-
Notifications
You must be signed in to change notification settings - Fork 145
/
client.go
388 lines (350 loc) · 8.41 KB
/
client.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
package wxpay
import (
"bytes"
"crypto/hmac"
"crypto/md5"
"crypto/sha256"
"crypto/tls"
"encoding/hex"
"errors"
"io/ioutil"
"net/http"
"sort"
"strings"
)
const bodyType = "application/xml; charset=utf-8"
type Client struct {
account *Account // 支付账号
signType string // 签名类型
httpConnectTimeoutMs int // 连接超时时间
httpReadTimeoutMs int // 读取超时时间
}
// 创建微信支付客户端
func NewClient(account *Account) *Client {
return &Client{
account: account,
signType: MD5,
httpConnectTimeoutMs: 2000,
httpReadTimeoutMs: 1000,
}
}
func (c *Client) SetHttpConnectTimeoutMs(ms int) {
c.httpConnectTimeoutMs = ms
}
func (c *Client) SetHttpReadTimeoutMs(ms int) {
c.httpReadTimeoutMs = ms
}
func (c *Client) SetSignType(signType string) {
c.signType = signType
}
func (c *Client) SetAccount(account *Account) {
c.account = account
}
// 向 params 中添加 appid、mch_id、nonce_str、sign_type、sign
func (c *Client) fillRequestData(params Params) Params {
params["appid"] = c.account.appID
params["mch_id"] = c.account.mchID
params["nonce_str"] = nonceStr()
params["sign_type"] = c.signType
params["sign"] = c.Sign(params)
return params
}
// https no cert post
func (c *Client) postWithoutCert(url string, params Params) (string, error) {
h := &http.Client{}
p := c.fillRequestData(params)
response, err := h.Post(url, bodyType, strings.NewReader(MapToXml(p)))
if err != nil {
return "", err
}
defer response.Body.Close()
res, err := ioutil.ReadAll(response.Body)
if err != nil {
return "", err
}
return string(res), nil
}
// https need cert post
func (c *Client) postWithCert(url string, params Params) (string, error) {
if c.account.certData == nil {
return "", errors.New("证书数据为空")
}
// 将pkcs12证书转成pem
cert := pkcs12ToPem(c.account.certData, c.account.mchID)
config := &tls.Config{
Certificates: []tls.Certificate{cert},
}
transport := &http.Transport{
TLSClientConfig: config,
DisableCompression: true,
}
h := &http.Client{Transport: transport}
p := c.fillRequestData(params)
response, err := h.Post(url, bodyType, strings.NewReader(MapToXml(p)))
if err != nil {
return "", err
}
defer response.Body.Close()
res, err := ioutil.ReadAll(response.Body)
if err != nil {
return "", err
}
return string(res), nil
}
// 生成带有签名的xml字符串
func (c *Client) generateSignedXml(params Params) string {
sign := c.Sign(params)
params.SetString(Sign, sign)
return MapToXml(params)
}
// 验证签名
func (c *Client) ValidSign(params Params) bool {
if !params.ContainsKey(Sign) {
return false
}
return params.GetString(Sign) == c.Sign(params)
}
// 签名
func (c *Client) Sign(params Params) string {
// 创建切片
var keys = make([]string, 0, len(params))
// 遍历签名参数
for k := range params {
if k != "sign" { // 排除sign字段
keys = append(keys, k)
}
}
// 由于切片的元素顺序是不固定,所以这里强制给切片元素加个顺序
sort.Strings(keys)
//创建字符缓冲
var buf bytes.Buffer
for _, k := range keys {
if len(params.GetString(k)) > 0 {
buf.WriteString(k)
buf.WriteString(`=`)
buf.WriteString(params.GetString(k))
buf.WriteString(`&`)
}
}
// 加入apiKey作加密密钥
buf.WriteString(`key=`)
buf.WriteString(c.account.apiKey)
var (
dataMd5 [16]byte
dataSha256 []byte
str string
)
switch c.signType {
case MD5:
dataMd5 = md5.Sum(buf.Bytes())
str = hex.EncodeToString(dataMd5[:]) //需转换成切片
case HMACSHA256:
h := hmac.New(sha256.New, []byte(c.account.apiKey))
h.Write(buf.Bytes())
dataSha256 = h.Sum(nil)
str = hex.EncodeToString(dataSha256[:])
}
return strings.ToUpper(str)
}
// 处理 HTTPS API返回数据,转换成Map对象。return_code为SUCCESS时,验证签名。
func (c *Client) processResponseXml(xmlStr string) (Params, error) {
var returnCode string
params := XmlToMap(xmlStr)
if params.ContainsKey("return_code") {
returnCode = params.GetString("return_code")
} else {
return nil, errors.New("no return_code in XML")
}
if returnCode == Fail {
return params, nil
} else if returnCode == Success {
if c.ValidSign(params) {
return params, nil
} else {
return nil, errors.New("invalid sign value in XML")
}
} else {
return nil, errors.New("return_code value is invalid in XML")
}
}
// 统一下单
func (c *Client) UnifiedOrder(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxUnifiedOrderUrl
} else {
url = UnifiedOrderUrl
}
xmlStr, err := c.postWithoutCert(url, params)
if err != nil {
return nil, err
}
return c.processResponseXml(xmlStr)
}
// 刷卡支付
func (c *Client) MicroPay(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxMicroPayUrl
} else {
url = MicroPayUrl
}
xmlStr, err := c.postWithoutCert(url, params)
if err != nil {
return nil, err
}
return c.processResponseXml(xmlStr)
}
// 退款
func (c *Client) Refund(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxRefundUrl
} else {
url = RefundUrl
}
xmlStr, err := c.postWithCert(url, params)
if err != nil {
return nil, err
}
return c.processResponseXml(xmlStr)
}
// 订单查询
func (c *Client) OrderQuery(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxOrderQueryUrl
} else {
url = OrderQueryUrl
}
xmlStr, err := c.postWithoutCert(url, params)
if err != nil {
return nil, err
}
return c.processResponseXml(xmlStr)
}
// 退款查询
func (c *Client) RefundQuery(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxRefundQueryUrl
} else {
url = RefundQueryUrl
}
xmlStr, err := c.postWithoutCert(url, params)
if err != nil {
return nil, err
}
return c.processResponseXml(xmlStr)
}
// 撤销订单
func (c *Client) Reverse(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxReverseUrl
} else {
url = ReverseUrl
}
xmlStr, err := c.postWithCert(url, params)
if err != nil {
return nil, err
}
return c.processResponseXml(xmlStr)
}
// 关闭订单
func (c *Client) CloseOrder(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxCloseOrderUrl
} else {
url = CloseOrderUrl
}
xmlStr, err := c.postWithoutCert(url, params)
if err != nil {
return nil, err
}
return c.processResponseXml(xmlStr)
}
// 对账单下载
func (c *Client) DownloadBill(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxDownloadBillUrl
} else {
url = DownloadBillUrl
}
xmlStr, err := c.postWithoutCert(url, params)
p := make(Params)
// 如果出现错误,返回XML数据
if strings.Index(xmlStr, "<") == 0 {
p = XmlToMap(xmlStr)
return p, err
} else { // 正常返回csv数据
p.SetString("return_code", Success)
p.SetString("return_msg", "ok")
p.SetString("data", xmlStr)
return p, err
}
}
func (c *Client) DownloadFundFlow(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxDownloadFundFlowUrl
} else {
url = DownloadFundFlowUrl
}
xmlStr, err := c.postWithCert(url, params)
p := make(Params)
// 如果出现错误,返回XML数据
if strings.Index(xmlStr, "<") == 0 {
p = XmlToMap(xmlStr)
return p, err
} else { // 正常返回csv数据
p.SetString("return_code", Success)
p.SetString("return_msg", "ok")
p.SetString("data", xmlStr)
return p, err
}
}
// 交易保障
func (c *Client) Report(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxReportUrl
} else {
url = ReportUrl
}
xmlStr, err := c.postWithoutCert(url, params)
if err != nil {
return nil, err
}
return c.processResponseXml(xmlStr)
}
// 转换短链接
func (c *Client) ShortUrl(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxShortUrl
} else {
url = ShortUrl
}
xmlStr, err := c.postWithoutCert(url, params)
if err != nil {
return nil, err
}
return c.processResponseXml(xmlStr)
}
// 授权码查询OPENID接口
func (c *Client) AuthCodeToOpenid(params Params) (Params, error) {
var url string
if c.account.isSandbox {
url = SandboxAuthCodeToOpenidUrl
} else {
url = AuthCodeToOpenidUrl
}
xmlStr, err := c.postWithoutCert(url, params)
if err != nil {
return nil, err
}
return c.processResponseXml(xmlStr)
}