pay/webapp/controller/PayController.class.php

<?php

class PayController {

    const SCAN_PAY_API_URL = 'https://gwapi.yemadai.com/pay/scanpay';
#    const PRI_KEY = 'MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCaxbGPoh7l8zq7AwhsSsuOj1wNH1YArG/oZvjCZn2xkeeemhWMh13t03mdz6VVaCsqOc3suN9zCG9tPMxSzSDmtvtcqfqQnFG80Fmi7TCPhju9yW+povjC6GrQnGWdafBpwh0jT/Wqa+GKlygVDXMxhwbDExn/aWStPCaB1pkMcwIDAQAB';
    const PRI_KEY = 'MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCaxbGPoh7l8zq7AwhsSsuOj1wNH1YArG/oZvjCZn2xkeeemhWMh13t03mdz6VVaCsqOc3suN9zCG9tPMxSzSDmtvtcqfqQnFG80Fmi7TCPhju9yW+povjC6GrQnGWdafBpwh0jT/Wqa+GKlygVDXMxhwbDExn/aWStPCaB1pkMcwIDAQAB';
    const PUB_KEY = 'MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCVd+f/YkGDi8s9AKhZvmHCxZ2+sPKIsr+JVS2Uj4pP6qApuNq5lEwtF4c6LzHJbUUxKge/OttiR7pR481tqW3PgeSYjyU6rayx0rSEo8/xqVHnh4XugbJREUVyq/Evp79f0BePO69zC0AdYZSjXOAVG8uduRzHl4RWb7BiDLBL3QIDAQAB';
#    const PRI_KEY = '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';
    const MER_NO = '49118';

    protected function getMysql($accountid)
    {
        $mysql_conf = getMysqlConfig(crc32($accountid));
        $conn = new phpcommon\Mysql(array(
            'host' => $mysql_conf['host'],
            'port' => $mysql_conf['port'],
            'user' => $mysql_conf['user'],
            'passwd' => $mysql_conf['passwd'],
            'dbname' => 'paydb'
        ));
        return $conn;
    }

    //ksome201908191405_xxxxx
    private function getOrderId()
    {
        $conn = $this->getMysql($_REQUEST['account_id']);
        $orderid_pre = 'ksome' . strftime('%y%m%d%H%M%S');
        $ret = $conn->execScript("INSERT INTO orderidx(createtime) VALUES(:createtime);",
                                 array(
                                     'createtime' => time()
                                 ));
        if (!$ret) {
            die();
        }
        $row = $conn->execQueryOne('SELECT LAST_INSERT_ID();', array());
        if (empty($row)) {
            die();
        }
        $orderid = $orderid_pre . '_' . $row[0];
        return $orderid;
    }

    private function _redPubkey()
    {
        $pem = "-----BEGIN PUBLIC KEY-----\n" .
             chunk_split(self::PUB_KEY, 64, "\n") .
             "-----END PUBLIC KEY-----\n";
        echo $pem;
        return openssl_pkey_get_public($pem);
    }

    private function _redPrikey()
    {
        $pem = "-----BEGIN RSA PRIVATE KEY-----\n" .
             chunk_split(self::PRI_KEY, 64, "\n") .
             "-----END RSA PRIVATE KEY-----\n";
        error_log($pem);
        return openssl_pkey_get_private($pem);
    }

    private function _reaEncode($str) {
        $prikey = self::_redPrikey();
        return openssl_sign($str, $sign, $prikey, OPENSSL_ALGO_SHA1) ? base64_encode($sign) : false;
    }

    public function scanPay()
    {
        /*
        if (!phpcommon\isValidSessionId(
            $_REQUET['account_id'],
            $_REQUET['session_id']
        )) {
            echo json_encode(array(
                'errcode' => 100,
                'errmsg' => 'session无效',
            ));
            die();
        }
        */
        $orderid = $this->getOrderId();
        if (empty($orderid)) {
            die();
        }
        $nowtime = time();
        $advice_url = '';
        if (SERVER_ENV != _ONLINE) {
            $advice_url = "https://gamepay-test.kingsome.cn/webapp/index.php?c=PayNotify&a=payNotify";
        } else {
            $advice_url = "https://gamepay.kingsome.cn/webapp/index.php?c=PayNotify&a=payNotify";
        }
        $advice_url = 'https://gamepay.kingsome.cn/webapp/index.php';
        $params = array(
            'MerNo' => self::MER_NO,
            'BillNo' => $orderid,
            'payType' => 'WxJsapi_OffLine',
            'Amount' => '0.1',
            'OrderTime' => strftime('%Y%m%d%H%M%S', $nowtime),
            'AdviceUrl' => htmlentities($advice_url),
            'ScanpayMerchantCode' => '',
            'SignInfo' => '',
            'products' => '',
            'remark' => '',
            'MerName' => '',
        );
        $params['SignInfo'] = $this->_reaEncode(
            'MerNo=' . $params['MerNo'] . '&' .
            'BillNo=' . $params['BillNo'] . '&' .
            'Amount=' . $params['Amount'] . '&' .
            'OrderTime=' . $params['OrderTime'] . '&' .
            'AdviceUrl=' . $advice_url
        );
        var_dump(phpcommon\objectToXml($params, '<ScanPayRequest/>'));
        $requestDomain = base64_encode(phpcommon\objectToXml($params, '<ScanPayRequest/>'));
        $response = '';
        if (phpcommon\HttpClient::post(self::SCAN_PAY_API_URL,
                                       'requestDomain='. urlencode($requestDomain),
                                       $response)
        ) {
            /*            echo json_encode(array(
                'errcode' => 101,
                'errmsg' => '交易失败:' . $response,
            ));
            die();*/
        }
        var_dump($response);
        $xmlobj = new \SimpleXMLElement($response);
        var_dump($xmlobj->respCode);
        if ($xmlobj->respCode == '0000') {

        }
    }

}