~kyy/LB_PdaService.git

			@@ -1,27 +1,24 @@
			using Microsoft.AspNetCore.Mvc;
			using System;
			using System.Collections.Generic;
			using System.Net.Http;
			using System.Security.Cryptography;
			using Newtonsoft.Json;
			using System.Text;
			using System.Net;
			using Microsoft.AspNetCore.DataProtection;
			using Microsoft.Extensions.Hosting;
			using System.Security.Cryptography;
			using System.Text;
			using Microsoft.AspNetCore.Mvc;
			using Newtonsoft.Json;

			namespace NewPdaSqlServer.Controllers
			namespace NewPdaSqlServer.Controllers;

			[Route("api/[controller]")]
			[ApiController]
			public class AuthController : ControllerBase
			{
			[Route("api/[controller]")]
			[ApiController]
			public class AuthController : ControllerBase
			{
			// 以下常量建议放在appsettings.json配置文件中
			private const string APPID = "303233EF-AC39-40C1-8364-AC989C6258A5";
			private const string SECRET = "30b41949-bcfb-48f8-9847-feb6e043fe72";
			// private const string SPK = "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApobID/gwmD9OofMG1gEcE94NCMeTYUq1cam/7ADZmxHCVpF143GaHWhqDdY0TTVbcUElsQ71DzAG2j3itWlIJBK5fVGwCo3sPpAvUDdKMh+Uivcp7yxdy/IDRA/PS4JARuEyM4cVJLhIOU2KnSlbIkheeoDkDgfaxu9kKrWnozJLiYraVTVDz9PdRX7fQdP+Zu/xB9txAGw4kvOm9HwgrzaSRdZEhisTJ5yyoNW/dLXtWKXA0cKhKOOIFu12TOrv/It6hl1ShTUuy79Pa51M9Oc2dEfVs1tluNXPWo1uFXQbBaJxdqZEJJlK7iW2uQFIao2O4XFHYThwy2+6116LtwIDAQAB";
			private const string HOST = "http://192.168.1.149:8099";
			// 以下常量建议放在appsettings.json配置文件中
			private const string APPID = "303233EF-AC39-40C1-8364-AC989C6258A5";

			private const string SPK = @"-----BEGIN PUBLIC KEY-----
			private const string SECRET = "30b41949-bcfb-48f8-9847-feb6e043fe72";

			// private const string SPK = "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApobID/gwmD9OofMG1gEcE94NCMeTYUq1cam/7ADZmxHCVpF143GaHWhqDdY0TTVbcUElsQ71DzAG2j3itWlIJBK5fVGwCo3sPpAvUDdKMh+Uivcp7yxdy/IDRA/PS4JARuEyM4cVJLhIOU2KnSlbIkheeoDkDgfaxu9kKrWnozJLiYraVTVDz9PdRX7fQdP+Zu/xB9txAGw4kvOm9HwgrzaSRdZEhisTJ5yyoNW/dLXtWKXA0cKhKOOIFu12TOrv/It6hl1ShTUuy79Pa51M9Oc2dEfVs1tluNXPWo1uFXQbBaJxdqZEJJlK7iW2uQFIao2O4XFHYThwy2+6116LtwIDAQAB";
			private const string HOST = "http://192.168.1.149:8099";

			private const string SPK = @"-----BEGIN PUBLIC KEY-----
			MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApobID/gwmD9OofMG1gEc
			E94NCMeTYUq1cam/7ADZmxHCVpF143GaHWhqDdY0TTVbcUElsQ71DzAG2j3itWlI
			JBK5fVGwCo3sPpAvUDdKMh+Uivcp7yxdy/IDRA/PS4JARuEyM4cVJLhIOU2KnSlb
			@@ -31,135 +28,138 @@
			twIDAQAB
			-----END PUBLIC KEY-----";

			[HttpGet("token")]
			public ActionResult<string> GetToken()
			[HttpGet("token")]
			public ActionResult<string> GetToken()
			{
			var http = new HttpManager();
			var headers = new Dictionary<string, string>
			{
			var http = new HttpManager();
			["appid"] = APPID,
			["secret"] = RsaHelper.Encrypt(SECRET, SPK)
			};

			try
			{
			var response = http.PostDataSSL(
			$"{HOST}/api/ec/dev/auth/applytoken",
			new Dictionary<string, string>(), headers);

			if (!string.IsNullOrEmpty(response))
			{
			var res = JsonConvert.DeserializeObject<dynamic>(response);
			if (res.status == "true") return res.token.ToString();
			}

			return BadRequest("Failed to get token");
			}
			catch (Exception ex)
			{
			// 建议使用ILogger记录日志
			return StatusCode(500, ex.Message);
			}
			}


			[HttpPost("getUserId")]
			public ActionResult<string> GetUserId()
			{
			var http = new HttpManager();
			var tokenResult = http.GetToken();
			if (tokenResult is not null)
			{
			var url = new Uri($"{HOST}/api/T100/GetSecretUserId");
			return http.GetOaKqInfo(url, tokenResult, "DQ000344");
			}

			return BadRequest("无法获取有效Token");
			}


			[HttpPost("createWorkflow")]
			public ActionResult<string> CreateWorkflowRequest(
			[FromBody] WorkflowRequestDto request)
			{
			try
			{
			// 加密用户ID
			var encryptedUserId = RsaHelper.Encrypt(request.UserId, SPK);
			var token = GetToken().ToString();
			// 设置请求头
			var headers = new Dictionary<string, string>
			{
			["token"] = token,
			["appid"] = APPID,
			["secret"] = RsaHelper.Encrypt(SECRET, SPK)
			["userid"] = encryptedUserId
			};

			try
			// 构建请求参数
			var parameters = new Dictionary<string, string>
			{
			var response = http.PostDataSSL($"{HOST}/api/ec/dev/auth/applytoken",
			new Dictionary<string, string>(), headers);
			["mainData"] = JsonConvert.SerializeObject(request.MainData),
			["workflowId"] = "",
			["requestName"] = request.RequestName
			};

			if (!string.IsNullOrEmpty(response))
			{
			var res = JsonConvert.DeserializeObject<dynamic>(response);
			if (res.status == "true")
			{
			return res.token.ToString();
			}
			}
			return BadRequest("Failed to get token");
			}
			catch (Exception ex)
			{
			// 建议使用ILogger记录日志
			return StatusCode(500, ex.Message);
			}
			// 添加可选参数
			if (request.DetailData != null)
			parameters.Add("detailData",
			JsonConvert.SerializeObject(request.DetailData));

			if (request.OtherParams != null)
			parameters.Add("otherParams",
			JsonConvert.SerializeObject(request.OtherParams));

			// 发送请求
			var response = new HttpManager().PostDataSSL(
			$"{HOST}/api/workflow/paService/doCreateRequest",
			parameters,
			headers);

			dynamic res = JsonConvert.DeserializeObject(response);
			if (res.code == "SUCCESS")
			return Ok(res.data.requestid.ToString());

			return BadRequest($"创建失败：{res.errMsg}");
			}


			[HttpPost("getUserId")]
			public ActionResult<string> GetUserId()
			catch (Exception ex)
			{
			var http = new HttpManager();
			var tokenResult = http.GetToken();
			if (tokenResult is not null)
			{
			Uri url = new Uri($"{HOST}/api/T100/GetSecretUserId");
			return http.GetOaKqInfo(url, tokenResult, "DQ000344");
			}
			return BadRequest("无法获取有效Token");
			}



			[HttpPost("createWorkflow")]
			public ActionResult<string> CreateWorkflowRequest([FromBody] WorkflowRequestDto request)
			{
			try
			{
			// 加密用户ID
			var encryptedUserId = RsaHelper.Encrypt(request.UserId, SPK);
			var token = GetToken().ToString();
			// 设置请求头
			var headers = new Dictionary<string, string>
			{
			["token"] = token,
			["appid"] = APPID,
			["userid"] = encryptedUserId
			};

			// 构建请求参数
			var parameters = new Dictionary<string, string>
			{
			["mainData"] = JsonConvert.SerializeObject(request.MainData),
			["workflowId"] = "",
			["requestName"] = request.RequestName
			};

			// 添加可选参数
			if (request.DetailData != null)
			parameters.Add("detailData", JsonConvert.SerializeObject(request.DetailData));

			if (request.OtherParams != null)
			parameters.Add("otherParams", JsonConvert.SerializeObject(request.OtherParams));

			// 发送请求
			var response = new HttpManager().PostDataSSL(
			$"{HOST}/api/workflow/paService/doCreateRequest",
			parameters,
			headers);

			dynamic res = JsonConvert.DeserializeObject(response);
			if (res.code == "SUCCESS")
			return Ok(res.data.requestid.ToString());

			return BadRequest($"创建失败：{res.errMsg}");
			}
			catch (Exception ex)
			{
			return StatusCode(500, $"系统异常：{ex.Message}");
			}
			return StatusCode(500, $"系统异常：{ex.Message}");
			}
			}
			}

			public static class RsaHelper
			public static class RsaHelper
			{
			public static string Encrypt(string plainText, string publicKeyPem)
			{
			public static string Encrypt(string plainText, string publicKeyPem)
			{
			// 将PEM格式的公钥转换为XML格式
			var rsa = RSA.Create();
			rsa.ImportFromPem(publicKeyPem); // 使用.NET 5+ 内置PEM解析方法
			// 将PEM格式的公钥转换为XML格式
			var rsa = RSA.Create();
			rsa.ImportFromPem(publicKeyPem); // 使用.NET 5+ 内置PEM解析方法

			var parameters = rsa.ExportParameters(false);
			string publicKeyXml = $"<RSAKeyValue><Modulus>{Convert.ToBase64String(parameters.Modulus)}</Modulus><Exponent>{Convert.ToBase64String(parameters.Exponent)}</Exponent></RSAKeyValue>";
			var parameters = rsa.ExportParameters(false);
			var publicKeyXml =
			$"<RSAKeyValue><Modulus>{Convert.ToBase64String(parameters.Modulus)}</Modulus><Exponent>{Convert.ToBase64String(parameters.Exponent)}</Exponent></RSAKeyValue>";

			using var rsaProvider = new RSACryptoServiceProvider();
			rsaProvider.FromXmlString(publicKeyXml); // 使用转换后的XML格式公钥
			using var rsaProvider = new RSACryptoServiceProvider();
			rsaProvider.FromXmlString(publicKeyXml); // 使用转换后的XML格式公钥

			var data = Encoding.UTF8.GetBytes(plainText);
			var encrypted = rsaProvider.Encrypt(data, false);
			return Convert.ToBase64String(encrypted);
			}
			var data = Encoding.UTF8.GetBytes(plainText);
			var encrypted = rsaProvider.Encrypt(data, false);
			return Convert.ToBase64String(encrypted);
			}
			}

			public class HttpManager
			{
			private readonly HttpClient _client = new HttpClient();
			public class HttpManager
			{
			// 以下常量建议放在appsettings.json配置文件中
			private const string APPID = "303233EF-AC39-40C1-8364-AC989C6258A5";

			// 以下常量建议放在appsettings.json配置文件中
			private const string APPID = "303233EF-AC39-40C1-8364-AC989C6258A5";
			private const string SECRET = "30b41949-bcfb-48f8-9847-feb6e043fe72";
			// private const string SPK = "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApobID/gwmD9OofMG1gEcE94NCMeTYUq1cam/7ADZmxHCVpF143GaHWhqDdY0TTVbcUElsQ71DzAG2j3itWlIJBK5fVGwCo3sPpAvUDdKMh+Uivcp7yxdy/IDRA/PS4JARuEyM4cVJLhIOU2KnSlbIkheeoDkDgfaxu9kKrWnozJLiYraVTVDz9PdRX7fQdP+Zu/xB9txAGw4kvOm9HwgrzaSRdZEhisTJ5yyoNW/dLXtWKXA0cKhKOOIFu12TOrv/It6hl1ShTUuy79Pa51M9Oc2dEfVs1tluNXPWo1uFXQbBaJxdqZEJJlK7iW2uQFIao2O4XFHYThwy2+6116LtwIDAQAB";
			private const string HOST = "http://192.168.1.149:8099";
			private const string SECRET = "30b41949-bcfb-48f8-9847-feb6e043fe72";

			private const string SPK = @"-----BEGIN PUBLIC KEY-----
			// private const string SPK = "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApobID/gwmD9OofMG1gEcE94NCMeTYUq1cam/7ADZmxHCVpF143GaHWhqDdY0TTVbcUElsQ71DzAG2j3itWlIJBK5fVGwCo3sPpAvUDdKMh+Uivcp7yxdy/IDRA/PS4JARuEyM4cVJLhIOU2KnSlbIkheeoDkDgfaxu9kKrWnozJLiYraVTVDz9PdRX7fQdP+Zu/xB9txAGw4kvOm9HwgrzaSRdZEhisTJ5yyoNW/dLXtWKXA0cKhKOOIFu12TOrv/It6hl1ShTUuy79Pa51M9Oc2dEfVs1tluNXPWo1uFXQbBaJxdqZEJJlK7iW2uQFIao2O4XFHYThwy2+6116LtwIDAQAB";
			private const string HOST = "http://192.168.1.149:8099";

			private const string SPK = @"-----BEGIN PUBLIC KEY-----
			MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApobID/gwmD9OofMG1gEc
			E94NCMeTYUq1cam/7ADZmxHCVpF143GaHWhqDdY0TTVbcUElsQ71DzAG2j3itWlI
			JBK5fVGwCo3sPpAvUDdKMh+Uivcp7yxdy/IDRA/PS4JARuEyM4cVJLhIOU2KnSlb
			@@ -169,160 +169,159 @@
			twIDAQAB
			-----END PUBLIC KEY-----";

			public string PostDataSSL(string url,
			Dictionary<string, string> parameters,
			Dictionary<string, string> headers)
			{
			var request = new HttpRequestMessage(HttpMethod.Post, url);
			private readonly HttpClient _client = new();

			foreach (var header in headers)
			{
			request.Headers.Add(header.Key, header.Value);
			}

			// 如果需要表单参数
			if (parameters.Count > 0)
			{
			request.Content = new FormUrlEncodedContent(parameters);
			}

			var response = _client.SendAsync(request).Result;
			return response.Content.ReadAsStringAsync().Result;
			}

			public string GetToken()
			{


			var http = new HttpManager();
			var headers = new Dictionary<string, string>
			{
			["appid"] = APPID,
			["secret"] = RsaHelper.Encrypt(SECRET, SPK)
			};

			try
			{
			var response = http.PostDataSSL($"{HOST}/api/ec/dev/auth/applytoken",
			new Dictionary<string, string>(), headers);

			if (!string.IsNullOrEmpty(response))
			{
			var res = JsonConvert.DeserializeObject<dynamic>(response);
			if (res.status == "true")
			{
			return res.token.ToString();
			}
			}
			return "token不存在！";
			}
			catch (Exception ex)
			{
			// 建议使用ILogger记录日志
			return ex.Message;
			}
			}

			public string GetOaKqInfo(Uri url, string token, string userId)
			{
			try
			{
			ServicePointManager.ServerCertificateValidationCallback += (s, cert, chain, sslPolicyErrors) => true;
			ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls12;

			var request = WebRequest.Create(url) as HttpWebRequest;
			request.Method = "POST";
			request.Timeout = 20000; // 20秒超时
			request.ContentType = "application/x-www-form-urlencoded; charset=utf-8"; // 明确指定编码

			// 添加调试头信息
			request.Headers.Add("appid", APPID);
			request.Headers.Add("token", token);
			request.Headers.Add("userId", userId);

			// 构建带时区的日期参数
			var postData = new StringBuilder();
			var dateParam = DateTime.Now.AddDays(-1).ToString("yyyy-MM-ddTHH:mm:sszzz");
			postData.AppendFormat("KQSDATE={0}&KQEDATE={1}",
			Uri.EscapeDataString(dateParam),
			Uri.EscapeDataString(dateParam));

			byte[] byteData = Encoding.UTF8.GetBytes(postData.ToString()); // 改用UTF8编码

			// 更完善的请求写入
			using (var stream = request.GetRequestStream())
			{
			stream.Write(byteData, 0, byteData.Length);
			}

			// 处理HTTP错误状态码
			using (var response = request.GetResponse() as HttpWebResponse)
			{
			if (response.StatusCode != HttpStatusCode.OK)
			{
			throw new WebException($"服务器返回错误状态码: {(int)response.StatusCode} {response.StatusDescription}");
			}

			using (var stream = response.GetResponseStream())
			using (var reader = new StreamReader(stream, Encoding.UTF8))
			{
			return reader.ReadToEnd();
			}
			}
			}
			catch (WebException ex) when (ex.Response is HttpWebResponse response)
			{
			// 记录详细错误信息
			var errorStream = response.GetResponseStream();
			using (var reader = new StreamReader(errorStream))
			{
			string errorDetails = reader.ReadToEnd();
			throw new Exception($"请求失败 [Status: {response.StatusCode}]: {errorDetails}", ex);
			}
			}
			catch (Exception ex)
			{
			throw new Exception($"请求异常: {ex.Message}", ex);
			}
			}
			}

			// 新增DTO类
			public class WorkflowRequestDto
			public string PostDataSSL(string url,
			Dictionary<string, string> parameters,
			Dictionary<string, string> headers)
			{
			/// <summary>
			/// 用户认证令牌
			/// </summary>
			public string Token { get; set; }
			var request = new HttpRequestMessage(HttpMethod.Post, url);

			/// <summary>
			/// 原始用户ID（加密前）
			/// </summary>
			public string UserId { get; set; }
			foreach (var header in headers)
			request.Headers.Add(header.Key, header.Value);

			/// <summary>
			/// 流程ID（必填）
			/// </summary>
			public int WorkflowId { get; set; }
			// 如果需要表单参数
			if (parameters.Count > 0)
			request.Content = new FormUrlEncodedContent(parameters);

			/// <summary>
			/// 流程标题（必填）
			/// </summary>
			public string RequestName { get; set; }

			/// <summary>
			/// 主表数据（必填）
			/// </summary>
			public Dictionary<string, object> MainData { get; set; }

			/// <summary>
			/// 明细表数据（选填）
			/// </summary>
			public Dictionary<string, object> DetailData { get; set; }

			/// <summary>
			/// 其他参数（选填）
			/// </summary>
			public Dictionary<string, object> OtherParams { get; set; }
			var response = _client.SendAsync(request).Result;
			return response.Content.ReadAsStringAsync().Result;
			}

			public string GetToken()
			{
			var http = new HttpManager();
			var headers = new Dictionary<string, string>
			{
			["appid"] = APPID,
			["secret"] = RsaHelper.Encrypt(SECRET, SPK)
			};

			try
			{
			var response = http.PostDataSSL(
			$"{HOST}/api/ec/dev/auth/applytoken",
			new Dictionary<string, string>(), headers);

			if (!string.IsNullOrEmpty(response))
			{
			var res = JsonConvert.DeserializeObject<dynamic>(response);
			if (res.status == "true") return res.token.ToString();
			}

			return "token不存在！";
			}
			catch (Exception ex)
			{
			// 建议使用ILogger记录日志
			return ex.Message;
			}
			}

			public string GetOaKqInfo(Uri url, string token, string userId)
			{
			try
			{
			ServicePointManager.ServerCertificateValidationCallback +=
			(s, cert, chain, sslPolicyErrors) => true;
			ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls12;

			var request = WebRequest.Create(url) as HttpWebRequest;
			request.Method = "POST";
			request.Timeout = 20000; // 20秒超时
			request.ContentType =
			"application/x-www-form-urlencoded; charset=utf-8"; // 明确指定编码

			// 添加调试头信息
			request.Headers.Add("appid", APPID);
			request.Headers.Add("token", token);
			request.Headers.Add("userId", userId);

			// 构建带时区的日期参数
			var postData = new StringBuilder();
			var dateParam = DateTime.Now.AddDays(-1)
			.ToString("yyyy-MM-ddTHH:mm:sszzz");
			postData.AppendFormat("KQSDATE={0}&KQEDATE={1}",
			Uri.EscapeDataString(dateParam),
			Uri.EscapeDataString(dateParam));

			var byteData =
			Encoding.UTF8.GetBytes(postData.ToString()); // 改用UTF8编码

			// 更完善的请求写入
			using (var stream = request.GetRequestStream())
			{
			stream.Write(byteData, 0, byteData.Length);
			}

			// 处理HTTP错误状态码
			using (var response = request.GetResponse() as HttpWebResponse)
			{
			if (response.StatusCode != HttpStatusCode.OK)
			throw new WebException(
			$"服务器返回错误状态码: {(int)response.StatusCode} {response.StatusDescription}");

			using (var stream = response.GetResponseStream())
			using (var reader = new StreamReader(stream, Encoding.UTF8))
			{
			return reader.ReadToEnd();
			}
			}
			}
			catch (WebException ex) when (ex.Response is HttpWebResponse response)
			{
			// 记录详细错误信息
			var errorStream = response.GetResponseStream();
			using (var reader = new StreamReader(errorStream))
			{
			var errorDetails = reader.ReadToEnd();
			throw new Exception(
			$"请求失败 [Status: {response.StatusCode}]: {errorDetails}",
			ex);
			}
			}
			catch (Exception ex)
			{
			throw new Exception($"请求异常: {ex.Message}", ex);
			}
			}
			}

			// 新增DTO类
			public class WorkflowRequestDto
			{
			/// <summary>
			/// 用户认证令牌
			/// </summary>
			public string Token { get; set; }

			/// <summary>
			/// 原始用户ID（加密前）
			/// </summary>
			public string UserId { get; set; }

			/// <summary>
			/// 流程ID（必填）
			/// </summary>
			public int WorkflowId { get; set; }

			/// <summary>
			/// 流程标题（必填）
			/// </summary>
			public string RequestName { get; set; }

			/// <summary>
			/// 主表数据（必填）
			/// </summary>
			public Dictionary<string, object> MainData { get; set; }

			/// <summary>
			/// 明细表数据（选填）
			/// </summary>
			public Dictionary<string, object> DetailData { get; set; }

			/// <summary>
			/// 其他参数（选填）
			/// </summary>
			public Dictionary<string, object> OtherParams { get; set; }
			}