- 第一步:用户同意授权,获取code
- 第二步:通过code换取网页授权access_token
- 第三步:刷新access_token(如果需要)
- 第四步:拉取用户信息(需scope为 snsapi_userinfo)
- 关注微信测试公众号
进入微信公众帐号测试号申请系统 - 填写自己服务器域名
- 实现代码
custom:
domain: jsd2ee.natappfree.cc
wx:
authorizeUrl: https://open.weixin.qq.com/connect/oauth2/authorize
appID: wxb120dd4f7b91e2f5
appSecret: 9e488053113d02f3cab1decf5b90345f
redirectUri: http://cxphcj.natappfree.cc/callback
accessTokenUrl: https://api.weixin.qq.com/sns/oauth2/access_token?appid=APPID&secret=SECRET&code=CODE&grant_type=authorization_code
userinfoUrl: https://api.weixin.qq.com/sns/userinfo
@Controller
@Slf4j
public class OauthController {
@Value("${custom.wx.authorizeUrl}")
private String authorizeUrl;
@Value("${custom.wx.appID}")
private String appID;
@Value("${custom.wx.appSecret}")
private String appSecret;
@Value("${custom.wx.redirectUri}")
private String redirectUri;
@Autowired
private RestTemplate restTemplate;
@Value("${custom.wx.accessTokenUrl}")
private String accessTokenUrl;
@Value("${custom.wx.userinfoUrl}")
private String userinfoUrl;
@GetMapping("/authorize")
public String authorize() {
authorizeUrl = String.format(authorizeUrl + "?appid=%s&redirect_uri=%s&response_type=code&scope=snsapi_userinfo&state=STATE#wechat_redirect",
appID, redirectUri);
return "redirect:" + authorizeUrl;
}
@GetMapping(value = "/callback")
@ResponseBody
public UserinfoVO callback(String code) throws Exception {
Assert.hasLength(code, "code获取失败");
accessTokenUrl = accessTokenUrl.replace("APPID", appID).replace("SECRET", appSecret).replace("CODE", code);
log.info("通过code换取网页授权access_token请求地址: {}", accessTokenUrl);
String accessTokenResultStr = restTemplate.getForObject(accessTokenUrl, String.class);
JSONObject accessTokenResult = JSONObject.parseObject(accessTokenResultStr);
if (accessTokenResult.getInteger("errcode") != null) {
throw new Exception("通过code换取网页授权access_token失败, 失败信息: " + accessTokenResult.getString("errmsg"));
}
userinfoUrl = String.format(userinfoUrl + "?access_token=%s&openid=%s&lang=zh_CN",
accessTokenResult.getString("access_token"),
accessTokenResult.getString("openid"));
log.info("拉取用户信息请求地址: {}", accessTokenUrl);
String userinfoResult = restTemplate.getForObject(userinfoUrl, String.class);
return JSONObject.parseObject(userinfoResult, UserinfoVO.class);
}
}
- 效果演示
- 注意事项
- 使用String.format方法拼接请求url可能会报错;
- 填写回调地址不能是localhost, 否则腾讯服务器无法重定向;
- 官方文档
https://developers.weixin.qq.com/doc/offiaccount/OA_Web_Apps/Wechat_webpage_authorization.html