标签:
最近开发网站过程,需要引入支付过程,第三方支付中最火的莫过于支付宝支付和微信支付,下边借助微信支付官网上的文档,写一下接入微信支付之扫码支付的流程
相对支付宝支付而言,微信支付的开发文档写的相当的low,demo写的一点都不简洁,下边写一下微信扫码支付的过程,这一过程中,需要注意的所涉及的实际业务是怎样的,根据实际情况结合业务进行引入,在进入正式开发之前,要申请微信支付的相关内容按照官网的操作进行即可,审核成功后,会得到appId,商户号,商户平台登录账号和密码
登录微信支付官网
(1)商户后台系统根据用户选购的商品生成订单。
(2)用户确认支付后调用微信支付【统一下单API】生成预支付交易;
(3)微信支付系统收到请求后生成预支付交易单,并返回交易会话的二维码链接code_url。
(4)商户后台系统根据返回的code_url生成二维码。
(5)用户打开微信“扫一扫”扫描二维码,微信客户端将扫码内容发送到微信支付系统。
(6)微信支付系统收到客户端请求,验证链接有效性后发起用户支付,要求用户授权。
(7)用户在微信客户端输入密码,确认支付后,微信客户端提交授权。
(8)微信支付系统根据用户授权完成支付交易。
(9)微信支付系统完成支付交易后给微信客户端返回交易结果,并将交易结果通过短信、微信消息提示用户。微信客户端展示支付交易结果页面。
(10)微信支付系统通过发送异步消息通知商户后台系统支付结果。商户后台系统需回复接收情况,通知微信后台系统不再发送该单的支付通知。
(11)未收到支付通知的情况,商户后台系统调用【查询订单API】。
(12)商户确认订单已支付后给用户发货。
开发的流程,首先根据自己的业务流程,生成订单保存到数据库当中,这一过程包含了商品的信息,需要支付的钱数,商品名称等,下边开始进入统一下单的方法,这部分是微信统一下单入口(controller方法)
/**
* 微信扫码支付统一下单
*/
@RequestMapping(value = "/WxPayUnifiedorder", method = RequestMethod.GET)
@ResponseBody
public Object WxPayUnifiedorder(String out_trade_no) throws Exception{
HashMap<String,Object> map = new HashMap<String,Object>();
String codeUrl = wxPayService.weixin_pay(out_trade_no);
map.put("codeUrl",codeUrl);
return map;
}下边是微信支付统一下单具体实现方法
/**
* 微信支付统一下单接口
* @param out_trade_no
* @return
* @throws Exception
*/
public String weixin_pay(String out_trade_no) throws Exception {
// 账号信息
String appid = PayConfigUtil.getAppid(); // appid
//String appsecret = PayConfigUtil.APP_SECRET; // appsecret
// 商业号
String mch_id = PayConfigUtil.getMchid();
// key
String key = PayConfigUtil.getKey();
String currTime = PayCommonUtil.getCurrTime();
String strTime = currTime.substring(8, currTime.length());
String strRandom = PayCommonUtil.buildRandom(4) + "";
//随机字符串
String nonce_str = strTime + strRandom;
// 价格 注意:价格的单位是分
//String order_price = "1";
// 商品名称
//String body = "企嘉科技商品";
//查询订单数据表获取订单信息
PayOrder payOrder = payOrderDao.get(PayOrder.class,out_trade_no);
// 获取发起电脑 ip
String spbill_create_ip = PayConfigUtil.getIP();
// 回调接口
String notify_url = PayConfigUtil.NOTIFY_URL;
String trade_type = "NATIVE";
String time_start = new SimpleDateFormat("yyyyMMddHHmmss").format(new Date());
Calendar ca = Calendar.getInstance();
ca.setTime(new Date());
ca.add(Calendar.DATE, 1);
String time_expire = new SimpleDateFormat("yyyyMMddHHmmss").format(ca.getTime());
SortedMap<Object,Object> packageParams = new TreeMap<Object,Object>();
packageParams.put("appid", appid);
packageParams.put("mch_id", mch_id);
packageParams.put("nonce_str", nonce_str);
packageParams.put("body",payOrder.getBody());
packageParams.put("out_trade_no", out_trade_no);
//packageParams.put("total_fee", "1");
packageParams.put("total_fee", payOrder.getTotalFee());
packageParams.put("spbill_create_ip", spbill_create_ip);
packageParams.put("notify_url", notify_url);
packageParams.put("trade_type", trade_type);
packageParams.put("time_start", time_start);
packageParams.put("time_expire", time_expire);
String sign = PayCommonUtil.createSign("UTF-8", packageParams,key);
packageParams.put("sign", sign);
String requestXML = PayCommonUtil.getRequestXml(packageParams);
System.out.println("请求xml::::"+requestXML);
String resXml = HttpUtil.postData(PayConfigUtil.PAY_API, requestXML);
System.out.println("返回xml::::"+resXml);
Map map = XMLUtil.doXMLParse(resXml);
//String return_code = (String) map.get("return_code");
//String prepay_id = (String) map.get("prepay_id");
String urlCode = (String) map.get("code_url");
System.out.println("打印调用统一下单接口生成二维码url:::::"+urlCode);
return urlCode;
}这一方法中,我们从工具类中获取微信官网提供的appId以及商户号,以及在商户平台上设置的支付密钥,处理一些统一下单接口需要携带的参数,回调链接(微信发起的本地调用,并返回成功或错误信息),totalFee的单位为分,官网的接口文档有说明,trade_type写死指定为NATIVE,另外的两个量time_start与time_expire是指定订单的有效期,
可以根据的自己的业务需求具体指定时间,(此处是24小时的订单有效期),如果无需指定,直接注释掉即可,sign是签名操作,借助工具类将packageParams转化为XML借助postData方法请求微信统一下单接口
public static String PAY_API = "https://api.mch.weixin.qq.com/pay/unifiedorder";resXml作为调用统一下单的返回值,当然返回的也是xml文件,再借助xmlUtil将返回值转化为map,返回值中有生成二维码的code_url,接下来我们需要处理的是,解析二维码url在前端网页中生成二维码图片,在前端使用ajax调用统一下单接口方法,接收返回值code_url,接收返回值后在调用后台接口方法解析code_url
common.get("/*****/wxpay/WxPayUnifiedorder?out_trade_no="+orderId,function(data){
var codeUrl = data.codeUrl;
if(codeUrl!=null && codeUrl!=""){
$("#id_wxtwoCode").attr('src',"******/wxpay/qr_codeImg?code_url="+codeUrl);
}
});<div class="weimg"> <!-- <img src="../common/img/wei_06.png"> --> <img id="id_wxtwoCode"src=""/> <p>打开手机端微信<br>扫一扫继续支付</p> </div>
/**
* 生成二维码图片并直接以流的形式输出到页面
* @param code_url
* @param response
*/
@RequestMapping("qr_codeImg")
@ResponseBody
public void getQRCode(String code_url,HttpServletResponse response){
wxPayService.encodeQrcode(code_url, response);
}/**
* 生成二维码图片 不存储 直接以流的形式输出到页面
* @param content
* @param response
*/
@SuppressWarnings({ "unchecked", "rawtypes" })
public static void encodeQrcode(String content,HttpServletResponse response){
if(content==null || "".equals(content))
return;
MultiFormatWriter multiFormatWriter = new MultiFormatWriter();
Map hints = new HashMap();
hints.put(EncodeHintType.CHARACTER_SET, "UTF-8"); //设置字符集编码类型
BitMatrix bitMatrix = null;
try {
bitMatrix = multiFormatWriter.encode(content, BarcodeFormat.QR_CODE, 300, 300,hints);
BufferedImage image = toBufferedImage(bitMatrix);
//输出二维码图片流
try {
ImageIO.write(image, "png", response.getOutputStream());
} catch (IOException e) {
// TODO Auto-generated catch block
e.printStackTrace();
}
} catch (WriterException e1) {
// TODO Auto-generated catch block
e1.printStackTrace();
}
}这里的300,300确定了二维码图片的大小
二维码图片生成后,接下来的流程就是扫码进行支付操作,这里还存在一个问题,需要在扫码后支付成功,需要实现页面的跳转,这一过程需要添加js的定时器,定时查看订单的支付状态是否发生了改变是否为支付成功,成功即可跳转后续流程,失败跳转失败提示
//定时器,每隔1s查询订单支付状态,订单状态改变,清除页面定时器,页面跳转
function checkOrder(orderId) {
console.log("定时器方法"+orderId);
common.get("/*******/order/checkOrder?out_trade_no="+orderId,function(data){
var isorder = data.isorder;
var paystatus = data.paystatus;
if(isorder=="1"){
if(paystatus=="1"){
//支付成功跳转
window.location.href="******/order/wxpaySuccess?out_trade_no="+orderId;
clearInterval(time);
}else if(paystatus=="2"){
//支付失败
alert("支付失败!");
clearInterval(time);
}
}
});
}支付成功后,微信服务端开始回调方法,
@RequestMapping(value = "/weixinNotify", method = RequestMethod.POST)
@ResponseBody
public void weixinNotify(HttpServletRequest request,HttpServletResponse response) throws Exception{
System.out.println("支付回调方法开始!");
HashMap<String,Object> map = new HashMap<String,Object>();
wxPayService.weixin_notify(request, response);
System.out.println("支付回调方法结束!");
} /**
* 微信支付回调方法
* @param request
* @param response
* @throws Exception
*/
public void weixin_notify(HttpServletRequest request,HttpServletResponse response) throws Exception{
//读取参数
InputStream inputStream ;
StringBuffer sb = new StringBuffer();
inputStream = request.getInputStream();
String s ;
BufferedReader in = new BufferedReader(new InputStreamReader(inputStream, "UTF-8"));
while ((s = in.readLine()) != null){
sb.append(s);
}
in.close();
inputStream.close();
//解析xml成map
Map<String, String> m = new HashMap<String, String>();
m = XMLUtil.doXMLParse(sb.toString());
//过滤空 设置 TreeMap
SortedMap<Object,Object> packageParams = new TreeMap<Object,Object>();
Iterator it = m.keySet().iterator();
while (it.hasNext()) {
String parameter = (String) it.next();
String parameterValue = m.get(parameter);
String v = "";
if(null != parameterValue) {
v = parameterValue.trim();
}
packageParams.put(parameter, v);
}
// 账号信息
String key = PayConfigUtil.getKey(); // key
String out_trade_no = (String)packageParams.get("out_trade_no");
//logger.info(packageParams);
//判断签名是否正确
if(PayCommonUtil.isTenpaySign("UTF-8", packageParams,key)) {
//------------------------------
//处理业务开始
//------------------------------
String resXml = "";
if("SUCCESS".equals((String)packageParams.get("result_code"))){
// 这里是支付成功
//////////执行自己的业务逻辑////////////////
String mch_id = (String)packageParams.get("mch_id");
String openid = (String)packageParams.get("openid");
String is_subscribe = (String)packageParams.get("is_subscribe");
String bank_type = (String)packageParams.get("bank_type");
String total_fee = (String)packageParams.get("total_fee");
String transaction_id = (String)packageParams.get("transaction_id");
System.out.println("mch_id:"+mch_id);
System.out.println("openid:"+openid);
System.out.println("is_subscribe:"+is_subscribe);
System.out.println("out_trade_no:"+out_trade_no);
System.out.println("total_fee:"+total_fee);
System.out.println("bank_type:"+bank_type);
System.out.println("transaction_id:"+transaction_id);
//成功回调后需要处理预生成订单的状态和一些支付信息//查询数据库中订单,首先判定订单中金额与返回的金额是否相等,不等金额被纂改
//判定订单是否已经被支付,不可重复支付
//正常处理相关业务逻辑
} else {
System.out.println("支付失败,错误信息:" + packageParams.get("err_code")+
"-----订单号:::"+out_trade_no+"*******支付失败时间::::"
+new SimpleDateFormat("yyyy-MM-dd HH:mm:ss").format(new Date()));
String err_code = (String)packageParams.get("err_code");
resXml = "<xml>" + "<return_code><![CDATA[FAIL]]></return_code>"
+ "<return_msg><![CDATA[报文为空]]></return_msg>" + "</xml> ";
}
//------------------------------
//处理业务完毕
//------------------------------
BufferedOutputStream out = new BufferedOutputStream(
response.getOutputStream());
out.write(resXml.getBytes());
out.flush();
out.close();
} else{
System.out.println("通知签名验证失败---时间::::"+new SimpleDateFormat("yyyy-MM-dd HH:mm:ss").format(new Date()));
}
}下边是相关工具类
import java.io.BufferedReader;
import java.io.IOException;
import java.io.InputStreamReader;
import java.io.OutputStreamWriter;
import java.net.URL;
import java.net.URLConnection;
import com.entplus.log.entity.Log;
public class HttpUtil {
//private static final Log logger = Logs.get();
private final static int CONNECT_TIMEOUT = 5000; // in milliseconds
private final static String DEFAULT_ENCODING = "UTF-8";
public static String postData(String urlStr, String data){
return postData(urlStr, data, null);
}
public static String postData(String urlStr, String data, String contentType){
BufferedReader reader = null;
try {
URL url = new URL(urlStr);
URLConnection conn = url.openConnection();
conn.setDoOutput(true);
conn.setConnectTimeout(CONNECT_TIMEOUT);
conn.setReadTimeout(CONNECT_TIMEOUT);
if(contentType != null)
conn.setRequestProperty("content-type", contentType);
OutputStreamWriter writer = new OutputStreamWriter(conn.getOutputStream(), DEFAULT_ENCODING);
if(data == null)
data = "";
writer.write(data);
writer.flush();
writer.close();
reader = new BufferedReader(new InputStreamReader(conn.getInputStream(), DEFAULT_ENCODING));
StringBuilder sb = new StringBuilder();
String line = null;
while ((line = reader.readLine()) != null) {
sb.append(line);
sb.append("\r\n");
}
return sb.toString();
} catch (IOException e) {
//logger.error("Error connecting to " + urlStr + ": " + e.getMessage());
System.out.println("Error connecting to " + urlStr + ": " + e.getMessage());
} finally {
try {
if (reader != null)
reader.close();
} catch (IOException e) {
}
}
return null;
}
}
import java.text.SimpleDateFormat;
import java.util.Date;
import java.util.Iterator;
import java.util.Map;
import java.util.Set;
import java.util.SortedMap;
public class PayCommonUtil {
/**
* 是否签名正确,规则是:按参数名称a-z排序,遇到空值的参数不参加签名。
* @return boolean
*/
public static boolean isTenpaySign(String characterEncoding, SortedMap<Object, Object> packageParams, String API_KEY) {
StringBuffer sb = new StringBuffer();
Set es = packageParams.entrySet();
Iterator it = es.iterator();
while(it.hasNext()) {
Map.Entry entry = (Map.Entry)it.next();
String k = (String)entry.getKey();
String v = (String)entry.getValue();
if(!"sign".equals(k) && null != v && !"".equals(v)) {
sb.append(k + "=" + v + "&");
}
}
sb.append("key=" + API_KEY);
//算出摘要
String mysign = MD5Util.MD5Encode(sb.toString(), characterEncoding).toLowerCase();
String tenpaySign = ((String)packageParams.get("sign")).toLowerCase();
//System.out.println(tenpaySign + " " + mysign);
return tenpaySign.equals(mysign);
}
/**
* @author
* @date 2016-4-22
* @Description:sign签名
* @param characterEncoding
* 编码格式
* @param parameters
* 请求参数
* @return
*/
public static String createSign(String characterEncoding, SortedMap<Object, Object> packageParams, String API_KEY) {
StringBuffer sb = new StringBuffer();
Set es = packageParams.entrySet();
Iterator it = es.iterator();
while (it.hasNext()) {
Map.Entry entry = (Map.Entry) it.next();
String k = (String) entry.getKey();
String v = (String) entry.getValue();
if (null != v && !"".equals(v) && !"sign".equals(k) && !"key".equals(k)) {
sb.append(k + "=" + v + "&");
}
}
sb.append("key=" + API_KEY);
String sign = MD5Util.MD5Encode(sb.toString(), characterEncoding).toUpperCase();
return sign;
}
/**
* @author
* @date 2016-4-22
* @Description:将请求参数转换为xml格式的string
* @param parameters
* 请求参数
* @return
*/
public static String getRequestXml(SortedMap<Object, Object> parameters) {
StringBuffer sb = new StringBuffer();
sb.append("<xml>");
Set es = parameters.entrySet();
Iterator it = es.iterator();
while (it.hasNext()) {
Map.Entry entry = (Map.Entry) it.next();
String k = (String) entry.getKey();
String v = (String) entry.getValue();
if ("attach".equalsIgnoreCase(k) || "body".equalsIgnoreCase(k) || "sign".equalsIgnoreCase(k)) {
sb.append("<" + k + ">" + "<![CDATA[" + v + "]]></" + k + ">");
} else {
sb.append("<" + k + ">" + v + "</" + k + ">");
}
}
sb.append("</xml>");
return sb.toString();
}
/**
* 取出一个指定长度大小的随机正整数.
*
* @param length
* int 设定所取出随机数的长度。length小于11
* @return int 返回生成的随机数。
*/
public static int buildRandom(int length) {
int num = 1;
double random = Math.random();
if (random < 0.1) {
random = random + 0.1;
}
for (int i = 0; i < length; i++) {
num = num * 10;
}
return (int) ((random * num));
}
/**
* 获取当前时间 yyyyMMddHHmmss
*
* @return String
*/
public static String getCurrTime() {
Date now = new Date();
SimpleDateFormat outFormat = new SimpleDateFormat("yyyyMMddHHmmss");
String s = outFormat.format(now);
return s;
}
}package com.entplus.wxpay.util;
public class PayConfigUtil {
//这个就是自己要保管好的私有Key了(切记只能放在自己的后台代码里,不能放在任何可能被看到源代码的客户端程序中)
// 每次自己Post数据给API的时候都要用这个key来对所有字段进行签名,生成的签名会放在Sign这个字段,API收到Post数据的时候也会用同样的签名算法对Post过来的数据进行签名和验证
// 收到API的返回的时候也要用这个key来对返回的数据算下签名,跟API的Sign数据进行比较,如果值不一致,有可能数据被第三方给篡改
private static String key = "";
//微信分配的公众号ID(开通公众号之后可以获取到)
private static String appID = "";
//微信支付分配的商户号ID(开通公众号的微信支付功能之后可以获取到)
private static String mchID = "";
//机器IP
private static String ip = "";
//以下是几个API的路径:
//1)被扫支付API
//public static String PAY_API = "https://api.mch.weixin.qq.com/pay/micropay";
public static String PAY_API = "https://api.mch.weixin.qq.com/pay/unifiedorder";
//2)被扫支付查询API
public static String PAY_QUERY_API = "https://api.mch.weixin.qq.com/pay/orderquery";
//3)退款API
public static String REFUND_API = "https://api.mch.weixin.qq.com/secapi/pay/refund";
//4)退款查询API
public static String REFUND_QUERY_API = "https://api.mch.weixin.qq.com/pay/refundquery";
//5)撤销API
public static String REVERSE_API = "https://api.mch.weixin.qq.com/secapi/pay/reverse";
//6)下载对账单API
public static String DOWNLOAD_BILL_API = "https://api.mch.weixin.qq.com/pay/downloadbill";
//7) 统计上报API
public static String REPORT_API = "https://api.mch.weixin.qq.com/payitil/report";
//回调地址
//public static String NOTIFY_URL = ""; //测试
public static String HttpsRequestClassName = "com.entplus.wxpay.util.HttpsRequest";
public static void setKey(String key) {
PayConfigUtil.key = key;
}
public static void setAppID(String appID) {
PayConfigUtil.appID = appID;
}
public static void setMchID(String mchID) {
PayConfigUtil.mchID = mchID;
}
public static void setIp(String ip) {
PayConfigUtil.ip = ip;
}
public static String getKey(){
return key;
}
public static String getAppid(){
return appID;
}
public static String getMchid(){
return mchID;
}
public static String getIP(){
return ip;
}
public static void setHttpsRequestClassName(String name){
HttpsRequestClassName = name;
}
}
import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.io.InputStream;
import java.util.HashMap;
import java.util.Iterator;
import java.util.List;
import java.util.Map;
import org.jdom.Document;
import org.jdom.Element;
import org.jdom.JDOMException;
import org.jdom.input.SAXBuilder;
public class XMLUtil {
/**
* 解析xml,返回第一级元素键值对。如果第一级元素有子节点,则此节点的值是子节点的xml数据。
* @param strxml
* @return
* @throws JDOMException
* @throws IOException
*/
public static Map doXMLParse(String strxml) throws JDOMException, IOException {
strxml = strxml.replaceFirst("encoding=\".*\"", "encoding=\"UTF-8\"");
if(null == strxml || "".equals(strxml)) {
return null;
}
Map m = new HashMap();
InputStream in = new ByteArrayInputStream(strxml.getBytes("UTF-8"));
SAXBuilder builder = new SAXBuilder();
Document doc = builder.build(in);
Element root = doc.getRootElement();
List list = root.getChildren();
Iterator it = list.iterator();
while(it.hasNext()) {
Element e = (Element) it.next();
String k = e.getName();
String v = "";
List children = e.getChildren();
if(children.isEmpty()) {
v = e.getTextNormalize();
} else {
v = XMLUtil.getChildrenText(children);
}
m.put(k, v);
}
//关闭流
in.close();
return m;
}
/**
* 获取子结点的xml
* @param children
* @return String
*/
public static String getChildrenText(List children) {
StringBuffer sb = new StringBuffer();
if(!children.isEmpty()) {
Iterator it = children.iterator();
while(it.hasNext()) {
Element e = (Element) it.next();
String name = e.getName();
String value = e.getTextNormalize();
List list = e.getChildren();
sb.append("<" + name + ">");
if(!list.isEmpty()) {
sb.append(XMLUtil.getChildrenText(list));
}
sb.append(value);
sb.append("</" + name + ">");
}
}
return sb.toString();
}
}
import java.security.MessageDigest;
public class MD5Util {
private static String byteArrayToHexString(byte b[]) {
StringBuffer resultSb = new StringBuffer();
for (int i = 0; i < b.length; i++)
resultSb.append(byteToHexString(b[i]));
return resultSb.toString();
}
private static String byteToHexString(byte b) {
int n = b;
if (n < 0)
n += 256;
int d1 = n / 16;
int d2 = n % 16;
return hexDigits[d1] + hexDigits[d2];
}
public static String MD5Encode(String origin, String charsetname) {
String resultString = null;
try {
resultString = new String(origin);
MessageDigest md = MessageDigest.getInstance("MD5");
if (charsetname == null || "".equals(charsetname))
resultString = byteArrayToHexString(md.digest(resultString
.getBytes()));
else
resultString = byteArrayToHexString(md.digest(resultString
.getBytes(charsetname)));
} catch (Exception exception) {
}
return resultString;
}
private static final String hexDigits[] = { "0", "1", "2", "3", "4", "5",
"6", "7", "8", "9", "a", "b", "c", "d", "e", "f" };
}开发过程中借助了网络资料,欢迎大家指正。
标签:
原文地址:http://blog.csdn.net/bjlf_1989/article/details/51829557
