目前着手一个appxi项目,没想到app支付这么多的坑,微信支付文档没有提到,我来归纳一下吧
一:流程
1、首先你得在微信开放平台注册个开发者账号,这个注册流程我就不说了,跟着提示一步一步来
2、账号注册完了,在管理中心-移动应用,创建你自己的app应用,这里提交审核要蛮久的,大约7个工作日。
3、接下来就是开通微信支付,这个认证好像要300块钱,提交一系列的资料等待审核
4、在你的微信商户平台开通一下app支付,这个很重要,之前很多流程都做完,但这步没开通,差点被整疯了
这步有个提交什么应用市场下载链接(有就填,没有就不填)
5.若已经开通了app支付,你还得去开放平台,去把mch_id绑定到你的开放平台的appid
6、接下来差不多可以着手开发了,我上传的代码基本上不用改动,唯一需要变的就是appid(开放平台的),key(微信商户平台密钥),mch_id(绑定appid的账号),若一直提示签名错误,不用看代码,本人已亲测多次,代码没问题,就是这三个参数。有可能哪里没有开通到,或者那个参数错误了。
二、代码
class WxPay {
/*
配置参数
*/
private $config = array(
'appid' => "", //"wxee4a793fcd538fb5", /*微信开放平台上的应用id*/
'mch_id' => "", //"1520195961", /*微信申请成功之后邮件中的商户id*/
'api_key' => "" /* 在微信商户平台上自己设定的api密钥 32位 */
);
//获取预支付订单
public function getPrePayOrder($body, $out_trade_no, $total_fee, $notify_url, $attach) {
$url = "https://api.mch.weixin.qq.com/pay/unifiedorder";
$onoce_str = $this->getRandChar(32);
$data["appid"] = $this->config["appid"];
$data["body"] = $body;
$data["mch_id"] = $this->config['mch_id'];
$data["nonce_str"] = $onoce_str;
$data["notify_url"] = $notify_url;
$data["out_trade_no"] = $out_trade_no;
$data["spbill_create_ip"] = $this->get_client_ip();
$data["total_fee"] = $total_fee;
$data["trade_type"] = "APP";
$data['attach'] = $attach;
// print_r($data);
$s = $this->getSign($data, false);
$data["sign"] = $s;
// var_dump($s);
$xml = $this->arrayToXml($data);
$response = $this->postXmlCurl($xml, $url);
//将微信返回的结果xml转成数组
// return $this->xmlstr_to_array($response);
return $this->xmlToArray($response);
}
//执行第二次签名,才能返回给客户端使用
public function getOrder($prepayId) {
$data["appid"] = $this->config["appid"];
$data["noncestr"] = $this->getRandChar(32);
;
$data["package"] = "Sign=WXPay";
$data["partnerid"] = $this->config['mch_id'];
$data["prepayid"] = $prepayId;
$data["timestamp"] = time();
$s = $this->getSign($data, false);
$data["sign"] = $s;
return $data;
}
/*
生成签名
*/
function getSign($Obj) {
foreach ($Obj as $k => $v) {
$Parameters[strtolower($k)] = $v;
}
//签名步骤一:按字典序排序参数
ksort($Parameters);
$String = $this->formatBizQueryParaMap($Parameters, false);
// echo "【string】 =" . $String . "</br>";
//签名步骤二:在string后加入KEY
$String = $String . "&key=" . $this->config['api_key'];
// echo $String;
//签名步骤三:MD5加密
$result_ = strtoupper(md5($String));
return $result_;
}
//获取指定长度的随机字符串
function getRandChar($length) {
$str = null;
$strPol = "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789abcdefghijklmnopqrstuvwxyz";
$max = strlen($strPol) - 1;
for ($i = 0; $i < $length; $i++) {
$str .= $strPol[rand(0, $max)]; //rand($min,$max)生成介于min和max两个数之间的一个随机整数
}
return $str;
}
//数组转xml
function arrayToXml($arr) {
$xml = "<xml>";
foreach ($arr as $key => $val) {
if (is_numeric($val)) {
$xml .= "<" . $key . ">" . $val . "</" . $key . ">";
} else
$xml .= "<" . $key . "><![CDATA[" . $val . "]]></" . $key . ">";
}
$xml .= "</xml>";
return $xml;
}
//post https请求,CURLOPT_POSTFIELDS xml格式
function postXmlCurl($xml, $url, $second = 30) {
//初始化curl
$ch = curl_init();
//超时时间
curl_setopt($ch, CURLOPT_TIMEOUT, $second);
//这里设置代理,如果有的话
//curl_setopt($ch,CURLOPT_PROXY, '8.8.8.8');
//curl_setopt($ch,CURLOPT_PROXYPORT, 8080);
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE);
//设置header
curl_setopt($ch, CURLOPT_HEADER, FALSE);
//要求结果为字符串且输出到屏幕上
curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE);
//post提交方式
curl_setopt($ch, CURLOPT_POST, TRUE);
curl_setopt($ch, CURLOPT_POSTFIELDS, $xml);
//运行curl
$data = curl_exec($ch);
//返回结果
if ($data) {
curl_close($ch);
return $data;
} else {
$error = curl_errno($ch);
echo "curl出错,错误码:$error" . "<br>";
echo "<a href='http://curl.haxx.se/libcurl/c/libcurl-errors.html'>错误原因查询</a></br>";
curl_close($ch);
return false;
}
}
/*
获取当前服务器的IP
*/
function get_client_ip() {
if ($_SERVER['REMOTE_ADDR']) {
$cip = $_SERVER['REMOTE_ADDR'];
} elseif (getenv("REMOTE_ADDR")) {
$cip = getenv("REMOTE_ADDR");
} elseif (getenv("HTTP_CLIENT_IP")) {
$cip = getenv("HTTP_CLIENT_IP");
} else {
$cip = "unknown";
}
return $cip;
}
//将数组转成uri字符串
function formatBizQueryParaMap($paraMap, $urlencode) {
$buff = "";
ksort($paraMap);
foreach ($paraMap as $k => $v) {
if ($urlencode) {
$v = urlencode($v);
}
$buff .= strtolower($k) . "=" . $v . "&";
}
$reqPar;
if (strlen($buff) > 0) {
$reqPar = substr($buff, 0, strlen($buff) - 1);
}
return $reqPar;
}
/*
xml转成数组
*/
// function xmlstr_to_array($xmlstr) {
// $doc = new DOMDocument();
// $doc->loadXML($xmlstr);
// return $this->domnode_to_array($doc->documentElement);
// }
function xmlToArray($xml) {
//禁止引用外部xml实体
libxml_disable_entity_loader(true);
$xmlstring = simplexml_load_string($xml, 'SimpleXMLElement', LIBXML_NOCDATA);
$val = json_decode(json_encode($xmlstring), true);
return $val;
}
function domnode_to_array($node) {
$output = array();
switch ($node->nodeType) {
case XML_CDATA_SECTION_NODE:
case XML_TEXT_NODE:
$output = trim($node->textContent);
break;
case XML_ELEMENT_NODE:
for ($i = 0, $m = $node->childNodes->length; $i < $m; $i++) {
$child = $node->childNodes->item($i);
$v = $this->domnode_to_array($child);
if (isset($child->tagName)) {
$t = $child->tagName;
if (!isset($output[$t])) {
$output[$t] = array();
}
$output[$t][] = $v;
} elseif ($v) {
$output = (string) $v;
}
}
if (is_array($output)) {
if ($node->attributes->length) {
$a = array();
foreach ($node->attributes as $attrName => $attrNode) {
$a[$attrName] = (string) $attrNode->value;
}
$output['@attributes'] = $a;
}
foreach ($output as $t => $v) {
if (is_array($v) && count($v) == 1 && $t != '@attributes') {
$output[$t] = $v[0];
}
}
}
break;
}
return $output;
}
这里还要个二次签名
$out_trade_no = $this->order_no();
$data['order_no'] = $out_trade_no;
$data['createat'] = time();
$data['type'] = 1;
$data['pay_type'] = 1;
$data['uid'] = $uid;
$data['body'] = $body;
$res = db('order')->insert($data);
if ($res) {
Db::commit();
$notify_url = "http://www.quxiangyuntui.com/public/api.php/api/User/notify";
$wx = new WxPay();
$price = $price * 100;
$order = $wx->getPrePayOrder($body, $out_trade_no, $price, $notify_url, $attach);
if ($order['prepay_id']) {//判断返回参数中是否有prepay_id
$order1 = $wx->getOrder($order['prepay_id']); //执行二次签名返回参数
$appid = $order1['appid'];
$noncestr = $order1['noncestr'];
$package = $order1['package'];
$partnerid = $order1['partnerid'];
$prepayid = $order1['prepayid'];
$timestamp = $order1['timestamp'];
$sign = $order1['sign'];
echo '{"code":202,"appid":"' . $appid . '","noncestr":"' . $noncestr . '","package":"' . $package . '","partnerid":"' . $partnerid . '","prepayid":"' . $prepayid . '","timestamp":"' . $timestamp . '","sign":"' . $sign . '"}';
} else {
echo json_encode(array('code' => 3004, 'msg' => '服务器内部错误!'));
exit();
}
} else {
echo json_encode(array('code' => 3004, 'msg' => '服务器内部错误!'));
exit();
}
友情提示一下:若前端那边说提示什么-1的错误,让他把app包卸载了,清一下缓存就ok,如果你能获得二次签名,说明你这边前期已经结束,向微信客户端发送请求已经完结,你唯一要做的就是在回调中处理业务逻辑。其他的都是前端那边错误!