基础配置

1 year ago · 05c2a5aa15
4 changed files with 298 additions and 18 deletions
--- a/dating-agency-mall-server/src/main/java/com/qniao/dam/application/service/paymentchannelorder/PaymentChannelOrderApplicationService.java
+++ b/dating-agency-mall-server/src/main/java/com/qniao/dam/application/service/paymentchannelorder/PaymentChannelOrderApplicationService.java
@ -7,9 +7,7 @@ import com.qniao.dam.domain.aggregate.paymentchannelorder.entity.PaymentChannelO
 import com.qniao.dam.domain.aggregate.paymentorder.entity.PaymentOrder;
 import com.qniao.dam.domain.aggregate.paymentorder.repository.PaymentOrderRepository;
 import com.qniao.dam.query.useropenid.UserOpenIdQueryService;
-import com.qniao.dau.domain.aggregate.useropenid.entity.UserOpenId;
 import org.springframework.stereotype.Service;
-import org.springframework.util.Assert;

 import javax.annotation.Resource;
 import java.util.List;
@ -34,6 +32,6 @@ public class PaymentChannelOrderApplicationService {
        paymentChannelOrder.setComment("订单交易");
        paymentChannelOrderAggregate.create(paymentChannelOrder);
        IChannelPayService channelPayService = IChannelPayService.getService(paymentChannelOrder.getPaymentMethod());
-        return channelPayService.handle(paymentChannelOrder, fieldList, appFrom);
+        return channelPayService.prepay(paymentChannelOrder, fieldList, appFrom);
    }
 }
--- a/dating-agency-mall-server/src/main/java/com/qniao/dam/application/service/paymentchannelorder/processor/IChannelPayService.java
+++ b/dating-agency-mall-server/src/main/java/com/qniao/dam/application/service/paymentchannelorder/processor/IChannelPayService.java
@ -4,7 +4,6 @@ import com.qniao.dam.api.command.paymentchannelorder.user.request.ThirdPartyFiel
 import com.qniao.dam.application.service.paymentchannelorder.processor.wechat.WeChatPayProcessor;
 import com.qniao.dam.domain.aggregate.paymentchannelorder.entity.PaymentChannelOrder;
 import com.qniao.dam.domian.aggregate.paymentorder.constant.PaymentMethodEnum;
-import com.qniao.dau.domain.aggregate.useropenid.entity.UserOpenId;
 import com.qniao.framework.exception.BizException;
 import com.qniao.framework.utils.SpringContextUtil;

@ -23,5 +22,5 @@ public abstract class IChannelPayService {
        }
    }

-    public abstract Map<String, String> handle(PaymentChannelOrder paymentChannelOrder, List<ThirdPartyField> fieldList, Long appFrom);
+    public abstract Map<String, String> prepay(PaymentChannelOrder paymentChannelOrder, List<ThirdPartyField> fieldList, Long appFrom);
 }
--- a/dating-agency-mall-server/src/main/java/com/qniao/dam/application/service/paymentchannelorder/processor/wechat/WeChatPayProcessor.java
+++ b/dating-agency-mall-server/src/main/java/com/qniao/dam/application/service/paymentchannelorder/processor/wechat/WeChatPayProcessor.java
@ -1,5 +1,9 @@
 package com.qniao.dam.application.service.paymentchannelorder.processor.wechat;

+import cn.hutool.core.util.ObjectUtil;
+import cn.hutool.json.JSONUtil;
+import com.alibaba.fastjson.JSON;
+import com.alibaba.fastjson.JSONObject;
 import com.github.binarywang.wxpay.bean.request.WxPayUnifiedOrderRequest;
 import com.github.binarywang.wxpay.bean.result.WxPayUnifiedOrderResult;
 import com.github.binarywang.wxpay.config.WxPayConfig;
@ -10,17 +14,17 @@ import com.github.binarywang.wxpay.service.impl.WxPayServiceImpl;
 import com.github.binarywang.wxpay.util.SignUtils;
 import com.qniao.dam.api.command.paymentchannelorder.user.request.ThirdPartyField;
 import com.qniao.dam.application.service.paymentchannelorder.processor.IChannelPayService;
+import com.qniao.dam.application.service.paymentchannelorder.processor.wechat.utils.WXPayV3Util;
 import com.qniao.dam.application.service.paymentchannelorder.processor.wechat.vobj.ChannelPaymentField;
 import com.qniao.dam.application.service.paymentchannelorder.processor.wechat.vobj.WeChatPaymentBasic;
 import com.qniao.dam.domain.aggregate.paymentchannelorder.entity.PaymentChannelOrder;
 import com.qniao.dau.application.UecServerApplicationService;
 import com.qniao.dau.application.request.GetWechatSessionDto;
 import com.qniao.dau.application.response.WeChatAppletUserSessionVo;
-import com.qniao.dau.domain.aggregate.useropenid.entity.UserOpenId;
 import com.qniao.framework.exception.BizException;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.beans.factory.annotation.Value;
-import org.springframework.stereotype.Component;
+import org.springframework.stereotype.Service;

 import javax.annotation.Resource;
 import java.math.BigDecimal;
@ -31,32 +35,79 @@ import java.util.HashMap;
 import java.util.List;
 import java.util.Map;

-@Component
+@Service
@Slf4j
 public class WeChatPayProcessor extends IChannelPayService {

-    @Value("${weixin.mchid}")
-    private String mchId;
    @Value("${weixin.mchkey}")
    private String mchKey;
+    @Value("${weixin.mchid}")
+    private String mchId;
    @Value("${weixin.notifyurl}")
    private String notifyUrl;

    @Resource
    private UecServerApplicationService uecServerApplicationService;
+    @Resource
+    private WXPayV3Util wxPayV3Util;

    @Override
-    public Map<String, String> handle(PaymentChannelOrder paymentChannelOrder,
+    public Map<String, String> prepay(PaymentChannelOrder paymentChannelOrder,
                                      List<ThirdPartyField> fieldList,
                                      Long appFrom) {
        // 获取账号
        String jsCode = ThirdPartyField.findFiledValueByKey(ThirdPartyField.JS_CODE, fieldList);
        GetWechatSessionDto sessionDto = new GetWechatSessionDto(jsCode, appFrom);
        WeChatAppletUserSessionVo sessionVo = uecServerApplicationService.getWechatSession(sessionDto);
-        WxPayConfig wxPayConfig = getWxPayConfig(sessionVo.getPlatformAppId());
-        WxPayUnifiedOrderRequest request = buildUnifiedOrderRequest(paymentChannelOrder, wxPayConfig, sessionVo.getOpenid());
-        WeChatPaymentBasic weChatPaymentBasic = getWeChatPaymentBasic(request, wxPayConfig);
-        return transformToMap(weChatPaymentBasic);
+
+        try {
+            Map<String, Object> reqParams = new HashMap<>();
+            reqParams.put("mchid", mchId);
+            reqParams.put("out_trade_no", paymentChannelOrder.getId().toString());
+            reqParams.put("appid", sessionVo.getPlatformAppId());
+            reqParams.put("description", paymentChannelOrder.getComment());
+            reqParams.put("notify_url", notifyUrl);
+            reqParams.put("amount", new HashMap<String, Object>() {
+                {
+                    put("total", paymentChannelOrder.getAmount().multiply(BigDecimal.valueOf(100)).intValue());
+                    put("currency", "CNY");
+                }
+            });
+            reqParams.put("payer", new HashMap<String, Object>() {
+                {
+                    put("openid", sessionVo.getOpenid());
+                }
+            });
+            JSONObject result = wxPayV3Util.doPostWeiXinV3(WXPayV3Util.api_v3_placeAnOrder_url, JSONUtil.toJsonStr(reqParams));
+            if (ObjectUtil.isNull(result.get("prepay_id"))) {
+                throw new BizException("微信支付下单失败，请检查配置");
+            }
+
+            String prepayId = result.getString("prepay_id");
+            // 获取app拉起支付签名
+            String nonceStr = String.valueOf(System.currentTimeMillis() / 1000);
+            long timestamp = System.currentTimeMillis() / 1000;
+            String sign;
+            try {
+                sign = wxPayV3Util.sign(sessionVo.getPlatformAppId(), timestamp, nonceStr, prepayId);
+            } catch (Exception e) {
+                log.error(" sign fail AppV3PayStrategyImpl {}", e.getMessage(), e);
+                throw new BizException("生成签名错误：" + e.getMessage());
+            }
+            log.info("sign____________________" + sign);
+            Map<String, String> returnMap = new HashMap<>();
+            returnMap.put("appId", sessionVo.getPlatformAppId());
+            returnMap.put("nonceStr", nonceStr);
+            returnMap.put("timeStamp", String.valueOf(timestamp));
+            returnMap.put("packages", "prepay_id=" + prepayId);
+            returnMap.put("signType", "RSA");
+            returnMap.put("paySign", sign);
+            log.info("returnMap________" + returnMap);
+            return returnMap;
+        } catch (Exception e) {
+            log.error("pay fail AppV3PayStrategyImpl {}", e.getMessage(), e);
+            throw new BizException("发起微信预支付失败");
+        }
    }

    public WxPayConfig getWxPayConfig(String appId) {
@ -77,7 +128,8 @@ public class WeChatPayProcessor extends IChannelPayService {
     * @param wxPayConfig
     * @return
     */
-    public WxPayUnifiedOrderRequest buildUnifiedOrderRequest(PaymentChannelOrder paymentChannelOrder, WxPayConfig wxPayConfig, String openId) {
+    public WxPayUnifiedOrderRequest buildUnifiedOrderRequest(PaymentChannelOrder paymentChannelOrder, WxPayConfig
+            wxPayConfig, String openId) {
        // 微信统一下单请求对象
        WxPayUnifiedOrderRequest request = new WxPayUnifiedOrderRequest();
        request.setBody(paymentChannelOrder.getComment());
@ -94,7 +146,8 @@ public class WeChatPayProcessor extends IChannelPayService {
        return request;
    }

-    private WeChatPaymentBasic getWeChatPaymentBasic(WxPayUnifiedOrderRequest wxPayUnifiedOrderRequest, WxPayConfig wxPayConfig) {
+    private WeChatPaymentBasic getWeChatPaymentBasic(WxPayUnifiedOrderRequest wxPayUnifiedOrderRequest, WxPayConfig
+            wxPayConfig) {
        WxPayService wxPayService = new WxPayServiceImpl();
        wxPayService.setConfig(wxPayConfig);
        WxPayUnifiedOrderResult wxPayUnifiedOrderResult = null;
@ -149,7 +202,8 @@ public class WeChatPayProcessor extends IChannelPayService {
        return SignUtils.createSign(payInfo, wxPayConfig.getSignType(), wxPayConfig.getMchKey(), null);
    }

-    private String appSign(String prepayid, String partnerid, String timestamp, String noncestr, String appid, String packageValue, WxPayConfig wxPayConfig) {
+    private String appSign(String prepayid, String partnerid, String timestamp, String noncestr, String
+            appid, String packageValue, WxPayConfig wxPayConfig) {
        Map<String, String> configMap = new HashMap<>();
        configMap.put("prepayid", prepayid);
        configMap.put("partnerid", partnerid);
--- a/dating-agency-mall-server/src/main/java/com/qniao/dam/application/service/paymentchannelorder/processor/wechat/utils/WXPayV3Util.java
+++ b/dating-agency-mall-server/src/main/java/com/qniao/dam/application/service/paymentchannelorder/processor/wechat/utils/WXPayV3Util.java
@ -0,0 +1,229 @@
+package com.qniao.dam.application.service.paymentchannelorder.processor.wechat.utils;
+
+import com.alibaba.fastjson.JSONObject;
+import com.qniao.framework.exception.BizException;
+import com.wechat.pay.contrib.apache.httpclient.WechatPayHttpClientBuilder;
+import com.wechat.pay.contrib.apache.httpclient.auth.PrivateKeySigner;
+import com.wechat.pay.contrib.apache.httpclient.auth.Verifier;
+import com.wechat.pay.contrib.apache.httpclient.auth.WechatPay2Credentials;
+import com.wechat.pay.contrib.apache.httpclient.cert.CertificatesManager;
+import com.wechat.pay.contrib.apache.httpclient.util.PemUtil;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.io.FileUtils;
+import org.apache.http.HttpEntity;
+import org.apache.http.HttpResponse;
+import org.apache.http.client.methods.HttpPost;
+import org.apache.http.entity.StringEntity;
+import org.apache.http.impl.client.CloseableHttpClient;
+import org.apache.http.util.EntityUtils;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Component;
+import org.springframework.util.Base64Utils;
+
+import java.io.*;
+import java.net.URISyntaxException;
+import java.nio.charset.StandardCharsets;
+import java.nio.file.Files;
+import java.nio.file.Paths;
+import java.security.*;
+import java.security.cert.X509Certificate;
+import java.security.spec.InvalidKeySpecException;
+import java.security.spec.PKCS8EncodedKeySpec;
+import java.util.ArrayList;
+import java.util.Base64;
+import java.util.stream.Collectors;
+import java.util.stream.Stream;
+
+@Component
+@Slf4j
+public class WXPayV3Util {
+
+    public static final String api_v3_placeAnOrder_url = "https://api.mch.weixin.qq.com/v3/pay/transactions/jsapi";
+
+    public static final String api_v3_refund_url = "https://api.mch.weixin.qq.com/v3/refund/domestic/refunds";
+
+    private static CertificatesManager certificatesManager;
+
+    private String APPLICATION_JSON = "application/json";
+    // 你的商户私钥
+    private String privateKey;
+    // 你的微信支付平台证书
+    private String certificate;
+
+    private CloseableHttpClient httpClient;
+
+    private Verifier verifier;
+
+    @Value("${weixin.mchid}")
+    private String mchId;
+
+    @Value("${weixin.apiV3Key}")
+    private String v3Key;
+
+    @Value("${weixin.mchSerialNo}")
+    private String mchSerialNo;
+
+    @Value("${weixin.privateKeyPath}")
+    private String privateKeyPath;
+
+    @Value("${weixin.platformCertPath}")
+    private String platformCertPath;
+
+    public void setup() throws Exception {
+        // 获取商户
+        try {
+            InputStream apiClientKey = Files.newInputStream(new File(privateKeyPath).toPath());
+            File appKey = new File("/tmp/apiclient_key_temp.crt");
+            FileUtils.copyInputStreamToFile(apiClientKey, appKey);
+
+            InputStream wechatPayKey = Files.newInputStream(new File(platformCertPath).toPath());
+            File appCert = new File("/tmp/wechatpay_cert_temp.crt");
+            FileUtils.copyInputStreamToFile(wechatPayKey, appCert);
+
+            this.privateKey = WXPayV3Util.getPrivateKeyStr(appKey.getAbsolutePath());
+            this.certificate = WXPayV3Util.getPrivateKeyStr(appCert.getAbsolutePath());
+
+            PrivateKey merchantPrivateKey = PemUtil.loadPrivateKey(privateKey);
+
+            certificatesManager = CertificatesManager.getInstance();
+            // 向证书管理器增加需要自动更新平台证书的商户信息
+            certificatesManager.putMerchant(mchId, new WechatPay2Credentials(mchId,
+                            new PrivateKeySigner(mchSerialNo, merchantPrivateKey)),
+                    v3Key.getBytes(StandardCharsets.UTF_8));
+            // 从证书管理器中获取verifier
+            verifier = certificatesManager.getVerifier(mchId);
+
+            X509Certificate wechatPayCertificate = PemUtil.loadCertificate(
+                    new ByteArrayInputStream(certificate.getBytes(StandardCharsets.UTF_8)));
+
+            ArrayList<X509Certificate> listCertificates = new ArrayList<>();
+            listCertificates.add(wechatPayCertificate);
+
+            WechatPayHttpClientBuilder builder = WechatPayHttpClientBuilder.create()
+                    .withMerchant(mchId, mchSerialNo, merchantPrivateKey)
+                    .withWechatPay(listCertificates);
+            httpClient = builder.build();
+        } catch (IOException e) {
+            log.error("setup IOException " + e.getMessage(), e);
+            throw new BizException("IO异常：" + e.getMessage());
+        } catch (NoSuchAlgorithmException e) {
+            log.error("setup NoSuchAlgorithmException " + e.getMessage(), e);
+            throw new BizException("未找到配置文件：" + e.getMessage());
+        } catch (InvalidKeySpecException e) {
+            log.error("InvalidKeySpecException " + e.getMessage(), e);
+            throw new BizException("key生成异常：" + e.getMessage());
+        }
+    }
+
+
+    /**
+     * api_v3下单
+     *
+     * @param body 请求体JSON字符串
+     * @return
+     * @throws IOException
+     * @throws NoSuchAlgorithmException
+     * @throws InvalidKeySpecException
+     */
+    public JSONObject doPostWeiXinV3(String url, String body) throws Exception {
+        if (httpClient == null) {
+            setup();
+        }
+        HttpPost httpPost = new HttpPost(url);
+        httpPost.addHeader("Content-Type", "application/json;chartset=utf-8");
+        httpPost.addHeader("Accept", "application/json");
+        try {
+            if (body == null) {
+                throw new IllegalArgumentException("data参数不能为空");
+            }
+            StringEntity stringEntity = new StringEntity(body, "utf-8");
+            httpPost.setEntity(stringEntity);
+            // 直接执行execute方法，官方会自动处理签名和验签，并进行证书自动更新
+            HttpResponse httpResponse = httpClient.execute(httpPost);
+            HttpEntity httpEntity = httpResponse.getEntity();
+
+            if (httpResponse.getStatusLine().getStatusCode() == 200) {
+                String jsonResult = EntityUtils.toString(httpEntity);
+                return JSONObject.parseObject(jsonResult);
+            } else {
+                log.error("doPostWeiXinV3 status != 200, " + EntityUtils.toString(httpEntity));
+            }
+        } catch (Exception e) {
+            log.error("doPostWeiXinV3 fail, " + e.getMessage(), e);
+            throw new BizException("微信支付异常：" + e.getMessage());
+        }
+        return null;
+    }
+
+    /**
+     * 获取私钥字符串。
+     *
+     * @param filename 私钥文件路径  (required)
+     * @return 私钥对象
+     */
+    public static String getPrivateKeyStr(String filename) throws IOException, NoSuchAlgorithmException, InvalidKeySpecException {
+        return new String(Files.readAllBytes(Paths.get(filename)), "UTF-8");
+    }
+
+
+    /**
+     * V3  SHA256withRSA 签名.
+     *
+     * @param appId
+     * @param timestamp
+     * @param nonceStr
+     * @param prepayId
+     * @return
+     * @throws SignatureException
+     * @throws NoSuchAlgorithmException
+     * @throws IOException
+     * @throws InvalidKeySpecException
+     * @throws InvalidKeyException
+     * @throws URISyntaxException
+     */
+    public String sign(String appId, long timestamp, String nonceStr, String prepayId) throws SignatureException, NoSuchAlgorithmException, IOException, InvalidKeySpecException, InvalidKeyException, URISyntaxException {
+        String signatureStr = Stream.of(appId, String.valueOf(timestamp), nonceStr, prepayId)
+                .collect(Collectors.joining("\n", "", "\n"));
+        Signature sign = Signature.getInstance("SHA256withRSA");
+        File file = copyTempFileByResourcePath(privateKeyPath);
+        sign.initSign(WXPayV3Util.getPrivateKey(file.getAbsolutePath()));
+        sign.update(signatureStr.getBytes(StandardCharsets.UTF_8));
+        return Base64Utils.encodeToString(sign.sign());
+    }
+
+    /**
+     * 使用流获取resoucre下的文件（解决线上无法获取的问题）
+     *
+     * @param resourcePath 相对于resource目录的路径
+     * @return
+     * @throws IOException
+     */
+    public File copyTempFileByResourcePath(String resourcePath) throws IOException {
+        InputStream inputStream = Files.newInputStream(new File(resourcePath).toPath());
+        File file = new File("/tmp/apiclient_key_temp.crt");
+        FileUtils.copyInputStreamToFile(inputStream, file);
+        return file;
+    }
+
+    /**
+     * 获取私钥。
+     *
+     * @param filename 私钥文件路径  (required)
+     * @return 私钥对象
+     */
+    public static PrivateKey getPrivateKey(String filename) throws IOException {
+        String content = new String(Files.readAllBytes(Paths.get(filename)), "UTF-8");
+        try {
+            String privateKey = content.replace("-----BEGIN PRIVATE KEY-----", "")
+                    .replace("-----END PRIVATE KEY-----", "")
+                    .replaceAll("\\s+", "");
+            KeyFactory kf = KeyFactory.getInstance("RSA");
+            return kf.generatePrivate(
+                    new PKCS8EncodedKeySpec(Base64.getDecoder().decode(privateKey)));
+        } catch (NoSuchAlgorithmException e) {
+            throw new RuntimeException("当前Java环境不支持RSA", e);
+        } catch (InvalidKeySpecException e) {
+            throw new RuntimeException("无效的密钥格式");
+        }
+    }
+}