SMSSDK驗證碼服務端校驗介面
SMSSDK驗證碼服務端校驗介面
一、前言
有些時候開發者需要驗證服務託管自己的伺服器(開發者伺服器擁有校驗驗證碼的功能),然後可以更好處理自己的業務邏輯。因此,Mob平臺提供了此介面實現上述需求,供開發者使用。
此介面支持
SMSSDK2.0.0以上版本(包括2.0.0)。
二、摘要
本介面屬於SMSSDK簡訊平臺的開放驗證服務,不提供簡訊發送服務,主要是承擔驗證APP 使用SMSSDK發送的簡訊驗證碼,使用該介面來驗證驗證碼是否正常。
簡單梳理了一下流程,在沒有簡訊服務端驗證介面的時候,我的伺服器需要知道用戶是否驗證成功是這樣走的
引入了服務端驗證介面我們可以這樣走,本介面開放了第五步動作
三、介面使用
第一步:開通服務端驗證開關
免費簡訊驗證碼SDK/應用管理/簡訊設置 , 把服務端驗證介面開關開啟
第二步:請求介面驗證簡訊
請求地址為:https://webapi.sms.mob.com/sms/verify
請求方式: POST
請求參數
返回結果
{status:200}
測試腳本
curl -d appkey=xxxx&phone=132****8362&zone=86&code=xxxx https://webapi.sms.mob.com/sms/verify
四、樣例代碼
phper 請看
<?php // 配置項$api = 介面地址(例:https://webapi.sms.mob.com);$appkey = 您的appkey; // 發送驗證碼$response = postRequest( $api . /sms/verify, array( appkey => $appkey, phone => 152xxxx4345, zone => 86, code => 1234,) ); /** * 發起一個post請求到指定介面 * * @param string $api 請求的介面 * @param array $params post參數 * @param int $timeout 超時時間 * @return string 請求結果 */function postRequest( $api, array $params = array(), $timeout = 30 ) { $ch = curl_init(); curl_setopt( $ch, CURLOPT_URL, $api ); // 以返回的形式接收信息 curl_setopt( $ch, CURLOPT_RETURNTRANSFER, 1 ); // 設置為POST方式 curl_setopt( $ch, CURLOPT_POST, 1 ); curl_setopt( $ch, CURLOPT_POSTFIELDS, http_build_query( $params ) ); // 不驗證https證書 curl_setopt( $ch, CURLOPT_SSL_VERIFYPEER, 0 ); curl_setopt( $ch, CURLOPT_SSL_VERIFYHOST, 0 ); curl_setopt( $ch, CURLOPT_TIMEOUT, $timeout ); curl_setopt( $ch, CURLOPT_HTTPHEADER, array( Content-Type: application/x-www-form-urlencoded;charset=UTF-8, Accept: application/json, ) ); // 發送數據 $response = curl_exec( $ch ); // 不要忘記釋放資源 curl_close( $ch ); return $response;}
五、C#開發者請看
感謝@金雷 開發者提供
public static void ConnectSSL() { WebRequest request = WebRequest.Create("https://webapi.sms.mob.com/sms/verify"); request.Proxy = null; request.Credentials = CredentialCache.DefaultCredentials; //allows for validation of SSL certificates ServicePointManager.ServerCertificateValidationCallback += new System.Net.Security.RemoteCertificateValidationCallback(ValidateServerCertificate); byte[] bs = Encoding.UTF8.GetBytes("appkey=xxxxxxxx&phone=xxxxxxxxxx&zone=xx&code=xxxx"); request.Method = "Post"; using (Stream reqStream = request.GetRequestStream()) { reqStream.Write(bs, 0, bs.Length); } HttpWebResponse response = (HttpWebResponse)request.GetResponse(); Stream dataStream = response.GetResponseStream(); StreamReader reader = new StreamReader(dataStream); string responseFromServer = reader.ReadToEnd(); } //for testing purpose only, accept any dodgy certificate... public static bool ValidateServerCertificate(object sender, X509Certificate certificate, X509Chain chain, SslPolicyErrors sslPolicyErrors) { return true; }
六、JAVA 開發者請看
樣常式序: https://github.com/tian-github/Mob_SmsSpi
public static void main(String[] args) throws Exception { String result = requestData("https://webapi.sms.mob.com/sms/verify", "appkey=xxxx&phone=xxx&zone=xx&&code=xx"); System.out.println(result); } /** * 發起https 請求 * @param address * @param m * @return */ public static String requestData(String address ,String params){ HttpURLConnection conn = null; try { // Create a trust manager that does not validate certificate chains TrustManager[] trustAllCerts = new TrustManager[]{new X509TrustManager(){ public X509Certificate[] getAcceptedIssuers(){return null;} public void checkClientTrusted(X509Certificate[] certs, String authType){} public void checkServerTrusted(X509Certificate[] certs, String authType){} }}; // Install the all-trusting trust manager SSLContext sc = SSLContext.getInstance("TLS"); sc.init(null, trustAllCerts, new SecureRandom()); //ip host verify HostnameVerifier hv = new HostnameVerifier() { public boolean verify(String urlHostName, SSLSession session) { return urlHostName.equals(session.getPeerHost()); } }; //set ip host verify HttpsURLConnection.setDefaultHostnameVerifier(hv); HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory()); URL url = new URL(address); conn = (HttpURLConnection) url.openConnection(); conn.setRequestMethod("POST");// POST conn.setConnectTimeout(3000); conn.setReadTimeout(3000); // set params ;post params if (params!=null) { conn.setDoOutput(true); DataOutputStream out = new DataOutputStream(conn.getOutputStream()); out.write(params.getBytes(Charset.forName("UTF-8"))); out.flush(); out.close(); } conn.connect(); //get result if (conn.getResponseCode() == HttpURLConnection.HTTP_OK) { String result = parsRtn(conn.getInputStream()); return result; } else { System.out.println(conn.getResponseCode() + " "+ conn.getResponseMessage()); } } catch (Exception e) { e.printStackTrace(); } finally { if (conn != null) conn.disconnect(); } return null; }
七、python 開發者請看
感謝@jimidata 開發者提供,謝謝支持
樣常式序: https://github.com/freeznet/py_mob_sms
#!/usr/bin/env python# encoding: utf-8import requests __author__ = rui class MobSMS: def __init__(self, appkey): self.appkey = appkey self.verify_url = https://webapi.sms.mob.com/sms/verify def verify_sms_code(self, zone, phone, code, debug=False): if debug: return 200 data = {appkey: self.appkey, phone: phone, zone: zone, code: code} req = requests.post(self.verify_url, data=data, verify=False) if req.status_code == 200: j = req.json() return j.get(status, 500) return 500 if __name__ == __main__: mobsms = MobSMS(your_mob_sms_key_goes_here) print mobsms.verify_sms_code(86, 13900000000, 1234)
推薦閱讀:
