
  68.      * @param Eusphpe $eusphpe
  69.      * @param string $diia_credentials_path
  70.      * @param string $vidiPrivateKeyFilePath
  71.      * @param string $vidiPrivateKeyPasswordFilePath
  72.      * @param string $diiaSertFilePath
  73.      * @param bool $testingMode
  74.      * @param HttpClient|null $guzzle
  75.      */
  76.     public function __construct(
  77.         string $acquirerToken,
  78.         SessionHandlerProvider $handlerProvider,
  79.         LoggerInterface $logger,
  80.         Eusphpe $eusphpe,
  81.         string $diia_credentials_path,
  82.         string $vidiPrivateKeyFilePath,
  83.         string $vidiPrivateKeyPasswordFilePath,
  84.         string $diiaSertFilePath,
  85.         bool $testingMode false,
  86.         HttpClient $guzzle null
  87.     ) {
  88.         $this->acquirerDefToken $acquirerToken;
  89.         $this->testingMode $testingMode;
  90.         $this->handlerProvider $handlerProvider;
  91.         $this->eusphpe $eusphpe;
  92.         // If there were no guzzle instance provided, make the default one.
  93.         $this->setLogger($logger);
  95.         $this->diiaCredentialsPath $diia_credentials_path;
  97.         if (file_exists($vidiPrivateKeyFilePath)) {
  98.             $this->vidiDefPrivateKey file_get_contents($vidiPrivateKeyFilePathFILE_USE_INCLUDE_PATH);
  99.         }
  100.         if (file_exists($vidiPrivateKeyPasswordFilePath)) {
  101.             $this->vidiDefPrivateKeyPassword file_get_contents($vidiPrivateKeyPasswordFilePathFILE_USE_INCLUDE_PATH);
  102.         }
  104.         if (file_exists($diiaSertFilePath)) {
  105.             $this->diiaDefSert file_get_contents($diiaSertFilePathFILE_USE_INCLUDE_PATH);
  106.         }
  107.     }
  109.     /**
  110.      * Transform the items of the collection to the given class.
  111.      *
  112.      * @param array $collection
  113.      * @param string $class
  114.      * @param array $extraData
  115.      * @return array
  116.      */
  117.     public function transformCollection(array $collection$class$extraData = []): array
  118.     {
  119.         return array_map(fn($data) => new $class($data $extraData$this), $collection);
  120.     }
  122.     public function getCredentials(Dealer $dealer)
  123.     {
  124.         if (!file_exists($this->diiaCredentialsPath))
  125.             return false;
  127.         $credFileContent Yaml::parseFile($this->diiaCredentialsPath);
  128.         $credentials = [];
  130.         if ($credFileContent && isset($credFileContent[$dealer->getUniqueId()])){
  131.             $credentials $credFileContent[$dealer->getUniqueId()];
  132.         } else {
  133.             return false;
  134.         }
  136.         if (file_exists($credentials['vidiPrivateKey'])) {
  137.             $credentials['vidiPrivateKey'] = file_get_contents($credentials['vidiPrivateKey'], FILE_USE_INCLUDE_PATH);
  138.         }
  139.         if (file_exists($credentials['vidiPrivateKeyPassword'])) {
  140.             $credentials['vidiPrivateKeyPassword'] = file_get_contents($credentials['vidiPrivateKeyPassword'], FILE_USE_INCLUDE_PATH);
  141.         }
  143.         return $credentials;
  144.     }
  146.     public function setCredentials(Dealer $dealer$testMode false)
  147.     {
  148.         $credentials self::getCredentials($dealer);
  151.         if ($credentials){
  152.                     $this->acquirerToken $credentials['acquirerToken'];
  153.                     if ($testMode == true && $dealer->getId() == 14){
  154.                         $this->testingMode true;
  155.                         $this->acquirerToken 'vidielite_test_token_byw932';
  157.                     }
  158.                     $this->vidiPrivateKey $credentials['vidiPrivateKey'];
  159.                     $this->vidiPrivateKeyPassword $credentials['vidiPrivateKeyPassword'];
  160.                     $this->diiaSert $this->diiaDefSert;
  161.                     $this->initGuzzle(null);
  162.                     $this->obtainSessionToken($this->acquirerToken$credentials['auth_acquirer_token'], $dealer->getId());
  163.         } else {
  164.             $this->acquirerToken $this->acquirerDefToken;
  165.             $this->vidiPrivateKey $this->vidiDefPrivateKey;
  166.             $this->vidiPrivateKeyPassword $this->vidiDefPrivateKeyPassword;
  167.             $this->diiaSert $this->diiaDefSert;
  168.             $this->initGuzzle(null);
  169.             $this->obtainSessionToken($this->acquirerToken);
  170.         }
  171.     }
  174.     /**
  175.      * Transform the items of the collection to the given class.
  176.      *
  177.      * @return void
  178.      * @throws HandlerNotFoundException
  179.      */
  180.     public function invalidateSessionToken()
  181.     {
  182.         $this->handlerProvider->getSessionKeyHandler($this->getMode());
  183.     }
  185.     public function decryptData($encodedData)
  186.     {
  187.         $res =$this->eusphpe->developBankIdData($this->vidiPrivateKey$this->vidiPrivateKeyPassword$encodedDatanull);
  188.         $this->logger->info('decryptData'$res);
  189.         return $res;
  190.     }
  192.     /**
  193.      * Obtain session token, using provided acquirer token/
  194.      *
  195.      * @param string $acquirerToken
  196.      * @throws HandlerNotFoundException
  197.      */
  198.     protected function obtainSessionToken($acquirerToken$auth_acquirer_token self::DEF_AUTH_ACQUIRER_TOKEN$dealerId)
  199.     {
  200.         $sessionKeyHandler $this->handlerProvider->getSessionKeyHandler($this->getMode());
  202.         try {
  203.             if (!$this->sessionToken $sessionKeyHandler->handle($dealerId)) {
  204.                 $this->applyDefaultOptions(['headers' => ['Authorization' => "Basic "$auth_acquirer_token]]);
  205.                 $this->sessionToken $this->get("v1/auth/acquirer/{$acquirerToken}")["token"];
  206.                 //https://docs.google.com/document/d/1lM7Yd954GwtR1PRfo3afTR89YmC8k8_MrjyWhlZx4xw/edit#heading=h.4enep6lpiym1
  207.                 //Set session token  який був отриманий не раніше, ніж 2 години тому
  208.                 $sessionKeyHandler->setToken($this->sessionToken$dealerId);
  209.             }
  210.         } catch (ResponseErrorException $e) {
  211.             $this->logger->critical($e->getMessage());
  212.         }
  214.         //Для оновлення токена. Проблема в applyDefaultOptions (array_merge_recursive)
  215.         if (isset($this->guzzleCurrentOptions['headers']['Authorization'])){
  216.             unset($this->guzzleCurrentOptions['headers']['Authorization']);
  217.         }
  219.         $this->applyDefaultOptions(['headers' => ['Authorization' => "Bearer {$this->sessionToken}"]]);
  220.     }
  222.     public function hashFiles($files)
  223.     {
  224.         $hashFiles = [];
  226.         foreach ($files as $file){
  227.             $hashFiles[] = [
  228.                 'fileName' => $file['name'],
  229.                 'fileHash' => $this->eusphpe->hashFile($file['path'], true)
  230.             ];
  231.         }
  233.         return $hashFiles;
  234.     }
  236.     public function hashData($data)
  237.     {
  238.         $hashFiles = [];
  240.         foreach ($data as $file){
  241.             $hashFiles[] = [
  242.                 'fileName' => $file['name'],
  243.                 'fileHash' => $this->eusphpe->hashFile($file['data'])
  244.             ];
  245.         }
  247.         return $hashFiles;
  248.     }
  250.     public function checkSignature($signature$hashData)
  251.     {
  252.         $verify $this->eusphpe->verify($signature$hashData);
  254.         return $verify;
  255.     }
  256. }