From cafd199d565d240ba3e444ef2024189313f121be Mon Sep 17 00:00:00 2001
From: yujianbo <1299105272@qq.com>
Date: Sun, 28 May 2023 17:07:23 +0800
Subject: [PATCH] feature(issue 1272): FeiShu group chat robot adds signature
 verification function

---
 .../platform/LarkSendMessageHandler.java      | 37 +++++++++++++++++++
 .../robot/dynamic-thread-pool/lark-alarm.json |  2 +
 2 files changed, 39 insertions(+)

diff --git a/threadpool/message/src/main/java/cn/hippo4j/message/platform/LarkSendMessageHandler.java b/threadpool/message/src/main/java/cn/hippo4j/message/platform/LarkSendMessageHandler.java
index dce2e378..8f9a8463 100644
--- a/threadpool/message/src/main/java/cn/hippo4j/message/platform/LarkSendMessageHandler.java
+++ b/threadpool/message/src/main/java/cn/hippo4j/message/platform/LarkSendMessageHandler.java
@@ -33,7 +33,13 @@ import lombok.Data;
 import lombok.RequiredArgsConstructor;
 import lombok.SneakyThrows;
 import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.codec.binary.Base64;
 
+import javax.crypto.Mac;
+import javax.crypto.spec.SecretKeySpec;
+import java.nio.charset.StandardCharsets;
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
 import java.time.LocalDateTime;
 import java.time.format.DateTimeFormatter;
 import java.util.Arrays;
@@ -81,7 +87,13 @@ public class LarkSendMessageHandler implements SendMessageHandler {
         } else {
             larkAlarmTxt = StringUtil.replace(larkAlarmTxt, larkAlarmTimeoutReplaceJson, "");
         }
+
+        String timestamp=String.valueOf(System.currentTimeMillis()).substring(0,10);;
+        String sign = genSign(notifyConfig.getSecret(), timestamp);
+
         String text = String.format(larkAlarmTxt,
+                timestamp,
+                sign,
                 alarmNotifyRequest.getActive(),
                 alarmNotifyRequest.getNotifyTypeEnum(),
                 alarmNotifyRequest.getThreadPoolId(),
@@ -154,6 +166,31 @@ public class LarkSendMessageHandler implements SendMessageHandler {
         }
     }
 
+    private String verifySign(String secret, long timestamp) throws Exception {
+        //把timestamp+"\n"+密钥当做签名字符串
+        String stringToSign = timestamp + "\n" + secret;
+
+        //使用HmacSHA256算法计算签名
+        Mac mac = Mac.getInstance("HmacSHA256");
+        mac.init(new SecretKeySpec(stringToSign.getBytes(StandardCharsets.UTF_8), "HmacSHA256"));
+        byte[] signData = mac.doFinal(new byte[]{});
+        return new String(Base64.encodeBase64(signData));
+    }
+
+    /**
+     * generate Signature
+     */
+    private String genSign(String secret, String timestamp) throws NoSuchAlgorithmException, InvalidKeyException {
+        //把timestamp+"\n"+密钥当做签名字符串
+        String stringToSign = timestamp + "\n" + secret;
+
+        //使用HmacSHA256算法计算签名
+        Mac mac = Mac.getInstance("HmacSHA256");
+        mac.init(new SecretKeySpec(stringToSign.getBytes(StandardCharsets.UTF_8), "HmacSHA256"));
+        byte[] signData = mac.doFinal(new byte[]{});
+        return new String(Base64.encodeBase64(signData));
+    }
+
     /**
      * Lark robot response.
      */
diff --git a/threadpool/message/src/main/resources/message/robot/dynamic-thread-pool/lark-alarm.json b/threadpool/message/src/main/resources/message/robot/dynamic-thread-pool/lark-alarm.json
index 2bc88c3a..0a285fea 100644
--- a/threadpool/message/src/main/resources/message/robot/dynamic-thread-pool/lark-alarm.json
+++ b/threadpool/message/src/main/resources/message/robot/dynamic-thread-pool/lark-alarm.json
@@ -1,5 +1,7 @@
 {
   "msg_type": "interactive",
+  "timestamp":"%s",
+  "sign": "%s",
   "card": {
     "config": {
       "wide_screen_mode": true