WeChat applet filling pitfalls PHP development IIS7

This article mainly introduces in detail the WeChat applet to fill in the pitfalls of PHP development IIS7, which has a certain reference value. Interested friends can refer to

I worked on a mall applet for seven days. , big head but big butt, incomplete documentation, you have to explore everything by yourself

About after going online, it must be based on https, and at the same timeThe version is greater than 1.2, you can do it on Alibaba Cloud To apply for a free CA certificate, there are a lot of tutorials on the Internet. You can apply for it through personal testing on 2018.4.16, but you have to click randomly in the navigation to apply for the certificate and click on the free CA certificate

windows 2008 r2 through Windows Power To upgrade the version to 1.2 or above, there are a lot of tutorials on the Internet

The following mainly talks about the pitfalls encountered during development

1: First log in pit

Get session_key and openid

https://developers.weixin.qq.com/miniprogram/dev/api/api-login.html

Front-endCode

wx.login({
  success: (loginRes) =>  
  { 
    loginRes.code
  }
})

Go to the server through the obtained code. Why go to the server instead of completing it in the front-end?

There is a passage in the official document:

The session key session_key is the key for encrypting and signing user data. In order to ensure the application's own data security, the developer server should not deliver the session key to the mini program, nor should it provide this key to the outside world.

The server-side php obtains the session_key and openid through https://api.weixin.qq.com/sns/jscode2session

As for the user's avatar nickname, etc., it can be obtained through the front-end The wx.getUserInfo interface gets

In order to prevent the data from being tampered with , WeChat officially provides an encryptedData return value, which is # provided in various languages ​​​​on the following page. ##ServerUnlocked by algorithm

https://developers.weixin.qq.com/miniprogram/dev/api/signature.html?t=20161122

1: Payment Pit

I want to praise the WeChat official for this. The document is really messy. There is a page here and a page there, especially in the last step

Payment verification signature failed, it is definitely a case problem, you need to proofread it repeatedly. For example, an appId is appid everywhere, but it needs to be capitalized here. I will post the php around the pit# below. ##Code, if you are unsure, the official provides an online verificationhttps://pay.weixin.qq.com/wiki/tools/signverify/

Payment Steps

The user initiates payment on the front end ->Communicates with the server->The server submits parameters to the WeChat payment interface (https://api.mch.weixin.qq.com/pay/unifiedorder) to obtain prepay_id->The server generates verification parameters and sends them to the front-end->The front-end executes wx.requestPayment

Unified order document: https://pay.weixin.qq.com/wiki/doc/ api/wxa/wxa_api.php?chapter=9_1

wx.requestPayment document: https://developers.weixin.qq.com/miniprogram/dev/api/api-pay.html

After passing the unified ordering interface, be sure to

pay attention to capitalization

. I repeatedly checked the two wrong writing methods of appid and nonce_Str for a long time. Here is an example, and I will also provide Several convenient conversion functions for converting Array and pseudo-Query

$params=array(
        'appId'=>'',
        'package'=>'prepay_id='.'',
        'timeStamp'=>'',
        'signType'=>'MD5',
        'nonceStr'=>''
);

$params['paySign']=md5Sign($params);
unset($params['appId']);

Then pass $params to the front-end to call up the wx.requestPayment interface

The following are PHP-side developments, which I commonly use The account blocking function

/*
by 醉亦逝愁
md5Sign用于小程序服务端签名校验
*/
function md5Sign($params){ 		
    	ksort($params); 
	$stringA=arr2str($params);
	$stringSignTemp=$stringA.'&key='.'商户key(mch_key)';
	$sign=strtoupper(md5($stringSignTemp));
	return $sign;
} 
/*
by 醉亦逝愁
arr2str用于小程序服务端Array转伪Query
*/
function arr2str($array){
 
    $string = [];
 
    if($array && is_array($array)){
 
        foreach ($array as $key=> $value){
            $string[] = $key.'='.$value;
        }
    }
 
    return implode('&',$string);
}

/*
by 醉亦逝愁
arr2str用于小程序服务端Array转Xml
用途https://api.mch.weixin.qq.com/pay/unifiedorder
*/
function arr2xml($arr,$item='root'){        
    $dom = new DOMDocument("1.0"); 
    $item = $dom->createElement($item); 
    $dom->appendChild($item); 
    foreach ($arr as $key=>$val){ 
        $itemx = $dom->createElement(is_string($key)?$key:"item"); 
        $item->appendChild($itemx); 
        if (!is_array($val)){ 
            $text = $dom->createCDATASection($val); 
            $itemx->appendChild($text); 
        }else { 
            arrayToXml($val,$dom,$itemx); 
        } 
    } 
    return $dom->saveXML($item); 
}

##https://api. The xml returned by the mch.weixin.qq.com/pay/unifiedorder interface becomes Array

$xmlstring=simplexml_load_string($data, 'SimpleXMLElement', LIBXML_NOCDATA);
$data=get_object_vars($xmlstring);

through the following function. Others will be added later.

Related recommendations:

php WeChat public account development cash red envelope

,

The above is the detailed content of WeChat applet filling pitfalls PHP development IIS7. For more information, please follow other related articles on the PHP Chinese website!