[ 'pay' => 'https://s2.lakala.com/api/v3/labs/trans/preorder', 'refund' => 'https://s2.lakala.com/api/v3/labs/relation/refund', ], 1 => [ 'pay' => 'https://test.wsmsd.cn/sit/api/v3/labs/trans/preorder', 'refund' => 'https://test.wsmsd.cn/sit/api/v3/labs/relation/refund', ], ]; /** * 构造方法 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @date 2018-09-17 * @desc description * @param [array] $params [输入参数（支付配置参数）] */ public function __construct($params = []) { $this->config = $params; } /** * 配置信息 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @date 2018-09-19 * @desc description */ public function Config() { // 基础信息 $base = [ 'name' => '拉卡拉-微信小程序', // 插件名称 'version' => '1.0.0', // 插件版本 'apply_version' => '不限', // 适用系统版本描述 'apply_terminal'=> ['weixin'], // 适用终端 默认全部 ['pc', 'h5', 'ios', 'android', 'alipay', 'weixin', 'baidu', 'toutiao'] 'desc' => '适用v3.0版本，适用微信小程序，即时到帐支付方式，买家的交易资金直接打入卖家拉卡拉账户，快速回笼交易资金。 立即申请', // 插件描述（支持html） 'author' => 'Devil', // 开发者 'author_url' => 'http://shopxo.net/', // 开发者主页 ]; // 配置信息 $element = [ [ 'element' => 'input', 'type' => 'text', 'default' => '', 'name' => 'weixin_mini_appid', 'placeholder' => '小程序APPID', 'title' => '小程序APPID', 'is_required' => 0, 'message' => '请填写微信分配的小程序APPID', ], [ 'element' => 'input', 'type' => 'text', 'default' => '', 'name' => 'appid', 'placeholder' => '接入方唯一编号appid', 'title' => '接入方唯一编号appid', 'is_required' => 0, 'message' => '请填写接入方唯一编号appid', ], [ 'element' => 'input', 'type' => 'text', 'default' => '', 'name' => 'merchant_no', 'placeholder' => '商户号', 'title' => '商户号', 'is_required' => 0, 'message' => '请填写商户号', ], [ 'element' => 'input', 'type' => 'text', 'default' => '', 'name' => 'term_no', 'placeholder' => '终端号', 'title' => '终端号', 'is_required' => 0, 'message' => '请填写终端号', ], [ 'element' => 'input', 'type' => 'text', 'default' => '', 'name' => 'serial_no', 'placeholder' => '证书序列号', 'title' => '证书序列号', 'is_required' => 0, 'message' => '请填写证书序列号', ], [ 'element' => 'textarea', 'name' => 'rsa_public', 'placeholder' => '应用公钥', 'title' => '应用公钥', 'is_required' => 0, 'rows' => 6, 'message' => '请填写应用公钥', ], [ 'element' => 'textarea', 'name' => 'rsa_private', 'placeholder' => '应用私钥', 'title' => '应用私钥', 'is_required' => 0, 'rows' => 6, 'message' => '请填写应用私钥', ], [ 'element' => 'textarea', 'name' => 'out_rsa_public', 'placeholder' => '拉卡拉公钥', 'title' => '拉卡拉公钥', 'is_required' => 0, 'rows' => 6, 'message' => '请填写拉卡拉公钥', ], [ 'element' => 'select', 'title' => '是否测试环境', 'message' => '请选择是否测试环境', 'name' => 'is_dev_env', 'is_multiple' => 0, 'element_data' => [ ['value'=>0, 'name'=>'否'], ['value'=>1, 'name'=>'是'], ], ], ]; return [ 'base' => $base, 'element' => $element, ]; } /** * 支付入口 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @date 2018-09-19 * @desc description * @param [array] $params [输入参数] */ public function Pay($params = []) { // 请求参数 $base_parameter = [ 'merchant_no' => $this->config['merchant_no'], 'term_no' => $this->config['term_no'], 'out_trade_no' => $params['order_no'], 'account_type' => 'WECHAT', 'trans_type' => 71, 'total_amount' => (int) (($params['total_price']*1000)/10), 'subject' => $params['name'], 'notify_url' => $params['notify_url'], ]; // 地理位置信息 $location_info = [ 'request_ip' => GetClientIP(), ]; $base_parameter['location_info'] = $location_info; // 微信需要的信息 $openid_field = (APPLICATION_CLIENT_TYPE == 'weixin') ? 'weixin_openid' : 'weixin_web_openid'; $openid = isset($params['user'][$openid_field]) ? $params['user'][$openid_field] : ''; $appid_field = (APPLICATION_CLIENT_TYPE == 'weixin') ? 'weixin_mini_appid' : 'weixin_public_appid'; $appid = isset($this->config[$appid_field]) ? $this->config[$appid_field] : ''; $acc_busi_fields = [ 'user_id' => $openid, 'sub_appid' => $appid, ]; $base_parameter['acc_busi_fields'] = $acc_busi_fields; // 整体请求参数 $parameter = [ 'req_time' => date('YmdHis'), 'version' => '3.0', 'out_org_code' => $this->config['appid'], 'req_data' => $base_parameter, ]; $body = json_encode($parameter, JSON_UNESCAPED_UNICODE); // 支付请求记录 PayLogService::PayLogRequestRecord($params['order_no'], ['request_params'=>$parameter]); // 生成签名 $authorization = $this->AuthorizationCreated($body); $result = $this->HttpRequest('pay', $body, $authorization); if($result['code'] == 0) { if(isset($result['data']['code']) && $result['data']['code'] == 'BBS00000' && !empty($result['data']['resp_data']) && !empty($result['data']['resp_data']['acc_resp_fields'])) { $res = $result['data']['resp_data']['acc_resp_fields']; $pay_data = [ 'appId' => $res['app_id'], 'package' => $res['package'], 'nonceStr' => $res['nonce_str'], 'signType' => $res['sign_type'], 'timeStamp' => $res['time_stamp'], 'paySign' => $res['pay_sign'], ]; return DataReturn('success', 0, $pay_data); } return DataReturn($result['data']['msg'].'('.$result['data']['code'].')', -1); } return $result; } /** * 退款处理 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @date 2019-05-28 * @desc description * @param [array] $params [输入参数] */ public function Refund($params = []) { // 参数 $p = [ [ 'checked_type' => 'empty', 'key_name' => 'order_no', 'error_msg' => '订单号不能为空', ], [ 'checked_type' => 'empty', 'key_name' => 'trade_no', 'error_msg' => '交易平台订单号不能为空', ], [ 'checked_type' => 'empty', 'key_name' => 'refund_price', 'error_msg' => '退款金额不能为空', ], ]; $ret = ParamsChecked($params, $p); if($ret !== true) { return DataReturn($ret, -1); } // 退款原因 $refund_reason = empty($params['refund_reason']) ? $params['order_no'].'订单退款'.$params['refund_price'].'元' : $params['refund_reason']; // 请求参数 $base_parameter = [ 'merchant_no' => $this->config['merchant_no'], 'term_no' => $this->config['term_no'], 'out_trade_no' => GetNumberCode(10), 'origin_out_trade_no' => $params['order_no'], 'origin_trade_no' => $params['trade_no'], 'refund_amount' => (int) (($params['refund_price']*1000)/10), 'refund_reason' => $refund_reason, ]; // 地理位置信息 $location_info = [ 'request_ip' => GetClientIP(), ]; $base_parameter['location_info'] = $location_info; // 整体请求参数 $parameter = [ 'req_time' => date('YmdHis'), 'version' => '3.0', 'out_org_code' => $this->config['appid'], 'req_data' => $base_parameter, ]; $body = json_encode($parameter, JSON_UNESCAPED_UNICODE); // 生成签名 $authorization = $this->AuthorizationCreated($body); $result = $this->HttpRequest('refund', $body, $authorization); if($result['code'] == 0) { if(isset($result['data']['code']) && $result['data']['code'] == 'BBS00000') { if(!empty($result['data']['resp_data'])) { // 统一返回格式 $res = $result['data']['resp_data']; $data = [ 'out_trade_no' => isset($res['out_trade_no']) ? $res['out_trade_no'] : '', 'trade_no' => isset($res['trade_no']) ? $res['trade_no'] : '', 'buyer_user' => isset($res['log_no']) ? $res['log_no'] : '', 'refund_price' => isset($result['refund_amount']) ? $result['refund_amount']/100 : 0.00, 'return_params' => $result['data'], ]; return DataReturn('退款成功', 0, $data); } } return DataReturn($result['data']['msg'].'('.$result['data']['code'].')', -1); } return $result; } /** * 支付回调处理 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @date 2018-09-19 * @desc description * @param [array] $params [输入参数] */ public function Respond($params = []) { // 签名 if(empty($_SERVER['HTTP_AUTHORIZATION'])) { return DataReturn('授权签名为空', -1); } if(!$this->SignatureVerification($_SERVER['HTTP_AUTHORIZATION'], file_get_contents('php://input'))) { return DataReturn('签名验证失败', -1); } return DataReturn('支付成功', 0, $this->ReturnData($params)); } /** * 返回数据统一格式 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @datetime 2018-10-06T16:54:24+0800 * @param [array] $data [返回数据] */ private function ReturnData($data) { // 返回数据固定基础参数 $data['trade_no'] = $data['trade_no']; // 支付平台 - 订单号 $data['buyer_user'] = empty($data['user_id1']) ? (empty($data['user_id2']) ? '' : $data['user_id2']) : $data['user_id1']; // 支付平台 - 用户 $data['out_trade_no'] = $data['out_trade_no']; // 本系统发起支付的 - 订单号 $data['subject'] = ''; // 本系统发起支付的 - 商品名称 $data['pay_price'] = $data['total_amount']; // 本系统发起支付的 - 总价 return $data; } /** * 网络请求 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @datetime 2017-09-25T09:10:46+0800 * @param [string] $type [请求类型] * @param [array] $data [发送数据] * @param [int] $second [超时] * @return [mixed] [请求返回数据] */ private function HttpRequest($type, $data, $authorization, $second = 30) { $is_dev_env = isset($this->config['is_dev_env']) ? $this->config['is_dev_env'] : 0; $headers = [ 'Authorization: ' . $authorization, 'Accept: application/json', 'Content-Type:application/json', ]; $ch = curl_init(); curl_setopt_array($ch, array( CURLOPT_URL => $this->url[$is_dev_env][$type], CURLOPT_HTTPHEADER => $headers, CURLOPT_POST => true, CURLOPT_SSL_VERIFYPEER => false, CURLOPT_SSL_VERIFYHOST => false, CURLOPT_RETURNTRANSFER => true, CURLOPT_POSTFIELDS => $data, CURLOPT_TIMEOUT => $second, )); $reponse = curl_exec($ch); if(curl_errno($ch)) { return DataReturn(curl_error($ch), -1); } curl_close($ch); return DataReturn('success', 0, json_decode($reponse, true)); } /** * 签名验证 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @date 2022-03-30 * @desc description * @param [string] $authorization [授权参数信息] * @param [string] $body [请求参数] */ public function SignatureVerification($authorization, $body) { $authorization = str_replace($this->schema . " ", "", $authorization); $authorization = str_replace(",","&", $authorization); $authorization = str_replace("\"","", $authorization); $authorization = $this->ConvertUrlQuery($authorization); $authorization['signature'] = base64_decode($authorization['signature']); $sign_str = $authorization['timestamp'] . "\n" . $authorization['nonce_str'] . "\n" . $body . "\n"; if(stripos($this->config['out_rsa_public'], '-----') === false) { $res = "-----BEGIN CERTIFICATE-----\n"; $res .= wordwrap($this->config['out_rsa_public'], 64, "\n", true); $res .= "\n-----END CERTIFICATE-----"; } else { $res = $this->config['out_rsa_public']; } $key = openssl_get_publickey($res); $flag = openssl_verify($sign_str, $authorization['signature'], $key, OPENSSL_ALGO_SHA256); unset($key); return ($flag == 1); } /** * 签名生成 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @date 2022-03-30 * @desc description * @param [string] $body [请求参数] */ public function AuthorizationCreated($body) { $nonce_str = GetNumberCode(12); $timestamp = time(); $sign_str = $this->config['appid'] . "\n" . $this->config['serial_no'] . "\n" . $timestamp . "\n" . $nonce_str . "\n" . $body . "\n"; if(stripos($this->config['rsa_private'], '-----') === false) { $res = "-----BEGIN CERTIFICATE-----\n"; $res .= wordwrap($this->config['rsa_private'], 64, "\n", true); $res .= "\n-----END CERTIFICATE-----"; } else { $res = $this->config['rsa_private']; } $key = openssl_get_privatekey($res); openssl_sign($sign_str, $signature, $key, OPENSSL_ALGO_SHA256); unset($key); return $this->schema.' appid="' . $this->config['appid'] . '", serial_no="' . $this->config['serial_no'] . '", timestamp="' . $timestamp . '", nonce_str="' . $nonce_str . '", signature="' . base64_encode($signature) . '"'; } /** * 签名参数转数组 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @date 2022-03-30 * @desc description * @param [string] $query [请求参数] */ private function ConvertUrlQuery($query) { $params = explode('&', $query); $result = []; foreach($params as $param) { $item = explode('=', $param); $result[$item[0]] = $item[1]; } if($result['signature']) { $result['signature'] = substr($query, strrpos($query, 'signature=') + 10); } return $result; } /** * 自定义成功返回内容 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @date 2020-07-01 * @desc description */ public function SuccessReturn() { return '{"code":"SUCCESS","message":"接收成功"}'; } /** * 自定义失败返回内容 * @author Devil * @blog http://gong.gg/ * @version 1.0.0 * @date 2020-07-01 * @desc description */ public function ErrorReturn() { return '{"code":"ERROR","message":"接收失败"}'; } } ?>