From bd0f33bb7cbcca5eec92325c350bc7fbc366b609 Mon Sep 17 00:00:00 2001
From: Administrator <15274802129@163.com>
Date: Tue, 23 Jun 2026 21:04:10 +0800
Subject: [PATCH] refactor(pay): 优化LWPAY签名逻辑，使用字段白名单确保安全

---
 src/main/java/cc/mrbird/febs/pay/service/impl/WxFaPiaoServiceImpl.java |    7 +++----
 1 files changed, 3 insertions(+), 4 deletions(-)

diff --git a/src/main/java/cc/mrbird/febs/pay/service/impl/WxFaPiaoServiceImpl.java b/src/main/java/cc/mrbird/febs/pay/service/impl/WxFaPiaoServiceImpl.java
index 341b6b6..44e0fba 100644
--- a/src/main/java/cc/mrbird/febs/pay/service/impl/WxFaPiaoServiceImpl.java
+++ b/src/main/java/cc/mrbird/febs/pay/service/impl/WxFaPiaoServiceImpl.java
@@ -2,7 +2,6 @@
 
 import cc.mrbird.febs.common.properties.XcxProperties;
 import cc.mrbird.febs.common.utils.AppContants;
-import cc.mrbird.febs.common.utils.SpringContextHolder;
 import cc.mrbird.febs.mall.entity.MallInvoice;
 import cc.mrbird.febs.mall.entity.MallOrderInfo;
 import cc.mrbird.febs.mall.entity.MallOrderItem;
@@ -60,8 +59,7 @@
     private final MallOrderInfoMapper mallOrderInfoMapper;
     private final MallOrderItemMapper mallOrderItemMapper;
     private final MallInvoiceMapper mallInvoiceMapper;
-
-    private final XcxProperties xcxProperties = SpringContextHolder.getBean(XcxProperties.class);
+    private final XcxProperties xcxProperties;
 
     @Override
     public String createAuthorization(String method, String canonicalUrl, String body, PrivateKey keyPair) throws UnsupportedEncodingException, NoSuchAlgorithmException {
@@ -431,7 +429,8 @@
         //初始化请求参数
         Map<String, Object> params = new HashMap<>();
         params.put("scene","WITH_WECHATPAY");
-        params.put("fapiao_apply_id","4200002070202401175245187105");
+//        params.put("fapiao_apply_id","4200002070202401175245187105");
+        params.put("fapiao_apply_id",fapiaoApplyId);
 
         String baseUrl = "https://api.mch.weixin.qq.com";
         String canonicalUrl = "/v3/new-tax-control-fapiao/user-title";

--
Gitblit v1.9.1