新浪支付接口对接的总结

最近公司用户了新浪支付，账户托管，写的过程中发现有问题的话百度很少就记录下自己疑惑的地方

1.接口介入方式

这种接口介入的方式，各大平台都差不多的，支付宝啊，微信支付啊，融宝支付啊，银盈通啊。都是系统必要的参数，和接口需要的参数，拼一起然互加密。

新浪支付生成 sign 的方式，签名的方式可以是 RSA 的加密方式和 MD5 的加密的方式，不过新浪推荐的是MD5的加密方式，但是给的demo里面是RSA的方式，所有自己用的也会是RSA的加密方式。

简单的例子创建激活会员

public static SinaPayResponse createActivateMember(Map<String, Object> data) throws Exception {SinaPayResponse response = new SinaPayResponse();if (data == null || data.size() == 0) {response.setCode(ResponceCodeEnum.MissingParameter.getCode());response.setErrorMsg("传入的参数为空");return response;}// 用户标识信息if (data.get("identity_id") == null || data.get("identity_id").equals("")) {response.setCode(ResponceCodeEnum.MissingParameter.getCode());response.setErrorMsg("传入的参数:用户标识信息(identity_id)为空");return response;}Map<String, Object> map = new HashMap<String, Object>();map.put("identity_id", data.get("identity_id"));// 用户标识类型,目前只支持UIDmap.put("identity_type", SinaPayConfig.IDENTITY_TYPE);// 1: 个人会员;2: 企业会员。默认是1if (data.get("member_type") != null && !data.get("member_type").equals("")) {map.put("member_type", data.get("member_type"));}// 系统参数map.put("service", SinaPayConfig.CREATE_ACTIVATE_MEMBER);String str = SinaUtils.createLinkString(map, true);String res = "";try {res = CallServiceUtil.sendPost(SinaPayConfig.MEMBER_TSET_URL, str);} catch (Exception e) {response.setCode(ResponceCodeEnum.connectionTimedOut.getCode());response.setErrorMsg("请求超时");return response;}String result = URLDecoder.decode(res, SinaUtils.CHARSET);Map<String, String> resultMap = GsonUtil.fronJson2Map(result);if (SinaPayConfig.APPLY_SUCCESS.equals(resultMap.get("response_code"))) { // 成功response.setCode(ResponceCodeEnum.success.getCode());response.setErrorMsg("请求成功");response.setResponseMap(resultMap);return response;} else {response.setCode(ResponceCodeEnum.requestFails.getCode());response.setErrorMsg(resultMap.get("response_message"));response.setResponseMap(resultMap);return response;}}

String str = SinaUtils.createLinkString(map, true); 这一步是在吧我们需要的参数，包括系统的参数，也包括接口需要的参数，生成待签名的字符串

/*** 把参数重新排序下* * @param map* @param b* @return* @throws Exception */public static String createLinkString(Map<String, Object> map, boolean encode) throws Exception {map.put("version", SinaPayConfig.VERSION);map.put("request_time", SinaTimeUtils.getTime());map.put("partner_id", SinaPayConfig.PARTNER_ID);map.put("_input_charset", SinaUtils.CHARSET);String content = SinaUtils.getContent(map);map.put("sign", SinaUtils.getSign(content));map.put("sign_type", SinaPayConfig.SIGN_TYPE);List<String> keys = new ArrayList<String>(map.keySet());Collections.sort(keys);String prestr = "";String charset = (String) map.get("_input_charset");for (int i = 0; i < keys.size(); i++) {String key = keys.get(i);String value = (String) map.get(key);if (encode) {try {value = URLEncoder.encode(URLEncoder.encode(value, charset), charset);} catch (UnsupportedEncodingException e) {e.printStackTrace();}}if (i == keys.size() - 1) {prestr = prestr + key + "=" + value;} else {prestr = prestr + key + "=" + value + "&";}}return prestr;}

res = CallServiceUtil.sendPost(SinaPayConfig.MEMBER_TSET_URL, str); 这一步是在请求接口，返回结果

public static String sendPost(String url, String param) {PrintWriter out = null;BufferedReader in = null;String result = "";try {URL realUrl = new URL(url);URLConnection conn = realUrl.openConnection();conn.setRequestProperty("accept", "*/*");conn.setRequestProperty("connection", "Keep-Alive");conn.setRequestProperty("user-agent", "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1;SV1)");conn.setDoOutput(true);conn.setDoInput(true);out = new PrintWriter(conn.getOutputStream());out.print(param);out.flush();in = new BufferedReader(new InputStreamReader(conn.getInputStream()));String line;while ((line = in.readLine()) != null) {result += line;}} catch (Exception e) {System.out.println("POST请求异常:" + e);e.printStackTrace();} finally {try {if (out != null) {out.close();}if (in != null) {in.close();}} catch (IOException ex) {ex.printStackTrace();}}return result;}

这个时候返回的结果是经过URLencode的代码，所以需要处理下

String result = URLDecoder.decode(res, SinaUtils.CHARSET);

Map<String, String> resultMap = GsonUtil.fronJson2Map(result); 这一步是在把得到的结果的传，转成Map

 public static <T> T fronJson2Map(String json) {return gson.fromJson(json, new TypeToken<Map<String, String>>() {}.getType());}

大部分的接口都是这样的调用的方式，有些接口需要的一些参数涉及用户的隐私，所以需要对参数进行RSA加密

/*** 比如一些参数需要加密的话* * @param string 待加密的信息* @throws Exception * @throws  */public static String getRSAEncodeDoc(String data) throws Exception {byte[] data_byte = RSA.encryptByPublicKey(data.getBytes(CHARSET), SinaPayConfig.ENCRYPT);return Base64.encode(data_byte);}

这个是 RSA 的类

package com.sinapay.util;import java.io.ByteArrayOutputStream;
import java.io.UnsupportedEncodingException;
import java.security.InvalidKeyException;
import java.security.Key;
import java.security.KeyFactory;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.NoSuchAlgorithmException;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.Signature;
import java.security.SignatureException;
import java.security.cert.Certificate;
import java.security.interfaces.RSAPrivateKey;
import java.security.interfaces.RSAPublicKey;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;
import java.util.HashMap;
import java.util.Map;import javax.crypto.Cipher;import org.apache.commons.codec.binary.Base64;/**** <p>RSA签名,加解密处理核心文件，注意：密钥长度1024</p>* @author leelun* @version $Id: RSA.java, v 0.1 2013-11-15 下午2:33:53 lilun Exp $*/
public class RSA {/*** 签名算法*/public static final String  SIGNATURE_ALGORITHM = "SHA1withRSA";/*** 加密算法RSA*/public static final String  KEY_ALGORITHM       = "RSA";/*** RSA最大加密明文大小*/private static final int    MAX_ENCRYPT_BLOCK   = 117;/*** RSA最大解密密文大小*/private static final int    MAX_DECRYPT_BLOCK   = 128;/*** 获取公钥的key*/private static final String PUBLIC_KEY          = "RSAPublicKey";/*** 获取私钥的key*/private static final String PRIVATE_KEY         = "RSAPrivateKey";/*** <p>* 生成密钥对(公钥和私钥)* </p>** @return* @throws Exception*/public static Map<String, Object> genKeyPair() throws Exception {KeyPairGenerator keyPairGen = KeyPairGenerator.getInstance(KEY_ALGORITHM);keyPairGen.initialize(1024);KeyPair keyPair = keyPairGen.generateKeyPair();RSAPublicKey publicKey = (RSAPublicKey) keyPair.getPublic();RSAPrivateKey privateKey = (RSAPrivateKey) keyPair.getPrivate();Map<String, Object> keyMap = new HashMap<String, Object>(2);keyMap.put(PUBLIC_KEY, publicKey);keyMap.put(PRIVATE_KEY, privateKey);return keyMap;}public static void main(String[] args) throws Exception {Map<String, Object> genKeyPair = genKeyPair();String base64publicKey = getPublicKey(genKeyPair);System.out.println("公钥 \n" + base64publicKey);String base64privateKey = getPrivateKey(genKeyPair);System.out.println("私钥\n" + base64privateKey);String passwd = "cat123113";String charsetName = "utf-8";String encryptByPublicKey = Base64.encodeBase64String((encryptByPublicKey(passwd.getBytes(charsetName), base64publicKey)));System.out.println("加密\n" + encryptByPublicKey);byte[] decryptByPrivateKey = decryptByPrivateKey(Base64.decodeBase64(encryptByPublicKey),base64privateKey);String string = new String(decryptByPrivateKey, "utf-8");System.out.println("解密后\n" + string);}/*** 签名字符串** @param text*            需要签名的字符串* @param privateKey 私钥(BASE64编码)** @param charset*            编码格式* @return 签名结果(BASE64编码)*/public static String sign(String text, String privateKey, String charset) throws Exception {byte[] keyBytes = Base64.decodeBase64(privateKey);PKCS8EncodedKeySpec pkcs8KeySpec = new PKCS8EncodedKeySpec(keyBytes);KeyFactory keyFactory = KeyFactory.getInstance(KEY_ALGORITHM);PrivateKey privateK = keyFactory.generatePrivate(pkcs8KeySpec);Signature signature = Signature.getInstance(SIGNATURE_ALGORITHM);signature.initSign(privateK);signature.update(getContentBytes(text, charset));byte[] result = signature.sign();return Base64.encodeBase64String(result);}public static String sign(String text, PrivateKey privateKey, String charset)throws SignatureException,InvalidKeyException {try {Signature signature = Signature.getInstance(SIGNATURE_ALGORITHM);signature.initSign(privateKey);signature.update(getContentBytes(text, charset));byte[] result = signature.sign();return Base64.encodeBase64String(result);} catch (NoSuchAlgorithmException e) {//不可能发生，return null;}}/*** 签名字符串** @param text*            需要签名的字符串* @param sign*            客户签名结果* @param publicKey*            公钥(BASE64编码)* @param charset*            编码格式* @return 验签结果*/public static boolean verify(String text, String sign, String publicKey, String charset)throws Exception {byte[] keyBytes = Base64.decodeBase64(publicKey);X509EncodedKeySpec keySpec = new X509EncodedKeySpec(keyBytes);KeyFactory keyFactory = KeyFactory.getInstance(KEY_ALGORITHM);PublicKey publicK = keyFactory.generatePublic(keySpec);Signature signature = Signature.getInstance(SIGNATURE_ALGORITHM);signature.initVerify(publicK);signature.update(getContentBytes(text, charset));return signature.verify(Base64.decodeBase64(sign));}/*** <P>* 私钥解密* </p>** @param encryptedData 已加密数据* @param privateKey 私钥(BASE64编码)* @return* @throws Exception*/public static byte[] decryptByPrivateKey(byte[] encryptedData, String privateKey)throws Exception {byte[] keyBytes = Base64.decodeBase64(privateKey);PKCS8EncodedKeySpec pkcs8KeySpec = new PKCS8EncodedKeySpec(keyBytes);KeyFactory keyFactory = KeyFactory.getInstance(KEY_ALGORITHM);Key privateK = keyFactory.generatePrivate(pkcs8KeySpec);Cipher cipher = Cipher.getInstance(keyFactory.getAlgorithm());cipher.init(Cipher.DECRYPT_MODE, privateK);int inputLen = encryptedData.length;ByteArrayOutputStream out = new ByteArrayOutputStream();int offSet = 0;byte[] cache;int i = 0;// 对数据分段解密while (inputLen - offSet > 0) {if (inputLen - offSet > MAX_DECRYPT_BLOCK) {cache = cipher.doFinal(encryptedData, offSet, MAX_DECRYPT_BLOCK);} else {cache = cipher.doFinal(encryptedData, offSet, inputLen - offSet);}out.write(cache, 0, cache.length);i++;offSet = i * MAX_DECRYPT_BLOCK;}byte[] decryptedData = out.toByteArray();out.close();return decryptedData;}/*** <p>* 公钥解密* </p>** @param encryptedData 已加密数据* @param publicKey 公钥(BASE64编码)* @return* @throws Exception*/public static byte[] decryptByPublicKey(byte[] encryptedData, String publicKey)throws Exception {byte[] keyBytes = Base64.decodeBase64(publicKey);X509EncodedKeySpec x509KeySpec = new X509EncodedKeySpec(keyBytes);KeyFactory keyFactory = KeyFactory.getInstance(KEY_ALGORITHM);Key publicK = keyFactory.generatePublic(x509KeySpec);Cipher cipher = Cipher.getInstance(keyFactory.getAlgorithm());cipher.init(Cipher.DECRYPT_MODE, publicK);int inputLen = encryptedData.length;ByteArrayOutputStream out = new ByteArrayOutputStream();int offSet = 0;byte[] cache;int i = 0;// 对数据分段解密while (inputLen - offSet > 0) {if (inputLen - offSet > MAX_DECRYPT_BLOCK) {cache = cipher.doFinal(encryptedData, offSet, MAX_DECRYPT_BLOCK);} else {cache = cipher.doFinal(encryptedData, offSet, inputLen - offSet);}out.write(cache, 0, cache.length);i++;offSet = i * MAX_DECRYPT_BLOCK;}byte[] decryptedData = out.toByteArray();out.close();return decryptedData;}/*** <p>* 公钥加密* </p>** @param data 源数据* @param publicKey 公钥(BASE64编码)* @return* @throws Exception*/public static byte[] encryptByPublicKey(byte[] data, String publicKey) throws Exception {byte[] keyBytes = Base64.decodeBase64(publicKey);X509EncodedKeySpec x509KeySpec = new X509EncodedKeySpec(keyBytes);KeyFactory keyFactory = KeyFactory.getInstance(KEY_ALGORITHM);Key publicK = keyFactory.generatePublic(x509KeySpec);// 对数据加密Cipher cipher = Cipher.getInstance(keyFactory.getAlgorithm());cipher.init(Cipher.ENCRYPT_MODE, publicK);int inputLen = data.length;ByteArrayOutputStream out = new ByteArrayOutputStream();int offSet = 0;byte[] cache;int i = 0;// 对数据分段加密while (inputLen - offSet > 0) {if (inputLen - offSet > MAX_ENCRYPT_BLOCK) {cache = cipher.doFinal(data, offSet, MAX_ENCRYPT_BLOCK);} else {cache = cipher.doFinal(data, offSet, inputLen - offSet);}out.write(cache, 0, cache.length);i++;offSet = i * MAX_ENCRYPT_BLOCK;}byte[] encryptedData = out.toByteArray();out.close();return encryptedData;}/*** <p>* 公钥加密* </p>** @param data 源数据* @param cert 证书* @return* @throws Exception*/public static byte[] encryptByPublicKey(byte[] data, Certificate cert) throws Exception {// 对数据加密PublicKey uk = cert.getPublicKey();Cipher cipher = Cipher.getInstance(uk.getAlgorithm());cipher.init(Cipher.ENCRYPT_MODE, uk);int inputLen = data.length;ByteArrayOutputStream out = new ByteArrayOutputStream();int offSet = 0;byte[] cache;int i = 0;// 对数据分段加密while (inputLen - offSet > 0) {if (inputLen - offSet > MAX_ENCRYPT_BLOCK) {cache = cipher.doFinal(data, offSet, MAX_ENCRYPT_BLOCK);} else {cache = cipher.doFinal(data, offSet, inputLen - offSet);}out.write(cache, 0, cache.length);i++;offSet = i * MAX_ENCRYPT_BLOCK;}byte[] encryptedData = out.toByteArray();out.close();return encryptedData;}/*** <p>* 私钥加密* </p>** @param data 源数据* @param privateKey 私钥(BASE64编码)* @return* @throws Exception*/public static byte[] encryptByPrivateKey(byte[] data, String privateKey) throws Exception {byte[] keyBytes = Base64.decodeBase64(privateKey);PKCS8EncodedKeySpec pkcs8KeySpec = new PKCS8EncodedKeySpec(keyBytes);KeyFactory keyFactory = KeyFactory.getInstance(KEY_ALGORITHM);Key privateK = keyFactory.generatePrivate(pkcs8KeySpec);Cipher cipher = Cipher.getInstance(keyFactory.getAlgorithm());cipher.init(Cipher.ENCRYPT_MODE, privateK);int inputLen = data.length;ByteArrayOutputStream out = new ByteArrayOutputStream();int offSet = 0;byte[] cache;int i = 0;// 对数据分段加密while (inputLen - offSet > 0) {if (inputLen - offSet > MAX_ENCRYPT_BLOCK) {cache = cipher.doFinal(data, offSet, MAX_ENCRYPT_BLOCK);} else {cache = cipher.doFinal(data, offSet, inputLen - offSet);}out.write(cache, 0, cache.length);i++;offSet = i * MAX_ENCRYPT_BLOCK;}byte[] encryptedData = out.toByteArray();out.close();return encryptedData;}/*** @param content* @param charset* @return* @throws SignatureException* @throws UnsupportedEncodingException*/private static byte[] getContentBytes(String content, String charset) {if (charset == null || "".equals(charset)) {return content.getBytes();}try {return content.getBytes(charset);} catch (UnsupportedEncodingException e) {throw new RuntimeException("签名过程中出现错误,指定的编码集不对,您目前指定的编码集是:" + charset);}}/*** <p>* 获取私钥* </p>** @param keyMap 密钥对* @return* @throws Exception*/public static String getPrivateKey(Map<String, Object> keyMap) throws Exception {Key key = (Key) keyMap.get(PRIVATE_KEY);return Base64.encodeBase64String(key.getEncoded());}/*** <p>* 获取公钥* </p>** @param keyMap 密钥对* @return* @throws Exception*/public static String getPublicKey(Map<String, Object> keyMap) throws Exception {Key key = (Key) keyMap.get(PUBLIC_KEY);return Base64.encodeBase64String(key.getEncoded());}
}

大概就是这么多了，可能还有些要注意的地方

1.在请求审核企业会员资质（audit_member_infos）中需要上传一个zip的压缩包，里面需要的内容都是定好了的，比如上传了8个文件，每个文件都以名称和后缀的形式放在一起，然后压缩成zip包，zip包的命名和这个接口需要的传的参数 fileName 要一样，然后，用工具类，对zip包进行 MD5 摘要计算，计算的代码

 public static String getFileMD5(File file) {if (!file.isFile()){return null;}MessageDigest digest = null;FileInputStream in=null;byte buffer[] = new byte[1024];int len;try {digest = MessageDigest.getInstance("MD5");in = new FileInputStream(file);while ((len = in.read(buffer, 0, 1024)) != -1) {digest.update(buffer, 0, len);}in.close();} catch (Exception e) {e.printStackTrace();return null;}

然后调用它给的一个上传文件的工具类，上传的代码

String file_path = data.get("file_path").toString();File file = new File(file_path);String filemd5 = Tools.getFileMD5(file);System.out.println(filemd5);System.out.println("-------------------------start------------------------------");System.out.println("链接sftp");sftp s = new sftp();try {s.upload("/upload/", file_path, s.connectSFTP());System.out.print("sftp文件上传成功！");s.ls("/upload/", s.connectSFTP());} catch (SftpException e) {e.printStackTrace();System.out.print("sftp文件上传失败！");response.setCode(ResponceCodeEnum.fileUploadFail.getCode());response.setErrorMsg("sftp文件上传失败！");return response;}System.out.println("sftp关闭");System.out.println("-------------------------end------------------------------");

sftp 类

package com.sinapay.util;import java.io.File;
import java.io.FileInputStream;
import java.util.Properties;
import java.util.Vector;import com.jcraft.jsch.Channel;
import com.jcraft.jsch.ChannelSftp;
import com.jcraft.jsch.JSch;
import com.jcraft.jsch.JSchException;
import com.jcraft.jsch.Session;
import com.jcraft.jsch.SftpException;public class sftp {protected String host = "";// 新浪的给的服务器地址protected String username = "";//用户名protected String password;protected String privateKey = "c:\\data\\id_rsa";// 秘钥的位置protected String passphrase;protected int port = 50022;// 端口public ChannelSftp connectSFTP() {JSch jsch = new JSch();Channel channel = null;try {if (privateKey != null && !"".equals(privateKey)) {if (passphrase != null && "".equals(passphrase)) {jsch.addIdentity(privateKey, passphrase);} else {jsch.addIdentity(privateKey);}}Session session = jsch.getSession(username, host, port);if (password != null && !"".equals(password)) {session.setPassword(password);}Properties sshConfig = new Properties();sshConfig.put("StrictHostKeyChecking", "no");// do not verify host keysession.setConfig(sshConfig);session.setServerAliveInterval(92000);session.connect();channel = session.openChannel("sftp");channel.connect();} catch (JSchException e) {e.printStackTrace();}return (ChannelSftp) channel;}public void upload(String directory, String uploadFile, ChannelSftp sftp) {try {sftp.cd(directory);File file = new File(uploadFile);sftp.put(new FileInputStream(file), file.getName());} catch (Exception e) {e.printStackTrace();}}@SuppressWarnings("rawtypes")public void ls(String directory, ChannelSftp sftp) throws SftpException {sftp.cd(directory);Vector v = sftp.ls("*.*");for (int i = 0; i < v.size(); i++) {System.out.println(v.get(i));}}public void download(String directory, String downloadFile, String saveFile, ChannelSftp sftp) {try {sftp.cd(directory);sftp.get(downloadFile, saveFile);} catch (Exception e) {e.printStackTrace();}}public void delete(String directory, String deleteFile, ChannelSftp sftp) {try {sftp.cd(directory);sftp.rm(deleteFile);} catch (Exception e) {e.printStackTrace();}}public void disconnected(ChannelSftp sftp) {if (sftp != null) {try {sftp.getSession().disconnect();} catch (JSchException e) {e.printStackTrace();}sftp.disconnect();}}}

其他的都是接口调用了，都没啥了。

新浪支付接口对接的总结相关推荐

关于调用新浪支付接口
最近公司要做一个新浪支付接口的应用. 首先你得确认已成功申请到应用appkey 及appSecret. 要想调用新浪的支付接口还得申请一个支付key.这些都准备完毕了.接下来调用新浪官方的接口接口一 ...
对接新浪股票交易接口api需要注意哪些细节？
API接口是一个很抽象的概念,有许多接口,在实际应用中,会产生各种不同的影响,所以,在接入新浪股票交易接口api的过程中,需要注意哪些细节 ? 首先是系统的联结,随着软件的不断发展,很多的软件都被分解 ...
php查询ip归属地api接口_【php】利用新浪api接口与php获取远程数据的方法，获取IP地址，并获取相应的IP归属地...
本文与<[Servlet]Javaweb中,利用新浪api接口,获取IP地址,并获取相应的IP归属地>(点击打开链接)为姊妹篇,只是后端编程语言换成了php. 做出同样的效果,打开页面,得 ...
总结新浪friendship接口
总结新浪friendship接口 1.好友和粉丝的上限(双向关注):5000,不管是取详情还是取id. http://forum.open.weibo.com/read.php?tid=67480 h ...
php新浪获取ip接口,【php】利用新浪api接口与php获取远程数据的步骤，获取IP地址，并获取相应的IP归属地...
[php]利用新浪api接口与php获取远程数据的方法,获取IP地址,并获取相应的IP归属地本文与<[Servlet]Javaweb中,利用新浪api接口,获取IP地址,并获取相应的IP归属地 ...
mysql 数字除以一万_腾讯股票接口、和讯网股票接口、新浪股票接口、雪球股票数据、网易股票数据...
腾讯股票接口: 大单数据 http://stock.finance.qq.com/sstock/list/view/dadan.php?t=js&c=sz002451&max=80&a ...
php 股票数据 sina,腾讯股票接口、和讯网股票接口、新浪股票接口、雪球股票数据、网易股票数据...
腾讯股票接口: 分时图 http://data.gtimg.cn/flashdata/hushen/minute/sz000001.js?maxage=110&0.28163905744440 ...
新浪股票接口 php,通过新浪股票行情接口，怎么判断当天除权除息的股票？
我想制作一个功能,点下按钮,就可以把当天除权除息的股票列出来,我的网站股票行情是调用的新浪接口. 不知道谁有开发过这个功能的,或者有技术开发这个小功能的,本人不甚感激,也可有酬劳略表心意哦. 回复讨论 ...
android股票sdk,新浪股票接口AndroidSDK
昨天想到一个点子,需要访问股票行情.于是在网上搜了一下免费的股市行情的接口.发现新浪股票的数据接口比较稳定,于是就用它了. 网上对于新浪股票的数据接口介绍比较详细,并且实现也很简单,所以花了一下午就基 ...

新浪支付接口对接的总结

新浪支付接口对接的总结相关推荐

最新文章

热门文章