> 企業微信介面文件 >> 1.[構造授權網頁連結](https://work.weixin.qq.com/api/doc/90000/90135/91022) >>  >> 2.回撥獲取到 Code 通過code+access_token去[請求使用者資訊](https://work.weixin.qq.com/api/doc/90000/90135/91023) >>  >> 3.[獲取access_token](https://work.weixin.qq.com/api/doc/90000/90135/91039) >>  > 除錯準備工作 -->內網穿透+域名 推薦向日葵有免費的,免費的開發測試夠用了 > 域名的配置成可信用 >  > 上程式碼 [Demo下載](https://codeload.github.com/SuperDust/wxauth2/zip/master) ``` [ApiController] [Route("api/[controller]")] public class Auth2Controller : ControllerBase { private readonly string _agentId = "1000002"; private readonly string _secret = "Y3f8ESBIBJoC8M_FPHOlpvmghS_Nn2ceFePRVZjw9_E"; private readonly string _corpId = "wwbf72a7a059eac0f8"; ///

/// 授權地址 ///

private readonly string _auth2url = "https://open.weixin.qq.com/connect/oauth2/authorize"; ///

/// 授權回撥地址 ///

private readonly string _callbackurl = "http://******.zicp.vip/auth2callback/api/Auth2/Callback"; ///

/// 獲取access_token地址 ///

private readonly string _gettokenurl = "https://qyapi.weixin.qq.com/cgi-bin/gettoken"; ///

/// 獲取訪問使用者身份地址 ///

private readonly string _getuserurl = "https://qyapi.weixin.qq.com/cgi-bin/user/getuserinfo"; private readonly ILogger _logger; private readonly IHttpClientFactory _clientFactory; private readonly IMemoryCache _memoryCache; public Auth2Controller(ILogger logger, IHttpClientFactory clientFactory, IMemoryCache memoryCache) { _logger = logger; _clientFactory = clientFactory; _memoryCache = memoryCache; } [HttpGet] public IActionResult Auth2(string redirecturi) { string strurl = $"{_auth2url}?" + $"&appid={_corpId}" + $"&redirect_uri={System.Web.HttpUtility.UrlEncode(_callbackurl)}" + $"&response_type=code" + $"&scope={_secret}" + $"&agentid={_agentId}" + $"&state={System.Web.HttpUtility.UrlEncode(redirecturi)}#wechat_redirect"; return Redirect(strurl); } [HttpGet("Callback")] public async Task Callback(string code, string state) { /** 1）code只能消費一次，不能重複消費。比如說，是否存在多個伺服器同時消費同一code情況。 2）code需要在有效期間消費（5分鐘），過期會自動失效。 */ string access_token = await GetAccessToken(); string url = $"{_getuserurl}?access_token={access_token}&code={code}"; HttpResponseMessage response = await _clientFactory.CreateClient().GetAsync(url); if (response.StatusCode == System.Net.HttpStatusCode.OK) { using (var responseStream = await response.Content.ReadAsStreamAsync()) { var userinfo = JsonConvert.DeserializeObject(new StreamReader(responseStream).ReadToEnd()); int errcode = userinfo.errcode; if (errcode == 0) { //企業成員 string UserId = userinfo.UserId; //外部成員 string OpenId = userinfo.OpenId; /** userid是系統生成的可以修改一次; 所以後面的業務邏輯如果遇到錯誤就要重新授權一下; */ if (UserId==null) { _memoryCache.Set("UserId", OpenId); } else { _memoryCache.Set("UserId", UserId); } } else { _logger.LogError($"getuserinfo請求錯誤:{userinfo.errmsg}"); return Ok(); } } } return Redirect($"{System.Web.HttpUtility.UrlDecode(state)}?UserId={_memoryCache.Get("UserId")}"); } public async Task GetAccessToken() { if (_memoryCache.Get("AccessToken") == null) { string url = $"{_gettokenurl}?corpid={_corpId}&corpsecret={_secret}"; HttpResponseMessage response = await _clientFactory.CreateClient().GetAsync(url); if (response.StatusCode == System.Net.HttpStatusCode.OK) { using (var responseStream = await response.Content.ReadAsStreamAsync()) { var access_token_result = JsonConvert.DeserializeObject(new StreamReader(responseStream).ReadToEnd()); int errcode = access_token_result.errcode; if (errcode == 0) { string access_token = access_token_result.access_token; int expires_in = access_token_result.expires_in; _memoryCache.Set("AccessToken", access_token, DateTimeOffset.Now.AddSeconds(expires_in - 10)); } else { _logger.LogError($"access_token請求錯誤:{access_token_result.errmsg }"); } } } } return _memoryCache.Get("AccessToken"); }