field('id,money,days,title,info,bundle_id,is_lianxu')->where('is_show',1)->order('weight asc,id asc')->select(); $data['vipconfig'] = $list; $data['vip_endtime'] = model('wallet')->getWallet($this->auth->id,'vip_endtime'); $data['is_vip'] = $data['vip_endtime'] > time() ? 1 : 0; $data['avatar'] = localpath_to_netpath($this->auth->avatar); $this->success('success',$data); } //vip用的，创建订单 public function vip_recharge_ios(){ $rc_id = input('rc_id',0); $platform = 'app'; $uid = $this->auth->id; if(!$rc_id){ $this->error('请选择会员套餐'); } if(!$this->user_auth_limit()){ $this->error('请先完成实名认证'); } //赋值money $recharge_config = Db::name('payvip_config_ios')->where('id',$rc_id)->find(); $money = $recharge_config['money']; if($money<=0) { $this->error('支付金额必须大于0'); } if($money > 10000){ $this->error('支付金额太大'); } //创建订单 $data = []; $data['user_id'] = $uid; $data['out_trade_no'] = createUniqueNo('V',$uid); // 数据库订单号加密 $data['order_amount'] = $money; $data['createtime'] = time(); $data['pay_type'] = 'ios'; $data['platform'] = $platform; $data['order_status'] = 0; $data['table_name'] = 'vip_recharge'; $data['table_id'] = 0; $data['args'] = json_encode(['days'=>$recharge_config['days']]); $data['bundle_id'] = $recharge_config['bundle_id']; $data['is_lianxu'] = $recharge_config['is_lianxu']; $orderid = Db::name('pay_order')->insertGetId($data); $this->success('success',$data['out_trade_no']); } //////////////////////////////// //金币充值 public function gold_config_ios(){ $list = Db::name('paygold_webcon_ios')->field('id,money,gold,bundle_id')->where('is_show',1)->order('weigh asc,id asc')->select(); $data['goldconfig'] = $list; $wallet = model('wallet')->getWallet($this->auth->id); $data['wallet'] = $wallet; $data['money_to_gold'] = config('site.money_to_gold'); $this->success('success',$data); } //充值金币 创建订单 public function gold_recharge_ios(){ $rc_id = input_post('rc_id',0); $pay_type = 'ios'; $platform = 'app'; $uid = $this->auth->id; if(!$rc_id){ $this->error('请选择充值金额'); } if(!$this->user_auth_limit()){ $this->error('请先完成实名认证'); } //赋值money $recharge_config = Db::name('paygold_webcon_ios')->where('id',$rc_id)->find(); $money = $recharge_config['money'] ?: 0; $gold = $recharge_config['gold'] ?: 0; // if($money<=0) { $this->error('支付金额必须大于0'); } if($money > 10000){ $this->error('支付金额太大'); } //创建订单 $data['user_id'] = $uid; $data['out_trade_no'] = createUniqueNo('P',$uid); // 数据库订单号加密 $data['order_amount'] = $money; $data['createtime'] = time(); $data['pay_type'] = $pay_type; $data['platform'] = $platform; $data['order_status'] = 0; $data['table_name'] = 'gold_recharge'; $data['table_id'] = 0; $data['args'] = json_encode(['gold'=>$gold]); $data['bundle_id'] = $recharge_config['bundle_id']; $orderid = Db::name('pay_order')->insertGetId($data); $this->success('success',$data['out_trade_no']); } //////////////////////////////////////// //订阅信息处理，续订情况下，单独分支方法 public function expires(){ //苹果订阅的验证收据 $original_transaction_id = input('original_transaction_id','','trim'); $receipt_data = input('apple_receipt', '', 'trim'); $transaction_id = input('transaction_id', '', 'trim'); $out_trade_no = input('out_trade_no', '', 'trim'); filePut("\r\n\r\n".'新请求VIP订阅'); $prefix = 'iosVIP订阅登录user_id:'.$this->auth->id.',传入original_transaction_id:'.$original_transaction_id.',传入transaction_id:'.$transaction_id.'。'; filePut($prefix.'参数apple_receipt:'.$receipt_data); if (!$receipt_data || !$original_transaction_id || !$transaction_id) { $this->error('缺少参数'); } //检查重复订单 $check_map = [ 'original_transaction_id' => $original_transaction_id, 'transaction_id' => $transaction_id, ]; $check_order = Db::name('user_vipxufei_task')->where($check_map)->field('id')->find(); if($check_order){ filePut($prefix.'续费早已完成'); $this->success('充值早已完成'); } // 验证支付状态 $result = $this->validate_apple_pay($receipt_data); if (!$result['status']) {// 验证不通过 filePut($prefix.'验证'.$result['message']); $this->error($result['message']); } $in_app = $result['data']['receipt']['in_app']; $only_trans = []; foreach($in_app as $key => $trans){ //非订阅信息，原始信息，不验证product_id因为可能换了新的套餐 if($trans['transaction_id'] == $transaction_id && $original_transaction_id == $trans['original_transaction_id']/* && $trans['product_id'] == $order_info['bundle_id']*/){ $only_trans = $trans; break; } } if(empty($only_trans)){ filePut($prefix.'未找到匹配的交易'); $this->error('未找到匹配的交易'); } Db::startTrans(); //查找订单，可能找到以前的，非当前用户的。根据原始id 和 用户id不是终生绑定 $order_map = [ 'original_transaction_id' => $original_transaction_id, ]; $order_info = Db::name('user_vipxufei_task')->where($order_map)->order('expires_date_ms desc')->find(); if (!$order_info) { Db::rollback(); filePut($prefix.'不存在的订单'); $this->error('不存在的订单'); } //续订，但是换了产品了,重新定义order_info //原始id换给别人用了 $order_info_bundle_id = $order_info['bundle_id']; $order_info_user_id = $order_info['user_id']; //在app里，不能连续购买同一个续费规格（bunder_id），可以升级或降级另一个续费规格。也可以在苹果商店直接修改规格（不产生新订单）。 if($only_trans['product_id'] != $order_info['bundle_id'] || $order_info['user_id'] != $this->auth->id){ $pay_order_map = [ 'user_id' => ($order_info['user_id'] != $this->auth->id) ? $this->auth->id : $order_info['user_id'], 'bundle_id' => ($order_info['bundle_id'] != $only_trans['product_id']) ? $only_trans['product_id'] : $order_info['bundle_id'], 'order_status' => 0, 'table_name' => 'vip_recharge', ]; $pay_order = Db::name('pay_order')->where($pay_order_map)->order('id desc')->lock(true)->find(); if(!$pay_order){ /*Db::rollback(); filePut($prefix.'未找到匹配的交易,新订单找不到'); $this->error('未找到匹配的新订单');*/ //创建订单 $recharge_config = Db::name('payvip_config_ios')->where('bundle_id',$pay_order_map['bundle_id'])->find(); $new_order = [ 'user_id' => $pay_order_map['user_id'], 'out_trade_no'=> createUniqueNo('NV',$pay_order_map['user_id']), // 数据库订单号加密 'order_amount'=> $recharge_config['money'], 'createtime'=> time(), 'pay_type'=> 'ios', 'platform'=> 'app', 'order_status'=> 0, 'table_name'=> 'vip_recharge', 'table_id'=> 0, 'args'=> json_encode(['days'=>$recharge_config['days']]), 'bundle_id'=> $recharge_config['bundle_id'], 'is_lianxu'=> $recharge_config['is_lianxu'], ]; $new_orderid = Db::name('pay_order')->insertGetId($new_order); if(!$new_orderid){ Db::rollback(); filePut($prefix.'未找到匹配的交易,创建新订单失败'); $this->error('创建新订单失败'); } $pay_order = $new_order; $pay_order['id'] = $new_orderid; } // 修改订单状态 $update_order = [ 'notifytime'=>time(), 'order_status'=>1, 'original_transaction_id' => $only_trans['original_transaction_id'], 'in_app_one' => json_encode($only_trans), ]; $ros = Db::name('pay_order')->where(['id' => $pay_order['id']])->update($update_order); if($ros === false) { filePut($prefix.'修改订单状态失败'); Db::rollback(); $this->error('充值失败'); } $args = json_decode($pay_order['args'],true); //修改order_info $order_info['order_id'] = $pay_order['id']; $order_info['user_id'] = $pay_order['user_id']; $order_info['bundle_id'] = $pay_order['bundle_id']; $order_info['days'] = $args['days']; $order_info['original_transaction_id'] = $only_trans['original_transaction_id'];//多余 } //验证时间，不得小于最新的一条预定信息 // if($order_info_user_id == $this->auth->id){ if($only_trans['purchase_date_ms'] <= $order_info['purchase_date_ms']/* || $only_trans['expires_date_ms'] <= $order_info['expires_date_ms']*/){ Db::rollback(); filePut($prefix.'时间对不上，返回成功，finish掉'); $this->success('时间对不上，返回成功，finish掉'); } // } //逻辑开始 //先充值 $user_info = Db::name('user_wallet')->where('user_id',$order_info['user_id'])->lock(true)->find(); if($user_info['vip_endtime'] < time()){ //过期了 $vip_endtime = time() + (intval($order_info['days']) * 86400); $vip_type = 1; }else{ //追加vip $vip_endtime = $user_info['vip_endtime'] + (intval($order_info['days']) * 86400); $vip_type = 2; } $update_data = [ 'vip_endtime'=>$vip_endtime, ]; $result = Db::name('user_wallet')->where('user_id',$order_info['user_id'])->update($update_data); if($result === false) { filePut($prefix.'逻辑续费vip时间失败'); Db::rollback(); $this->error('充值失败'); } //记录日志 $log_data = [ 'user_id' => $order_info['user_id'], 'before' => $user_info['vip_endtime'], 'change_value' => intval($order_info['days']) * 86400, 'remain' => $vip_endtime, 'remark' => 'ios续费vip', 'createtime' => time(), 'vip_type' => $vip_type, ]; Db::name('user_vip_log')->insertGetId($log_data); //逻辑结束 //添加新的一个task $task_data = $order_info; unset($task_data['id']); unset($task_data['transaction_info']); $task_data['createtime'] = time(); $task_data['apple_receipt'] = $receipt_data; $task_data['in_app_one'] = json_encode($only_trans); $task_data['transaction_id'] = $transaction_id; $task_data['times'] = $order_info['times'] + 1; $task_data['original_purchase_date_ms'] = $only_trans['original_purchase_date_ms']; $task_data['purchase_date_ms'] = $only_trans['purchase_date_ms']; $task_data['expires_date_ms'] = $only_trans['expires_date_ms']; //换了产品了，或者订单的user_id被改过了 if($only_trans['product_id'] != $order_info_bundle_id || $order_info['user_id'] != $order_info_user_id){ $task_data['times'] = 1;//回归1 } $task_id = Db::name('user_vipxufei_task')->insertGetId($task_data); if(!$task_id) { filePut($prefix.'用户添加vipxufei_task失败'); Db::rollback(); $this->error('充值失败'); } Db::commit(); filePut($prefix.'充值成功'.$task_id); $this->success('充值成功'.$task_id); //逻辑结束 } //金币+vip,苹果内购支付回调，app请求的接口 public function gold_notify_iosnew(){ $original_transaction_id = input('original_transaction_id','','trim'); if(!empty($original_transaction_id)){ //订阅信息 $this->expires(); } //苹果内购的验证收据 $receipt_data = input('apple_receipt', '', 'trim'); $out_trade_no = input('out_trade_no', '', 'trim'); $transaction_id = input('transaction_id', '', 'trim'); filePut("\r\n\r\n".'新请求'); $prefix = 'ios充值,登录user_id:'.$this->auth->id.',out_trade_no:'.$out_trade_no.',传入transaction_id:'.$transaction_id.'。'; filePut($prefix.'参数apple_receipt:'.$receipt_data); if (!$receipt_data || !$out_trade_no || !$transaction_id) { $this->error('缺少参数'); } Db::startTrans(); // 查找订单 $order_map = [ // 'user_id' => $this->auth->id, 'out_trade_no' => $out_trade_no, //'original_transaction_id' => $transaction_id, ]; $order_info = Db::name('pay_order')->where($order_map)->lock(true)->find(); if (!$order_info) { Db::rollback(); filePut($prefix.'不存在的订单'); $this->error('不存在的订单'); } if ($order_info['order_status'] == 1) { Db::rollback(); filePut($prefix.'充值早已完成'); $this->success('充值已完成'); } // 验证支付状态 $result = $this->validate_apple_pay($receipt_data); if (!$result['status']) {// 验证不通过 Db::rollback(); filePut($prefix.'验证'.$result['message']); $this->error($result['message']); } $in_app = $result['data']['receipt']['in_app']; $only_trans = []; foreach($in_app as $key => $trans){ //非订阅信息，原始信息 // $trans['transaction_id'] == $transaction_id 这个不重要，重要的是后面2个。应该也重要，保证这次处理的是初始交易 if($trans['transaction_id'] == $transaction_id && $transaction_id == $trans['original_transaction_id']){ if($trans['product_id'] == $order_info['bundle_id']){ $only_trans = $trans; break; }else{ //找上一个真正的订单 $order_map = [ 'user_id' => $this->auth->id, 'order_status' => 0, 'bundle_id' => $trans['product_id'] ]; $order_info = Db::name('pay_order')->where($order_map)->lock(true)->find(); if (!$order_info) { Db::rollback(); filePut($prefix.'不存在的正确产品订单'); $this->error('不存在的正确产品订单'); } $only_trans = $trans; break; } } } if(empty($only_trans)){ Db::rollback(); filePut($prefix.'未找到匹配的交易,产品id'.$order_info['bundle_id'].',原始交易id'.$transaction_id); $this->error('未找到匹配的交易,产品id'.$order_info['bundle_id'].',原始交易id'.$transaction_id); } //逻辑开始 $args = json_decode($order_info['args'],true); //先充值 if($order_info['table_name'] == 'gold_recharge'){ $result = model('Wallet')->lockChangeAccountRemain($order_info['user_id'],'gold',$args['gold'],10, '金币充值','pay_order',$order_info['id']); if($result['status']===false) { filePut($prefix.'逻辑添加金币失败'); Db::rollback(); $this->error('充值失败'); } } //先充值 if($order_info['table_name'] == 'vip_recharge'){ $user_info = Db::name('user_wallet')->where('user_id',$order_info['user_id'])->lock(true)->find(); if($user_info['vip_endtime'] < time()){ //过期了 $vip_endtime = time() + (intval($args['days']) * 86400); $vip_type = 1; }else{ //追加vip $vip_endtime = $user_info['vip_endtime'] + (intval($args['days']) * 86400); $vip_type = 2; } $update_data = [ 'vip_endtime'=>$vip_endtime, ]; $result = Db::name('user_wallet')->where('user_id',$order_info['user_id'])->update($update_data); if($result === false) { filePut($prefix.'逻辑续费vip时间失败'); Db::rollback(); $this->error('充值失败'); } //记录日志 $log_data = [ 'user_id' => $order_info['user_id'], 'before' => $user_info['vip_endtime'], 'change_value' => intval($args['days']) * 86400, 'remain' => $vip_endtime, 'remark' => 'ios购买vip', 'createtime' => time(), 'vip_type' => $vip_type, ]; Db::name('user_vip_log')->insertGetId($log_data); //订阅vip需要多加的逻辑 if($order_info['is_lianxu'] == 1){ $task_data = [ 'order_id' => $order_info['id'], 'user_id' => $order_info['user_id'], 'bundle_id' => $order_info['bundle_id'], 'days' => $args['days'], 'createtime' => time(), 'apple_receipt' => $receipt_data, 'in_app_one' => json_encode($only_trans), 'original_transaction_id' => $only_trans['original_transaction_id'], 'transaction_id' => $only_trans['transaction_id'], 'status' => 1, 'times' => 1, //'notification_type' => 'INITIAL_BUY'.',首次订阅', 'original_purchase_date_ms' => $only_trans['original_purchase_date_ms'], 'purchase_date_ms' => $only_trans['purchase_date_ms'], 'expires_date_ms' => $only_trans['purchase_date_ms'], //第一次借用购买时间戳 ]; $task_id = Db::name('user_vipxufei_task')->insertGetId($task_data); if(!$task_id) { filePut($prefix.'用户添加vipxufei_task失败'); Db::rollback(); $this->error('充值失败'); } } } // 修改订单状态 $update_order = [ 'notifytime'=>time(), 'order_status'=>1, 'original_transaction_id' => $only_trans['original_transaction_id'],//理论上与 transaction_id 相等 'in_app_one' => json_encode($only_trans), ]; $ros = Db::name('pay_order')->where(['id' => $order_info['id']])->update($update_order); if($ros === false) { filePut($prefix.'修改订单状态失败'); Db::rollback(); $this->error('充值失败'); } Db::commit(); filePut($prefix.'充值成功'); $this->success('充值成功'); //逻辑结束 } //////////////////////////////////// /** * ios 事件通知 * @return bool */ public function auto_renewal_vip_notify() { $this->notify_log_start('ios'); try { $raw = file_get_contents("php://input"); //filePut("\r\n\r\n".'入口:'.$raw); $raw = json_decode($raw,true); $token = isset($raw['signedPayload']) ? $raw['signedPayload'] : ''; $data = $this->verifyAppleToken($token); dump($data); if (empty($data)) { //timbao add //记录苹果通知逻辑中的bug exit; } $transaction_info = $this->verifyAppleToken($data['data']['signedTransactionInfo']); dump($transaction_info); $rs = '默认'; switch ($data['notificationType']) { case 'DID_RENEW': // 续订 $rs = Transaction::autoRenew($transaction_info); break; case 'REFUND': // 退款 $rs = Transaction::refund($transaction_info); break; case 'DID_CHANGE_RENEWAL_STATUS': // 连续续订状态 变更 $rs = Transaction::changeRenewStatus($transaction_info, $data['subtype']); break; case 'EXPIRED': // 过期通知 $rs = Transaction::updateExpiredTrans($transaction_info); break; case 'SUBSCRIBED': // 订阅通知 $rs = Transaction::updateSubscribed($transaction_info, $data['subtype']); break; case 'DID_FAIL_TO_RENEW': // 续订失败 $rs = Transaction::updateRenewFailTrans($transaction_info); break; case 'DID_CHANGE_RENEWAL_PREF': //升级 降级 if ($data['subtype'] == 'UPGRADE') { $rs = Transaction::autoRenew($transaction_info, true); } break; } dump($rs); exit; }catch (Exception $e) { echo $e->getMessage(); exit; } } ////////////////////////////////私有方法/////////////////////////////////////////////////////////////// //异步日志 private function notify_log_start($paytype = 'ios'){ //记录支付回调数据 ignore_user_abort(); // run script in background set_time_limit(30); // 日志文件 start $log_base_dir = '../paylog/'.$paytype.'/'; if (!is_dir($log_base_dir)) { mkdir($log_base_dir, 0770, true); @chmod($log_base_dir, 0770); } $notify_file = $log_base_dir.'notify.txt'; if(!file_exists($notify_file)) { @touch($notify_file); @chmod($notify_file, 0770); } if(filesize($notify_file)>5242880)//大于5M自动切换 { rename($notify_file, $log_base_dir.'notify_'.date('Y_m_d_H_i_s').'.txt'); } if(!file_exists($notify_file)) { @touch($notify_file); @chmod($notify_file, 0770); } // 日志文件 end //开始写入 $_REQUEST = isset($_REQUEST) ? $_REQUEST : array(); if($_REQUEST && $paytype == 'alipay') { file_put_contents($notify_file, "\r\n\r\n".date('Y-m-d H:i:s')." [notify][入口接收request]".json_encode($_REQUEST), FILE_APPEND); } else { $xml = file_get_contents("php://input"); file_put_contents($notify_file, "\r\n\r\n".date('Y-m-d H:i:s')." [notify][入口接收php://input流原始数据] \n".$xml, FILE_APPEND); /*$xmlObj = simplexml_load_string($xml, 'SimpleXMLElement', LIBXML_NOCDATA); file_put_contents($notify_file, "\r\n\r\n".date('Y-m-d H:i:s')." [notify][入口接收php://input流] ".json_encode($xmlObj), FILE_APPEND);*/ } ini_set('display_errors','On'); return $notify_file; } public function test(){ $a = input('apple_receipt'); $b = $this->validate_apple_pay($a); echo json_encode($b); } /** * 验证AppStore内付 * @param string $receipt_data 付款后凭证 * @return array 验证是否成功 * https://juejin.cn/post/7049626884765646884 报错代码 */ function validate_apple_pay($receipt_data = '') { // 验证参数 if (strlen($receipt_data) < 20) { $result = array( 'status' => false, 'message' => '非法参数' ); return $result; } // 请求验证 $html = $this->curl($receipt_data); $data = json_decode($html, true); $data['sandbox'] = '0'; // p($data);die; if ($data['status'] == '21002') { $result = array( 'status' => false, 'message' => 'status:21002' ); return $result; } // 如果是沙盒数据 则验证沙盒模式 21008;正式数据 21007 if ($data['status'] == '21007') { // 请求验证 $html = $this->curl($receipt_data, 1); $data = json_decode($html, true); $data['sandbox'] = '1'; } if (isset($_GET['debug'])) { exit(json_encode($data)); } if ($data['receipt']['bundle_id'] != 'com.jianxun.company') { $result = array( 'status' => false, 'message' => '非法请求', 'data' => $data ); return $result; } // 判断是否购买成功 if (intval($data['status']) === 0) { $result = array( 'status' => true, 'message' => '购买成功', 'data' => $data ); } else { $result = array( 'status' => false, 'message' => '购买失败 status:' . $data['status'] ); } // dump($result); return $result; } /** * 0 票据校验成功 * 21000 App Store不能读取你提供的JSON对象25 * 21002 receipt-data域的数据有问题 * 21003 receipt无法通过验证 * 21004 提供的shared secret不匹配你账号中的shared secret * 21005 receipt服务器当前不可用 * 21006 receipt合法，但是订阅已过期。服务器接收到这个状态码时，receipt数据仍然会解码并一起发送 * 21007 receipt是Sandbox receipt，但却发送至生产系统的验证服务 * 21008 receipt是生产receipt，但却发送至Sandbox环境的验证服务 */ //苹果也是建议这个校验逻辑由服务端完成。服务器需要先去请求正式环境。如果receipt是正式环境的，那么这个时候苹果会返回（21007）告诉我们这个是沙盒的receipt，那么服务器再去请求sandbox环境。 function curl($receipt_data,$sandbox = 0) { //小票信息 $POSTFIELDS = [ 'receipt-data' => $receipt_data, 'password' => 'd6c4cae953804133b40e44418dce2afb' ]; $POSTFIELDS = json_encode($POSTFIELDS, 320); //正式购买地址 沙盒购买地址 $url_buy = "https://buy.itunes.apple.com/verifyReceipt"; $url_sandbox = "https://sandbox.itunes.apple.com/verifyReceipt"; //默认后台控制 if (config('site.ios_pay_sandbox') > 0 ) { $url = $url_buy; } else { $url = $url_sandbox; } //强制沙盒 if($sandbox == 1){ $url = $url_sandbox; } $ch = curl_init($url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, $POSTFIELDS); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); //这两行一定要加，不加会报SSL 错误 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); $response = curl_exec($ch); $errno = curl_errno($ch); curl_close($ch); if ($errno != 0) { return $errno; } else { return $response; } } /** * 苹果token解密 * * @param $token * @return array|bool|mixed|string */ private function verifyAppleToken($token) { $arr = explode('.',$token); if(count($arr) != 3){ return []; } $header = $arr[0]; $header = base64_decode($header); $header = json_decode($header,true); if(empty($header)){ return []; } if($header['alg'] != 'ES256'){ return []; } $data = $arr[1]; $data = base64_decode($data); $data = json_decode($data,true); if(empty($data)){ return []; } $sign = $arr[2]; if(empty($sign)){ return []; } return $data; } }