ASJServer/Controller/InAppPurchaseController.py

# @Author    : Rocky
# @File      : InAppPurchaseController.py
# @Time      : 2024/6/21 9:10
import logging
import time
import json

import requests
from appstoreserverlibrary.api_client import AppStoreServerAPIClient, GetTransactionHistoryVersion
from appstoreserverlibrary.models.Environment import Environment
from appstoreserverlibrary.receipt_utility import ReceiptUtility
from appstoreserverlibrary.models.HistoryResponse import HistoryResponse
from appstoreserverlibrary.models.TransactionHistoryRequest import TransactionHistoryRequest, ProductType, Order
from appstoreserverlibrary.signed_data_verifier import SignedDataVerifier

from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives.serialization import load_pem_private_key

from django.db.models import Q
from django.views import View
from django.http import HttpResponse

from Ansjer.config import LOGGER, CONFIG_INFO, CONFIG_TEST, PAY_TYPE_IN_APP_PURCHASE, BASE_DIR, CONFIG_US
from Controller.CheckUserData import DataValid
from Model.models import Order_Model, Store_Meal, Device_Info, UID_Bucket, Unused_Uid_Meal, AiService, Device_User, \
    SysMsgModel, InAppPurchasePackage
from Object.AWS.S3Email import S3Email
from Object.AliSmsObject import AliSmsObject
from Object.AppleInAppPurchaseSubscriptionObject import InAppPurchase
from Object.RedisObject import RedisObject
from Service.CommonService import CommonService

ENV = Environment.SANDBOX if CONFIG_INFO == CONFIG_TEST else Environment.PRODUCTION


class InAppPurchaseView(View):
    def get(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        operation = kwargs.get('operation')
        return self.validation(request.GET, request, operation)

    def post(self, request, *args, **kwargs):
        request.encoding = 'utf-8'
        operation = kwargs.get('operation')
        return self.validation(request.POST, request, operation)

    def validation(self, request_dict, request, operation):
        if operation == 'AppStoreServerNotifications':  # App Store服务器通知
            return self.app_store_server_notifications(request)
        elif operation == 'VseesNotifications':
            return self.vsees_notifications(request)
        token_code, user_id, response = CommonService.verify_token_get_user_id(request_dict, request)
        if token_code != 0:
            return response.json(token_code)
        if operation == 'verifyTransaction':  # 认证交易
            return self.verify_transaction(user_id, request_dict, response)

    @classmethod
    def verify_transaction(cls, user_id, request_dict, response):
        """
        认证交易
        @param user_id: 用户id
        @param request_dict: 请求参数
        @request_dict receipt: 收据
        @param response: 响应对象
        @return: response
        """
        receipt = request_dict.get('receipt', None)
        order_id = request_dict.get('orderID', None)
        uid = request_dict.get('uid', None)
        lang = request_dict.get('lang', 'en')
        channel = request_dict.get('channel', None)
        app_type = request_dict.get('appType', 1)
        logger = logging.getLogger('apple_pay')
        logger.info(f"receipt: {receipt}, 订单orderId: {order_id}, uid: {uid}")

        if not all([receipt, uid, channel, order_id]):
            return response.json(444)

        # redis加锁，防止订单重复
        redis_obj = RedisObject()
        redis_key = order_id + 'in_app_purchase'
        is_lock = redis_obj.CONN.setnx(redis_key, 1)
        redis_obj.CONN.expire(redis_key, 60)
        if not is_lock:
            return response.json(5)

        try:
            # 检查商品id是否正确
            app_type = int(app_type)
            if app_type == 1:
                bundle_id = "com.ansjer.zccloud"
            elif app_type == 2:
                bundle_id = "com.ansjer.zccloud"
            else:
                return response.json(444, "app_type不存在")
            # 实例化订阅类
            in_app_purchase = InAppPurchase(bundle_id=bundle_id)

            # ReceiptUtility 用于解析收据为transaction_id
            receipt_util = in_app_purchase.receipt_util
            # AppStoreServerAPIClient 用于查询交易信息
            client = in_app_purchase.client
            # SignedDataVerifier 用于解析查询到的交易信息
            signed_data_verifier = in_app_purchase.verifier

            # 解析收据(循环扣款时不需要这一步, 直接获取transaction_id)
            transaction_id = receipt_util.extract_transaction_id_from_app_receipt(receipt)
            if transaction_id is None:
                pay_result_url = CommonService.get_payment_status_url(lang, 'fail')
                return response.json(0, {'url': pay_result_url})
            logger.info(f"订单orderId:{order_id}, transaction_id:{transaction_id}")

            # 查询交易信息
            transaction_info = client.get_transaction_info(transaction_id)
            signed_transaction_info = transaction_info.signedTransactionInfo
            # 解析交易信息
            payload = signed_data_verifier.verify_and_decode_signed_transaction(signed_transaction_info)

            # 获取交易的商品id
            product_id = payload.productId if payload and payload.productId else None
            if not product_id:
                pay_result_url = CommonService.get_payment_status_url(lang, 'fail')
                return response.json(0, {'url': pay_result_url})

            in_app_purchase_package_qs = InAppPurchasePackage.objects.filter(product_id=product_id, app_type=app_type)
            if not in_app_purchase_package_qs.exists():
                return response.json(173, "内购商品id不存在")

            # 验证订单是否存在
            order_qs = Order_Model.objects.filter(orderID=order_id, UID=uid, app_type=app_type).values("rank_id")
            if not order_qs.exists():
                return response.json(173, "订单不存在")

            # 验证套餐是否存在
            store_qs = Store_Meal.objects.filter(id=order_qs[0]['rank_id']).values(
                'id', 'currency', 'price', 'lang__content', 'day', 'commodity_type', 'lang__title', 'expire',
                'commodity_code', 'discount_price', 'bucket_id', 'bucket__mold', 'cycle_config_id', 'is_ai')
            if not store_qs.exists():
                return response.json(173, "云存套餐不存在")

            # 设备开通云存
            now_time = int(time.time())
            uid_bucket_id = cls.enable_cloud(channel, now_time, order_id, store_qs, uid)

            # 修改订单信息
            order_qs.update(status=1, uid_bucket_id=uid_bucket_id, transaction_id=transaction_id, create_vod=1)

            # 构建云存套餐消息
            sys_msg_text_list = cls.cloud_storage_message(uid)
            cls.do_vod_msg_notice(uid, user_id, lang, sys_msg_text_list)

            # 删除缓存
            redis_obj.del_data(redis_key)
            pay_result_url = CommonService.get_payment_status_url(lang, 'success')

            return response.json(0, {'url': pay_result_url})

        except Exception as e:
            redis_obj.del_data(redis_key)
            LOGGER.info('苹果内购认证交易接口异常:{}'.
                        format('error_line:{}, error_msg:{}'.format(e.__traceback__.tb_lineno, repr(e))))
            pay_result_url = CommonService.get_payment_status_url(lang, 'fail')
            return response.json(0, {'url': pay_result_url})

    @classmethod
    def cloud_storage_message(cls, uid):
        # 发送云存开通信息
        date_time = time.strftime("%Y-%m-%d", time.localtime())
        # 如果存在序列号,消息提示用序列号
        device_info_qs = Device_Info.objects.filter(UID=uid).values('serial_number', 'Type')
        serial_number = device_info_qs[0]['serial_number']
        device_type = device_info_qs[0]['Type']
        if serial_number:
            device_name = CommonService.get_full_serial_number(uid, serial_number, device_type)
        else:
            device_name = uid
        sys_msg_text_list = [
            '温馨提示：尊敬的客户，您的{}设备在{}已成功购买云存套餐'.format(device_name, date_time),
            'Dear customer,you already subscribed the cloud storage package successfully for device {} on '.
            format(device_name, time.strftime('%b %dth,%Y', time.localtime()))]
        return sys_msg_text_list

    @classmethod
    def enable_cloud(cls, channel, now_time, order_id, store_qs, uid):
        bucket_id = store_qs[0]['bucket_id']
        is_ai = store_qs[0]['is_ai']
        expire = store_qs[0]['expire']
        end_time = CommonService.calcMonthLater(expire)
        # 查询设备是否已开过云存
        use_flag = True
        uid_bucket_qs = UID_Bucket.objects.filter(uid=uid). \
            values('id', 'bucket_id', 'bucket__region', 'endTime', 'use_status')
        if uid_bucket_qs.exists():
            uid_bucket = uid_bucket_qs.first()
            uid_bucket_id = uid_bucket['id']
            # 有正在使用的套餐，创建为未使用套餐
            if uid_bucket['use_status'] == 1 and uid_bucket['endTime'] > now_time:
                Unused_Uid_Meal.objects.create(
                    uid=uid, channel=channel, addTime=now_time, order_id=order_id, expire=expire, is_ai=is_ai,
                    bucket_id=bucket_id)
                UID_Bucket.objects.filter(id=uid_bucket_id).update(has_unused=1)
                use_flag = False
            # 无正在使用套餐，直接使用套餐
            else:
                UID_Bucket.objects.filter(id=uid_bucket_id).update(
                    channel=channel, bucket_id=bucket_id, endTime=end_time, updateTime=now_time, use_status=1,
                    orderId=order_id)
        else:
            uid_bucket = UID_Bucket.objects.create(
                uid=uid, channel=channel, bucket_id=bucket_id, endTime=end_time, use_status=1, orderId=order_id,
                addTime=now_time, updateTime=now_time)
            uid_bucket_id = uid_bucket.id
        # 开通AI服务
        if is_ai and use_flag:
            ai_service = AiService.objects.filter(uid=uid, channel=channel)
            # 有正在使用的套餐,叠加套餐时间,否则创建
            if ai_service.exists():
                ai_service.update(updTime=now_time, use_status=1, orders_id=order_id, endTime=end_time)
            else:
                AiService.objects.create(
                    uid=uid, channel=channel, detect_status=1, use_status=1, orders_id=order_id,
                    addTime=now_time, updTime=now_time, endTime=end_time)
        return uid_bucket_id

    @classmethod
    def do_vod_msg_notice(cls, uid, user_id, lang, sys_msg_text_list):
        """
        发送云存开通信息
        @param uid: uid
        @param user_id: 用户id
        @param lang: 语言
        @param sys_msg_text_list: 消息列表
        @return: response
        """
        if lang == 'cn':
            sys_msg_text = sys_msg_text_list[0]
        else:
            sys_msg_text = sys_msg_text_list[1]
        now_time = int(time.time())
        create_data = {
            'userID_id': user_id,
            'msg': sys_msg_text,
            'addTime': now_time,
            'updTime': now_time,
            'uid': uid,
            'eventType': 0
        }
        SysMsgModel.objects.create(**create_data)

        # 不接收邮件用户
        if user_id == '167015836969813800138000':
            return

        user_qs = Device_User.objects.filter(userID=user_id)
        if user_qs.exists():
            user = user_qs.first()
            username = user.username
            data_valid = DataValid()
            if data_valid.email_validate(username):
                S3Email().faEmail(sys_msg_text, username)
            elif data_valid.mobile_validate(username):
                # 如果存在序列号,消息提示用序列号
                device_info_qs = Device_Info.objects.filter(UID=uid).values('serial_number', 'Type')
                if device_info_qs.exists():
                    serial_number = device_info_qs[0]['serial_number']
                    device_type = device_info_qs[0]['Type']
                    if serial_number:
                        device_name = CommonService.get_full_serial_number(uid, serial_number, device_type)
                    else:
                        device_name = uid
                    params = '{"devname":"%s","submittime":"%s"}' % (
                        device_name, time.strftime("%Y-%m-%d", time.localtime()))
                    cls.send_message(username, params, 'SMS_219738485')

    @staticmethod
    def send_message(phone, params, temp_msg):
        """
        发送手机消息
        @param phone: 用户名
        @param params: 消息参数
        @param temp_msg: sms码
        """
        sign_ms = '周视'
        ali_sms = AliSmsObject()
        ali_sms.send_code_sms_cloud(phone=phone, params=params, sign_name=sign_ms, temp_msg=temp_msg)

    @classmethod
    def app_store_server_notifications(cls, request):
        logger = logging.getLogger('apple_pay')
        logger.info('App Store服务器通知请求类型:{}'.format(request.method))
        logger.info('App Store服务器通知参数:{}'.format(request.POST))
        logger.info('App Store服务器通知请求body:{}'.format(request.body))
        payload = json.loads(request.body.decode('utf-8'))
        logger.info('App Store服务器通知payload:{}'.format(payload))
        # 获取 signedPayload
        signed_payload = payload.get('signedPayload')
        if not signed_payload:
            return HttpResponse(status=400)

        bundle_id = 'com.ansjer.zccloud'
        environment = ENV
        root_certificates = []
        for cert_name in [
            'AppleIncRootCertificate.cer', 'AppleComputerRootCertificate.cer',
            'AppleRootCA-G2.cer', 'AppleRootCA-G3.cer'
        ]:
            cert_path = '{}/Ansjer/file/in_app_purchase/{}'.format(BASE_DIR, cert_name)
            with open(cert_path, 'rb') as file:
                # 读取文件内容
                root_certificates.append(file.read())

        enable_online_checks = True
        app_apple_id = 1355964934  # 生产环境必需

        # 验证签名并解码 payload
        verifier = SignedDataVerifier(
            root_certificates, enable_online_checks, environment, bundle_id, app_apple_id)
        decoded_payload = verifier.verify_and_decode_notification(signed_payload)
        logger.info('App Store服务器通知decoded_payload: {}'.format(decoded_payload))
        status_code = 200
        if str(decoded_payload.rawNotificationType) == "REFUND":
            # 一种通知类型，表示 App Store 成功退还了消耗性应用内购买、非消耗性应用内购买、自动续订或不可续订的交易。
            # revocationDate 包含退款交易的时间戳。originalTransactionId 和 productId 用于标识原始交易和产品。revocationReason 包含原因。
            # 要请求客户所有退款交易的列表，请参阅 App Store 服务器 API 中的获取退款历史记录。
            # 1. 找套餐 使用 transaction_id 找orders
            decoded_transaction_information = verifier.verify_and_decode_signed_transaction(
                decoded_payload.data.signedTransactionInfo)
            transaction_id = decoded_transaction_information.transactionId
            logger.info('App Store服务器通知退款, transaction_id:{}'.format(transaction_id))
            orders_qs = Order_Model.objects.filter(transaction_id=transaction_id)
            # 2. 查找云存套餐使用表 和 云存套餐
            if orders_qs.exists():
                orders_qs.update(status=11)
                orderID = orders_qs[0].orderID
                uid = orders_qs[0].UID
                user_id = orders_qs[0].userID
                # 3. 未使用则删除未使用套餐表，已使用过则删除设备正在使用套餐，并关闭设备云存
                uid_bucket_qs = UID_Bucket.objects.filter(uid=uid, orderId=orderID, use_status=1,
                                                          endTime__gt=int(time.time()))
                unused_uid_meal_qs = Unused_Uid_Meal.objects.filter(order_id=orderID)
                ai_service_qs = AiService.objects.filter(uid=uid, orderId=orderID, use_status=1,
                                                         endTime__gt=int(time.time()))
                if unused_uid_meal_qs.exists():
                    unused_uid_meal_qs.delete()
                if uid_bucket_qs.exists():
                    uid_bucket_qs.update(status=0, use_status=2, endTime=int(time.time()), updateTime=int(time.time()))
                if ai_service_qs.exists():
                    ai_service_qs.update(detect_status=0, use_status=2, endTime=int(time.time()),
                                         updTime=int(time.time()))
                    # 关闭ai
                    msg = {'commandType': 'AIDisable'}
                    thing_name = CommonService.query_serial_with_uid(uid)  # 存在序列号则为使用序列号作为物品名
                    topic_name = 'ansjer/generic/{}'.format(thing_name)
                    req_success = CommonService.req_publish_mqtt_msg(thing_name, topic_name, msg)
                    LOGGER.info(f'App Store服务器通知用户退款, 关闭AI:{req_success}')

                # 4.发送邮件告知用户退款
                email_content = f'{CONFIG_INFO}用户{user_id}, 订单:{orderID}, 设备{uid}退款'
                S3Email().faEmail(email_content, 'servers@ansjer.com')
            else:
                if CONFIG_INFO == CONFIG_US:
                    url = "https://api.zositeche.com/inAppPurchase/AppStoreServerNotifications"
                    eur_response = requests.post(url=url, json=json.loads(request.body))
                    status_code = eur_response.status_code

        return HttpResponse(status=status_code)

    @classmethod
    def vsees_notifications(cls, request):
        logger = logging.getLogger('apple_pay')
        logger.info('Vsees: App Store服务器通知请求类型:{}'.format(request.method))
        logger.info('Vsees: App Store服务器通知参数:{}'.format(request.POST))
        logger.info('Vsees: App Store服务器通知请求body:{}'.format(request.body))
        payload = json.loads(request.body.decode('utf-8'))
        logger.info('Vsees: App Store服务器通知payload:{}'.format(payload))
        # 获取 signedPayload
        signed_payload = payload.get('signedPayload')
        if not signed_payload:
            return HttpResponse(status=400)

        in_app_purchase = InAppPurchase(bundle_id="com.cloudlife.commissionf")

        # SignedDataVerifier 用于解析查询到的交易信息
        verifier = in_app_purchase.verifier
        decoded_payload = verifier.verify_and_decode_notification(signed_payload)

        logger.info('Vsees: App Store服务器通知decoded_payload: {}'.format(decoded_payload))

        status_code = 200

        if str(decoded_payload.rawNotificationType) == "REFUND":
            # 一种通知类型，表示 App Store 成功退还了消耗性应用内购买、非消耗性应用内购买、自动续订或不可续订的交易。
            # revocationDate 包含退款交易的时间戳。originalTransactionId 和 productId 用于标识原始交易和产品。revocationReason 包含原因。
            # 要请求客户所有退款交易的列表，请参阅 App Store 服务器 API 中的获取退款历史记录。
            # 1. 找套餐 使用 transaction_id 找orders
            decoded_transaction_information = verifier.verify_and_decode_signed_transaction(
                decoded_payload.data.signedTransactionInfo)
            transaction_id = decoded_transaction_information.transactionId
            logger.info('Vsees: App Store服务器通知退款, transaction_id:{}'.format(transaction_id))
            orders_qs = Order_Model.objects.filter(transaction_id=transaction_id)

            # 2. 查找云存套餐使用表 和 云存套餐
            if orders_qs.exists():
                orders_qs.update(status=11)
                orderID = orders_qs[0].orderID
                uid = orders_qs[0].UID
                user_id = orders_qs[0].userID
                # 3. 未使用则删除未使用套餐表，已使用过则删除设备正在使用套餐，并关闭设备云存
                uid_bucket_qs = UID_Bucket.objects.filter(uid=uid, orderId=orderID, use_status=1,
                                                          endTime__gt=int(time.time()))
                unused_uid_meal_qs = Unused_Uid_Meal.objects.filter(order_id=orderID)
                ai_service_qs = AiService.objects.filter(uid=uid, orderId=orderID, use_status=1,
                                                         endTime__gt=int(time.time()))
                if unused_uid_meal_qs.exists():
                    unused_uid_meal_qs.delete()
                if uid_bucket_qs.exists():
                    uid_bucket_qs.update(status=0, use_status=2, endTime=int(time.time()), updateTime=int(time.time()))
                if ai_service_qs.exists():
                    ai_service_qs.update(detect_status=0, use_status=2, endTime=int(time.time()),
                                         updTime=int(time.time()))
                    # 关闭ai
                    msg = {'commandType': 'AIDisable'}
                    thing_name = CommonService.query_serial_with_uid(uid)  # 存在序列号则为使用序列号作为物品名
                    topic_name = 'ansjer/generic/{}'.format(thing_name)
                    req_success = CommonService.req_publish_mqtt_msg(thing_name, topic_name, msg)
                    LOGGER.info(f'App Store服务器通知用户退款, 关闭AI:{req_success}')

                # 4.发送邮件告知用户退款
                email_content = f'{CONFIG_INFO}用户{user_id}, 订单:{orderID}, 设备{uid}退款'
                S3Email().faEmail(email_content, 'servers@ansjer.com')
            else:
                if CONFIG_INFO == CONFIG_US:
                    url = "https://api.zositeche.com/inAppPurchase/AppStoreServerNotifications"
                    eur_response = requests.post(url=url, json=json.loads(request.body))
                    status_code = eur_response.status_code

        return HttpResponse(status=status_code)