Inicio Explorar Axuda
Rexistro Iniciar sesión
chenhao
/
yuan
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: 55399a9a55
Ramas Etiquetas
yuan
/
application
/
api
/
controller
/
WeChat.php

WeChat.php 7.2 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286 
  1. <?php
    2. 

  2. 

  3. namespace app\api\controller;
    4. 

  4. 

  5. use app\common\controller\Api;
    6. 

  6. 

  7. /**
    8. 

  8.  * 政策集锦
    9. 

  9.  */
    10. 

  10. class WeChat extends Api
    11. 

  11. {
    12. 

  12. 

  13.     //微信授权配置信息
    14. 

  14. 

  15.     private $wechat_config = [
    16. 

  16. 

  17.         'appid' => 'wxe02aa578255f9184 ',
    18. 

  18. 

  19.         'appsecret' => '39ec8add0b8d4ed794e9cb330a334538',
    20. 

  20. 

  21.     ];
    22. 

  22. 

  23. 

  24.     public function __construct()
    25. 

  25.     {
    26. 

  26. 

  27.         $this->wechat_config = $this->wechatConfig();
    28. 

  28. 

  29.     }
    30. 

  30. 

  31.     /**
    32. 

  32.      * 获取秘钥配置
    33. 

  33.      * @return [type] 数组
    34. 

  34.      */
    35. 

  35. 

  36.     public function wechatConfig()
    37. 

  37.     {
    38. 

  38. 

  39. //        $wechat_config = array_merge($this->wechat_config, config('wechat.oauth'));
    40. 

  40.         $wechat_config = $this->wechat_config;
    41. 

  41. 

  42.         return $wechat_config;
    43. 

  43. 

  44.     }
    45. 

  45. 

  46.     /**
    47. 

  47.      * 获取openid
    48. 

  48.      * @return string|mixed
    49. 

  49.      */
    50. 

  50. 

  51.     public function getUserAccessUserInfo($code = "")
    52. 

  52. 

  53.     {
    54. 

  54. 

  55. 

  56.         if (empty($code)) {
    57. 

  57. 

  58.             $baseUrl = request()->url(true);
    59. 

  59. 

  60.             $url = $this->getSingleAuthorizeUrl($baseUrl, "123");
    61. 

  61. 

  62.             Header("Location: $url");
    63. 

  63. 

  64.             exit();
    65. 

  65. 

  66.         } else {
    67. 

  67. 

  68.             $access_token = $this->getSingleAccessToken($code);
    69. 

  69. 

  70.             return $this->getUserInfo($access_token);
    71. 

  71. 

  72.         }
    73. 

  73. 

  74.     }
    75. 

  75. 

  76.     /**
    77. 

  77.      * 微信授权链接
    78. 

  78.      * @param string $redirect_uri 要跳转的地址
    79. 

  79.      * @return [type]               授权链接
    80. 

  80.      */
    81. 

  81. 

  82.     public function getSingleAuthorizeUrl($redirect_url = "", $state = '1')
    83. 

  83.     {
    84. 

  84. 

  85.         $redirect_url = urlencode($redirect_url);
    86. 

  86. 

  87.         return "https://open.weixin.qq.com/connect/oauth2/authorize?appid=" . $this->wechat_config['appid'] . "&redirect_uri=" . $redirect_url . "&response_type=code&scope=snsapi_userinfo&state={$state}#wechat_redirect";
    88. 

  88. 

  89.     }
    90. 

  90. 

  91.     /**
    92. 

  92.      * 获取token
    93. 

  93.      * @return [type] 返回token
    94. 

  94.      */
    95. 

  95. 

  96.     public function getSingleAccessToken($code)
    97. 

  97.     {
    98. 

  98. 

  99. 

  100.         $url = 'https://api.weixin.qq.com/sns/oauth2/access_token?appid=' . $this->wechat_config['appid'] . '&secret=' . $this->wechat_config['appsecret'] . '&code=' . $code . '&grant_type=client_credential';
    101. 

  101. 

  102. //        $appid = $this->wechat_config['appid'];
    103. 

  103. //        $secret = "39ec8add0b8d4ed794e9cb330a334538";
    104. 

  104. //        echo $secret;die;
    105. 

  105. //        $url = "https://api.weixin.qq.com/cgi-bin/token?grant_type=client_credential&appid=$appid&secret=$secret";
    106. 

  106. //        dump($url);die;
    107. 

  107.         $access_token = $this->https_request($url);
    108. 

  108.         dump($access_token);die;
    109. 

  109.         return $access_token;
    110. 

  110. 

  111.     }
    112. 

  112. 

  113. 

  114.     /**
    115. 

  115.      * 发送curl请求
    116. 

  116.      * @param $url string
    117. 

  117.      * @param return array|mixed
    118. 

  118.      */
    119. 

  119. 

  120.     public function https_request($url)
    121. 

  121. 

  122.     {
    123. 

  123. 

  124.         $curl = curl_init();
    125. 

  125. 

  126.         curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
    127. 

  127. 

  128.         curl_setopt($curl, CURLOPT_URL, $url);
    129. 

  129. 

  130.         curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
    131. 

  131. 

  132.         $AjaxReturn = curl_exec($curl);
    133. 

  133. dump($AjaxReturn);die;
    134. 

  134.         //获取access_token和openid,转换为数组
    135. 

  135. 

  136.         $data = json_decode($AjaxReturn, true);
    137. 

  137. 

  138.         curl_close($curl);
    139. 

  139. 

  140.         return $data;
    141. 

  141. 

  142.     }
    143. 

  143. 

  144.     /**
    145. 

  145.      * @explain
    146. 

  146.      * 通过code获取用户openid以及用户的微信号信息
    147. 

  147.      * @return array|mixed
    148. 

  148.      * @remark
    149. 

  149.      * 获取到用户的openid之后可以判断用户是否有数据,可以直接跳过获取access_token,也可以继续获取access_token
    150. 

  150.      * access_token每日获取次数是有限制的,access_token有时间限制,可以存储到数据库7200s. 7200s后access_token失效
    151. 

  151.      **/
    152. 

  152. 

  153.     public function getUserInfo($access_token = [])
    154. 

  154. 

  155.     {
    156. 

  156. 

  157.         if (!$access_token) {
    158. 

  158. 

  159.             return [
    160. 

  160. 

  161.                 'code' => 0,
    162. 

  162. 

  163.                 'msg' => '微信授权失败',
    164. 

  164. 

  165.             ];
    166. 

  166. 

  167.         }
    168. 

  168. 

  169.         $userinfo_url = 'https://api.weixin.qq.com/sns/userinfo?access_token=' . $access_token['access_token'] . '&openid=' . $access_token['openid'] . '&lang=zh_CN';
    170. 

  170. 

  171.         $userinfo_json = $this->https_request($userinfo_url);
    172. 

  172. 

  173. 

  174.         //获取用户的基本信息,并将用户的唯一标识保存在session中
    175. 

  175. 

  176.         if (!$userinfo_json) {
    177. 

  177. 

  178.             return [
    179. 

  179. 

  180.                 'code' => 0,
    181. 

  181. 

  182.                 'msg' => '获取用户信息失败!',
    183. 

  183. 

  184.             ];
    185. 

  185. 

  186.         }
    187. 

  187. 

  188.         return $userinfo_json;
    189. 

  189. 

  190.     }
    191. 

  191.     /**
    192. 

  192.      * 发送HTTP请求方法
    193. 

  193.      * @param  string $url    请求URL
    194. 

  194.      * @param  array  $params 请求参数
    195. 

  195.      * @param  string $method 请求方法GET/POST
    196. 

  196.      * @return array  $data   响应数据
    197. 

  197.      */
    198. 

  198.     function httpCurl($url, $params, $method = 'POST', $header = array(), $multi = false){
    199. 

  199.         date_default_timezone_set('PRC');
    200. 

  200.         $opts = array(
    201. 

  201.             CURLOPT_TIMEOUT        => 30,
    202. 

  202.             CURLOPT_RETURNTRANSFER => 1,
    203. 

  203.             CURLOPT_SSL_VERIFYPEER => false,
    204. 

  204.             CURLOPT_SSL_VERIFYHOST => false,
    205. 

  205.             CURLOPT_HTTPHEADER     => $header,
    206. 

  206.             CURLOPT_COOKIESESSION  => true,
    207. 

  207.             CURLOPT_FOLLOWLOCATION => 1,
    208. 

  208.             CURLOPT_COOKIE         =>session_name().'='.session_id(),
    209. 

  209.         );
    210. 

  210.         /* 根据请求类型设置特定参数 */
    211. 

  211.         switch(strtoupper($method)){
    212. 

  212.             case 'GET':
    213. 

  213.                 // $opts[CURLOPT_URL] = $url . '?' . http_build_query($params);
    214. 

  214.                 // 链接后拼接参数  &  非?
    215. 

  215.                 $opts[CURLOPT_URL] = $url . '?' . http_build_query($params);
    216. 

  216.                 break;
    217. 

  217.             case 'POST':
    218. 

  218.                 //判断是否传输文件
    219. 

  219.                 $params = $multi ? $params : http_build_query($params);
    220. 

  220.                 $opts[CURLOPT_URL] = $url;
    221. 

  221.                 $opts[CURLOPT_POST] = 1;
    222. 

  222.                 $opts[CURLOPT_POSTFIELDS] = $params;
    223. 

  223.                 break;
    224. 

  224.             default:
    225. 

  225.                 throw new Exception('不支持的请求方式!');
    226. 

  226.         }
    227. 

  227.         /* 初始化并执行curl请求 */
    228. 

  228.         $ch = curl_init();
    229. 

  229.         curl_setopt_array($ch, $opts);
    230. 

  230.         $data  = curl_exec($ch);
    231. 

  231.         $error = curl_error($ch);
    232. 

  232.         curl_close($ch);
    233. 

  233.         if($error) throw new Exception('请求发生错误:' . $error);
    234. 

  234.         return  $data;
    235. 

  235.     }
    236. 

  236.     /**
    237. 

  237.      * 微信信息解密
    238. 

  238.      * @param  string  $appid  小程序id
    239. 

  239.      * @param  string  $sessionKey 小程序密钥
    240. 

  240.      * @param  string  $encryptedData 在小程序中获取的encryptedData
    241. 

  241.      * @param  string  $iv 在小程序中获取的iv
    242. 

  242.      * @return array 解密后的数组
    243. 

  243.      */
    244. 

  244.     function decryptData( $appid , $sessionKey, $encryptedData, $iv ){
    245. 

  245.         $OK = 0;
    246. 

  246.         $IllegalAesKey = -41001;
    247. 

  247.         $IllegalIv = -41002;
    248. 

  248.         $IllegalBuffer = -41003;
    249. 

  249.         $DecodeBase64Error = -41004;
    250. 

  250. 

  251.         if (strlen($sessionKey) != 24) {
    252. 

  252.             return $IllegalAesKey;
    253. 

  253.         }
    254. 

  254.         $aesKey=base64_decode($sessionKey);
    255. 

  255. 

  256.         if (strlen($iv) != 24) {
    257. 

  257.             return $IllegalIv;
    258. 

  258.         }
    259. 

  259.         $aesIV=base64_decode($iv);
    260. 

  260. 

  261.         $aesCipher=base64_decode($encryptedData);
    262. 

  262. 

  263.         $result=openssl_decrypt( $aesCipher, "AES-128-CBC", $aesKey, 1, $aesIV);
    264. 

  264.         $dataObj=json_decode( $result );
    265. 

  265.         if( $dataObj  == NULL )
    266. 

  266.         {
    267. 

  267.             return $IllegalBuffer;
    268. 

  268.         }
    269. 

  269.         if( $dataObj->watermark->appid != $appid )
    270. 

  270.         {
    271. 

  271.             return $DecodeBase64Error;
    272. 

  272.         }
    273. 

  273.         $data = json_decode($result,true);
    274. 

  274. 

  275.         return $data;
    276. 

  276.     }
    277. 

  277. 

  278.     /**
    279. 

  279.      * 请求过程中因为编码原因+号变成了空格
    280. 

  280.      * 需要用下面的方法转换回来
    281. 

  281.      */
    282. 

  282.     function define_str_replace($data)
    283. 

  283.     {
    284. 

  284.         return str_replace(' ','+',$data);
    285. 

  285.     }
    286. 

  286. }
    287.