教你完成JAVA App支付後臺-微信支付
這篇內容看標題已經很明確了,由於微信是用xml通訊的,所以這一點比較噁心,各位可能需要在專案裡匯入一些解析xml的包。
首先放出工具類(包含支付寶用到的工具類),因為現在csdn下載都是扣積分的,因為工具類程式碼會在文尾貼出。
工具類直接下載:https://download.csdn.net/download/baidu_37366055/10807514
首先我在重新貼一下支付流程圖吧,我再重複一遍,一定要認真看流程圖,這樣對你業務邏輯的處理有很大的提升。
這裡寫圖片描述
知道了支付的大致流程,接下來就要分析如何支付了。在我的專案裡,支付的流程是這樣的:
首先,選擇商品和數量等,點選下單,此時會在後臺生成一張下單表,此表中的任何一條資料,有效期都在半小時內。半小時後該條下單資料就失效了。因此應該在半小時內完成支付。
下單後支付時,後臺返回手機端預付單,此時調起微信完成支付。支付後的結果和支付寶一樣,依然需要呼叫後臺的資料以確保交易的正確性。雖然很繁瑣,但是涉及到金錢的業務,一定要謹慎,作為程式設計師,我們也要對自己寫的程式碼負責。
1
2
接下來,就從預付單開始說起吧,假設現在已經下了單,那麼此時支付的話,需要後臺返回給手機端預付單,那麼程式碼就來了:(用到的工具類在文章開頭或文末)
拉取微信預付單
/**
* 拉取微信預付單
*/
@ValidatePermission(value = PermissionValidateType.Validate)
@Override
public BaseResult<Orders> getWXPay(BaseRequest<Orders> baseRequest)
{
BaseResult<Orders> baseResult = new BaseResult<>();
LogUtil.debugLog(logger, baseRequest);
Orders orders = baseRequest.getData();
Double price = orders.getOrderAmount();
if (price <= 0) // 防止抓包修改訂單金額造成損失
{
baseResult.setState(-999);
baseResult.setMsg("付款金額錯誤!");
baseResult.setSuccess(false);
return baseResult;
}
try
{
SortedMap<Object, Object> parameters = PayCommonUtil.getWXPrePayID(); // 獲取預付單,此處已做封裝,需要工具類
TravelFly travelFly = new TravelFly(); // 商品物件
travelFly.setId(orders.getProductId());
travelFly = travelFlyMapper.selectById(travelFly);
travelFly.setBusinesser(businesserMapper.selectByPrimaryKey(travelFly.getBusinesserId()));
orders.setTravelFly(travelFly);
parameters.put("body", "xxx產品-" + travelFly.getProductName());
parameters.put("spbill_create_ip", this.request.getRemoteAddr());
parameters.put("out_trade_no", orders.getId() + PayCommonUtil.getDateStr()); // 訂單id這裡我的訂單id生成規則是訂單id+時間
parameters.put("total_fee", "1"); // 測試時,每次支付一分錢,微信支付所傳的金額是以分為單位的,因此實際開發中需要x100
// parameters.put("total_fee", orders.getOrderAmount()*100+""); // 上線後,將此程式碼放開
// 設定簽名
String sign = PayCommonUtil.createSign("UTF-8", parameters);
parameters.put("sign", sign);
// 封裝請求引數結束
String requestXML = PayCommonUtil.getRequestXml(parameters); // 獲取xml結果
logger.debug("封裝請求引數是:" + requestXML);
// 呼叫統一下單介面
String result = PayCommonUtil.httpsRequest(PropertyUtil.getInstance().getProperty("WxPay.payURL"), "POST",
requestXML);
logger.debug("呼叫統一下單介面:" + result);
SortedMap<Object, Object> parMap = PayCommonUtil.startWXPay(result);
logger.debug("最終的map是:" + parMap.toString());
if (parMap != null)
{
orders.setWxPayOrderString(JSON.toJSONString(parMap));
baseResult.setData(orders);
} else
{
baseResult.setState(-999);
baseResult.setMsg("支付出現異常,請稍後重試!");
baseResult.setSuccess(false);
}
} catch (Exception e)
{
e.printStackTrace();
baseResult.setState(-999);
baseResult.setMsg("程式異常!");
baseResult.setSuccess(false);
logger.error(e.getMessage());
}
return baseResult;
}
由於測試的時候一定會在外網測試,因為實際支付結果會通知給後臺,所以這裡為了除錯方便,就將日誌儲存成了文字。
獲取結果
/**
* 微信非同步通知
*/
@SuppressWarnings("unchecked")
@ValidatePermission
@RequestMapping("/wx")
@ResponseBody
public void wxNotify(HttpServletRequest request, HttpServletResponse response) throws IOException, JDOMException
{
String result = PayCommonUtil.reciverWx(request); // 接收到非同步的引數
Map<String, String> m = new HashMap<String, String>();// 解析xml成map
if (m != null && !"".equals(m))
{
m = XMLUtil.doXMLParse(result);
}
// 過濾空 設定 TreeMap
SortedMap<Object, Object> packageParams = new TreeMap<Object, Object>();
Iterator it = m.keySet().iterator();
while (it.hasNext())
{
String parameter = (String) it.next();
String parameterValue = m.get(parameter);
String v = "";
if (null != parameterValue)
{
v = parameterValue.trim();
}
packageParams.put(parameter, v);
}
// 判斷簽名是否正確
String resXml = "";
if (PayCommonUtil.isTenpaySign("UTF-8", packageParams))
{
if ("SUCCESS".equals((String) packageParams.get("return_code")))
{
// 如果返回成功
String mch_id = (String) packageParams.get("mch_id"); // 商戶號
String out_trade_no = (String) packageParams.get("out_trade_no"); // 商戶訂單號
String total_fee = (String) packageParams.get("total_fee");
// String transaction_id = (String)
// packageParams.get("transaction_id"); // 微信支付訂單號
// 查詢訂單 根據訂單號查詢訂單
String orderId = out_trade_no.substring(0, out_trade_no.length() - PayCommonUtil.TIME.length());
Orders orders = ordersMapper.selectByPrimaryKey(Integer.parseInt(orderId));
// 驗證商戶ID 和 價格 以防止篡改金額
if (PropertyUtil.getInstance().getProperty("WxPay.mchid").equals(mch_id) && orders != null
// &&
// total_fee.trim().toString().equals(orders.getOrderAmount())
// // 實際專案中將此註釋刪掉,以保證支付金額相等
)
{
/** 這裡是我專案裡的消費狀態
* 1.待付款=0 2.付款完成=1
* 3.消費成功=2
* 4.取消=-1
* 5.發起退款=-2
* 6.退款成功=-3
* 7.退款失敗=3(由於商戶拒絕退款或其他原因導致退款失敗)
*/
insertWxNotice(packageParams);
orders.setPayWay("1"); // 變更支付方式為wx
orders.setOrderState("1"); // 訂單狀態為已付款
ordersMapper.updateByPrimaryKeySelective(orders); // 變更資料庫中該訂單狀態
// ordersMapper.updatePayStatus(Integer.parseInt(orderId));
resXml = "<xml>" + "<return_code><![CDATA[SUCCESS]]></return_code>"
+ "<return_msg><![CDATA[OK]]></return_msg>" + "</xml> ";
} else
{
resXml = "<xml>" + "<return_code><![CDATA[FAIL]]></return_code>"
+ "<return_msg><![CDATA[引數錯誤]]></return_msg>" + "</xml> ";
}
} else // 如果微信返回支付失敗,將錯誤資訊返回給微信
{
resXml = "<xml>" + "<return_code><![CDATA[FAIL]]></return_code>"
+ "<return_msg><![CDATA[交易失敗]]></return_msg>" + "</xml> ";
}
} else
{
resXml = "<xml>" + "<return_code><![CDATA[FAIL]]></return_code>"
+ "<return_msg><![CDATA[通知簽名驗證失敗]]></return_msg>" + "</xml> ";
}
// 處理業務完畢,將業務結果通知給微信
// ------------------------------
BufferedOutputStream out = new BufferedOutputStream(response.getOutputStream());
out.write(resXml.getBytes());
out.flush();
out.close();
}
附:工具類程式碼:
package com.loveFly.utils;
import java.io.BufferedReader;
import java.io.BufferedWriter;
import java.io.File;
import java.io.FileNotFoundException;
import java.io.FileOutputStream;
import java.io.FileWriter;
import java.io.IOException;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.io.OutputStream;
import java.io.PrintWriter;
import java.io.StringWriter;
import java.io.UnsupportedEncodingException;
import java.net.ConnectException;
import java.net.URL;
import java.text.SimpleDateFormat;
import java.util.Date;
import java.util.Iterator;
import java.util.Map;
import java.util.Random;
import java.util.Set;
import java.util.SortedMap;
import java.util.TreeMap;
import javax.net.ssl.HttpsURLConnection;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSocketFactory;
import javax.net.ssl.TrustManager;
import javax.servlet.http.HttpServletRequest;
import com.alibaba.fastjson.JSONObject;
import com.alipay.api.AlipayClient;
import com.alipay.api.DefaultAlipayClient;
public class PayCommonUtil
{
public static final String TIME = "yyyyMMddHHmmss";
/**
* 建立支付寶交易物件
*/
public static AlipayClient getAliClient()
{
AlipayClient alipayClient = new DefaultAlipayClient(PropertyUtil.getInstance().getProperty("AliPay.payURL"),
PropertyUtil.getInstance().getProperty("AliPay.appId"),
PropertyUtil.getInstance().getProperty("AliPay.privateKey"), "json", "utf-8",
PropertyUtil.getInstance().getProperty("AliPay.publicKey"), "RSA2");
return alipayClient;
}
/**
* 建立微信交易物件
*/
public static SortedMap<Object, Object> getWXPrePayID()
{
SortedMap<Object, Object> parameters = new TreeMap<Object, Object>();
parameters.put("appid", PropertyUtil.getInstance().getProperty("WxPay.appid"));
parameters.put("mch_id", PropertyUtil.getInstance().getProperty("WxPay.mchid"));
parameters.put("nonce_str", PayCommonUtil.CreateNoncestr());
parameters.put("fee_type", "CNY");
parameters.put("notify_url", PropertyUtil.getInstance().getProperty("WxPay.notifyurl"));
parameters.put("trade_type", "APP");
return parameters;
}
/**
* 再次簽名,支付
*/
public static SortedMap<Object, Object> startWXPay(String result)
{
try
{
Map<String, String> map = XMLUtil.doXMLParse(result);
SortedMap<Object, Object> parameterMap = new TreeMap<Object, Object>();
parameterMap.put("appid", PropertyUtil.getInstance().getProperty("WxPay.appid"));
parameterMap.put("partnerid", PropertyUtil.getInstance().getProperty("WxPay.mchid"));
parameterMap.put("prepayid", map.get("prepay_id"));
parameterMap.put("package", "Sign=WXPay");
parameterMap.put("noncestr", PayCommonUtil.CreateNoncestr());
// 本來生成的時間戳是13位,但是ios必須是10位,所以截取了一下
parameterMap.put("timestamp",
Long.parseLong(String.valueOf(System.currentTimeMillis()).toString().substring(0, 10)));
String sign = PayCommonUtil.createSign("UTF-8", parameterMap);
parameterMap.put("sign", sign);
return parameterMap;
} catch (Exception e)
{
e.printStackTrace();
}
return null;
}
/**
* 建立隨機數
*
* @param length
* @return
*/
public static String CreateNoncestr()
{
String chars = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
String res = "";
for (int i = 0; i < 16; i++)
{
Random rd = new Random();
res += chars.charAt(rd.nextInt(chars.length() - 1));
}
return res;
}
/**
* 是否簽名正確,規則是:按引數名稱a-z排序,遇到空值的引數不參加簽名。
*
* @return boolean
*/
public static boolean isTenpaySign(String characterEncoding, SortedMap<Object, Object> packageParams)
{
StringBuffer sb = new StringBuffer();
Set es = packageParams.entrySet();
Iterator it = es.iterator();
while (it.hasNext())
{
Map.Entry entry = (Map.Entry) it.next();
String k = (String) entry.getKey();
String v = (String) entry.getValue();
if (!"sign".equals(k) && null != v && !"".equals(v))
{
sb.append(k + "=" + v + "&");
}
}
sb.append("key=" + PropertyUtil.getInstance().getProperty("WxPay.key"));
// 算出摘要
String mysign = MD5Util.MD5Encode(sb.toString(), characterEncoding).toLowerCase();
String tenpaySign = ((String) packageParams.get("sign")).toLowerCase();
// System.out.println(tenpaySign + " " + mysign);
return tenpaySign.equals(mysign);
}
/**
* @Description:建立sign簽名
* @param characterEncoding
* 編碼格式
* @param parameters
* 請求引數
* @return
*/
public static String createSign(String characterEncoding, SortedMap<Object, Object> parameters)
{
StringBuffer sb = new StringBuffer();
Set es = parameters.entrySet();
Iterator it = es.iterator();
while (it.hasNext())
{
Map.Entry entry = (Map.Entry) it.next();
String k = (String) entry.getKey();
Object v = entry.getValue();
if (null != v && !"".equals(v) && !"sign".equals(k) && !"key".equals(k))
{
sb.append(k + "=" + v + "&");
}
}
sb.append("key=" + PropertyUtil.getInstance().getProperty("WxPay.key"));
String sign = MD5Util.MD5Encode(sb.toString(), characterEncoding).toUpperCase();
return sign;
}
/**
* @Description:將請求引數轉換為xml格式的string
* @param parameters
* 請求引數
* @return
*/
public static String getRequestXml(SortedMap<Object, Object> parameters)
{
StringBuffer sb = new StringBuffer();
sb.append("<xml>");
Set es = parameters.entrySet();
Iterator it = es.iterator();
while (it.hasNext())
{
Map.Entry entry = (Map.Entry) it.next();
String k = (String) entry.getKey();
String v = (String) entry.getValue();
if ("attach".equalsIgnoreCase(k) || "body".equalsIgnoreCase(k))
{
sb.append("<" + k + ">" + "<![CDATA[" + v + "]]></" + k + ">");
} else
{
sb.append("<" + k + ">" + v + "</" + k + ">");
}
}
sb.append("</xml>");
return sb.toString();
}
/**
* @Description:返回給微信的引數
* @param return_code
* 返回編碼
* @param return_msg
* 返回資訊
* @return
*/
public static String setXML(String return_code, String return_msg)
{
return "<xml><return_code><![CDATA[" + return_code + "]]></return_code><return_msg><![CDATA[" + return_msg
+ "]]></return_msg></xml>";
}
/**
* 傳送https請求
*
* @param requestUrl
* 請求地址
* @param requestMethod
* 請求方式(GET、POST)
* @param outputStr
* 提交的資料
* @return 返回微信伺服器響應的資訊
*/
public static String httpsRequest(String requestUrl, String requestMethod, String outputStr)
{
try
{
// 建立SSLContext物件,並使用我們指定的信任管理器初始化
TrustManager[] tm =
{ new TrustManagerUtil() };
SSLContext sslContext = SSLContext.getInstance("SSL", "SunJSSE");
sslContext.init(null, tm, new java.security.SecureRandom());
// 從上述SSLContext物件中得到SSLSocketFactory物件
SSLSocketFactory ssf = sslContext.getSocketFactory();
URL url = new URL(requestUrl);
HttpsURLConnection conn = (HttpsURLConnection) url.openConnection();
// conn.setSSLSocketFactory(ssf);
conn.setDoOutput(true);
conn.setDoInput(true);
conn.setUseCaches(false);
// 設定請求方式(GET/POST)
conn.setRequestMethod(requestMethod);
conn.setRequestProperty("content-type", "application/x-www-form-urlencoded");
// 當outputStr不為null時向輸出流寫資料
if (null != outputStr)
{
OutputStream outputStream = conn.getOutputStream();
// 注意編碼格式
outputStream.write(outputStr.getBytes("UTF-8"));
outputStream.close();
}
// 從輸入流讀取返回內容
InputStream inputStream = conn.getInputStream();
InputStreamReader inputStreamReader = new InputStreamReader(inputStream, "UTF-8");
BufferedReader bufferedReader = new BufferedReader(inputStreamReader);
String str = null;
StringBuffer buffer = new StringBuffer();
while ((str = bufferedReader.readLine()) != null)
{
buffer.append(str);
}
// 釋放資源
bufferedReader.close();
inputStreamReader.close();
inputStream.close();
inputStream = null;
conn.disconnect();
return buffer.toString();
} catch (ConnectException ce)
{
// log.error("連線超時:{}", ce);
} catch (Exception e)
{
// log.error("https請求異常:{}", e);
}
return null;
}
/**
* 傳送https請求
*
* @param requestUrl
* 請求地址
* @param requestMethod
* 請求方式(GET、POST)
* @param outputStr
* 提交的資料
* @return JSONObject(通過JSONObject.get(key)的方式獲取json物件的屬性值)
*/
public static JSONObject httpsRequest(String requestUrl, String requestMethod)
{
JSONObject jsonObject = null;
try
{
// 建立SSLContext物件,並使用我們指定的信任管理器初始化
TrustManager[] tm =
{ new TrustManagerUtil() };
SSLContext sslContext = SSLContext.getInstance("SSL", "SunJSSE");
sslContext.init(null, tm, new java.security.SecureRandom());
// 從上述SSLContext物件中得到SSLSocketFactory物件
SSLSocketFactory ssf = sslContext.getSocketFactory();
URL url = new URL(requestUrl);
HttpsURLConnection conn = (HttpsURLConnection) url.openConnection();
// conn.setSSLSocketFactory(ssf);
conn.setDoOutput(true);
conn.setDoInput(true);
conn.setUseCaches(false);
conn.setConnectTimeout(3000);
// 設定請求方式(GET/POST)
conn.setRequestMethod(requestMethod);
// conn.setRequestProperty("content-type",
// "application/x-www-form-urlencoded");
// 當outputStr不為null時向輸出流寫資料
// 從輸入流讀取返回內容
InputStream inputStream = conn.getInputStream();
InputStreamReader inputStreamReader = new InputStreamReader(inputStream, "UTF-8");
BufferedReader bufferedReader = new BufferedReader(inputStreamReader);
String str = null;
StringBuffer buffer = new StringBuffer();
while ((str = bufferedReader.readLine()) != null)
{
buffer.append(str);
}
// 釋放資源
bufferedReader.close();
inputStreamReader.close();
inputStream.close();
inputStream = null;
conn.disconnect();
jsonObject = JSONObject.parseObject(buffer.toString());
} catch (ConnectException ce)
{
// log.error("連線超時:{}", ce);
} catch (Exception e)
{
System.out.println(e);
// log.error("https請求異常:{}", e);
}
return jsonObject;
}
public static String urlEncodeUTF8(String source)
{
String result = source;
try
{
result = java.net.URLEncoder.encode(source, "utf-8");
} catch (UnsupportedEncodingException e)
{
e.printStackTrace();
}
return result;
}
/**
* 接收微信的非同步通知
*
* @throws IOException
*/
public static String reciverWx(HttpServletRequest request) throws IOException
{
InputStream inputStream;
StringBuffer sb = new StringBuffer();
inputStream = request.getInputStream();
String s;
BufferedReader in = new BufferedReader(new InputStreamReader(inputStream, "UTF-8"));
while ((s = in.readLine()) != null)
{
sb.append(s);
}
in.close();
inputStream.close();
return sb.toString();
}
/**
* 產生num位的隨機數
*
* @return
*/
public static String getRandByNum(int num)
{
String length = "1";
for (int i = 0; i < num; i++)
{
length += "0";
}
Random rad = new Random();
String result = rad.nextInt(Integer.parseInt(length)) + "";
if (result.length() != num)
{
return getRandByNum(num);
}
return result;
}
/**
* 返回當前時間字串
*
* @return yyyyMMddHHmmss
*/
public static String getDateStr()
{
SimpleDateFormat sdf = new SimpleDateFormat(TIME);
return sdf.format(new Date());
}
/**
* 將日誌儲存至指定路徑
*
* @param path
* @param str
*/
public static void saveLog(String path, String str)
{
File file = new File(path);
FileOutputStream fos = null;
try
{
fos = new FileOutputStream(path);
fos.write(str.getBytes());
fos.close();
} catch (FileNotFoundException e)
{
e.printStackTrace();
} catch (IOException e)
{
e.printStackTrace();
}
}
public static void saveE(String path, Exception exception)
{
try {
int i = 1 / 0;
} catch (final Exception e) {
try {
new PrintWriter(new BufferedWriter(new FileWriter(
path, true)), true).println(new Object() {
public String toString() {
StringWriter stringWriter = new StringWriter();
PrintWriter writer = new PrintWriter(stringWriter);
e.printStackTrace(writer);
StringBuffer buffer = stringWriter.getBuffer();
return buffer.toString();
}
});
} catch (IOException e1) {
e1.printStackTrace();
}
}
}
}
至此,一套完整的支付流程就跑完了,。可以直接拷貝到專案裡用,前提是公鑰私鑰AppId等都沒有問題哦。
ok本系列第三方支付就到此為止,如果真的幫到你,那真的是太好了。