微信支付 JAVA服务端 最详尽代码(含回调+所有工具类)
程序员文章站
2022-03-07 08:30:17
...
由于微信支付的官方文档说的比较模糊,而且坑比较多,本站的文章大多数也都残缺不全,少很多必要的方法,在此总结出一份能用的demo,废话不多说,上代码。
首先是一些过程中需要用到的工具类
最重要的是商户的一些参数信息
public class WxConfig {
/**
* 服务号相关信息
*/
public final static String APPID = "服务号的应用号";
public final static String MCH_ID = "商户号";
public final static String API_KEY = "API**";
public final static String SIGN_TYPE = "MD5";//签名加密方式
public final static String UNIFIED_ORDER_URL = "https://api.mch.weixin.qq.com/pay/unifiedorder";//请求下单的http
}
然后是微信的支付请求发起,服务端会向前端返回一串XML格式的代码,里面包含一些必要的参数
public Result wxPay(String payToken, HttpServletRequest request) {
//这里是你的一些逻辑代码,用来获取和校验下单的一些参数,就不贴了
//把需要的参数放进map中
SortedMap<Object, Object> parameters = new TreeMap<Object, Object>();
parameters.put("appid", WxConfig.APPID);
parameters.put("mch_id", WxConfig.MCH_ID);
parameters.put("nonce_str", UUID.randomUUID().toString().substring(0, 15));
parameters.put("body", 商品信息);
parameters.put("out_trade_no",); //订单id
parameters.put("fee_type", "CNY");
//请注意!!!付款金额以分为单位,务必转换,需为整数,不得包含小数点
parameters.put("total_fee",付款金额);
parameters.put("spbill_create_ip", getRemoteAddr.getIp2(request));//这里需要获取客户端的ip地址
parameters.put("notify_url", "回调函数");
parameters.put("trade_type", "APP");
//设置签名
String sign = WSign.createSign("UTF-8", parameters);
parameters.put("sign", sign);
//封装请求参数结束
String requestXML = WSign.getRequestXml(parameters);
//调用统一下单接口
String result = HttpRequest.httpsRequest(WxConfig.UNIFIED_ORDER_URL, "POST", requestXML);
System.out.println(orderCode1);
System.out.println("\n" + result);
try {
Map<String, String> map = XMLUtil.doXMLParse(result);
SortedMap<Object, Object> parameterMap2 = new TreeMap<Object, Object>();
parameterMap2.put("appid", WxConfig.APPID);
parameterMap2.put("partnerid", WxConfig.MCH_ID);
parameterMap2.put("prepayid", map.get("prepay_id"));
parameterMap2.put("package", "Sign=WXPay");
parameterMap2.put("noncestr", WSign.CreateNoncestr());
//本来生成的时间戳是13位,但是ios必须是10位,所以截取了一下 ,其他客户端也可使用
parameterMap2.put("timestamp", Long.parseLong(String.valueOf(System.currentTimeMillis()).toString().substring(0, 10)));
String sign2 = WSign.createSign("UTF-8", parameterMap2);
parameterMap2.put("sign", sign2);
/* landlordNew.setWxSign(sign2);
this.landlordNewService.update(landlordNew);*/
Map map1 = new HashMap();
map1.put("wxpay",parameterMap2);
return new Result(1, StatusCode.OK, "ok", map1);
} catch (
JDOMException e) {
e.printStackTrace();
} catch (
IOException e) {
e.printStackTrace();
}
return null;
}
以下是一些使用到的方法工具类
import com.ssbfenqi.mtest2.util.MD5Util;
import com.ssbfenqi.mtest2.util.XMLUtil;
import org.jdom.Document;
import org.jdom.Element;
import org.jdom.JDOMException;
import org.jdom.input.SAXBuilder;
import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.io.InputStream;
import java.util.*;
public class WSign {
public static String createSign(String characterEncoding, SortedMap<Object, Object> parameters) {
StringBuffer sb = new StringBuffer();
Set es = parameters.entrySet();
Iterator it = es.iterator();
while (it.hasNext()) {
Map.Entry entry = (Map.Entry) it.next();
String k = (String) entry.getKey();
Object v = entry.getValue();
if (null != v && !"".equals(v)
&& !"sign".equals(k) && !"key".equals(k)) {
sb.append(k + "=" + v + "&");
}
}
sb.append("key=" + WxConfig.API_KEY);
String sign = MD5Util.MD5Encode(sb.toString(), characterEncoding).toUpperCase();
return sign;
}
public static String getRequestXml(SortedMap<Object, Object> parameters) {
StringBuffer sb = new StringBuffer();
sb.append("<xml>");
Set es = parameters.entrySet();
Iterator it = es.iterator();
while (it.hasNext()) {
Map.Entry entry = (Map.Entry) it.next();
String k = (String) entry.getKey();
String v = (String) entry.getValue();
sb.append("<" + k + ">" + "<![CDATA[" + v + "]]></" + k + ">");
}
sb.append("</xml>");
return sb.toString();
}
public static String CreateNoncestr() {
String chars = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
String res = "";
for (int i = 0; i < 16; i++) {
Random rd = new Random();
res += chars.charAt(rd.nextInt(chars.length() - 1));
}
return res;
}
/**
* 解析xml,返回第一级元素键值对。如果第一级元素有子节点,则此节点的值是子节点的xml数据。
*
* @param strxml
* @return
* @throws JDOMException
* @throws IOException
*/
public static Map doXMLParse(String strxml) throws JDOMException, IOException {
strxml = strxml.replaceFirst("encoding=\".*\"", "encoding=\"UTF-8\"");
if (null == strxml || "".equals(strxml)) {
return null;
}
Map m = new HashMap();
InputStream in = new ByteArrayInputStream(strxml.getBytes("UTF-8"));
SAXBuilder builder = new SAXBuilder();
Document doc = builder.build(in);
Element root = doc.getRootElement();
List list = root.getChildren();
Iterator it = list.iterator();
while (it.hasNext()) {
Element e = (Element) it.next();
String k = e.getName();
String v = "";
List children = e.getChildren();
if (children.isEmpty()) {
v = e.getTextNormalize();
} else {
v = XMLUtil.getChildrenText(children);
}
m.put(k, v);
}
//关闭流
in.close();
return m;
}
}
以下是用来获取客户端ip 的类
import com.aliyuncs.utils.StringUtils;
import javax.servlet.http.HttpServletRequest;
public class getRemoteAddr {
public static String getIp2(HttpServletRequest request) {
String ip = request.getHeader("X-Forwarded-For");
if(StringUtils.isNotEmpty(ip) && !"unKnown".equalsIgnoreCase(ip)){
//多次反向代理后会有多个ip值,第一个ip才是真实ip
int index = ip.indexOf(",");
if(index != -1){
return ip.substring(0,index);
}else{
return ip;
}
}
ip = request.getHeader("X-Real-IP");
if(StringUtils.isNotEmpty(ip) && !"unKnown".equalsIgnoreCase(ip)){
return ip;
}
return request.getRemoteAddr();
}
}
用来发送https请求的类
import javax.net.ssl.HttpsURLConnection;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSocketFactory;
import javax.net.ssl.TrustManager;
import java.io.BufferedReader;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.io.OutputStream;
import java.net.ConnectException;
import java.net.URL;
public class HttpRequest {
/**
* 发送https请求
*
* @param requestUrl 请求地址
* @param requestMethod 请求方式(GET、POST)
* @param outputStr 提交的数据
* @return 返回微信服务器响应的信息
*/
public static String httpsRequest(String requestUrl, String requestMethod, String outputStr) {
try {
// 创建SSLContext对象,并使用我们指定的信任管理器初始化
TrustManager[] tm = {new MyX509TrustManager()};
SSLContext sslContext = SSLContext.getInstance("SSL", "SunJSSE");
sslContext.init(null, tm, new java.security.SecureRandom());
// 从上述SSLContext对象中得到SSLSocketFactory对象
SSLSocketFactory ssf = sslContext.getSocketFactory();
URL url = new URL(requestUrl);
HttpsURLConnection conn = (HttpsURLConnection) url.openConnection();
//conn.setSSLSocketFactory(ssf);
conn.setDoOutput(true);
conn.setDoInput(true);
conn.setUseCaches(false);
// 设置请求方式(GET/POST)
conn.setRequestMethod(requestMethod);
conn.setRequestProperty("content-type", "application/x-www-form-urlencoded");
// 当outputStr不为null时向输出流写数据
if (null != outputStr) {
OutputStream outputStream = conn.getOutputStream();
// 注意编码格式
outputStream.write(outputStr.getBytes("UTF-8"));
outputStream.close();
}
// 从输入流读取返回内容
InputStream inputStream = conn.getInputStream();
InputStreamReader inputStreamReader = new InputStreamReader(inputStream, "UTF-8");
BufferedReader bufferedReader = new BufferedReader(inputStreamReader);
String str = null;
StringBuffer buffer = new StringBuffer();
while ((str = bufferedReader.readLine()) != null) {
buffer.append(str);
}
// 释放资源
bufferedReader.close();
inputStreamReader.close();
inputStream.close();
inputStream = null;
conn.disconnect();
return buffer.toString();
} catch (ConnectException ce) {
// log.error("连接超时:{}", ce);
} catch (Exception e) {
// log.error("https请求异常:{}", e);
}
return null;
}
}
发送https请求需要用到的
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import javax.net.ssl.X509TrustManager;
public class MyX509TrustManager implements X509TrustManager {
@Override
public void checkClientTrusted(X509Certificate[] arg0, String arg1)
throws CertificateException {
// TODO Auto-generated method stub
}
@Override
public void checkServerTrusted(X509Certificate[] arg0, String arg1)
throws CertificateException {
// TODO Auto-generated method stub
}
@Override
public X509Certificate[] getAcceptedIssuers() {
// TODO Auto-generated method stub
return null;
}
}
回调函数需要用到的工具类
import com.ssbfenqi.mtest2.util.MD5Util;
import java.text.SimpleDateFormat;
import java.util.*;
public class PayCommonUtil {
/**
* 是否签名正确,规则是:按参数名称a-z排序,遇到空值的参数不参加签名。
* @return boolean
*/
public static boolean isTenpaySign(String characterEncoding, SortedMap<Object, Object> packageParams, String API_KEY) {
StringBuffer sb = new StringBuffer();
Set es = packageParams.entrySet();
Iterator it = es.iterator();
while(it.hasNext()) {
Map.Entry entry = (Map.Entry)it.next();
String k = (String)entry.getKey();
String v = (String)entry.getValue();
if(!"sign".equals(k) && null != v && !"".equals(v)) {
sb.append(k + "=" + v + "&");
}
}
sb.append("key=" + API_KEY);
//算出摘要
String mysign = MD5Util.MD5Encode(sb.toString(), characterEncoding).toLowerCase();
String tenpaySign = ((String)packageParams.get("sign")).toLowerCase();
//System.out.println(tenpaySign + " " + mysign);
return tenpaySign.equals(mysign);
}
/**
* @author
* @date 2016-4-22
* @Description:sign签名
* @param characterEncoding
* 编码格式
* 请求参数
* @return
*/
public static String createSign(String characterEncoding, SortedMap<Object, Object> packageParams, String API_KEY) {
StringBuffer sb = new StringBuffer();
Set es = packageParams.entrySet();
Iterator it = es.iterator();
while (it.hasNext()) {
Map.Entry entry = (Map.Entry) it.next();
String k = (String) entry.getKey();
String v = (String) entry.getValue();
if (null != v && !"".equals(v) && !"sign".equals(k) && !"key".equals(k)) {
sb.append(k + "=" + v + "&");
}
}
sb.append("key=" + API_KEY);
String sign = MD5Util.MD5Encode(sb.toString(), characterEncoding).toUpperCase();
return sign;
}
/**
* @author
* @date 2016-4-22
* @Description:将请求参数转换为xml格式的string
* @param parameters
* 请求参数
* @return
*/
public static String getRequestXml(SortedMap<Object, Object> parameters) {
StringBuffer sb = new StringBuffer();
sb.append("<xml>");
Set es = parameters.entrySet();
Iterator it = es.iterator();
while (it.hasNext()) {
Map.Entry entry = (Map.Entry) it.next();
String k = (String) entry.getKey();
String v = (String) entry.getValue();
if ("attach".equalsIgnoreCase(k) || "body".equalsIgnoreCase(k) || "sign".equalsIgnoreCase(k)) {
sb.append("<" + k + ">" + "<![CDATA[" + v + "]]></" + k + ">");
} else {
sb.append("<" + k + ">" + v + "</" + k + ">");
}
}
sb.append("</xml>");
return sb.toString();
}
/**
* 取出一个指定长度大小的随机正整数.
*
* @param length
* int 设定所取出随机数的长度。length小于11
* @return int 返回生成的随机数。
*/
public static int buildRandom(int length) {
int num = 1;
double random = Math.random();
if (random < 0.1) {
random = random + 0.1;
}
for (int i = 0; i < length; i++) {
num = num * 10;
}
return (int) ((random * num));
}
/**
* 获取当前时间 yyyyMMddHHmmss
*
* @return String
*/
public static String getCurrTime() {
Date now = new Date();
SimpleDateFormat outFormat = new SimpleDateFormat("yyyyMMddHHmmss");
String s = outFormat.format(now);
return s;
}
}
回调函数
/**
*
*微信支付回调
*/
@Transactional
@RequestMapping("/wxNotifySignContract")
public String wxNotifySignContract(HttpServletRequest request, HttpServletResponse response) throws IOException, JDOMException {
try {
//读取参数
InputStream inputStream;
StringBuffer sb = new StringBuffer();
inputStream = request.getInputStream();
String s;
BufferedReader in = new BufferedReader(new InputStreamReader(inputStream, "UTF-8"));
while ((s = in.readLine()) != null) {
sb.append(s);
}
in.close();
inputStream.close();
//解析xml成map
Map<String, String> m = new HashMap<String, String>();
m = XMLUtil.doXMLParse(sb.toString());
for (Object keyValue : m.keySet()) {
System.out.println(keyValue + "=" + m.get(keyValue));
}
//过滤空 设置 TreeMap
SortedMap<Object, Object> packageParams = new TreeMap<Object, Object>();
Iterator it = m.keySet().iterator();
while (it.hasNext()) {
String parameter = (String) it.next();
String parameterValue = m.get(parameter);
String v = "";
if (null != parameterValue) {
v = parameterValue.trim();
}
packageParams.put(parameter, v);
}
//判断签名是否正确
String resXml = "";
if (PayCommonUtil.isTenpaySign("UTF-8", packageParams, WxConfig.API_KEY)) {
if ("SUCCESS".equals((String) packageParams.get("result_code"))) {
// 这里是支付成功
//////////执行自己的业务逻辑////////////////
String appid = (String) packageParams.get("appid");//appid
String sign = (String) packageParams.get("sign");//签名
String total_fee = (String) packageParams.get("total_fee");//总金额
String mch_id = (String) packageParams.get("mch_id"); //商户号
String openid = (String) packageParams.get("openid"); //用户标识
String body = (String) packageParams.get("body"); //用户标识
//微信回调 商户号回调的商户订单号是out_trade_no
String out_trade_no = (String) packageParams.get("out_trade_no"); //商户订单号
String transaction_id = (String) packageParams.get("transaction_id"); //微信支付订单号
String cash_fee = (String) packageParams.get("cash_fee"); //微信支付金额
String time_end = (String) packageParams.get("time_end"); //微信支付时间
//获取到以上信息后,下面写你的逻辑代码,对订单状态的一些操作
resXml = "<xml><return_code><![CDATA[SUCCESS]]></return_code>"
+ "<return_msg><![CDATA[OK]]></return_msg></xml> ";
BufferedOutputStream out = new BufferedOutputStream(
response.getOutputStream());
out.write(resXml.getBytes());
out.flush();
out.close();
log.error("微信回调接口成功--------");
return resXml;
} else {
log.info("支付失败,错误信息:" + packageParams.get("err_code"));
resXml = "<xml>" + "<return_code><![CDATA[FAIL]]></return_code>"
+ "<return_msg><![CDATA[报文为空]]></return_msg>" + "</xml> ";
return resXml;
}
} else {
resXml = "<xml>" + "<return_code><![CDATA[FAIL]]></return_code>"
+ "<return_msg><![CDATA[通知签名验证失败]]></return_msg>" + "</xml> ";
log.info("通知签名验证失败");
return resXml;
}
} catch(Exception ex){
log.error(ex.toString());
log.error("微信回调接口失败--------");
}
return null;
}
到此为止从支付到回调的过程就结束了
程序员的生涯浓缩且短暂,愿各位程序员同胞一起努力,砥砺前行。
上一篇: Golang 限流器的使用和实现示例
下一篇: TS是什么和js的差异