Startseite Erkunden Hilfe
Anmelden
waibao
/
NN2023021801
2
0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Branch: master
Branches Tags
NN2023021801
/
app
/
api
/
services
/
Efalipay.php

Efalipay.php 14 KB
Permalink Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441 
  1. <?php
    2. 

  2. class Efalipay {
    3. 

  3.     //测试环境主扫接口路径
    4. 

  4.     protected $gateway = 'http://test-efps.epaylinks.cn/api/txs/pay/NativePayment';
    5. 

  5.     //测试环境单笔提现接口路径
    6. 

  6.     protected $withdrawalToCard = 'http://test-efps.epaylinks.cn/api/txs/pay/withdrawalToCard';
    7. 

  7.     //进件
    8. 

  8.     protected $apply_url = 'http://test-efps.epaylinks.cn/api/cust/SP/Merchant/apply';
    9. 

  9.     //生产环境接口路径
    10. 

  10.     //protected $gateway = 'https://efps.epaylinks.cn/api/txs/pay/NativePayment';
    11. 

  11.     //私钥文件路径
    12. 

  12.     public $rsaPrivateKeyFilePath = "D:\\certs\\user.pfx";
    13. 

  13.     //易票联公钥
    14. 

  14.     public $publicKeyFilePath = "D:\\certs\\efps.cer";
    15. 

  15.     //证书序列号
    16. 

  16.     public  $sign_no='562265003122220001';
    17. 

  17.     //证书密码
    18. 

  18.     public $password='Epaylinks@EFPS2018';
    19. 

  19.     //编码格式
    20. 

  20.     public $charset = "UTF-8";
    21. 

  21.     public  $signType = "RSA2";
    22. 

  22.     //商户号
    23. 

  23.     protected $config     = array(
    24. 

  24.         'customer_code'   => '562265003122220',
    25. 

  25.         'notify_url' => 'http://www.baidu.com',
    26. 

  26.         'return_url' => 'http://www.baidu.com'
    27. 

  27.     );
    28. 

  28. 

  29. 

  30.     public function check() {
    31. 

  31.         if (!$this->config['customer_code'] ) {
    32. 

  32.             E("支付设置有误!");
    33. 

  33.         }
    34. 

  34.         return true;
    35. 

  35.     }
    36. 

  36.     //测试主扫
    37. 

  37.     public function buildRequestForm() {
    38. 

  38.         $orderNo = "123456".date('YmdHis');
    39. 

  39. 

  40.         echo '订单号:'.$orderNo;
    41. 

  41.         echo '<br>';
    42. 

  42.         $client_ip = "127.0.0.1";
    43. 

  43.         if (getenv('HTTP_CLIENT_IP')) {
    44. 

  44.             $client_ip = getenv('HTTP_CLIENT_IP');
    45. 

  45.         } elseif (getenv('HTTP_X_FORWARDED_FOR')) {
    46. 

  46.             $client_ip = getenv('HTTP_X_FORWARDED_FOR');
    47. 

  47.         } elseif (getenv('REMOTE_ADDR')) {
    48. 

  48.             $client_ip = getenv('REMOTE_ADDR');
    49. 

  49.         } else {
    50. 

  50.             $client_ip = $_SERVER['REMOTE_ADDR'];
    51. 

  51.         }
    52. 

  52. 

  53.         $orderInfo=array();
    54. 

  54.         $orderInfo['Id'] = $orderNo;
    55. 

  55.         $orderInfo['businessType'] = '130001';
    56. 

  56.         $orderInfo['goodsList'] = array(array('name'=>'pay','number'=>'one','amount'=>1));
    57. 

  57.         //$orderInfo = json_encode($orderInfo);
    58. 

  58. 

  59.         $param = array(
    60. 

  60.             'outTradeNo' => $orderNo,
    61. 

  61.             'customerCode' => $this->config['customer_code'],
    62. 

  62.             'clientIp' => $client_ip,
    63. 

  63.             'orderInfo' => $orderInfo,
    64. 

  64.             'payMethod'  => 7,
    65. 

  65.             'payAmount' => 10,
    66. 

  66.             'payCurrency' => 'CNY',
    67. 

  67.             'channelType' =>'02',
    68. 

  68.             'notifyUrl' =>$this->config['notify_url'],
    69. 

  69.             'redirectUrl' =>$this->config['return_url'],
    70. 

  70.             'transactionStartTime' =>date('YmdHis'),
    71. 

  71.             'nonceStr' => 'pay'.rand(100,999),
    72. 

  72.             'version' => '3.0'
    73. 

  73.         );
    74. 

  74.         $sign = $this->sign(json_encode($param));
    75. 

  75. 

  76.         echo '发送的参数'.json_encode($param);
    77. 

  77.         echo '<br>签名值'.$sign;
    78. 

  78. 

  79.         $request = $this->http_post_json($this->gateway,json_encode($param),$sign);
    80. 

  80.         if($request && $request[0] == 200){
    81. 

  81.             //           $re_data = json_decode($request[1],true);
    82. 

  82.             //           if($re_data['returnCode'] == '0000'){
    83. 

  83.             //                $payurl = $re_data['codeUrl'];
    84. 

  84.             //         $sHtml="<script language='javascript' type='text/javascript'>window.location.href='{$payurl}';</script>";
    85. 

  85.             echo '<br>'.'获取到的参数:';
    86. 

  86.             //               echo $request[1];
    87. 

  87.             return $request[1];
    88. 

  88.             /*             }else{
    89. 

  89.              echo $request[1];
    90. 

  90.              exit;
    91. 

  91.              } */
    92. 

  92. 

  93.         }else{
    94. 

  94.             print_r($request);
    95. 

  95.             exit;
    96. 

  96.         }
    97. 

  97.         exit;
    98. 

  98.         //return "";
    99. 

  99.     }
    100. 

  100. 

  101.     //测试单笔提现
    102. 

  102.     public function withDraw() {
    103. 

  103.         $orderNo = "tx123".date('YmdHis');
    104. 

  104. 

  105.         echo '订单号:'.$orderNo;
    106. 

  106.         echo '<br>';
    107. 

  107.         $param = array(
    108. 

  108.             'outTradeNo' => $orderNo,
    109. 

  109.             'customerCode' => $this->config['customer_code'],
    110. 

  110.             'amount' => 10,
    111. 

  111.             'bankUserName' =>$this->public_encrypt('张三',$this->rsaPrivateKeyFilePath),
    112. 

  112.             'bankCardNo' => $this->public_encrypt('6214858888883338',$this->rsaPrivateKeyFilePath),
    113. 

  113.             'bankName' => '招商银行',
    114. 

  114.             'bankAccountType' =>'2',
    115. 

  115.             'payCurrency' => 'CNY',
    116. 

  116.             'notifyUrl' =>$this->config['notify_url'],
    117. 

  117.             'nonceStr' => 'pay'.rand(100,999),
    118. 

  118.         );
    119. 

  119.         $sign = $this->sign(json_encode($param));
    120. 

  120.         echo '发送的参数'.json_encode($param);
    121. 

  121.         echo '<br>签名值'.$sign;
    122. 

  122.         $request = $this->http_post_json($this->withdrawalToCard,json_encode($param),$sign);
    123. 

  123.         if($request && $request[0] == 200){
    124. 

  124.             echo '<br>'.'获取到的参数:';
    125. 

  125.             return $request[1];
    126. 

  126.         }else{
    127. 

  127.             print_r($request);
    128. 

  128.             exit;
    129. 

  129.         }
    130. 

  130.         exit;
    131. 

  131. 

  132.     }
    133. 

  133. 

  134.     //进件
    135. 

  135.     //发起进件
    136. 

  136.     public function apply(){
    137. 

  137.         $paper = '{"certificateName":"李四","contactPhone":"13531231222","email":"test1@test.cn","lawyerCertNo":"430481198104234557","lawyerCertType":"0","merchantType":"3","openBank":"中国银行","openingLicenseAccountPhoto":"https://www.epaylinks.cn/www/wimages/epl_logo.png","settleAccount":"李四","settleAccountNo":"6214830201234567","settleAccountType":"2","settleTarget":"2"}';
    138. 

  138.         $business = array(
    139. 

  139.             array(
    140. 

  140.                 "businessCode"=>"WITHDRAW_TO_SETTMENT_DEBIT",
    141. 

  141.                 "creditcardsEnabled"=>0,
    142. 

  142.                 "refundEnabled"=>1,
    143. 

  143.                 "refundFeePer"=>0,
    144. 

  144.                 "refundFeeRate"=>0,
    145. 

  145.                 "settleCycle"=>"D+0",
    146. 

  146.                 "stage"=>array(
    147. 

  147.                     array(
    148. 

  148.                         "amountFrom"=>0,
    149. 

  149.                         "feePer"=>50
    150. 

  150.                     )
    151. 

  151.                 )
    152. 

  152.             )
    153. 

  153.         );
    154. 

  154.         $param =array(
    155. 

  155.             'acqSpId'       =>  $this->config['customer_code'],
    156. 

  156.             'merchantName'  => "测试商户20211202",
    157. 

  157.             'acceptOrder'   => 0,
    158. 

  158.             'openAccount'   => 1,
    159. 

  159.             'paper' => $paper,
    160. 

  160.             'business' =>$business
    161. 

  161.         );
    162. 

  162.         $sign = $this->sign(json_encode($param));
    163. 

  163. 

  164. 

  165.         echo json_encode($param);
    166. 

  166. 

  167.         $res = $this->http_post_json($this->apply_url,json_encode($param),$sign);
    168. 

  168.         var_dump($res);
    169. 

  169.         die;
    170. 

  170.     }
    171. 

  171. 

  172. 

  173.     public function generateSign($params) {
    174. 

  174.         return $this->sign($this->getSignContent($params));
    175. 

  175.     }
    176. 

  176. 

  177.     public function rsaSign($params) {
    178. 

  178.         return $this->sign($this->getSignContent($params));
    179. 

  179.     }
    180. 

  180. 

  181.     protected function getSignContent($params) {
    182. 

  182.         ksort($params);
    183. 

  183. 

  184.         $stringToBeSigned = "";
    185. 

  185.         $i = 0;
    186. 

  186.         foreach ($params as $k => $v) {
    187. 

  187. 

  188.             if (false === $this->checkEmpty($v) && "@" != substr($v, 0, 1)) {
    189. 

  189.                 // 转换成目标字符集
    190. 

  190.                 $v = $this->characet($v, $this->charset);
    191. 

  191. 

  192.                 if ($i == 0) {
    193. 

  193.                     $stringToBeSigned .= "$k" . "=" . "$v";
    194. 

  194.                 } else {
    195. 

  195.                     $stringToBeSigned .= "&" . "$k" . "=" . "$v";
    196. 

  196.                 }
    197. 

  197. 

  198.                 $i++;
    199. 

  199.             }
    200. 

  200.         }
    201. 

  201. 

  202.         unset ($k, $v);
    203. 

  203. 

  204.         return $stringToBeSigned;
    205. 

  205.     }
    206. 

  206. 

  207.     protected function sign($data) {
    208. 

  208. 

  209.         $certs = array();
    210. 

  210.         openssl_pkcs12_read(file_get_contents($this->rsaPrivateKeyFilePath), $certs, $this->password); //其中password为你的证书密码
    211. 

  211. 

  212.         ($certs) or die('您使用的私钥格式错误,请检查RSA私钥配置');
    213. 

  213. 

  214.         openssl_sign($data, $sign, $certs['pkey'],OPENSSL_ALGO_SHA256);
    215. 

  215. 

  216.         $sign = base64_encode($sign);
    217. 

  217.         return $sign;
    218. 

  218.     }
    219. 

  219. 

  220.     /**
    221. 

  221.      * 校验$value是否非空
    222. 

  222.      *  if not set ,return true;
    223. 

  223.      *    if is null , return true;
    224. 

  224.      **/
    225. 

  225.     protected function checkEmpty($value) {
    226. 

  226.         if (!isset($value))
    227. 

  227.             return true;
    228. 

  228.         if ($value === null)
    229. 

  229.             return true;
    230. 

  230.         if (trim($value) === "")
    231. 

  231.             return true;
    232. 

  232. 

  233.         return false;
    234. 

  234.     }
    235. 

  235. 

  236.     /**
    237. 

  237.      * 针对notify_url验证消息是否是支付宝发出的合法消息
    238. 

  238.      * @return
    239. 

  239.      */
    240. 

  240.     public function verifyNotify($notify) {
    241. 

  241. 

  242.         $ispost = $notify['ispost'];
    243. 

  243.         unset($notify['ispost']);
    244. 

  244.         $info = array();
    245. 

  245. 

  246.         if($ispost){
    247. 

  247.             $param = array(
    248. 

  248.                 'amount' => intval($notify['amount']),
    249. 

  249.                 'procedureFee' => intval($notify['procedureFee']),
    250. 

  250.                 'payTime' => intval($notify['payTime']),
    251. 

  251.                 'settCycle' => $notify['settCycle'],
    252. 

  252.                 'settCycleInterval' => $notify['settCycleInterval'],
    253. 

  253.                 'outTradeNo' => $notify['outTradeNo'],
    254. 

  254.                 'transactionNo' => $notify['transactionNo'],
    255. 

  255.                 'customerCode' => $notify['customerCode'],
    256. 

  256.                 'payState' =>$notify['payState'],
    257. 

  257.                 'nonceStr' =>$notify['nonceStr']
    258. 

  258.             );
    259. 

  259. 

  260.             $fp = fopen(ROOT_PATH."/data/runtime/iossdk/verifyNotify1_log.txt","a");
    261. 

  261.             flock($fp, LOCK_EX) ;
    262. 

  262.             fwrite($fp,"执行日期:".strftime("%Y%m%d%H%M%S",time())."\n".json_encode($param)."\n");
    263. 

  263.             flock($fp, LOCK_UN);
    264. 

  264.             fclose($fp);
    265. 

  265. 

  266.             $sign = $notify['signature']['x-efps-sign'];
    267. 

  267. 

  268.             $fp = fopen(ROOT_PATH."/data/runtime/iossdk/verifyNotify2_log.txt","a");
    269. 

  269.             flock($fp, LOCK_EX) ;
    270. 

  270.             fwrite($fp,"执行日期:".strftime("%Y%m%d%H%M%S",time())."\n".$sign."\n");
    271. 

  271.             flock($fp, LOCK_UN);
    272. 

  272.             fclose($fp);
    273. 

  273. 

  274.             $rs = $this->rsaCheckV2(json_encode($param),$this->publicKeyFilePath,$sign);
    275. 

  275. 

  276.             if($rs && $notify['payState'] == 00){
    277. 

  277.                 $out_trade_no = $notify['outTradeNo'];
    278. 

  278.                 //支付宝交易号
    279. 

  279.                 $trade_no = $notify['transactionNo'];
    280. 

  280.                 //交易状态
    281. 

  281.                 $trade_status = $notify['payState'];
    282. 

  282. 

  283.                 $info['status']       = ($trade_status == 00) ? 1 : 0;
    284. 

  284.                 $info['trade_no']     = $trade_no;
    285. 

  285.                 $info['out_trade_no'] = $out_trade_no;
    286. 

  286.                 $info['total_amount'] = $notify['amount']/100;
    287. 

  287.                 $info['ispost'] = 1;
    288. 

  288.                 return $info;
    289. 

  289.             }
    290. 

  290.         }else{
    291. 

  291.             if($notify['payState'] == 00){
    292. 

  292.                 $orderid = $notify['outTradeNo'];
    293. 

  293.                 $info['status']       = 1;
    294. 

  294.                 $info['out_trade_no'] = $orderid;
    295. 

  295. 

  296.                 return $info;
    297. 

  297.             }
    298. 

  298.         }
    299. 

  299. 

  300. 

  301.         $info['status']       = 2;
    302. 

  302.         $info['out_trade_no'] = '';
    303. 

  303.         return $info;
    304. 

  304. 

  305.     }
    306. 

  306. 

  307.     public function rsaCheckV2($params, $rsaPublicKeyFilePath,$sign) {
    308. 

  308.         //$sign = $params['sign'];
    309. 

  309.         //$params['sign'] = null;
    310. 

  310. 

  311.         return $this->verify($params, $sign, $rsaPublicKeyFilePath);
    312. 

  312.     }
    313. 

  313. 

  314.     //使用易票联公钥验签    //返回的验签字段有中文需要加JSON_UNESCAPED_UNICODE才能验签通过
    315. 

  315.     //$data2 = json_encode($data, JSON_UNESCAPED_UNICODE);
    316. 

  316.     function verify($data, $sign, $rsaPublicKeyFilePath) {
    317. 

  317. 

  318.         //读取公钥文件
    319. 

  319.         $pubKey = file_get_contents($this->publicKeyFilePath);
    320. 

  320. 

  321.         $res = openssl_get_publickey($pubKey);
    322. 

  322. 

  323.         ($res) or die('RSA公钥错误。请检查公钥文件格式是否正确');
    324. 

  324.         //调用openssl内置方法验签,返回bool值
    325. 

  325. 

  326.         $result = (bool)openssl_verify($data, base64_decode($sign), $res, OPENSSL_ALGO_SHA256);
    327. 

  327. 

  328.         if(!$this->checkEmpty($this->publicKeyFilePath)) {
    329. 

  329.             //释放资源
    330. 

  330.             openssl_free_key($res);
    331. 

  331.         }
    332. 

  332. 

  333.         return $result;
    334. 

  334.     }
    335. 

  335. 

  336.     //使用易票联公钥加密
    337. 

  337.     function public_encrypt($data,$rsaPublicKeyFilePath)
    338. 

  338.     {
    339. 

  339.         //读取公钥文件
    340. 

  340.         $pubKey = file_get_contents($this->publicKeyFilePath);
    341. 

  341. 

  342.         $res = openssl_get_publickey($pubKey);
    343. 

  343. 

  344.         ($res) or die('RSA公钥错误。请检查公钥文件格式是否正确');
    345. 

  345. 

  346.         $crypttext = "";
    347. 

  347. 

  348.         openssl_public_encrypt($data,$crypttext, $res );
    349. 

  349. 

  350. 

  351.         if(!$this->checkEmpty($this->publicKeyFilePath)) {
    352. 

  352.             //释放资源
    353. 

  353.             openssl_free_key($res);
    354. 

  354.         }
    355. 

  355. 

  356.         return(base64_encode($crypttext));
    357. 

  357. 

  358.     }
    359. 

  359. 

  360.     /**
    361. 

  361.      * 转换字符集编码
    362. 

  362.      * @param $data
    363. 

  363.      * @param $targetCharset
    364. 

  364.      * @return string
    365. 

  365.      */
    366. 

  366.     function characet($data, $targetCharset) {
    367. 

  367. 

  368. 

  369.         if (!empty($data)) {
    370. 

  370.             $fileType = $this->charset;
    371. 

  371.             if (strcasecmp($fileType, $targetCharset) != 0) {
    372. 

  372. 

  373.                 $data = mb_convert_encoding($data, $targetCharset);
    374. 

  374.                 //				$data = iconv($fileType, $targetCharset.'//IGNORE', $data);
    375. 

  375.             }
    376. 

  376.         }
    377. 

  377. 

  378. 

  379.         return $data;
    380. 

  380.     }
    381. 

  381. 

  382.     protected function getParam($para) {
    383. 

  383.         $arg = "";
    384. 

  384.         while (list ($key, $val) = each($para)) {
    385. 

  385.             $arg.=$key . "=" . $val . "&";
    386. 

  386.         }
    387. 

  387.         //去掉最后一个&字符
    388. 

  388.         $arg = substr($arg, 0, -1);
    389. 

  389.         return $arg;
    390. 

  390.     }
    391. 

  391. 

  392.     /**
    393. 

  393.      * 获取远程服务器ATN结果,验证返回URL
    394. 

  394.      * @param $notify_id
    395. 

  395.      * @return
    396. 

  396.      * 验证结果集:
    397. 

  397.      * invalid命令参数不对 出现这个错误,请检测返回处理中partner和key是否为空
    398. 

  398.      * true 返回正确信息
    399. 

  399.      * false 请检查防火墙或者是服务器阻止端口问题以及验证时间是否超过一分钟
    400. 

  400.      */
    401. 

  401.     protected function getResponse2($Params) {
    402. 

  402.         $veryfy_url = $this->gateway . "?" . $Params;
    403. 

  403.         $responseTxt = $this->fsockOpen($veryfy_url);
    404. 

  404.         return $responseTxt;
    405. 

  405.     }
    406. 

  406. 

  407.     protected function http_post_json($url, $jsonStr,$sign)
    408. 

  408.     {
    409. 

  409.         $ch = curl_init();
    410. 

  410.         $headers = array(
    411. 

  411.             'Content-Type: application/json; charset=utf-8',
    412. 

  412.             'Content-Length: ' . strlen($jsonStr),
    413. 

  413.             'x-efps-sign-no:'.$this->sign_no,
    414. 

  414.             'x-efps-sign-type:SHA256withRSA',
    415. 

  415.             'x-efps-sign:'.$sign,
    416. 

  416.             'x-efps-timestamp:'.date('YmdHis'),
    417. 

  417.         );
    418. 

  418.         curl_setopt($ch, CURLOPT_POST, 1);
    419. 

  419.         curl_setopt($ch, CURLOPT_URL, $url);
    420. 

  420.         curl_setopt($ch, CURLOPT_POSTFIELDS, $jsonStr);
    421. 

  421.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    422. 

  422.         curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);  // 跳过检查
    423. 

  423.         curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);  // 跳过检查
    424. 

  424.         //curl_setopt($ch, CURLOPT_HEADER, true);
    425. 

  425.         curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);
    426. 

  426. 

  427.         $response = curl_exec($ch);
    428. 

  428. 

  429.         $httpCode = curl_getinfo($ch, CURLINFO_HTTP_CODE);
    430. 

  430. 

  431.         return array($httpCode, $response);
    432. 

  432.     }
    433. 

  433. 

  434. 

  435. }
    436. 

  436. 

  437. 

  438. $efalipay = new Efalipay();
    439. 

  439. 

  440. echo $efalipay->buildRequestForm();
    441. 

  441. ?>
    442.