前言:微信開發平臺為開發者提供openId用來區分用戶的唯一性,但是openId只是在獨立的應用內是唯一的,如果開發者擁有多個移動應用、網站應用、和公眾帳號(包括小程式),可通過 UnionID 來區分用戶的唯一性,因為只要是同一個微信開放平臺帳號下所有應用,用戶的 UnionID 是唯一的,換句話說,同一用戶,對同一個微信開放平臺下的不同應用,UnionID是相同的,
微信官方檔案:
https://developers.weixin.qq.com/miniprogram/dev/framework/open-ability/union-id.html
獲取UnionID的兩種方式:
- 如果開發者帳號下存在同主體的公眾號,并且該用戶已經關注了該公眾號,開發者可以直接通過 wx.login + code2Session 獲取到該用戶 UnionID
- 從加密資料中獲取UnionID
ps : 這里要注意的是微信開放平臺如果沒有系結微信小程式,不可能獲取到unionId,無論哪種方式
1. 已經關注公眾號獲取UnionID
這種方式對于開發者來說是獲取unionID最簡單的方式,開發者可以直接通過 wx.login + code2Session 獲取到該用戶 UnionID,
以下代碼只針對于Java語言來演示
package com.jinke.applets.common;
import com.alibaba.fastjson.JSONObject;
import com.jinke.utils.HttpUtil;
import lombok.extern.slf4j.Slf4j;
import java.util.HashMap;
import java.util.Map;
/**
* @author zsc
* @date 2020/7/17
*/
@Slf4j
public class AppletsWeChatUtil {
// 登錄憑證校驗地址
public final static String GetPageAccessTokenUrl = "https://api.weixin.qq.com/sns/jscode2session?appid=APPID&secret=SECRET&js_code=CODE&grant_type=authorization_code";
// 小程式的appId以及appSecret
private static final String appId = "xxxxxxxxxxxxx";
private static final String appSecret = "xxxxxxxxxxxxxxx";
/**
* 小程式授權獲取openID和unionID
* @param code 前端通過wx.login獲取的wxCode
* @return
*/
public static Map<String, String> oauth2GetUnion(String code) {
String requestUrl = GetPageAccessTokenUrl.replace("APPID", appId).replace("SECRET", appSecret).replace("CODE", code);
Map<String, String> result = new HashMap<>();
try {
/**
* HttpUtil工具類會在下方貼出,此處也可換成自己的寫法,只要是get請求就可以
* 此處請求回傳的json資料包為:
* openid string 用戶唯一標識
* session_key string 會話密鑰
* unionid string 用戶在開放平臺的唯一識別符號
* errcode number 錯誤碼
* errmsg string 錯誤資訊
*/
String response = HttpUtil.get(requestUrl);
JSONObject jsonResult = JSONObject.parseObject(response);
String openid = String.valueOf(jsonResult.get("openid"));
// 若用戶沒有改小程式同主體公眾號,則此處unionID為空
String unionid = String.valueOf(jsonResult.get("unionid"));
result.put("openid", openid);
result.put("unionid",unionid);
} catch (Exception e) {
log.info("授權獲取unionid出現例外");
e.printStackTrace();
}
return result;
}
}
2. 解密資料獲取UnionID
此方式針對于沒有主體公眾號或者做不到讓用戶都關注公眾號的情況下獲取UnionID.大致流程如下
- 前端js調取公開介面wx.getUserInfo獲取encryptedData和iv
- 根據code2Session獲取session_key和openid,如果有unionid直接回傳
- 根據session_key,encryptedData和iv進行AES解密
package com.jinke.rusi.utils;
import com.alibaba.fastjson.JSONObject;
import com.jinke.utils.HttpUtil;
import lombok.extern.slf4j.Slf4j;
import java.util.HashMap;
import java.util.Map;
/**
* @author zsc
* @date 2020/7/17
*/
@Slf4j
public class AppletsWeChatUtil {
// 登錄憑證校驗地址
public final static String GetPageAccessTokenUrl = "https://api.weixin.qq.com/sns/jscode2session?appid=APPID&secret=SECRET&js_code=CODE&grant_type=authorization_code";
// 小程式的appId以及appSecret
private static final String appId = "xxxxxxxxxxxxx";
private static final String appSecret = "xxxxxxxxxxxxxxx";
/**
* 小程式授權
* @param code WxCode
* @param encryptedData 加密資料
* @param iv 偏移量iv
* @return
*/
public static Map<String, String> oauth2GetUnionId(String code,String encryptedData,String iv) {
String requestUrl = GetPageAccessTokenUrl.replace("APPID", appId).replace("SECRET", appSecret).replace("CODE", code);
Map<String, String> result = new HashMap<>();
try {
String response = HttpUtil.get(requestUrl);
JSONObject jsonObject = JSONObject.parseObject(response);
String openid = String.valueOf(jsonObject.get("openid"));
// 獲取解密所需的session_key
String session_key = String.valueOf(jsonObject.get("session_key"));
// 通過AES解密encryptedData 獲取union_id,工具類見下方
String encryptedResult = AESUtil.decrypt(encryptedData, session_key, iv, "UTF-8");
/**
* 此處解密之后資料包格式為:
* openid string 用戶唯一標識
* nickName string 昵稱
* gender string 性別
* city string 城市
* province string 省份
* country string 國家
* avatarUrl string 頭像
* unionId string 用戶在開放平臺的唯一識別符號
* watermark JSON 資料水印,包括appid,timestamp欄位 為了校驗資料的有效性
*/
JSONObject parseObject = JSONObject.parseObject(encryptedResult);
// ps:此處一定要注意解密的出來的欄位名為駝峰命名的unionId,openId,并非直接授權的unionid
String unionid = String.valueOf(parseObject.get("unionId"));
result.put("openid", openid);
result.put("unionid",unionid);
} catch (Exception e) {
log.info("授權獲取unionid出現例外");
e.printStackTrace();
}
return result;
}
}
工具類及依賴
AESUtil:
package com.jinke.rusi.utils;
import net.sf.json.JSONObject;
import org.apache.commons.codec.binary.Base64;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.IllegalBlockSizeException;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import java.io.UnsupportedEncodingException;
import java.security.*;
import java.security.spec.InvalidParameterSpecException;
/**
* @author zsc
* @date 2020/07/17
* AES-128-CBC 加密方式
* AES-128-CBC可以自己定義“密鑰”和“偏移量“,
* AES-128是jdk自動生成的“密鑰”,
*/
public class AESUtil {
static {
Security.addProvider(new BouncyCastleProvider());
}
/**
* AES解密
* @param data 密文,被加密的資料
* @param key 秘鑰
* @param iv 偏移量
* @param encodingFormat 解密后的結果需要進行的編碼
* @return
* @throws Exception
*/
public static String decrypt(String data, String key, String iv, String encodingFormat) throws Exception {
//被加密的資料
byte[] dataByte = Base64.decodeBase64(data);
//加密秘鑰
byte[] keyByte = Base64.decodeBase64(key);
//偏移量
byte[] ivByte = Base64.decodeBase64(iv);
try {
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS7Padding");
SecretKeySpec spec = new SecretKeySpec(keyByte, "AES");
AlgorithmParameters parameters = AlgorithmParameters.getInstance("AES");
parameters.init(new IvParameterSpec(ivByte));
cipher.init(Cipher.DECRYPT_MODE, spec, parameters);// 初始化
byte[] resultByte = cipher.doFinal(dataByte);
if (null != resultByte && resultByte.length > 0) {
String result = new String(resultByte, encodingFormat);
return result;
}
return null;
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
} catch (NoSuchPaddingException e) {
e.printStackTrace();
} catch (InvalidParameterSpecException e) {
e.printStackTrace();
} catch (InvalidKeyException e) {
e.printStackTrace();
} catch (InvalidAlgorithmParameterException e) {
e.printStackTrace();
} catch (IllegalBlockSizeException e) {
e.printStackTrace();
} catch (BadPaddingException e) {
e.printStackTrace();
} catch (UnsupportedEncodingException e) {
e.printStackTrace();
}
return null;
}
}
HttpUtil:
package com.jinke.utils;
import com.alibaba.fastjson.JSON;
import org.apache.http.HttpEntity;
import org.apache.http.StatusLine;
import org.apache.http.client.methods.CloseableHttpResponse;
import org.apache.http.client.methods.HttpGet;
import org.apache.http.client.methods.HttpPost;
import org.apache.http.client.methods.HttpRequestBase;
import org.apache.http.entity.StringEntity;
import org.apache.http.impl.client.CloseableHttpClient;
import org.apache.http.message.BasicNameValuePair;
import org.apache.http.util.EntityUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import java.io.IOException;
import java.io.UnsupportedEncodingException;
import java.util.*;
public class HttpUtil {
private static final Logger LOGGER = LoggerFactory.getLogger(HttpUtil.class);
public static int DATA_JSON = 1;
public static int DATA_FORM = 2;
private static String JSON_CONTENT_TYPE = "application/json";
private static String CHARACTER = "UTF-8";
private static String CONTENT_TYPE_NAME = "Content-Type";
public static String get(String url) {
return send(new HttpGet(url));
}
public static String post(String url, Map<String, Object> param, Integer dataType) {
return post(url, param, dataType, null);
}
public static String post(String url, Map<String, Object> param, Integer dataType, Map<String, String> headers) {
HttpPost post = new HttpPost(url);
if (dataType == DATA_FORM) {
Iterator localIterator;
Map.Entry<String, String> entries;
if (headers != null)
for (localIterator = headers.entrySet().iterator(); localIterator.hasNext(); ) {
entries = (Map.Entry) localIterator.next();
post.setHeader((String) entries.getKey(), (String) entries.getValue());
}
Object paramList = new ArrayList();
for (Map.Entry<String, Object> entry : param.entrySet()) {
((List) paramList).add(new BasicNameValuePair((String) entry.getKey(), entry.getValue().toString()));
}
try {
post.setEntity(new org.apache.http.client.entity.UrlEncodedFormEntity((List) paramList));
} catch (UnsupportedEncodingException e) {
LOGGER.info(e.getMessage());
}
} else if (dataType.intValue() == DATA_JSON) {
post.setHeader(CONTENT_TYPE_NAME, JSON_CONTENT_TYPE);
post.setEntity(new StringEntity(JSON.toJSONString(param), CHARACTER));
}
return send(post);
}
private static String send(HttpRequestBase request) {
CloseableHttpClient client = org.apache.http.impl.client.HttpClients.createDefault();
String result = null;
try {
CloseableHttpResponse response = client.execute(request);
HttpEntity entity = response.getEntity();
StatusLine status = response.getStatusLine();
if (status.getStatusCode() == 200) {
result = EntityUtils.toString(entity);
EntityUtils.consume(entity);
} else {
result = String.valueOf(status);
}
LOGGER.info("http response ------------" + result);
response.close();
} catch (IOException e) {
LOGGER.info(e.getMessage());
}
return result;
}
}
AES加密依賴的包
這里需要注意的是,AES解密的時候需要用到javax.crypto.*包的類,在jdk的 jce.jar中提供,是jdk自帶的庫,如果是MAVEN專案,則需要在pom.xml檔案中配置指定編譯路徑jce.jar
如果配置路徑麻煩,可以選擇去maven或者gradle自行下載,
Maven依賴:
<!-- https://mvnrepository.com/artifact/org.bouncycastle/bcprov-jdk15on -->
<dependency>
<groupId>org.bouncycastle</groupId>
<artifactId>bcprov-jdk15on</artifactId>
<version>1.50</version>
</dependency>
Gradle依賴:
// https://mvnrepository.com/artifact/org.bouncycastle/bcprov-jdk15on
compile group: 'org.bouncycastle', name: 'bcprov-jdk15on', version: '1.50'
轉載請註明出處,本文鏈接:https://www.uj5u.com/houduan/248588.html
標籤:java