> 백엔드 개발 > PHP 튜토리얼 > WeChat JSSDK 페이지 인증 구현 클래스 PHP ssdb redis ssdb 명령 ssdb redis

WeChat JSSDK 페이지 인증 구현 클래스 PHP ssdb redis ssdb 명령 ssdb redis

WBOY
풀어 주다: 2016-07-29 08:54:05
원래의
1050명이 탐색했습니다.

WeChat 페이지 인증 – (JS-SDK는 권한 서명 알고리즘을 사용합니다.)
사용법: 이 클래스를 인스턴스화한 다음 그 안에 있는 getSignPackage() 메서드를 호출합니다.
참고: access_token 및 jsapi_ticket을 얻을 때 직접 캐시해야 하며 자주 얻을 수는 없습니다!

<code><span><span><?php</span><span>/**
 * Author: helen
 * CreateTime: 2016/4/11 10:39
 * description: 微信页面授权--(JS-SDK使用权限签名算法)
 */</span><span><span>class</span><span>JSSDK</span>{</span><span>private</span><span>$appId</span>;
    <span>private</span><span>$appSecret</span>;

    <span>public</span><span><span>function</span><span>__construct</span><span>(<span>$appId</span>, <span>$appSecret</span>)</span>
    {</span><span>$this</span>->appId = <span>$appId</span>;
        <span>$this</span>->appSecret = <span>$appSecret</span>;
    }
    <span>/*
     * 获取access_token
     * (需要缓存,可利用数据库存储,不要频繁刷新获取)
     * http请求方式: GET  https://api.weixin.qq.com/cgi-bin/token?grant_type=client_credential&appid=APPID&secret=APPSECRET
     * 接口请求参数
     *  参数       是否必须          说明
        grant_type  是   获取access_token填写client_credential
        appid       是   第三方用户唯一凭证
        secret      是   第三方用户唯一凭证密钥,即appsecret
     * 接口返回说明
     * {"access_token":"ACCESS_TOKEN","expires_in":7200}    access_token    获取到的凭证  expires_in  凭证有效时间,单位:秒
     * 接口错误说明
     * {"errcode":40013,"errmsg":"invalid appid"}
     * */</span><span>private</span><span><span>function</span><span>getAccessToken</span><span>()</span>{</span><span>$appId</span> = <span>$this</span>->appId;
        <span>$appSecret</span> = <span>$this</span>->appSecret;
        <span>$url</span> = <span>'https://api.weixin.qq.com/cgi-bin/token?grant_type=client_credential&appid='</span>.<span>$appId</span>.<span>'&secret='</span>.<span>$appSecret</span>;
        <span>$res</span> = <span>$this</span>->api_request(<span>$url</span>);
        <span>if</span>(<span>isset</span>(<span>$res</span>->access_token)){
            <span>return</span><span>array</span>(
                <span>'errcode'</span>       =><span>0</span>,
                <span>'errmsg'</span>        =><span>'success'</span>,
                <span>'access_token'</span>  =><span>$res</span>->access_token,
                <span>'expires_in'</span>    =><span>$res</span>->expires_in
            );
        }<span>else</span>{
            <span>return</span><span>array</span>(
                <span>'errcode'</span>       =><span>$res</span>->errcode,
                <span>'errmsg'</span>        =><span>$res</span>->errmsg,
                <span>'access_token'</span>  =><span>null</span>,
                <span>'expires_in'</span>    =><span>null</span>
            );
        }
    }
    <span>/*
     * 获取jsapi_ticket
     * (有效期7200秒,开发者必须在自己的服务全局缓存jsapi_ticket)
     * 请求方式:https://api.weixin.qq.com/cgi-bin/ticket/getticket?access_token=ACCESS_TOKEN&type=jsapi
     * 接口返回值:JSON
     * {
            "errcode":0,
            "errmsg":"ok",
            "ticket":"bxLdikRXVbTPdHSM05e5u5sUoXNKd8-41ZO3MhKoyN5OfkWITDGgnr2fwJ0m9E8NYzWKVZvdVtaUgWvsdshFKA",
            "expires_in":7200
        }
     * */</span><span>private</span><span><span>function</span><span>getJsApiTicket</span><span>()</span>{</span><span>$access_token_data</span> = <span>$this</span>->getAccessToken();
        <span>if</span>(<span>$access_token_data</span>[<span>'errcode'</span>]==<span>0</span>){
            <span>$access_token</span> = <span>$access_token_data</span>[<span>'access_token'</span>];
            <span>$url</span> = <span>'https://api.weixin.qq.com/cgi-bin/ticket/getticket?access_token='</span>.<span>$access_token</span>.<span>'&type=jsapi'</span>;
            <span>$res</span> = <span>$this</span>->api_request(<span>$url</span>);
            <span>if</span>(<span>$res</span>->errcode==<span>0</span>){
                <span>return</span><span>array</span>(
                    <span>'errcode'</span>     =><span>$res</span>->errcode,
                    <span>'errmsg'</span>      =><span>$res</span>->errmsg,
                    <span>'ticket'</span>      =><span>$res</span>->ticket,
                    <span>'expires_in'</span>  =><span>$res</span>->expires_in
                );
            }<span>else</span>{
                <span>return</span><span>array</span>(
                    <span>'errcode'</span>     =><span>$res</span>->errcode,
                    <span>'errmsg'</span>      =><span>$res</span>->errmsg,
                    <span>'ticket'</span>      =><span>null</span>,
                    <span>'expires_in'</span>  =><span>null</span>
                );
            }
        }<span>else</span>{
            <span>return</span><span>array</span>(
                <span>'errcode'</span>         =><span>$access_token_data</span>[<span>'errcode'</span>],
                <span>'errmsg'</span>          =><span>$access_token_data</span>[<span>'errmsg'</span>],
                <span>'ticket'</span>          =><span>null</span>,
                <span>'expires_in'</span>      =><span>null</span>
            );
        }
    }
    <span>/*
     * 签名算法
     * 签名生成规则如下:参与签名的字段包括noncestr(随机字符串), 有效的jsapi_ticket, timestamp(时间戳), url(当前网页的URL,不包含#及其后面部分) 。
     * 1、对所有待签名参数按照字段名的ASCII 码从小到大排序(字典序)后,
     * 2、使用URL键值对的格式(即key1=value1&key2=value2…)拼接成字符串string1。
     * 这里需要注意的是所有参数名均为小写字符。对string1作sha1加密,字段名和字段值都采用原始值,不进行URL 转义。
     * */</span><span>/*
     * 获取随机字符串
     * mt_rand() 使用 Mersenne Twister 算法返回随机整数。
     * mt_rand(min,max)如果没有提供可选参数 min 和 max,mt_rand() 返回 0 到 RAND_MAX 之间的伪随机数。
     * 想要 5 到 15(包括 5 和 15)之间的随机数,用 mt_rand(5, 15)。
     * 此函数rand()快四倍
     * */</span><span>/*
     * 1.签名用的noncestr和timestamp必须与wx.config中的nonceStr和timestamp相同。
     * 2.签名用的url必须是调用JS接口页面的完整URL。
     * 3.出于安全考虑,开发者必须在服务器端实现签名的逻辑。
     * 注意:
     * 确保你获取用来签名的url是动态获取的,动态页面可参见实例代码中php的实现方式。
     * 如果是html的静态页面在前端通过ajax将url传到后台签名,前端需要用js获取当前页面除去'#'hash部分的链接(可用location.href.split('#')[0]获取,而且需要encodeURIComponent),
     * 因为页面一旦分享,微信客户端会在你的链接末尾加入其它参数,如果不是动态获取当前链接,将导致分享后的页面签名失败。
     * */</span><span>public</span><span><span>function</span><span>getSignPackage</span><span>()</span>
    {</span><span>$jsapiTicket_data</span> = <span>$this</span>->getJsApiTicket();
        <span>$nonceStr</span> = <span>$this</span>->getNonceStr();
        <span>$timestamp</span> = time();
        <span>$url</span> = <span>$this</span>->getUrl();
        <span>if</span>(<span>$jsapiTicket_data</span>[<span>'errcode'</span>]==<span>0</span>){
            <span>$jsapiTicket</span> = <span>$jsapiTicket_data</span>[<span>'ticket'</span>];
            <span>// 这里参数的顺序要按照 key 值 ASCII 码升序排序</span><span>$string</span> = <span>"jsapi_ticket=$jsapiTicket&n/span>;
            <span>$signature</span> = sha1(<span>$string</span>);
            <span>return</span><span>array</span>(
                <span>"appId"</span>         => <span>$this</span>->appId,
                <span>"nonceStr"</span>      => <span>$nonceStr</span>,
                <span>"timestamp"</span>     => <span>$timestamp</span>,
                <span>"url"</span>           => <span>$url</span>,
                <span>"signature"</span>     => <span>$signature</span>,
                <span>"rawString"</span>     => <span>$string</span>,
                <span>"errcode"</span>       => <span>$jsapiTicket_data</span>[<span>'errcode'</span>],
                <span>"errmsg"</span>        => <span>$jsapiTicket_data</span>[<span>'errmsg'</span>]
            );
        }<span>else</span>{
            <span>return</span><span>array</span>(
                <span>"appId"</span>         => <span>$this</span>->appId,
                <span>"nonceStr"</span>      => <span>$nonceStr</span>,
                <span>"timestamp"</span>     => <span>$timestamp</span>,
                <span>"url"</span>           => <span>$url</span>,
                <span>"signature"</span>     => <span>null</span>,
                <span>"rawString"</span>     => <span>null</span>,
                <span>"errcode"</span>       => <span>$jsapiTicket_data</span>[<span>'errcode'</span>],
                <span>"errmsg"</span>        => <span>$jsapiTicket_data</span>[<span>'errmsg'</span>]
            );
        }
    }
    <span>/*
     * 获取nonceStr
     * */</span><span>private</span><span><span>function</span><span>getNonceStr</span><span>(<span>$length</span> = <span>16</span>)</span>
    {</span><span>$chars</span> = <span>"abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"</span>;
        <span>$nonceStr</span> = <span>""</span>;
        <span>for</span> (<span>$i</span> = <span>0</span>; <span>$i</span> < <span>$length</span>; <span>$i</span>++) {
            <span>$nonceStr</span> .= substr(<span>$chars</span>, mt_rand(<span>0</span>, strlen(<span>$chars</span>) - <span>1</span>), <span>1</span>);
        }
        <span>return</span><span>$nonceStr</span>;
    }
    <span>/*
     * 获取url
     * url(当前网页的URL,不包含#及其后面部分)
     * */</span><span>private</span><span><span>function</span><span>getUrl</span><span>()</span>{</span><span>$protocol</span> = (!<span>empty</span>(<span>$_SERVER</span>[<span>'HTTPS'</span>]) && <span>$_SERVER</span>[<span>'HTTPS'</span>] !== <span>'off'</span> || <span>$_SERVER</span>[<span>'SERVER_PORT'</span>] == <span>443</span>) ? <span>"https://"</span> : <span>"http://"</span>;
        <span>$url</span> = <span>"$protocol$_SERVER[HTTP_HOST]$_SERVER[REQUEST_URI]"</span>;
        <span>return</span><span>$url</span>;
    }
    <span>/*
     * 微信API调用方法
     * */</span><span>private</span><span><span>function</span><span>api_request</span><span>(<span>$url</span>,<span>$data</span>=null)</span>{</span><span>//初始化cURL方法</span><span>$ch</span> = curl_init();
        <span>//设置cURL参数(基本参数)</span><span>$opts</span> = <span>array</span>(
            <span>//在局域网内访问https站点时需要设置以下两项,关闭ssl验证!</span><span>//此两项正式上线时需要更改(不检查和验证认证)</span>
            CURLOPT_SSL_VERIFYPEER => <span>false</span>,
            CURLOPT_SSL_VERIFYHOST => <span>false</span>,
            CURLOPT_TIMEOUT => <span>500</span>,
            CURLOPT_RETURNTRANSFER => <span>true</span>,
            CURLOPT_URL => <span>$url</span>,
        );
        curl_setopt_array(<span>$ch</span>, <span>$opts</span>);
        <span>//post请求参数</span><span>if</span> (!<span>empty</span>(<span>$data</span>)) {
            curl_setopt(<span>$ch</span>, CURLOPT_POST, <span>true</span>);
            curl_setopt(<span>$ch</span>, CURLOPT_POSTFIELDS, <span>$data</span>);
        }
        <span>//执行cURL操作</span><span>$output</span> = curl_exec(<span>$ch</span>);
        <span>if</span> (curl_errno(<span>$ch</span>)) {    <span>//cURL操作发生错误处理。</span>
            var_dump(curl_error(<span>$ch</span>));
            <span>die</span>;
        }
        <span>//关闭cURL</span>
        curl_close(<span>$ch</span>);
        <span>$res</span> = json_decode(<span>$output</span>);
        <span>return</span> (<span>$res</span>);   <span>//返回json数据</span>
    }

}
</span></span></span></code>
로그인 후 복사
').addClass('pre-numbering').hide(); $(this).addClass('has-numbering').parent().append($numbering); for (i = 1; i ').text(i)); }; $numbering.fadeIn(1700); }); });

위 내용은 PHP 및 SSD 콘텐츠를 포함하여 WeChat JSSDK 페이지 인증의 PHP 구현을 소개합니다. PHP 튜토리얼에 관심이 있는 친구들에게 도움이 되기를 바랍니다.

관련 라벨:
원천:php.cn
본 웹사이트의 성명
본 글의 내용은 네티즌들의 자발적인 기여로 작성되었으며, 저작권은 원저작자에게 있습니다. 본 사이트는 이에 상응하는 법적 책임을 지지 않습니다. 표절이나 침해가 의심되는 콘텐츠를 발견한 경우 admin@php.cn으로 문의하세요.
인기 튜토리얼
더>
최신 다운로드
더>
웹 효과
웹사이트 소스 코드
웹사이트 자료
프론트엔드 템플릿