相比支付宝的接口,微信的接口与实现都很简单其实,官方文档都有很详细的讲解。
退款接口
官方文档地址:https://pay.weixin.qq.com/wiki/doc/api/jsapi.php?chapter=9_4
引用微信支付类
Wechatapppay
具体代码操作如下
<?php
namespace app\api\controller;
use think\Controller;
use think\Request;
use think\Db;
use org\lib\Wechatapppay;
class Wechatpay extends Controller
{
//统一下单
public function unifiedorder()
{
//---------------------需提交的参数---------------------------------
$token=input("token"); //token
$order_sn = input('order_sn');//订单号
//---------------------需提交的参数完毕-----------------------------
//--------------数据校验-----------------------
if($token == null){
return json(array(
'status' => -1,
'msg' =>"token不能为空",
'data' => "",
));
}
if (empty($order_sn)) {
return json(array(
'status' => -1,
'msg' =>"订单号不能为空",
'data' => "",
));
}
$order_res=db("order_info")->where("oid='$order_sn'")->find();
if ($order_res['pay_status'] == '2') {
return json(array(
'status' => -1,
'msg' =>"已经支付过的订单",
'data' => "",
));
}
if (empty($order_res['amount_payable'])) {
return json(array(
'status' => -1,
'msg' =>"订单价格有误,请重新下单",
'data' => "",
));
}
//数据校验完毕-----------------------------
$mytime = time();
$wxappid = '';//应用ID 字符串
$mch_id = '';//商户号 字符串
$notify_url = 'http://api.***.com/api/Wechatpay/apppaysucess';//接收微信支付异步通知回调地址 字符串
$wxkey = '';//这个是在商户中心设置的那个值用来生成签名时保证安全的 字符串
$wechatAppPay = new wechatapppay($wxappid,$mch_id,$notify_url,$wxkey);
$params = array();
$params['body'] = 'APP-在线支付'; //必填项 商品描述
$params['out_trade_no'] = $order_sn; //必填项 自定义的订单号
$params['total_fee'] = ($order_res['amount_payable']*100); //必填项 订单金额 单位为分所以要*100
$params['trade_type'] = 'APP'; //必填项 交易类型固定写 APP
$wx_result = $wechatAppPay->unifiedOrder($params);
//var_dump($wx_result);
//exit;
if($wx_result['return_code'] != "SUCCESS")
{
return json(array(
'status'=>-1,
'msg'=>"验签失败",
));
exit;
}
//-------------------------------------------生成签名用到的六个参数-------------------------------------------------------------------
$sign_array = array();
$sign_array['appid'] = $wx_result['appid']; //注意 $sign_array['appid'] 里的参数名必须是appid
$sign_array['noncestr'] = $wx_result['nonce_str'];//注意 $sign_array['noncestr'] 里的参数名必须是noncestr
$sign_array['package'] = 'Sign=WXPay'; //注意 $sign_array['package'] 里的参数名必须是package
$sign_array['partnerid'] = $wx_result['mch_id']; //注意 $sign_array['partnerid'] 里的参数名必须是partnerid
$sign_array['prepayid'] = $wx_result['prepay_id'];//注意 $sign_array['prepayid'] 里的参数名必须是prepayid
$sign_array['timestamp'] = $mytime; //注意 $sign_array['timestamp'] 里的参数名必须是timestamp
//-------------------------------------------生成签名用到的六个参数完毕----------------------------------------------------------------
$sign_two = $wechatAppPay->MakeSign($sign_array);//调用wechatAppPay类里的MakeSign()函数生成sign
//重新组织数组返给app端
$myarray=array();
$myarray['appid'] = $wx_result['appid']; //appid
$myarray['partnerid'] = $wx_result['mch_id']; //商户号
$myarray['prepayid'] = $wx_result['prepay_id']; //预支付交易会话ID
$myarray['package'] = "Sign=WXPay"; //固定值
$myarray['noncestr'] = $wx_result['nonce_str']; //微信返给的随机字符串
$myarray['timestamp'] = $mytime; //时间
$myarray['sign'] =$sign_two; //二次签名
return json($myarray);
}
//微信支付异步通知回调地址
public function apppaysucess()
{
$wxappid = '';//应用ID 字符串
$mch_id = '';//商户号 字符串
$notify_url = 'http://api.***.com/api/Wechatpay/apppaysucess';//接收微信支付异步通知回调地址 字符串
$wxkey = '';//这个是在商户中心设置的那个值用来生成签名时保证安全的 字符串
$wechatAppPay = new wechatapppay($wxappid,$mch_id,$notify_url,$wxkey);
$data =$wechatAppPay->getNotifyData();//获取数据 用wechatAppPay类里的getNotifyData()方法,这里数据也被getNotifyData()由xml转化成了数组。
$w_sign = $data;
unset($w_sign['sign']);
$verify_sign = $wechatAppPay -> MakeSign($w_sign);//生成验签签名
if($verify_sign == $data['sign'])
{
//验签成功
//-------------------------逻辑处理----------------------------
//原支付请求的商户订单号
$no= $data['out_trade_no'];
//实付金额
$res['amount_paid']= ($data['total_fee'])/100; //返回来的是分,入库需要转化为元。
//支付状态 支付成功
$res['pay_status']='2';
//订单状态 拣货
$res['order_type']='5';
//付款时间
$res['pay_time']=time();
//微信支付
$res['pay_class']=1;
db("order_info")->where("oid",$no)->update($res);
//-------------------------逻辑处理完毕------------------------
$wechatAppPay->replyNotify();//通知微信端
}
else
{
//验签失败
return json(array(
'status'=>-1,
'msg'=>"验签失败",
//'data'=>$name,
));
}
}
//微信支付退款
public function refund()
{
//-------提交的参数--------------------------------------------------------
$token = input('token'); //token
$order_ns = input('order_sn'); //订单号
$reason = input('reason'); //退款原因
$product_id = input('product_id'); //订单商品id
//-------提交的参数完毕-----------------------------------------------------
//----参数及系统校验--------------------------------------------------------------
if (empty($token) || empty($order_ns) || empty($reason) || empty($product_id))
{
return json(array(
'status'=>-1,
'msg'=>"参数不能为空",
));
}
$redis = new \Redis;
$redis->connect('127.0.0.1',6379);
$uid = $redis->get($token);
$str = db("order_info")
->join("tp_order_detail", "tp_order_info.order_info_id=tp_order_detail.order_info_id")
->where("tp_order_info.oid",$order_ns)
->where("tp_order_detail.goods_id", $product_id)
->find();
//根据退货单号查询 是否能够退款
$sn=$str['order_sn'];
$rr=db("order_return")->where("return_oid",$sn)->find();
if ($rr['return_status']!='2')
{
return json(array(
'status' => 2,
'msg' => "退款失败,订单没审核过",
'data' => "",
));
}
//判断 是否已经支付 是否发货
if ($str['pay_status'] == 1 || $str['type'] == 2)
{
return json(array(
'status' => 2,
'msg' => "退款失败,订单已退货",
'data' => "",
));
}
if ($str['order_type'] == 3)
{
return json(array(
'status' =>3,
'msg' => "退款失败,订单已发货",
'data' => "",
));
}
$details = $str['sum_price']; //钱数
$return_oid = $rr['return_oid']; //退款单号
if ($details == 0)
{
return json(array(
'status' => -1,
'msg' => "退款失败",
'data' => "",
));
}
//----参数及系统校验完毕----------------------------------------------------------
$wxappid = '';//应用ID 字符串
$mch_id = '';//商户号 字符串
$notify_url = 'http://api.***.com/api/Wechatpay/apppaysucess';//接收微信支付异步通知回调地址 字符串
$wxkey = '';//这个是在商户中心设置的那个值用来生成签名时保证安全的 字符串
$wechatAppPay = new wechatapppay($wxappid,$mch_id, $notify_url,$wxkey);
$params = array();
$params['out_trade_no'] = $order_ns; //必填项 自定义的订单号
$params['total_fee'] = ($details*100); //必填项 订单金额 单位为分所以要*100
$params['return_oid'] = $return_oid; //退款单号
$wx_result = $wechatAppPay->refund($params);
if($wx_result['return_code'] == "SUCCESS")
{
//退款成功的逻辑处理
//修改商品表 库存数量
$nu=$str['quantity'];
$dd=db("product")->where("product_id=$product_id")->find();
$oo['number']=$dd['number']+$nu;
$oo['num']=$dd['num']-$nu;
db("product")->where("product_id=$product_id")->update($oo);
//修改订单表 中商品详情的 状态
$order_info_id=$str['order_info_id'];
$sss['type'] = '2';
$re=db("order_detail")
->where("tp_order_detail.order_info_id", $order_info_id)
->where("tp_order_detail.goods_id", $product_id)
->update($sss);
if($re)
{
return json(array(
'status' => 1,
'msg' => "退款成功",
'data' => "",
));
}
else
{
return json(array(
'status' => -1,
'msg' => "退款失败",
'data' => "",
));
}
}
else
{
return json(array(
'status'=>-1,
'msg'=>"退款失败",
//'data'=>$name,
));
}
}
}
Wechatapppay类
证书路径 写自己上传到线上的路径
$params['return_oid'] 这个是自己本地生成的退货单号
<?php
// +----------------------------------------------------------------------
// 微信支付类
// +----------------------------------------------------------------------
namespace org\lib;
class Wechatapppay
{
//接口API URL前缀
const API_URL_PREFIX = 'https://api.mch.weixin.qq.com';
//下单地址URL
const UNIFIEDORDER_URL = "/pay/unifiedorder";
//查询订单URL
const ORDERQUERY_URL = "/pay/orderquery";
//关闭订单URL
const CLOSEORDER_URL = "/pay/closeorder";
//----------------------------------------------------------退款------------------------------------------------------------------------
//退款url
const REFUND_URL = "/secapi/pay/refund";
private $out_refund_no; //退款单号
//----------------------------------------------------------退款------------------------------------------------------------------------完毕
//公众账号ID
private $wxappid;
//商户号
private $mch_id;
//随机字符串
private $nonce_str;
//签名
private $sign;
//商品描述
private $body;
//商户订单号
private $out_trade_no;
//支付总金额
private $total_fee;
//终端IP
private $spbill_create_ip;
//支付结果回调通知地址
private $notify_url;
//交易类型
private $trade_type;
//支付密钥
private $key;
//证书路径
public $SSLCERT_PATH = "/home/apiclient_cert.pem";
public $SSLKEY_PATH = "/home/apiclient_key.pem";
public $SSLROOT_PATH = "/home/rootca.pem";
//所有参数
private $params = array();
public function __construct($wxappid, $mch_id, $notify_url, $key)
{
$this->appid = $wxappid;
$this->mch_id = $mch_id;
$this->notify_url = $notify_url;
$this->key = $key;
}
//获取用户IP地址
public function getIp()
{
if(!empty($_SERVER["HTTP_CLIENT_IP"]))
{
$cip = $_SERVER["HTTP_CLIENT_IP"];
}
else if(!empty($_SERVER["HTTP_X_FORWARDED_FOR"]))
{
$cip = $_SERVER["HTTP_X_FORWARDED_FOR"];
}
else if(!empty($_SERVER["REMOTE_ADDR"]))
{
$cip = $_SERVER["REMOTE_ADDR"];
}
else
{
$cip = '';
}
preg_match("/[\d\.]{7,15}/", $cip, $cips);
$cip = isset($cips[0]) ? $cips[0] : '127.0.0.1';
unset($cips);
return $cip;
}
/**
* 下单方法
* @param $params 下单参数
*/
public function unifiedOrder($params){
$this->body = $params['body'];
$this->out_trade_no = $params['out_trade_no'];
$this->total_fee = $params['total_fee'];
$this->trade_type = $params['trade_type'];
$this->nonce_str = $this->genRandomString();
//$this->spbill_create_ip = $_SERVER['REMOTE_ADDR'];
$this->spbill_create_ip = $this->getIp();
$this->params['appid'] = $this->appid; //APPID
$this->params['mch_id'] = $this->mch_id; //商户号
$this->params['nonce_str'] = $this->nonce_str; //随机字符串 不长于32位
$this->params['body'] = $this->body; //应用市场上APP名字-实际商品名称
$this->params['out_trade_no'] = $this->out_trade_no; //商户订单号 要求32个字符内,只能是数字、大小写字母
$this->params['total_fee'] = $this->total_fee; // 订单总额 (分)
$this->params['spbill_create_ip'] = $this->spbill_create_ip; //客户端ip
$this->params['notify_url'] = $this->notify_url; //回调地址 接收微信支付异步通知回调地址,通知url必须为直接可访问的url,不能携带参数。
$this->params['trade_type'] = $this->trade_type; //支付类型 手机端就写APP
//获取签名数据
$this->sign = $this->MakeSign( $this->params);
$this->params['sign'] = $this->sign;
$xml = $this->data_to_xml($this->params);
$response = $this->postXmlCurl($xml, self::API_URL_PREFIX.self::UNIFIEDORDER_URL);
if( !$response ){
return false;
}
$result = $this->xml_to_data( $response );
if( !empty($result['result_code']) && !empty($result['err_code']) ){
$result['err_msg'] = $this->error_code( $result['err_code'] );
}
return $result;
}
/**
* 退款方法
* @param $params 退款参数
*/
public function refund($params)
{
$this->params = array();
$this->out_trade_no = $params['out_trade_no'];
$this->total_fee = $params['total_fee'];
//$this->trade_type = $params['trade_type'];
$this->nonce_str = $this->genRandomString();
$this->params['appid'] = $this->appid; //APPID
$this->params['mch_id'] = $this->mch_id; //商户号
$this->params['nonce_str'] = $this->nonce_str; //随机字符串 不长于32位
$this->params['out_refund_no'] = $params['return_oid']; //
$this->params['out_trade_no'] = $this->out_trade_no; //商退款单号户订单号 要求32个字符内,只能是数字、大小写字母
$this->params['refund_fee'] = $this->total_fee; //退款金额 单位为分
$this->params['total_fee'] = $this->total_fee; // 订单总额 (分)
//获取签名数据
$this->sign = $this->MakeSign( $this->params);
$this->params['sign'] = $this->sign;
$xml = $this->data_to_xml($this->params);
$response = $this->postXmlCurl($xml,self::API_URL_PREFIX.self::REFUND_URL,true);
if( !$response ){
return false;
}
$result = $this->xml_to_data( $response );
if(!empty($result['result_code']) && !empty($result['err_code']) ){
$result['err_msg'] = $this->error_code( $result['err_code'] );
}
return $result;
}
/**
* 查询订单信息
* @param $out_trade_no 订单号
* @return array
*/
public function orderQuery( $out_trade_no ){
$this->params['appid'] = $this->appid;
$this->params['mch_id'] = $this->mch_id;
$this->params['nonce_str'] = $this->genRandomString();
$this->params['out_trade_no'] = $out_trade_no;
//获取签名数据
$this->sign = $this->MakeSign( $this->params );
$this->params['sign'] = $this->sign;
$xml = $this->data_to_xml($this->params);
$response = $this->postXmlCurl($xml, self::API_URL_PREFIX.self::ORDERQUERY_URL);
if( !$response ){
return false;
}
$result = $this->xml_to_data( $response );
if( !empty($result['result_code']) && !empty($result['err_code']) ){
$result['err_msg'] = $this->error_code( $result['err_code'] );
}
return $result;
}
/**
* 关闭订单
* @param $out_trade_no 订单号
* @return array
*/
public function closeOrder( $out_trade_no ){
$this->params['appid'] = $this->appid;
$this->params['mch_id'] = $this->mch_id;
$this->params['nonce_str'] = $this->genRandomString();
$this->params['out_trade_no'] = $out_trade_no;
//获取签名数据
$this->sign = $this->MakeSign( $this->params );
$this->params['sign'] = $this->sign;
$xml = $this->data_to_xml($this->params);
$response = $this->postXmlCurl($xml, self::API_URL_PREFIX.self::CLOSEORDER_URL);
if( !$response ){
return false;
}
$result = $this->xml_to_data( $response );
return $result;
}
/**
*
* 获取支付结果通知数据
* return array
*/
public function getNotifyData(){
//获取通知的数据
//$xml = $GLOBALS['HTTP_RAW_POST_DATA'];
$xml = file_get_contents('php://input');
$data = array();
if( empty($xml) ){
return false;
}
$data = $this->xml_to_data( $xml );
if( !empty($data['return_code']) ){
if( $data['return_code'] == 'FAIL' ){
return false;
}
}
return $data;
}
/**
* 接收通知成功后应答输出XML数据
* @param string $xml
*/
public function replyNotify(){
$data['return_code'] = 'SUCCESS';
$data['return_msg'] = 'OK';
$xml = $this->data_to_xml( $data );
echo $xml;
die();
}
/**
* 生成APP端支付参数
* @param $prepayid 预支付id
*/
public function getAppPayParams( $prepayid ){
$data['appid'] = $this->appid;
$data['partnerid'] = $this->mch_id;
$data['prepayid'] = $prepayid;
$data['package'] = 'Sign=WXPay';
$data['noncestr'] = $this->genRandomString();
$data['timestamp'] = time();
$data['sign'] = $this->MakeSign( $data );
return $data;
}
/**
* 生成签名
* @return 签名
*/
public function MakeSign( $params ){
//签名步骤一:按字典序排序数组参数
ksort($params);
$string = $this->ToUrlParams($params);
//签名步骤二:在string后加入KEY
$string = $string . "&key=".$this->key;
//签名步骤三:MD5加密
$string = md5($string);
//签名步骤四:所有字符转为大写
$result = strtoupper($string);
return $result;
}
/**
* 将参数拼接为url: key=value&key=value
* @param $params
* @return string
*/
public function ToUrlParams( $params ){
$string = '';
if( !empty($params) ){
$array = array();
foreach( $params as $key => $value ){
$array[] = $key.'='.$value;
}
$string = implode("&",$array);
}
return $string;
}
/**
* 输出xml字符
* @param $params 参数名称
* return string 返回组装的xml
**/
public function data_to_xml( $params ){
if(!is_array($params)|| count($params) <= 0)
{
return false;
}
$xml = "<xml>";
foreach ($params as $key=>$val)
{
if (is_numeric($val)){
$xml.="<".$key.">".$val."</".$key.">";
}else{
$xml.="<".$key."><![CDATA[".$val."]]></".$key.">";
}
}
$xml.="</xml>";
return $xml;
}
/**
* 将xml转为array
* @param string $xml
* return array
*/
public function xml_to_data($xml){
if(!$xml){
return false;
}
//将XML转为array
//禁止引用外部xml实体
libxml_disable_entity_loader(true);
$data = json_decode(json_encode(simplexml_load_string($xml, 'SimpleXMLElement', LIBXML_NOCDATA)), true);
return $data;
}
/**
* 获取毫秒级别的时间戳
*/
private static function getMillisecond(){
//获取毫秒的时间戳
$time = explode ( " ", microtime () );
$time = $time[1] . ($time[0] * 1000);
$time2 = explode( ".", $time );
$time = $time2[0];
return $time;
}
/**
* 产生一个指定长度的随机字符串,并返回给用户
* @param type $len 产生字符串的长度
* @return string 随机字符串
*/
private function genRandomString($len = 32) {
$chars = array(
"a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k",
"l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v",
"w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G",
"H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R",
"S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2",
"3", "4", "5", "6", "7", "8", "9"
);
$charsLen = count($chars) - 1;
// 将数组打乱
shuffle($chars);
$output = "";
for ($i = 0; $i < $len; $i++) {
$output .= $chars[mt_rand(0, $charsLen)];
}
return $output;
}
/**
* 以post方式提交xml到对应的接口url
*
* @param string $xml 需要post的xml数据
* @param string $url url
* @param bool $useCert 是否需要证书,默认不需要
* @param int $second url执行超时时间,默认30s
* @throws WxPayException
*/
private function postXmlCurl($xml,$url,$useCert = false, $second = 30){
$ch = curl_init();
//设置超时
curl_setopt($ch, CURLOPT_TIMEOUT, $second);
curl_setopt($ch,CURLOPT_URL, $url);
curl_setopt($ch,CURLOPT_SSL_VERIFYHOST,2);
//设置header
curl_setopt($ch, CURLOPT_HEADER, FALSE);
//要求结果为字符串且输出到屏幕上
curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE);
if($useCert == true){
curl_setopt($ch,CURLOPT_SSL_VERIFYPEER,1);
//设置证书
//使用证书:cert 与 key 分别属于两个.pem文件
curl_setopt($ch,CURLOPT_SSLCERTTYPE,'PEM'); //证书的类型。支持的格式有"PEM" (默认值), "DER"和"ENG"。
curl_setopt($ch,CURLOPT_SSLCERT, $this->SSLCERT_PATH); //一个包含PEM格式证书的文件名
curl_setopt($ch,CURLOPT_SSLKEYTYPE,'PEM'); //私钥的加密类型,支持的密钥类型为"PEM"(默认值)、"DER"和"ENG"。
curl_setopt($ch,CURLOPT_SSLKEY, $this->SSLKEY_PATH); //包含SSL私钥的文件名
curl_setopt($ch,CURLOPT_SSLCERTTYPE,'PEM');
curl_setopt($ch,CURLOPT_CAINFO,$this->SSLROOT_PATH); //一个保存着1个或多个用来让服务端验证的证书的文件名。这个参数仅仅在和CURLOPT_SSL_VERIFYPEER一起使用时才有意义。
}
else
{
curl_setopt($ch,CURLOPT_SSL_VERIFYPEER,FALSE);
}
//post提交方式
curl_setopt($ch, CURLOPT_POST, TRUE);
curl_setopt($ch, CURLOPT_POSTFIELDS, $xml);
//运行curl
$data = curl_exec($ch);
//返回结果
if($data){
curl_close($ch);
return $data;
} else {
$error = curl_errno($ch);
curl_close($ch);
return false;
}
}
/**
* 错误代码
* @param $code 服务器输出的错误代码
* return string
*/
public function error_code( $code ){
$errList = array(
'NOAUTH' => '商户未开通此接口权限',
'NOTENOUGH' => '用户帐号余额不足',
'ORDERNOTEXIST' => '订单号不存在',
'ORDERPAID' => '商户订单已支付,无需重复操作',
'ORDERCLOSED' => '当前订单已关闭,无法支付',
'SYSTEMERROR' => '系统错误!系统超时',
'APPID_NOT_EXIST' => '参数中缺少APPID',
'MCHID_NOT_EXIST' => '参数中缺少MCHID',
'APPID_MCHID_NOT_MATCH' => 'appid和mch_id不匹配',
'LACK_PARAMS' => '缺少必要的请求参数',
'OUT_TRADE_NO_USED' => '同一笔交易不能多次提交',
'SIGNERROR' => '参数签名结果不正确',
'XML_FORMAT_ERROR' => 'XML格式错误',
'REQUIRE_POST_METHOD' => '未使用post传递参数 ',
'POST_DATA_EMPTY' => 'post数据不能为空',
'NOT_UTF8' => '未使用指定编码格式',
);
if( array_key_exists( $code , $errList ) ){
return $errList[$code];
}
}
}