|
|
<?php |
|
|
namespace lib; |
|
|
|
|
|
class QcloudFaceid { |
|
|
private $SecretId; |
|
|
private $SecretKey; |
|
|
private $endpoint = "faceid.tencentcloudapi.com"; |
|
|
private $service = "faceid"; |
|
|
private $version = "2018-03-01"; |
|
|
private $region = "ap-guangzhou"; |
|
|
|
|
|
function __construct($SecretId, $SecretKey){ |
|
|
$this->SecretId = $SecretId; |
|
|
$this->SecretKey = $SecretKey; |
|
|
} |
|
|
|
|
|
public function GetRealNameAuthToken($Name, $IDCard, $CallbackURL){ |
|
|
$action = 'GetRealNameAuthToken'; |
|
|
$param = [ |
|
|
'Name' => $Name, |
|
|
'IDCard' => $IDCard, |
|
|
'CallbackURL' => $CallbackURL |
|
|
]; |
|
|
return $this->send_reuqest($action, $param); |
|
|
} |
|
|
|
|
|
public function GetRealNameAuthResult($AuthToken){ |
|
|
$action = 'GetRealNameAuthResult'; |
|
|
$param = [ |
|
|
'AuthToken' => $AuthToken |
|
|
]; |
|
|
return $this->send_reuqest($action, $param); |
|
|
} |
|
|
|
|
|
private function send_reuqest($action, $param){ |
|
|
$payload = json_encode($param); |
|
|
$time = time(); |
|
|
$authorization = $this->generateSign($payload, $time); |
|
|
$header = [ |
|
|
'Authorization: '.$authorization, |
|
|
'Content-Type: application/json; charset=utf-8', |
|
|
'X-TC-Action: '.$action, |
|
|
'X-TC-Timestamp: '.$time, |
|
|
'X-TC-Version: '.$this->version, |
|
|
'X-TC-Region: '.$this->region, |
|
|
]; |
|
|
return $this->curl_post($payload, $header); |
|
|
} |
|
|
|
|
|
private function generateSign($payload, $time){ |
|
|
$algorithm = "TC3-HMAC-SHA256"; |
|
|
|
|
|
|
|
|
$httpRequestMethod = "POST"; |
|
|
$canonicalUri = "/"; |
|
|
$canonicalQueryString = ""; |
|
|
$canonicalHeaders = "content-type:application/json; charset=utf-8\n"."host:".$this->endpoint."\n"; |
|
|
$signedHeaders = "content-type;host"; |
|
|
$hashedRequestPayload = hash("SHA256", $payload); |
|
|
$canonicalRequest = $httpRequestMethod."\n" |
|
|
.$canonicalUri."\n" |
|
|
.$canonicalQueryString."\n" |
|
|
.$canonicalHeaders."\n" |
|
|
.$signedHeaders."\n" |
|
|
.$hashedRequestPayload; |
|
|
|
|
|
|
|
|
$date = gmdate("Y-m-d", $time); |
|
|
$credentialScope = $date."/".$this->service."/tc3_request"; |
|
|
$hashedCanonicalRequest = hash("SHA256", $canonicalRequest); |
|
|
$stringToSign = $algorithm."\n" |
|
|
.$time."\n" |
|
|
.$credentialScope."\n" |
|
|
.$hashedCanonicalRequest; |
|
|
|
|
|
|
|
|
$secretDate = hash_hmac("SHA256", $date, "TC3".$this->SecretKey, true); |
|
|
$secretService = hash_hmac("SHA256", $this->service, $secretDate, true); |
|
|
$secretSigning = hash_hmac("SHA256", "tc3_request", $secretService, true); |
|
|
$signature = hash_hmac("SHA256", $stringToSign, $secretSigning); |
|
|
|
|
|
|
|
|
$authorization = $algorithm |
|
|
." Credential=".$this->SecretId."/".$credentialScope |
|
|
.", SignedHeaders=content-type;host, Signature=".$signature; |
|
|
|
|
|
return $authorization; |
|
|
} |
|
|
|
|
|
private function curl_post($payload, $header){ |
|
|
$url = 'https://'.$this->endpoint.'/'; |
|
|
$ch=curl_init($url); |
|
|
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); |
|
|
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false); |
|
|
curl_setopt($ch, CURLOPT_HTTPHEADER, $header); |
|
|
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); |
|
|
curl_setopt($ch, CURLOPT_TIMEOUT, 10); |
|
|
curl_setopt($ch, CURLOPT_POST, 1); |
|
|
curl_setopt($ch, CURLOPT_POSTFIELDS, $payload); |
|
|
$json=curl_exec($ch); |
|
|
$httpCode = curl_getinfo($ch, CURLINFO_HTTP_CODE); |
|
|
curl_close($ch); |
|
|
if($httpCode==200){ |
|
|
$arr=json_decode($json,true); |
|
|
return $arr['Response']; |
|
|
}else{ |
|
|
return false; |
|
|
} |
|
|
} |
|
|
} |
|
|
|
