一、 整理微信的app支付
准备工作:
1、申请微信开放平台账号并微信认证(需要300元)
2、在微信开放平台上—创建应用–审核后获得appid
3、申请app支付接口(需要开通微信商户号)
4、设置支付接口的api秘钥(api_key)
上代码:
payConfig.properties:
#appid()
wx.appid=
#商户id
wx.mch_id=
#支付回调地址
wx.notify_url=https://ip**/***/json/wxpay/succes
#是否检测实名
wx.check_name=NO_CHECK
#微信支付API秘钥
wx.api_key=
#微信企业付款证书地址
wx.cert_path=/usr/local/project/apiclient_cert.p12
注:配置文件根据项目修改对应值。
PayConfigUtils :
package com.wf.ew.wechatpay.util;
import com.alibaba.druid.support.logging.Log;
import com.alibaba.druid.support.logging.LogFactory;
import java.io.InputStream;
import java.util.Properties;
/**
* 读取微信支付配置文件
*/
public class PayConfigUtils {
private static final Log log = LogFactory.getLog(PayConfigUtils.class);
public static String appid;//微信appiid
public static String mch_id;//微信商户id
public static String notify_url;//微信支付回调地址
public static String check_name;//微信提现是否强制实名
public static String api_key;//微信支付接口秘钥
public static String cert_path;//微信提现证书路径
static {
try {
InputStream is = PayConfigUtils.class.getResourceAsStream("/payConfig.properties");
Properties properties = new Properties();
properties.load(is);
appid = properties.getProperty("wx.appid");
mch_id = properties.getProperty("wx.mch_id");
notify_url = properties.getProperty("wx.notify_url");
check_name = properties.getProperty("wx.check_name");
api_key = properties.getProperty("wx.api_key");
cert_path = properties.getProperty("wx.cert_path");
} catch (Exception ex) {
log.debug("加载配置文件:" + ex.getMessage());
}
}
}
PayCommonService :
重点
package com.wf.ew.wechatpay.service;
import com.wf.ew.wechatpay.util.HttpUtil;
import com.wf.ew.wechatpay.util.MD5Util;
import com.wf.ew.wechatpay.util.PayConfigUtils;
import com.wf.ew.wechatpay.model.WechatPayConstant;
import org.apache.http.client.methods.CloseableHttpResponse;
import org.apache.http.util.EntityUtils;
import org.jdom.Document;
import org.jdom.Element;
import org.jdom.JDOMException;
import org.jdom.input.SAXBuilder;
import javax.servlet.http.HttpServletRequest;
import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.io.InputStream;
import java.math.BigDecimal;
import java.text.DecimalFormat;
import java.util.*;
public class PayCommonService {
private static PayConfigUtils config = new PayConfigUtils();
/**
* @param trade_no 订单编号
* @param totalAmount 订单总额
* @param attach 附件参数
* @param request *
* @return
*/
public static SortedMap<String, Object> WxPublicPay(String trade_no, BigDecimal totalAmount, String attach, HttpServletRequest request) {
Map<String, String> map = weixinPrePay(trade_no, totalAmount, attach, request);
SortedMap<String, Object> lastSort = new TreeMap<>();
//小程序参数如下
// lastSort.put("appId", config.appid);
// lastSort.put("timeStamp", System.currentTimeMillis() / 1000);
// lastSort.put("nonceStr", getRandomString(32));
// lastSort.put("package", "prepay_id=" + map.get("prepay_id"));
// lastSort.put("signType", "MD5");
// String sign = PayCommonService.createSign(lastSort);
// lastSort.put("paySign", sign);
//app参数
lastSort.put("appid", config.appid);
lastSort.put("partnerid", config.mch_id);
lastSort.put("prepayid", map.get("prepay_id"));
lastSort.put("package", "Sign=WXPay");
lastSort.put("noncestr", getRandomString(32));
lastSort.put("timestamp", System.currentTimeMillis() / 1000);
String sign = PayCommonService.createSign(lastSort);
lastSort.put("sign", sign);
return lastSort;
}
/**
* @param trade_no 订单编号
* @param totalAmount 支付金额
* @param attach 附件参数 length=127
* @param request *
* @return -
*/
private static Map<String, String> weixinPrePay(String trade_no, BigDecimal totalAmount, String attach, HttpServletRequest request) {
String body = "app名称-商品名称";
SortedMap<String, Object> params= new TreeMap<>();
params.put("appid", config.appid);
params.put("mch_id", config.mch_id);//商户号
params.put("nonce_str", getRandomString(32));//随机字符串
params.put("body", body);//商品描述
params.put("attach", attach);//附加数据 非必填
params.put("out_trade_no", trade_no);//商户订单号
params.put("fee_type", "CNY");//标价币种 非必填
BigDecimal total = totalAmount.multiply(new BigDecimal(100));
DecimalFormat df = new DecimalFormat("0");
params.put("total_fee", df.format(total));//标价金额
params.put("spbill_create_ip", request.getRemoteAddr());//终端IP
params.put("notify_url", config.notify_url);//通知地址
params.put("trade_type", "APP");//交易类型
params.put("sign_type", "MD5");
String sign = PayCommonService.createSign(params);
params.put("sign", sign);
String requestXML = PayCommonService.getRequestXml(params);
Map<String, String> map = null;
try {
CloseableHttpResponse response = HttpUtil.Post(WechatPayConstant.URL, requestXML, false);
String respondXml = EntityUtils.toString(response.getEntity(), "utf-8");
map = PayCommonService.doXMLParse(respondXml);
} catch (Exception e) {
e.printStackTrace();
}
return map;
}
//随机字符串生成
private static String getRandomString(int length) { //length表示生成字符串的长度
String base = "abcdefghijklmnopqrstuvwxyz0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ";
Random random = new Random();
StringBuilder sb = new StringBuilder();
for (int i = 0; i < length; i++) {
int number = random.nextInt(base.length());
sb.append(base.charAt(number));
}
return sb.toString();
}
//请求xml组装
private static String getRequestXml(SortedMap<String, Object> parameters) {
StringBuilder sb = new StringBuilder();
sb.append("<xml>");
Set es = parameters.entrySet();
for (Object e : es) {
Map.Entry entry = (Map.Entry) e;
String key = (String) entry.getKey();
String value = (String) entry.getValue();
if ("attach".equalsIgnoreCase(key) || "body".equalsIgnoreCase(key) || "sign".equalsIgnoreCase(key)) {
sb.append("<").append(key).append(">").append("<![CDATA[").append(value).append("]]></").append(key).append(">");
} else {
sb.append("<").append(key).append(">").append(value).append("</").append(key).append(">");
}
}
sb.append("</xml>");
return sb.toString();
}
//生成签名
private static String createSign(SortedMap<String, Object> parameters) {
StringBuilder sb = new StringBuilder();
Set es = parameters.entrySet();
for (Object e : es) {
Map.Entry entry = (Map.Entry) e;
String k = (String) entry.getKey();
Object v = entry.getValue();
if (null != v && !"".equals(v)
&& !"sign".equals(k) && !"key".equals(k)) {
sb.append(k).append("=").append(v).append("&");
}
}
sb.append("key=").append(config.api_key);
System.out.println("签名结果==" + sb.toString());
return MD5Util.MD5Encode(sb.toString(), "UTF-8").toUpperCase();
}
/**
* 验证回调签名
*
* @param map
* @return
*/
public static boolean isTenpaySign(Map<String, String> map) {
String charset = "utf-8";
String signFromAPIResponse = map.get("sign");
if (signFromAPIResponse == null || signFromAPIResponse.equals("")) {
System.out.println("API返回的数据签名数据不存在,有可能被第三方篡改!!!");
return false;
}
System.out.println("服务器回包里面的签名是:" + signFromAPIResponse);
//过滤空 设置 TreeMap
SortedMap<String, String> packageParams = new TreeMap<>();
for (String parameter : map.keySet()) {
String parameterValue = map.get(parameter);
String v = "";
if (null != parameterValue) {
v = parameterValue.trim();
}
packageParams.put(parameter, v);
}
StringBuilder sb = new StringBuilder();
Set es = packageParams.entrySet();
for (Object e : es) {
Map.Entry entry = (Map.Entry) e;
String k = (String) entry.getKey();
String v = (String) entry.getValue();
if (!"sign".equals(k) && null != v && !"".equals(v)) {
sb.append(k).append("=").append(v).append("&");
}
}
sb.append("key=").append(config.api_key);
//将API返回的数据根据用签名算法进行计算新的签名,用来跟API返回的签名进行比较
//算出签名
String tobesign = sb.toString();
String resultSign = MD5Util.MD5Encode(tobesign, "utf-8").toUpperCase();
String tenpaySign = packageParams.get("sign").toUpperCase();
return tenpaySign.equals(resultSign);
}
//xml解析
public static Map doXMLParse(String strxml) throws JDOMException, IOException {
strxml = strxml.replaceFirst("encoding=\".*\"", "encoding=\"UTF-8\"");
if (null == strxml || "".equals(strxml)) {
return null;
}
Map m = new HashMap();
InputStream in = new ByteArrayInputStream(strxml.getBytes("UTF-8"));
SAXBuilder builder = new SAXBuilder();
Document doc = builder.build(in);
Element root = doc.getRootElement();
List list = root.getChildren();
for (Object aList : list) {
Element e = (Element) aList;
String k = e.getName();
String v = "";
List children = e.getChildren();
if (children.isEmpty()) {
v = e.getTextNormalize();
} else {
v = getChildrenText(children);
}
m.put(k, v);
}
//关闭流
in.close();
return m;
}
private static String getChildrenText(List children) {
StringBuilder sb = new StringBuilder();
if (!children.isEmpty()) {
for (Object aChildren : children) {
Element e = (Element) aChildren;
String name = e.getName();
String value = e.getTextNormalize();
List list = e.getChildren();
sb.append("<").append(name).append(">");
if (!list.isEmpty()) {
sb.append(getChildrenText(list));
}
sb.append(value);
sb.append("</").append(name).append(">");
}
}
return sb.toString();
}
}
HttpUtil :
package com.wf.ew.wechatpay.util;
import org.apache.http.client.methods.CloseableHttpResponse;
import org.apache.http.client.methods.HttpPost;
import org.apache.http.entity.StringEntity;
import org.apache.http.impl.client.HttpClients;
public class HttpUtil {
/**
* 发送post请求
*
* @param url 请求地址
* @param outputEntity 发送内容
* @param isLoadCert 是否加载证书
*/
public static CloseableHttpResponse Post(String url, String outputEntity, boolean isLoadCert) throws Exception {
HttpPost httpPost = new HttpPost(url);
// 得指明使用UTF-8编码,否则到API服务器XML的中文不能被成功识别
httpPost.addHeader("Content-Type", "text/xml");
httpPost.setEntity(new StringEntity(outputEntity, "UTF-8"));
if (isLoadCert) {
// 加载含有证书的http请求
return HttpClients.custom().setSSLSocketFactory(CertUtil.initCert()).build().execute(httpPost);
} else {
return HttpClients.custom().build().execute(httpPost);
}
}
}
支付回调:
package com.wf.ew.api.controller;
import com.alibaba.fastjson.JSON;
import com.alibaba.fastjson.JSONObject;
import com.baomidou.mybatisplus.mapper.EntityWrapper;
import com.wf.ew.annotation.Login;
import com.wf.ew.common.JsonResult;
import com.wf.ew.system.model.WhUserSafe;
import com.wf.ew.system.service.WhUserSafeBo;
import com.wf.ew.system.xys.model.WhOrderModel;
import com.wf.ew.system.xys.service.WhOrderService;
import com.wf.ew.wechatpay.service.PayCommonService;
import io.swagger.annotations.Api;
import io.swagger.annotations.ApiImplicitParam;
import io.swagger.annotations.ApiImplicitParams;
import io.swagger.annotations.ApiOperation;
import org.jdom.JDOMException;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.http.MediaType;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.ResponseBody;
import org.springframework.web.bind.annotation.RestController;
import springfox.documentation.annotations.ApiIgnore;
import javax.annotation.Resource;
import javax.servlet.http.HttpServletRequest;
import java.io.ByteArrayOutputStream;
import java.io.IOException;
import java.io.InputStream;
import java.math.BigDecimal;
import java.util.Date;
import java.util.HashMap;
import java.util.Map;
import java.util.SortedMap;
@RestController
@RequestMapping("/api")
@Api(value = "微信支付接口", tags = {"\\"})
public class ApiWechatPayController {
private static final Logger log = LoggerFactory.getLogger(ApiWechatPayController.class);
/**
* 微信支付回调地址
*
* @param request
* @return
* @throws IOException
*/
@PostMapping(value = "/json/wxpay/succes", produces = MediaType.APPLICATION_JSON_VALUE)
@ResponseBody
public String wxpaySucc(HttpServletRequest request) throws IOException {
log.info("微信支付回调开始");
String resXml = "<xml><return_code>FAIL</return_code><return_msg>OK</return_msg></xml>";
InputStream inStream = request.getInputStream();
ByteArrayOutputStream outSteam = new ByteArrayOutputStream();
byte[] buffer = new byte[1024];
int len = 0;
while ((len = inStream.read(buffer)) != -1) {
outSteam.write(buffer, 0, len);
}
String resultxml = new String(outSteam.toByteArray(), "utf-8");
Map<String, String> params = null;
try {
params = PayCommonService.doXMLParse(resultxml);
} catch (JDOMException e) {
e.printStackTrace();
}
outSteam.close();
inStream.close();
if (!PayCommonService.isTenpaySign(params)) {
// 支付失败
return resXml;
} else {
log.info("===============付款成功==============");
String attach = params.get("attach");
JSONObject jsonObject = JSON.parseObject(attach);
Integer userId = Integer.parseInt(jsonObject.get("userId").toString());
log.info("userId=" + userId);
// 获取订单编号
String outTradeNo = params.get("out_trade_no");
.....
.....
....
..
.
log.info("业务处理完毕……………………………………!");
return "<xml><return_code>SUCCESS</return_code><return_msg>OK</return_msg></xml>";
}
}
return resXml;
}
}
2 微信的企业付款至零钱
企业付款时需要加载证书
CertUtil :
package com.wf.ew.wechatpay.util;
import org.apache.http.conn.ssl.DefaultHostnameVerifier;
import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
import org.apache.http.ssl.SSLContexts;
import org.springframework.util.ResourceUtils;
import javax.net.ssl.SSLContext;
import java.io.File;
import java.io.FileInputStream;
import java.security.KeyStore;
/**
* 加载证书的类
*
* @author
*/
public class CertUtil {
private static PayConfigUtils config = new PayConfigUtils();
/**
* 加载证书
*/
public static SSLConnectionSocketFactory initCert() throws Exception {
FileInputStream instream = null;
KeyStore keyStore = KeyStore.getInstance("PKCS12");
File file = ResourceUtils.getFile(config.cert_path);
instream = new FileInputStream(file);
keyStore.load(instream, config.mch_id.toCharArray());
if (null != instream) {
instream.close();
}
SSLContext sslcontext = SSLContexts.custom().loadKeyMaterial(keyStore, config.mch_id.toCharArray()).build();
SSLConnectionSocketFactory sslsf = new SSLConnectionSocketFactory(sslcontext, new String[]{"TLSv1"}, null, new DefaultHostnameVerifier());
return sslsf;
}
}
企业付款的方法:
/**
* 微信提现(企业付款)
*/
public static Boolean goToPay(String orderNo, String openId, Integer amount, String ip, String desc) throws Exception {
SortedMap<String, Object> params = new TreeMap<>();
// 参数组
String appid = config.appid;
String mch_id = config.mch_id;
String nonce_str = PayCommonService.getRandomString(32);
String checkName = config.check_name; //是否校验用户姓名 NO_CHECK:不校验真实姓名 FORCE_CHECK:强校验真实姓名
params.put("appid", appid);
params.put("mch_id", mch_id);
params.put("partner_trade_no", orderNo);
params.put("nonce_str", nonce_str);
params.put("openId", openId);
params.put("checkName", checkName);
params.put("amount", amount.toString());
params.put("spbill_create_ip", ip);
params.put("desc", desc);
String sign = PayCommonService.createSign(params);
params.put("sign", sign);
String xmlInfo = PayCommonService.getRequestXml(params);
System.out.println("企业付款xmlInfo==" + xmlInfo);
try {
CloseableHttpResponse response = HttpUtil.Post(WechatPayConstant.WITHDRAW_URL, xmlInfo, true);
String transfersXml = EntityUtils.toString(response.getEntity(), "utf-8");
Map<String, String> map = PayCommonService.doXMLParse(transfersXml);
if (map.size() > 0) {
if (map.get("result_code").equals("SUCCESS") && map.get("return_code").equals("SUCCESS")) {
//成功需要进行的逻辑操作,
return true;
}
}
} catch (Exception e) {
e.printStackTrace();
throw new Exception("提现异常!");
}
return false;
}
最后附上 WechatPayConstant :
package com.wf.ew.wechatpay.model;
/**
* 微信支付相关的常量
*/
public class WechatPayConstant {
/**
* 微信支付接口url
*/
public static final String URL = "https://api.mch.weixin.qq.com/pay/unifiedorder";
/**
* 退款url
*/
public static final String REFUND_URL = "https://api.mch.weixin.qq.com/secapi/pay/refund";
/**
* 付款url
*/
public static final String WITHDRAW_URL = "https://api.mch.weixin.qq.com/mmpaymkttransfers/promotion/transfers";
}
MD5Util :
package com.wf.ew.wechatpay.util;
import java.security.MessageDigest;
public class MD5Util {
private static String byteArrayToHexString(byte b[]) {
StringBuilder resultSb = new StringBuilder();
for (byte aB : b)
resultSb.append(byteToHexString(aB));
return resultSb.toString();
}
private static String byteToHexString(byte b) {
int n = b;
if (n < 0)
n += 256;
int d1 = n / 16;
int d2 = n % 16;
return hexDigits[d1] + hexDigits[d2];
}
public static String MD5Encode(String origin, String charsetname) {
String resultString = null;
try {
resultString = origin;
MessageDigest md = MessageDigest.getInstance("MD5");
if (charsetname == null || "".equals(charsetname))
resultString = byteArrayToHexString(md.digest(resultString.getBytes()));
else
resultString = byteArrayToHexString(md.digest(resultString.getBytes(charsetname)));
} catch (Exception ignored) {
}
return resultString;
}
private static final String hexDigits[] = { "0", "1", "2", "3", "4", "5", "6", "7", "8", "9", "a", "b", "c", "d",
"e", "f" };
}