微信支付提供了一个支付测试页面,微信支付正式使用需要测通支付、发货通知接口 、告警接口、维权接口。告警接口、维权接口非常简单。支付界面调通也相对简单,主要是发货通知接口稍微复杂一点。调通发货通知接口需要注意以下几点:
(1) 微信支付文档中提到发货通知接口的PostData,这个其实不是一个form里的一项,其实 PostData的提法有点误导,理解为json串就可以了。
(2)以下的写法是错误的:
<form name="form2" target="_blank" method="post">
<input type="hidden" name="appId" value=""/>
<input type="hidden" name="openId" value=""/>
<input type="hidden" name="transid" value=""/>
<input type="hidden" name="out_trade_no" value=""/>
<input type="hidden" name="deliver_timestamp" value=""/>
<input type="hidden" name="deliver_status" value=""/>
<input type="hidden" name="deliver_msg" value=""/>
<input type="hidden" name="sign_method" value=""/>
<input type="hidden" name="app_signature" value=""/>
</form>
也不要写成:
<input type="hidden" name="PostData" value=""/>
其实在支付成功的回调方法中,只需要写一行代码:
jQuery.post(url,tmpData); //其中url: "https://api.weixin.qq.com/pay/delivernotify?access_token=生成的token" ,tmpData是一个json串。
tmpData的构成:
var tmpData = "{";
tmpData += ‘"appid":"<%=appId%>",‘;
tmpData += ‘"openid":"oN6N9tzhHOMg6qA6DySr4IgkhdI8",‘;
tmpData += ‘"transid":"<%=transid%>",‘;
tmpData += ‘"out_trade_no":"‘+orderNo+‘",‘;
tmpData += ‘"deliver_timestamp":"‘+curTime+‘",‘;
tmpData += ‘"deliver_status":"1",‘;
tmpData += ‘"deliver_msg":"ok",‘;
tmpData += ‘"app_signature":"‘+sign2+‘",‘;//
tmpData += ‘"sign_method":"sha1"‘;
tmpData += "}";
transid和 orderNo 及curTime可自己在页面中生成测试数据,这里主要提到签名,签名的函数:
function getSign2(appId,appKey,openId,transId,outTradeNo,deliver_timestamp)
{
var keyvaluestring = "appid="+appId+"&appkey="+appKey+"&deliver_msg=ok"+"&deliver_status=1"+"&deliver_timestamp="
+deliver_timestamp+"&openid="+openId+"&out_trade_no="+outTradeNo+"&transid="+transId;
var sign2 = CryptoJS.SHA1(keyvaluestring).toString();
return sign2;
}
完整的JSP:
<%@ page contentType="text/html;charset=utf-8" %>
<%@ page import="com.openjweb.weixin.pojo.*"%>
<%@ page import="com.openjweb.weixin.util.*"%>
<%@ page import="org.openjweb.core.service.*"%>
<%@ page import="com.openjweb.weixin.entity.*"%>
<%@ page import="net.sf.json.*"%>
<%
//下面是openjweb平台中封装的,用户可自行设置appId和appSecret,对于access_token如果不好获取,可在 url中直接输入获取token的连接,获取到json数据后,将token值填到本jsp的tokenId变量,有2小时的可用时间
IDBSupportService service = (IDBSupportService)ServiceLocator.getBean("IDBSupportService3");
WeixinServiceAccount acctEnt = (WeixinServiceAccount)service.findSingleValueByHql("from WeixinServiceAccount where accountId=‘iartwall‘");
String appId = acctEnt.getAppId();
String appSecret = acctEnt.getAppSecret();
String transid = String.valueOf(System.currentTimeMillis()); //模拟一个交易号
String access_token_url = "https://api.weixin.qq.com/cgi-bin/token?grant_type=client_credential&appid=APPID&secret=APPSECRET";
AccessToken accessToken = null;
String tokenId = "";
String requestUrl = access_token_url.replace("APPID", appId).replace("APPSECRET", appSecret);
JSONObject jsonObject = com.openjweb.weixin.util.WeixinUtil.httpRequest(requestUrl, "GET", null);
// 如果请求成功
if (null != jsonObject)
{
try {
accessToken = new AccessToken();
accessToken.setToken(jsonObject.getString("access_token"));
accessToken.setExpiresIn(jsonObject.getInt("expires_in"));
} catch (JSONException e)
{
accessToken = null;
}
}
if(accessToken!=null)
{
tokenId = accessToken.getToken();
}
System.out.println("http://api.weixin.qq.com/cgi-bin/pay/delivernotify?access_token="+tokenId);
%>
<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta HTTP-EQUIV="pragma" CONTENT="no-cache">
<meta HTTP-EQUIV="Cache-Control" CONTENT="no-cache, must-revalidate">
<meta HTTP-EQUIV="expires" CONTENT="Wed, 26 Feb 1997 08:21:57 GMT">
<meta HTTP-EQUIV="expires" CONTENT="0">
<meta id="viewport" name="viewport" content="width=device-width; initial-scale=1.0; maximum-scale=1; user-scalable=no;" />
<title>公众号支付测试网页</title>
<script language="javascript" src="http://res.mail.qq.com/mmr/static/lib/js/jquery.js"></script>
<script language="javascript" src="http://res.mail.qq.com/mmr/static/lib/js/lazyloadv3.js"></script>
<!--下面这2个非常坑爹的js一定要注释掉,导致网页打开巨慢,google的js导致网页极慢,把js下载到本地执行-->
<!--<script src="http://crypto-js.googlecode.com/svn/tags/3.1.2/build/rollups/md5.js"></script>
<script src="http://crypto-js.googlecode.com/svn/tags/3.1.2/build/rollups/sha1.js"></script>-->
<script src="/portal/apps/wd/vip/js/md5.js"></script>
<script src="/portal/apps/wd/vip/js/sha1.js"></script>
<script Language="javascript">
var curSign="";
var curTime="";
var orderNo="";
//辅助函数
function Trim(str,is_global)
{
var result;
result = str.replace(/(^\s+)|(\s+$)/g,"");
if(is_global.toLowerCase()=="g") result = result.replace(/\s/g,"");
return result;
}
function clearBr(key)
{
key = Trim(key,"g");
key = key.replace(/<\/?.+?>/g,"");
key = key.replace(/[\r\n]/g, "");
return key;
}
//获取随机数
function getANumber()
{
var date = new Date();
var times1970 = date.getTime();
var times = date.getDate() + "" + date.getHours() + "" + date.getMinutes() + "" + date.getSeconds();
var encrypt = times * times1970;
if(arguments.length == 1)
{
orderNo = arguments[0] + encrypt;
return orderNo;
}else{
orderNo = encrypt;
return orderNo;
}
}
//以下是package组包过程:
var oldPackageString;//记住package,方便最后进行整体签名时取用
function getPartnerId()
{
return document.form1.partnerId.value;
}
function getPartnerKey()
{
return "8934e7d15453e97507ef794cf7b0519d";////申请时获取的商户partner key
}
function getPackage()
{
var banktype = "WX";
var body = document.form1.body.value;//商品名称信息,这里由测试网页填入。
var fee_type = "1";//费用类型,这里1为默认的人民币
var input_charset = "UTF-8";//改为UTF-8,现在可以用UTF-8
var notify_url = "http://www.iartwall.com/portal/apps/b2c/weixinPay.jsp";//这个地址是支付成功后调用的,业务系统需要在这里截获返回的参数,写到自己的业务系统中以记录此订单是否成功付款,及付款银行信息等很多内容,详见支付接口文档。
var out_trade_no = ""+getANumber();//订单号,商户需要保证该字段对于本商户的唯一性
var partner = getPartnerId();//测试商户号
var spbill_create_ip = "<%=request.getRemoteHost()%>";//"127.0.0.1";//用户浏览器的ip,这个需要在前端获取。这里使用127.0.0.1测试值
var total_fee = document.form1.totalFee.value;//总金额。
var partnerKey = getPartnerKey();//这个值和以上其他值不一样是:签名需要它,而最后组成的传输字符串不能含有它。这个key是需要商户好好保存的。
//首先第一步:对原串进行签名,注意这里不要对任何字段进行编码。这里是将参数按照key=value进行字典排序后组成下面的字符串,在这个字符串最后拼接上key=XXXX。由于这里的字段固定,因此只需要按照这个顺序进行排序即可。
var signString = "bank_type="+banktype+"&body="+body+"&fee_type="+fee_type+"&input_charset="+input_charset+"¬ify_url="+notify_url+"&out_trade_no="+out_trade_no+"&partner="+partner+"&spbill_create_ip="+spbill_create_ip+"&total_fee="+total_fee+"&key="+partnerKey;
var md5SignValue = ("" + CryptoJS.MD5(signString)).toUpperCase();
//然后第二步,对每个参数进行url转码,如果您的程序是用js,那么需要使用encodeURIComponent函数进行编码。
banktype = encodeURIComponent(banktype);
body=encodeURIComponent(body);
fee_type=encodeURIComponent(fee_type);
input_charset = encodeURIComponent(input_charset);
notify_url = encodeURIComponent(notify_url);
out_trade_no = encodeURIComponent(out_trade_no);
partner = encodeURIComponent(partner);
spbill_create_ip = encodeURIComponent(spbill_create_ip);
total_fee = encodeURIComponent(total_fee);
//然后进行最后一步,这里按照key=value除了sign外进行字典序排序后组成下列的字符串,最后再串接sign=value
var completeString = "bank_type="+banktype+"&body="+body+"&fee_type="+fee_type+"&input_charset="+input_charset+"¬ify_url="+notify_url+"&out_trade_no="+out_trade_no+"&partner="+partner+"&spbill_create_ip="+spbill_create_ip+"&total_fee="+total_fee;
completeString = completeString + "&sign="+md5SignValue;
oldPackageString = completeString;//记住package,方便最后进行整体签名时取用
return completeString;
}
//下面是app进行签名的操作:
var oldTimeStamp ;//记住timestamp,避免签名时的timestamp与传入的timestamp时不一致
var oldNonceStr ; //记住nonceStr,避免签名时的nonceStr与传入的nonceStr不一致
function getAppId()
{
// alert(‘getAppId start......‘)
return document.form1.appId.value;
}
function getAppKey()
{
return "2WU。。。。。。。JObvBqfs";//很长很长,支付专用签名串PaySignKey,如果没有,跟微信客服索取(得走完微信支付审批流程)。
}
function getTimeStamp()
{
var timestamp=new Date().getTime();
var timestampstring = timestamp.toString();//一定要转换字符串
oldTimeStamp = timestampstring;
curTime = timestampstring;
return timestampstring;
}
function getNonceStr()
{
var $chars = ‘ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789‘;
var maxPos = $chars.length;
var noceStr = "";
for (i = 0; i < 32; i++) {
noceStr += $chars.charAt(Math.floor(Math.random() * maxPos));
}
oldNonceStr = noceStr;
//alert("rand:"+noceStr);
return noceStr;
}
function getSignType()
{
return "SHA1";
}
function getSign()
{
var app_id = getAppId().toString();
var app_key = getAppKey().toString();
var nonce_str = oldNonceStr;
var package_string = oldPackageString;
var time_stamp = oldTimeStamp;
//第一步,对所有需要传入的参数加上appkey作一次key=value字典序的排序
var keyvaluestring = "appid="+app_id+"&appkey="+app_key+"&noncestr="+nonce_str+"&package="+package_string+"×tamp="+time_stamp;
sign = CryptoJS.SHA1(keyvaluestring).toString();
//alert(sign);
curSign = sign;
return sign;
}
function getSign2(appId,appKey,openId,transId,outTradeNo,deliver_timestamp)
{
//var app_id = getAppId().toString();
//var app_key = getAppKey().toString();
//var nonce_str = oldNonceStr;
//var package_string = oldPackageString;
//var time_stamp = oldTimeStamp;
//第一步,对所有需要传入的参数加上appkey作一次key=value字典序的排序
var keyvaluestring = "appid="+appId+"&appkey="+appKey+"&deliver_msg=ok"+"&deliver_status=1"+"&deliver_timestamp="+deliver_timestamp+"&openid="+openId+"&out_trade_no="+outTradeNo+"&transid="+transId;
var sign2 = CryptoJS.SHA1(keyvaluestring).toString();
return sign2;
}
</script>
<style>
body { margin:0;padding:0;background:#eae9e6; }
body,p,table,td,th { font-size:14px;font-family:helvetica,Arial,Tahoma; }
h1 { font-family:Baskerville,HelveticaNeue-Bold,helvetica,Arial,Tahoma; }
a { text-decoration:none;color:#385487;}
.container { }
.title { }
#content {padding:30px 20px 20px;color:#111;box-shadow:0 1px 4px #ccc; background:#f7f2ed; }
.seeAlso { padding:15px 20px 30px; }
.headpic div { margin:20px 0 0;}
.headpic img { display:block;}
.title h1 { font-size:22px;font-weight:bold;padding:0;margin:0;line-height:1.2;color:#1f1f1f; }
.title p { color:#aaa;font-size:12px;margin:5px 0 0;padding:0;font-weight:bold;}
.pic { margin:20px 0; }
.articlecontent img { display:block;clear:both;box-shadow:0px 1px 3px #999; margin:5px auto;}
.articlecontent p { text-indent: 2em; font-family:Georgia,helvetica,Arial,Tahoma;line-height:1.4; font-size:16px; margin:20px 0; }
.seeAlso h3 { font-size:16px;color:#a5a5a5;}
.seeAlso ul { margin:0;padding:0; }
.seeAlso li { font-size:16px;list-style-type:none;border-top:1px solid #ccc;padding:2px 0;}
.seeAlso li a { border-bottom:none;display:block;line-height:1.1; padding:13px 0; }
.clr{ clear:both;height:1px;overflow:hidden;}
.fontSize1 .title h1 { font-size:20px; }
.fontSize1 .articlecontent p { font-size:14px; }
.fontSize1 .weibo .nickname,.fontSize1 .weibo .comment { font-size:11px; }
.fontSize1 .moreOperator { font-size:14px; }
.fontSize2 .title h1 { font-size:22px; }
.fontSize2 .articlecontent p { font-size:16px; }
.fontSize2 .weibo .nickname,.fontSize2 .weibo .comment { font-size:13px; }
.fontSize2 .moreOperator { font-size:16px; }
.fontSize3 .title h1 { font-size:24px; }
.fontSize3 .articlecontent p { font-size:18px; }
.fontSize3 .weibo .nickname,.fontSize3 .weibo .comment { font-size:15px; }
.fontSize3 .moreOperator { font-size:18px; }
.fontSize4 .title h1 { font-size:26px; }
.fontSize4 .articlecontent p { font-size:20px; }
.fontSize4 .weibo .nickname,.fontSize4 .weibo .comment { font-size:16px; }
.fontSize4 .moreOperator { font-size:20px; }
.jumptoorg { display:block;margin:16px 0 16px; }
.jumptoorg a { }
.moreOperator a { color:#385487; }
.moreOperator .share{ border-top:1px solid #ddd; }
.moreOperator .share a{ display:block;border:1px solid #ccc;border-radius:4px;margin:20px 0;border-bottom-style:solid;background:#f8f7f1;color:#000; }
.moreOperator .share a span{ display:block;padding:10px 10px;border-radius:4px;text-align:center;border-top:1px solid #eee;border-bottom:1px solid #eae9e3;font-weight:bold; }
.moreOperator .share a:hover,
.moreOperator .share a:active { background:#efedea; }
@media only screen and (-webkit-min-device-pixel-ratio: 2) {
}
</style>
<script language="javascript">
function auto_remove(img){
div=img.parentNode.parentNode;div.parentNode.removeChild(div);
img.onerror="";
return true;
}
function changefont(fontsize){
if(fontsize < 1 || fontsize > 4)return;
$(‘#content‘).removeClass().addClass(‘fontSize‘ + fontsize);
}
// 当微信内置浏览器完成内部初始化后会触发WeixinJSBridgeReady事件。
document.addEventListener(‘WeixinJSBridgeReady‘, function onBridgeReady() {
//公众号支付
jQuery(‘a#getBrandWCPayRequest‘).click(function(e)
{
WeixinJSBridge.invoke(‘getBrandWCPayRequest‘,{
"appId" : getAppId(), //公众号名称,由商户传入
"timeStamp" : getTimeStamp(), //时间戳
"nonceStr" : getNonceStr(), //随机串
"package" : getPackage(),//扩展包
"signType" : getSignType(), //微信签名方式:1.sha1
"paySign" : getSign() //微信签名
},function(res)
{
if(res.err_msg == "get_brand_wcpay_request:ok" )
{
//下面的发货接口需要post
var sign2 = getSign2("<%=appId%>","2W 。。。。。。Bqfs","oN6N9tzhHOMg6qA6DySr4IgkhdI8","<%=transid%>",orderNo,curTime);
var tmpData = "{";
tmpData += ‘"appid":"<%=appId%>",‘;
tmpData += ‘"openid":"oN6N9tzhHOMg6qA6DySr4IgkhdI8",‘;
tmpData += ‘"transid":"<%=transid%>",‘;
tmpData += ‘"out_trade_no":"‘+orderNo+‘",‘;
tmpData += ‘"deliver_timestamp":"‘+curTime+‘",‘;
tmpData += ‘"deliver_status":"1",‘;
tmpData += ‘"deliver_msg":"ok",‘;
tmpData += ‘"app_signature":"‘+sign2+‘",‘;//
tmpData += ‘"sign_method":"sha1"‘;
tmpData += "}";
var url = "https://api.weixin.qq.com/pay/delivernotify?access_token=<%=tokenId%>";
jQuery.post(url,tmpData);
}
// 使用以上方式判断前端返回,微信团队郑重提示:res.err_msg将在用户支付成功后返回ok,但并不保证它绝对可靠。
//因此微信团队建议,当收到ok返回时,向商户后台询问是否收到交易成功的通知,若收到通知,前端展示交易成功的界面;若此时未收到通知,商户后台主动调用查询订单接口,查询订单的当前状态,并反馈给前端展示相应的界面。
});
});
WeixinJSBridge.log(‘yo~ ready.‘);
}, false)
if(jQuery){
jQuery(function(){
var width = jQuery(‘body‘).width() * 0.87;
jQuery(‘img‘).error(function(){
var self = jQuery(this);
var org = self.attr(‘data-original1‘);
self.attr("src", org);
self.error(function(){
auto_remove(this);
});
});
jQuery(‘img‘).each(function(){
var self = jQuery(this);
var w = self.css(‘width‘);
var h = self.css(‘height‘);
w = w.replace(‘px‘, ‘‘);
h = h.replace(‘px‘, ‘‘);
if(w <= width){
return;
}
var new_w = width;
var new_h = Math.round(h * width / w);
self.css({‘width‘ : new_w + ‘px‘, ‘height‘ : new_h + ‘px‘});
self.parents(‘div.pic‘).css({‘width‘ : new_w + ‘px‘, ‘height‘ : new_h + ‘px‘});
});
});
}
</script>
</head>
<body>
<%
String proName = new String("手表".getBytes("GB2312"));
%>
<form name="form1" target="_blank">
<table border="1">
<TR><th>公众号ID</th> <th><INPUT value="<%=appId%>" name="appId" id="1"></th>
<tr><th>商户ID</th><th><INPUT value="1219345101" name="partnerId" id="2"></th>
<TR><th>总金额</th><th><INPUT value=1 name="totalFee" id="3"></th>
<TR><th>商品名</th><th><INPUT value="手表" name="body" id="4"></th>
</table>
</form>
<div class="WCPay">
<a id="getBrandWCPayRequest" href="javascript:void(0);"><h1 class="title">提交</h1></a>
</div>
<!-- not same appid with appid of access_token; reason: accesstoken不是同一个appid获取的,或者post数据非json格式-->
</body>
</html>
调试发货接口出现 not same appid with appid of access_token; 问题,一般不是 appId和access_token不匹配的问题,因为大部分开发人员是可以获得正确的access_token,主要原因是(1)可能用form表单带各种参数提交(2)非json格式 (3)把PostData理解为一个form里的隐藏域并赋值json数据
按照本例的代码,可解决发货通知接口问题。当然微信账号的各种商户id、key要配置正确。
下面是微信发货通知接口调通后的界面(在微信服务号后台查看):
如何调通微信支付及微信发货通知接口(Js API),布布扣,bubuko.com