xc-mall.git - Gitblit

			@@ -3,14 +3,19 @@
			import cc.mrbird.febs.common.properties.XcxProperties;
			import cc.mrbird.febs.common.utils.AppContants;
			import cc.mrbird.febs.common.utils.SpringContextHolder;
			import cc.mrbird.febs.mall.entity.MallInvoice;
			import cc.mrbird.febs.mall.entity.MallOrderInfo;
			import cc.mrbird.febs.mall.entity.MallOrderItem;
			import cc.mrbird.febs.mall.mapper.MallInvoiceMapper;
			import cc.mrbird.febs.mall.mapper.MallOrderInfoMapper;
			import cc.mrbird.febs.mall.mapper.MallOrderItemMapper;
			import cc.mrbird.febs.pay.model.FPCertificateVo;
			import cc.mrbird.febs.pay.model.FPCertificates;
			import cc.mrbird.febs.pay.model.FPEncryptCertificate;
			import cc.mrbird.febs.pay.service.WxFaPiaoService;
			import cc.mrbird.febs.pay.util.JCEUtil;
			import cc.mrbird.febs.pay.util.RandomStringGenerator;
			import cn.hutool.core.collection.CollUtil;
			import cn.hutool.core.util.ObjectUtil;
			import cn.hutool.json.JSONObject;
			import cn.hutool.json.JSONUtil;
			@@ -18,10 +23,7 @@
			import lombok.RequiredArgsConstructor;
			import lombok.extern.slf4j.Slf4j;
			import okhttp3.HttpUrl;
			import org.apache.commons.httpclient.HttpClient;
			import org.apache.commons.httpclient.methods.GetMethod;
			import org.apache.http.HttpEntity;
			import org.apache.http.HttpResponse;
			import org.apache.http.client.methods.CloseableHttpResponse;
			import org.apache.http.client.methods.HttpGet;
			import org.apache.http.client.methods.HttpPatch;
			@@ -56,6 +58,8 @@
			public class WxFaPiaoServiceImpl implements WxFaPiaoService {

			private final MallOrderInfoMapper mallOrderInfoMapper;
			private final MallOrderItemMapper mallOrderItemMapper;
			private final MallInvoiceMapper mallInvoiceMapper;

			private final XcxProperties xcxProperties = SpringContextHolder.getBean(XcxProperties.class);

			@@ -276,7 +280,7 @@
			}

			@Override
			public Map<String, Object> fapiaoCallBack(HttpServletRequest request, @RequestBody Map<String, Object> requestBody) throws IOException, NoSuchAlgorithmException, InvalidKeyException, SignatureException, ParseException {
			public Map<String, Object> fapiaoCallBack(HttpServletRequest request, @RequestBody Map<String, Object> requestBody){
			Map<String,Object> map = new HashMap<>();
			String signature = request.getHeader("Wechatpay-Signature");
			String timestamp = request.getHeader("Wechatpay-Timestamp");
			@@ -289,8 +293,27 @@
			log.info("头信息---随机字符：" + nonce);
			log.info("头信息---平台证书序列号：" + serial);
			log.info("获取到的body信息：" + body);
			//应对签名探测流量
			if(signature.contains("WECHATPAY/SIGNTEST")){
			map.put("code",500);
			map.put("message", "失败");
			return map;
			}
			//验签
			boolean signCheck = signCheck(timestamp, nonce, requestBody, signature);
			boolean signCheck = false;
			try {
			signCheck = signCheck(timestamp, nonce, requestBody, signature);
			} catch (NoSuchAlgorithmException e) {
			e.printStackTrace();
			} catch (SignatureException e) {
			e.printStackTrace();
			} catch (IOException e) {
			e.printStackTrace();
			} catch (InvalidKeyException e) {
			e.printStackTrace();
			} catch (ParseException e) {
			e.printStackTrace();
			}
			log.info("验签结果：" + signCheck);
			if (signCheck) {
			try {
			@@ -329,8 +352,57 @@
			log.info("微信电子发票回调接口....resource解密-JSONObject:"+parseObj);
			String fapiao_apply_id = parseObj.getStr("fapiao_apply_id");
			log.info("微信电子发票回调接口....resource解密-fapiao_apply_id:"+fapiao_apply_id);
			MallOrderInfo mallOrderInfo = mallOrderInfoMapper.selectByOrderNo(fapiao_apply_id);
			MallOrderInfo mallOrderInfo = mallOrderInfoMapper.selectBypayOrderNo(fapiao_apply_id);
			if(ObjectUtil.isEmpty(mallOrderInfo)){
			map.put("code",404);
			map.put("message", "订单不存在");
			return map;
			}

			if(ObjectUtil.isNotEmpty(mallOrderInfo)){
			//更新订单状态
			// mallOrderInfo.setIsInvoice(1);
			// mallOrderInfoMapper.updateById(mallOrderInfo);
			//获取用户的抬头信息
			String userInvoiceInfo = this.getUserInvoiceInfo(fapiao_apply_id);
			JSONObject userInvoiceInfoJson = JSONUtil.parseObj(userInvoiceInfo);
			//查看当前订单是否已经开具发票
			Long memberId = mallOrderInfo.getMemberId();
			String payOrderNo = mallOrderInfo.getPayOrderNo();
			List<MallInvoice> mallInvoices = mallInvoiceMapper.selectByFapiaoApplyIdAndMemberId(fapiao_apply_id, mallOrderInfo.getMemberId());
			if(CollUtil.isEmpty(mallInvoices)){
			MallInvoice mallInvoice = new MallInvoice();
			mallInvoice.setMemberId(memberId);
			mallInvoice.setFapiaoApplyId(payOrderNo);
			mallInvoice.setOrderNo(mallOrderInfo.getOrderNo());
			mallInvoice.setOrderId(mallOrderInfo.getId());
			mallInvoice.setStatus(mallOrderInfo.getStatus());
			mallInvoice.setAmount(mallOrderInfo.getAmount());
			List<MallOrderItem> mallOrderItemList = mallOrderItemMapper.selectListByOrderId(mallOrderInfo.getId());
			mallInvoice.setGoodsImg(mallOrderItemList.get(0).getSkuImage());
			mallInvoice.setState(1);
			mallInvoice.setType(userInvoiceInfoJson.getStr("type"));
			mallInvoice.setName(userInvoiceInfoJson.getStr("name"));
			mallInvoice.setTaxpayerId(userInvoiceInfoJson.getStr("taxpayer_id"));
			mallInvoice.setAddress(userInvoiceInfoJson.getStr("address"));
			mallInvoice.setTelephone(userInvoiceInfoJson.getStr("telephone"));
			mallInvoice.setBankName(userInvoiceInfoJson.getStr("bank_name"));
			mallInvoice.setBankAccount(userInvoiceInfoJson.getStr("bank_account"));
			mallInvoiceMapper.insert(mallInvoice);
			}else{
			MallInvoice mallInvoice = mallInvoices.get(0);
			if(2 != mallInvoice.getState()){
			mallInvoice.setState(1);
			mallInvoice.setType(userInvoiceInfoJson.getStr("type"));
			mallInvoice.setName(userInvoiceInfoJson.getStr("name"));
			mallInvoice.setTaxpayerId(userInvoiceInfoJson.getStr("taxpayer_id"));
			mallInvoice.setAddress(userInvoiceInfoJson.getStr("address"));
			mallInvoice.setTelephone(userInvoiceInfoJson.getStr("telephone"));
			mallInvoice.setBankName(userInvoiceInfoJson.getStr("bank_name"));
			mallInvoice.setBankAccount(userInvoiceInfoJson.getStr("bank_account"));
			mallInvoiceMapper.updateById(mallInvoice);
			}
			}
			//省略查询订单
			//此处处理业务
			map.put("code","SUCCESS");
			@@ -339,16 +411,56 @@
			return map;
			}
			}
			map.put("code","RESOURCE_NOT_EXISTS");
			map.put("code",404);
			map.put("message", "订单不存在");
			return map;
			}catch (Exception e) {
			e.printStackTrace();
			}
			}
			map.put("code","FAIL");
			map.put("code",500);
			map.put("message", "失败");
			return map;
			}
			/**
			* 获取用户的抬头信息
			*/
			@Override
			public String getUserInvoiceInfo(String fapiaoApplyId) throws IOException {

			//初始化请求参数
			Map<String, Object> params = new HashMap<>();
			params.put("scene","WITH_WECHATPAY");
			// params.put("fapiao_apply_id","4200002070202401175245187105");
			params.put("fapiao_apply_id",fapiaoApplyId);

			String baseUrl = "https://api.mch.weixin.qq.com";
			String canonicalUrl = "/v3/new-tax-control-fapiao/user-title";

			String urlparm = baseUrl+canonicalUrl;//有参数的get请求，加密是需要把参数加载进去URL
			List<BasicNameValuePair> parameters = new ArrayList<>();
			for (Map.Entry<String, Object> entry : params.entrySet()) {
			parameters.add(new BasicNameValuePair(entry.getKey(), entry.getValue().toString()));
			}
			StringBuilder dataparm = new StringBuilder();
			params.forEach((k, v) -> dataparm.append("&" + k + "=" + v));
			String string = dataparm.toString();
			if (!"".equals(string)) {
			urlparm = baseUrl+canonicalUrl + "?" + dataparm.substring(1);
			}
			PrivateKey privateKey = this.getPrivateKeyV3();
			String postStr = null;
			try {
			postStr = this.createAuthorization(
			"GET",
			urlparm,
			"",
			privateKey
			);
			} catch (NoSuchAlgorithmException e) {
			e.printStackTrace();
			}
			return this.sendGet(baseUrl+canonicalUrl, params, "WECHATPAY2-SHA256-RSA2048 "+postStr);
			}

			/**
			@@ -364,7 +476,12 @@
			* @throws IOException
			* @throws InvalidKeyException
			*/
			public boolean signCheck(String timestamp, String nonce, Map<String, Object> requestBody, String signature) throws NoSuchAlgorithmException, SignatureException, IOException, InvalidKeyException, ParseException {
			public boolean signCheck(String timestamp, String nonce, Map<String, Object> requestBody, String signature) throws
			NoSuchAlgorithmException,
			SignatureException,
			IOException,
			InvalidKeyException,
			ParseException {
			//构造验签名串
			String signatureStr = timestamp + "\n" + nonce + "\n" + com.alibaba.fastjson.JSONObject.toJSONString(requestBody) + "\n";
			// 加载SHA256withRSA签名器
			@@ -432,44 +549,49 @@
			}

			public static void main(String[] args) throws UnsupportedEncodingException, GeneralSecurityException {
			JCEUtil.removeCryptographyRestrictions();
			String body = "{\"id\":\"5fb7f522-466f-5c99-a325-0eb4001f1ec3\",\"create_time\":\"2024-01-17T15:38:33+08:00\",\"resource_type\":\"encrypt-resource\",\"event_type\":\"FAPIAO.USER_APPLIED\",\"summary\":\"用户已申请开票\",\"resource\":{\"original_type\":\"fapiao\",\"algorithm\":\"AEAD_AES_256_GCM\",\"ciphertext\":\"bBOs5WTUV1AhwiYSIUugaw9z4EHXxC28ZVsGHOppCNP4qpxYgnR+W+l983UyETmD/Wgu8ukJhe/xYkSsF947pgDP1ElTXC8MJA3lCc8NlsXQ1csPfWTS6A0XrxBoNMgwGEsYFo/7tPW/zDrEpzRZL/GgEwEtK6X1Y4Ci9IofzeI=\",\"associated_data\":\"fapiao\",\"nonce\":\"7a5dzuYqStef\"}}";
			JSONObject jsonObject = JSONUtil.parseObj(body);
			log.info("微信电子发票回调接口....解析请求体:"+jsonObject);

			String id = jsonObject.getStr("id");//可能是支付业务的回调数据
			String create_time = jsonObject.getStr("create_time");//可能是支付业务的回调数据
			String resource_type = jsonObject.getStr("resource_type");//可能是支付业务的回调数据
			String event_type = jsonObject.getStr("event_type");//可能是支付业务的回调数据
			String resource = jsonObject.getStr("resource");//可能是支付业务的回调数据
			log.info("微信电子发票回调接口....id:"+ id);
			log.info("微信电子发票回调接口....create_time:"+ create_time);
			log.info("微信电子发票回调接口....resource_type:"+ resource_type);
			log.info("微信电子发票回调接口....event_type:"+ event_type);
			log.info("微信电子发票回调接口....resource:"+ resource);

			if ("FAPIAO.USER_APPLIED".equals(event_type)//用户发票抬头填写完成类型：FAPIAO.USER_APPLIED
			&& !"encryptresource".equals(resource_type)) {//通知的资源数据类型，确认成功通知为encryptresource。
			//解密
			AesUtil aesUtil = new AesUtil("daL341aN5orDt13puXadsAf2rpuX12v3".getBytes("utf-8"));
			JSONObject jsonObjectResource = JSONUtil.parseObj(resource);
			// String original_type = jsonObjectResource.getStr("original_type");//可能是支付业务的回调数据
			// String algorithm = jsonObjectResource.getStr("algorithm");//可能是支付业务的回调数据
			String ciphertext = jsonObjectResource.getStr("ciphertext");//可能是支付业务的回调数据
			String associated_data = jsonObjectResource.getStr("associated_data");//可能是支付业务的回调数据
			String nonce = jsonObjectResource.getStr("nonce");//可能是支付业务的回调数据
			String decryptToString = aesUtil.decryptToString(
			associated_data.getBytes("utf-8"),
			nonce.getBytes("utf-8"),
			ciphertext);
			log.info("微信电子发票回调接口....resource解密:"+decryptToString);

			JSONObject parseObj = JSONUtil.parseObj(decryptToString);
			log.info("微信电子发票回调接口....resource解密-JSONObject:"+parseObj);
			String fapiao_apply_id = parseObj.getStr("fapiao_apply_id");
			log.info("微信电子发票回调接口....resource解密-fapiao_apply_id:"+fapiao_apply_id);

			String signature = "WECHATPAY/SIGNTEST/9WwfXW/noMdzDPcOrFD51Bf5YIThXLTtLCl5hoGlSfIBdY2UpE+5eHLs0XyF7y2cQc4OlzTzDDxSMTp/p/8ZenE2hMBaQjxVrdbTtrOLA1h13/WjCNaTr1URTqQ5+IF5bLCxAW8BmZ0jEqpmI/HYR3wdK8/7W91c1zfKODYgkvJzxFzd8OWi2GtELE5tLamkOLyb0GEcsGww2DUOypO5HjNyITgsy9R00w3OH92UInCD8Z6c5BAsQNySqFK8N52y38AlIWTtKROHmJtu+kHbt+nMOU0kbB5bZcPAptsnVYpp9KMmjMrmyjiKtHZb2TGIWiN/L+bgceyN3g==";
			if(signature.contains("WECHATPAY/SIGNTEST")){
			System.out.println(1);
			}

			// JCEUtil.removeCryptographyRestrictions();
			// String body = "{\"id\":\"5fb7f522-466f-5c99-a325-0eb4001f1ec3\",\"create_time\":\"2024-01-17T15:38:33+08:00\",\"resource_type\":\"encrypt-resource\",\"event_type\":\"FAPIAO.USER_APPLIED\",\"summary\":\"用户已申请开票\",\"resource\":{\"original_type\":\"fapiao\",\"algorithm\":\"AEAD_AES_256_GCM\",\"ciphertext\":\"bBOs5WTUV1AhwiYSIUugaw9z4EHXxC28ZVsGHOppCNP4qpxYgnR+W+l983UyETmD/Wgu8ukJhe/xYkSsF947pgDP1ElTXC8MJA3lCc8NlsXQ1csPfWTS6A0XrxBoNMgwGEsYFo/7tPW/zDrEpzRZL/GgEwEtK6X1Y4Ci9IofzeI=\",\"associated_data\":\"fapiao\",\"nonce\":\"7a5dzuYqStef\"}}";
			// JSONObject jsonObject = JSONUtil.parseObj(body);
			// log.info("微信电子发票回调接口....解析请求体:"+jsonObject);
			//
			// String id = jsonObject.getStr("id");//可能是支付业务的回调数据
			// String create_time = jsonObject.getStr("create_time");//可能是支付业务的回调数据
			// String resource_type = jsonObject.getStr("resource_type");//可能是支付业务的回调数据
			// String event_type = jsonObject.getStr("event_type");//可能是支付业务的回调数据
			// String resource = jsonObject.getStr("resource");//可能是支付业务的回调数据
			// log.info("微信电子发票回调接口....id:"+ id);
			// log.info("微信电子发票回调接口....create_time:"+ create_time);
			// log.info("微信电子发票回调接口....resource_type:"+ resource_type);
			// log.info("微信电子发票回调接口....event_type:"+ event_type);
			// log.info("微信电子发票回调接口....resource:"+ resource);
			//
			// if ("FAPIAO.USER_APPLIED".equals(event_type)//用户发票抬头填写完成类型：FAPIAO.USER_APPLIED
			// && !"encryptresource".equals(resource_type)) {//通知的资源数据类型，确认成功通知为encryptresource。
			// //解密
			// AesUtil aesUtil = new AesUtil("daL341aN5orDt13puXadsAf2rpuX12v3".getBytes("utf-8"));
			// JSONObject jsonObjectResource = JSONUtil.parseObj(resource);
			//// String original_type = jsonObjectResource.getStr("original_type");//可能是支付业务的回调数据
			//// String algorithm = jsonObjectResource.getStr("algorithm");//可能是支付业务的回调数据
			// String ciphertext = jsonObjectResource.getStr("ciphertext");//可能是支付业务的回调数据
			// String associated_data = jsonObjectResource.getStr("associated_data");//可能是支付业务的回调数据
			// String nonce = jsonObjectResource.getStr("nonce");//可能是支付业务的回调数据
			// String decryptToString = aesUtil.decryptToString(
			// associated_data.getBytes("utf-8"),
			// nonce.getBytes("utf-8"),
			// ciphertext);
			// log.info("微信电子发票回调接口....resource解密:"+decryptToString);
			//
			// JSONObject parseObj = JSONUtil.parseObj(decryptToString);
			// log.info("微信电子发票回调接口....resource解密-JSONObject:"+parseObj);
			// String fapiao_apply_id = parseObj.getStr("fapiao_apply_id");
			// log.info("微信电子发票回调接口....resource解密-fapiao_apply_id:"+fapiao_apply_id);
			//
			// }
			}

			}