QQ小程序支付 Java后端
同學折騰QQ小程序的支付折騰了好幾天,沒有完成統一下單,因為我做過微信和支付寶支付,他就讓我幫忙搞
我搞了好兩三個小時,也沒搞出來,最終我覺得問題在商戶key那里,問了幾次甲方,他說key沒問題
我仍然覺得問題很有可能在key,就去直接給他重置了key,然后,就成功完成了支付...
總結,永遠不要相信甲方
QQ小程序支付與微信小程序支付類似,簽名方式完全相同,提交的xml有些不同
QQ小程序統一下單文檔
微信小程序驗簽工具(QQ小程序適用)
首先是配置類,設置為包內訪問權限,其實應該放於properties文件,或者直接配置在xml中,偷了個懶直接寫在了代碼中
public class PayConfigs {
final static String appid="";
final static String mchid="";
final static String key="";
final static String reqAd="https://qpay.qq.com/cgi-bin/pay/qpay_unified_order.cgi";
}
小程序支付需要首先發起一個request到后端並攜帶一些商品信息,后端提交XML然后返回一個prepay_id到前端,小程序提供喚醒支付API調用
qq.request({
url: "請求地址",
data: { /* 數據 */ },
success: function(result) {
if (result.data) {
qq.requestPayment({
package: "prepay_id=" + result.data.prepay_id,
bargainor_id: "", //商戶號
success(res) { },
fail(res) { }
})
}
}
})
發起支付的Java方法,需要用到一個工具類,在文末寫明
public Map<String,String> qqPay() throws Exception{
String mchid = PayConfigs.mchid;
String nonce_str = PayUtil.getRandomStringByLength(16);
String body = "測試";
String out_trade_no = "OTS"+ PayUtil.getRandomStringByLength(12); //商戶訂單號
String fee_type = "CNY";
String total_fee = "100"; //自定義貨幣總額,單位為分
String spbill_create_ip = ""; // 用戶客戶端ip
String trade_type = "JSAPI"; //小程序默認為JSAPI
String notify_url = "http://www.baidu.com"; //回調地址
Map<String, String> packageParams = new HashMap<>();
packageParams.put("mch_id", mchid);
packageParams.put("nonce_str", nonce_str);
packageParams.put("body", body);
packageParams.put("out_trade_no", out_trade_no + ""); //商戶訂單號
packageParams.put("total_fee", total_fee + ""); //支付金額,需要轉成字符串
packageParams.put("spbill_create_ip", spbill_create_ip);
packageParams.put("notify_url", notify_url); //支付成功后的回調地址
packageParams.put("trade_type", trade_type); //支付方式
String result = PayUtil.exec(packageParams,PayConfigs.key,PayConfigs.reqAd);
System.out.println(result);
// 業務邏輯
return PayUtil.xmlToMap(result);
}
當用戶支付成功后騰訊服務器會訪問提交的notify_url即回調地址,並攜帶XML提供訂單號與簽名驗證等
public String acceptPay(HttpServletRequest request) throws Exception{
BufferedReader br = new BufferedReader(new InputStreamReader(request.getInputStream()));
String line;
StringBuilder stringBuilder = new StringBuilder();
while ((line = br.readLine()) != null) {
stringBuilder.append(line);
}
br.close();
String notityXml = stringBuilder.toString();
Map<String,String> acceptParam = PayUtil.xmlToMap(notityXml);
if (acceptParam.get("trade_state").equals("SUCCESS") && PayUtil.verifySign(acceptParam,PayConfigs.key)){
// 注意,在QQ服務器收到Accept之前可能會產生多次回調。需要有處理多次回調的代碼
// 業務邏輯
System.out.println(PayUtil.acceptXML());
}
return PayUtil.acceptXML();
}
依賴以及工具類 文章提及的所有代碼
<dependencies>
<dependency>
<groupId>commons-codec</groupId>
<artifactId>commons-codec</artifactId>
<version>1.6</version>
</dependency>
</dependencies>
package com.utils;
import org.apache.commons.codec.digest.DigestUtils;
import java.io.*;
import java.net.HttpURLConnection;
import java.net.URL;
import java.nio.charset.StandardCharsets;
import java.util.*;
import org.w3c.dom.Node;
import org.w3c.dom.NodeList;
import javax.xml.parsers.DocumentBuilder;
import javax.xml.parsers.DocumentBuilderFactory;
public class PayUtil {
public static String exec(Map<String, String> map, String key, String gateway) {
Map<String, String> sortedMap = sortMapByKey(map);
String sign = getLinkToSign(sortedMap, key);
String xml = mapToXml(sortedMap, sign);
String result = PayUtil.httpRequest(gateway, "POST", xml);
return result;
}
public static String getRandomStringByLength(int length) {
String base = "abcdefghijklmnopqrstuvwxyz0123456789";
Random random = new Random();
StringBuilder stringBuilder = new StringBuilder();
for (int i = 0; i < length; i++) {
int number = random.nextInt(base.length());
stringBuilder.append(base.charAt(number));
}
return stringBuilder.toString();
}
public static Map<String, String> xmlToMap(String strXML) throws Exception {
Map<String, String> data = new HashMap<>();
DocumentBuilderFactory documentBuilderFactory = DocumentBuilderFactory.newInstance();
DocumentBuilder documentBuilder = documentBuilderFactory.newDocumentBuilder();
InputStream stream = new ByteArrayInputStream(strXML.getBytes(StandardCharsets.UTF_8));
org.w3c.dom.Document doc = documentBuilder.parse(stream);
doc.getDocumentElement().normalize();
NodeList nodeList = doc.getDocumentElement().getChildNodes();
for (int idx = 0; idx < nodeList.getLength(); ++idx) {
Node node = nodeList.item(idx);
if (node.getNodeType() == Node.ELEMENT_NODE) {
org.w3c.dom.Element element = (org.w3c.dom.Element) node;
data.put(element.getNodeName(), element.getTextContent());
}
}
return data;
}
public static boolean verifySign(Map<String, String> map, String key){
String sign = map.get("sign");
map.remove("sign");
Map<String, String> sortedMap = sortMapByKey(map);
String xmlSign = getLinkToSign(sortedMap, key);
return xmlSign.equals(sign);
}
public static String acceptXML(){
return "<xml><return_code>SUCCESS</return_code></xml>";
}
private static String sign(String text, String key) {
text = text + "key=" + key;
// System.out.println("Sign Url: " + text);
return DigestUtils.md5Hex(getContentBytes(text)).toUpperCase();
}
private static byte[] getContentBytes(String content) {
return content.getBytes(StandardCharsets.UTF_8);
}
private static String getLinkToSign(Map<String, String> map, String payKey) {
StringBuilder preStr = new StringBuilder();
for (Map.Entry<String, String> m : map.entrySet()) {
String key = m.getKey();
String value = m.getValue();
preStr.append(key).append("=").append(value).append("&");
}
String link = preStr.toString();
return sign(link, payKey);
}
private static String httpRequest(String requestUrl, String requestMethod, String outputStr) {
StringBuilder stringBuilder = new StringBuilder();
try {
URL url = new URL(requestUrl);
HttpURLConnection conn = (HttpURLConnection) url.openConnection();
conn.setRequestMethod(requestMethod);
conn.setDoOutput(true);
conn.setDoInput(true);
conn.connect();
if (null != outputStr) {
OutputStream os = conn.getOutputStream();
os.write(outputStr.getBytes(StandardCharsets.UTF_8));
os.close();
}
InputStream is = conn.getInputStream();
InputStreamReader isr = new InputStreamReader(is, StandardCharsets.UTF_8);
BufferedReader br = new BufferedReader(isr);
String line;
while ((line = br.readLine()) != null) {
stringBuilder.append(line);
}
br.close();
} catch (Exception e) {
e.printStackTrace();
}
return stringBuilder.toString();
}
private static Map<String, String> sortMapByKey(Map<String, String> map) {
List<String> keys = new ArrayList<>(map.keySet());
Collections.sort(keys);
// HashMap底層是數組加鏈表,會把key的值放在通過哈希算法散列后的對象的數組坐標上,
// 所以取得的值是按哈希表來取的,所以和放入的順序無關
// 保持有序需要用LinkedHashMap
Map<String, String> m = new LinkedHashMap<>();
for (String key : keys) {
m.put(key, map.get(key));
}
map.clear();
return m;
}
private static String mapToXml(Map<String, String> map, String sign) {
StringBuilder stringBuilder = new StringBuilder().append("<xml>");
for (Map.Entry<String, String> m : map.entrySet()) {
stringBuilder.append("<").append(m.getKey()).append(">")
.append(m.getValue()).append("</").append(m.getKey()).append(">");
}
stringBuilder.append("<sign>").append(sign).append("</sign>").append("</xml>");
return stringBuilder.toString();
}
}