litecharms/components
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 114 Wiki Activity

Implemented separate signature validator

Browse Source
This commit is contained in:
Khwezi Mngoma
2026-06-13 15:45:59 +02:00
parent b984dab2be
commit 99c0508f6f
2 changed files with 31 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
LiteCharms.Features.MidrandBooks/LiteCharms.Features.MidrandBooks.csproj
+1
View File
@@ -148,6 +148,7 @@
<!-- Shared Usings -->
<ItemGroup>
<Using Include="Microsoft.AspNetCore.Http" />
<Using Include="System.Net.Sockets" />
<Using Include="System.Text.RegularExpressions" />
<Using Include="System.Web" />
LiteCharms.Features.MidrandBooks/Payments/PayfastService.cs
+30
View File
@@ -3,6 +3,7 @@ using LiteCharms.Features.Api.Configuration;
using LiteCharms.Features.Hasher;
using LiteCharms.Features.MidrandBooks.Payments.Models;
using LiteCharms.Features.MidrandBooks.Postgres;
using Microsoft.AspNetCore.Http;
namespace LiteCharms.Features.MidrandBooks.Payments;
@@ -48,6 +49,35 @@ public sealed partial class PayfastService(IDbContextFactory<MidrandBooksDbConte
}
}
public static bool VerifyIncomingSignature(HttpRequest request, string passphrase)
{
var formFields = request.Form.ToDictionary(x => x.Key, x => x.Value.ToString());
if (!formFields.TryGetValue("signature", out string? incomingSignature))
return false;
var stringBuilder = new StringBuilder();
foreach (var key in formFields.Keys)
{
if (key.Equals("signature", StringComparison.OrdinalIgnoreCase))
continue;
string encodedVal = HttpUtility.UrlEncode(formFields[key].Trim());
string cleanVal = PercentEncodingRegex.Replace(encodedVal, m => m.Value.ToUpperInvariant());
stringBuilder.Append($"{key}={cleanVal}&");
}
string encodedPassphrase = HttpUtility.UrlEncode(passphrase.Trim());
string safePassphrase = PercentEncodingRegex.Replace(encodedPassphrase, m => m.Value.ToUpperInvariant());
stringBuilder.Append($"passphrase={safePassphrase}");
string generatedSignature = HashService.ToMd5Hash(stringBuilder.ToString()).Value;
return incomingSignature.Equals(generatedSignature, StringComparison.OrdinalIgnoreCase);
}
public async ValueTask<Result<bool>> ValidateReferrerIpAsync(string remoteIpAddress, bool allowLoopback = false, CancellationToken cancellationToken = default)
{
if(payfastOptions.Value?.ValidHosts?.Length == 0)