controller代码
@PostMapping("chongzhi")
@ApiOperation("苹果内购支付返回")
public void iosConfirmOrder(String receipt_data,Integer payMoney) {
//首先调用正式环境查看验证结果;
String verifyResult = IosVerifyUtil.buyAppVerify(receipt_data, 1);//type:1->正式环境,发送平台验证
if (verifyResult == null) {
//如果验证结果不存在;提示前端;订单信息不存在;
return ResultModel.error("充值验证不通过!");
}
JSONObject job = JSONObject.parseObject(verifyResult);
String states = job.getString("status");
//states为21007表示,收据信息是沙盒测试用;需要请求沙盒测试地址对凭证进行校验
if ("21007".equals(states)) {
//如果正式环境校验不成功,则请求沙盒测试地址对凭证进行校验
verifyResult = IosVerifyUtil.buyAppVerify(receipt_data, 0);//type:0->沙盒测试,发送平台验证
job = JSONObject.parseObject(verifyResult);
states = job.getString("status");
}
if (states.equals("0")) {
// 前端所提供的收据是有效的,验证成功
String r_receipt = job.getString("receipt");
JSONObject returnJson = JSONObject.parseObject(r_receipt);
String in_app = returnJson.getString("in_app");
JSONArray jsonArray = JSONArray.parseArray(in_app);
JSONObject in_appJson = jsonArray.getJSONObject(jsonArray.size() - 1);
System.out.println("IOS支付验证结果3:" + in_appJson);
String product_id = in_appJson.getString("product_id");//产品ID
String transaction_id = in_appJson.getString("transaction_id"); // 订单号
//业务代码
//支付成功
} else {
//支付失败
}
}
工具类
import javax.net.ssl.*;
import java.io.BufferedOutputStream;
import java.io.BufferedReader;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.net.URL;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import java.util.Locale;
public class IosVerifyUtil {
private static class TrustAnyTrustManager implements X509TrustManager {
public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
}
public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
}
public X509Certificate[] getAcceptedIssuers() {
return new X509Certificate[] {};
}
}
private static class TrustAnyHostnameVerifier implements HostnameVerifier {
public boolean verify(String hostname, SSLSession session) {
return true;
}
}
private static final String url_sandbox = "https://sandbox.itunes.apple.com/verifyReceipt";
private static final String url_verify = "https://buy.itunes.apple.com/verifyReceipt";
/**
* 苹果服务器验证
*
* @param receipt
* 账单
* @url 要验证的地址
* @return null 或返回结果 沙盒 https://sandbox.itunes.apple.com/verifyReceipt
*
*/
public static String buyAppVerify(String receipt,int type) {
//环境判断 线上/开发环境用不同的请求链接
String url = "";
if(type==0){
url = url_sandbox; //沙盒测试
}else{
url = url_verify; //线上测试
}
//String url = EnvUtils.isOnline() ?url_verify : url_sandbox;
try {
SSLContext sc = SSLContext.getInstance("SSL");
sc.init(null, new TrustManager[] { new TrustAnyTrustManager() }, new java.security.SecureRandom());
URL console = new URL(url);
HttpsURLConnection conn = (HttpsURLConnection) console.openConnection();
conn.setSSLSocketFactory(sc.getSocketFactory());
conn.setHostnameVerifier(new TrustAnyHostnameVerifier());
conn.setRequestMethod("POST");
conn.setRequestProperty("content-type", "text/json");
conn.setRequestProperty("Proxy-Connection", "Keep-Alive");
conn.setDoInput(true);
conn.setDoOutput(true);
BufferedOutputStream hurlBufOus = new BufferedOutputStream(conn.getOutputStream());
String str = String.format(Locale.CHINA, "{\"receipt-data\":\"" + receipt + "\"}");//拼成固定的格式传给平台
hurlBufOus.write(str.getBytes());
hurlBufOus.flush();
InputStream is = conn.getInputStream();
BufferedReader reader = new BufferedReader(new InputStreamReader(is));
String line = null;
StringBuffer sb = new StringBuffer();
while ((line = reader.readLine()) != null) {
sb.append(line);
}
return sb.toString();
} catch (Exception ex) {
System.out.println("苹果服务器异常");
ex.printStackTrace();
}
return null;
}
/**
* 用BASE64加密
*
* @param str
* @return
*/
public static String getBASE64(String str) {
byte[] b = str.getBytes();
String s = null;
if (b != null) {
s = new sun.misc.BASE64Encoder().encode(b);
}
return s;
}
}