微信公众账号第三方平台全网发布源码(java)- 实战测试通过
(更多资料,关注论坛:www.jeecg.org)
技术交流请加:289709451、287090836
package org.jeecgframework.web.rest.controller;
import java.io.BufferedReader;
import java.io.IOException;
import java.io.PrintWriter;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.util.Arrays;
import java.util.Calendar;
import java.util.Date;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import org.apache.commons.lang.StringUtils;
import org.dom4j.Document;
import org.dom4j.DocumentException;
import org.dom4j.DocumentHelper;
import org.dom4j.Element;
import org.jeecgframework.core.util.LogUtil;
import org.jeecgframework.core.util.ResourceUtil;
import org.jeecgframework.core.util.oConvertUtils;
import org.jeecgframework.web.system.service.SystemService;
import org.jeewx.api.core.exception.WexinReqException;
import org.jeewx.api.mp.aes.AesException;
import org.jeewx.api.mp.aes.WXBizMsgCrypt;
import org.jeewx.api.third.JwThirdAPI;
import org.jeewx.api.third.model.ApiComponentToken;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.RequestMapping;
import weixin.open.entity.base.WeixinOpenAccountEntity;
/**
* 微信公众账号第三方平台全网发布源码(java)
* @author: jeewx开源社区
* @网址:www.jeewx.com
* @论坛:www.jeecg.org
* @date 20150801
*/
@Controller
@RequestMapping("/openwx")
public class OpenwxController {
private final String APPID = "???";
/**
* 微信全网测试账号
*/
private final static String COMPONENT_APPID = "???";
private final String COMPONENT_APPSECRET = "???";
private final static String COMPONENT_ENCODINGAESKEY = "?????";
private final static String COMPONENT_TOKEN = "?????";
@Autowired
private SystemService systemService;
/**
* 授权事件接收
*
* @param request
* @param response
* @throws IOException
* @throws AesException
* @throws DocumentException
*/
@RequestMapping(value = "/event/authorize")
public void acceptAuthorizeEvent(HttpServletRequest request, HttpServletResponse response) throws IOException, AesException, DocumentException {
// LogUtil.info("微信第三方平台---------微信推送Ticket消息10分钟一次-----------"+ DataUtils.getDataString(DataUtils.yyyymmddhhmmss));
processAuthorizeEvent(request);
output(response, "success"); // 输出响应的内容。
}
@RequestMapping(value = "/authorCallback")
public void authorCallback(HttpServletRequest request, HttpServletResponse response) throws IOException, AesException, DocumentException {
String auth_code = request.getParameter("auth_code");
String expires_in = request.getParameter("auth_code");
}
/**
* 一键授权功能
* @param request
* @param response
* @throws IOException
* @throws AesException
* @throws DocumentException
*/
@RequestMapping(value = "/goAuthor")
public void goAuthor(HttpServletRequest request, HttpServletResponse response) throws IOException, AesException, DocumentException {
ApiComponentToken apiComponentToken = new ApiComponentToken();
apiComponentToken.setComponent_appid(COMPONENT_APPID);
apiComponentToken.setComponent_appsecret(COMPONENT_APPSECRET);
WeixinOpenAccountEntity entity = getWeixinOpenAccount(APPID);
apiComponentToken.setComponent_verify_ticket(entity.getTicket());
try {
String component_access_token = JwThirdAPI.getAccessToken(apiComponentToken);
//预授权码
String preAuthCode = JwThirdAPI.getPreAuthCode(COMPONENT_APPID, component_access_token);
String url = "https://mp.weixin.qq.com/cgi-bin/componentloginpage?component_appid="+COMPONENT_APPID+"&pre_auth_code="+preAuthCode+"&redirect_uri="+ResourceUtil.getConfigByName("domain")+"/rest/openwx/authorCallback";
response.sendRedirect(url);
} catch (WexinReqException e) {
e.printStackTrace();
}
}
@RequestMapping(value = "{appid}/callback")
public void acceptMessageAndEvent(HttpServletRequest request, HttpServletResponse response) throws IOException, AesException, DocumentException {
String msgSignature = request.getParameter("msg_signature");
//LogUtil.info("第三方平台全网发布-------------{appid}/callback-----------验证开始。。。。msg_signature="+msgSignature);
if (!StringUtils.isNotBlank(msgSignature))
return;// 微信推送给第三方开放平台的消息一定是加过密的,无消息加密无法解密消息
StringBuilder sb = new StringBuilder();
BufferedReader in = request.getReader();
String line;
while ((line = in.readLine()) != null) {
sb.append(line);
}
in.close();
String xml = sb.toString();
Document doc = DocumentHelper.parseText(xml);
Element rootElt = doc.getRootElement();
String toUserName = rootElt.elementText("ToUserName");
//微信全网测试账号
// if (StringUtils.equalsIgnoreCase(toUserName, APPID)) {
// LogUtil.info("全网发布接入检测消息反馈开始---------------APPID="+ APPID +"------------------------toUserName="+toUserName);
checkWeixinAllNetworkCheck(request,response,xml);
// }
}
/**
* 处理授权事件的推送
*
* @param request
* @throws IOException
* @throws AesException
* @throws DocumentException
*/
public void processAuthorizeEvent(HttpServletRequest request) throws IOException, DocumentException, AesException {
String nonce = request.getParameter("nonce");
String timestamp = request.getParameter("timestamp");
String signature = request.getParameter("signature");
String msgSignature = request.getParameter("msg_signature");
if (!StringUtils.isNotBlank(msgSignature))
return;// 微信推送给第三方开放平台的消息一定是加过密的,无消息加密无法解密消息
boolean isValid = checkSignature(COMPONENT_TOKEN, signature, timestamp, nonce);
if (isValid) {
StringBuilder sb = new StringBuilder();
BufferedReader in = request.getReader();
String line;
while ((line = in.readLine()) != null) {
sb.append(line);
}
String xml = sb.toString();
// LogUtil.info("第三方平台全网发布-----------------------原始 Xml="+xml);
String encodingAesKey = COMPONENT_ENCODINGAESKEY;// 第三方平台组件加密密钥
String appId = getAuthorizerAppidFromXml(xml);// 此时加密的xml数据中ToUserName是非加密的,解析xml获取即可
//LogUtil.info("第三方平台全网发布-------------appid----------getAuthorizerAppidFromXml(xml)-----------appId="+appId);
WXBizMsgCrypt pc = new WXBizMsgCrypt(COMPONENT_TOKEN, encodingAesKey, COMPONENT_APPID);
xml = pc.decryptMsg(msgSignature, timestamp, nonce, xml);
// LogUtil.info("第三方平台全网发布-----------------------解密后 Xml="+xml);
processAuthorizationEvent(xml);
}
}
/**
* 保存Ticket
* @param xml
*/
void processAuthorizationEvent(String xml){
Document doc;
try {
doc = DocumentHelper.parseText(xml);
Element rootElt = doc.getRootElement();
String ticket = rootElt.elementText("ComponentVerifyTicket");
if(oConvertUtils.isNotEmpty(ticket)){
LogUtil.info("8、推送component_verify_ticket协议-----------ticket = "+ticket);
WeixinOpenAccountEntity entity = getWeixinOpenAccount(APPID);
entity = entity==null?new WeixinOpenAccountEntity():entity;
entity.setTicket(ticket);
entity.setAppid(APPID);
entity.setGetTicketTime(new Date());
systemService.saveOrUpdate(entity);
}
} catch (DocumentException e) {
e.printStackTrace();
}
}
/**
* 获取授权账号信息
* @param appid
* @return
*/
WeixinOpenAccountEntity getWeixinOpenAccount(String appid){
WeixinOpenAccountEntity entity = null;
List ls = systemService.findByProperty(WeixinOpenAccountEntity.class, "appid", appid);
if(ls!=null && ls.size()!=0){
entity = ls.get(0);
}
return entity;
}
/**
* 获取授权的Appid
* @param xml
* @return
*/
String getAuthorizerAppidFromXml(String xml) {
Document doc;
try {
doc = DocumentHelper.parseText(xml);
Element rootElt = doc.getRootElement();
String toUserName = rootElt.elementText("ToUserName");
return toUserName;
} catch (DocumentException e) {
// TODO Auto-generated catch block
e.printStackTrace();
}
return null;
}
public void checkWeixinAllNetworkCheck(HttpServletRequest request, HttpServletResponse response,String xml) throws DocumentException, IOException, AesException{
String nonce = request.getParameter("nonce");
String timestamp = request.getParameter("timestamp");
String msgSignature = request.getParameter("msg_signature");
WXBizMsgCrypt pc = new WXBizMsgCrypt(COMPONENT_TOKEN, COMPONENT_ENCODINGAESKEY, COMPONENT_APPID);
xml = pc.decryptMsg(msgSignature, timestamp, nonce, xml);
Document doc = DocumentHelper.parseText(xml);
Element rootElt = doc.getRootElement();
String msgType = rootElt.elementText("MsgType");
String toUserName = rootElt.elementText("ToUserName");
String fromUserName = rootElt.elementText("FromUserName");
// LogUtil.info("---全网发布接入检测--step.1-----------msgType="+msgType+"-----------------toUserName="+toUserName+"-----------------fromUserName="+fromUserName);
// LogUtil.info("---全网发布接入检测--step.2-----------xml="+xml);
if("event".equals(msgType)){
// LogUtil.info("---全网发布接入检测--step.3-----------事件消息--------");
String event = rootElt.elementText("Event");
replyEventMessage(request,response,event,toUserName,fromUserName);
}else if("text".equals(msgType)){
// LogUtil.info("---全网发布接入检测--step.3-----------文本消息--------");
String content = rootElt.elementText("Content");
processTextMessage(request,response,content,toUserName,fromUserName);
}
}
public void replyEventMessage(HttpServletRequest request, HttpServletResponse response, String event, String toUserName, String fromUserName) throws DocumentException, IOException {
String content = event + "from_callback";
// LogUtil.info("---全网发布接入检测------step.4-------事件回复消息 content="+content + " toUserName="+toUserName+" fromUserName="+fromUserName);
replyTextMessage(request,response,content,toUserName,fromUserName);
}
public void processTextMessage(HttpServletRequest request, HttpServletResponse response,String content,String toUserName, String fromUserName) throws IOException, DocumentException{
if("TESTCOMPONENT_MSG_TYPE_TEXT".equals(content)){
String returnContent = content+"_callback";
replyTextMessage(request,response,returnContent,toUserName,fromUserName);
}else if(StringUtils.startsWithIgnoreCase(content, "QUERY_AUTH_CODE")){
output(response, "");
//接下来客服API再回复一次消息
replyApiTextMessage(request,response,content.split(":")[1],fromUserName);
}
}
public void replyApiTextMessage(HttpServletRequest request, HttpServletResponse response, String auth_code, String fromUserName) throws DocumentException, IOException {
String authorization_code = auth_code;
// 得到微信授权成功的消息后,应该立刻进行处理!!相关信息只会在首次授权的时候推送过来
System.out.println("------step.1----使用客服消息接口回复粉丝----逻辑开始-------------------------");
try {
ApiComponentToken apiComponentToken = new ApiComponentToken();
apiComponentToken.setComponent_appid(COMPONENT_APPID);
apiComponentToken.setComponent_appsecret(COMPONENT_APPSECRET);
WeixinOpenAccountEntity entity = getWeixinOpenAccount(APPID);
apiComponentToken.setComponent_verify_ticket(entity.getTicket());
String component_access_token = JwThirdAPI.getAccessToken(apiComponentToken);
System.out.println("------step.2----使用客服消息接口回复粉丝------- component_access_token = "+component_access_token + "---------authorization_code = "+authorization_code);
net.sf.json.JSONObject authorizationInfoJson = JwThirdAPI.getApiQueryAuthInfo(COMPONENT_APPID, authorization_code, component_access_token);
System.out.println("------step.3----使用客服消息接口回复粉丝-------------- 获取authorizationInfoJson = "+authorizationInfoJson);
net.sf.json.JSONObject infoJson = authorizationInfoJson.getJSONObject("authorization_info");
String authorizer_access_token = infoJson.getString("authorizer_access_token");
Map obj = new HashMap();
Map msgMap = new HashMap();
String msg = auth_code + "_from_api";
msgMap.put("content", msg);
obj.put("touser", fromUserName);
obj.put("msgtype", "text");
obj.put("text", msgMap);
JwThirdAPI.sendMessage(obj, authorizer_access_token);
} catch (WexinReqException e) {
e.printStackTrace();
}
}
/**
* 验证是否过期
* @param accessTokenExpires
* @return
*/
boolean isExpired(long accessTokenExpires){
return false;
}
/**
* 回复微信服务器"文本消息"
* @param request
* @param response
* @param content
* @param toUserName
* @param fromUserName
* @throws DocumentException
* @throws IOException
*/
public void replyTextMessage(HttpServletRequest request, HttpServletResponse response, String content, String toUserName, String fromUserName) throws DocumentException, IOException {
Long createTime = Calendar.getInstance().getTimeInMillis() / 1000;
StringBuffer sb = new StringBuffer();
sb.append("");
sb.append(" ");
sb.append(" ");
sb.append(""+createTime+" ");
sb.append(" ");
sb.append(" ");
sb.append(" ");
String replyMsg = sb.toString();
String returnvaleue = "";
try {
WXBizMsgCrypt pc = new WXBizMsgCrypt(COMPONENT_TOKEN, COMPONENT_ENCODINGAESKEY, COMPONENT_APPID);
returnvaleue = pc.encryptMsg(replyMsg, createTime.toString(), "easemob");
// System.out.println("------------------加密后的返回内容 returnvaleue: "+returnvaleue);
} catch (AesException e) {
e.printStackTrace();
}
output(response, returnvaleue);
}
public static void main(String[] args) {
Long createTime = Calendar.getInstance().getTimeInMillis() / 1000;
String replyMsg = "LOCATIONfrom_callback";
String returnvaleue = "";
try {
WXBizMsgCrypt pc = new WXBizMsgCrypt(COMPONENT_TOKEN, COMPONENT_ENCODINGAESKEY, COMPONENT_APPID);
returnvaleue = pc.encryptMsg(replyMsg, createTime.toString(), "easemob");
System.out.println(returnvaleue);
} catch (AesException e) {
e.printStackTrace();
}
}
/**
* 工具类:回复微信服务器"文本消息"
* @param response
* @param returnvaleue
*/
public void output(HttpServletResponse response,String returnvaleue){
try {
PrintWriter pw = response.getWriter();
pw.write(returnvaleue);
// System.out.println("****************returnvaleue***************="+returnvaleue);
pw.flush();
} catch (IOException e) {
e.printStackTrace();
}
}
/**
* 判断是否加密
* @param token
* @param signature
* @param timestamp
* @param nonce
* @return
*/
public static boolean checkSignature(String token,String signature,String timestamp,String nonce){
System.out.println("###token:"+token+";signature:"+signature+";timestamp:"+timestamp+"nonce:"+nonce);
boolean flag = false;
if(signature!=null && !signature.equals("") && timestamp!=null && !timestamp.equals("") && nonce!=null && !nonce.equals("")){
String sha1 = "";
String[] ss = new String[] { token, timestamp, nonce };
Arrays.sort(ss);
for (String s : ss) {
sha1 += s;
}
sha1 = AddSHA1.SHA1(sha1);
if (sha1.equals(signature)){
flag = true;
}
}
return flag;
}
}
class AddSHA1 {
public static String SHA1(String inStr) {
MessageDigest md = null;
String outStr = null;
try {
md = MessageDigest.getInstance("SHA-1"); //选择SHA-1,也可以选择MD5
byte[] digest = md.digest(inStr.getBytes()); //返回的是byet[],要转化为String存储比较方便
outStr = bytetoString(digest);
}
catch (NoSuchAlgorithmException nsae) {
nsae.printStackTrace();
}
return outStr;
}
public static String bytetoString(byte[] digest) {
String str = "";
String tempStr = "";
for (int i = 0; i < digest.length; i++) {
tempStr = (Integer.toHexString(digest[i] & 0xff));
if (tempStr.length() == 1) {
str = str + "0" + tempStr;
}
else {
str = str + tempStr;
}
}
return str.toLowerCase();
}
}