如何使用Skadnetwork / Apple验证回发

我正在使用 NodeJS，它非常简单。我拿了 Apple 的公钥并用 -----BEGIN PUBLIC KEY-----\n 和 \n-----END PUBLIC KEY----- 包裹它。

-----BEGIN PUBLIC KEY-----
<APPLE_PUBLIC_KEY_BASE_64 (copy paste from Apple's guide)>
-----END PUBLIC KEY-----

或者你可以使用 NodeJs 加密模块来加载公钥：

const key = Buffer.from(`<APPLE_PUBLIC_KEY_BASE_64 (copy paste from Apple's guide)>`,'base64');
const publicKey = crypto.createPublicKey({
  key,format: 'der',type: 'spki',});

然后我用 \u2063 分隔符连接验证所需的回发部分。

// ad network version 2.0/2.1
const message = [
  version,adNetworkId,campaignId,appId,transactionId,redownload,].join('\u2063');

然后我使用 NodeJS 加密模块来验证签名：

const verify = crypto.createVerify('sha256');
verify.update(message);
verify.verify(publicKey,signature,'base64'); // this returns a boolean

这可以通过来自 Singular-SKAdNetwork-App 的 here ECDSA 包装类以类似的方式完成

SEPERATOR = u"\u2063"

postback = {
    "version": "2.1","ad-network-id": "com.example","campaign-id": 42,"transaction-id": "6aafb7a5-0170-41b5-bbe4-fe71dedf1e28","app-id": 525463029,"attribution-signature": "MEUCID6rbq3qt4GvFaAaynh5/LAcvn1d8CQTRhrZhLIxLKntAiEAo7IrvoMw6u2qDg6Tr5vIsEHXjlLkPlCOL0ojJcEh3Qw=","redownload": True,"source-app-id": 1234567891,"conversion-value": 20
}

pub_key = """
-----BEGIN PUBLIC KEY-----
MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEWdp8GPcGqmhgzEFj9Z2nSpQVddayaPe4FMzqM9wib1+aHaaIzoHoLN9zW4K8y4SPykE3YVK3sVqW6Af0lfx3gg==
-----END PUBLIC KEY-----
"""

message = (
    postback["version"]
    + SEPERATOR
    + postback["ad-network-id"]
    + SEPERATOR
    + str(postback["campaign-id "])
    + SEPERATOR
    + str(postback["app-id "])
    + SEPERATOR
    + postback["transaction-id"]
    + SEPERATOR
    + str(postback["redownload"]).lower()
    + SEPERATOR
    + str(postback["source-app-id"])
)

ecdsa = ECDSA(pub_key)
signature = postback["attribution-signature"]
ecdsa.verify(message,signature) # this returns a boolean

我希望这会有所帮助。我对 PHP 没有任何经验：/