回调说明
当合作商的订单证书已签发,合作商下单的 notify_url(重签名如果重新传了此参数,会覆盖) 将
会收到如下来自 我们 服务器的请求:
- 合作商在处理成功时应该返回
200的状态码,否则将在 48 小时内每 5 分钟通知一次。 - 为方便与自建系统订单关联,建议
notify_url的路径中带上订单号。
温馨提示
在您本机研发过程中,您大概率无法收到我们的回调请求,因为我们在公网无法访问您本机启动的内网地址。您可以使用 ngrok、cloudflare tunnel 等工具来穿透您本机的内网地址,从而让我们可以访问到您本机的回调地址。
温馨提示
在开发对接及测试过程中,当您不确定我们回调过来的参数时,您可以使用 Webhook.site 来捕获我们的请求。
请求与响应
- 证书签发通知
- DCV信息通知
- 成功时,我们要求您返回的响应
- 失败时,您需要做出的响应(示例)
Content-Length: 587
Content-Type: application/json
{
"accessKeyId": "Trr1955DTkVVOBGE",
"service_id": "o91bZ",
"status": "issued", // 状态有 issued, dcv_generated, refunded
"keytype": "rsa",
"issued_cert": "-----BEGIN CERTIFICATE-----MIIGXzCCBEegAwIm3...-----END CERTIFICATE-----", // 证书,不完整,不包含证书链
"issuer_cert": "-----BEGIN CERTIFICATE-----MIIGXzCCBEegAwIm3...-----END CERTIFICATE-----", // 签发者证书(证书链)
"not_before": "2019-09-08 00:00:00.000000",
"not_after": "2019-12-07 23:59:59.000000",
"cert_x509_info": {
"name": "/CN=*.example.com",
"subject": {
"CN": "*.example.com"
},
"hash": "464e2b66",
"issuer": {
"C": "GB",
"ST": "XX",
"L": "LOCALE",
"O": "Comodo CA Limited.",
"CN": "Comodo EV CA(RSA)"
},
"version": 2,
"serialNumber": "318998335977003061451836453384575312644",
"serialNumberHex": "EFFCD8415335EB17BA6D9831E714E304",
"validFrom": "190908000000Z",
"validTo": "191207235959Z",
"validFrom_time_t": "1567900800",
"validTo_time_t": "1575763199",
"signatureTypeSN": "RSA-SHA256",
"signatureTypeLN": "sha256WithRSAEncryption",
"signatureTypeNID": 668,
"purposes": {
"1": ["1", "0", "sslclient"],
"2": ["1", "0", "sslserver"],
"3": ["1", "0", "nssslserver"],
"4": ["0", "0", "smimesign"],
"5": ["0", "0", "smimeencrypt"],
"6": ["0", "0", "crlsign"],
"7": ["1", "1", "any"],
"8": ["1", "0", "ocsphelper"],
"9": ["0", "0", "timestampsign"]
}
},
"nonce": "5d75400c79d89",
"timestamp": "2019-09-09T01:53:16Z",
"sign": "vmun1yvlYG50syrD2eswj/Ol0DxmnALICNTKJwFamCk="
}
Content-Length: 587
Content-Type: application/json
{
"accessKeyId": "Trr1955DTkVVOBGE",
"service_id": "o91bZ",
"status": "dcv_generated", // 状态有 issued, dcv_generated, refunded
"dcv": {
"1.domain.com": {
"type": "dns",
"subdomain": "1",
"topleveldomain": "domain.com",
"status": "pending",
"dns": {
"type": "TXT",
"hostname": "_dcv",
"fullname": "_dcv.domain.com",
"value": "_02xx0420371417qqwxyww0tgvhq3h0ogam7zzjsixr42fa4w77r18b2de"
},
"http": {
"filename": "dcv.txt",
"filecontent": "_22xx0420371417qqwxyww0tgvhq3h0ogam7zzjsixr42fa4w77r18b2de",
"filepath": ".well-known/pki-validation/",
"filefullpath": ".well-known/pki-validation/dcv.txt",
"url": "http:\/\/1.domain.com/.well-known/pki-validation/dcv.txt"
},
"https": {
"filename": "dcv.txt",
"filecontent": "_22xx0420371417qqwxyww0tgvhq3h0ogam7zzjsixr42fa4w77r18b2de",
"filepath": ".well-known/pki-validation/",
"filefullpath": ".well-known/pki-validation/dcv.txt",
"url": "https:\/\/1.domain.com/.well-known/pki-validation/dcv.txt"
}
},
"*.2.domain.com": {
"type": "dns",
"subdomain": "*.2",
"topleveldomain": "domain.com",
"status": "pending",
"dns": {
"type": "TXT",
"hostname": "_dcv",
"fullname": "_dcv.domain.com",
"value": "_02xx0420371417qqwxyww0tgvhq3h0ogam7zzjsixr42fa4w77r18b2de"
}
}
},
"nonce": "5d75400c79d89",
"timestamp": "2019-09-09T01:53:16Z",
"sign": "vmun1yvlYG50syrD2eswj/Ol0DxmnALICNTKJwFamCk="
}
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 26
{
"success": true,
"message": "OK"
}
当您服务器处理成功后,应该返回 200 的状态码+此结构
HTTP/1.1 500 Server Internal Error
{
"success": false,
"message": "服务器内部错误"
}
HTTP/1.1 404 Not Found
{
"success": false,
"message": "未找到此订单"
}
当您服务器处理失败,应该返回 40x、50x 的状态码+此结构。当我们尝试回调,您的服务器返回错误时,我们会在 12 小时内每 5 分钟通知一次,直到成功为止。