php 微信H5支付
本事例代码基于Laravel框架。
1.首先你的微信商户号需要开通微信H5支付
2.你的支付网站的域名需要在微信商户号后台配置
3.回调地址需要在外网中能打开并且能接受post请求,可以用postman检查一下。
事例代码:
支付类:
<?php namespace App\Http\Controllers\Wechat; /** * 微信支付服务器端下单 * 微信APP支付文档地址: https://pay.weixin.qq.com/wiki/doc/api/app.php?chapter=8_6 * 使用示例 * 构造方法参数 * 'appid' => //填写微信分配的公众账号ID * 'mch_id' => //填写微信支付分配的商户号 * 'notify_url'=> //填写微信支付结果回调地址 * 'key' => //填写微信商户支付密钥 * ); * 统一下单方法 * $WechatAppPay = new wechatAppPay($options); * $params['body'] = '商品描述'; //商品描述 * $params['out_trade_no'] = '1217752501201407'; //自定义的订单号,不能重复 * $params['total_fee'] = '100'; //订单金额 只能为整数 单位为分 * $params['trade_type'] = 'APP'; //交易类型 JSAPI | NATIVE |APP | WAP * $wechatAppPay->unifiedOrder( $params ); */ class WxH5PayController { //接口API URL前缀 const API_URL_PREFIX = 'https://api.mch.weixin.qq.com'; //下单地址URL const UNIFIEDORDER_URL = "/pay/unifiedorder"; //查询订单URL const ORDERQUERY_URL = "/pay/orderquery"; //关闭订单URL const CLOSEORDER_URL = "/pay/closeorder"; //公众账号ID private $appid=''; //商户号 private $mch_id=''; //支付密钥 private $key=''; //随机字符串 private $nonce_str; //签名 private $sign; //商品描述 private $body; //商户订单号 private $out_trade_no; //支付总金额 private $total_fee; //终端IP private $spbill_create_ip; //支付结果回调通知地址 private $notify_url; //交易类型 private $trade_type; //证书路径 private $SSLCERT_PATH; private $SSLKEY_PATH; //所有参数 private $params = array(); public function __construct($notifyUrl) { //回调地址 $this->notify_url = $notifyUrl; } /** * 下单方法 * @param $params 下单参数 有色半导体 */ public function unifiedOrder($params) { $this->body = $params['body']; $this->out_trade_no = $params['out_trade_no']; $this->total_fee = $params['total_fee']; $this->trade_type = $params['trade_type']; $this->scene_info = $params['scene_info']; $this->nonce_str = $this->genRandomString(); $this->spbill_create_ip = $_SERVER['REMOTE_ADDR']; $this->params['appid'] = $this->appid; $this->params['mch_id'] = $this->mch_id; $this->params['nonce_str'] = $this->nonce_str; $this->params['body'] = $this->body; $this->params['out_trade_no'] = $this->out_trade_no; $this->params['total_fee'] = $this->total_fee; $this->params['spbill_create_ip'] = $this->spbill_create_ip; $this->params['notify_url'] = $this->notify_url; $this->params['trade_type'] = $this->trade_type; $this->params['scene_info'] = $this->scene_info; //获取签名数据 $this->sign = $this->MakeSign($this->params); $this->params['sign'] = $this->sign; $xml = $this->data_to_xml($this->params); $response = $this->postXmlCurl($xml, self::API_URL_PREFIX . self::UNIFIEDORDER_URL); if (!$response) { return false; } $result = $this->xml_to_data($response); if (!empty($result['result_code']) && !empty($result['err_code'])) { $result['err_msg'] = $this->error_code($result['err_code']); } return $result; } /** * 查询订单信息 * @param $out_trade_no 订单号 * @return array */ public function orderQuery($out_trade_no) { $this->params['appid'] = $this->appid; $this->params['mch_id'] = $this->mch_id; $this->params['nonce_str'] = $this->genRandomString(); $this->params['out_trade_no'] = $out_trade_no; //获取签名数据 $this->sign = $this->MakeSign($this->params); $this->params['sign'] = $this->sign; $xml = $this->data_to_xml($this->params); $response = $this->postXmlCurl($xml, self::API_URL_PREFIX . self::ORDERQUERY_URL); if (!$response) { return false; } $result = $this->xml_to_data($response); if (!empty($result['result_code']) && !empty($result['err_code'])) { $result['err_msg'] = $this->error_code($result['err_code']); } return $result; } /** * 关闭订单 * @param $out_trade_no 订单号 * @return array */ public function closeOrder($out_trade_no) { $this->params['appid'] = $this->appid; $this->params['mch_id'] = $this->mch_id; $this->params['nonce_str'] = $this->genRandomString(); $this->params['out_trade_no'] = $out_trade_no; //获取签名数据 $this->sign = $this->MakeSign($this->params); $this->params['sign'] = $this->sign; $xml = $this->data_to_xml($this->params); $response = $this->postXmlCurl($xml, self::API_URL_PREFIX . self::CLOSEORDER_URL); if (!$response) { return false; } $result = $this->xml_to_data($response); return $result; } /** * * 获取支付结果通知数据 * return array */ public function getNotifyData() { //获取通知的数据 $xml = $GLOBALS['HTTP_RAW_POST_DATA']; //echo 123;die; $data = array(); if (empty($xml)) { return false; } $data = $this->xml_to_data($xml); if (!empty($data['return_code'])) { if ($data['return_code'] == 'FAIL') { return false; } } return $data; } /** * 接收通知成功后应答输出XML数据 * @param string $xml */ public function replyNotify() { $data['return_code'] = 'SUCCESS'; $data['return_msg'] = 'OK'; $xml = $this->data_to_xml($data); echo $xml; die(); } /** * 生成APP端支付参数 * @param $prepayid 预支付id */ public function getAppPayParams($prepayid) { $data['appid'] = $this->appid; $data['partnerid'] = $this->mch_id; $data['prepayid'] = $prepayid; $data['package'] = 'Sign=WXPay'; $data['noncestr'] = $this->genRandomString(); $data['timestamp'] = time(); $data['sign'] = $this->MakeSign($data); return $data; } /** * 生成签名 * @return 签名 */ public function MakeSign($params) { //签名步骤一:按字典序排序数组参数 ksort($params); $string = $this->ToUrlParams($params); //签名步骤二:在string后加入KEY $string = $string . "&key=" . $this->key; //var_dump($string);exit; //签名步骤三:MD5加密 $string = md5($string); //签名步骤四:所有字符转为大写 $result = strtoupper($string); return $result; } /** * 将参数拼接为url: key=value&key=value * @param $params * @return string */ public function ToUrlParams($params) { $string = ''; if (!empty($params)) { $array = array(); foreach ($params as $key => $value) { $array[] = $key . '=' . $value; } $string = implode("&", $array); } return $string; } /** * 输出xml字符 3,9,1 * @param $params 参数名称 * return string 返回组装的xml **/ public function data_to_xml($params) { if (!is_array($params) || count($params) <= 0) { return false; } header("Content-type:text/xml;charset=utf-8"); $xml = "<xml>"; foreach ($params as $key => $val) { //var_dump($xml);exit; if (is_numeric($val)) { $xml .= "<" . $key . ">" . $val . "</" . $key . ">"; } else { $xml .= "<" . $key . "><![CDATA[" . $val . "]]></" . $key . ">"; //var_dump($xml);exit; } } $xml .= "</xml>"; return $xml; } /** * 将xml转为array * @param string $xml * return array */ public function xml_to_data($xml) { if (!$xml) { return false; } //将XML转为array //禁止引用外部xml实体 libxml_disable_entity_loader(true); $data = json_decode(json_encode(simplexml_load_string($xml, 'SimpleXMLElement', LIBXML_NOCDATA)), true); return $data; } /** * 获取毫秒级别的时间戳 * */ private static function getMillisecond() { //获取毫秒的时间戳 $time = explode(" ", microtime()); $time = $time[1] . ($time[0] * 1000); $time2 = explode(".", $time); $time = $time2[0]; return $time; } /** * 产生一个指定长度的随机字符串,并返回给用户 * @param type $len 产生字符串的长度 * @return string 随机字符串 */ private function genRandomString($len = 32) { $chars = array( "a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9" ); $charsLen = count($chars) - 1; // 将数组打乱 shuffle($chars); $output = ""; for ($i = 0; $i < $len; $i++) { $output .= $chars[mt_rand(0, $charsLen)]; } return $output; } /** * 以post方式提交xml到对应的接口url * * @param string $xml 需要post的xml数据 * @param string $url url * @param bool $useCert 是否需要证书,默认不需要 * @param int $second url执行超时时间,默认30s * @throws WxPayException */ private function postXmlCurl($xml, $url, $useCert = false, $second = 30) { $ch = curl_init(); //设置超时 curl_setopt($ch, CURLOPT_TIMEOUT, $second); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2); //设置header curl_setopt($ch, CURLOPT_HEADER, FALSE); //要求结果为字符串且输出到屏幕上 curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE); if ($useCert == true) { //设置证书 //使用证书:cert 与 key 分别属于两个.pem文件 curl_setopt($ch, CURLOPT_SSLCERTTYPE, 'PEM'); //curl_setopt($ch,CURLOPT_SSLCERT, WxPayConfig::SSLCERT_PATH); curl_setopt($ch, CURLOPT_SSLKEYTYPE, 'PEM'); //curl_setopt($ch,CURLOPT_SSLKEY, WxPayConfig::SSLKEY_PATH); } //post提交方式 curl_setopt($ch, CURLOPT_POST, TRUE); curl_setopt($ch, CURLOPT_POSTFIELDS, $xml); //运行curl $data = curl_exec($ch); //返回结果 if ($data) { curl_close($ch); return $data; } else { $error = curl_errno($ch); curl_close($ch); return false; } } /** * 错误代码 * @param $code 服务器输出的错误代码 * return string */ public function error_code($code) { $errList = array( 'NOAUTH' => '商户未开通此接口权限', 'NOTENOUGH' => '用户帐号余额不足', 'ORDERNOTEXIST' => '订单号不存在', 'ORDERPAID' => '商户订单已支付,无需重复操作', 'ORDERCLOSED' => '当前订单已关闭,无法支付', 'SYSTEMERROR' => '系统错误!系统超时', 'APPID_NOT_EXIST' => '参数中缺少APPID', 'MCHID_NOT_EXIST' => '参数中缺少MCHID', 'APPID_MCHID_NOT_MATCH' => 'appid和mch_id不匹配', 'LACK_PARAMS' => '缺少必要的请求参数', 'OUT_TRADE_NO_USED' => '同一笔交易不能多次提交', 'SIGNERROR' => '参数签名结果不正确', 'XML_FORMAT_ERROR' => 'XML格式错误', 'REQUIRE_POST_METHOD' => '未使用post传递参数 ', 'POST_DATA_EMPTY' => 'post数据不能为空', 'NOT_UTF8' => '未使用指定编码格式', ); if (array_key_exists($code, $errList)) { return $errList[$code]; } } }
调用支付:
<?php namespace App\Http\Controllers\Wechat; use App\Http\Controllers\Controller; use App\Models\WechatOrder; use Illuminate\Support\Facades\Log; use Illuminate\Http\Request; class PayController extends Controller { //H5支付回调地址 const HOST='https://huidiao.zhifu.com'; const H5_NOTIFY_URL='/wechat/h5_notify'; //生成订单号 public function makeOrder(){ ini_set('date.timezone', 'Asia/Shanghai'); return date('YmdHi').substr(implode(NULL, array_map('ord', str_split(substr(uniqid(), 7, 13), 1))), 0, 4); } //判断手机还是电脑 function isMobile(){ $useragent=isset($_SERVER['HTTP_USER_AGENT']) ? $_SERVER['HTTP_USER_AGENT'] : ''; $useragent_commentsblock=preg_match('|\(.*?\)|',$useragent,$matches)>0?$matches[0]:''; function CheckSubstrs($substrs,$text){ foreach($substrs as $substr) if(false!==strpos($text,$substr)){ return true; } return false; } $mobile_os_list=array('Google Wireless Transcoder','Windows CE','WindowsCE','Symbian','Android','armv6l','armv5','Mobile','CentOS','mowser','AvantGo','Opera Mobi','J2ME/MIDP','Smartphone','Go.Web','Palm','iPAQ'); $mobile_token_list=array('Profile/MIDP','Configuration/CLDC-','160×160','176×220','240×240','240×320','320×240','UP.Browser','UP.Link','SymbianOS','PalmOS','PocketPC','SonyEricsson','Nokia','BlackBerry','Vodafone','BenQ','Novarra-Vision','Iris','NetFront','HTC_','Xda_','SAMSUNG-SGH','Wapaka','DoCoMo','iPhone','iPod'); $found_mobile=CheckSubstrs($mobile_os_list,$useragent_commentsblock) || CheckSubstrs($mobile_token_list,$useragent); if ($found_mobile){ return true; }else{ return false; } } //支付 public function pay(Request $request){ //跨域 header('Access-Control-Allow-Origin:*'); header("Access-Control-Allow-Methods:POST, GET, OPTIONS, DELETE"); header("Access-Control-Allow-Headers:x-requested-with,Authorization,token,webCode,source, content-type"); //这里要加上content-type header("Access-Control-Allow-Credentials:true"); //判断来源 if (!$this->isMobile()){ return returnError('请用手机浏览器打开!'); } $referrer = $request->headers->get('referer'); $notifyUrl = self::HOST.self::H5_NOTIFY_URL; $wechatAppPay = new WxH5PayController($notifyUrl); $params['body'] = '微信H5支付测试'; //var_dump($referrer);exit; //订单号 $params['out_trade_no'] = $this->makeOrder();//订单号 $params['total_fee'] = '1';//订单金额 只能为整数 单位为分 $params['trade_type'] = 'MWEB'; // 交易类型 MWEB $host = $referrer;//来源地址 $name='微信支付测试订单'; $params['scene_info'] = '{"h5_info": {"type":"Wap","wap_url": ' . $host . ',"wap_name":"'.$name.'"}}'; $result = $wechatAppPay->unifiedOrder($params); Log::info($result); if ($result['return_code'] !='SUCCESS'){ return returnError($result['return_msg']); } //创建订单信息 try{ $data=[ 'out_trade_no'=>$params['out_trade_no'], 'total_fee'=>$params['total_fee'], 'scene_info'=>$params['scene_info'], 'type'=>0, 'code'=>$result['return_code'], 'msg'=>isset($result['return_msg']) ? $result['return_msg'] : '', 'create_time'=>time(), ]; WechatOrder::insert($data); }catch(\Exception $e){ return returnError('订单入库失败'); } $url = $result['mweb_url'];//可以在MWEB_URL后拼接上redirect_url参数,来指定回调页面 return returnSuceess('success',$url); } //支付回调 注意回调要能被post方式访问 public function h5NotifyUrl(){ $strPost = isset($GLOBALS["HTTP_RAW_POST_DATA"]) ? $GLOBALS["HTTP_RAW_POST_DATA"] : file_get_contents('php://input'); //Log::info($strPost); if (!empty($strPost)){ libxml_disable_entity_loader(true); $postObj = simplexml_load_string($strPost, 'SimpleXMLElement', LIBXML_NOCDATA); $postObj = json_encode($postObj); $postObj = json_decode($postObj, true); Log::info($postObj); $out_trade_no = isset($postObj["out_trade_no"]) ? trim($postObj["out_trade_no"]) : ''; $openid = isset($postObj["openid"]) ? trim($postObj["openid"]) : ''; $is_subscribe = isset($postObj["is_subscribe"]) ? trim($postObj["is_subscribe"]) : 0; $time_end = isset($postObj["time_end"]) ? trim($postObj["time_end"]) : 0; $transaction_id = isset($postObj["transaction_id"]) ? trim($postObj["transaction_id"]) : ''; if ($postObj["result_code"] == 'SUCCESS' && $postObj["return_code"] == 'SUCCESS' && $out_trade_no) { //支付完成之后更新数据库状态 try{ WechatOrder::where(['out_trade_no'=>$out_trade_no])->update([ 'type'=>1, 'update_time'=>time(), 'openid'=>$openid, 'is_subscribe'=>$is_subscribe, 'time_end'=>$time_end, 'transaction_id'=>$transaction_id, ]); echo "<xml><return_code><![CDATA[SUCCESS]]></return_code><return_msg><![CDATA[OK]]></return_msg></xml>"; }catch(\Exception $e){ Log::info('订单入库失败'.$e->getMessage()); } }else{ Log::info('回调失败'); } }else{ Log::info('没有回调数据!'); } }
}
前端调用:
<!DOCTYPE html> <html lang="zh-cn"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="referrer" content="origin" /> </head> <div> <button onclick="zhifu()">点击支付</button> </div> <script src="https://cdn.bootcdn.net/ajax/libs/jquery/3.5.1/jquery.js"></script> <script> function zhifu() { $.ajax({ type: "get", url: 'https://api.zhifu.com/wechat/pay', success:function(data){ if(data.code==1){ console.log(data); window.location.replace(data.data + '&redirect_url=' + encodeURI('http://www.baidu.com')); }else{ alert(JSON.parse(JSON.stringify(data.msg))); } }, error: function() { alert("网络延时造成通信失败,请稍后再试;"); return false; }, dataType:"json" }); } </script> </html>
♥ 作者:离岸少年
♠ 出处:https://www.cnblogs.com/jackzhuo/
♣ 本博客大多为学习笔记或读书笔记,本文如对您有帮助,还请多推荐下此文,如有错误欢迎指正,相互学习,共同进步。
