function callback($in, &$paymentId, &$money, &$message, &$tradeno) { $paymentId = $in['merVAR']; if (is_dir(dirname(__FILE__) . "/../../../home/upload/icbc/")) { $realpath = dirname(__FILE__) . "/../../../home/upload/icbc/"; } elseif (is_dir(dirname(__FILE__) . "/../../../cert/icbc/")) { $realpath = dirname(__FILE__) . "/../../../cert/icbc/"; } $merId = $this->getConf($paymentId, 'member_id'); $icbc = $realPath . $this->getConf($paymentId, 'icbcFile'); $cert = $realPath . $this->getConf($paymentId, 'certFile'); $key = $realPath . $this->getConf($paymentId, 'keyFile'); $keyPass = $this->getConf($paymentId, 'keyPass'); $notifyData = base64_decode($in['notifyData']); if (strtoupper(substr(PHP_OS, 0, 3)) == "WIN") { $bb = new COM('ICBCEBANKUTIL.B2CUtil'); $bb->init($icbc, $cert, $key, $keyPass); $isok = $bb->verifySignC($notifyData, strlen($notifyData), $in['signMsg'], strlen($in['signMsg'])); } else { $cmd = "/bin/icbc_verify '{$icbcpubcert}' '{$notifyData}' '{$signMsg}'"; $handle = popen($cmd, 'r'); $isok = fread($handle, 8); pclose($handle); } if ($isok == 0) { preg_match("/\\<amount\\>(.*)\\<\\/amount\\>.+\\<TranSerialNo\\>(.*)\\<\\/TranSerialNo\\>.+\\<tranStat\\>(.*)\\<\\/tranStat\\>/i", $notifyData, $rnt); $money = $rnt[1] / 100; $tradeno = $rnt[2]; if ($rnt[3] == 1) { $message = "支付成功!"; return PAY_SUCCESS; } else { $message = "支付失败!"; return PAY_FAILED; } } else { $message = "验证签名错误!"; return PAY_ERROR; } }
$aREQ["Language"] = 'ZH_CN'; echo "<form action=?action=go method=post target='go'><table>"; foreach ($aREQ as $k => $v) { echo "<tr><td>{$k}</td><td><input name=\"{$k}\" type=\"text\" value=\"{$v}\" size='100'/></td></tr>"; } echo "<tr><td clospan=2><input type=submit value=submit></td></tr><table>"; echo "</form>"; } if ($action == 'go') { //xml $tranData = "<?xml version=\"1.0\" encoding=\"GBK\" standalone=\"no\"?><B2CReq><interfaceName>" . $_REQUEST["interfaceName"] . "</interfaceName><interfaceVersion>" . $_REQUEST["interfaceVersion"] . "</interfaceVersion><orderInfo><orderDate>" . $_REQUEST["orderDate"] . "</orderDate><curType>" . $_REQUEST["curType"] . "</curType><merID>" . $_REQUEST["merID"] . "</merID><subOrderInfoList><subOrderInfo><orderid>" . $_REQUEST["orderid"] . "</orderid><amount>" . $_REQUEST["amount"] . "</amount><installmentTimes>" . $_REQUEST["installmentTimes"] . "</installmentTimes><merAcct>" . $_REQUEST["merAcct"] . "</merAcct><goodsID>" . $_REQUEST["goodsID"] . "</goodsID><goodsName>" . $_REQUEST["goodsName"] . "</goodsName><goodsNum>" . $_REQUEST["goodsNum"] . "</goodsNum><carriageAmt>" . $_REQUEST["carriageAmt"] . "</carriageAmt></subOrderInfo></subOrderInfoList></orderInfo><custom><verifyJoinFlag>" . $_REQUEST["verifyJoinFlag"] . "</verifyJoinFlag><Language>" . $_REQUEST["Language"] . "</Language></custom><message><merHint>" . $_REQUEST["merHint"] . "</merHint><remark1>" . $_REQUEST["remark1"] . "</remark1><remark2>" . $_REQUEST["remark2"] . "</remark2><merURL>" . $_REQUEST["merURL"] . "</merURL><merVAR>" . $_REQUEST["merVAR"] . "</merVAR></message></B2CReq>"; //商户签名数据BASE64编码 if (strtoupper(substr(PHP_OS, 0, 3)) == "WIN") { //windows系统,请先注册ICBCEBankUtil.dll,这个文件在文档包中的asp文件夹中 $icbcutil = new COM("ICBCEBANKUTIL.B2CUtil"); $rc = $icbcutil->init(MERCCERTFILE, MERCCERTFILE, MERCRRVIFILE, MERCPASSWORD); $merSignMsg = $icbcutil->signC($tranData, strlen($tranData)); } else { $cmd = "/bin/icbc_sign '" . MERCRRVIFILE . "' '" . MERCPASSWORD . "' '{$tranData}'"; $handle = popen($cmd, 'r'); $merSignMsg = fread($handle, 2096); pclose($handle); } // $fp = fopen(MERCCERTFILE, "rb"); $merCert = fread($fp, filesize(MERCCERTFILE)); $merCert = base64_encode($merCert); fclose($fp); // $tranData = base64_encode($tranData); //