Home > WeChat Applet > WeChat Development > Solution to error config:invalid signature

Solution to error config:invalid signature

Y2J
Release: 2017-05-11 11:47:38
Original
4474 people have browsed it

WeChat public platform, config:invalid signature keeps popping up this error solution
If it is an invalid signature signature error. It is recommended to check in the following order:
1. Confirm that the signature algorithm is correct, and you can use the http://mp.weixin.qq.com/debug/cgi-bin/sandbox?t=jsapisign page tool for verification.
2. Confirm that the nonceStr (standard capital S in camel case in js) and timestamp in the config are consistent with the corresponding noncestr and timestamp used in the signature.
3. Confirm that the url is the complete url of the page (please confirm on the current page alert(location.href.split('#')[0])), including the 'http(s)://' part, and ' ? ’, but does not include the part after ‘#’hash.
4. Confirm that the appid in config is consistent with the appid used to obtain jsapi_ticket.
5. Make sure to cache access_token and jsapi_ticket.
This is the key point:
Make sure that the URL you obtain for signing is obtained dynamically. For dynamic pages, please refer to the PHP implementation in the example code. If it is an html static page, the url is passed to the backend for signature through ajax on the front end. The front end needs to use js to get the link of the current page except the '#' hash part (available location.href.split('#') [0] obtain, and encodeURIComponent is required), because once the page is shared, the WeChat client will add other parameters at the end of your link. If the current link is not obtained dynamically, the signature of the shared page will fail.

Teach how to verify whether it is correct:
The method of dynamically obtaining the url is:

$protocol = (!empty($_SERVER[HTTPS]) && $_SERVER[HTTPS] !== off || $_SERVER[SERVER_PORT] == 443) ? "https://" : "http://";
$url = $protocol.$_SERVER[HTTP_HOST].$_SERVER[REQUEST_URI];
Copy after login

Steps:
First of all, you alert(location.href.split('#' )[0]);
Then you print out whether the dynamically obtained URL is the same as the address of your alert. They must be exactly the same, including capitalization.
If you find it is different, change it according to your needs. Anyway, it’s the same. The signature verification must pass.

【Related recommendations】

1. WeChat public account platform source code download

2. Alizi order system source code download

The above is the detailed content of Solution to error config:invalid signature. For more information, please follow other related articles on the PHP Chinese website!

Related labels:
source:php.cn
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Popular Tutorials
More>
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template