Writing a small program and found that WeChat payment has v3 version, I thought about taking a new payment, but found that it was poisonous, record the process
First place the order in a unified manner
//統(tǒng)一下單
public?function?wechartAddOrder($name,$ordernumber,$money,$openid){
????????$url?=?"https://api.mch.weixin.qq.com/v3/pay/transactions/jsapi";
????????$urlarr?=?parse_url($url);
????????$appid?=?config('config.appId');//appID
????????$mchid?=?config('config.mchid');//商戶ID
????????$xlid?=?config('config.apiXL');//API序列號
????????$data?=?array();
????????$randstr?=?getRanStr(16,false);//隨機字符串長度不超過32
????????$time?=?time();
????????$data['appid']?=?$appid;
????????$data['mchid']?=?$mchid;
????????$data['description']?=?$name;//商品描述
????????$data['out_trade_no']?=?$ordernumber;//訂單編號
????????$data['notify_url']?=?"https://www.xffly.cn/api/admin/order/wechartCallback";//回調接口
//??????$data['amount']['total']?=?$money;//金額
????????$data['amount']['total']?=?1;
????????$data['payer']['openid']?=?$openid;//用戶openID
????????$data?=?json_encode($data);?
????????$key?=?$this->getSign($data,$urlarr['path'],$randstr,$time);//簽名
????????$token?=?sprintf('mchid="%s",serial_no="%s",nonce_str="%s",timestamp="%d",signature="%s"',$mchid,$xlid,$randstr,$time,$key);//頭部信息
????????$header??=?array(
????????????'Content-Type:'.'application/json;?charset=UTF-8',
????????????'Accept:application/json',
????????????'User-Agent:*/*',
????????????'Authorization:?WECHATPAY2-SHA256-RSA2048?'.$token
????????);??
????????$ret?=?curl_post_https($url,$data,$header);
????????return?$ret;
????}
To calculate the signature, I have done it many times according to the document
//微信支付簽名
public?function?getSign($data=array(),$url,$randstr,$time){
????????$str?=?"POST"."\n".$url."\n".$time."\n".$randstr."\n".$data."\n";
????????$key?=?file_get_contents('apiclient_key.pem');//在商戶平臺下載的秘鑰
????????$str?=?getSha256WithRSA($str,$key);
????????return?$str;
????}
Get the prepay_id through the unified ordering interface
Use its wx.requestPayment interface to activate the payment in the mini program. It has no content, so I won’t post the code. , write according to the document
In which a signature is required to initiate payment, similarly
//調起支付的簽名
public?function?getWechartSign($post){
????????$data?=?array();
????????$data['timeStamp']?=?$post['timeStamp'];
????????$data['nonceStr']?=?$post['str'];
????????$data['package']?=?$post['package'];
????????$str?=?config('config.appId')."\n".$data['timeStamp']."\n".$data['nonceStr']."\n".$data['package']."\n";
????????$key?=?file_get_contents('apiclient_key.pem');
????????$str?=?getSha256WithRSA($str,$key);
????????return?$str;
????}
The focus is the callback of successful payment, which is simply poisonous
The json information returned, json_decode parsing becomes empty , it can be parsed after copying it, maybe it has BOM information, but it is not easy to use. Use htmlspecialchars_decode to escape it. The debugging tool can be successful, but the real WeChat payment still doesn't work. In the end, there is no way to save it. In the log, you can fetch it yourself and you can use it.
//微信回調寫入日志文件并返回
????public?function?writeWechartLog($post){
????????if(!is_dir("upload/log")){
???????????mkdir("upload/log",0777,true);
????????}
????????$log?=?fopen("upload/log/wechart.txt",?"a+");
????????if(is_array($post)){
????????????$post?=?json_encode($post);
????????}
????????fwrite($log,?$post."\n");
????????fclose($log);
????????$read?=?fopen("upload/log/wechart.txt",?"r");
????????fseek($read,?-1,?SEEK_END);
????????$s?=?'';
????????while?(($c?=?fgetc($read))?!==?false)?{
????????????if?($c?==?"\n"?&&?$s)?break;
????????????$s?=?$c?.?$s;
????????????fseek($read,?-2,?SEEK_CUR);
????????}
????????fclose($read);
????????return?$s;//取剛剛存的最后一條回調信息
????}
In the callback information, there is something encrypted and you need to decrypt it. The data passed in is the data you fetched from the log
sodium_crypto_aead_aes256gcm_decrypt This decryption method requires the PHP extension sodium
//微信回調解密
????public?function?wechartDecrypt($str)?{
????????$str?=?htmlspecialchars_decode($str,ENT_COMPAT);
????????$post?=?json_decode($str,true);
????????$key?=?config("config.apiv3Key");//商戶平臺設置的api?v3?密碼
????????$text?=?base64_decode($post['resource']['ciphertext']);
????????$str?=?sodium_crypto_aead_aes256gcm_decrypt($text,$post['resource']['associated_data'],$post['resource']['nonce'],$key);
????????return?json_decode($str,true);
????}
Then the business processing after getting the callback information
Friends who read this article again, if you know why the json returned by the WeChat callback The information cannot be used directly, please tell me, thank you, I haven’t figured it out after a day of research, so I can only deal with it like this first...
The above is the detailed content of [Record] Use of PHP WeChat applet WeChat payment v3. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undress AI Tool
Undress images for free
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
How to combine two php arrays unique values?
Jul 02, 2025 pm 05:18 PM
To merge two PHP arrays and keep unique values, there are two main methods. 1. For index arrays or only deduplication, use array_merge and array_unique combinations: first merge array_merge($array1,$array2) and then use array_unique() to deduplicate them to finally get a new array containing all unique values; 2. For associative arrays and want to retain key-value pairs in the first array, use the operator: $result=$array1 $array2, which will ensure that the keys in the first array will not be overwritten by the second array. These two methods are applicable to different scenarios, depending on whether the key name is retained or only the focus is on
How to use php exit function?
Jul 03, 2025 am 02:15 AM
exit() is a function in PHP that is used to terminate script execution immediately. Common uses include: 1. Terminate the script in advance when an exception is detected, such as the file does not exist or verification fails; 2. Output intermediate results during debugging and stop execution; 3. Call exit() after redirecting in conjunction with header() to prevent subsequent code execution; In addition, exit() can accept string parameters as output content or integers as status code, and its alias is die().
Applying Semantic Structure with article, section, and aside in HTML
Jul 05, 2025 am 02:03 AM
The rational use of semantic tags in HTML can improve page structure clarity, accessibility and SEO effects. 1. Used for independent content blocks, such as blog posts or comments, it must be self-contained; 2. Used for classification related content, usually including titles, and is suitable for different modules of the page; 3. Used for auxiliary information related to the main content but not core, such as sidebar recommendations or author profiles. In actual development, labels should be combined and other, avoid excessive nesting, keep the structure simple, and verify the rationality of the structure through developer tools.
How to create an array in php?
Jul 02, 2025 pm 05:01 PM
There are two ways to create an array in PHP: use the array() function or use brackets []. 1. Using the array() function is a traditional way, with good compatibility. Define index arrays such as $fruits=array("apple","banana","orange"), and associative arrays such as $user=array("name"=>"John","age"=>25); 2. Using [] is a simpler way to support since PHP5.4, such as $color
The requested operation requires elevation Windows
Jul 04, 2025 am 02:58 AM
When you encounter the prompt "This operation requires escalation of permissions", it means that you need administrator permissions to continue. Solutions include: 1. Right-click the "Run as Administrator" program or set the shortcut to always run as an administrator; 2. Check whether the current account is an administrator account, if not, switch or request administrator assistance; 3. Use administrator permissions to open a command prompt or PowerShell to execute relevant commands; 4. Bypass the restrictions by obtaining file ownership or modifying the registry when necessary, but such operations need to be cautious and fully understand the risks. Confirm permission identity and try the above methods usually solve the problem.
php raw post data php
Jul 02, 2025 pm 04:51 PM
The way to process raw POST data in PHP is to use $rawData=file_get_contents('php://input'), which is suitable for receiving JSON, XML, or other custom format data. 1.php://input is a read-only stream, which is only valid in POST requests; 2. Common problems include server configuration or middleware reading input streams, which makes it impossible to obtain data; 3. Application scenarios include receiving front-end fetch requests, third-party service callbacks, and building RESTfulAPIs; 4. The difference from $_POST is that $_POST automatically parses standard form data, while the original data is suitable for non-standard formats and allows manual parsing; 5. Ordinary HTM
How to handle File Uploads securely in PHP?
Jul 08, 2025 am 02:37 AM
To safely handle PHP file uploads, you need to verify the source and type, control the file name and path, set server restrictions, and process media files twice. 1. Verify the upload source to prevent CSRF through token and detect the real MIME type through finfo_file using whitelist control; 2. Rename the file to a random string and determine the extension to store it in a non-Web directory according to the detection type; 3. PHP configuration limits the upload size and temporary directory Nginx/Apache prohibits access to the upload directory; 4. The GD library resaves the pictures to clear potential malicious data.
How Do You Pass Variables by Value vs. by Reference in PHP?
Jul 08, 2025 am 02:42 AM
InPHP,variablesarepassedbyvaluebydefault,meaningfunctionsorassignmentsreceiveacopyofthedata,whilepassingbyreferenceallowsmodificationstoaffecttheoriginalvariable.1.Whenpassingbyvalue,changestothecopydonotimpacttheoriginal,asshownwhenassigning$b=$aorp
