sileya-ai
/
vr-shopxo-plugin
1
0
Fork 0
Code Issues 3 Pull Requests Packages Projects Releases Wiki Activity
vr-shopxo-plugin/shopxo/extend/payment/Toutiao.php

809 lines
30 KiB
PHP
Raw Normal View History

feat: import ShopXO v6.8.0 sourcecode (vendor/runtime excluded) - ShopXO core + plugins/vr_ticket - Goods.php item_type=ticket routing (Phase 1) - vr_ticket plugin skeleton (Phase 0/1) - Admin auth Base controller (Phase 2) - All Phase 0/1/2 code included Closes: tracks all ShopXO core modifications in monorepo
2026-04-15 05:09:44 +00:00
<?php
// +----------------------------------------------------------------------
// | ShopXO 国内领先企业级B2C免费开源电商系统
// +----------------------------------------------------------------------
// | Copyright (c) 2011~2019 http://shopxo.net All rights reserved.
// +----------------------------------------------------------------------
// | Licensed ( http://www.apache.org/licenses/LICENSE-2.0 )
// +----------------------------------------------------------------------
// | Author: Devil
// +----------------------------------------------------------------------
namespace payment;
use app\service\PayLogService;
use app\service\AppMiniUserService;
/**
* 头条
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
*/
class Toutiao
{
// 插件配置参数
private $config;
/**
* 构造方法
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-17
* @desc description
* @param [array] $params [输入参数(支付配置参数)]
*/
public function __construct($params = [])
{
$this->config = $params;
}
/**
* 配置信息
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
*/
public function Config()
{
// 基础信息
$base = [
'name' => '头条', // 插件名称
'version' => '1.0.0', // 插件版本
'apply_version' => '不限', // 适用系统版本描述
'apply_terminal'=> ['toutiao'], // 适用终端 默认全部 ['pc', 'h5', 'ios', 'android', 'alipay', 'weixin', 'baidu']
'desc' => '适用头条小程序,担保交易支付方式。 <a href="https://microapp.bytedance.com/" target="_blank">立即申请</a>', // 插件描述支持html
'author' => 'Devil', // 开发者
'author_url' => 'http://shopxo.net/', // 开发者主页
];
// 配置信息
$element = [
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'app_id',
'placeholder' => '小程序AppID',
'title' => '小程序AppID',
'is_required' => 0,
'message' => '请填写小程序AppID',
],
[
'element' => 'select',
'title' => '支付类型',
'message' => '请选择支付类型',
'name' => 'pay_type',
'is_multiple' => 0,
'element_data' => [
['value'=>0, 'name'=>'担保交易(普通)'],
['value'=>1, 'name'=>'担保交易(企业-通用交易系统)'],
],
],
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'salt',
'placeholder' => '密钥SALT',
'title' => '密钥SALT',
'is_required' => 0,
'message' => '请填写密钥SALT',
],
[
'element' => 'input',
'type' => 'text',
'default' => '',
'name' => 'token',
'desc' => '自行输入英文或数字组合、不超过32个字符',
'placeholder' => 'Token(令牌)自行输入英文或数字组合、不超过32个字符',
'title' => 'Token(令牌)',
'is_required' => 0,
'message' => '请填写Token(令牌)',
],
[
'element' => 'textarea',
'name' => 'rsa_public',
'placeholder' => '应用公钥',
'title' => '应用公钥',
'is_required' => 0,
'rows' => 6,
'message' => '请填写应用公钥',
],
[
'element' => 'textarea',
'name' => 'rsa_private',
'placeholder' => '应用私钥',
'title' => '应用私钥',
'is_required' => 0,
'rows' => 6,
'message' => '请填写应用私钥',
],
[
'element' => 'textarea',
'name' => 'out_rsa_public',
'placeholder' => '支付平台公钥',
'title' => '支付平台公钥',
'is_required' => 0,
'rows' => 6,
'message' => '请填写支付平台公钥',
],
[
'element' => 'select',
'title' => '交易规则标签组',
'message' => '请选择交易规则标签组',
'name' => 'tag_group_id',
'is_multiple' => 0,
'element_data' => [
['value'=>'tag_group_7272625659887943692', 'name'=>'通信-号卡商品(未制卡全额退/制卡后协商退)'],
['value'=>'tag_group_7272625659887960076', 'name'=>'通信-定制服务(未制作全额退/定制后协商退)'],
['value'=>'tag_group_7272625659887976460', 'name'=>'通信-定制服务(未制作全额退/定制后不可退)'],
['value'=>'tag_group_7272625659887992844', 'name'=>'通信-虚拟充值(不可退)'],
['value'=>'tag_group_7272625659888009228', 'name'=>'咨询-普通咨询(未服务全额退/开始服务后协商退)'],
['value'=>'tag_group_7272625659888025612', 'name'=>'咨询-普通咨询(未服务全额退/开始服务后不可退)'],
['value'=>'tag_group_7297888175123382299', 'name'=>'咨询-代写文书(未服务全额退/开始服务后协商退)'],
['value'=>'tag_group_7272625659888041996', 'name'=>'咨询-内容消费(不可退)'],
['value'=>'tag_group_7272625659888058380', 'name'=>'工具-虚拟服务(不可退)'],
],
],
[
'element' => 'message',
'message' => '异步通知地址,将该地址配置到头条小程序后台->支付->担保交易->担保交易设置中<br />'.__MY_URL__.'payment_default_order_'.strtolower(str_replace(['payment', '\\'], '', get_class($this))).'_notify.php<br /><br />PS支付类型 担保交易(企业-通用交易系统)采用(应用公钥、私钥、平台公钥、交易规则标签组)配置项',
],
];
return [
'base' => $base,
'element' => $element,
];
}
/**
* 支付入口
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
* @param [array] $params [输入参数]
*/
public function Pay($params = [])
{
// 参数
if(empty($params))
{
return DataReturn('参数不能为空', -1);
}
// 配置信息
if(empty($this->config) || empty($this->config['app_id']))
{
return DataReturn('支付缺少配置', -1);
}
// 支付类型
$pay_type = isset($this->config['pay_type']) ? intval($this->config['pay_type']) : 0;
switch($pay_type)
{
// 担保交易-普通版本
case 0 :
// 配置信息
if(empty($this->config['salt']) || empty($this->config['token']))
{
return DataReturn('支付缺少配置(salt|token)', -1);
}
// 处理支付
$parameter = [
'app_id' => $this->config['app_id'],
'out_order_no' => $params['order_no'],
'total_amount' => (int) (($params['total_price']*1000)/10),
'subject' => $params['name'],
'body' => $params['site_name'].'-'.$params['name'],
'valid_time' => $this->OrderAutoCloseTime(),
'notify_url' => $params['notify_url'],
];
// 签名
$parameter['sign'] = $this->GetParamSign($parameter);
// 支付请求记录
PayLogService::PayLogRequestRecord($params['order_no'], ['request_params'=>$parameter]);
// 请求接口
$url = 'https://developer.toutiao.com/api/apps/ecpay/v1/create_order';
$ret = $this->HttpRequest($url, $parameter);
if($ret['code'] == 0 && !empty($ret['data']['data']))
{
$ret['data'] = $ret['data']['data'];
}
return $ret;
break;
// 担保交易-企业-通用交易系统
case 1 :
// 配置信息
if(empty($this->config['rsa_public']) || empty($this->config['rsa_private']) || empty($this->config['out_rsa_public']) || empty($this->config['tag_group_id']))
{
return DataReturn('支付缺少配置(应用公钥|私钥|平台公钥|交易规则标签组)', -1);
}
// 请求参数
$data = json_encode([
'skuList' => [
[
'skuId' => $params['order_no'],
'price' => (int) (($params['total_price']*1000)/10),
'quantity' => 1,
'title' => $params['name'],
'imageList' => [AttachmentPathViewHandle(MyC('home_site_logo_square'))],
'type' => 201,
'tagGroupId' => $this->config['tag_group_id'],
]
],
'outOrderNo' => $params['order_no'],
'totalAmount' => (int) (($params['total_price']*1000)/10),
'payExpireSeconds' => $this->OrderAutoCloseTime(),
'payNotifyUrl' => $params['notify_url'],
'orderEntrySchema' => [
'path' => 'pages/index/index',
],
], JSON_UNESCAPED_UNICODE);
// 签名
$auth = $this->GetByteAuthorization($data);
if($auth['code'] != 0)
{
return $auth;
}
// 请求数据
$parameter = [
'data' => $data,
'auth' => $auth['data'],
'pay_type' => $pay_type,
];
// 支付请求记录
PayLogService::PayLogRequestRecord($params['order_no'], ['request_params'=>$parameter]);
return DataReturn('success', 0, $parameter);
break;
}
}
/**
* 签名生成
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2023-12-27
* @desc description
* @param [string] $data [支付信息json数据]
*/
public function GetByteAuthorization($data) {
// 私钥
if(stripos($this->config['rsa_private'], '-----') === false)
{
$private_key_str = "-----BEGIN RSA PRIVATE KEY-----\n";
$private_key_str .= wordwrap($this->config['rsa_private'], 64, "\n", true);
$private_key_str .= "\n-----END RSA PRIVATE KEY-----";
} else {
$private_key_str = $this->config['rsa_private'];
}
// 应用公钥版本,每次重新上传公钥后需要更新,可通过「开发管理-开发设置-密钥设置」处获取
$key_version = '1';
// 请求时间戳
$timestamp = time();
// 随机字符串
$nonce_str = RandomString(10);
// 读取私钥
$private_key = openssl_pkey_get_private($private_key_str);
if(!$private_key)
{
return DataReturn('私钥无效', -1);
}
// 生成签名
$target_str = "POST\n/requestOrder\n" . $timestamp. "\n" . $nonce_str. "\n" . $data. "\n";
openssl_sign($target_str, $sign, $private_key, OPENSSL_ALGO_SHA256);
$signature = base64_encode($sign);
if($signature === false)
{
return DataReturn('签名生成失败', -1);
}
// 构造 byteAuthorization
$auth = sprintf("SHA256-RSA2048 appid=%s,nonce_str=%s,timestamp=%s,key_version=%s,signature=%s", $this->config['app_id'], $nonce_str, $timestamp, $key_version, $signature);
return DataReturn('success', 0, $auth);
}
/**
* 订单自动关闭的时间
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2021-03-24
* @desc description
*/
public function OrderAutoCloseTime()
{
return intval(MyC('common_order_close_limit_time', 30, true))*60;
}
/**
* 签名生成
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
* @param [array] $params [输入参数]
*/
private function GetParamSign($params = [])
{
$data = [];
foreach($params as $k=>$v)
{
// 排除不参与签名的字段
if(in_array($k, ['other_settle_params', 'app_id', 'sign', 'thirdparty_id']))
{
continue;
}
// 数据值处理
$value = trim(strval($v));
$len = strlen($value);
if($len > 1 && substr($value, 0, 1) == '"' && substr($value, $len, $len-1) == '"')
{
$value = substr($value, 1, $len-1);
}
// 排除空值
$value = trim($value);
if($value == '' || $value == null)
{
continue;
}
// 加入待签
array_push($data, $value);
}
// 加入密钥
array_push($data, $this->config['salt']);
// 单元被作为字符串来比较
sort($data, SORT_STRING);
return md5(implode('&', $data));
}
/**
* 支付回调处理
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2018-09-19
* @desc description
* @param [array] $params [输入参数]
*/
public function Respond($params = [])
{
// 参数
if(empty($this->config))
{
return DataReturn('配置有误', -1);
}
if(empty($params['msg']) || empty($params['type']))
{
return DataReturn('支付参数有误', -1);
}
// 退款请求不处理、直接返回成功
if(isset($params['type']) && $params['type'] == 'refund')
{
die($this->SuccessReturn());
}
// 请求数据
$data = json_decode(htmlspecialchars_decode($params['msg']), true);
if(empty($data))
{
return DataReturn('msg转换json数据为空', -1);
}
// 支付类型
$pay_type = isset($this->config['pay_type']) ? intval($this->config['pay_type']) : 0;
switch($pay_type)
{
// 担保交易-普通版本
case 0 :
// 基础参数
if(empty($data['cp_orderno']))
{
return DataReturn('回调订单号为空', -1);
}
// 查询订单信息
$parameter = [
'app_id' => $this->config['app_id'],
'out_order_no' => $data['cp_orderno'],
];
// 签名
$parameter['sign'] = $this->GetParamSign($parameter);
// 请求接口
$url = 'https://developer.toutiao.com/api/apps/ecpay/v1/query_order';
$ret = $this->HttpRequest($url, $parameter);
if($ret['code'] == 0 && !empty($ret['data']['payment_info']) && !empty($ret['data']['payment_info']['order_status']))
{
switch($ret['data']['payment_info']['order_status'])
{
// 处理中
case 'PROCESSING' :
$ret = DataReturn('处理中', -10);
break;
// 超时
case 'TIMEOUT' :
$ret = DataReturn('超时', -20);
break;
// 成功
case 'SUCCESS' :
$ret = DataReturn('支付成功', 0, $this->ReturnData($data));
break;
// 默认
default :
$ret = DataReturn('支付失败', -100);
}
}
return $ret;
break;
// 担保交易-企业-通用交易系统
case 1 :
// 基础参数
if(empty($data['out_order_no']) || empty($data['order_id']))
{
return DataReturn('回调订单号或支付单号为空', -1);
}
// access_token
$config = [
'appid' => AppMiniUserService::AppMiniConfig('common_app_mini_toutiao_appid'),
'secret' => AppMiniUserService::AppMiniConfig('common_app_mini_toutiao_appsecret'),
];
if(empty($config['appid']) || empty($config['secret']))
{
return DataReturn('头条小程序密钥未配置', -1);
}
$access_token = (new \base\Toutiao($config))->GetMiniClientToken();
if($access_token === false)
{
return DataReturn('client_token获取失败', -1);
}
$header = [
'access-token: '.$access_token,
'content-type: application/json',
];
// 查询订单信息
$url = 'https://open.douyin.com/api/trade_basic/v1/developer/order_query/';
$parameter = [
'order_id' => $data['order_id'],
'out_order_no' => $data['out_order_no'],
];
$ret = $this->HttpRequest($url, $parameter, 30, $header);
if($ret['code'] == 0 && !empty($ret['data']['data']) && isset($ret['data']['data']['pay_status']) && $ret['data']['data']['pay_status'] == 'SUCCESS')
{
$ret = DataReturn('支付成功', 0, $this->ReturnData($ret['data']['data']));
}
return $ret;
break;
}
return DataReturn('支付类型未处理或支付失败('.$pay_type.')', -1);
}
/**
* 返回数据统一格式
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @datetime 2018-10-06T16:54:24+0800
* @param [array] $data [返回数据]
*/
private function ReturnData($data)
{
// 返回数据固定基础参数
// 支付平台 - 订单号
$data['trade_no'] = isset($data['payment_order_no']) ? $data['payment_order_no'] : (isset($data['order_id']) ? $data['order_id'] : '');
// 支付平台 - 用户
$data['buyer_user'] = isset($data['seller_uid']) ? $data['seller_uid'] : (isset($data['item_order_list']) ? $data['item_order_list'][0]['item_order_id'] : '');
// 本系统发起支付的 - 订单号
$data['out_trade_no'] = isset($data['cp_orderno']) ? $data['cp_orderno'] : (isset($data['out_order_no']) ? $data['out_order_no'] : '');
// 本系统发起支付的 - 商品名称
$data['subject'] = '';
// 本系统发起支付的 - 总价
$data['pay_price'] = $data['total_amount']/100;
return $data;
}
/**
* 退款处理
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2019-05-28
* @desc description
* @param [array] $params [输入参数]
*/
public function Refund($params = [])
{
// 参数
$p = [
[
'checked_type' => 'empty',
'key_name' => 'order_no',
'error_msg' => '订单号不能为空',
],
[
'checked_type' => 'empty',
'key_name' => 'trade_no',
'error_msg' => '交易平台订单号不能为空',
],
[
'checked_type' => 'empty',
'key_name' => 'pay_price',
'error_msg' => '支付金额不能为空',
],
[
'checked_type' => 'empty',
'key_name' => 'refund_price',
'error_msg' => '退款金额不能为空',
],
[
'checked_type' => 'empty',
'key_name' => 'pay_time',
'error_msg' => '支付时间不能为空',
],
];
$ret = ParamsChecked($params, $p);
if($ret !== true)
{
return DataReturn($ret, -1);
}
// 退款原因
$refund_reason = empty($params['refund_reason']) ? $params['order_no'].'订单退款'.$params['refund_price'].'元' : $params['refund_reason'];
// 支付类型
$pay_type = isset($this->config['pay_type']) ? intval($this->config['pay_type']) : 0;
switch($pay_type)
{
// 担保交易-普通版本
case 0 :
// 处理退款
$parameter = [
'app_id' => $this->config['app_id'],
'out_order_no' => $params['order_no'],
'out_refund_no' => $params['trade_no'],
'refund_amount' => (int) (($params['refund_price']*1000)/10),
'reason' => $refund_reason,
];
// 签名
$parameter['sign'] = $this->GetParamSign($parameter);
// 请求接口
$url = 'https://developer.toutiao.com/api/apps/ecpay/v1/create_refund';
$ret = $this->HttpRequest($url, $parameter);
if($ret['code'] == 0)
{
// 统一返回格式
$data = [
'trade_no' => isset($ret['data']['refund_no']) ? $ret['data']['refund_no'] : '',
'refund_price' => $params['refund_price'],
'return_params' => $ret['data'],
'request_params' => $parameter,
];
return DataReturn('退款成功', 0, $data);
}
return $ret;
break;
// 担保交易-企业-通用交易系统
case 1 :
// access_token
$config = [
'appid' => AppMiniUserService::AppMiniConfig('common_app_mini_toutiao_appid'),
'secret' => AppMiniUserService::AppMiniConfig('common_app_mini_toutiao_appsecret'),
];
if(empty($config['appid']) || empty($config['secret']))
{
return DataReturn('头条小程序密钥未配置', -1);
}
$access_token = (new \base\Toutiao($config))->GetMiniClientToken();
if($access_token === false)
{
return DataReturn('client_token获取失败', -1);
}
$header = [
'access-token: '.$access_token,
'content-type: application/json',
];
// 处理退款
$parameter = [
'order_id' => $params['trade_no'],
'out_refund_no' => md5(time().GetNumberCode(6)),
'order_entry_schema' => [
'path' => 'pages/user-orderaftersale/user-orderaftersale'
],
'refund_reason' => [
['code' => 999, 'text' => $refund_reason],
],
'refund_total_amount' => (int) (($params['refund_price']*1000)/10),
'item_order_detail' => [
[
'item_order_id' => $params['pay_log_data']['buyer_user'],
'refund_amount' => (int) (($params['refund_price']*1000)/10),
]
],
];
// 请求接口
$url = 'https://open.douyin.com/api/trade_basic/v1/developer/refund_create/';
$ret = $this->HttpRequest($url, $parameter, 30, $header);
if($ret['code'] == 0 || stripos($ret['msg'], '[22013]') !== false)
{
// 统一返回格式
$data = [
'trade_no' => (!empty($ret['data']['data']) && isset($ret['data']['data']['refund_id'])) ? $ret['data']['data']['refund_id'] : '',
'refund_price' => $params['refund_price'],
'return_params' => $ret['data'],
'request_params' => $parameter,
];
return DataReturn('退款成功', 0, $data);
}
return $ret;
break;
}
}
/**
* 分账
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2022-08-03
* @desc description
* @param [array] $params [输入参数]
*/
public function Settlement($params = [])
{
// 参数
$p = [
[
'checked_type' => 'empty',
'key_name' => 'out_settle_no',
'error_msg' => '分账单号不能为空',
],
[
'checked_type' => 'empty',
'key_name' => 'order_no',
'error_msg' => '订单号不能为空',
],
];
$ret = ParamsChecked($params, $p);
if($ret !== true)
{
return DataReturn($ret, -1);
}
// 请求数据
$parameter = [
'app_id' => $this->config['app_id'],
'out_settle_no' => $params['out_settle_no'],
'out_order_no' => $params['order_no'],
'settle_desc' => '主动结算',
];
// 签名
$parameter['sign'] = $this->GetParamSign($parameter);
// 请求接口
$url = 'https://developer.toutiao.com/api/apps/ecpay/v1/settle';
$ret = $this->HttpRequest($url, $parameter);
if($ret['code'] == 0)
{
$data = [
'data' => $ret['data'],
];
if(isset($ret['data']['err_no']) && $ret['data']['err_no'] == 0)
{
$data['status'] = 0;
$data['trade_no'] = $ret['data']['settle_no'];
} else {
$data['error'] = $ret['data']['err_tips'].'('.$ret['data']['err_no'].')';
}
return DataReturn('操作成功', 0, $data);
}
return $ret;
}
/**
* 网络请求
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @datetime 2017-09-25T09:10:46+0800
* @param [string] $url [请求url]
* @param [array] $data [发送数据]
* @param [int] $second [超时]
* @param [array] $header [头信息]
* @return [mixed] [请求返回数据]
*/
private function HttpRequest($url, $data, $second = 30, $header = [])
{
$ch = curl_init();
if(empty($header))
{
$header = ['Content-Type: application/json;charset=utf-8'];
}
curl_setopt_array($ch, array(
CURLOPT_URL => $url,
CURLOPT_HTTPHEADER => $header,
CURLOPT_POST => true,
CURLOPT_SSL_VERIFYPEER => false,
CURLOPT_SSL_VERIFYHOST => false,
CURLOPT_RETURNTRANSFER => true,
CURLOPT_POSTFIELDS => json_encode($data),
CURLOPT_TIMEOUT => $second,
));
$result = curl_exec($ch);
//返回结果
if($result)
{
curl_close($ch);
$res = json_decode($result, true);
if(empty($res) || !isset($res['err_no']))
{
return DataReturn('请求失败['.$result.']', -1);
}
if($res['err_no'] != 0)
{
$msg = empty($res['err_tips']) ? (empty($res['err_msg']) ? '操作失败' : $res['err_msg']) : $res['err_tips'];
return DataReturn($msg.'['.$res['err_no'].']', -1);
}
return DataReturn('success', 0, $res);
} else {
$error = curl_errno($ch);
curl_close($ch);
return DataReturn('curl出错错误码['.$error.']', -1);
}
}
/**
* 自定义成功返回内容
* @author Devil
* @blog http://gong.gg/
* @version 1.0.0
* @date 2020-07-01
* @desc description
*/
public function SuccessReturn()
{
return '{"err_no": 0,"err_tips": "success"}';
}
}
?>