springboot 微信公众号支付
import com.aaa.common.ResponseBean;
import com.aaa.common.base.BaseController;
import com.aaa.service.wrsWaterFeeCapture.entity.WrsWaterFeeCapture;
import com.aaa.service.wrsWaterFeeCapture.service.WrsWaterFeeCaptureService;
import com.aaa.service.wrsWaterPricing.service.WrsWaterPricingService;
import com.aaa.util.HttpUtil;
import com.aaa.util.WXPayUtil;
import com.aaa.vo.wechat.Pay;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.http.MediaType;
import org.springframework.web.bind.annotation.*;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;
import java.util.*;
import static com.aaa.constant.WechatConstants.*;
@Slf4j
@RestController
@RequestMapping("/api/wechat")
public class WxPayController extends BaseController {
@Autowired
private WrsWaterFeeCaptureService wrsWaterFeeCaptureService;
@Autowired
private WrsWaterPricingService wrsWaterPricingService;
@PostMapping(value = "/prePay", produces = MediaType.APPLICATION_JSON_VALUE)
@ResponseBody
public ResponseBean weixinPrePay(@RequestBody Pay pay, HttpServletRequest request) throws Exception {
// 生成唯一订单号
WrsWaterFeeCapture wrsWaterFeeCapture = new WrsWaterFeeCapture();
wrsWaterFeeCapture.setPricingId(wrsWaterPricingService.queryEnable().getId());
wrsWaterFeeCapture.setType(1);
wrsWaterFeeCapture.setUserId(Integer.parseInt(getUserId()));
wrsWaterFeeCapture.setManageId(Integer.parseInt(getUserManageId()));
wrsWaterFeeCapture.setBillingYear(pay.getBillingYear());
wrsWaterFeeCapture.setTotalPayable(Long.parseLong(pay.getTotalPayable()));
wrsWaterFeeCapture.setPaid(Long.parseLong(pay.getPrice()));
wrsWaterFeeCapture.setCreator(getUserName());
wrsWaterFeeCapture.setCreateTime(new Date());
wrsWaterFeeCapture.setStatus("3");
wrsWaterFeeCaptureService.insert(wrsWaterFeeCapture);
String out_trade_no = wrsWaterFeeCapture.getId().toString();
Map<String, String> parameterMap = new HashMap<>(16);
//微信公众号的appid
parameterMap.put("appid", APPID);
//商户号
parameterMap.put("mch_id", MCH_ID);
parameterMap.put("device_info", "WEB");
// 随机字符串
parameterMap.put("nonce_str", WXPayUtil.generateNonceStr());
// 商品描述
parameterMap.put("body", "水费收缴");
// 商户订单号(唯一) 我是用当前时间戳+随意数字生成的
parameterMap.put("out_trade_no", "aaa_fee" + out_trade_no);
//货币类型 CNY:人民币
parameterMap.put("fee_type", "CNY");
// 总金额 分 单位
parameterMap.put("total_fee", pay.getPrice());
// 支付成功后的回调地址 填你
parameterMap.put("notify_url", PAY_CALLBACK);
//JSAPI--JSAPI支付(或小程序支付)、NATIVE--Native支付、APP--app支付,MWEB--H5支付,不同trade_type决定了调起支付的方式
parameterMap.put("trade_type", "JSAPI");
//trade_type为JSAPI是 openid为必填项
parameterMap.put("openid", pay.getOpenid());
// 加密格式 MD5 微信底层默认加密是HMAC-SHA256 具体你可以去看微信的支付底层代码(https://pay.weixin.qq.com/wiki/doc/api/jsapi.php?chapter=11_1)
parameterMap.put("sign_type", "MD5");
// 生成支付签名 参数值的参数按照参数名ASCII码从小到大排序(字典序)
parameterMap.put("sign", WXPayUtil.generateSignature(parameterMap, API_KEY));
// 微信的统一下单接口 需要将集合中的参数 拼接成<xml></xml> 格式
String requestXML = WXPayUtil.mapToXml(parameterMap);
// 调用微信的统一下单接口
String result = HttpUtil.wxHttpsRequest("https://api.mch.weixin.qq.com/pay/unifiedorder", "POST", requestXML);
// 返回的数据是 xml 格式的数据
Map<String, String> map = null;
try {
// 微信统一下单接口返回的数据 也是xml 格式的 所以需要把它转成map 集合,因为我们只需要当中的一个统一下单编号 prepay_id
map = WXPayUtil.xmlToMap(result);
map.put("timestamp", String.valueOf(System.currentTimeMillis() / 1000));
// 时间戳 需要转换成秒
// 二次签名 微信支付签名需要签名两次,第一次是用来获取统一下单的订单号
if ("SUCCESS".equals(map.get("result_code"))) {
SortedMap<String, String> map2 = new TreeMap<>();
// 第二次支付签名的 参数 需要将 第一次签名中的 订单号带入签名中
map2.put("appId", map.get("appid"));
map2.put("timeStamp", map.get("timestamp"));
//这边的随机字符串必须是第一次生成sign时,微信返回的随机字符串,不然支付时会报签名错误
map2.put("nonceStr", map.get("nonce_str"));
// 订单详情扩展字符串 统一下单接口返回的prepay_id参数值,提交格式如:prepay_id=***
map2.put("package", "prepay_id=" + map.get("prepay_id"));
// 签名方式 要和第一次签名方式一致
map2.put("signType", "MD5");
// 将你前端需要的数据 放在集合中
Map<String, Object> payInfo = new HashMap<>(8);
payInfo.put("appId", map.get("appid"));
payInfo.put("timeStamp", map.get("timestamp"));
payInfo.put("nonceStr", map.get("nonce_str"));
payInfo.put("prepay_id", map.get("prepay_id"));
payInfo.put("signType", "MD5");
payInfo.put("paySign", WXPayUtil.generateSignature(map2, API_KEY));
// 返回给前端的集合数据
return ResponseBean.toSuccess(payInfo);
}
} catch (Exception e) {
e.printStackTrace();
}
return new ResponseBean(new ResponseBean.Error(500, "服务器异常"), null);
}
/**
* 此函数会被执行多次,如果支付状态已经修改为已支付,则下次再调的时候判断是否已经支付,如果已经支付了,则什么也不执行
* <p>
* 支付回调地址
*
* @param request
* @param response
* @return
* @throws IOException
*/
@RequestMapping(value = "/callbackPay", produces = MediaType.APPLICATION_JSON_VALUE)
@ResponseBody
public void callbackPay(HttpServletRequest request, HttpServletResponse response) throws Exception {
log.info("微信支付回调");
String xml = WXPayUtil.inputStream2String(request.getInputStream(), "UTF-8");
//将微信发的xml转map
Map<String, String> notifyMap = WXPayUtil.xmlToMap(xml);
log.info(notifyMap.toString());
if ("SUCCESS".equals(notifyMap.get("return_code"))) {
if ("SUCCESS".equals(notifyMap.get("result_code"))) {
//商户订单号
String ordersSn = notifyMap.get("out_trade_no");
ordersSn = ordersSn.replace("aaa_fee", "");
//实际支付的订单金额:单位 分
String amountpaid = notifyMap.get("total_fee");
WrsWaterFeeCapture wrsWaterFeeCapture = wrsWaterFeeCaptureService.queryById(ordersSn);
log.info(wrsWaterFeeCapture.toString());
wrsWaterFeeCapture.setStatus("1");
wrsWaterFeeCaptureService.update(wrsWaterFeeCapture);
}
}
}
}
import lombok.extern.slf4j.Slf4j;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.w3c.dom.Document;
import org.w3c.dom.Node;
import org.w3c.dom.NodeList;
import javax.crypto.Mac;
import javax.crypto.spec.SecretKeySpec;
import javax.xml.XMLConstants;
import javax.xml.parsers.DocumentBuilder;
import javax.xml.parsers.DocumentBuilderFactory;
import javax.xml.parsers.ParserConfigurationException;
import javax.xml.transform.OutputKeys;
import javax.xml.transform.Transformer;
import javax.xml.transform.TransformerFactory;
import javax.xml.transform.dom.DOMSource;
import javax.xml.transform.stream.StreamResult;
import java.io.*;
import java.nio.charset.StandardCharsets;
import java.security.MessageDigest;
import java.security.SecureRandom;
import java.util.*;
@Slf4j
public class WXPayUtil {
private static final String SYMBOLS = "0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
private static final Random RANDOM = new SecureRandom();
/**
* XML格式字符串转换为Map
*
* @param strXML XML字符串
* @return XML数据转换后的Map
* @throws Exception
*/
public static Map<String, String> xmlToMap(String strXML) throws Exception {
try {
Map<String, String> data = new HashMap<String, String>();
DocumentBuilder documentBuilder = newDocumentBuilder();
InputStream stream = new ByteArrayInputStream(strXML.getBytes(StandardCharsets.UTF_8));
org.w3c.dom.Document doc = documentBuilder.parse(stream);
doc.getDocumentElement().normalize();
NodeList nodeList = doc.getDocumentElement().getChildNodes();
for (int idx = 0; idx < nodeList.getLength(); ++idx) {
Node node = nodeList.item(idx);
if (node.getNodeType() == Node.ELEMENT_NODE) {
org.w3c.dom.Element element = (org.w3c.dom.Element) node;
data.put(element.getNodeName(), element.getTextContent());
}
}
try {
stream.close();
} catch (Exception ex) {
// do nothing
}
return data;
} catch (Exception ex) {
log.warn("Invalid XML, can not convert to map. Error message: {}. XML content: {}", ex.getMessage(), strXML);
throw ex;
}
}
/**
* 将Map转换为XML格式的字符串
*
* @param data Map类型数据
* @return XML格式的字符串
* @throws Exception
*/
public static String mapToXml(Map<String, String> data) throws Exception {
org.w3c.dom.Document document = newDocument();
org.w3c.dom.Element root = document.createElement("xml");
document.appendChild(root);
for (String key : data.keySet()) {
String value = data.get(key);
if (value == null) {
value = "";
}
value = value.trim();
org.w3c.dom.Element filed = document.createElement(key);
filed.appendChild(document.createTextNode(value));
root.appendChild(filed);
}
TransformerFactory tf = TransformerFactory.newInstance();
Transformer transformer = tf.newTransformer();
DOMSource source = new DOMSource(document);
transformer.setOutputProperty(OutputKeys.ENCODING, "UTF-8");
transformer.setOutputProperty(OutputKeys.INDENT, "yes");
StringWriter writer = new StringWriter();
StreamResult result = new StreamResult(writer);
transformer.transform(source, result);
String output = writer.getBuffer().toString(); //.replaceAll("\n|\r", "");
try {
writer.close();
} catch (Exception ex) {
}
return output;
}
/**
* 生成带有 sign 的 XML 格式字符串
*
* @param data Map类型数据
* @param key API密钥
* @return 含有sign字段的XML
*/
public static String generateSignedXml(final Map<String, String> data, String key) throws Exception {
return generateSignedXml(data, key, "MD5");
}
/**
* 生成带有 sign 的 XML 格式字符串
*
* @param data Map类型数据
* @param key API密钥
* @param signType 签名类型
* @return 含有sign字段的XML
*/
public static String generateSignedXml(final Map<String, String> data, String key, String signType) throws Exception {
String sign = generateSignature(data, key, signType);
data.put("sign", sign);
return mapToXml(data);
}
/**
* 判断签名是否正确
*
* @param xmlStr XML格式数据
* @param key API密钥
* @return 签名是否正确
* @throws Exception
*/
public static boolean isSignatureValid(String xmlStr, String key) throws Exception {
Map<String, String> data = xmlToMap(xmlStr);
if (!data.containsKey("sign")) {
return false;
}
String sign = data.get("sign");
return generateSignature(data, key).equals(sign);
}
/**
* 判断签名是否正确,必须包含sign字段,否则返回false。使用MD5签名。
*
* @param data Map类型数据
* @param key API密钥
* @return 签名是否正确
* @throws Exception
*/
public static boolean isSignatureValid(Map<String, String> data, String key) throws Exception {
return isSignatureValid(data, key, "MD5");
}
/**
* 判断签名是否正确,必须包含sign字段,否则返回false。
*
* @param data Map类型数据
* @param key API密钥
* @param signType 签名方式
* @return 签名是否正确
* @throws Exception
*/
public static boolean isSignatureValid(Map<String, String> data, String key, String signType) throws Exception {
if (!data.containsKey("sign")) {
return false;
}
String sign = data.get("sign");
return generateSignature(data, key, signType).equals(sign);
}
/**
* 生成签名
*
* @param data 待签名数据
* @param key API密钥
* @return 签名
*/
public static String generateSignature(final Map<String, String> data, String key) throws Exception {
return generateSignature(data, key, "MD5");
}
/**
* 生成签名. 注意,若含有sign_type字段,必须和signType参数保持一致。
*
* @param data 待签名数据
* @param key API密钥
* @param signType 签名方式
* @return 签名
*/
public static String generateSignature(final Map<String, String> data, String key, String signType) throws Exception {
Set<String> keySet = data.keySet();
String[] keyArray = keySet.toArray(new String[keySet.size()]);
Arrays.sort(keyArray);
StringBuilder sb = new StringBuilder();
for (String k : keyArray) {
if ("sign".equals(k)) {
continue;
}
if (data.get(k).trim().length() > 0) // 参数值为空,则不参与签名
{
sb.append(k).append("=").append(data.get(k).trim()).append("&");
}
}
sb.append("key=").append(key);
if ("MD5".equals(signType)) {
return MD5(sb.toString()).toUpperCase();
} else if ("HMACSHA256".equals(signType)) {
return HMACSHA256(sb.toString(), key);
} else {
throw new Exception(String.format("Invalid sign_type: %s", signType));
}
}
/**
* 获取随机字符串 Nonce Str
*
* @return String 随机字符串
*/
public static String generateNonceStr() {
char[] nonceChars = new char[32];
for (int index = 0; index < nonceChars.length; ++index) {
nonceChars[index] = SYMBOLS.charAt(RANDOM.nextInt(SYMBOLS.length()));
}
return new String(nonceChars);
}
/**
* 生成 MD5
*
* @param data 待处理数据
* @return MD5结果
*/
public static String MD5(String data) throws Exception {
MessageDigest md = MessageDigest.getInstance("MD5");
byte[] array = md.digest(data.getBytes("UTF-8"));
StringBuilder sb = new StringBuilder();
for (byte item : array) {
sb.append(Integer.toHexString((item & 0xFF) | 0x100).substring(1, 3));
}
return sb.toString().toUpperCase();
}
/**
* 生成 HMACSHA256
*
* @param data 待处理数据
* @param key 密钥
* @return 加密结果
* @throws Exception
*/
public static String HMACSHA256(String data, String key) throws Exception {
Mac sha256_HMAC = Mac.getInstance("HmacSHA256");
SecretKeySpec secret_key = new SecretKeySpec(key.getBytes("UTF-8"), "HmacSHA256");
sha256_HMAC.init(secret_key);
byte[] array = sha256_HMAC.doFinal(data.getBytes("UTF-8"));
StringBuilder sb = new StringBuilder();
for (byte item : array) {
sb.append(Integer.toHexString((item & 0xFF) | 0x100).substring(1, 3));
}
return sb.toString().toUpperCase();
}
public static String inputStream2String(InputStream inStream, String charset) {
try (ByteArrayOutputStream outSteam = new ByteArrayOutputStream()) {
byte[] buffer = new byte[1024];
int len = 0;
while ((len = inStream.read(buffer)) != -1) {
outSteam.write(buffer, 0, len);
}
return outSteam.toString(charset);
} catch (Exception e) {
return null;
} finally {
try {
inStream.close();
} catch (IOException e) {
e.printStackTrace();
}
}
}
/**
* 获取当前时间戳,单位秒
*
* @return
*/
public static long getCurrentTimestamp() {
return System.currentTimeMillis() / 1000;
}
/**
* 获取当前时间戳,单位毫秒
*
* @return
*/
public static long getCurrentTimestampMs() {
return System.currentTimeMillis();
}
public static DocumentBuilder newDocumentBuilder() throws ParserConfigurationException {
DocumentBuilderFactory documentBuilderFactory = DocumentBuilderFactory.newInstance();
documentBuilderFactory.setFeature("http://apache.org/xml/features/disallow-doctype-decl", true);
documentBuilderFactory.setFeature("http://xml.org/sax/features/external-general-entities", false);
documentBuilderFactory.setFeature("http://xml.org/sax/features/external-parameter-entities", false);
documentBuilderFactory.setFeature("http://apache.org/xml/features/nonvalidating/load-external-dtd", false);
documentBuilderFactory.setFeature(XMLConstants.FEATURE_SECURE_PROCESSING, true);
documentBuilderFactory.setXIncludeAware(false);
documentBuilderFactory.setExpandEntityReferences(false);
return documentBuilderFactory.newDocumentBuilder();
}
public static Document newDocument() throws ParserConfigurationException {
return newDocumentBuilder().newDocument();
}
}
import lombok.extern.slf4j.Slf4j;
import java.io.*;
import java.net.ConnectException;
import java.net.HttpURLConnection;
import java.net.URL;
import java.nio.charset.StandardCharsets;
@Slf4j
public class HttpUtil {
//请求方法
public static String wxHttpsRequest(String requestUrl, String requestMethod, String outputStr) {
try {
URL url = new URL(requestUrl);
HttpURLConnection conn = (HttpURLConnection) url.openConnection();
conn.setDoOutput(true);
conn.setDoInput(true);
conn.setUseCaches(false);
// 设置请求方式(GET/POST)
conn.setRequestMethod(requestMethod);
conn.setRequestProperty("content-type", "application/x-www-form-urlencoded");
// 当outputStr不为null时向输出流写数据
if (null != outputStr) {
OutputStream outputStream = conn.getOutputStream();
// 注意编码格式
outputStream.write(outputStr.getBytes(StandardCharsets.UTF_8));
outputStream.close();
}
// 从输入流读取返回内容
InputStream inputStream = conn.getInputStream();
InputStreamReader inputStreamReader = new InputStreamReader(inputStream, StandardCharsets.UTF_8);
BufferedReader bufferedReader = new BufferedReader(inputStreamReader);
String str = null;
StringBuffer buffer = new StringBuffer();
while ((str = bufferedReader.readLine()) != null) {
buffer.append(str);
}
// 释放资源
bufferedReader.close();
inputStreamReader.close();
inputStream.close();
inputStream = null;
conn.disconnect();
return buffer.toString();
} catch (ConnectException ce) {
System.out.println("连接超时:{}" + ce);
} catch (Exception e) {
System.out.println("https请求异常:{}" + e);
}
return null;
}
}
分类:
Java
, spring boot
【推荐】国内首个AI IDE,深度理解中文开发场景,立即下载体验Trae
【推荐】编程新体验,更懂你的AI,立即体验豆包MarsCode编程助手
【推荐】抖音旗下AI助手豆包,你的智能百科全书,全免费不限次数
【推荐】轻量又高性能的 SSH 工具 IShell:AI 加持,快人一步
· 无需6万激活码!GitHub神秘组织3小时极速复刻Manus,手把手教你使用OpenManus搭建本
· C#/.NET/.NET Core优秀项目和框架2025年2月简报
· Manus爆火,是硬核还是营销?
· 终于写完轮子一部分:tcp代理 了,记录一下
· 【杭电多校比赛记录】2025“钉耙编程”中国大学生算法设计春季联赛(1)