통계 암호화 로직 추가

Author: ehowlsla

bootpay/src/main/java/kr/co/bootpay/BootpayAnalytics.java

@@ -131,13 +131,13 @@ public static void login(
     }
 
 
-    public static void start() {
-        start(new ArrayList<StatItem>());
+    public static void start(String url, String page_type) {
+        start(url, page_type, new ArrayList<StatItem>());
     }
 
-    public static void start(@NonNull List<StatItem> items) {
+    public static void start(String url, String page_type, @NonNull List<StatItem> items) {
         if (presenter == null) throw new IllegalStateException("Analytics is not initialized.");
-        else presenter.call(items);
+        else presenter.call(url, page_type, items);
     }
 }
 

bootpay/src/main/java/kr/co/bootpay/BootpayWebView.kt

@@ -24,7 +24,7 @@ import java.net.URISyntaxException
 internal class BootpayWebView @JvmOverloads constructor(context: Context, attrs: AttributeSet? = null, defStyleAttr: Int = 0): WebView(context, attrs, defStyleAttr) {
 
     companion object {
-        private const val BOOTPAY = "https://inapp.bootpay.co.kr/2.0.5/production.html"
+        private const val BOOTPAY = "https://inapp.bootpay.co.kr/2.0.6/production.html"
 
         private const val ERROR = -2
 

bootpay/src/main/java/kr/co/bootpay/analytics/BootpayAnalyticsPresenter.kt

@@ -2,8 +2,12 @@ package kr.co.bootpay.analytics
 
 import android.content.Context
 import android.util.Log
+import com.google.gson.Gson
+import kr.co.bootpay.model.StatCall
 import kr.co.bootpay.model.StatItem
+import kr.co.bootpay.model.StatLogin
 import kr.co.bootpay.pref.UserInfo
+import kr.co.bootpay.secure.BootpaySimpleAES256
 import rx.Scheduler
 import rx.schedulers.Schedulers
 import java.util.concurrent.Executors
@@ -21,29 +25,53 @@ internal class BootpayAnalyticsPresenter(context: Context) {
             birth: String?,
             phone: String?,
             area: String?) {
-        rest.api.login(
+
+        val login = StatLogin(
+                "2.0.6",
                 UserInfo.bootpay_application_id,
                 id ?: "",
                 email ?: "",
                 username ?: "",
                 if (gender?.trim()?.isEmpty() != false) -1 else gender.toInt(),
                 birth ?: "",
                 phone ?:"",
-                area ?: "")
+                area ?: ""
+        )
+        val json = Gson().toJson(login)
+        val aes = BootpaySimpleAES256()
+
+
+
+        rest.api.login(
+                aes.strEncode(json),
+                aes.sessionKey)
                 .subscribeOn(executor)
                 .subscribe({
                     UserInfo.bootpay_user_id = it.data?.user_id ?: ""
                 }, Throwable::printStackTrace)
     }
 
-    fun call(items: MutableList<StatItem>) {
-        rest.api.call(
+    fun call(url: String, page_type: String, items: MutableList<StatItem>) {
+
+        val call = StatCall(
+                "2.0.6",
                 UserInfo.bootpay_application_id,
                 UserInfo.bootpay_uuid,
+                url,
+                page_type,
                 items,
                 UserInfo.bootpay_sk,
                 UserInfo.bootpay_user_id,
-                "")
+                ""
+        )
+
+        val json = Gson().toJson(call)
+        val aes = BootpaySimpleAES256()
+
+
+        rest.api.call(
+                aes.strEncode(json),
+                aes.sessionKey)
                 .subscribeOn(executor)
                 .subscribe({
                     Log.d("BootpayAnalytics", "call")

bootpay/src/main/java/kr/co/bootpay/analytics/RestApi.kt

@@ -1,6 +1,5 @@
 package kr.co.bootpay.analytics
 
-import kr.co.bootpay.model.StatItem
 import retrofit2.http.Field
 import retrofit2.http.FormUrlEncoded
 import retrofit2.http.POST
@@ -10,25 +9,35 @@ internal interface RestApi {
     @FormUrlEncoded
     @POST("/login")
     fun login(
-            @Field("application_id") applicationId: String,
-            @Field("id") userId: String,
-            @Field("email") email: String,
-            @Field("username") userName: String,
-            @Field("gender") gender: Int,
-            @Field("birth") birth: String,
-            @Field("phone") phone: String,
-            @Field("area") area: String
+            @Field("data") data: String,
+            @Field("session_key") sessionKey: String
     ): Observable<LoginResult>
+//    fun login(
+//            @Field("application_id") applicationId: String,
+//            @Field("id") userId: String,
+//            @Field("email") email: String,
+//            @Field("username") userName: String,
+//            @Field("gender") gender: Int,
+//            @Field("birth") birth: String,
+//            @Field("phone") phone: String,
+//            @Field("area") area: String
+//    ): Observable<LoginResult>
 
     @FormUrlEncoded
     @POST("/call")
     fun call(
-            @Field("application_id") applicationId: String,
-            @Field("uuid") uuid: String,
-            @Field("items") items: MutableList<StatItem>,
-            @Field("sk") sk: String,
-            @Field("user_id") userId: String,
-            @Field("referer") referer: String
+            @Field("data") data: String,
+            @Field("session_key") sessionKey: String
     ): Observable<LoginResult>
+//    fun call(
+//            @Field("application_id") applicationId: String,
+//            @Field("uuid") uuid: String,
+//            @Field("url") url: String,
+//            @Field("page_type") pageType: String,
+//            @Field("items") items: String,
+//            @Field("sk") sk: String,
+//            @Field("user_id") userId: String,
+//            @Field("referer") referer: String
+//    ): Observable<LoginResult>
 
 }

bootpay/src/main/java/kr/co/bootpay/model/StatCall.kt

@@ -0,0 +1,13 @@
+package kr.co.bootpay.model
+
+class StatCall(
+        val ver: String,
+        val application_id: String,
+        val uuid: String,
+        val url: String,
+        val page_type: String,
+        val items: List<StatItem>,
+        val sk: String,
+        val user_id: String,
+        val referer: String
+)

bootpay/src/main/java/kr/co/bootpay/model/StatLogin.kt

@@ -0,0 +1,13 @@
+package kr.co.bootpay.model
+
+class StatLogin(
+    val ver: String,
+    val application_id: String,
+    val id: String,
+    val email: String,
+    val username: String,
+    val gender: Int,
+    val birth: String,
+    val phone: String,
+    val area: String
+)

bootpay/src/main/java/kr/co/bootpay/secure/BootpaySimpleAES256.java

@@ -0,0 +1,81 @@
+package kr.co.bootpay.secure;
+
+import android.util.Base64;
+import android.util.Log;
+
+import java.security.InvalidAlgorithmParameterException;
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
+import java.security.spec.AlgorithmParameterSpec;
+import java.util.Random;
+
+import javax.crypto.BadPaddingException;
+import javax.crypto.Cipher;
+import javax.crypto.IllegalBlockSizeException;
+import javax.crypto.NoSuchPaddingException;
+import javax.crypto.spec.IvParameterSpec;
+import javax.crypto.spec.SecretKeySpec;
+
+
+public class BootpaySimpleAES256 {
+//    public static byte[] ivBytes = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 };
+
+    String key = "";
+    String iv = "";
+
+    public BootpaySimpleAES256() {
+        this.key = getRandomKey(32);
+        this.iv = getRandomKey(16);
+    }
+
+    public String getSessionKey() {
+        String baseKey = Base64.encodeToString(this.key.getBytes(), 2);
+        String baseIV = Base64.encodeToString(this.iv.getBytes(), 2);
+        return baseKey + "##" + baseIV;
+    }
+
+
+    public String strEncode(String str) throws java.io.UnsupportedEncodingException, NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeyException, InvalidAlgorithmParameterException, IllegalBlockSizeException, BadPaddingException {
+//        String key = getRandomKey(32);
+//        String iv = getRandomKey(16);
+        Log.d("aes", this.key);
+        Log.d("aes", this.iv);
+        return strEncode(str, this.key, this.iv);
+    }
+
+
+    public String strEncode(String str, String key, String iv) throws java.io.UnsupportedEncodingException, NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeyException, InvalidAlgorithmParameterException, IllegalBlockSizeException, BadPaddingException {
+
+        byte[] textBytes = str.getBytes("UTF-8");
+        AlgorithmParameterSpec ivSpec = new IvParameterSpec(iv.getBytes());
+        SecretKeySpec newKey = new SecretKeySpec(key.getBytes("UTF-8"), "AES");
+        Cipher cipher = null;
+        cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
+        cipher.init(Cipher.ENCRYPT_MODE, newKey, ivSpec);
+        return Base64.encodeToString(cipher.doFinal(textBytes), 2);
+    }
+
+
+    public String strDecode(String str, String key, String iv) throws java.io.UnsupportedEncodingException, NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeyException, InvalidAlgorithmParameterException, IllegalBlockSizeException, BadPaddingException {
+
+//        byte[] textBytes = Base64.decodeBase64(str);
+        byte[] textBytes = Base64.decode(str, Base64.NO_WRAP);
+
+        //byte[] textBytes = str.getBytes("UTF-8");
+        AlgorithmParameterSpec ivSpec = new IvParameterSpec(iv.getBytes());
+        SecretKeySpec newKey = new SecretKeySpec(key.getBytes("UTF-8"), "AES");
+        Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
+        cipher.init(Cipher.DECRYPT_MODE, newKey, ivSpec);
+        return new String(cipher.doFinal(textBytes), "UTF-8");
+    }
+
+    private static String getRandomKey(int size) {
+        String result = "";
+        String keys = "abcdefghijklmnopqrstuvwxyz1234567890ABCDEFGHIJKLMNOPQRSTUVWXYZ";
+        for(int i=0; i<size; i++) {
+            Random ran = new Random();
+            result += String.valueOf(keys.charAt(ran.nextInt(keys.length())));
+        }
+        return result;
+    }
+}

sample/src/main/java/bootpay/co/kr/samplepayment/MainActivity.java

@@ -42,14 +42,20 @@ protected void onCreate(Bundle savedInstanceState) {
                 "861014", // user 생년월일 앞자리
                 "01012345678", // user 휴대폰 번호
                 "충청"); //  서울|인천|대구|대전|광주|부산|울산|경기|강원|충청북도|충북|충청남도|충남|전라북도|전북|전라남도|전남|경상북도|경북|경상남도|경남|제주|세종 중 택 1
+
+        startTrace();
     }
 
-    public void onClick_request(View v) {
+    public void startTrace() {
+
 //        통계 - 페이지 추적
         List<StatItem> items = new ArrayList<>();
         items.add(new StatItem("마우스", "https://image.mouse.com/1234", "ITEM_CODE_MOUSE", "", "", ""));
         items.add(new StatItem("키보드", "https://image.keyboard.com/12345", "ITEM_CODE_KEYBOARD", "패션", "여성상의", "블라우스"));
-        BootpayAnalytics.start(items);
+        BootpayAnalytics.start("ItemListActivity", "item_list", items);
+    }
+
+    public void onClick_request(View v) {
 
 //        결제호출
         Bootpay.init(getFragmentManager())