本事例代码基于Laravel框架。
1.首先你的微信商户号需要开通微信H5支付
2.你的支付网站的域名需要在微信商户号后台配置
3.回调地址需要在外网中能打开并且能接受post请求,可以用postman检查一下。
事例代码:
支付类:
<?php namespace App\Http\Controllers\Wechat; /** * 微信支付服务器端下单 * 微信APP支付文档地址: https://pay.weixin.qq.com/wiki/doc/api/app.php?chapter=8_6 * 使用示例 * 构造方法参数 * \'appid\' => //填写微信分配的公众账号ID * \'mch_id\' => //填写微信支付分配的商户号 * \'notify_url\'=> //填写微信支付结果回调地址 * \'key\' => //填写微信商户支付密钥 * ); * 统一下单方法 * $WechatAppPay = new wechatAppPay($options); * $params[\'body\'] = \'商品描述\'; //商品描述 * $params[\'out_trade_no\'] = \'1217752501201407\'; //自定义的订单号,不能重复 * $params[\'total_fee\'] = \'100\'; //订单金额 只能为整数 单位为分 * $params[\'trade_type\'] = \'APP\'; //交易类型 JSAPI | NATIVE |APP | WAP * $wechatAppPay->unifiedOrder( $params ); */ class WxH5PayController { //接口API URL前缀 const API_URL_PREFIX = \'https://api.mch.weixin.qq.com\'; //下单地址URL const UNIFIEDORDER_URL = "/pay/unifiedorder"; //查询订单URL const ORDERQUERY_URL = "/pay/orderquery"; //关闭订单URL const CLOSEORDER_URL = "/pay/closeorder"; //公众账号ID private $appid=\'\'; //商户号 private $mch_id=\'\'; //支付密钥 private $key=\'\'; //随机字符串 private $nonce_str; //签名 private $sign; //商品描述 private $body; //商户订单号 private $out_trade_no; //支付总金额 private $total_fee; //终端IP private $spbill_create_ip; //支付结果回调通知地址 private $notify_url; //交易类型 private $trade_type; //证书路径 private $SSLCERT_PATH; private $SSLKEY_PATH; //所有参数 private $params = array(); public function __construct($notifyUrl) { //回调地址 $this->notify_url = $notifyUrl; } /** * 下单方法 * @param $params 下单参数 有色半导体 */ public function unifiedOrder($params) { $this->body = $params[\'body\']; $this->out_trade_no = $params[\'out_trade_no\']; $this->total_fee = $params[\'total_fee\']; $this->trade_type = $params[\'trade_type\']; $this->scene_info = $params[\'scene_info\']; $this->nonce_str = $this->genRandomString(); $this->spbill_create_ip = $_SERVER[\'REMOTE_ADDR\']; $this->params[\'appid\'] = $this->appid; $this->params[\'mch_id\'] = $this->mch_id; $this->params[\'nonce_str\'] = $this->nonce_str; $this->params[\'body\'] = $this->body; $this->params[\'out_trade_no\'] = $this->out_trade_no; $this->params[\'total_fee\'] = $this->total_fee; $this->params[\'spbill_create_ip\'] = $this->spbill_create_ip; $this->params[\'notify_url\'] = $this->notify_url; $this->params[\'trade_type\'] = $this->trade_type; $this->params[\'scene_info\'] = $this->scene_info; //获取签名数据 $this->sign = $this->MakeSign($this->params); $this->params[\'sign\'] = $this->sign; $xml = $this->data_to_xml($this->params); $response = $this->postXmlCurl($xml, self::API_URL_PREFIX . self::UNIFIEDORDER_URL); if (!$response) { return false; } $result = $this->xml_to_data($response); if (!empty($result[\'result_code\']) && !empty($result[\'err_code\'])) { $result[\'err_msg\'] = $this->error_code($result[\'err_code\']); } return $result; } /** * 查询订单信息 * @param $out_trade_no 订单号 * @return array */ public function orderQuery($out_trade_no) { $this->params[\'appid\'] = $this->appid; $this->params[\'mch_id\'] = $this->mch_id; $this->params[\'nonce_str\'] = $this->genRandomString(); $this->params[\'out_trade_no\'] = $out_trade_no; //获取签名数据 $this->sign = $this->MakeSign($this->params); $this->params[\'sign\'] = $this->sign; $xml = $this->data_to_xml($this->params); $response = $this->postXmlCurl($xml, self::API_URL_PREFIX . self::ORDERQUERY_URL); if (!$response) { return false; } $result = $this->xml_to_data($response); if (!empty($result[\'result_code\']) && !empty($result[\'err_code\'])) { $result[\'err_msg\'] = $this->error_code($result[\'err_code\']); } return $result; } /** * 关闭订单 * @param $out_trade_no 订单号 * @return array */ public function closeOrder($out_trade_no) { $this->params[\'appid\'] = $this->appid; $this->params[\'mch_id\'] = $this->mch_id; $this->params[\'nonce_str\'] = $this->genRandomString(); $this->params[\'out_trade_no\'] = $out_trade_no; //获取签名数据 $this->sign = $this->MakeSign($this->params); $this->params[\'sign\'] = $this->sign; $xml = $this->data_to_xml($this->params); $response = $this->postXmlCurl($xml, self::API_URL_PREFIX . self::CLOSEORDER_URL); if (!$response) { return false; } $result = $this->xml_to_data($response); return $result; } /** * * 获取支付结果通知数据 * return array */ public function getNotifyData() { //获取通知的数据 $xml = $GLOBALS[\'HTTP_RAW_POST_DATA\']; //echo 123;die; $data = array(); if (empty($xml)) { return false; } $data = $this->xml_to_data($xml); if (!empty($data[\'return_code\'])) { if ($data[\'return_code\'] == \'FAIL\') { return false; } } return $data; } /** * 接收通知成功后应答输出XML数据 * @param string $xml */ public function replyNotify() { $data[\'return_code\'] = \'SUCCESS\'; $data[\'return_msg\'] = \'OK\'; $xml = $this->data_to_xml($data); echo $xml; die(); } /** * 生成APP端支付参数 * @param $prepayid 预支付id */ public function getAppPayParams($prepayid) { $data[\'appid\'] = $this->appid; $data[\'partnerid\'] = $this->mch_id; $data[\'prepayid\'] = $prepayid; $data[\'package\'] = \'Sign=WXPay\'; $data[\'noncestr\'] = $this->genRandomString(); $data[\'timestamp\'] = time(); $data[\'sign\'] = $this->MakeSign($data); return $data; } /** * 生成签名 * @return 签名 */ public function MakeSign($params) { //签名步骤一:按字典序排序数组参数 ksort($params); $string = $this->ToUrlParams($params); //签名步骤二:在string后加入KEY $string = $string . "&key=" . $this->key; //var_dump($string);exit; //签名步骤三:MD5加密 $string = md5($string); //签名步骤四:所有字符转为大写 $result = strtoupper($string); return $result; } /** * 将参数拼接为url: key=value&key=value * @param $params * @return string */ public function ToUrlParams($params) { $string = \'\'; if (!empty($params)) { $array = array(); foreach ($params as $key => $value) { $array[] = $key . \'=\' . $value; } $string = implode("&", $array); } return $string; } /** * 输出xml字符 3,9,1 * @param $params 参数名称 * return string 返回组装的xml **/ public function data_to_xml($params) { if (!is_array($params) || count($params) <= 0) { return false; } header("Content-type:text/xml;charset=utf-8"); $xml = "<xml>"; foreach ($params as $key => $val) { //var_dump($xml);exit; if (is_numeric($val)) { $xml .= "<" . $key . ">" . $val . "</" . $key . ">"; } else { $xml .= "<" . $key . "><![CDATA[" . $val . "]]></" . $key . ">"; //var_dump($xml);exit; } } $xml .= "</xml>"; return $xml; } /** * 将xml转为array * @param string $xml * return array */ public function xml_to_data($xml) { if (!$xml) { return false; } //将XML转为array //禁止引用外部xml实体 libxml_disable_entity_loader(true); $data = json_decode(json_encode(simplexml_load_string($xml, \'SimpleXMLElement\', LIBXML_NOCDATA)), true); return $data; } /** * 获取毫秒级别的时间戳 * */ private static function getMillisecond() { //获取毫秒的时间戳 $time = explode(" ", microtime()); $time = $time[1] . ($time[0] * 1000); $time2 = explode(".", $time); $time = $time2[0]; return $time; } /** * 产生一个指定长度的随机字符串,并返回给用户 * @param type $len 产生字符串的长度 * @return string 随机字符串 */ private function genRandomString($len = 32) { $chars = array( "a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v", "w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G", "H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R", "S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2", "3", "4", "5", "6", "7", "8", "9" ); $charsLen = count($chars) - 1; // 将数组打乱 shuffle($chars); $output = ""; for ($i = 0; $i < $len; $i++) { $output .= $chars[mt_rand(0, $charsLen)]; } return $output; } /** * 以post方式提交xml到对应的接口url * * @param string $xml 需要post的xml数据 * @param string $url url * @param bool $useCert 是否需要证书,默认不需要 * @param int $second url执行超时时间,默认30s * @throws WxPayException */ private function postXmlCurl($xml, $url, $useCert = false, $second = 30) { $ch = curl_init(); //设置超时 curl_setopt($ch, CURLOPT_TIMEOUT, $second); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2); //设置header curl_setopt($ch, CURLOPT_HEADER, FALSE); //要求结果为字符串且输出到屏幕上 curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE); if ($useCert == true) { //设置证书 //使用证书:cert 与 key 分别属于两个.pem文件 curl_setopt($ch, CURLOPT_SSLCERTTYPE, \'PEM\'); //curl_setopt($ch,CURLOPT_SSLCERT, WxPayConfig::SSLCERT_PATH); curl_setopt($ch, CURLOPT_SSLKEYTYPE, \'PEM\'); //curl_setopt($ch,CURLOPT_SSLKEY, WxPayConfig::SSLKEY_PATH); } //post提交方式 curl_setopt($ch, CURLOPT_POST, TRUE); curl_setopt($ch, CURLOPT_POSTFIELDS, $xml); //运行curl $data = curl_exec($ch); //返回结果 if ($data) { curl_close($ch); return $data; } else { $error = curl_errno($ch); curl_close($ch); return false; } } /** * 错误代码 * @param $code 服务器输出的错误代码 * return string */ public function error_code($code) { $errList = array( \'NOAUTH\' => \'商户未开通此接口权限\', \'NOTENOUGH\' => \'用户帐号余额不足\', \'ORDERNOTEXIST\' => \'订单号不存在\', \'ORDERPAID\' => \'商户订单已支付,无需重复操作\', \'ORDERCLOSED\' => \'当前订单已关闭,无法支付\', \'SYSTEMERROR\' => \'系统错误!系统超时\', \'APPID_NOT_EXIST\' => \'参数中缺少APPID\', \'MCHID_NOT_EXIST\' => \'参数中缺少MCHID\', \'APPID_MCHID_NOT_MATCH\' => \'appid和mch_id不匹配\', \'LACK_PARAMS\' => \'缺少必要的请求参数\', \'OUT_TRADE_NO_USED\' => \'同一笔交易不能多次提交\', \'SIGNERROR\' => \'参数签名结果不正确\', \'XML_FORMAT_ERROR\' => \'XML格式错误\', \'REQUIRE_POST_METHOD\' => \'未使用post传递参数 \', \'POST_DATA_EMPTY\' => \'post数据不能为空\', \'NOT_UTF8\' => \'未使用指定编码格式\', ); if (array_key_exists($code, $errList)) { return $errList[$code]; } } }
调用支付:
<?php namespace App\Http\Controllers\Wechat; use App\Http\Controllers\Controller; use App\Models\WechatOrder; use Illuminate\Support\Facades\Log; use Illuminate\Http\Request; class PayController extends Controller { //H5支付回调地址 const HOST=\'https://huidiao.zhifu.com\'; const H5_NOTIFY_URL=\'/wechat/h5_notify\'; //生成订单号 public function makeOrder(){ ini_set(\'date.timezone\', \'Asia/Shanghai\'); return date(\'YmdHi\').substr(implode(NULL, array_map(\'ord\', str_split(substr(uniqid(), 7, 13), 1))), 0, 4); } //判断手机还是电脑 function isMobile(){ $useragent=isset($_SERVER[\'HTTP_USER_AGENT\']) ? $_SERVER[\'HTTP_USER_AGENT\'] : \'\'; $useragent_commentsblock=preg_match(\'|\(.*?\)|\',$useragent,$matches)>0?$matches[0]:\'\'; function CheckSubstrs($substrs,$text){ foreach($substrs as $substr) if(false!==strpos($text,$substr)){ return true; } return false; } $mobile_os_list=array(\'Google Wireless Transcoder\',\'Windows CE\',\'WindowsCE\',\'Symbian\',\'Android\',\'armv6l\',\'armv5\',\'Mobile\',\'CentOS\',\'mowser\',\'AvantGo\',\'Opera Mobi\',\'J2ME/MIDP\',\'Smartphone\',\'Go.Web\',\'Palm\',\'iPAQ\'); $mobile_token_list=array(\'Profile/MIDP\',\'Configuration/CLDC-\',\'160×160\',\'176×220\',\'240×240\',\'240×320\',\'320×240\',\'UP.Browser\',\'UP.Link\',\'SymbianOS\',\'PalmOS\',\'PocketPC\',\'SonyEricsson\',\'Nokia\',\'BlackBerry\',\'Vodafone\',\'BenQ\',\'Novarra-Vision\',\'Iris\',\'NetFront\',\'HTC_\',\'Xda_\',\'SAMSUNG-SGH\',\'Wapaka\',\'DoCoMo\',\'iPhone\',\'iPod\'); $found_mobile=CheckSubstrs($mobile_os_list,$useragent_commentsblock) || CheckSubstrs($mobile_token_list,$useragent); if ($found_mobile){ return true; }else{ return false; } } //支付 public function pay(Request $request){ //跨域 header(\'Access-Control-Allow-Origin:*\'); header("Access-Control-Allow-Methods:POST, GET, OPTIONS, DELETE"); header("Access-Control-Allow-Headers:x-requested-with,Authorization,token,webCode,source, content-type"); //这里要加上content-type header("Access-Control-Allow-Credentials:true"); //判断来源 if (!$this->isMobile()){ return returnError(\'请用手机浏览器打开!\'); } $referrer = $request->headers->get(\'referer\'); $notifyUrl = self::HOST.self::H5_NOTIFY_URL; $wechatAppPay = new WxH5PayController($notifyUrl); $params[\'body\'] = \'微信H5支付测试\'; //var_dump($referrer);exit; //订单号 $params[\'out_trade_no\'] = $this->makeOrder();//订单号 $params[\'total_fee\'] = \'1\';//订单金额 只能为整数 单位为分 $params[\'trade_type\'] = \'MWEB\'; // 交易类型 MWEB $host = $referrer;//来源地址 $name=\'微信支付测试订单\'; $params[\'scene_info\'] = \'{"h5_info": {"type":"Wap","wap_url": \' . $host . \',"wap_name":"\'.$name.\'"}}\'; $result = $wechatAppPay->unifiedOrder($params); Log::info($result); if ($result[\'return_code\'] !=\'SUCCESS\'){ return returnError($result[\'return_msg\']); } //创建订单信息 try{ $data=[ \'out_trade_no\'=>$params[\'out_trade_no\'], \'total_fee\'=>$params[\'total_fee\'], \'scene_info\'=>$params[\'scene_info\'], \'type\'=>0, \'code\'=>$result[\'return_code\'], \'msg\'=>isset($result[\'return_msg\']) ? $result[\'return_msg\'] : \'\', \'create_time\'=>time(), ]; WechatOrder::insert($data); }catch(\Exception $e){ return returnError(\'订单入库失败\'); } $url = $result[\'mweb_url\'];//可以在MWEB_URL后拼接上redirect_url参数,来指定回调页面 return returnSuceess(\'success\',$url); } //支付回调 注意回调要能被post方式访问 public function h5NotifyUrl(){ $strPost = isset($GLOBALS["HTTP_RAW_POST_DATA"]) ? $GLOBALS["HTTP_RAW_POST_DATA"] : file_get_contents(\'php://input\'); //Log::info($strPost); if (!empty($strPost)){ libxml_disable_entity_loader(true); $postObj = simplexml_load_string($strPost, \'SimpleXMLElement\', LIBXML_NOCDATA); $postObj = json_encode($postObj); $postObj = json_decode($postObj, true); Log::info($postObj); $out_trade_no = isset($postObj["out_trade_no"]) ? trim($postObj["out_trade_no"]) : \'\'; $openid = isset($postObj["openid"]) ? trim($postObj["openid"]) : \'\'; $is_subscribe = isset($postObj["is_subscribe"]) ? trim($postObj["is_subscribe"]) : 0; $time_end = isset($postObj["time_end"]) ? trim($postObj["time_end"]) : 0; $transaction_id = isset($postObj["transaction_id"]) ? trim($postObj["transaction_id"]) : \'\'; if ($postObj["result_code"] == \'SUCCESS\' && $postObj["return_code"] == \'SUCCESS\' && $out_trade_no) { //支付完成之后更新数据库状态 try{ WechatOrder::where([\'out_trade_no\'=>$out_trade_no])->update([ \'type\'=>1, \'update_time\'=>time(), \'openid\'=>$openid, \'is_subscribe\'=>$is_subscribe, \'time_end\'=>$time_end, \'transaction_id\'=>$transaction_id, ]); echo "<xml><return_code><![CDATA[SUCCESS]]></return_code><return_msg><![CDATA[OK]]></return_msg></xml>"; }catch(\Exception $e){ Log::info(\'订单入库失败\'.$e->getMessage()); } }else{ Log::info(\'回调失败\'); } }else{ Log::info(\'没有回调数据!\'); } }
}
前端调用:
<!DOCTYPE html> <html lang="zh-cn"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="referrer" content="origin" /> </head> <div> <button onclick="zhifu()">点击支付</button> </div> <script src="https://cdn.bootcdn.net/ajax/libs/jquery/3.5.1/jquery.js"></script> <script> function zhifu() { $.ajax({ type: "get", url: \'https://api.zhifu.com/wechat/pay\', success:function(data){ if(data.code==1){ console.log(data); window.location.replace(data.data + \'&redirect_url=\' + encodeURI(\'http://www.baidu.com\')); }else{ alert(JSON.parse(JSON.stringify(data.msg))); } }, error: function() { alert("网络延时造成通信失败,请稍后再试;"); return false; }, dataType:"json" }); } </script> </html>