"comments resolved"

mahmishr · mahmishr · commit 282cbe097bd6 · 2025-03-07T10:36:00.000+05:30
diff --git a/lib/Api/PaymentsApi.php b/lib/Api/PaymentsApi.php
@@ -306,7 +306,7 @@ public function createPaymentWithHttpInfo($createPaymentRequest)
                 $httpBody = MLEUtility::encryptRequestPayload($this->apiClient->merchantConfig, $httpBody);
             } catch (Exception $e) {
                 self::$logger->error("Failed to encrypt request body:  $e");
-                throw new ApiException("Failed to encrypt request body : " + $e->getMessage());
+                throw new ApiException("Failed to encrypt request body : " . $e->getMessage());
             }
         }
 
diff --git a/lib/Authentication/Util/Cache.php b/lib/Authentication/Util/Cache.php
@@ -19,9 +19,7 @@ public function updateCache($filePath, $merchantConfig)
         $fileName = basename($filePath);
         $fileModTime = filemtime($filePath);
         $keyPass = $merchantConfig->getKeyPassword();
-        if (empty($keyPass)) {
-            $keyPass = $merchantConfig->getMerchantID();
-        }
+        $cacheKey = $fileName . '_' . "jwt";
 
         $certStore = file_get_contents($filePath);
         $privateKey = null;
@@ -30,14 +28,17 @@ public function updateCache($filePath, $merchantConfig)
 
         if (openssl_pkcs12_read($certStore, $certs, $keyPass)) {
             $privateKey = $certs['pkey'];
-            $publicKey = $this->PemToDer($certs['cert']);
+            if (!empty($merchantConfig->getKeyAlias())) {
+            $publicKey = Utility::findCertByAlias($certs, $merchantConfig->getKeyAlias());
+            } else {
+            $publicKey = $certs['cert'];
+            }
+            $publicKey = $this->PemToDer($publicKey);
         }
 
-        if (!empty($merchantConfig->getMleKeyAlias())) {
-            $mleCert = Utility::findCertByAlias($certs, $merchantConfig->getMleKeyAlias());
-        }
+        $mleCert = Utility::findCertByAlias($certs, $merchantConfig->getMleKeyAlias());
 
-        self::$file_cache[$fileName] = [
+        self::$file_cache[$cacheKey] = [
             'private_key' => $privateKey,
             'publicKey' => $publicKey,
             'file_mod_time' => $fileModTime,
@@ -51,11 +52,13 @@ public function grabFileFromP12($merchantConfig)
 
         $fileName = basename($filePath);
         $fileModTime = filemtime($filePath);
+        $cacheKey = $fileName . '_' . "jwt";
 
-        if (!isset(self::$file_cache[$fileName]) || self::$file_cache[$fileName]['file_mod_time'] !== $fileModTime) {
+        if (!isset(self::$file_cache[$cacheKey]) || self::$file_cache[$cacheKey]['file_mod_time'] !== $fileModTime) {
             $this->updateCache($filePath, $merchantConfig);
         }
-        return $this->file_cache[$fileName];
+
+        return self::$file_cache[$cacheKey];
     }
 
     private function getFilePath($merchantConfig)
@@ -87,16 +90,17 @@ public function grabKeyFromPEM($filePath)
     {
         $fileName = basename($filePath);
         $fileModTime = filemtime($filePath);
+        $cacheKey = $fileName . '_' . "jwe";
 
-        if (!isset(self::$file_cache[$fileName]) || self::$file_cache[$fileName]['file_mod_time'] !== $fileModTime) {
+        if (!isset(self::$file_cache[$cacheKey]) || self::$file_cache[$cacheKey]['file_mod_time'] !== $fileModTime) {
             $privateKeyFromPEMFile = self::loadKeyFromPEMFile($filePath);
-            self::$file_cache[$fileName] = [
+            self::$file_cache[$cacheKey] = [
                 'private_key' => $privateKeyFromPEMFile,
                 'file_mod_time' => $fileModTime,
             ];
         }
 
-        return self::$file_cache[$fileName]['private_key'];
+        return self::$file_cache[$cacheKey]['private_key'];
     }
 
     private function PemToDer($Pem)
diff --git a/lib/Authentication/Util/MLEUtility.php b/lib/Authentication/Util/MLEUtility.php
@@ -4,7 +4,7 @@
 
 use Cybersource\GlobalParameter;
 use CyberSource\Authentication\Util\Cache as Cache;
-use CyberSource\Logging\LogFactory as LogFactory;
+use \CyberSource\Logging\LogFactory as LogFactory;
 use CyberSource\Logging\LogConfiguration;
 use Jose\Component\Core\JWK;
 use Jose\Component\Core\AlgorithmManager;
@@ -23,7 +23,7 @@
 
 class MLEUtility
 {
-    private $logger = null;
+    private static $logger = null;
 
     private static $cache = null;
 
@@ -50,30 +50,30 @@ public static function checkIsMLEForAPI($merchantConfig, $isMLESupportedByCybsFo
 
     public static function encryptRequestPayload($merchantConfig, $requestBody)
     {
-        $logger = (new LogFactory())->getLogger(\CyberSource\Utilities\Helpers\ClassHelper::getClassName(get_class()), $merchantConfig->getLogConfiguration());
-
-        $mleCert = self::getMLECert($merchantConfig, $logger);
+        if (self::$logger === null) {
+            self::$logger = (new LogFactory())->getLogger(\CyberSource\Utilities\Helpers\ClassHelper::getClassName(get_class()), $merchantConfig->getLogConfiguration());
+        }
+        $mleCert = self::getMLECert($merchantConfig);
 
         if ($merchantConfig->getLogConfiguration()->isMaskingEnabled()) {
             $printRequestBody = \CyberSource\Utilities\Helpers\DataMasker::maskData($requestBody);
         } else {
             $printRequestBody = $requestBody;
         }
 
-        $logger->debug("Request before MLE:\n" . print_r($printRequestBody, true));
+        self::$logger->debug("Request before MLE:\n" . print_r($printRequestBody, true));
 
-        $jweToken = self::generateToken($mleCert, $requestBody, $logger);
+        $jweToken = self::generateToken($mleCert, $requestBody);
         $mleRequest = json_encode(['encryptedRequest' => $jweToken]);
 
-        $logger->debug("Request after MLE:\n" . print_r($mleRequest, true));
-        // self::$logger->close();
+        self::$logger->debug("Request after MLE:\n" . print_r($mleRequest, true));
         return $mleRequest;
     }
 
-    private static function generateToken($cert, $requestBody, $logger)
+    private static function generateToken($cert, $requestBody)
     {
         try {
-            $serialNumber = self::extractSerialNumber($cert, $logger);
+            $serialNumber = self::extractSerialNumber($cert);
 
             $publicKey = openssl_pkey_get_details(openssl_pkey_get_public($cert))['key'];
 
@@ -114,12 +114,12 @@ private static function generateToken($cert, $requestBody, $logger)
             $serializer = new CompactSerializer();
             return $serializer->serialize($jwe);
         } catch (\Exception $e) {
-            $logger->error("Error encrypting request payload: " . $e->getMessage());
+            self::$logger->error("Error encrypting request payload: " . $e->getMessage());
             throw new MLEException("Error encrypting request payload: " . $e->getMessage());
         }
     }
 
-    public static function getMLECert($merchantConfig, $logger)
+    public static function getMLECert($merchantConfig)
     {
         try {
             if (!isset(self::$cache)) {
@@ -131,18 +131,19 @@ public static function getMLECert($merchantConfig, $logger)
             $x509Cert = $fileCache['mle_cert'];
 
             if ($x509Cert) {
-                self::validateCertificateExpiry($x509Cert, $merchantConfig->getMleKeyAlias(), $logger);
+                self::validateCertificateExpiry($x509Cert, $merchantConfig->getMleKeyAlias());
+                // throw new MLEException("Certificate with MLE alias $keyAlias is expired.");
                 return $x509Cert;
             } else {
-                throw new MLEException("Certificate with alias $mleKeyAlias not found.");
+                throw new MLEException("Certificate with alias " . $merchantConfig->getMleKeyAlias() . " not found");
             }
         } catch (\Exception $e) {
-            $logger->error("Error fetching MLE certificate: " . $e->getMessage());
+            self::$logger->error("Error fetching MLE certificate: " . $e->getMessage());
             throw new MLEException("Error fetching MLE certificate: " . $e->getMessage());
         }
     }
 
-    public static function extractSerialNumber($cert, $logger)
+    public static function extractSerialNumber($cert)
     {
         try {
             $certDetails = openssl_x509_parse($cert);
@@ -153,42 +154,41 @@ public static function extractSerialNumber($cert, $logger)
             }
 
             if ($serialNumber === null) {
-                $logger->warning("Serial number not found in MLE certificate for alias.");
-                // this will be in hexdec is it fine?
+                self::$logger->warning("Serial number not found in MLE certificate for alias.");
                 $serialNumber = $certDetails['serialNumber'];
             }
             return $serialNumber;
         } catch (\Exception $e) {
-            $logger->error("Error extracting serial number from certificate: " . $e->getMessage());
+            self::$logger->error("Error extracting serial number from certificate: " . $e->getMessage());
             throw new MLEException("Error extracting serial number from certificate: " . $e->getMessage());
         }
     }
 
-    public static function validateCertificateExpiry($certificate, $keyAlias, $logger)
+    public static function validateCertificateExpiry($certificate, $keyAlias)
     {
         try {
             $certDetails = openssl_x509_parse($certificate);
             $notValidAfter = isset($certDetails['validTo_time_t']) ? $certDetails['validTo_time_t'] : null;
 
             if ($notValidAfter === null) {
-                $logger->warning("Certificate with MLE alias $keyAlias does not have a valid expiry date.");
-                throw new MLEException("Certificate with MLE alias $keyAlias does not have a valid expiry date.");
+                self::$logger->warning("Certificate with MLE alias $keyAlias does not have a valid expiry date.");
             }
 
             if ($notValidAfter < time()) {
-                $logger->warning("Certificate with MLE alias $keyAlias is expired as of " . date('Y-m-d H:i:s', $notValidAfter) . ". Please update p12 file.");
-                // throw new MLEException("Certificate with MLE alias $keyAlias is expired.");    
+                self::$logger->warning("Certificate with MLE alias $keyAlias is expired as of " . date('Y-m-d H:i:s', $notValidAfter) . ". Please update p12 file.");
+                // throw new MLEException("Certificate with MLE alias $keyAlias is expired.");
             } else {
                 $timeToExpire = $notValidAfter - time();
                 $warningPeriod = GlobalLabelParameters::CERTIFICATE_EXPIRY_DATE_WARNING_DAYS * 24 * 60 * 60;
 
                 if ($timeToExpire < $warningPeriod) {
-                    $logger->warning("Certificate for MLE with alias $keyAlias is going to expire on " . date('Y-m-d H:i:s', $notValidAfter) . ". Please update p12 file before that.");
+                    self::$logger->warning("Certificate for MLE with alias $keyAlias is going to expire on " . date('Y-m-d H:i:s', $notValidAfter) . ". Please update p12 file before that.");
                 }
             }
         } catch (\Exception $e) {
-            $logger->error("Error while checking certificate expiry: " . $e->getMessage());
-        }
+            self::$logger->error("Error validating certificate expiry: " . $e->getMessage());
+            // throw new MLEException("Error validating certificate expiry: " . $e->getMessage());
+        } 
     }
 }
 ?>

Original file line number	Diff line number	Diff line change
`@@ -306,7 +306,7 @@ public function createPaymentWithHttpInfo($createPaymentRequest)`
`306`	`306`	`$httpBody = MLEUtility::encryptRequestPayload($this->apiClient->merchantConfig, $httpBody);`
`307`	`307`	`} catch (Exception $e) {`
`308`	`308`	`self::$logger->error("Failed to encrypt request body: $e");`
`309`		`- throw new ApiException("Failed to encrypt request body : " + $e->getMessage());`
	`309`	`+ throw new ApiException("Failed to encrypt request body : " . $e->getMessage());`
`310`	`310`	`}`
`311`	`311`	`}`
`312`	`312`