java后台对接微信小程序;
第一次对接微信小程序,这里是后端的java代码,因为写这个时候是前后端分离,所以前端并没有涉及到。下边直接开始,不懂的可以留言问。mh
1.解密类
import java.security.AlgorithmParameters;
import java.security.Security;
import javax.crypto.Cipher;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import org.apache.commons.codec.binary.Base64;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.util.Arrays;
import org.slf4j.LoggerFactory;
import com.personal.front.wx.controller.UserAPIController;
public class AesCbcUtil {
public static String decrypt(String encryptedData, String sessionKey, String iv) {
org.slf4j.Logger LOGGER = LoggerFactory.getLogger(UserAPIController.class);
String result = "";
// 被加密的数据
byte[] dataByte = Base64.decodeBase64(encryptedData);
// 加密秘钥
byte[] keyByte = Base64.decodeBase64(sessionKey);
// 偏移量
byte[] ivByte = Base64.decodeBase64(iv);
try {
// 如果密钥不足16位,那么就补足. 这个if 中的内容很重要
int base = 16;
if (keyByte.length % base != 0) {
int groups = keyByte.length / base
+ (keyByte.length % base != 0 ? 1 : 0);
byte[] temp = new byte[groups * base];
Arrays.fill(temp, (byte) 0);
System.arraycopy(keyByte, 0, temp, 0, keyByte.length);
keyByte = temp;
}
// 初始化
Security.addProvider(new BouncyCastleProvider());
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS7Padding", "BC");
SecretKeySpec spec = new SecretKeySpec(keyByte, "AES");
AlgorithmParameters parameters = AlgorithmParameters
.getInstance("AES");
parameters.init(new IvParameterSpec(ivByte));
cipher.init(Cipher.DECRYPT_MODE, spec, parameters);// 初始化
byte[] resultByte = cipher.doFinal(dataByte);
if (null != resultByte && resultByte.length > 0) {
result = new String(resultByte, "UTF-8");
}
} catch (Exception e) {
LOGGER.error(e.getMessage(), e);
}
return result;
}
}
2.HttpRequest请求类
import java.io.BufferedReader;
import java.io.IOException;
import java.io.InputStreamReader;
import java.io.PrintWriter;
import java.net.URL;
import java.net.URLConnection;
import java.util.List;
import java.util.Map;
public class HttpRequest {
public static void main(String[] args) {
//发送 GET 请求
String s=HttpRequest.sendGet("http://v.qq.com/x/cover/kvehb7okfxqstmc.html?vid=e01957zem6o", "");
System.out.println(s);
// //发送 POST 请求
// String sr=HttpRequest.sendPost("http://www.toutiao.com/stream/widget/local_weather/data/?city=%E4%B8%8A%E6%B5%B7", "");
// JSONObject json = JSONObject.fromObject(sr);
// System.out.println(json.get("data"));
}
/**
* 向指定URL发送GET方法的请求
*
* @param url
* 发送请求的URL
* @param param
* 请求参数,请求参数应该是 name1=value1&name2=value2 的形式。
* @return URL 所代表远程资源的响应结果
*/
public static String sendGet(String url, String param) {
String result = "";
BufferedReader in = null;
try {
String urlNameString = url + "?" + param;
URL realUrl = new URL(urlNameString);
// 打开和URL之间的连接
URLConnection connection = realUrl.openConnection();
// 设置通用的请求属性
connection.setRequestProperty("accept", "*/*");
connection.setRequestProperty("connection", "Keep-Alive");
connection.setRequestProperty("user-agent",
"Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1;SV1)");
// 建立实际的连接
connection.connect();
// 获取所有响应头字段
Map<String, List<String>> map = connection.getHeaderFields();
// 遍历所有的响应头字段
for (String key : map.keySet()) {
System.out.println(key + "--->" + map.get(key));
}
// 定义 BufferedReader输入流来读取URL的响应
in = new BufferedReader(new InputStreamReader(
connection.getInputStream()));
String line;
while ((line = in.readLine()) != null) {
result += line;
}
} catch (Exception e) {
System.out.println("发送GET请求出现异常!" + e);
e.printStackTrace();
}
// 使用finally块来关闭输入流
finally {
try {
if (in != null) {
in.close();
}
} catch (Exception e2) {
e2.printStackTrace();
}
}
return result;
}
/**
* 向指定 URL 发送POST方法的请求
*
* @param url
* 发送请求的 URL
* @param param
* 请求参数,请求参数应该是 name1=value1&name2=value2 的形式。
* @return 所代表远程资源的响应结果
*/
public static String sendPost(String url, String param) {
PrintWriter out = null;
BufferedReader in = null;
String result = "";
try {
URL realUrl = new URL(url);
// 打开和URL之间的连接
URLConnection conn = realUrl.openConnection();
// 设置通用的请求属性
conn.setRequestProperty("accept", "*/*");
conn.setRequestProperty("connection", "Keep-Alive");
conn.setRequestProperty("user-agent",
"Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1;SV1)");
// 发送POST请求必须设置如下两行
conn.setDoOutput(true);
conn.setDoInput(true);
// 获取URLConnection对象对应的输出流
out = new PrintWriter(conn.getOutputStream());
// 发送请求参数
out.print(param);
// flush输出流的缓冲
out.flush();
// 定义BufferedReader输入流来读取URL的响应
in = new BufferedReader(
new InputStreamReader(conn.getInputStream()));
String line;
while ((line = in.readLine()) != null) {
result += line;
}
} catch (Exception e) {
System.out.println("发送 POST 请求出现异常!"+e);
e.printStackTrace();
}
//使用finally块来关闭输出流、输入流
finally{
try{
if(out!=null){
out.close();
}
if(in!=null){
in.close();
}
}
catch(IOException ex){
ex.printStackTrace();
}
}
return result;
}
}
3.获取openid,获取手机号,核心代码,此处写到一个方法里。
import java.util.Map;
import javax.annotation.Resource;
import javax.servlet.http.HttpServletRequest;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.ResponseBody;
import com.alibaba.fastjson.JSONArray;
import com.alibaba.fastjson.JSONObject;
import com.personal.base.user.pojo.User;
import com.personal.base.user.service.UserService;
import com.personal.front.base.util.AesCbcUtil;
import com.personal.front.base.util.HttpRequest;
@RequestMapping("/wx/User")
@Controller
public class UserAPIController {
@Autowired
private HttpServletRequest request;
@Resource(name = "user")
private UserService userService;
//APPID和appSecret在微信小程序管理后台获取,此处不做教程了。百度很多
String appID = "xxxxxx";//
// 微信小程序秘钥
String appSecret = "xxxxxxxx";//
/**
* 获取用户信息
*/
@RequestMapping(value = "/getOpenid")
@ResponseBody
public Map getOpenid(String encryptedData,String iv,String code) {
//encryptedData是加密的字符串
//iv是解密时用到的。
Map map = new HashMap();
// 小程序唯一标识
String wxspAppid = appID;
// 小程序的 app secret
String wxspSecret = appSecret;
// 授权(必填)
String grant_type = "authorization_code";
String grant_type2 = "client_credential";
// 1、向微信服务器 使用登录凭证 code 获取 session_key 和 openid
// 请求参数
String params = "appid=" + wxspAppid + "&secret=" + wxspSecret + "&js_code=" + code + "&grant_type="
+ grant_type;
String sr = HttpRequest.sendGet("https://api.weixin.qq.com/sns/jscode2session", params);//主要获取openid
// 解析相应内容(转换成json对象)
JSONObject json = JSONObject.parseObject(sr);
System.out.println("json==" + json.toJSONString());
// 获取会话密钥(session_key)
String session_key = json.get("session_key").toString();
// 用户的唯一标识(openid)
String openid = (String) json.get("openid");
// 2、对encryptedData加密数据进行AES解密 主要获取手机号
try {
String result = AesCbcUtil.decrypt(encryptedData, session_key, iv);
if (null != result && result.length() > 0) {
JSONObject userInfoJSON = JSONObject.parseObject(result);
User user = new User();
user.setOpenId(openid);
user.setPhoneNumber(userInfoJSON.get("phoneNumber").toString());
Map<String, Object> p = new HashMap<>();
p.put("openId", openid);
//查一下数据库有没有此openid的用户,有的话更新手机号,没有的话新增一条用户记录
//*openid是唯一的
List<User> listU = userService.findByParams(p);
if (null != listU && listU.size() > 0) {
User user1 = listU.get(0);
user1.setPhoneNumber(userInfoJSON.get("phoneNumber").toString());
userService.update(user1);
} else {
userService.insert(user);
}
map.put("code", 200);
map.put("msg", "解密成功");
JSONObject job = new JSONObject();
job.put("phone", userInfoJSON.get("phoneNumber"));
map.put("data", job);
return map;
}
} catch (Exception e) {
e.printStackTrace();
}
map.put("code", 999);
map.put("msg", "解密失败");
return map;
}
}