手机微信内支付

<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta content="width=device-width, initial-scale=1.0, minimum-scale=1.0, maximum-scale=1.0, user-scalable=no" name="viewport">
<script type="text/javascript" src="http://res.wx.qq.com/open/js/jweixin-1.2.0.js"></script>
<?php 
//微信内支付，需要从c.html页面跳转至此；
$appid = "#";
$secret = "#";

$code = $_GET["code"];

$state = $_GET["state"];

if(!isset($_COOKIE['openid'])){
	//获取用户openid地址
	$geturl = "https://api.weixin.qq.com/sns/oauth2/access_token?appid=$appid&secret=$secret&code=$code&grant_type=authorization_code";

	$openid = json_decode(file_get_contents($geturl))->openid;

	setcookie("openid","$openid",time()+3600);
}else{
	$openid = $_COOKIE['openid'];
}


?>

<?php
include_once "jssdk.php";
//生成随机字符串
function getNonceNum($numLen=16){
    $chars = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
    $str = "";
    for ($i = 0; $i < $numLen; $i++) {
      $str .= substr($chars, mt_rand(0, strlen($chars) - 1), 1);
    }
    return $str;
}

//获取用户ip地址
function get_client_ip(){
    $cip = "unknown";
    if($_SERVER['REMOTE_ADDR']){
        $cip = $_SERVER['REMOTE_ADDR'];
    }elseif(getenv("REMOTE_ADDR")){
        $cip = getenv("REMOTE_ADDR");
    }
    return $cip;
}

$getNonceNumstring = getNonceNum();
$out_trade_no =  date("Ymd").getNonceNum();
$ip = get_client_ip();

$param['appid']             = "$appid";
$param['mch_id']            = "#";
$param['nonce_str']         = $getNonceNumstring;
$param['body']              = "支付";
$param['out_trade_no']      = $out_trade_no;
$param['total_fee']         = 1;
$param['spbill_create_ip']  = $ip;
$param['notify_url']        = "http://www.#";
$param['trade_type']        = "JSAPI";
$param['openid']        	= "$openid";

//字典排序
ksort($param);

$sign_raw = "";
foreach($param as $k => $v){
    $sign_raw .= $k."=".$v."&";
}
$sign_raw .= "key=#";

//生成签名
$sign = strtoupper(md5($sign_raw));


$xml = <<<EOF
<xml>
<appid>$appid</appid>
<body>支付</body>
<mch_id>#</mch_id>
<nonce_str>$getNonceNumstring</nonce_str>
<notify_url>http://www.#</notify_url>
<out_trade_no>$out_trade_no</out_trade_no>
<spbill_create_ip>$ip</spbill_create_ip>
<total_fee>1</total_fee>
<trade_type>JSAPI</trade_type>
<openid>$openid</openid>
<sign>$sign</sign>
</xml>
EOF;

$url = "https://api.mch.weixin.qq.com/pay/unifiedorder";

//调用接口，返回xml数据包含跳转url；
$result = postXmlCurl($xml, $url);



//解析xml
$xml = simplexml_load_string($result);
$bigarr = array();

//循环生成数组
foreach($xml->children() as $child){
    $key =  $child->getName();
    $bigarr["$key"] = "$child";//必须加引号
}

print_r($bigarr);

$p = new Jssdk;
$singlepage = $p->getSignPackge();
print_r($singlepage);
$noncestr123 = $singlepage["nonceStr"];
$prepay_id = $bigarr["prepay_id"];
//页面计算签名
$pagearr = array(
	"appId"		=> "$appid",
	"timeStamp"	=> time(),
	"nonceStr"	=> "$noncestr123",
	"package"	=> "prepay_id=$prepay_id",
	"signType"	=> "MD5"
);

//字典排序
ksort($pagearr);

$sign_raw1 = "";
foreach($pagearr as $k => $v){
    $sign_raw1 .= $k."=".$v."&";
}
$sign_raw1 .= "key=#";

//生成签名
$signs = strtoupper(md5($sign_raw1));
print_r($pagearr);
echo $signs;
?>



<script type="text/javascript">

wx.config({
    debug: false, // 开启调试模式,调用的所有api的返回值会在客户端alert出来，若要查看传入的参数，可以在pc端打开，参数信息会通过log打出，仅在pc端时才会打印。
    appId: '#', // 必填，公众号的唯一标识
    timestamp: <?php echo $singlepage["timestamp"] ?>, // 必填，生成签名的时间戳
    nonceStr: '<?php echo $singlepage["nonceStr"] ?>', // 必填，生成签名的随机串
    signature: '<?php echo $singlepage["signature"] ?>',// 必填，签名
    jsApiList: ['chooseWXPay'] // 必填，需要使用的JS接口列表
});

wx.ready(function(){
    // config信息验证后会执行ready方法，所有接口调用都必须在config接口获得结果之后，config是一个客户端的异步操作，所以如果需要在页面加载时就调用相关接口，则须把相关接口放在ready函数中调用来确保正确执行。对于用户触发时才调用的接口，则可以直接调用，不需要放在ready函数中。
	
});

function pay(){
	wx.chooseWXPay({
		timestamp: <?php echo time() ?>, // 支付签名时间戳，注意微信jssdk中的所有使用timestamp字段均为小写。但最新版的支付后台生成签名使用的timeStamp字段名需大写其中的S字符
		nonceStr: '<?php echo $singlepage["nonceStr"]?>', // 支付签名随机串，不长于 32 位
		package: 'prepay_id=<?php echo $bigarr["prepay_id"]?>', // 统一支付接口返回的prepay_id参数值，提交格式如：prepay_id=***）
		signType: 'MD5', // 签名方式，默认为'SHA1'，使用新版支付需传入'MD5'
		paySign: '<?php echo $signs?>', // 支付签名
		success: function (res) {
			// 支付成功后的回调函数
			alert(res);
		}
	});
}

</script>
<h1 onclick="pay()">点我支付</h1>

<?php

function postXmlCurl($xml, $url, $useCert = false, $second = 30){        
    $ch = curl_init();
    //设置超时
    curl_setopt($ch, CURLOPT_TIMEOUT, $second);
    
    
    curl_setopt($ch,CURLOPT_URL, $url);
    if(stripos($url,"https://")!==FALSE){
        curl_setopt($ch, CURLOPT_SSLVERSION, CURL_SSLVERSION_TLSv1);
        curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
        curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE);
    }else{
        curl_setopt($ch,CURLOPT_SSL_VERIFYPEER,TRUE);
        curl_setopt($ch,CURLOPT_SSL_VERIFYHOST,2);//严格校验
    } 
    //设置header
    curl_setopt($ch, CURLOPT_HEADER, FALSE);
    //要求结果为字符串且输出到屏幕上
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE);

    if($useCert == true){
        //设置证书
        //使用证书：cert 与 key 分别属于两个.pem文件
        curl_setopt($ch,CURLOPT_SSLCERTTYPE,'PEM');
        curl_setopt($ch,CURLOPT_SSLCERT, "###.pem");
        curl_setopt($ch,CURLOPT_SSLKEYTYPE,'PEM');
        curl_setopt($ch,CURLOPT_SSLKEY, "###.pem");
        
        curl_setopt($ch, CURLOPT_CAINFO, "###.pem"); 
    }
    //post提交方式
    curl_setopt($ch, CURLOPT_POST, TRUE);
    curl_setopt($ch, CURLOPT_POSTFIELDS, $xml);
    //运行curl
    $data = curl_exec($ch);
    //返回结果
    if($data){
        curl_close($ch);
        return $data;
    } else { 
        $error = curl_errno($ch);
        curl_close($ch);
        echo "error";
    }
}