I need to convert the following php code in C#:
$res = mac256($ent, $key);
$result = encodeBase64($res);
where
function encodeBase64($data)
{
$data = base64_encode($data);
return $data;
}
and
function mac256($ent,$key)
{
$res = hash_hmac('sha256', $ent, $key, true);//(PHP 5 >= 5.1.2)
return $res;
}
I use the following C# code:
byte[] res = HashHMAC(ent, key);
string result = System.Convert.ToBase64String(res);
where
public byte[] HashHMAC(string ent, byte[] key)
{
byte[] toEncryptArray =System.Text.Encoding.GetEncoding(28591).GetBytes(ent);
HMACSHA256 hash = new HMACSHA256(key);
return hash.ComputeHash(toEncryptArray);
}
The complete php source code available at this link
I also check this post hmac_sha256 in php and c# differ
and this one C# equivalent to hash_hmac in PHP
But the results are not the same.
This code should do the trick:
static byte[] hmacSHA256(String data, String key)
{
using (HMACSHA256 hmac = new HMACSHA256(Encoding.ASCII.GetBytes(key)))
{
return hmac.ComputeHash(Encoding.ASCII.GetBytes(data));
}
}
If I call this code:
Console.WriteLine(BitConverter.ToString(hmacSHA256("1234", "1234")).Replace("-", "").ToLower());
It returns:
4e4feaea959d426155a480dc07ef92f4754ee93edbe56d993d74f131497e66fb
When I run this in PHP:
echo hash_hmac('sha256', "1234", "1234", false);
It returns
4e4feaea959d426155a480dc07ef92f4754ee93edbe56d993d74f131497e66fb
I'm pretty sure that you're dealing with the new RedSys SHA256 signature implementation. Also I saw that you have some issue with the 3DES encryption between PHP and C#.
First at all you must get the base 64 string with all the payment parameters. You can achieve it with this code:
public static string GetParameters(string merchantCode, string terminal, int currency, string transactionType, decimal amount, string merchantOrder, string merchantIdentifier, string merchantPost, string urlOk, string urlKo)
{
var jsonValues = new Dictionary<string, string>
{
{ "Ds_Merchant_Amount", amount.ToString().Replace(CultureInfo.CurrentCulture.NumberFormat.NumberDecimalSeparator, "") },
{ "Ds_Merchant_Order", merchantOrder},
{ "Ds_Merchant_MerchantCode", merchantCode },
{ "Ds_Merchant_Currency", currency.ToString() },
{ "Ds_Merchant_TransactionType", transactionType },
{ "Ds_Merchant_Terminal", terminal },
{ "Ds_Merchant_Identifier", merchantIdentifier },
{ "Ds_Merchant_MerchantURL", merchantPost },
{ "Ds_Merchant_UrlOK", urlOk},
{ "Ds_Merchant_UrlKO", urlKo}
}.Select(kvp => "\"{0}\":\"{1}\"".Formato(kvp.Key.ToUpper(), kvp.Value));
var jsonString = "{" + string.Join(",", jsonValues) + "}";
return Convert.ToBase64String(ASCIIEncoding.ASCII.GetBytes(jsonString));
}
Once you have the JSON string in base 64, you must apply 3DES to merchant order parameter with the key provided by RedSys:
public static string GetTransactionEncryptionKey(string merchantOrder, string encryptKey)
{
using (var tdes = new TripleDESCryptoServiceProvider())
{
tdes.IV = new byte[8] { 0, 0, 0, 0, 0, 0, 0, 0 };
tdes.Key = Convert.FromBase64String(encryptKey);
tdes.Padding = PaddingMode.Zeros;
tdes.Mode = CipherMode.CBC;
var toEncrypt = ASCIIEncoding.ASCII.GetBytes(merchantOrder);
var result = tdes.CreateEncryptor().TransformFinalBlock(toEncrypt, 0, toEncrypt.Length);
return Convert.ToBase64String(result);
}
}
As you can see, the encryption key provided by RedSys is base 64 string so you don't need to calculate the MD5 hash for the 3DES algorithm.
Then we go for the SHA256 signature:
public static string GetSignature(string base64Parameters, string base64tranEncryptKey)
{
using (var sha = new HMACSHA256(Convert.FromBase64String(base64tranEncryptKey)))
{
var hash = sha.ComputeHash(ASCIIEncoding.ASCII.GetBytes(base64Parameters));
return Convert.ToBase64String(hash);
}
}
Good luck!
Redsys provides libraries for php and java.
Starting from the java library, I've translated the ApiMacSha256 class to C#
public class ApiMacSha256 {
//////////////////////////////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////////////////////////////
//////////// FUNCIONES AUXILIARES: ///////////
//////////////////////////////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////////////////////////////
/** 3DES Function */
private byte[] encrypt_3DES(byte[] key, string data) {
//http://www.mywebexperiences.com/2012/12/11/crypting-data-using-3des-c/
//http://stackoverflow.com/a/33479952/2938518
using (var tdes = new TripleDESCryptoServiceProvider()) {
tdes.IV = new byte[8] { 0, 0, 0, 0, 0, 0, 0, 0 };
tdes.Key = key;
tdes.Padding = PaddingMode.Zeros;
tdes.Mode = CipherMode.CBC;
var toEncrypt = Encoding.ASCII.GetBytes(data);
var result = tdes.CreateEncryptor().TransformFinalBlock(toEncrypt, 0, toEncrypt.Length);
return result;
}
}
/** MAC Function */
private byte[] mac256(string dsMerchantParameters, byte[] secretKo) {
//http://stackoverflow.com/a/17315619/2938518
byte[] hash;
using (var hmac = new HMACSHA256(secretKo)) {
hash = hmac.ComputeHash(Encoding.ASCII.GetBytes(dsMerchantParameters));
}
return hash;
}
/** Base64 Functions */
private string encodeB64String(byte[] data) {
return Convert.ToBase64String(data, Base64FormattingOptions.None);
}
//////////////////////////////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////////////////////////////
//////////// FUNCIONES PARA LA GENERACIÓN DEL FORMULARIO DE PAGO: ////////////
//////////////////////////////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////////////////////////////
public String createMerchantSignature(string merchantParamsB64, string claveComercio, string OrderId) {
byte[] clave = Convert.FromBase64String(claveComercio);
byte[] secretKo = encrypt_3DES(clave, OrderId);
// Se hace el MAC con la clave de la operación "Ko" y se codifica en BASE64
byte[] hash = mac256(merchantParamsB64, secretKo);
String res = encodeB64String(hash);
return res;
}
}
The main method 'createMerchantSignature', requires a string encoded in base64 of the merchant params embeded in a json structure, the secret key of the merchant and the OrderId.
{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://img.manongdao.com/sparkler-677774__340.jpg', '推荐 聊天终结者 的文章《PHP and C# HMAC SHA256》','https://www.manongdao.com/article-419456.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}