static { try { SIGNATURE = Signature.getInstance("SHA1withRSA", "BC"); } catch (NoSuchAlgorithmException | NoSuchPaddingException | NoSuchProviderException e) { throw Throwables.propagate(e); } } public static String getSignature(Map<String, String> map, String pfxPath, String pfxPasswd) { try { SIGNATURE.initSign(X509Certs.getPrivateKey(pfxPath, pfxPasswd).getPrivateKey()); SIGNATURE.update(DigestUtils.sha1Hex(buildReqParams(map, false)).getBytes(Charsets.UTF_8)); return Base64.encodeBase64String(SIGNATURE.sign()).replaceAll("\r|\n", ""); } catch (Throwable e) { throw Throwables.propagate(e); } } public static void verifySign(Map<String, String> map, String certPath) throws GatewayFrontException { try { byte[] sign = Base64.decodeBase64(map.get("signature").getBytes(Charsets.UTF_8)); map.remove("signature"); SIGNATURE.initVerify(X509Certs.getVerifyPublicKey(certPath)); SIGNATURE.update(DigestUtils.sha1Hex(ExPayUtil.buildReqParams(map, false)).getBytes(Charsets.UTF_8)); Preconditions.checkState(SIGNATURE.verify(sign), ExPayConstant.VERIFY_SIGNATURE_FAILUE); } catch (Exception e) { throw Throwables.propagate(e); } }