<?php
namespace payment;
use app\service\AppMiniUserService;
* 微信支付
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
*/
class Weixin
{
private $config;
* 构造方法
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-17
* @desc description
* @param [array] $params [输入参数(支付配置参数)]
*/
public function __construct($params = [])
{
$this->config = $params;
}
* 配置信息
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
*/
public function Config()
{
$base = [
'name' => '微信',
'version' => '1.1.7',
'apply_version' => '不限',
'apply_terminal'=> ['pc', 'h5', 'ios', 'android', 'weixin', 'qq'],
'desc' => '适用公众号+PC+H5+APP+微信小程序,即时到帐支付方式,买家的交易资金直接打入卖家账户,快速回笼交易资金。 <a href="https://pay.weixin.qq.com/" target="_blank">立即申请</a>',
'author' => 'Devil',
'author_url' => 'http://shopxo.net/',
];
$element = [
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'app_appid',
'placeholder' => '开放平台AppID',
'title' => '开放平台AppID',
'is_required' => 0,
'message' => '请填写微信开放平台APP支付分配的AppID',
],
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'appid',
'placeholder' => '公众号/服务号AppID',
'title' => '公众号/服务号AppID',
'is_required' => 0,
'message' => '请填写微信分配的AppID',
],
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'mini_appid',
'placeholder' => '小程序AppID',
'title' => '小程序AppID',
'is_required' => 0,
'message' => '请填写微信分配的小程序AppID',
],
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'mch_id',
'placeholder' => '微信支付商户号',
'title' => '微信支付商户号',
'is_required' => 0,
'message' => '请填写微信支付分配的商户号',
],
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'key',
'placeholder' => '密钥',
'title' => '密钥',
'desc' => '微信支付商户平台API配置的密钥',
'is_required' => 0,
'message' => '请填写密钥',
],
[
'element' => 'textarea',
'name' => 'apiclient_cert',
'placeholder' => '证书(apiclient_cert.pem)',
'title' => '证书(apiclient_cert.pem)(退款操作必填项)',
'is_required' => 0,
'rows' => 6,
'message' => '请填写证书(apiclient_cert.pem)',
],
[
'element' => 'textarea',
'name' => 'apiclient_key',
'placeholder' => '证书密钥(apiclient_key.pem)',
'title' => '证书密钥(apiclient_key.pem)(退款操作必填项)',
'is_required' => 0,
'rows' => 6,
'message' => '请填写证书密钥(apiclient_key.pem)',
],
[
'element' => 'select',
'title' => '异步通知协议',
'message' => '请选择协议类型',
'name' => 'agreement',
'is_multiple' => 0,
'element_data' => [
['value'=>1, 'name'=>'默认当前协议'],
['value'=>2, 'name'=>'强制https转http协议'],
],
],
[
'element' => 'select',
'title' => 'h5跳转地址urlencode',
'message' => '请选择h5跳转地址urlencode',
'name' => 'is_h5_url_encode',
'is_multiple' => 0,
'element_data' => [
['value'=>1, 'name'=>'是'],
['value'=>2, 'name'=>'否'],
],
],
[
'element' => 'select',
'title' => 'H5走NATIVE模式',
'message' => '请选择是否H5走NATIVE模式',
'desc' => '账户没有取得h5支付权限的情况下可以开启',
'name' => 'is_h5_pay_native_mode',
'is_multiple' => 0,
'element_data' => [
['value'=>0, 'name'=>'否'],
['value'=>1, 'name'=>'是'],
],
],
];
return [
'base' => $base,
'element' => $element,
];
}
* 支付入口
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
* @param [array] $params [输入参数]
*/
public function Pay($params = [])
{
$p = [
[
'checked_type' => 'empty',
'key_name' => 'order_no',
'error_msg' => '支付单号为空',
],
];
$ret = ParamsChecked($params, $p);
if($ret !== true)
{
return DataReturn($ret, -1);
}
if(empty($this->config))
{
return DataReturn('支付缺少配置', -1);
}
$client_type = $this->GetApplicationClientType($params);
if(APPLICATION_CLIENT_TYPE == 'pc' && IsWeixinEnv() && (empty($params['user']) || empty($params['user']['weixin_web_openid'])))
{
exit(header('location:'.PluginsHomeUrl('weixinwebauthorization', 'pay', 'index', input())));
}
$ret = $this->GetPayParams($params);
if($ret['code'] != 0)
{
return $ret;
}
if($client_type == 'qq')
{
$qq_appid = MyC('common_app_mini_qq_appid');
$qq_appsecret = MyC('common_app_mini_qq_appsecret');
$access_token = (new \base\QQ($qq_appid, $qq_appsecret))->GetAccessToken();
if($access_token === false)
{
return DataReturn('QQ凭证AccessToken获取失败', -1);
}
$request_url = 'https://api.q.qq.com/wxpay/unifiedorder?appid='.$qq_appid.'&access_token='.$access_token.'&real_notify_url='.urlencode($this->GetNotifyUrl($params));
} else {
$request_url = 'https://api.mch.weixin.qq.com/pay/unifiedorder';
}
$result = $this->XmlToArray($this->HttpRequest($request_url, $this->ArrayToXml($ret['data'])));
if(!empty($result['return_code']) && $result['return_code'] == 'SUCCESS' && !empty($result['prepay_id']))
{
return $this->PayHandleReturn($ret['data'], $result, $params);
}
$msg = is_string($result) ? $result : (empty($result['return_msg']) ? '支付接口异常' : $result['return_msg']);
if(!empty($result['err_code_des']))
{
$msg .= '-'.$result['err_code_des'];
}
return DataReturn($msg, -1);
}
* 终端
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2021-12-07
* @desc description
* @param [array] $params [输入参数]
*/
private function GetApplicationClientType($params = [])
{
$client_type = APPLICATION_CLIENT_TYPE;
if($client_type == 'pc' && IsMobile())
{
$client_type = 'h5';
}
if(isset($params['is_cashier']) && $params['is_cashier'] == 1)
{
$client_type = 'weixin';
}
return $client_type;
}
* 支付返回处理
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-08
* @desc description
* @param [array] $pay_params [支付参数]
* @param [array] $data [支付返回数据]
* @param [array] $params [输入参数]
*/
private function PayHandleReturn($pay_params = [], $data = [], $params = [])
{
$redirect_url = empty($params['redirect_url']) ? __MY_URL__ : $params['redirect_url'];
$result = DataReturn('支付接口异常', -1);
switch($pay_params['trade_type'])
{
case 'NATIVE' :
if(empty($params['check_url']))
{
return DataReturn('支付状态校验地址不能为空', -50);
}
if(APPLICATION == 'app')
{
$data = [
'qrcode_url' => $data['code_url'],
'order_no' => $params['order_no'],
'name' => '微信支付',
'msg' => '打开微信APP扫一扫进行支付',
'check_url' => $params['check_url'],
];
} else {
$pay_params = [
'url' => $data['code_url'],
'order_no' => $params['order_no'],
'name' => '微信支付',
'msg' => '打开微信APP扫一扫进行支付',
'check_url' => $params['check_url'],
];
MySession('payment_qrcode_data', $pay_params);
$data = MyUrl('index/pay/qrcode');
}
$result = DataReturn('success', 0, $data);
break;
case 'MWEB' :
if(!empty($params['order_id']))
{
$redirect_url = (isset($this->config['is_h5_url_encode']) && $this->config['is_h5_url_encode'] == 1) ? urlencode($redirect_url) : $redirect_url;
$data['mweb_url'] .= '&redirect_url='.$redirect_url;
}
$result = DataReturn('success', 0, $data['mweb_url']);
break;
case 'JSAPI' :
$pay_data = [
'appId' => $pay_params['appid'],
'package' => 'prepay_id='.$data['prepay_id'],
'nonceStr' => md5(time().rand()),
'signType' => $pay_params['sign_type'],
'timeStamp' => (string) time(),
];
$pay_data['paySign'] = $this->GetSign($pay_data);
if(isset($params['is_cashier']) && $params['is_cashier'] == 1)
{
$result = DataReturn('success', 0, [
'pay_price' => $params['total_price'],
'pay_data' => $pay_data,
]);
} else {
if(APPLICATION == 'web' && IsWeixinEnv())
{
$html = $this->PayHtml($pay_data, $redirect_url);
die($html);
} else {
$result = DataReturn('success', 0, $pay_data);
}
}
break;
case 'APP' :
$pay_data = array(
'appid' => $pay_params['appid'],
'partnerid' => $pay_params['mch_id'],
'prepayid' => $data['prepay_id'],
'package' => 'Sign=WXPay',
'noncestr' => md5(time().rand()),
'timestamp' => (string) time(),
);
$pay_data['sign'] = $this->GetSign($pay_data);
$result = DataReturn('success', 0, $pay_data);
break;
}
return $result;
}
* 支付代码
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @datetime 2019-05-25T00:07:52+0800
* @param [array] $pay_data [支付信息]
* @param [string] $redirect_url [支付结束后跳转url]
*/
private function PayHtml($pay_data, $redirect_url)
{
return '<html>
<head>
<meta http-equiv="content-type" content="text/html;charset=utf-8"/>
<title>微信安全支付</title>
<meta name="apple-mobile-web-app-capable" content="yes">
<meta name="viewport" content="width=device-width, initial-scale=1.0, minimum-scale=1, maximum-scale=1">
<body></body>
<script type="text/javascript">
function onBridgeReady()
{
WeixinJSBridge.invoke(
\'getBrandWCPayRequest\', {
"appId":"'.$pay_data['appId'].'",
"timeStamp":"'.$pay_data['timeStamp'].'",
"nonceStr":"'.$pay_data['nonceStr'].'",
"package":"'.$pay_data['package'].'",
"signType":"'.$pay_data['signType'].'",
"paySign":"'.$pay_data['paySign'].'"
},
function(res) {
window.location.href = "'.$redirect_url.'";
}
);
}
if(typeof WeixinJSBridge == "undefined")
{
if( document.addEventListener )
{
document.addEventListener("WeixinJSBridgeReady", onBridgeReady, false);
} else if (document.attachEvent)
{
document.attachEvent("WeixinJSBridgeReady", onBridgeReady);
document.attachEvent("onWeixinJSBridgeReady", onBridgeReady);
}
} else {
onBridgeReady();
}
</script>
</head>
</html>';
}
* 获取支付参数
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-07
* @desc description
* @param [array] $params [输入参数]
*/
private function GetPayParams($params = [])
{
$trade_type = empty($params['trade_type']) ? $this->GetTradeType($params) : $params['trade_type'];
if(empty($trade_type))
{
return DataReturn('支付类型不匹配', -1);
}
$client_type = $this->GetApplicationClientType($params);
if(empty($params['weixin_openid']))
{
if($client_type == 'weixin')
{
$openid = isset($params['user']['weixin_openid']) ? $params['user']['weixin_openid'] : '';
} else {
$openid = isset($params['user']['weixin_web_openid']) ? $params['user']['weixin_web_openid'] : '';
}
} else {
$openid = $params['weixin_openid'];
}
$appid = $this->PayAppID($client_type);
$notify_url = ($client_type == 'qq') ? 'https://api.q.qq.com/wxpay/notify' : $this->GetNotifyUrl($params);
$data = [
'appid' => $appid,
'mch_id' => $this->config['mch_id'],
'body' => $params['site_name'].'-'.$params['name'],
'nonce_str' => md5(time().$params['order_no']),
'notify_url' => $notify_url,
'openid' => ($trade_type == 'JSAPI') ? $openid : '',
'out_trade_no' => $params['order_no'],
'spbill_create_ip' => GetClientIP(),
'total_fee' => (int) (($params['total_price']*1000)/10),
'trade_type' => $trade_type,
'attach' => empty($params['attach']) ? $params['site_name'].'-'.$params['name'] : $params['attach'],
'sign_type' => 'MD5',
'time_expire' => $this->OrderAutoCloseTime(),
];
$data['sign'] = $this->GetSign($data);
return DataReturn('success', 0, $data);
}
* appid获取
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2021-04-25
* @desc description
* @param [string] $client_type [客户端类型]
*/
public function PayAppID($client_type)
{
$arr = [
'weixin' => $this->config['mini_appid'],
'ios' => $this->config['app_appid'],
'android' => $this->config['app_appid'],
];
return array_key_exists($client_type, $arr) ? $arr[$client_type] : $this->config['appid'];
}
* 订单自动关闭的时间
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2021-03-24
* @desc description
*/
public function OrderAutoCloseTime()
{
$time = intval(MyC('common_order_close_limit_time', 30, true))*60;
return date('YmdHis', time()+$time);
}
* 获取异步通知地址
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2020-09-19
* @desc description
* @param [array] $params [输入参数]
*/
private function GetNotifyUrl($params)
{
return (__MY_HTTP__ == 'https' && isset($this->config['agreement']) && $this->config['agreement'] == 1) ? 'http'.mb_substr($params['notify_url'], 5, null, 'utf-8') : $params['notify_url'];
}
* 获取支付交易类型
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-08
* @desc description
* @param [array] $params [输入参数]
*/
private function GetTradeType($params = [])
{
$client_type = $this->GetApplicationClientType($params);
$h5_pay_mode = (isset($this->config['is_h5_pay_native_mode']) && $this->config['is_h5_pay_native_mode'] == 1) ? 'NATIVE' : 'MWEB';
$type_all = [
'pc' => 'NATIVE',
'weixin' => 'JSAPI',
'h5' => $h5_pay_mode,
'toutiao' => 'MWEB',
'qq' => 'MWEB',
'app' => 'APP',
'ios' => 'APP',
'android' => 'APP',
];
if($client_type == 'h5')
{
if(IsWeixinEnv())
{
$type_all['h5'] = $type_all['weixin'];
} else {
if(!IsMobile())
{
$type_all['h5'] = $type_all['pc'];
}
}
}
return isset($type_all[$client_type]) ? $type_all[$client_type] : '';
}
* 支付回调处理
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
* @param [array] $params [输入参数]
*/
public function Respond($params = [])
{
$result = empty($GLOBALS['HTTP_RAW_POST_DATA']) ? $this->XmlToArray(file_get_contents('php://input')) : $this->XmlToArray($GLOBALS['HTTP_RAW_POST_DATA']);
if(isset($result['result_code']) && $result['result_code'] == 'SUCCESS')
{
if($result['sign'] != $this->GetSign($result))
{
return DataReturn('签名验证错误', -1);
}
return DataReturn('支付成功', 0, $this->ReturnData($result));
}
return DataReturn('处理异常错误', -100);
}
* [ReturnData 返回数据统一格式]
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @datetime 2018-10-06T16:54:24+0800
* @param [array] $data [返回数据]
*/
private function ReturnData($data)
{
$data['trade_no'] = $data['transaction_id'];
$data['buyer_user'] = $data['openid'];
$data['out_trade_no'] = $data['out_trade_no'];
$data['subject'] = $data['attach'];
$data['pay_price'] = $data['total_fee']/100;
return $data;
}
* 退款处理
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-05-28
* @desc description
* @param [array] $params [输入参数]
*/
public function Refund($params = [])
{
$p = [
[
'checked_type' => 'empty',
'key_name' => 'order_no',
'error_msg' => '订单号不能为空',
],
[
'checked_type' => 'empty',
'key_name' => 'trade_no',
'error_msg' => '交易平台订单号不能为空',
],
[
'checked_type' => 'empty',
'key_name' => 'pay_price',
'error_msg' => '支付金额不能为空',
],
[
'checked_type' => 'empty',
'key_name' => 'refund_price',
'error_msg' => '退款金额不能为空',
],
];
$ret = ParamsChecked($params, $p);
if($ret !== true)
{
return DataReturn($ret, -1);
}
if(empty($this->config['apiclient_cert']) || empty($this->config['apiclient_key']))
{
return DataReturn('证书未配置', -1);
}
$refund_reason = empty($params['refund_reason']) ? $params['order_no'].'订单退款'.$params['refund_price'].'元' : $params['refund_reason'];
$appid = $this->PayAppID($params['client_type']);
$data = [
'appid' => $appid,
'mch_id' => $this->config['mch_id'],
'nonce_str' => md5(time().rand().$params['order_no']),
'sign_type' => 'MD5',
'transaction_id' => $params['trade_no'],
'out_trade_no' => $params['order_no'],
'out_refund_no' => $params['order_no'].GetNumberCode(),
'total_fee' => (int) (($params['pay_price']*1000)/10),
'refund_fee' => (int) (($params['refund_price']*1000)/10),
'refund_desc' => $refund_reason,
];
$data['sign'] = $this->GetSign($data);
$result = $this->XmlToArray($this->HttpRequest('https://api.mch.weixin.qq.com/secapi/pay/refund', $this->ArrayToXml($data), true));
if(isset($result['result_code']) && $result['result_code'] == 'SUCCESS' && isset($result['return_code']) && $result['return_code'] == 'SUCCESS')
{
$data = [
'out_trade_no' => isset($result['out_trade_no']) ? $result['out_trade_no'] : '',
'trade_no' => isset($result['transaction_id']) ? $result['transaction_id'] : (isset($result['err_code_des']) ? $result['err_code_des'] : ''),
'buyer_user' => isset($result['refund_id']) ? $result['refund_id'] : '',
'refund_price' => isset($result['refund_fee']) ? $result['refund_fee']/100 : 0.00,
'return_params' => $result,
];
return DataReturn('退款成功', 0, $data);
}
$msg = is_string($result) ? $result : (empty($result['err_code_des']) ? '退款接口异常' : $result['err_code_des']);
if(!empty($result['return_msg']))
{
$msg .= '-'.$result['return_msg'];
}
return DataReturn($msg, -1);
}
* 签名生成
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-07
* @desc description
* @param [array] $params [输入参数]
*/
private function GetSign($params = [])
{
ksort($params);
$sign = '';
foreach($params as $k=>$v)
{
if($k != 'sign' && $v != '' && $v != null)
{
$sign .= "$k=$v&";
}
}
return strtoupper(md5($sign.'key='.$this->config['key']));
}
* 数组转xml
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-07
* @desc description
* @param [array] $data [数组]
*/
private function ArrayToXml($data)
{
$xml = '<xml>';
foreach($data as $k=>$v)
{
$xml .= '<'.$k.'>'.$v.'</'.$k.'>';
}
$xml .= '</xml>';
return $xml;
}
* xml转数组
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-07
* @desc description
* @param [string] $xml [xm数据]
*/
private function XmlToArray($xml)
{
if(!$this->XmlParser($xml))
{
return is_string($xml) ? $xml : '接口返回数据有误';
}
return json_decode(json_encode(simplexml_load_string($xml, 'SimpleXMLElement', LIBXML_NOCDATA)), true);
}
* 判断字符串是否为xml格式
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-07
* @desc description
* @param [string] $string [字符串]
*/
function XmlParser($string)
{
$xml_parser = xml_parser_create();
if(!xml_parse($xml_parser, $string, true))
{
xml_parser_free($xml_parser);
return false;
} else {
return (json_decode(json_encode(simplexml_load_string($string)),true));
}
}
* [HttpRequest 网络请求]
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @datetime 2017-09-25T09:10:46+0800
* @param [string] $url [请求url]
* @param [array] $data [发送数据]
* @param [boolean] $use_cert [是否需要使用证书]
* @param [int] $second [超时]
* @return [mixed] [请求返回数据]
*/
private function HttpRequest($url, $data, $use_cert = false, $second = 30)
{
$options = array(
CURLOPT_RETURNTRANSFER => true,
CURLOPT_HEADER => false,
CURLOPT_POST => true,
CURLOPT_SSL_VERIFYPEER => false,
CURLOPT_SSL_VERIFYHOST => false,
CURLOPT_POSTFIELDS => $data,
CURLOPT_TIMEOUT => $second,
);
if($use_cert == true)
{
$apiclient = $this->GetApiclientFile();
$options[CURLOPT_SSLCERTTYPE] = 'PEM';
$options[CURLOPT_SSLCERT] = $apiclient['cert'];
$options[CURLOPT_SSLKEYTYPE] = 'PEM';
$options[CURLOPT_SSLKEY] = $apiclient['key'];
}
$ch = curl_init($url);
curl_setopt_array($ch, $options);
$result = curl_exec($ch);
if($result)
{
curl_close($ch);
return $result;
} else {
$error = curl_errno($ch);
curl_close($ch);
return "curl出错,错误码:$error";
}
}
* 获取证书文件路径
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-05-29
* @desc description
*/
private function GetApiclientFile()
{
$apiclient_cert_file = ROOT.'runtime'.DS.'cache'.DS.'payment_weixin_pay_apiclient_cert.pem';
$apiclient_key_file = ROOT.'runtime'.DS.'cache'.DS.'payment_weixin_pay_apiclient_key.pem';
if(stripos($this->config['apiclient_cert'], '-----') === false)
{
$apiclient_cert = "-----BEGIN CERTIFICATE-----\n";
$apiclient_cert .= wordwrap($this->config['apiclient_cert'], 64, "\n", true);
$apiclient_cert .= "\n-----END CERTIFICATE-----";
} else {
$apiclient_cert = $this->config['apiclient_cert'];
}
file_put_contents($apiclient_cert_file, $apiclient_cert);
if(stripos($this->config['apiclient_key'], '-----') === false)
{
$apiclient_key = "-----BEGIN PRIVATE KEY-----\n";
$apiclient_key .= wordwrap($this->config['apiclient_key'], 64, "\n", true);
$apiclient_key .= "\n-----END PRIVATE KEY-----";
} else {
$apiclient_key = $this->config['apiclient_key'];
}
file_put_contents($apiclient_key_file, $apiclient_key);
return ['cert' => $apiclient_cert_file, 'key' => $apiclient_key_file];
}
}
?>