微信小微商户直连接口详解

项目背景:

       小微商户根据接口申请入驻、查看状态、进行签约。商户信息配置、Native扫码及小程序发起支付、查询订单、进行退款、查询退款。小微商户资料修改及提现。

 一、小微商户进件

遇到问题:

       1、返回错误信息及解决办法

                 (1)、输入商户号后、平台提示证书不存在。API文档中也没有具体解释(如图1-1)?

图 1-1

               已解决:关键在于参数中的商户号输入错误,经过沟通发现该商户号有两个,换个账号就可以解决问题

              (2)解密敏感信息失败                                        已解决--------仔细查看需要进行加密的参数,当时手机号没有加密导致微信方解密敏感信息失败

              (3)签名失败                                                      已解决--------参数中的sign字段应方在最后再进行签名,不能跟api中的参数顺序一样

              (4)身份证正面识别失败                                    已解决--------过期或失效的身份证无法识别成功

        2、Java实现AES加密,抛出异常(如图1-2):

图 1-2

                去该地址http://www.oracle.com/technetwork/java/javase/downloads/jce8-download-2133166.html下载${jdk_home}/jre/lib/security和${jre_home}/lib/security目录下的 local_policy.jar 和 US_export_policy.jar文件并且将其覆盖   

        3、小微商户进件流程

  • 申  请  入  驻:  (1)、先获取平台证书及序列号,并用返回的参数对证书进行解密得到平台证书的原文。ps:该原文用于对敏感信息加密

                                    (2)、使用加密方法对敏感信息进行加密

                                    (3)、将图片上传到接口获取图片id填写到请求入驻参数中

                                    (4)、剩下的参数依次填入map中最后进行签名使用证书通过接口上传商户信息,ps:注意中文编码

  • 查询申请状态:(1)、查询时使用自定义的编号或者微信返回的申请单号其一即可查询,ps:签名也是在最后的参数

                                    (2)、将会返回审核状态,如果已审核成功变成待签约状态将会返回链接,商户扫码即可

 二、小微商户配置

       遇到问题:

        1、 返回错误信息及解决办法

                (1)绑定APPID时注意接口sub_appid参数示例                           已解决:此处的sub_appid对小程序支付有影响,需配置为小程序的id否则在下单时会造成公众号id与sub_appid不匹配

         2、配置流程

                (1)将商户的商户号与固定小程序id绑定即可

三、小微商户交易

        遇到问题:(appid-公众号id,mchid-商户号,subappid-小程序id及签名所需公钥请联系相关人员)

          1、返回错误信息及解决办法

                  (1)参数的必填项为可选填,结果返回缺少参数                         已解决:每个参数看好备注,不同的交易方式参数的可填项不一样

                  (2)native交易方式返回的支付URL打开无法支付                      已解决:必须生成二维码后进行扫码支付,无法直接打开链接支付

                  (3)每天在没有余额时退款失败                                                  已解决:每天都会自动提现到银行卡内导致账户无余额,无法直接退款,必须有余额

                  (4)查询退款时可能有多单返回                                                  已解决:查询退款时,尽量使用退款单号查询,一个订单号会有退款总金额不超过订单金额的退款单数,当超过20单时必须使用退款单号    

          2、交易流程

                 (1)提交自己内部的唯一商品订单号、商品详情、金额(分)、交易方式等参数返回扫码地址或小程序调起支付的参数

                 (2)查询订单时提供商户号、微信订单号或商户订单号即可

                 (3)订单生成后不能马上调用关单接口,最短调用时间间隔为5分钟,提供商户号、商户订单号即可关闭订单

                 (4)必须提供微信及内部订单号、内部唯一退款单号、订单总金额、退款金额申请退款,一笔退款失败后重新提交,请不要更换退款单号,请使用原商户退款单号再次申请退款

                 (5)查询退款提供退款单号即可

 四、小微商户资料修改及提现

           修改及提现流程:

             (1)输入商户号及提现单的日期即可,提现单的日期是前一天的金额的提现,不是当天的交易金额

             (2)提供商户号及银行名称、加密后的银行卡号即可修改成功

             (3)重新发起提现时,如果提现一号的交易请提供2号的日期

             (4)联系人信息提供后即可修改信息

 五、代码实现

    本项目使用SSM模型开发

  1 public class WeiXinAccountController {
  2     @Resource
  3     WeiXinAccountService weiXinAccountService;
  4     /**
  5      * 上传图片的序列id
  6      * @return 状态
  7      */
  8     public ReturnModel<?> getPhotoid(@RequestBody WXPhotoModel wxPhotoModel){
  9         ReturnModel returnModel = weiXinAccountService.getPhotoid(wxPhotoModel);
 10         return returnModel;
 11     }
 12 
 13     /**
 14      * 查询审核状态
 15      * @return 状态
 16      */
 17     public ReturnModel<?> queryForApply(@RequestBody WXApplyStateModel wxApplyStateModel){
 18         ReturnModel returnModel = weiXinAccountService.queryForApply(wxApplyStateModel);
 19         return returnModel;
 20     }
 21 
 22     /**
 23      * 提交参数进行审核
 24      * @param wxApplyForEntryModel 参数
 25      * @return 是否提交成功//商户存在时不可编辑(不可再次提交)
 26      */
 27     public ReturnModel<?> submitInfo(@RequestBody WXApplyForEntryModel wxApplyForEntryModel){
 28         return weiXinAccountService.submitInfo(wxApplyForEntryModel);
 29     }
 30 
 31     /***
 32      * 绑定AppID配置
 33      * @param wxAddSubDevConfigModel
 34      * @throws
 35      */
 36     public ReturnModel<?> addSubDevConfig(@RequestBody WXAddSubDevConfigModel wxAddSubDevConfigModel){
 37         return weiXinAccountService.addSubDevConfig(wxAddSubDevConfigModel);
 38     }
 39 
 40     /**
 41      * 统一下单native
 42      * @param wxUnifiedOrderModel
 43      * @return
 44      */
 45     public ReturnModel<?> unifiedOrderByNATIVE(@RequestBody WXUnifiedOrderModel wxUnifiedOrderModel, HttpServletRequest httpServletRequest){
 46         String ip = WXHttpUtil.getSpbillCreateIp(httpServletRequest);
 47         wxUnifiedOrderModel.setSpbillCreateIp(ip);
 48         return weiXinAccountService.unifiedOrderByNATIVE(wxUnifiedOrderModel);
 49     }
 50     /**
 51      * 统一下单jsapi
 52      * @param wxUnifiedOrderModel
 53      * @return
 54      */
 55     public ReturnModel<?> unifiedOrderByJSAPI(@RequestBody WXUnifiedOrderModel wxUnifiedOrderModel, HttpServletRequest httpServletRequest){
 56         String ip = WXHttpUtil.getSpbillCreateIp(httpServletRequest);
 57         wxUnifiedOrderModel.setSpbillCreateIp(ip);
 58         return weiXinAccountService.unifiedOrderByJSAPI(wxUnifiedOrderModel);
 59     }
 60     /**
 61      * 查询订单
 62      * @param wxOrderQueryModel
 63      * @return
 64      */
 65     public ReturnModel<?> orderQuery(@RequestBody WXOrderQueryModel wxOrderQueryModel){
 66         return weiXinAccountService.orderQuery(wxOrderQueryModel);
 67     }
 68     /**
 69      * 关闭订单,如果支付失败则需要关闭订单避免重复支付或超时系统退出不再受理也需要关闭
 70      * @param wxCloseOrderModel
 71      * @return
 72      */
 73     public ReturnModel<?> closeOrder(@RequestBody WXCloseOrderModel wxCloseOrderModel){
 74         return weiXinAccountService.closeOrder(wxCloseOrderModel);
 75     }
 76 
 77     /**
 78      * 申请退款
 79      * @param wxRefundModel
 80      * @return
 81      */
 82     public ReturnModel<?> refund(@RequestBody WXRefundModel wxRefundModel){
 83         return weiXinAccountService.refund(wxRefundModel);
 84     }
 85 
 86     /**
 87      * 查询退款
 88      * @param wxRefundQueryModel
 89      * @return
 90      */
 91     public ReturnModel<?> refundQuery(@RequestBody WXRefundQueryModel wxRefundQueryModel){
 92         return weiXinAccountService.refundQuery(wxRefundQueryModel);
 93     }
 94 
 95     /**
 96      * 提现状态查询
 97      * @param wxQueryAutoWithdrawByDate
 98      * @return
 99      */
100     public ReturnModel<?> queryAutoWithdrawByDate(@RequestBody WXQueryAutoWithdrawByDate wxQueryAutoWithdrawByDate){
101         return weiXinAccountService.queryAutoWithdrawByDate(wxQueryAutoWithdrawByDate);
102     }
103 
104     /**
105      * 修改银行卡号
106      * @param modifyarchives
107      * @return
108      * @throws Exception
109      */
110     public ReturnModel<?> modifyArchives(@RequestBody WXModifyArchivesModel modifyarchives) throws Exception {
111         return weiXinAccountService.modifyArchives(modifyarchives);
112     }
113 
114     /**
115      * 重新发起提现
116      * @param reautowithdrawbydate
117      * @return
118      */
119     public ReturnModel<?> reAutoWithdrawByDate(@RequestBody WXQueryAutoWithdrawByDate reautowithdrawbydate) {
120         return weiXinAccountService.reAutoWithdrawByDate(reautowithdrawbydate);
121     }
122 
123     /**
124      * 修改商户联系信息
125      * @param modifycontactinfo
126      * @return
127      *
128      * @throws Exception
129      */
130     public ReturnModel<?> modifyContactInfo(@RequestBody WXModifyContactInfoModel modifycontactinfo) throws Exception {
131         return weiXinAccountService.modifyContactInfo(modifycontactinfo);
132     }
133 }
WXController
  1 public class WeiXinAccountServiceImpl implements WeiXinAccountService {
  2     private final Logger LOGGER = LoggerFactory.getLogger(WeiXinAccountServiceImpl.class);
  3     /**
  4      * 准备申请入驻的参数
  5      * @return 入驻的参数
  6      * @throws Exception
  7      */
  8     public SortedMap<String, String> applyForEntry(WXApplyForEntryModel wxApplyForEntryModel) throws Exception {
  9         //先获取平台证书及序列号,并用返回的参数对证书进行解密得到平台证书的原文。
 10         // ps:该原文用于对敏感信息加密
 11         String certificatesInfo = getCertficates();
 12         if(("fail").equals(certificatesInfo) || ("").equals(certificatesInfo)){
 13             return null;
 14         }
 15         JSONArray data = JSONObject.parseArray(
 16                 JSONObject.parseObject(certificatesInfo).getString("data"));
 17         //得到平台系列号
 18         String serialNo = JSONObject.parseObject(
 19                 JSONObject.toJSONString(data.get(0))).getString("serial_no");
 20         //得到用于加密敏感信息的证书原文
 21         String cert = WXPayUtil.getWXCert(data);
 22         String name = RSAEncryptUtil.rsaEncrypt(wxApplyForEntryModel.getIdCardName(),cert);
 23         wxApplyForEntryModel.setVersion("3.0");
 24         wxApplyForEntryModel.setCertSn(serialNo);
 25         wxApplyForEntryModel.setMchId(WXConstant.MCHID);
 26         wxApplyForEntryModel.setNonceStr(String.valueOf(new Date().getTime()));
 27         wxApplyForEntryModel.setSignType(WXConstant.SIGNTTYPE);
 28         wxApplyForEntryModel.setIdCardNumber(
 29                 RSAEncryptUtil.rsaEncrypt(wxApplyForEntryModel.getIdCardNumber(),cert));
 30         wxApplyForEntryModel.setIdCardName(name);
 31         wxApplyForEntryModel.setAccountName(name);
 32         wxApplyForEntryModel.setAccountNumber(
 33                 RSAEncryptUtil.rsaEncrypt(wxApplyForEntryModel.getAccountNumber(),cert));
 34         wxApplyForEntryModel.setContact(name);
 35         wxApplyForEntryModel.setContactPhone(
 36                 RSAEncryptUtil.rsaEncrypt(wxApplyForEntryModel.getContactPhone(),cert));
 37         SortedMap reqPara = AnnotationUtil.parseObjectToMap(wxApplyForEntryModel);
 38         return reqPara;
 39     }
 40     /**
 41      * 得到平台证书包含的参数json
 42      * @return
 43      */
 44     public String getCertficates(){
 45         SortedMap<String, String> reqDataToZS = new TreeMap<>();
 46         reqDataToZS.put("mch_id", WXConstant.MCHID);//服务商商户号
 47         reqDataToZS.put("nonce_str", WXPayUtil.getRandomString(32));//随机字符串
 48         reqDataToZS.put("sign_type", WXConstant.SIGNTTYPE);//签名类型
 49         reqDataToZS.put("sign", WXPayUtil.generateSignature(reqDataToZS,WXConstant.KEY,WXConstant.HMACSHA256TYPE));//签名
 50         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithoutCert(WXConstant.ZHENGSHUURL,reqDataToZS);//证书接口返回所需参数
 51         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
 52         if(("FAIL").equals(result.get("result_code"))){
 53             return "fail";
 54         }
 55         return result.get("certificates");
 56     }
 57 
 58     /**
 59      * 得到上传照片的id
 60      * @param wxPhotoModel 图片
 61      * @return 图片id
 62      */
 63     @Override
 64     public ReturnModel<?> getPhotoid(WXPhotoModel wxPhotoModel){
 65         String cent = "";
 66         InputStream fileInputStream = null;
 67         DataInputStream dis = null;
 68         byte[] bufferOut;
 69         try {
 70             URL url = new URL(wxPhotoModel.getFileUrlPath());
 71             HttpURLConnection httpUrl = (HttpURLConnection) url.openConnection();
 72             httpUrl.setDoInput(true);
 73             httpUrl.setRequestMethod("GET");
 74             fileInputStream = httpUrl.getInputStream();
 75             dis = new DataInputStream(fileInputStream);
 76             bufferOut = new byte[httpUrl.getContentLength()];
 77             dis.read(bufferOut);
 78             cent = MD5.md5HashCode(bufferOut);
 79         } catch (Exception e) {
 80             LOGGER.error(e.getMessage());
 81             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),e.getMessage());
 82         }finally {
 83             if (fileInputStream!=null) {
 84                 try {
 85                     fileInputStream.close();
 86                 } catch (IOException e) {
 87                     LOGGER.error(e.getMessage());
 88                     return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),e.getMessage());
 89                 }
 90             }
 91             if(dis!=null){
 92                 try {
 93                     dis.close();
 94                 } catch (IOException e) {
 95                     LOGGER.error(e.getMessage());
 96                     return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),e.getMessage());
 97                 }
 98             }
 99         }
100         if ("".equals(cent) || fileInputStream == null)
101             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"图片未获取到");
102         SortedMap<String, String> reqData = new TreeMap<>();
103         reqData.put("mch_id", WXConstant.MCHID);
104         reqData.put("sign_type", WXConstant.SIGNTTYPE);
105         reqData.put("media_hash", cent);
106         reqData.put("sign", WXPayUtil.generateSignature(reqData,
107                 WXConstant.KEY, WXConstant.HMACSHA256TYPE));
108         MultipartEntityBuilder builder = MultipartEntityBuilder.create();
109         builder.addTextBody("mch_id",WXConstant.MCHID, ContentType.MULTIPART_FORM_DATA);
110         builder.addBinaryBody("media",bufferOut, ContentType.DEFAULT_BINARY,wxPhotoModel.getFileName());
111         builder.addTextBody("media_hash",cent, ContentType.MULTIPART_FORM_DATA);
112         builder.addTextBody("sign_type",WXConstant.SIGNTTYPE, ContentType.MULTIPART_FORM_DATA);
113         builder.addTextBody("sign",reqData.get("sign"), ContentType.MULTIPART_FORM_DATA);
114         String returnStr = WXPayHttpUtil.WXHttpPostFormWithCert(WXConstant.MEDIAUURL,
115                 WXConstant.MCHID,WXConstant.CERTPATH,builder);
116         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
117         if(result.isEmpty()){
118             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"未获取到微信方图片id");
119         }
120         return new ReturnModel<>(result);
121     }
122 
123     @Override
124     public ReturnModel<?> unifiedOrderByNATIVE(WXUnifiedOrderModel wxUnifiedOrderModel) {
125         wxUnifiedOrderModel.setProductId(WXPayUtil.getRandomString(32));
126         wxUnifiedOrderModel.setTradeType("NATIVE");
127         return unifiedOrder(wxUnifiedOrderModel);
128     }
129 
130     @Override
131     public ReturnModel<?> unifiedOrderByJSAPI(WXUnifiedOrderModel wxUnifiedOrderModel) {
132         wxUnifiedOrderModel.setSubAppid(WXConstant.SUBAPPID);
133         wxUnifiedOrderModel.setTradeType("JSAPI");
134         return unifiedOrder(wxUnifiedOrderModel);
135     }
136 
137     /**
138      * 查询审核状态
139      * @param applyState 参数-商户号、服务商自定义的用户编号
140      * @return
141      */
142     @Override
143     public ReturnModel<?> queryForApply(WXApplyStateModel applyState){
144         applyState.setVersion("1.0");
145         applyState.setMchId(WXConstant.MCHID);
146         applyState.setNonceStr(WXPayUtil.getRandomString(32));
147         applyState.setSignType(WXConstant.SIGNTTYPE);
148         SortedMap<String,String> reqData = AnnotationUtil.parseObjectToMap(applyState);
149         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithCert(WXConstant.QUERYURL,
150                 reqData,WXConstant.CERTPATH);
151         if(("").equals(returnStr)){
152             return new ReturnModel<>(ErrorCode.SERVER_ERROR.getCode(),"安全证书无法解析");
153         }
154         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
155         if(("FAIL").equals(result.get("return_code"))){
156             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),result.get("return_msg"));
157         }
158         if(("SUCCESS").equals(result.get("return_code"))){
159             return new ReturnModel<>(result);
160 //            String applymentStateDesc = "申请状态:"+result.get("applyment_state_desc");
161 //            if(("REJECTED").equals(result.get("applyment_state"))){
162 //                //审核结果json
163 //                JSONArray audit_detail = JSONObject.parseArray(
164 //                        JSONObject.parseObject(
165 //                                result.get("audit_detail")).getString("audit_detail"));
166 //                //得到审核详情
167 //                String reject_reason = JSONObject.parseObject(
168 //                        JSONObject.toJSONString(audit_detail.get(0))).getString("reject_reason");
169 //                return applymentStateDesc+"\t审核详情:"+reject_reason;
170 //            }
171 //            if(("TO_BE_SIGNED").equals(result.get("applyment_state"))){
172 //                return applymentStateDesc+"\t小微商户号:"
173 //                        +result.get("sub_mch_id")+"\t签约链接:"
174 //                        +result.get("sign_url");
175 //            }
176 //            if(("FINISH").equals(result.get("applyment_state"))){
177 //                return applymentStateDesc+"\t小微商户号:"+result.get("sub_mch_id");
178 //            }
179 //            return applymentStateDesc;
180         }
181         return new ReturnModel<>(ErrorCode.SERVER_ERROR.getCode(),"结果解析错误");
182     }
183 
184     /**
185      * 提交商户申请
186      * @param wxApplyForEntryModel 请求商户信息
187      * @return
188      */
189     @Override
190     public ReturnModel<?> submitInfo(WXApplyForEntryModel wxApplyForEntryModel) {
191         SortedMap<String,String> reqData = new TreeMap<>();
192         try {
193             reqData = applyForEntry(wxApplyForEntryModel);
194         } catch (Exception e) {
195             LOGGER.error(e.getMessage());
196 
197         }
198         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithCert(WXConstant.SUBMITURL,
199                 reqData, WXConstant.CERTPATH);
200         if(("").equals(returnStr)){
201             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"安全证书无法解析");
202         }
203         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
204         if(("FAIL").equals(result.get("return_code"))){
205             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),
206                     "返回信息:"+result.get("return_msg")+"错误描述:"+result.get("err_code_des"));
207         }
208         if(("SUCCESS").equals(result.get("return_code"))){
209             return new ReturnModel<>(result);
210 //            if(("SUCCESS").equals(result.get("result_code"))){
211 //                return "微信分配的申请单号:"+result.get("applyment_id");
212 //            }
213 //            if(("FAIL").equals(result.get("result_code"))){
214 //                if(("EXIST").equals(result.get("err_code"))){
215 //                    return "商户已存在,对应的申请单当前状态不可编辑";
216 //                }
217 //                return result.get("err_code_des");
218 //            }
219         }
220         return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"结果解析错误");
221     }
222 
223     /**
224      * 提现状态
225      * @param wxQueryAutoWithdrawByDate
226      * @return
227      */
228     @Override
229     public ReturnModel<?> queryAutoWithdrawByDate(WXQueryAutoWithdrawByDate wxQueryAutoWithdrawByDate) {
230         wxQueryAutoWithdrawByDate.setMchId(WXConstant.MCHID);
231         wxQueryAutoWithdrawByDate.setSignType(WXConstant.SIGNTTYPE);
232         wxQueryAutoWithdrawByDate.setNonceStr(WXPayUtil.getRandomString(32));
233         SortedMap<String,String> reqData = AnnotationUtil.parseObjectToMap(wxQueryAutoWithdrawByDate);
234         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithCert(WXConstant.QUERYAUTOWITHDRAWURL,
235                 reqData,WXConstant.CERTPATH);
236         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
237         if("SUCCESS".equals(result.get("return_code"))){
238             return new ReturnModel<>(result);
239 //            if("SUCCESS".equals(result.get("result_code"))){
240 //                if ("PROCESSING".equals(result.get("withdraw_status"))){
241 //                    return result.get("withdraw_status");
242 //                }else if ("SUCCESS".equals(result.get("withdraw_status"))){
243 //                    return result.get("date")+"\t金额(分):"+result.get("amount")+"\t提现成功时间:"
244 //                            +result.get("success_time");
245 //                }
246 //                return result.get("withdraw_status");
247 //            }else if ("FAIL".equals(result.get("result_code"))){
248 //                if(result.get("err_code_des") != null && !"".equals(result.get("err_code_des"))){
249 //                    return result.get("err_code_des");
250 //                }
251 //                return result.get("err_code");
252 //            }
253         }else if("FAIL".equals(result.get("return_code"))){
254             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),result.get("return_msg"));
255         }
256         return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"结果解析错误");
257     }
258 
259     /**
260      * 统一下单
261      * @param wxUnifiedOrderModel
262      * @return
263      */
264     @Override
265     public ReturnModel<?> unifiedOrder(WXUnifiedOrderModel wxUnifiedOrderModel) {
266         wxUnifiedOrderModel.setAppid(WXConstant.APPID);
267         wxUnifiedOrderModel.setMchId(WXConstant.MCHID);
268         wxUnifiedOrderModel.setNonceStr(WXPayUtil.getRandomString(32));
269         wxUnifiedOrderModel.setSignType(WXConstant.SIGNTTYPE);
270         wxUnifiedOrderModel.setNotifyUrl(WXConstant.NOTIFYURL);
271         SortedMap<String,String> reqData = AnnotationUtil.parseObjectToMap(wxUnifiedOrderModel);
272         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithoutCert(WXConstant.UNIFIEDORDERURL, reqData);
273         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
274         if(("SUCCESS").equals(result.get("return_code"))){
275             if(("SUCCESS").equals(result.get("result_code"))){
276 //                if ("NATIVE".equals(wxUnifiedOrderModel.getTradeType())){
277 //                    return new ReturnModel<>(result);
278 //                }else
279                     if("JSAPI".equals(wxUnifiedOrderModel.getTradeType())){
280                     Map<String,String> payinfo = new HashMap<>();
281                     payinfo.put("appId",wxUnifiedOrderModel.getAppid());
282                     payinfo.put("nonceStr",WXPayUtil.getRandomString(32));
283                     payinfo.put("package","prepay_id="+result.get("prepay_id"));
284                     payinfo.put("signType",WXConstant.MD5TYPE);
285                     payinfo.put("timeStamp",String.valueOf(new Date().getTime()));
286                     payinfo.put("paySign",WXPayUtil.generateSignature(payinfo,WXConstant.KEY,WXConstant.MD5TYPE));
287 //                    String info = JSONObject.toJSONString(payinfo);
288                     return new ReturnModel<>(payinfo);
289                 }
290             }
291 //            if(("FAIL").equals(result.get("result_code"))){
292 //                return result.get("err_code_des");
293 //            }
294             return new ReturnModel<>(result);
295         }else if(("FAIL").equals(result.get("return_code"))){
296             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),result.get("return_msg"));
297         }
298         return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"结果解析错误");
299     }
300 
301     /**
302      * 绑定AppID配置
303      * @param wxAddSubDevConfigModel
304      * @return
305      */
306     @Override
307     public ReturnModel<?> addSubDevConfig(WXAddSubDevConfigModel wxAddSubDevConfigModel) {
308         wxAddSubDevConfigModel.setAppid(WXConstant.APPID);
309         wxAddSubDevConfigModel.setMchId(WXConstant.MCHID);
310         wxAddSubDevConfigModel.setSubAppid(WXConstant.SUBAPPID);
311         SortedMap<String,String> reqData = AnnotationUtil.parseObjectToMap(wxAddSubDevConfigModel);
312         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithCert(WXConstant.ADDSUBDEVCONFIGURL, reqData, WXConstant.CERTPATH);
313         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
314         if(("SUCCESS").equals(result.get("return_code"))) {
315             return new ReturnModel<>(result);
316 //            if(("SUCCESS").equals(result.get("result_code"))){
317 //                return "配置成功";
318 //            }else if(("FAIL").equals(result.get("result_code"))){
319 //                return result.get("err_code_des").replaceAll("[a-zA-Z]","");
320 //            }
321         }else if(("FAIL").equals(result.get("return_code"))){
322             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),result.get("return_msg"));
323         }
324         return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"结果解析错误");
325     }
326 
327     /**
328      * 订单查询
329      * @param wxOrderQueryModel
330      * @return
331      */
332     @Override
333     public ReturnModel<?> orderQuery(WXOrderQueryModel wxOrderQueryModel) {
334         wxOrderQueryModel.setSubAppid(WXConstant.SUBAPPID);
335         wxOrderQueryModel.setAppid(WXConstant.APPID);
336         wxOrderQueryModel.setMchId(WXConstant.MCHID);
337         wxOrderQueryModel.setNonceStr(WXPayUtil.getRandomString(32));
338         wxOrderQueryModel.setSignType(WXConstant.SIGNTTYPE);
339         SortedMap<String,String> reqData = AnnotationUtil.parseObjectToMap(wxOrderQueryModel);
340         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithoutCert(WXConstant.ORDERQUERYURL, reqData);
341         Map<String,String> result= WXPayXmlUtil.parseXMLToMap(returnStr);
342         if(("SUCCESS").equals(result.get("return_code"))){
343             return new ReturnModel<>(result);
344 //            if(("SUCCESS").equals(result.get("result_code")) && ("SUCCESS").equals(result.get("trade_state"))){
345 //                return result.get("trade_state_desc");
346 //            }else if(("SUCCESS").equals(result.get("result_code"))){
347 //                return result.get("out_trade_no")+"交易状态:"+result.get("trade_state");
348 //            }else if(("FAIL").equals(result.get("result_code"))){
349 //                return result.get("err_code_des");
350 //            }
351         }else if (("FAIL").equals(result.get("return_code"))){
352             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),result.get("return_msg"));
353         }
354         return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"结果解析错误");
355     }
356 
357     /**
358      * 关闭订单
359      * @param wxCloseOrderModel
360      * @return
361      */
362     @Override
363     public ReturnModel<?> closeOrder(WXCloseOrderModel wxCloseOrderModel) {
364         wxCloseOrderModel.setAppid(WXConstant.APPID);
365         wxCloseOrderModel.setMchId(WXConstant.MCHID);
366         wxCloseOrderModel.setNonceStr(WXPayUtil.getRandomString(32));
367         SortedMap<String,String> reqData = AnnotationUtil.parseObjectToMap(wxCloseOrderModel);
368         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithoutCert(WXConstant.CLOSEORDERURL,reqData);
369         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
370         if(("SUCCESS").equals(result.get("return_code"))){
371             return new ReturnModel<>(result);
372 //            if(("SUCCESS").equals(result.get("result_code"))){
373 //                return "关闭成功";
374 //            }else if(("FAIL").equals(result.get("result_code"))){
375 //                if(("ORDERPAID").equals(result.get("err_code"))){
376 //                    return "订单已支付,不能发起关单,请当作已支付的正常交易";
377 //                }else if(("SYSTEMERROR").equals(result.get("err_code"))){
378 //                    return "系统异常,请重新调用";
379 //                }else if(("ORDERCLOSED").equals(result.get("err_code"))){
380 //                    return "订单已关闭,无需继续调用";
381 //                }else if(("SIGNERROR").equals(result.get("err_code"))){
382 //                    return "请检查签名参数和方法是否都符合签名算法要求";
383 //                }else if(("REQUIRE_POST_METHOD").equals(result.get("err_code"))){
384 //                    return "请检查请求参数是否通过post方法提交";
385 //                }else if(("REQUIRE_POST_METHOD").equals(result.get("err_code"))){
386 //                    return "请检查XML参数格式是否正确";
387 //                }
388 //            }
389         }else if(("FAIL").equals(result.get("return_code"))){
390             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),result.get("return_msg"));
391         }
392         return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"结果解析错误");
393     }
394 
395     /**
396      * 申请退款
397      * @param wxRefundModel
398      * @return
399      */
400     @Override
401     public ReturnModel<?> refund(WXRefundModel wxRefundModel) {
402         wxRefundModel.setSubAppid(WXConstant.SUBAPPID);
403         wxRefundModel.setAppid(WXConstant.APPID);
404         wxRefundModel.setMchId(WXConstant.MCHID);
405         wxRefundModel.setNonceStr(WXPayUtil.getRandomString(32));
406         wxRefundModel.setNotifyUrl(WXConstant.NOTIFYURL);
407         wxRefundModel.setSignType(WXConstant.SIGNTTYPE);
408         SortedMap<String,String> reqData = AnnotationUtil.parseObjectToMap(wxRefundModel);
409         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithCert(WXConstant.REFUNDURL,
410                 reqData,WXConstant.CERTPATH);
411         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
412         if(("SUCCESS").equals(result.get("return_code"))){
413             return new ReturnModel<>(result);
414 //            if(("SUCCESS").equals(result.get("result_code"))){
415 //                return "申请退款成功";
416 //            }else if(("FAIL").equals(result.get("result_code"))){
417 //                return result.get("err_code_des");
418 //            }
419         }else if(("FAIL").equals(result.get("return_code"))){
420             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),result.get("return_msg"));
421         }
422         return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"结果解析错误");
423     }
424 
425     /**
426      * 查询退款(微信退款id查询,只查一笔)
427      * @param wxRefundQueryModel
428      * @return
429      */
430     @Override
431     public ReturnModel<?> refundQuery(WXRefundQueryModel wxRefundQueryModel) {
432         wxRefundQueryModel.setSubAppid(WXConstant.SUBAPPID);
433         wxRefundQueryModel.setAppid(WXConstant.APPID);
434         wxRefundQueryModel.setMchId(WXConstant.MCHID);
435         wxRefundQueryModel.setSignType(WXConstant.SIGNTTYPE);
436         wxRefundQueryModel.setNonceStr(WXPayUtil.getRandomString(32));
437         SortedMap<String,String> reqData = AnnotationUtil.parseObjectToMap(wxRefundQueryModel);
438         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithoutCert(WXConstant.REFUNDQUERYURL,reqData);
439         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
440         if(("SUCCESS").equals(result.get("return_code"))){
441             return new ReturnModel<>(result);
442 //            if(("SUCCESS").equals(result.get("result_code"))){
443 //                return result.get("refund_status_0");
444 //            }else if(("FAIL").equals(result.get("result_code"))){
445 //                return result.get("err_code_des");
446 //            }
447         }else if(("FAIL").equals(result.get("return_code"))){
448             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),result.get("return_msg"));
449         }
450         return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"结果解析错误");
451     }
452 
453     /**
454      * 修改银行卡号
455      * @param modifyarchives
456      * @return
457      */
458     @Override
459     public ReturnModel<?> modifyArchives(WXModifyArchivesModel modifyarchives) {
460         modifyarchives.setVersion("1.0");
461         modifyarchives.setMchId(WXConstant.MCHID);
462         modifyarchives.setNonceStr(WXPayUtil.getRandomString(32));
463         modifyarchives.setSignType(WXConstant.SIGNTTYPE);
464         String certificatesInfo = getCertficates();
465         if(("fail").equals(certificatesInfo) || ("").equals(certificatesInfo)){
466             return new ReturnModel<>(ErrorCode.SERVER_ERROR.getCode(),"安全证书无法解析");
467         }
468         JSONArray data = JSONObject.parseArray(
469                 JSONObject.parseObject(certificatesInfo).getString("data"));
470         //得到平台系列号
471         String serialNo = JSONObject.parseObject(
472                 JSONObject.toJSONString(data.get(0))).getString("serial_no");
473         //得到用于加密敏感信息的证书原文
474         String cert = WXPayUtil.getWXCert(data);
475         modifyarchives.setCertSn(serialNo);
476         modifyarchives.setAccountNumber(RSAEncryptUtil.rsaEncrypt("6214830195599542",cert));
477 
478         SortedMap<String,String> reqData = AnnotationUtil.parseObjectToMap(modifyarchives);
479         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithCert(WXConstant.MODIFYARCHIVESURL,reqData,WXConstant.CERTPATH);
480         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
481         if("SUCCESS".equals(result.get("return_code"))){
482             return new ReturnModel<>(result);
483 //            if("FAIL".equals(result.get("result_code"))){
484 //                return result.get("err_code");
485 //            }else if ("SUCCESS".equals(result.get("result_code"))){
486 //                return result.get("sub_mch_id")+"商户下的银行卡号修改成功";
487 //            }
488         }else if ("FAIL".equals(result.get("return_code"))){
489             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),result.get("return_msg"));
490         }
491         return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"结果解析错误");
492     }
493 
494     /**
495      * 重新发起提现
496      * @param reautowithdrawbydate
497      * @return
498      */
499     @Override
500     public ReturnModel<?> reAutoWithdrawByDate(WXQueryAutoWithdrawByDate reautowithdrawbydate) {
501         reautowithdrawbydate.setSignType(WXConstant.SIGNTTYPE);
502         reautowithdrawbydate.setMchId(WXConstant.MCHID);
503         reautowithdrawbydate.setNonceStr(WXPayUtil.getRandomString(32));
504         SortedMap<String,String> reqData = AnnotationUtil.parseObjectToMap(reautowithdrawbydate);
505         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithCert(WXConstant.REAUTOWITHDRAWBYDATEURL,
506                 reqData,WXConstant.CERTPATH);
507         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
508         if("SUCCESS".equals(result.get("return_code"))){
509             return new ReturnModel<>(result);
510 //            if ("SUCCESS".equals(result.get("result_code"))){
511 //                return result.get("date")+"\t金额:"+result.get("amount");
512 //            }else if ("FAIL".equals(result.get("result_code"))){
513 //                return result.get("err_code")+result.get("err_code_des");
514 //            }
515         }else if ("FAIL".equals(result.get("return_code"))){
516             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),result.get("return_msg"));
517         }
518         return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"结果解析错误");
519     }
520 
521     /**
522      * 修改商户联系信息
523      * @param modifycontactinfo
524      * @return
525      */
526     @Override
527     public ReturnModel<?> modifyContactInfo(WXModifyContactInfoModel modifycontactinfo) {
528         modifycontactinfo.setVersion("1.0");
529         modifycontactinfo.setMchId(WXConstant.MCHID);
530         modifycontactinfo.setNonceStr(WXPayUtil.getRandomString(32));
531         modifycontactinfo.setSignType(WXConstant.SIGNTTYPE);
532         String certificatesInfo = getCertficates();
533         if(("fail").equals(certificatesInfo) || ("").equals(certificatesInfo)){
534             return new ReturnModel<>(ErrorCode.SERVER_ERROR.getCode(),"安全证书无法解析");
535         }
536         JSONArray data = JSONObject.parseArray(
537                 JSONObject.parseObject(certificatesInfo).getString("data"));
538         //得到平台系列号
539         String serialNo = JSONObject.parseObject(
540                 JSONObject.toJSONString(data.get(0))).getString("serial_no");
541         //得到用于加密敏感信息的证书原文
542         String cert = WXPayUtil.getWXCert(data);
543         modifycontactinfo.setCertSn(serialNo);
544         modifycontactinfo.setMobilePhone(RSAEncryptUtil.rsaEncrypt(modifycontactinfo.getMobilePhone(),cert));
545         modifycontactinfo.setEmail(RSAEncryptUtil.rsaEncrypt(modifycontactinfo.getEmail(),cert));
546         SortedMap<String,String> reqData = AnnotationUtil.parseObjectToMap(modifycontactinfo);
547         String returnStr = WXPayHttpUtil.WXHttpPostXMLWithCert(WXConstant.MODIFYCONTACTINFOURL,
548                 reqData,WXConstant.CERTPATH);
549         Map<String,String> result = WXPayXmlUtil.parseXMLToMap(returnStr);
550         if ("SUCCESS".equals(result.get("return_code"))){
551             return new ReturnModel<>(result);
552 //            if ("SUCCESS".equals(result.get("result_code"))){
553 //                return result.get("sub_mch_id")+"商户修改信息成功";
554 //            }else if ("FAIL".equals(result.get("result_code"))){
555 //                return result.get("err_code")+result.get("err_code_des");
556 //            }
557         }else if ("FAIL".equals(result.get("return_code"))){
558             return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),result.get("return_msg"));
559         }
560         return new ReturnModel<>(ErrorCode.BUSINESS_ERROR.getCode(),"结果解析错误");
561     }
562 }
service实现层
  1 public class WXPayHttpUtil {
  2     private static final Logger LOGGER = LoggerFactory.getLogger(WXPayHttpUtil.class);
  3 
  4     private final static String UTFCHARSET = "UTF-8";
  5     private final static String XMLCONTENT = "text/xml;charset=utf-8";
  6     private final static String FORMCONTENT = "multipart/form-data;charset=utf-8";
  7     /**
  8      * 需证书上传form表单形式接口
  9      * @param url 接口地址
 10      * @param mcdId 商户号即密码
 11      * @param certPath 证书文件位置
 12      * @param builder 表单参数
 13      * @return
 14      */
 15     public static String WXHttpPostFormWithCert(String url, String mcdId, String certPath, MultipartEntityBuilder builder){
 16         HttpPost uploadFile = new HttpPost(url);
 17         SSLConnectionSocketFactory sslsf = null;
 18         StringBuilder stringBuilder = new StringBuilder();
 19         //读取本机存放的PKCS12证书文件
 20         ClassLoader classLoader = WXPayHttpUtil.class.getClassLoader();
 21         URL resource = classLoader.getResource(certPath);
 22         try(FileInputStream pkcfile = new FileInputStream(new File(resource.getPath()));
 23         ){
 24             //指定读取证书格式为PKCS12
 25             KeyStore keyStore = KeyStore.getInstance("PKCS12");
 26             //"100000"为密码即商户号
 27             keyStore.load(pkcfile,  mcdId.toCharArray());
 28             SSLContext sslcontext = SSLContexts.custom().loadKeyMaterial(keyStore,  mcdId.toCharArray()).build();
 29             //指定TLS版本
 30             sslsf = new SSLConnectionSocketFactory(sslcontext);
 31         } catch (Exception e) {
 32             LOGGER.debug(e.getMessage());
 33             return "";
 34         }
 35         HttpEntity multipart = builder.build();
 36         uploadFile.setEntity(multipart);
 37         uploadFile.setHeader("Content-Type", FORMCONTENT);
 38         try(CloseableHttpClient client = HttpClients.custom().setSSLSocketFactory(sslsf).build();
 39             CloseableHttpResponse response = client.execute(uploadFile);)
 40         {
 41             if(response != null && response.getEntity() != null){
 42                 HttpEntity entity = response.getEntity();
 43                 try (
 44                         InputStream in = entity.getContent();
 45                         BufferedReader reader = new BufferedReader(new InputStreamReader(in,"UTF-8")))
 46                 {
 47                     reader.lines().forEach(line->{
 48                         stringBuilder.append(line);
 49                     });
 50                 }
 51             }
 52         } catch (IOException e) {
 53             LOGGER.debug(e.getMessage());
 54             return "";
 55         }
 56 
 57 
 58         return stringBuilder.toString();
 59     }
 60 
 61     /**
 62      * 不需证书上传xml形式接口
 63      * @param url   接口地址
 64      * @param reqDataTo  请求参数
 65      * @return
 66      */
 67     public static String WXHttpPostXMLWithoutCert(String url,SortedMap<String, String> reqDataTo){
 68         HttpPost httpPost = new HttpPost(url);
 69         StringEntity postEntity = new StringEntity(WXPayXmlUtil.parseMapToXML(reqDataTo), UTFCHARSET);
 70         httpPost.setHeader("Content-Type", XMLCONTENT);
 71         httpPost.setEntity(postEntity);
 72         StringBuilder stringBuilder = new StringBuilder();
 73         try(CloseableHttpClient client = HttpClients.createDefault();
 74             CloseableHttpResponse response = client.execute(httpPost);)
 75         {if(response != null && response.getEntity() != null){
 76             HttpEntity entity = response.getEntity();
 77             try (
 78                     InputStream in = entity.getContent();
 79                     BufferedReader reader = new BufferedReader(new InputStreamReader(in,"UTF-8")))
 80             {
 81                 reader.lines().forEach(line->{
 82                     stringBuilder.append(line);
 83                 });;
 84             }
 85         }
 86         } catch (IOException e) {
 87             LOGGER.debug(e.getMessage());
 88             return "";
 89         }
 90         return stringBuilder.toString();
 91     }
 92 
 93     /**
 94      * 需证书上传xml形式接口
 95      * @param url 接口地址
 96      * @param reqData 参数
 97      * @param certPath 证书文件位置
 98      * @return
 99      */
100     public static String WXHttpPostXMLWithCert(String url,SortedMap<String, String> reqData,String certPath){
101         HttpPost queryState = new HttpPost(url);
102         SSLConnectionSocketFactory sslsf = null;
103         //读取本机存放的PKCS12证书文件
104         ClassLoader classLoader = ConfigTool.class.getClassLoader();
105         URL resource = classLoader.getResource(certPath);
106         try(FileInputStream pkcfile = new FileInputStream(new File(resource.getPath()));
107         ){
108             //指定读取证书格式为PKCS12
109             KeyStore keyStore = KeyStore.getInstance("PKCS12");
110             //"100000"为密码即商户号
111             keyStore.load(pkcfile,  reqData.get("mch_id").toCharArray());
112             SSLContext sslcontext = SSLContexts.custom().loadKeyMaterial(
113                     keyStore,  reqData.get("mch_id").toCharArray()).build();
114             sslsf = new SSLConnectionSocketFactory(sslcontext,
115                     new String[]{"TLSv1"},
116                     null,
117                     new DefaultHostnameVerifier());
118         } catch (Exception e) {
119             LOGGER.debug(e.getMessage());
120             return "";
121         }
122         StringBuilder stringBuilder = new StringBuilder();
123         StringEntity postEntity = new StringEntity(WXPayXmlUtil.parseMapToXML(reqData), "UTF-8");
124         queryState.setEntity(postEntity);
125         queryState.setHeader("Content-Type", XMLCONTENT);
126         try(CloseableHttpClient client = HttpClients.custom().setSSLSocketFactory(sslsf).build();
127             CloseableHttpResponse response = client.execute(queryState);)
128         {
129             if(response != null && response.getEntity() != null){
130                 HttpEntity entity = response.getEntity();
131                 try (
132                         InputStream in = entity.getContent();
133                         BufferedReader reader = new BufferedReader(
134                                 new InputStreamReader(in,"UTF-8")))
135                 {
136                     reader.lines().forEach(line->{
137                         stringBuilder.append(line);
138                     });
139                 }
140             }
141         } catch (IOException e) {
142             LOGGER.debug(e.getMessage());
143             return "";
144         }
145         return stringBuilder.toString();
146     }
147 
148 }
WXPayHttpUtil
 1 public class WXPayUtil {
 2     private static final String ALGORITHM = "AES/GCM/NoPadding";
 3     private static final int TAG_LENGTH_BIT = 128;
 4     private static final String AES_KEY = "9bbbd2223e5240bb2252d05222210c27"; // APIv3密钥
 5 
 6     /**
 7      * 
 8      * @param aad
 9      * @param iv
10      * @param cipherText
11      * @return
12      * @throws Exception
13      */
14     private static String aesgcmDecrypt(String aad, String iv, String cipherText){
15         try {
16             final Cipher cipher = Cipher.getInstance(ALGORITHM, "SunJCE");
17             SecretKeySpec key = new SecretKeySpec(AES_KEY.getBytes(), "AES");
18             GCMParameterSpec spec = new GCMParameterSpec(TAG_LENGTH_BIT, iv.getBytes());
19             cipher.init(Cipher.DECRYPT_MODE, key, spec);
20             cipher.updateAAD(aad.getBytes());
21             return new String(cipher.doFinal(Base64.getDecoder().decode(cipherText)));
22         } catch (Exception e) {
23             return "fail";
24         }
25     }
26     public static String getWXCert(JSONArray data) {
27         //敏感信息证书生成所需参数
28         String encryptCertificate = JSONObject.parseObject(
29                 JSONObject.toJSONString(data.get(0))).getString("encrypt_certificate");
30         String nonce = JSONObject.parseObject(
31                 encryptCertificate).getString("nonce");
32         String associatedData = JSONObject.parseObject(
33                 encryptCertificate).getString("associated_data");
34         //要被解密的证书字符串
35         String cipherText = JSONObject.parseObject(
36                 encryptCertificate).getString("ciphertext");
37         String wechatpayCert = "";
38         try {
39             wechatpayCert = aesgcmDecrypt(associatedData, nonce, cipherText);
40         } catch (Exception e) {
41             return wechatpayCert;
42         }
43         return wechatpayCert;
44     }
45     /**
46      * 生成签名. 注意,若含有sign_type字段,必须和signType参数保持一致。
47      *
48      * @param data 待签名数据
49      * @param key API密钥
50      * @param signType 签名方式
51      * @return 签名
52      */
53     public static String generateSignature(final Map<String, String> data, String key, String signType) {
54         Set<String> keySet = data.keySet();
55         String[] keyArray = keySet.toArray(new String[keySet.size()]);
56         Arrays.sort(keyArray);
57         StringBuilder sb = new StringBuilder();
58         for (String k : keyArray) {
59             if (k.equals("sign")) {
60                 continue;
61             }
62             if (data.get(k).trim().length() > 0) // 参数值为空,则不参与签名
63                 sb.append(k).append("=").append(data.get(k).trim()).append("&");
64         }
65         sb.append("key=").append(key);
66         if ("MD5".equals(signType)) {
67             return MD5.getMD5(sb.toString()).toUpperCase();
68         }
69         else if ("HMACSHA256".equals(signType)) {
70             return HMACSHAUtil.getHMACSHA256(sb.toString(), key);
71         }
72         return signType;
73     }
74     //获取指定位数的随机字符串(包含小写字母、大写字母、数字,0<length)
75     public static String getRandomString(int length) {
76         //随机字符串的随机字符库
77         String KeyString = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
78         StringBuffer sb = new StringBuffer(); int len = KeyString.length();
79         for (int i = 0; i < length; i++) {
80             sb.append(KeyString.charAt((int) Math.round(Math.random() * (len - 1))));
81         }
82         return sb.toString();
83     }
WXPayUtil
  1 public final class WXPayXmlUtil {
  2     public static DocumentBuilder newDocumentBuilder() throws ParserConfigurationException {
  3         DocumentBuilderFactory documentBuilderFactory = DocumentBuilderFactory.newInstance();
  4         documentBuilderFactory.setFeature("http://apache.org/xml/features/disallow-doctype-decl", true);
  5         documentBuilderFactory.setFeature("http://xml.org/sax/features/external-general-entities", false);
  6         documentBuilderFactory.setFeature("http://xml.org/sax/features/external-parameter-entities", false);
  7         documentBuilderFactory.setFeature("http://apache.org/xml/features/nonvalidating/load-external-dtd", false);
  8         documentBuilderFactory.setFeature(XMLConstants.FEATURE_SECURE_PROCESSING, true);
  9         documentBuilderFactory.setXIncludeAware(false);
 10         documentBuilderFactory.setExpandEntityReferences(false);
 11 
 12         return documentBuilderFactory.newDocumentBuilder();
 13     }
 14 
 15     public static Document newDocument() throws ParserConfigurationException {
 16         return newDocumentBuilder().newDocument();
 17     }
 18 
 19     /**
 20      * 解析xml,返回第一级元素键值对。如果第一级元素有子节点,则此节点的值是子节点的xml数据。
 21      *
 22      * @param strXML
 23      * @return
 24      */
 25     public static Map parseXMLToMap(String strXML) {
 26         Map<String, String> data = new HashMap<String, String>();
 27         try {
 28             DocumentBuilder documentBuilder = WXPayXmlUtil.newDocumentBuilder();
 29             InputStream stream = new ByteArrayInputStream(strXML.getBytes("UTF-8"));
 30             Document doc = documentBuilder.parse(stream);
 31             doc.getDocumentElement().normalize();
 32             NodeList nodeList = doc.getDocumentElement().getChildNodes();
 33             for (int idx = 0; idx < nodeList.getLength(); ++idx) {
 34                 Node node = nodeList.item(idx);
 35                 if (node.getNodeType() == Node.ELEMENT_NODE) {
 36                     org.w3c.dom.Element element = (org.w3c.dom.Element) node;
 37                     data.put(element.getNodeName(), element.getTextContent());
 38                 }
 39             }
 40             try {
 41                 stream.close();
 42             } catch (Exception ex) {
 43                 return data;
 44             }
 45         } catch (Exception ex) {
 46                 return data;
 47         }
 48         return data;
 49     }
 50 
 51     /**
 52      * map转xml
 53      * @param data
 54      * @return
 55      */
 56     public static String parseMapToXML(SortedMap<String, String> data) {
 57 //        StringBuffer sb = new StringBuffer();
 58 //        sb.append("<xml>");
 59 //        Set es = parameters.entrySet();
 60 //        Iterator it = es.iterator();
 61 //        while (it.hasNext()) {
 62 //            Map.Entry entry = (Map.Entry)it.next();
 63 //            String k = (String)entry.getKey();
 64 //            String v = (String)entry.getValue();
 65 //            if (null != v && !"".equals(v)) {
 66 //                sb.append("<" + k + ">" + parameters.get(k) + "</" + k + ">\n");
 67 //            }
 68 //        }
 69 //        sb.append("</xml>");
 70 //        return sb.toString();
 71 //    }
 72         Document document = null;
 73         try {
 74             document = WXPayXmlUtil.newDocument();
 75         } catch (ParserConfigurationException e) {
 76             e.printStackTrace();
 77         }
 78         org.w3c.dom.Element root = document.createElement("xml");
 79         document.appendChild(root);
 80         for (String key: data.keySet()) {
 81             String value = data.get(key);
 82             if (value == null) {
 83                 value = "";
 84             }
 85             value = value.trim();
 86             if(!("").equals(value)){
 87                 org.w3c.dom.Element filed = document.createElement(key);
 88                 filed.appendChild(document.createTextNode(value));
 89                 root.appendChild(filed);
 90             }
 91 
 92         }
 93         TransformerFactory tf = TransformerFactory.newInstance();
 94         Transformer transformer = null;
 95         StringWriter writer = new StringWriter();
 96         String output = "";
 97         try {
 98             transformer = tf.newTransformer();
 99             DOMSource source = new DOMSource(document);
100             transformer.setOutputProperty(OutputKeys.ENCODING, "UTF-8");
101             transformer.setOutputProperty(OutputKeys.INDENT, "yes");
102             StreamResult result = new StreamResult(writer);
103             transformer.transform(source, result);
104             output = writer.getBuffer().toString(); //.replaceAll("\n|\r", "");
105         } catch (Exception e) {
106             return output;
107         }finally {
108             try {
109                 writer.close();
110             } catch (IOException e) {
111                 return output;
112             }
113         }
114         return output;
115     }
116 }
WXPayXmlUtil
 1 public class RSAEncryptUtil {
 2     private static final String CIPHER_PROVIDER = "SunJCE";
 3     private static final String TRANSFORMATION_PKCS1Paddiing = "RSA/ECB/PKCS1Padding";
 4     private static final String CHAR_ENCODING = "UTF-8";//固定值,无须修改
 5     //数据加密方法
 6     private static byte[] encryptPkcs1padding(PublicKey publicKey, byte[] data) throws Exception {
 7         Cipher ci = Cipher.getInstance(TRANSFORMATION_PKCS1Paddiing, CIPHER_PROVIDER);
 8         ci.init(Cipher.ENCRYPT_MODE, publicKey);
 9         return ci.doFinal(data);
10     }
11     //加密后的秘文,使用base64编码方法
12     private static String encodeBase64(byte[] bytes) throws Exception {
13         return Base64.getEncoder().encodeToString(bytes);
14     }
15     //对敏感内容(入参Content)加密,其中PUBLIC_KEY_FILENAME为存放平台证书的路径,平台证书文件存放明文平台证书内容,且为pem格式的平台证书(平台证书的获取方式参照平台证书及序列号获取接口,通过此接口得到的参数certificates包含了加密的平台证书内容ciphertext,然后根据接口文档中平台证书解密指引,最终得到明文平台证书内容)
16      public static String rsaEncrypt(String Content,String cert){
17          final byte[] PublicKeyBytes = cert.getBytes();
18          X509Certificate certificate = null;
19          try {
20              certificate = X509Certificate.getInstance(PublicKeyBytes);
21          } catch (CertificateException e) {
22              return "";
23          }
24          PublicKey publicKey = certificate.getPublicKey();
25          try {
26              return encodeBase64(encryptPkcs1padding(publicKey, Content.getBytes(CHAR_ENCODING)));
27          } catch (Exception e) {
28              return "";
29          }
30      }
31 }
RSAEncryptUtil
  1 public class MD5 {
  2 
  3     /**
  4      * 签名字符串
  5      *
  6      * @param text
  7      *            需要签名的字符串
  8      * @param key
  9      *            密钥
 10      * @param input_charset
 11      *            编码格式
 12      * @return 签名结果
 13      */
 14     public static String sign(String text, String key, String charset) throws Exception {
 15         text = text + key;
 16         return DigestUtils.md5Hex(getContentBytes(text, charset));
 17     }
 18 
 19     /**
 20      * 签名字符串
 21      *
 22      * @param text
 23      *            需要签名的字符串
 24      * @param sign
 25      *            签名结果
 26      * @param key
 27      *            密钥
 28      * @param input_charset
 29      *            编码格式
 30      * @return 签名结果
 31      */
 32     public static boolean verify(String text, String sign, String key, String charset) throws Exception {
 33         text = text + key;
 34         String mysign = DigestUtils.md5Hex(getContentBytes(text, charset));
 35         if (mysign.equals(sign)) {
 36             return true;
 37         } else {
 38             return false;
 39         }
 40     }
 41 
 42     /**
 43      * @param content
 44      * @param charset
 45      * @return
 46      * @throws SignatureException
 47      * @throws UnsupportedEncodingException
 48      */
 49     private static byte[] getContentBytes(String content, String charset) {
 50         if (charset == null || "".equals(charset)) {
 51             return content.getBytes();
 52         }
 53         try {
 54             return content.getBytes(charset);
 55         } catch (UnsupportedEncodingException e) {
 56             throw new RuntimeException("签名过程中出现错误,指定的编码集不对,您目前指定的编码集是:" + charset);
 57         }
 58     }
 59     /**
 60      * 对文件进行MD5获取其Hash值
 61      *
 62      * @param fis
 63      * @return
 64      */
 65     public static String md5HashCode(InputStream fis) {
 66         try {
 67             MessageDigest MD5 = MessageDigest.getInstance("MD5");
 68             byte[] buffer = new byte[8192];
 69             int length;
 70             while ((length = fis.read(buffer)) != -1) {
 71                 MD5.update(buffer, 0, length);
 72             }
 73             return new String(Hex.encodeHex(MD5.digest()));
 74         } catch (Exception e) {
 75             return "";
 76         }
 77     }
 78 
 79     public static String md5HashCode(byte[] fis) {
 80         try {
 81             MessageDigest MD5 = MessageDigest.getInstance("MD5");
 82             MD5.update(fis, 0, fis.length);
 83             return new String(Hex.encodeHex(MD5.digest()));
 84         } catch (Exception e) {
 85             return "";
 86         }
 87     }
 88 
 89     /**
 90      * 生成 MD5
 91      *
 92      * @param data 待处理数据
 93      * @return MD5结果
 94      */
 95     public static String getMD5(String data) {
 96         MessageDigest md;
 97         byte[] array = new byte[0];
 98         try {
 99             md = MessageDigest.getInstance("MD5");
100             array = md.digest(data.getBytes("UTF-8"));
101         } catch (NoSuchAlgorithmException e) {
102             return "";
103         } catch (UnsupportedEncodingException e) {
104             return "";
105         }
106         StringBuilder sb = new StringBuilder();
107         for (byte item : array) {
108             sb.append(Integer.toHexString((item & 0xFF) | 0x100).substring(1, 3));
109         }
110         return sb.toString().toUpperCase();
111     }
112 }
MD5
 1 public class AnnotationUtil {
 2     /**
 3      * object转map
 4      * @param
 5      * @return
 6      */
 7     public static SortedMap<String, String> parseObjectToMap(Object obj){
 8         ArrayList<Field> fileds = new ArrayList<>();
 9         Class<?> objClass = obj.getClass();
10         fileds.addAll(Arrays.asList(objClass.getDeclaredFields()));
11         if(objClass.getSuperclass()!=null){
12             fileds.addAll(Arrays.asList(objClass.getSuperclass().getDeclaredFields()));
13         }
14         SortedMap<String,String> map = new TreeMap<>();
15         fileds.forEach(filed->{
16             filed.setAccessible(true);
17             Annotation annotations = filed.getAnnotation(WXPayParam.class);
18             String k = ((WXPayParam) annotations).value();
19             try {
20                String v =  String.valueOf(filed.get(obj));
21                if (null != v && !"".equals(v) && !"null".equals(v)) {
22                    map.put(k,v);
23                }
24             } catch (IllegalAccessException e) {
25                 return;
26             }
27         });
28         if(WXConstant.SIGNTTYPE.equals(map.get("sign_type"))){
29             map.put("sign",WXPayUtil.generateSignature(map,WXConstant.KEY,WXConstant.HMACSHA256TYPE));
30         }else{
31             map.put("sign",WXPayUtil.generateSignature(map,WXConstant.KEY,WXConstant.MD5TYPE));
32         }
33         return map;
34     }
35 }
AnnotationUtil
 1 public class HMACSHAUtil {
 2     /**
 3      * 生成 HMACSHA256
 4      * @param data 待处理数据
 5      * @param key 密钥
 6      * @return 加密结果
 7      * @throws Exception
 8      */
 9     public static String getHMACSHA256(String data, String key){
10         Mac sha256_HMAC;
11         byte[] array = null ;
12         try {
13             sha256_HMAC = Mac.getInstance("HmacSHA256");
14             SecretKeySpec secret_key = new SecretKeySpec(key.getBytes("UTF-8"), "HmacSHA256");
15             sha256_HMAC.init(secret_key);
16             array = sha256_HMAC.doFinal(data.getBytes("UTF-8"));
17         } catch (Exception e) {
18             return "";
19         }
20         StringBuilder sb = new StringBuilder();
21         for (byte item : array) {
22             sb.append(Integer.toHexString((item & 0xFF) | 0x100).substring(1, 3));
23         }
24         return sb.toString().toUpperCase();
25     }
26 }
HMACSHAUtil

 六、接口学习总结

    微信接口可以说是相当标准的API文档,说明也比较详细但是对参数的说明不是很准确,导致自己在连接接口的时候看不懂什么意思,一顿询问相关人员参数的含义,希望自己连接微信接口后对于其他的接口也会轻车熟路,一定要细心每一个参数的配置、顺序就没多大问题

 ps:关注一下本人公众号,每周都有新更新哦!

有问题的话,博客回复太慢,可以加一下本人微信:请备注问题!谢谢

 

 

posted @ 2019-02-27 19:01  努力的小雨  阅读(8009)  评论(0编辑  收藏  举报