WeChat Mini Program Authorization Login Process Timing - Detailed Graphical Explanation

I am currently working on a WeChat applet development project. Scenario layout: APPs and WeChat mini programs with the same subject under the same WeChat open platform complete the same business. When users enter the app or WeChat mini program, they must obtain the user's unionid to confirm the current user identity and complete the login. The calling method of the mini program's "get user information" api (getUserInfo) has been greatly updated compared to before. It is very important to elegantly implement user authorization and login. The following is my implementation of the WeChat mini program authorization login process during development. The ideas and summary are shared below.

1. WeChat applet login process timing sequence

Instructions:

1. The applet calls wx.login( ) Get the temporary login credential code and send it back to the developer server

2. The developer server exchanges the code for the user's unique identifier openid and session key session_key.

3. The temporary login credential code can only be used once

What is openid?

Generate messages between followers and public accounts After interaction, the official account can obtain the follower's OpenID (encrypted WeChat ID, each user's OpenID for each official account is unique. For different official accounts, the same user's openid is different). ——WeChat public platform developer documentation

• The identification of ordinary users, unique to the current public account

• Different public accounts, the same user , openid is different

You can simply understand it as

openid = hash(uid + app_id)

What is unionid?

If the developer has multiple mobile applications, website applications, and public accounts (including mini programs), the user can be uniquely distinguished by unionid, because as long as they are mobile applications under the same WeChat open platform account , website applications and public accounts (including mini programs), the user's unionid is unique. In other words, for the same user, the unionid is the same for different applications under the same WeChat open platform. UnionID mechanism description

If a developer needs to unify user accounts among multiple mobile applications, website applications and public accounts, he needs to go to the WeChat open platform (open.weixin.qq.com) to bind the public account Then, the UnionID mechanism can be used to meet the above needs.

• One WeChat open platform account can have multiple mobile applications, website applications, public accounts and mini programs

• As long as it is the same WeChat For mobile applications, website applications and public accounts (including mini programs) under open platform accounts, the user's unionid is unique.

The user’s unique identifier on the open platform

You can simply understand it as:

unionid = hash(uid + 开放平台id)

Summary
WeChat has a unique openId for different users in different applications, but if you want to determine whether the users are the same user, you need to rely on unionid to distinguish. Generally, your own backend will have its own user table, and each user has a different userid. That is to say, the same user's applications of the same subject under the same WeChat open platform correspond to the same userid, unionid and different openid. So when a user logs in, we can only rely on the unionid returned to us by WeChat to determine whether it is the same user, and then associate it with our user table to get the corresponding userid.

2. How do WeChat mini programs obtain unionid?

Mini programs bound to a developer account can obtain UnionID through the following three methods.

1. Call the interface wx.getUserInfo to obtain the UnionID from the decrypted data. Note that this interface requires user authorization. Developers should properly handle the situation after the user refuses authorization.

2. If there is a public account with the same subject under the developer account, and the user has already followed the public account. Developers can obtain the user's UnionID directly through wx.login without the user's authorization again.

3. If there is a public account or mobile application of the same subject under the developer account, and the user has been authorized to log in to the public account or mobile application. Developers can also obtain the user's UnionID directly through wx.login without requiring the user to authorize again.

When the user meets conditions 2 and 3, the developer can directly obtain the user's unionid through wx.login, otherwise the interface must be calledwx.getUserInfo, extra attention needs to be paid to properly handling the situation where the user refuses authorization.

3. Login best practices

1. Call wx.login to get the code.

2. Use wx.getSetting to obtain the user's authorization status

• If the user has been authorized, directly call API wx.getUserInfo to obtain the user's latest Information;

• The user is not authorized. A button is displayed in the interface to prompt the user to log in. When the user clicks and authorizes, the user's latest information is obtained.

Pass the obtained user data to the backend together with the code returned by wx.login

Encapsulate ajax()

In real business scenarios, we hope that when users enter the mini program, they can browse the products normally without logging in, have a basic understanding of the mini program, and do not directly pop up the box Require user authorization, otherwise it will interfere with users and lead to the loss of new users. When users need to use some advanced functions and scenarios, ask users for authorization at this time, so that the probability of user authorization will be greatly increased.
Encapsulate the login logic with ajax
Process:

The meaning of encapsulation
No longer pay attention to whether the current interface requires login, whether the user has Authorization, all requests directly call ajax(), and complete all login and authorization processes when necessary. The entrance page of the mini program has been increased. When expanding your business, you only need to focus on business implementation.

Reference materials

• Mini program •Small story (4)——Get user information

• Get user basic information ( UnionID mechanism)

• UnionID mechanism description

Related recommendations:

WeChat Mini Program Development Document

Practical video tutorial on developing WeChat mini program

Video tutorial on developing WeChat mini program

The above is the detailed content of WeChat Mini Program Authorization Login Process Timing - Detailed Graphical Explanation. For more information, please follow other related articles on the PHP Chinese website!