/**
* 生成用于回复的数据.
*
* @return array
*/
public function buildForReply()
{
if (!method_exists($this, 'toReply')) {
throw new \Exception(__CLASS__ . '未实现此方法:toReply()');
}
$base = array('ToUserName' => $this->to, 'FromUserName' => $this->from, 'CreateTime' => time(), 'MsgType' => $this->getDefaultMessageType());
return XML::build(array_merge($base, $this->toReply()));
}
/**
* 获取订单结果.
*
* @param string $order_id 商户订单ID
* @param bool|false $force 是否忽略缓存强制更新
*
* @return Bag
*
* @throws Exception
* @throws \Supe\Wechat\Exception
*/
public function getTransaction($order_id, $force = false)
{
$params = array();
$params['appid'] = $this->appId;
$params['mch_id'] = $this->mchId;
$params['out_trade_no'] = $order_id;
$params['nonce_str'] = md5(uniqid(microtime()));
$signGenerator = new SignGenerator($params);
$signGenerator->onSortAfter(function (SignGenerator $that) {
$that->key = $this->mchKey;
});
$params['sign'] = $signGenerator->getResult();
$request = XML::build($params);
$http = new Http();
$response = $http->request(static::QUERYORDER_URL, Http::POST, $request);
if (empty($response)) {
throw new Exception('Get ORDER Failure:');
}
$transaction = XML::parse($response);
//返回签名数据校验
if (empty($transaction) || empty($transaction['sign'])) {
return false;
}
$sign = $transaction['sign'];
unset($transaction['sign']);
$signGenerator = new SignGenerator($transaction);
$signGenerator->onSortAfter(function (SignGenerator $that) {
$that->key = $this->mchKey;
});
if ($sign !== $signGenerator->getResult()) {
return false;
}
// 返回结果判断
if (isset($transaction['result_code']) && $transaction['result_code'] === 'FAIL') {
throw new Exception($transaction['err_code'] . ': ' . $transaction['err_code_des']);
}
if (isset($transaction['return_code']) && $transaction['return_code'] === 'FAIL') {
throw new Exception($transaction['return_code'] . ': ' . $transaction['return_msg']);
}
return $transactionInfo = new Bag($transaction);
}
/**
* 获取退款结果.
*
* @return array
*
* @throws Exception
*/
public function getResponse()
{
if (is_null($this->business)) {
throw new Exception('Business is required');
}
static::$params['appid'] = $this->business->appid;
static::$params['mch_id'] = $this->business->mch_id;
$this->checkParams();
$signGenerator = new SignGenerator(static::$params);
$signGenerator->onSortAfter(function (SignGenerator $that) {
$that->key = $this->business->mch_key;
});
static::$params['sign'] = $signGenerator->getResult();
$request = XML::build(static::$params);
//设置Http使用的证书
$options['sslcert_path'] = $this->business->getClientCert();
$options['sslkey_path'] = $this->business->getClientKey();
$http = new Http();
$response = $http->request(static::REFUNDORDER_URL, Http::POST, $request, $options);
if (empty($response)) {
throw new Exception('Get Refund Failure:');
}
$refundOrder = XML::parse($response);
if (isset($refundOrder['return_code']) && $refundOrder['return_code'] === 'FAIL') {
throw new Exception($refundOrder['return_code'] . ': ' . $refundOrder['return_msg']);
}
//返回签名数据校验
if (empty($refundOrder) || empty($refundOrder['sign'])) {
throw new Exception('param sign is missing or empty');
}
$sign = $refundOrder['sign'];
unset($refundOrder['sign']);
$signGenerator = new SignGenerator($refundOrder);
$signGenerator->onSortAfter(function (SignGenerator $that) {
$that->key = $this->business->mch_key;
});
if ($sign !== $signGenerator->getResult()) {
throw new Exception('check sign error');
}
//返回结果判断
if (isset($refundOrder['result_code']) && $refundOrder['result_code'] === 'FAIL') {
throw new Exception($refundOrder['err_code'] . ': ' . $refundOrder['err_code_des']);
}
if (isset($refundOrder['return_code']) && $refundOrder['return_code'] === 'FAIL') {
throw new Exception($refundOrder['return_code'] . ': ' . $refundOrder['return_msg']);
}
return $this->refundInfo = $refundOrder;
}
/**
* 检验消息的真实性,并且获取解密后的明文.
* <ol>
* <li>利用收到的密文生成安全签名,进行签名验证</li>
* <li>若验证通过,则提取xml中的加密消息</li>
* <li>对消息进行解密</li>
* </ol>.
*
* @param string $msgSignature 签名串,对应URL参数的msg_signature
* @param string $nonce 随机串,对应URL参数的nonce
* @param string $timestamp 时间戳 对应URL参数的timestamp
* @param string $postXML 密文,对应POST请求的数据
*
* @return array
*/
public function decryptMsg($msgSignature, $nonce, $timestamp, $postXML)
{
//提取密文
$array = XML::parse($postXML);
if (empty($array)) {
throw new Exception('Invalid xml.', self::ERROR_PARSE_XML);
}
$encrypted = $array['Encrypt'];
//验证安全签名
$signature = $this->getSHA1($this->token, $timestamp, $nonce, $encrypted);
if ($signature !== $msgSignature) {
throw new Exception('Invalid Signature.', self::ERROR_INVALID_SIGNATURE);
}
return XML::parse($this->decrypt($encrypted, $this->appId));
}
/**
* 初始化POST请求数据.
*
* @return Bag
*/
protected function prepareInput()
{
if ($this->input instanceof Bag) {
return;
}
if (version_compare(PHP_VERSION, '5.6.0', '<')) {
if (!empty($GLOBALS['HTTP_RAW_POST_DATA'])) {
$xmlInput = $GLOBALS['HTTP_RAW_POST_DATA'];
} else {
$xmlInput = file_get_contents('php://input');
}
if (empty($_REQUEST['echostr']) && empty($xmlInput) && !empty($_REQUEST['signature'])) {
throw new Exception('没有读取到消息 XML,请在 php.ini 中打开 always_populate_raw_post_data=On', 500);
}
} else {
$xmlInput = file_get_contents('php://input');
}
$input = XML::parse($xmlInput);
if (!empty($_REQUEST['encrypt_type']) && $_REQUEST['encrypt_type'] === 'aes') {
$this->security = true;
$input = $this->getCrypt()->decryptMsg($_REQUEST['msg_signature'], $_REQUEST['nonce'], $_REQUEST['timestamp'], $xmlInput);
}
$this->input = new Bag(array_merge($_REQUEST, (array) $input));
}
/**
* 查询红包信息.
*
* @param string $mchBillNumber
*
* @return array
*/
public function query($mchBillNumber)
{
if (empty($mchBillNumber)) {
throw new Exception('mch_id is required');
}
$param['mch_billno'] = $mchBillNumber;
$param['nonce_str'] = uniqid('pre_');
$param['mch_id'] = $this->business->mch_id;
$param['appid'] = $this->business->appid;
$param['bill_type'] = 'MCHT';
$signGenerator = new SignGenerator($param);
$me = $this;
$signGenerator->onSortAfter(function (SignGenerator $that) use($me) {
$that->key = $me->business->mch_key;
});
$sign = $signGenerator->getResult();
$param['sign'] = $sign;
$request = XML::build($param);
//设置Http使用的证书
$options['sslcert_path'] = $this->business->getClientCert();
$options['sslkey_path'] = $this->business->getClientKey();
$http = new Http();
$response = $http->request(static::API_QUERY, Http::POST, $request, $options);
if (empty($response)) {
throw new Exception('Get LuckMoneyInfo failed.');
}
$result = XML::parse($response);
return $result;
}
/**
* 获取统一下单结果.
*
* @param bool|false $force 是否忽略缓存强制更新
*
* @return array
*
* @throws Exception
* @throws \Supe\Wechat\Exception
*/
public function getResponse($force = false)
{
if (is_null($this->business)) {
throw new Exception('Business is required');
}
if (is_null($this->order)) {
throw new Exception('Order is required');
}
if ($this->unifiedOrder !== null && $force === false) {
return $this->unifiedOrder;
}
$params = $this->order->toArray();
$params['appid'] = $this->business->appid;
$params['mch_id'] = $this->business->mch_id;
$signGenerator = new SignGenerator($params);
$me = $this;
$signGenerator->onSortAfter(function (SignGenerator $that) use($me) {
$that->key = $me->business->mch_key;
});
$params['sign'] = $signGenerator->getResult();
$request = XML::build($params);
$http = new Http();
$response = $http->request(static::UNIFIEDORDER_URL, Http::POST, $request);
if (empty($response)) {
throw new Exception('Get UnifiedOrder Failure:');
}
$unifiedOrder = XML::parse($response);
if (isset($unifiedOrder['result_code']) && $unifiedOrder['result_code'] === 'FAIL') {
throw new Exception($unifiedOrder['err_code'] . ': ' . $unifiedOrder['err_code_des']);
}
if (isset($unifiedOrder['return_code']) && $unifiedOrder['return_code'] === 'FAIL') {
throw new Exception($unifiedOrder['return_code'] . ': ' . $unifiedOrder['return_msg']);
}
return $this->unifiedOrder = $unifiedOrder;
}
/**
* 回复消息, 如果不回复, 微信会一直发送请求到notify_url.
*
* @param string $code
* @param string $msg
*
* @return string
*/
public function reply($code = 'SUCCESS', $msg = 'OK')
{
$params = array('return_code' => $code, 'return_msg' => $msg);
return XML::build($params);
}