config = $params;
}
/**
* 配置信息
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
*/
public function Config()
{
// 基础信息
$base = [
'name' => '微信', // 插件名称
'version' => '1.1.1', // 插件版本
'apply_version' => '不限', // 适用系统版本描述
'apply_terminal'=> ['pc', 'h5', 'ios', 'android', 'weixin', 'toutiao', 'qq'], // 适用终端 默认全部 ['pc', 'h5', 'app', 'alipay', 'weixin', 'baidu']
'desc' => '适用公众号+PC+H5+APP+[微信|头条]小程序,即时到帐支付方式,买家的交易资金直接打入卖家账户,快速回笼交易资金。 立即申请', // 插件描述(支持html)
'author' => 'Devil', // 开发者
'author_url' => 'http://shopxo.net/', // 开发者主页
];
// 配置信息
$element = [
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'appid',
'placeholder' => '公众号/服务号AppID',
'title' => '公众号/服务号AppID',
'is_required' => 0,
'message' => '请填写微信分配的AppID',
],
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'mini_appid',
'placeholder' => '小程序ID',
'title' => '小程序ID',
'is_required' => 0,
'message' => '请填写微信分配的小程序ID',
],
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'mch_id',
'placeholder' => '微信支付商户号',
'title' => '微信支付商户号',
'is_required' => 0,
'message' => '请填写微信支付分配的商户号',
],
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'key',
'placeholder' => '密钥',
'title' => '密钥',
'desc' => '微信支付商户平台API配置的密钥',
'is_required' => 0,
'message' => '请填写密钥',
],
[
'element' => 'textarea',
'name' => 'apiclient_cert',
'placeholder' => '证书(apiclient_cert.pem)',
'title' => '证书(apiclient_cert.pem)(退款操作必填项)',
'is_required' => 0,
'rows' => 6,
'message' => '请填写证书(apiclient_cert.pem)',
],
[
'element' => 'textarea',
'name' => 'apiclient_key',
'placeholder' => '证书密钥(apiclient_key.pem)',
'title' => '证书密钥(apiclient_key.pem)(退款操作必填项)',
'is_required' => 0,
'rows' => 6,
'message' => '请填写证书密钥(apiclient_key.pem)',
],
[
'element' => 'select',
'title' => '异步通知协议',
'message' => '请选择协议类型',
'name' => 'agreement',
'is_multiple' => 0,
'element_data' => [
['value'=>1, 'name'=>'默认当前协议'],
['value'=>2, 'name'=>'强制https转http协议'],
],
],
];
return [
'base' => $base,
'element' => $element,
];
}
/**
* 支付入口
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
* @param [array] $params [输入参数]
*/
public function Pay($params = [])
{
// 参数
if(empty($params))
{
return DataReturn('参数不能为空', -1);
}
// 配置信息
if(empty($this->config))
{
return DataReturn('支付缺少配置', -1);
}
// 平台
$client_type = ApplicationClientType();
// 微信中打开
if($client_type == 'h5' && IsWeixinEnv())
{
exit(header('location:'.PluginsHomeUrl('weixinwebauthorization', 'pay', 'index', input())));
}
// 获取支付参数
$ret = $this->GetPayParams($params);
if($ret['code'] != 0)
{
return $ret;
}
// QQ小程序使用微信支付
if($client_type == 'qq')
{
// 获取QQ access_token
$qq_appid = MyC('common_app_mini_qq_appid');
$qq_appsecret = MyC('common_app_mini_qq_appsecret');
$access_token = (new \base\QQ($qq_appid, $qq_appsecret))->GetAccessToken();
if($access_token === false)
{
return DataReturn('QQ凭证AccessToken获取失败', -1);
}
// QQ小程序代理下单地址
$request_url = 'https://api.q.qq.com/wxpay/unifiedorder?appid='.$qq_appid.'&access_token='.$access_token.'&real_notify_url='.urlencode($this->GetNotifyUrl($params));
} else {
$request_url = 'https://api.mch.weixin.qq.com/pay/unifiedorder';
}
// 请求接口处理
$result = $this->XmlToArray($this->HttpRequest($request_url, $this->ArrayToXml($ret['data'])));
if(!empty($result['return_code']) && $result['return_code'] == 'SUCCESS' && !empty($result['prepay_id']))
{
return $this->PayHandleReturn($ret['data'], $result, $params);
}
$msg = is_string($result) ? $result : (empty($result['return_msg']) ? '支付接口异常' : $result['return_msg']);
if(!empty($result['err_code_des']))
{
$msg .= '-'.$result['err_code_des'];
}
return DataReturn($msg, -1);
}
/**
* 支付返回处理
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-08
* @desc description
* @param [array] $pay_params [支付参数]
* @param [array] $data [支付返回数据]
* @param [array] $params [输入参数]
*/
private function PayHandleReturn($pay_params = [], $data = [], $params = [])
{
$redirect_url = empty($params['redirect_url']) ? __MY_URL__ : $params['redirect_url'];
$result = DataReturn('支付接口异常', -1);
switch($pay_params['trade_type'])
{
// web支付
case 'NATIVE' :
if(empty($params['ajax_url']))
{
return DataReturn('支付状态校验地址不能为空', -50);
}
$pay_params = [
'url' => urlencode(base64_encode($data['code_url'])),
'order_no' => $params['order_no'],
'name' => urlencode('微信支付'),
'msg' => urlencode('打开微信APP扫一扫进行支付'),
'ajax_url' => urlencode(base64_encode($params['ajax_url'])),
];
$url = MyUrl('index/pay/qrcode', $pay_params);
$result = DataReturn('success', 0, $url);
break;
// h5支付
case 'MWEB' :
if(!empty($params['order_id']))
{
$data['mweb_url'] .= '&redirect_url='.$redirect_url;
}
$result = DataReturn('success', 0, $data['mweb_url']);
break;
// 微信中/小程序支付
case 'JSAPI' :
$pay_data = array(
'appId' => $pay_params['appid'],
'package' => 'prepay_id='.$data['prepay_id'],
'nonceStr' => md5(time().rand()),
'signType' => $pay_params['sign_type'],
'timeStamp' => (string) time(),
);
$pay_data['paySign'] = $this->GetSign($pay_data);
// 微信中
if(ApplicationClientType() == 'h5' && IsWeixinEnv())
{
$this->PayHtml($pay_data, $redirect_url);
} else {
$result = DataReturn('success', 0, $pay_data);
}
break;
// APP支付
case 'APP' :
$pay_data = array(
'appid' => $this->pay_params['appid'],
'partnerid' => $this->pay_params['mch_id'],
'prepayid' => $data['prepay_id'],
'package' => 'Sign=WXPay',
'noncestr' => md5(time().rand()),
'timestamp' => (string) time(),
);
$pay_data['sign'] = $this->GetSign($pay_data);
$result = DataReturn('success', 0, $pay_data);
break;
}
return $result;
}
/**
* 支付代码
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @datetime 2019-05-25T00:07:52+0800
* @param [array] $pay_data [支付信息]
* @param [string] $redirect_url [支付结束后跳转url]
*/
private function PayHtml($pay_data, $redirect_url)
{
// 支付代码
exit('
微信安全支付
');
}
/**
* 获取支付参数
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-07
* @desc description
* @param [array] $params [输入参数]
*/
private function GetPayParams($params = [])
{
$trade_type = empty($params['trade_type']) ? $this->GetTradeType() : $params['trade_type'];
if(empty($trade_type))
{
return DataReturn('支付类型不匹配', -1);
}
// 平台
$client_type = ApplicationClientType();
// openid
if($client_type == 'weixin')
{
$openid = isset($params['user']['weixin_openid']) ? $params['user']['weixin_openid'] : '';
} else {
$openid = isset($params['user']['weixin_web_openid']) ? $params['user']['weixin_web_openid'] : '';
}
// appid
$appid = ($client_type == 'weixin') ? $this->config['mini_appid'] : $this->config['appid'];
// 异步地址处理
$notify_url = ($client_type == 'qq') ? 'https://api.q.qq.com/wxpay/notify' : $this->GetNotifyUrl($params);
// 请求参数
$data = [
'appid' => $appid,
'mch_id' => $this->config['mch_id'],
'body' => $params['site_name'].'-'.$params['name'],
'nonce_str' => md5(time().$params['order_no']),
'notify_url' => $notify_url,
'openid' => ($trade_type == 'JSAPI') ? $openid : '',
'out_trade_no' => $params['order_no'],
'spbill_create_ip' => GetClientIP(),
'total_fee' => (int) (($params['total_price']*1000)/10),
'trade_type' => $trade_type,
'attach' => empty($params['attach']) ? $params['site_name'].'-'.$params['name'] : $params['attach'],
'sign_type' => 'MD5',
];
$data['sign'] = $this->GetSign($data);
return DataReturn('success', 0, $data);
}
/**
* 获取异步通知地址
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2020-09-19
* @desc description
* @param [array] $params [输入参数]
*/
private function GetNotifyUrl($params)
{
return (__MY_HTTP__ == 'https' && isset($this->config['agreement']) && $this->config['agreement'] == 1) ? 'http'.mb_substr($params['notify_url'], 5, null, 'utf-8') : $params['notify_url'];
}
/**
* 获取支付交易类型
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-08
* @desc description
*/
private function GetTradeType()
{
// 平台
$client_type = ApplicationClientType();
// 平台类型定义
$type_all = [
'pc' => 'NATIVE',
'weixin' => 'JSAPI',
'h5' => 'MWEB',
'toutiao' => 'MWEB',
'qq' => 'MWEB',
'app' => 'APP',
'ios' => 'APP',
'android' => 'APP',
];
// 微信中打开
if($client_type == 'h5' && IsWeixinEnv())
{
$type_all['pc'] = $type_all['weixin'];
}
return isset($type_all[$client_type]) ? $type_all[$client_type] : '';
}
/**
* 支付回调处理
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
* @param [array] $params [输入参数]
*/
public function Respond($params = [])
{
$result = empty($GLOBALS['HTTP_RAW_POST_DATA']) ? $this->XmlToArray(file_get_contents('php://input')) : $this->XmlToArray($GLOBALS['HTTP_RAW_POST_DATA']);
if(isset($result['result_code']) && $result['result_code'] == 'SUCCESS' && $result['sign'] == $this->GetSign($result))
{
return DataReturn('支付成功', 0, $this->ReturnData($result));
}
return DataReturn('处理异常错误', -100);
}
/**
* [ReturnData 返回数据统一格式]
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @datetime 2018-10-06T16:54:24+0800
* @param [array] $data [返回数据]
*/
private function ReturnData($data)
{
// 返回数据固定基础参数
$data['trade_no'] = $data['transaction_id']; // 支付平台 - 订单号
$data['buyer_user'] = $data['openid']; // 支付平台 - 用户
$data['out_trade_no'] = $data['out_trade_no']; // 本系统发起支付的 - 订单号
$data['subject'] = $data['attach']; // 本系统发起支付的 - 商品名称
$data['pay_price'] = $data['total_fee']/100; // 本系统发起支付的 - 总价
return $data;
}
/**
* 退款处理
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-05-28
* @desc description
* @param [array] $params [输入参数]
*/
public function Refund($params = [])
{
// 参数
$p = [
[
'checked_type' => 'empty',
'key_name' => 'order_no',
'error_msg' => '订单号不能为空',
],
[
'checked_type' => 'empty',
'key_name' => 'trade_no',
'error_msg' => '交易平台订单号不能为空',
],
[
'checked_type' => 'empty',
'key_name' => 'pay_price',
'error_msg' => '支付金额不能为空',
],
[
'checked_type' => 'empty',
'key_name' => 'refund_price',
'error_msg' => '退款金额不能为空',
],
];
$ret = ParamsChecked($params, $p);
if($ret !== true)
{
return DataReturn($ret, -1);
}
// 证书是否配置
if(empty($this->config['apiclient_cert']) || empty($this->config['apiclient_key']))
{
return DataReturn('证书未配置', -1);
}
// 退款原因
$refund_reason = empty($params['refund_reason']) ? $params['order_no'].'订单退款'.$params['refund_price'].'元' : $params['refund_reason'];
// appid,默认使用公众号appid
$appid = (!isset($params['client_type']) || in_array($params['client_type'], ['pc', 'h5'])) ? $this->config['appid'] : $this->config['mini_appid'];
// 请求参数
$data = [
'appid' => $appid,
'mch_id' => $this->config['mch_id'],
'nonce_str' => md5(time().rand().$params['order_no']),
'sign_type' => 'MD5',
'transaction_id' => $params['trade_no'],
'out_refund_no' => $params['order_no'].GetNumberCode(6),
'total_fee' => (int) (($params['pay_price']*1000)/10),
'refund_fee' => (int) (($params['refund_price']*1000)/10),
'refund_desc' => $refund_reason,
];
$data['sign'] = $this->GetSign($data);
// 请求接口处理
$result = $this->XmlToArray($this->HttpRequest('https://api.mch.weixin.qq.com/secapi/pay/refund', $this->ArrayToXml($data), true));
if(isset($result['result_code']) && $result['result_code'] == 'SUCCESS' && isset($result['return_code']) && $result['return_code'] == 'SUCCESS')
{
// 统一返回格式
$data = [
'out_trade_no' => isset($result['out_trade_no']) ? $result['out_trade_no'] : '',
'trade_no' => isset($result['transaction_id']) ? $result['transaction_id'] : (isset($result['err_code_des']) ? $result['err_code_des'] : ''),
'buyer_user' => isset($result['refund_id']) ? $result['refund_id'] : '',
'refund_price' => isset($result['refund_fee']) ? $result['refund_fee']/100 : 0.00,
'return_params' => $result,
];
return DataReturn('退款成功', 0, $data);
}
$msg = is_string($result) ? $result : (empty($result['err_code_des']) ? '退款接口异常' : $result['err_code_des']);
if(!empty($result['return_msg']))
{
$msg .= '-'.$result['return_msg'];
}
return DataReturn($msg, -1);
}
/**
* 签名生成
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-07
* @desc description
* @param [array] $params [输入参数]
*/
private function GetSign($params = [])
{
ksort($params);
$sign = '';
foreach($params as $k=>$v)
{
if($k != 'sign' && $v != '' && $v != null)
{
$sign .= "$k=$v&";
}
}
return strtoupper(md5($sign.'key='.$this->config['key']));
}
/**
* 数组转xml
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-07
* @desc description
* @param [array] $data [数组]
*/
private function ArrayToXml($data)
{
$xml = '';
foreach($data as $k=>$v)
{
$xml .= '<'.$k.'>'.$v.''.$k.'>';
}
$xml .= '';
return $xml;
}
/**
* xml转数组
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-07
* @desc description
* @param [string] $xml [xm数据]
*/
private function XmlToArray($xml)
{
if(!$this->XmlParser($xml))
{
return is_string($xml) ? $xml : '接口返回数据有误';
}
return json_decode(json_encode(simplexml_load_string($xml, 'SimpleXMLElement', LIBXML_NOCDATA)), true);
}
/**
* 判断字符串是否为xml格式
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-01-07
* @desc description
* @param [string] $string [字符串]
*/
function XmlParser($string)
{
$xml_parser = xml_parser_create();
if(!xml_parse($xml_parser, $string, true))
{
xml_parser_free($xml_parser);
return false;
} else {
return (json_decode(json_encode(simplexml_load_string($string)),true));
}
}
/**
* [HttpRequest 网络请求]
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @datetime 2017-09-25T09:10:46+0800
* @param [string] $url [请求url]
* @param [array] $data [发送数据]
* @param [boolean] $use_cert [是否需要使用证书]
* @param [int] $second [超时]
* @return [mixed] [请求返回数据]
*/
private function HttpRequest($url, $data, $use_cert = false, $second = 30)
{
$options = array(
CURLOPT_RETURNTRANSFER => true,
CURLOPT_HEADER => false,
CURLOPT_POST => true,
CURLOPT_SSL_VERIFYPEER => false,
CURLOPT_SSL_VERIFYHOST => false,
CURLOPT_POSTFIELDS => $data,
CURLOPT_TIMEOUT => $second,
);
if($use_cert == true)
{
//设置证书
//使用证书:cert 与 key 分别属于两个.pem文件
$apiclient = $this->GetApiclientFile();
$options[CURLOPT_SSLCERTTYPE] = 'PEM';
$options[CURLOPT_SSLCERT] = $apiclient['cert'];
$options[CURLOPT_SSLKEYTYPE] = 'PEM';
$options[CURLOPT_SSLKEY] = $apiclient['key'];
}
$ch = curl_init($url);
curl_setopt_array($ch, $options);
$result = curl_exec($ch);
//返回结果
if($result)
{
curl_close($ch);
return $result;
} else {
$error = curl_errno($ch);
curl_close($ch);
return "curl出错,错误码:$error";
}
}
/**
* 获取证书文件路径
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-05-29
* @desc description
*/
private function GetApiclientFile()
{
// 证书位置
$apiclient_cert_file = ROOT.'runtime'.DS.'temp'.DS.'payment_weixin_pay_apiclient_cert.pem';
$apiclient_key_file = ROOT.'runtime'.DS.'temp'.DS.'payment_weixin_pay_apiclient_key.pem';
// 证书处理
if(stripos($this->config['apiclient_cert'], '-----') === false)
{
$apiclient_cert = "-----BEGIN CERTIFICATE-----\n";
$apiclient_cert .= wordwrap($this->config['apiclient_cert'], 64, "\n", true);
$apiclient_cert .= "\n-----END CERTIFICATE-----";
} else {
$apiclient_cert = $this->config['apiclient_cert'];
}
file_put_contents($apiclient_cert_file, $apiclient_cert);
if(stripos($this->config['apiclient_key'], '-----') === false)
{
$apiclient_key = "-----BEGIN PRIVATE KEY-----\n";
$apiclient_key .= wordwrap($this->config['apiclient_key'], 64, "\n", true);
$apiclient_key .= "\n-----END PRIVATE KEY-----";
} else {
$apiclient_key = $this->config['apiclient_key'];
}
file_put_contents($apiclient_key_file, $apiclient_key);
return ['cert' => $apiclient_cert_file, 'key' => $apiclient_key_file];
}
}
?>