(APP)微信支付服务端PHP

2019-04-18  本文已影响0人  无聊的电风扇

前提开放平台创建应用,开通了支付并有对应商户平台
支付成功回调,防止xml注入,要添加一行代码

libxml_disable_entity_loader(true);

/*
     配置参数
   */
    protected $config = array(
        'appid' => "你的appid",                  /*微信开放平台上的应用id*/
        'mch_id' => "商户id",                 /*微信申请成功之后邮件中的商户id*/
        'api_key' => "你得api秘钥",                /*在微信商户平台上自己设定的api密钥 32位*/
        'notify_url' => '支付成功回调地址'  
    );

前台请求的返回签名接口

function actionPays(){

        header("Content-type: text/html; charset=utf-8");
        
        $response = $this->getPrePayOrder('订单名称',自己的订单号,价格);

        //微信支付需要先获取prepay_id再拼接好二次签名
        $x = $this->getOrder($response['prepay_id']);   //返回给客户的二次签名

        exit(json_encode(array('sign'=>$x,'status'=>10001)));   
    }

用到的函数


    //获取预支付订单
     function getPrePayOrder($body,$out_trade_no,$total_fee){

        $url = "https://api.mch.weixin.qq.com/pay/unifiedorder";
        $notify_url = $this->config["notify_url"];//回调地址
        $onoce_str = $this->getRandChar(32);//随机字符串
        $data["appid"] = $this->config["appid"];//你得APPID
        $data["body"] = $body;//订单信息
        $data["mch_id"] = $this->config['mch_id'];//商户号
        $data["nonce_str"] = $onoce_str;
        $data["notify_url"] = $notify_url;
        $data["out_trade_no"] = $out_trade_no;//你得订单号
        $data["spbill_create_ip"] = $this->get_client_ip();//ip
        $data["total_fee"] = $total_fee*100;//支付金额
        $data["trade_type"] = "APP";//支付类型
        $s = $this->getSign($data, false);
        $data["sign"] = $s;
        $xml = $this->arrayToXml($data);
        $response = $this->postXmlCurl($xml, $url);
        //将微信返回的结果xml转成数组
        return $this->xmlstr_to_array($response);
    }

  //执行第二次签名,才能返回给客户端使用
   function getOrder($prepayId){

        $data["appid"] = $this->config["appid"];

        $data["noncestr"] = $this->getRandChar(32);;

        $data["package"] = "Sign=WXPay";

        $data["partnerid"] = $this->config['mch_id'];

        $data["prepayid"] = $prepayId;

        $data["timestamp"] = time();

        $s = $this->getSign($data, false);

        $data["sign"] = $s;

        return $data;

    }

    /*
        生成签名
    */
    function getSign($Obj)
    {
        foreach ($Obj as $k => $v)
        {
            $Parameters[strtolower($k)] = $v;
        }
        //签名步骤一:按字典序排序参数
        ksort($Parameters);
        $String = $this->formatBizQueryParaMap($Parameters, false);
        //echo "【string】 =".$String."</br>";
        //签名步骤二:在string后加入KEY
        $String = $String."&key=".$this->config['api_key'];
        //echo "<textarea style='width: 50%; height: 150px;'>$String</textarea> <br />";
        //签名步骤三:MD5加密
        $result_ = strtoupper(md5($String));
        return $result_;
    }

    /**

     *    作用:产生随机字符串,不长于32位

     */

function randomkeys($length)
    {

        $pattern = '1234567890123456789012345678905678901234';

        $key = null;

        for ($i = 0; $i < $length; $i++) {

            $key .= $pattern{mt_rand(0, 30)};    //生成php随机数

        }

        return $key;

    }

    //获取指定长度的随机字符串
function getRandChar($length){
        $str = null;
        $strPol = "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789abcdefghijklmnopqrstuvwxyz";
        $max = strlen($strPol)-1;
        for($i=0;$i<$length;$i++){
            $str.=$strPol[rand(0,$max)];//rand($min,$max)生成介于min和max两个数之间的一个随机整数
        }
        return $str;
    }

    //数组转xml
function arrayToXml($arr)
    {
        $xml = "<xml>";
        foreach ($arr as $key=>$val)
        {
            if (is_numeric($val))
            {
                $xml.="<".$key.">".$val."</".$key.">";

            }
            else
                $xml.="<".$key."><![CDATA[".$val."]]></".$key.">";
        }
        $xml.="</xml>";
        return $xml;
    }

    //post https请求,CURLOPT_POSTFIELDS xml格式
function postXmlCurl($xml,$url,$second=30)
    {
        //初始化curl
        $ch = curl_init();
        //超时时间
        curl_setopt($ch,CURLOPT_TIMEOUT,$second);
        //这里设置代理,如果有的话
        //curl_setopt($ch,CURLOPT_PROXY, '8.8.8.8');
        //curl_setopt($ch,CURLOPT_PROXYPORT, 8080);
        curl_setopt($ch,CURLOPT_URL, $url);
        curl_setopt($ch,CURLOPT_SSL_VERIFYPEER,FALSE);
        curl_setopt($ch,CURLOPT_SSL_VERIFYHOST,FALSE);
        //设置header
        curl_setopt($ch, CURLOPT_HEADER, FALSE);
        //要求结果为字符串且输出到屏幕上
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE);
        //post提交方式
        curl_setopt($ch, CURLOPT_POST, TRUE);
        curl_setopt($ch, CURLOPT_POSTFIELDS, $xml);
        //运行curl
        $data = curl_exec($ch);
        //返回结果
        if($data)
        {
            curl_close($ch);
            return $data;
        }
        else
        {
            $error = curl_errno($ch);
            //echo "curl出错,错误码:$error"."<br>";
            return json_encode(array('code'=>$error,'status'=>0));
            //return false;
        }
    }

  /*
        获取当前服务器的IP
    */
    function get_client_ip()
    {
        if ($_SERVER['REMOTE_ADDR']) {
            $cip = $_SERVER['REMOTE_ADDR'];
        } elseif (getenv("REMOTE_ADDR")) {
            $cip = getenv("REMOTE_ADDR");
        } elseif (getenv("HTTP_CLIENT_IP")) {
            $cip = getenv("HTTP_CLIENT_IP");
        } else {
            $cip = "unknown";
        }
        return $cip;
    }

    //将数组转成uri字符串
    function formatBizQueryParaMap($paraMap, $urlencode)
    {
        $buff = "";
        ksort($paraMap);
        foreach ($paraMap as $k => $v)
        {
            if($urlencode)
            {
                $v = urlencode($v);
            }
            $buff .= strtolower($k) . "=" . $v . "&";
        }
        $reqPar=null;
        if (strlen($buff) > 0)
        {
            $reqPar = substr($buff, 0, strlen($buff)-1);
        }
        return $reqPar;
    }

    /**
    xml转成数组
     */
    function xmlstr_to_array($xmlstr) {

        //将XML转为array
        return json_decode(json_encode(simplexml_load_string($xmlstr, 'SimpleXMLElement',LIBXML_NOCDATA)), true);

    }
    function domnode_to_array($node) {
        $output = array();
        switch ($node->nodeType) {
            case XML_CDATA_SECTION_NODE:
            case XML_TEXT_NODE:
                $output = trim($node->textContent);
                break;
            case XML_ELEMENT_NODE:
                for ($i=0, $m=$node->childNodes->length; $i<$m; $i++) {
                    $child = $node->childNodes->item($i);
                    $v = $this->domnode_to_array($child);
                    if(isset($child->tagName)) {
                        $t = $child->tagName;
                        if(!isset($output[$t])) {
                            $output[$t] = array();
                        }
                        $output[$t][] = $v;
                    }
                    elseif($v) {
                        $output = (string) $v;
                    }
                }
                if(is_array($output)) {
                    if($node->attributes->length) {
                        $a = array();
                        foreach($node->attributes as $attrName => $attrNode) {
                            $a[$attrName] = (string) $attrNode->value;
                        }
                        $output['@attributes'] = $a;
                    }
                    foreach ($output as $t => $v) {
                        if(is_array($v) && count($v)==1 && $t!='@attributes') {
                            $output[$t] = $v[0];
                        }
                    }
                }
                break;
        }
        return $output;
    }
上一篇下一篇

猜你喜欢

热点阅读