/// <summary>
/// JS-SDK使用权限签名
/// 签名生成规则如下:参与签名的字段包括noncestr(随机字符串), 有效的jsapi_ticket, timestamp(时间戳), url(当前网页的URL,不包含#及其后面部分) 。对所有待签名参数按照字段名的ASCII 码从小到大排序(字典序)后,使用URL键值对的格式(即key1=value1&key2=value2…)拼接成字符串string1。这里需要注意的是所有参数名均为小写字符。对string1作sha1加密,字段名和字段值都采用原始值,不进行URL 转义。
/// API参考:http://mp.weixin.qq.com/wiki/7/aaa137b55fb2e0456bf8dd9148dd613f.html#.E9.99.84.E5.BD.951-JS-SDK.E4.BD.BF.E7.94.A8.E6.9D.83.E9.99.90.E7.AD.BE.E5.90.8D.E7.AE.97.E6.B3.95
/// 签名算法验证工具:http://mp.weixin.qq.com/debug/cgi-bin/sandbox?t=jsapisign
/// </summary>
/// <param name="jsapi_ticket"></param>
/// <param name="url"></param>
/// <param name="noncestr"></param>
/// <param name="timestamp"></param>
/// <returns></returns>
public static string MakeJsAPISign(string jsapi_ticket, string url, out string noncestr, out string timestamp)
{
string jsSign = string.Empty;
try
{
noncestr = WeChatPayData.MakeNonceStr();
timestamp = WeChatPayData.MakeTimeStamp();
//参与加密的参数key全部小写
WeChatPayData signData = new WeChatPayData();
signData.SetValue("jsapi_ticket", jsapi_ticket);
signData.SetValue("timestamp", timestamp);
signData.SetValue("noncestr", noncestr);
signData.SetValue("url", url);
string param = signData.ToSignStr();
Log.Debug("MakeJsAPISign", "SHA1 encrypt param : " + param);
//SHA1加密
jsSign = FormsAuthentication.HashPasswordForStoringInConfigFile(param, "SHA1");
Log.Debug("MakeJsAPISign", "SHA1 encrypt result : " + jsSign);
}
catch (Exception ex)
{
Log.Error("MakeJsAPISign", ex.ToString());
throw ex;
}
return(jsSign);
}
/// <summary>
/// 卡券签名
/// 1.将 api_ticket(特别说明:api_ticket 相较 appsecret 安全性更高,同时兼容老版本文档中使用的 appsecret 作为签名凭证。)、app_id、location_id、times_tamp、nonce_str、card_id、card_type的value值进行字符串的字典序排序。
/// 2.将所有参数字符串拼接成一个字符串进行sha1加密,得到cardSign。
/// </summary>
/// <param name="apiTicket"></param>
/// <param name="noncestr"></param>
/// <param name="timestamp"></param>
/// <returns></returns>
public static string MakeCardSign(string apiTicket, out string noncestr, out string timestamp)
{
string cardSign = string.Empty;
try
{
string param = string.Empty;
noncestr = WeChatPayData.MakeNonceStr();
timestamp = WeChatPayData.MakeTimeStamp();
WeChatPayData signData = new WeChatPayData();
signData.SetValue(apiTicket, apiTicket);
signData.SetValue(Config.APPID, Config.APPID);
signData.SetValue(timestamp, timestamp);
signData.SetValue(noncestr, noncestr);
//参与加密的参数value连接成字符串
foreach (KeyValuePair <string, object> kvp in signData.GetValues())
{
param += kvp.Key;
}
Log.Debug("MakeJsAPISign", "SHA1 encrypt param : " + param);
//SHA1加密
cardSign = FormsAuthentication.HashPasswordForStoringInConfigFile(param, "SHA1");
Log.Debug("MakeJsAPISign", "SHA1 encrypt result : " + cardSign);
}
catch (Exception ex)
{
Log.Error("MakeJsAPISign", ex.ToString());
throw ex;
}
return(cardSign);
}
/// <summary>
/// 获取收货地址js函数入口参数,详情请参考收货地址共享接口:http://pay.weixin.qq.com/wiki/doc/api/jsapi.php?chapter=7_9
/// </summary>
/// <param name="accessToken"></param>
/// <param name="url"></param>
/// <returns>共享收货地址js函数需要的参数,json格式可以直接做参数使用</returns>
public static string MakeEditAddressJsParam(string accessToken, string url)
{
string editAddrParam = string.Empty;
try
{
//参与加密的参数key全部小写
WeChatPayData signData = new WeChatPayData();
signData.SetValue("appid", Config.APPID);
signData.SetValue("url", url);
signData.SetValue("timestamp", WeChatPayData.MakeTimeStamp());
signData.SetValue("noncestr", WeChatPayData.MakeNonceStr());
signData.SetValue("accesstoken", accessToken);
string param = signData.ToSignStr();
Log.Debug("MakeEditAddressJsParam", "SHA1 encrypt param : " + param);
//SHA1加密
string addrSign = FormsAuthentication.HashPasswordForStoringInConfigFile(param, "SHA1");
Log.Debug("MakeEditAddressJsParam", "SHA1 encrypt result : " + addrSign);
//构造收货地址js函数入口参数
WeChatPayData paramsData = new WeChatPayData();
paramsData.SetValue("appId", Config.APPID);
paramsData.SetValue("scope", "jsapi_address");
paramsData.SetValue("signType", "sha1");
paramsData.SetValue("addrSign", addrSign);
paramsData.SetValue("timeStamp", signData.GetValue("timestamp"));
paramsData.SetValue("nonceStr", signData.GetValue("noncestr"));
//转为json格式
editAddrParam = paramsData.ToJson();
Log.Debug("MakeEditAddressJsParam", editAddrParam);
}
catch (Exception ex)
{
Log.Error("MakeEditAddressJsParam", ex.ToString());
throw ex;
}
return(editAddrParam);
}
/// <summary>
/// 根据预支付回话标示prepay_id构造JS参数
/// </summary>
/// <param name="prepayID"></param>
/// <returns></returns>
public static string MakeWXPayJsParam(string prepayID)
{
//返回微信客户端调用JS支付所需的参数
string wxJsApiParam = string.Empty;
try
{
//* 从统一下单成功返回的数据中获取微信浏览器调起jsapi支付所需的参数,
//* 微信浏览器调起JSAPI时的输入参数格式如下:
//* {
//* "appId" : "wx2421b1c4370ec43b", //公众号名称,由商户传入
//* "timeStamp":" 1395712654", //时间戳,自1970年以来的秒数
//* "nonceStr" : "e61463f8efa94090b1f366cccfbbb444", //随机串
//* "package" : "prepay_id=u802345jgfjsdfgsdg888",
//* "signType" : "MD5", //微信签名方式:
//* "paySign" : "70EA570631E4BB79628FBCA90534C63FF7FADD89" //微信签名
//* }
//* @return string 微信浏览器调起JSAPI时的输入参数,json格式可以直接做参数用
//* 更详细的说明请参考网页端调起支付API:http://pay.weixin.qq.com/wiki/doc/api/jsapi.php?chapter=7_7
WeChatPayData jsPayData = new WeChatPayData();
jsPayData.SetValue("appId", Config.APPID);
jsPayData.SetValue("timeStamp", WeChatPayData.MakeTimeStamp());
jsPayData.SetValue("nonceStr", WeChatPayData.MakeNonceStr());
jsPayData.SetValue("package", "prepay_id=" + prepayID);
jsPayData.SetValue("signType", "MD5");
jsPayData.SetValue("paySign", jsPayData.MakeSign());
wxJsApiParam = jsPayData.ToJson();
Log.Debug("jsApiParam", wxJsApiParam);
}
catch (Exception ex)
{
Log.Error("WxPayAPI", ex.Message);
throw ex;
}
return(wxJsApiParam);
}
/// <summary>
/// 微信支付,关闭订单接口
/// 以下情况需要调用关单接口:商户订单支付失败需要生成新单号重新发起支付,要对原订单号调用关单,避免重复支付;系统下单后,用户支付超时,系统退出不再受理,避免用户继续,请调用关单接口。
/// 注意:订单生成后不能马上调用关单接口,最短调用时间间隔为5分钟。
/// API接口参考:https://pay.weixin.qq.com/wiki/doc/api/jsapi.php?chapter=9_3
/// </summary>
/// <param name="orderID"></param>
/// <returns></returns>
public static WeChatPayData CloseOrder(string orderID)
{
if (string.IsNullOrEmpty(orderID))
{
throw new ArgumentNullException("orderID不能为空");
}
//微信支付消息发送报文
WeChatPayData sendPayData = new WeChatPayData();
//微信支付消息接收报文
WeChatPayData recvPayData = new WeChatPayData();
try
{
string url = "https://api.mch.weixin.qq.com/pay/closeorder";
sendPayData.SetValue("appid", Config.APPID); //公众账号ID
sendPayData.SetValue("mch_id", Config.MCHID); //商户号
sendPayData.SetValue("nonce_str", WeChatPayData.MakeNonceStr()); //随机字符串
sendPayData.SetValue("out_trade_no", orderID); //商户订单号
sendPayData.SetValue("sign", sendPayData.MakeSign()); //签名
string sendMsg = sendPayData.ToXml();
string recvMsg = HttpService.Post(sendMsg, url, false, Config.WeChatAPITimeout);
recvPayData.FromXml(recvMsg);
//校验返回状态码
if (recvPayData.IsSet("return_code") && recvPayData.GetValue("return_code").ToString().ToUpper() == "SUCCESS")
{
//当return_code为SUCCESS,才有sign参数返回
if (!recvPayData.CheckSign())
{
throw new Exception("sign签名校验错误");
}
//return_code和result_code同时为SUCCESS,且sign签名正确,则返回此消息数据
if (recvPayData.IsSet("result_code") && recvPayData.GetValue("result_code").ToString().ToUpper() == "SUCCESS")
{
return(recvPayData);
}
else //result_code返回FAIL,可能微信支付中此订单号不存在、微信支付系统异常
{
if (recvPayData.IsSet("err_code") && recvPayData.IsSet("err_code_des"))
{
throw new Exception(recvPayData.GetValue("err_code").ToString() + ":" + recvPayData.GetValue("err_code_des").ToString());
}
}
}
else //return_code返回FAIL,可能签名失败、参数格式校验错误
{
if (recvPayData.IsSet("return_msg"))
{
throw new Exception(recvPayData.GetValue("return_msg").ToString());
}
}
}
catch (Exception ex)
{
Log.Error("WxPayAPI", ex.Message);
}
return(recvPayData);
}
/// <summary>
/// 根据商户订单号查询订单接口,参考:https://pay.weixin.qq.com/wiki/doc/api/jsapi.php?chapter=9_2
/// 该接口提供所有微信支付订单的查询,商户可以通过该接口主动查询订单状态,完成下一步的业务逻辑。
/// </summary>
/// <param name="out_trade_no"></param>
/// <returns></returns>
public static WeChatPayData OrderQueryByOutTradeNo(string out_trade_no)
{
if (string.IsNullOrEmpty(out_trade_no))
{
throw new ArgumentNullException("查询订单,缺少out_trade_no");
}
//微信支付消息发送报文
WeChatPayData sendPayData = new WeChatPayData();
//微信支付消息接收报文
WeChatPayData recvPayData = new WeChatPayData();
try
{
string url = "https://api.mch.weixin.qq.com/pay/orderquery";
sendPayData.SetValue("appid", Config.APPID); //公众账号ID
sendPayData.SetValue("mch_id", Config.MCHID); //商户号
sendPayData.SetValue("out_trade_no", out_trade_no); //商户订单号
sendPayData.SetValue("nonce_str", WeChatPayData.MakeNonceStr()); //随机字符串
sendPayData.SetValue("sign", sendPayData.MakeSign()); //签名
string sendMsg = sendPayData.ToXml();
var start = DateTime.Now;
Log.Debug("JsApiPay", "OrderQuery request : " + sendMsg);
string recvMsg = HttpService.Post(sendMsg, url, false, Config.WeChatAPITimeout);//调用HTTP通信接口提交数据
Log.Debug("JsApiPay", "OrderQuery response : " + recvMsg);
var end = DateTime.Now;
int timeCost = (int)((end - start).TotalMilliseconds);//获得接口耗时
Log.Debug("JsApiPay", "OrderQuery 接口耗时 : " + timeCost);
//将xml格式的数据转化为对象以返回
recvPayData.FromXml(recvMsg);
//校验微信接口返回值return_code和result_code
if (recvPayData.IsSet("return_code") && recvPayData.GetValue("return_code").ToString().ToUpper() == "SUCCESS")
{
if (!recvPayData.CheckSign())
{
throw new Exception("微信“按out_trade_no查询订单”消息sign签名校验错误");
}
//return_code和result_code同时为SUCCESS,且sign签名正确,则返回此消息数据
if (recvPayData.IsSet("result_code") && recvPayData.GetValue("result_code").ToString().ToUpper() == "SUCCESS")
{
return(recvPayData);
}
else //result_code返回FAIL,可能微信支付中此订单号不存在、微信支付系统异常
{
if (recvPayData.IsSet("err_code") && recvPayData.IsSet("err_code_des"))
{
throw new Exception(recvPayData.GetValue("err_code").ToString() + ":" + recvPayData.GetValue("err_code_des").ToString());
}
}
}
else //return_code返回FAIL,可能签名失败、参数格式校验错误
{
if (recvPayData.IsSet("return_msg"))
{
throw new Exception(recvPayData.GetValue("return_msg").ToString());
}
}
}
catch (Exception ex)
{
Log.Error("WxPayAPI", ex.Message);
throw ex;
}
return(null);
}
/// <summary>
/// 微信支付统一下单,接口参考:https://pay.weixin.qq.com/wiki/doc/api/jsapi.php?chapter=9_1
/// 除被扫支付场景以外,商户系统先调用该接口在微信支付服务后台生成预支付交易单,返回正确的预支付交易回话标识prepay_id,有效期2小时,再按扫码、JSAPI、APP等不同场景生成交易串调起支付。
/// </summary>
/// <param name="po"></param>
/// <param name="jStateCode"></param>
/// <returns>正常返回prepay_id,jStateCode为空;如果有错误发生,则prepay_id为空,jStateCode有值</returns>
public static string CallUnifiedOrderAPI(ProductOrder po, out WeChatPayData stateCode)
{
string prepayID = string.Empty;
//统一下单API返回的状态码
stateCode = new WeChatPayData();
try
{
WeChatPayData sendPayData;
WeChatPayData recvPayData;
//生成统一下单接口报文
string url = "https://api.mch.weixin.qq.com/pay/unifiedorder";
sendPayData = new WeChatPayData();
sendPayData.SetValue("appid", Config.APPID); //必填
sendPayData.SetValue("mch_id", Config.MCHID); //必填
sendPayData.SetValue("device_info", "WEB");
sendPayData.SetValue("nonce_str", WeChatPayData.MakeNonceStr()); //必填
sendPayData.SetValue("body", po.ProductNames); //必填
sendPayData.SetValue("detail", po.OrderDetails);
sendPayData.SetValue("attach", "订单自定义数据");
sendPayData.SetValue("out_trade_no", po.OrderID); //必填
sendPayData.SetValue("fee_type", "CNY");
sendPayData.SetValue("total_fee", (po.OrderPrice * 100).ToString("F0")); //必填,单位为【分】
sendPayData.SetValue("spbill_create_ip", po.ClientIP); //必填
sendPayData.SetValue("time_start", DateTime.Now.ToString("yyyyMMddHHmmss"));
sendPayData.SetValue("time_expire", DateTime.Now.AddMinutes(Config.WeChatOrderExpire).ToString("yyyyMMddHHmmss")); //最短失效时间间隔必须大于5分钟,可为空,默认2小时,也即prepay_id有效期
sendPayData.SetValue("goods_tag", "商品标记,代金券或立减优惠功能的参数");
sendPayData.SetValue("notify_url", Config.PayNotifyUrl); //必填,微信支付成功后异步通知url
sendPayData.SetValue("trade_type", "JSAPI"); //必填
sendPayData.SetValue("openid", po.Purchaser.OpenID); //trade_type = JSAPI,此参数必传
//生成报文签名
sendPayData.SetValue("sign", sendPayData.MakeSign()); //必填
//生成接口所需的XML报文格式
string sendMsg = sendPayData.ToXml();
var start = DateTime.Now;
Log.Debug("JsApiPay", "UnfiedOrder request" + sendMsg);
//调用微信支付统一下单接口,并获取返回报文
string recvMsg = HttpService.Post(sendMsg, url, false, Config.WeChatAPITimeout);
Log.Debug("JsApiPay", "UnfiedOrder response" + recvMsg);
var end = DateTime.Now;
int timeCost = (int)((end - start).TotalMilliseconds);
Log.Debug("JsApiPay", "UnfiedOrder time cost" + timeCost.ToString());
//recvMsg = "<xml><return_code><![CDATA[SUCCESS]]></return_code><return_msg><![CDATA[OK]]></return_msg><appid><![CDATA[wxa1ce5cd8d4bc5b3f]]></appid><mch_id><![CDATA[1296478401]]></mch_id><device_info><![CDATA[WEB]]></device_info><nonce_str><![CDATA[vjqH6K12oBv9iEyW]]></nonce_str><sign><![CDATA[42916A4F50AAD1AA1B9A3D222371EBAE]]></sign><result_code><![CDATA[SUCCESS]]></result_code><prepay_id><![CDATA[wx20151223230752785abc1a610183113624]]></prepay_id><trade_type><![CDATA[JSAPI]]></trade_type></xml>";
if (string.IsNullOrEmpty(recvMsg))
{
Log.Error("JsApiPay", "UnfiedOrder接口没有返回数据");
throw new Exception("UnfiedOrder接口没有返回数据");
}
recvPayData = new WeChatPayData();
//根据XML返回报文生成返回报文对象
recvPayData.FromXml(recvMsg);
//校验通信标示
if (recvPayData.IsSet("return_code") && recvPayData.GetValue("return_code").ToString().ToUpper() == "SUCCESS")
{
//当return_code为SUCCESS,才有sign参数返回,校验对方报文签名
if (!recvPayData.CheckSign())
{
stateCode.SetValue("return_code", "FAIL");
stateCode.SetValue("return_msg", "微信支付返回的签名错误,请在安全的网络环境中进行支付!");
Log.Error("CallUnifiedOrderAPI::SIGN签名错误", recvPayData.GetValue("sign").ToString());
}
else
{
//校验业务结果result_code也是SUCCESS,才有prepay_id返回
if (recvPayData.IsSet("result_code") && recvPayData.GetValue("result_code").ToString().ToUpper() == "SUCCESS" && recvPayData.IsSet("prepay_id"))
{
//获取prepay_id
prepayID = recvPayData.GetValue("prepay_id").ToString();
}
else //可能是订单已支付、已关闭、订单号重复等错误原因
{
stateCode.SetValue("result_code", "FAIL");
stateCode.SetValue("err_code", recvPayData.GetValue("err_code").ToString());
stateCode.SetValue("err_code_des", recvPayData.GetValue("err_code_des").ToString());
Log.Error("CallUnifiedOrderAPI", stateCode.ToJson());
}
}
}
else //可能为我方报文sign签名错误或参数格式错误
{
stateCode.SetValue("return_code", "FAIL");
stateCode.SetValue("return_msg", recvPayData.GetValue("return_msg").ToString());
Log.Error("CallUnifiedOrderAPI", stateCode.ToJson());
}
}
catch (Exception ex)
{
Log.Error("WxPayAPI", ex.Message);
throw ex;
}
return(prepayID);
}
