支付寶支付流程
在python中封裝alipay
安裝
>: pip install python-alipay-sdk --upgrade
# 如果拋ssl相關錯誤,代表缺失該包
>: pip install pyopenssl
結構
libs
├── AliPay # aliapy二次封裝包
│ ├── __init__.py # 包檔案
│ ├── pem # 公鑰私鑰檔案夾
│ │ ├── alipay_public_key.pem # 支付寶公鑰檔案
│ │ ├── app_private_key.pem # 應用私鑰檔案
│ ├── pay.py # 支付檔案
└── └── settings.py # 應用配置
alipay_public_key.pem
https://openhome.alipay.com/develop/sandbox/account
前往支付寶開放平臺,注冊沙箱環境獲取支付寶公鑰和應用私鑰,進行測驗,
-----BEGIN PUBLIC KEY-----
拿應用公鑰跟支付寶換來的支付寶公鑰
-----END PUBLIC KEY-----
app_private_key.pem
-----BEGIN RSA PRIVATE KEY-----
通過支付寶公鑰私鑰簽發軟體簽發的應用私鑰
-----END RSA PRIVATE KEY-----
setting.py
import os
# 應用私鑰
APP_PRIVATE_KEY_STRING = open(os.path.join(os.path.dirname(os.path.abspath(__file__)), 'pem', 'app_private_key.pem')).read()
# 支付寶公鑰
ALIPAY_PUBLIC_KEY_STRING = open(os.path.join(os.path.dirname(os.path.abspath(__file__)), 'pem', 'alipay_public_key.pem')).read()
# 應用ID
APP_ID = '2016093000631831'
# 加密方式
SIGN = 'RSA2'
# 是否是支付寶測驗環境(沙箱環境),如果采用真是支付寶環境,配置False
DEBUG = True
# 支付網關
GATEWAY = 'https://openapi.alipaydev.com/gateway.do?' if DEBUG else 'https://openapi.alipay.com/gateway.do?'
pay.py
from alipay import AliPay
from . import settings
# 支付物件
alipay = AliPay(
appid=settings.APP_ID,
app_notify_url=None,
app_private_key_string=settings.APP_PRIVATE_KEY_STRING,
alipay_public_key_string=settings.ALIPAY_PUBLIC_KEY_STRING,
sign_type=settings.SIGN,
debug=settings.DEBUG
)
# 支付網關
gateway = settings.GATEWAY
init.py
# 包對外提供的變數
from .pay import gateway, alipay
支付相關模型表的設計
"""
class Order(models.Model):
# 主鍵、總金額、訂單名、訂單號、訂單狀態、創建時間、支付時間、流水號、支付方式、支付人(外鍵) - 優惠劵(外鍵,可為空)
pass
class OrderDetail(models.Model):
# 訂單號(外鍵)、商品(外鍵)、實價、成交價 - 商品數量
pass
"""
from django.db import models
from user.models import User
from course.models import Course
class Order(models.Model):
"""訂單模型"""
status_choices = (
(0, '未支付'),
(1, '已支付'),
(2, '已取消'),
(3, '超時取消'),
)
pay_choices = (
(1, '支付寶'),
(2, '微信支付'),
)
subject = models.CharField(max_length=150, verbose_name="訂單標題")
total_amount = models.DecimalField(max_digits=10, decimal_places=2, verbose_name="訂單總價", default=0)
out_trade_no = models.CharField(max_length=64, verbose_name="訂單號", unique=True)
trade_no = models.CharField(max_length=64, null=True, verbose_name="流水號")
order_status = models.SmallIntegerField(choices=status_choices, default=0, verbose_name="訂單狀態")
pay_type = models.SmallIntegerField(choices=pay_choices, default=1, verbose_name="支付方式")
pay_time = models.DateTimeField(null=True, verbose_name="支付時間")
user = models.ForeignKey(User, related_name='order_user', on_delete=models.DO_NOTHING, db_constraint=False, verbose_name="下單用戶")
created_time = models.DateTimeField(auto_now_add=True, verbose_name='創建時間')
class Meta:
db_table = "luffy_order"
verbose_name = "訂單記錄"
verbose_name_plural = "訂單記錄"
def __str__(self):
return "%s - ¥%s" % (self.subject, self.total_amount)
@property
def courses(self):
data_list = []
for item in self.order_courses.all():
data_list.append({
"id": item.id,
"course_name": item.course.name,
"real_price": item.real_price,
})
return data_list
class OrderDetail(models.Model):
"""訂單詳情"""
order = models.ForeignKey(Order, related_name='order_courses', on_delete=models.CASCADE, db_constraint=False, verbose_name="訂單")
course = models.ForeignKey(Course, related_name='course_orders', on_delete=models.CASCADE, db_constraint=False, verbose_name="課程")
price = models.DecimalField(max_digits=6, decimal_places=2, verbose_name="課程原價")
real_price = models.DecimalField(max_digits=6, decimal_places=2, verbose_name="課程實價")
class Meta:
db_table = "luffy_order_detail"
verbose_name = "訂單詳情"
verbose_name_plural = "訂單詳情"
def __str__(self):
try:
return "%s的訂單:%s" % (self.course.name, self.order.out_trade_no)
except:
return super().__str__()
訂單模塊介面的設計分析
1.點擊購買,產生支付介面(生成支付訂單(往order和訂單詳情表插入資料),生成支付鏈接,回傳支付鏈接)
2.支付寶異步回呼的post介面(驗證簽名、修改訂單狀態)
3.當支付寶get回呼給前端頁面(告訴前端支付成功了),此時vue組件一創建,我們在寫一個get請求詢問后端是否支付成功,
支付介面
serializes.py
from rest_framework import serializers
from . import models
from rest_framework.exceptions import ValidationError
from course.models import Course
from django.conf import settings
class OrderSerializer(serializers.ModelSerializer):
# 要支持單購物和群購物(購物車),前臺要提交 課程主鍵(們)
# PrimaryKeyRelatedField方法的作用就是把課程id的串列物件,轉換為課程物件的串列物件
course = serializers.PrimaryKeyRelatedField(queryset=Course.objects.all(), write_only=True, many=True)
class Meta:
model = models.Order
fields = ['subject','total_amount','pay_type','course'] # 這些欄位是需要前端傳給我們進行反序列化的
def _check_price(self,attrs):
total_amount = attrs.get('total_amount')
course_list = attrs.get('course')
total_price = 0
for course in course_list:
total_price += course.price
if total_amount != total_price:
raise ValidationError('價格不正確')
return total_amount
def _gen_order(self):
import uuid
return str(uuid.uuid4()).replace('-','')
def _get_user(self):
request = self.context.get('request')
return request.user
def _get_pay_url(self,out_trade_no,total_amount,subject):
from luffyapi.libs.al_pay import alipay,gateway
order_string = alipay.api_alipay_trade_page_pay (
out_trade_no=out_trade_no,
total_amount=total_amount,
subject=subject,
return_url=settings.RETURN_URL,
notify_url=settings.NOTIFY_URL
)
return gateway+order_string
def _before_create(self,attrs,user,pay_url,out_trade_no):
attrs['user'] = user
attrs['out_trade_no'] = out_trade_no
self.context['pay_url']=pay_url
def validate(self, attrs):
"""
#1)訂單總價校驗
# 2)生成訂單號
# 3)支付用戶:request.user
# 4)支付鏈接生成
# 5)入庫(兩個表)的資訊準備
:param attrs:
:return:
"""
# 1)訂單總價校驗
total_amount = self._check_price(attrs)
# 2)生成訂單號
out_trade_no = self._gen_order()
# 3)支付用戶:request.user
user = self._get_user()
# 4)支付鏈接生成
pay_url = self._get_pay_url(out_trade_no,total_amount,attrs.get('subject'))
# 5)入庫(兩個表)的資訊準備
self._before_create(attrs,user,pay_url,out_trade_no)
return attrs
# 重寫create方法
def create(self, validated_data):
course_list = validated_data.pop('course')
order = models.Order.objects.create(**validated_data)
for course in course_list:
models.OrderDetail.objects.create(order=order,course=course,price=course.price,real_price=course.price)
return order
views.py
from django.shortcuts import render
from rest_framework.viewsets import ViewSet,GenericViewSet
from rest_framework.mixins import CreateModelMixin
from rest_framework.decorators import action
from luffyapi.utils.response import APIResponse
from . import models
from . import serializers
from rest_framework_jwt.authentication import JSONWebTokenAuthentication
from rest_framework.permissions import IsAuthenticated
from rest_framework.response import Response
class PayView(GenericViewSet,CreateModelMixin):
queryset = models.Order.objects.all()
serializer_class = serializers.OrderSerializer
# 下面這兩句話是為了給立即購買介面增加認證和權限:只有登錄用戶才能點擊購買
authentication_classes = [JSONWebTokenAuthentication,]
permission_classes = [IsAuthenticated,]
# 重寫CreateModelMixin里的create方法,回傳自定義的response和添加context
def create(self, request, *args, **kwargs):
serializer = self.get_serializer(data=https://www.cnblogs.com/suncolor/archive/2022/12/04/request.data,context={'request':request})
serializer.is_valid(raise_exception=True)
self.perform_create(serializer)
return Response(serializer.context.get('pay_url'))
前端在立即購買按鈕下定義一個方法
// 點擊立即購買時,定義一個方法并把課程資訊傳入
buy_now(course) {
// 先獲取一個token,獲取不到則提示需要先登錄
let token = this.$cookies.get('token')
if (!token) {
this.$message({
message: "請先登錄!",
})
return false
}
// 有token,則想后端發送post請求,拿到支付鏈接
this.$axios(
{
method: 'post',
url: this.$settings.base_url + '/order/pay/',
data: {
"subject": course.name,
"total_amount":course.price,
"pay_type": 1,
"course": [
course.id,
]
},
headers: {Authorization: 'jwt ' + token},
}
)
.then(response => {
// 成功拿到支付鏈接之后,采用open方法,指定頁面跳轉支付頁面
let pay_url = response.data
// _self指定當前頁面直接跳,而不是在新視窗跳轉
open(pay_url,'_self')
}).catch(error => {
})
},
支付成功前端頁面
<template>
<div >
<!--如果是單獨的頁面,就沒必要展示導航欄(帶有登錄的用戶)-->
<Header/>
<div >
<div >
<div >
<p >您已成功購買 1 門課程!</p>
</div>
</div>
<div >
<p ><b>訂單號:</b><span>{{ result.out_trade_no }}</span></p>
<p ><b>交易號:</b><span>{{ result.trade_no }}</span></p>
<p ><b>付款時間:</b><span><span>{{ result.timestamp }}</span></span></p>
</div>
<div >
<span>立即學習</span>
</div>
</div>
</div>
</template>
<script>
import Header from "@/components/Header"
export default {
name: "Success",
data() {
return {
result: {},
};
},
created() {
// url后拼接的引數:?及后面的所有引數 => ?a=1&b=2
// console.log(location.search);
// 決議支付寶回呼的url引數
let params = location.search.substring(1); // 去除? => a=1&b=2
let items = params.length ? params.split('&') : []; // ['a=1', 'b=2']
//逐個將每一項添加到args物件中
for (let i = 0; i < items.length; i++) { // 第一次回圈a=1,第二次b=2
let k_v = items[i].split('='); // ['a', '1']
//解碼操作,因為查詢字串經過編碼的
if (k_v.length >= 2) {
// url編碼反解
let k = decodeURIComponent(k_v[0]);
this.result[k] = decodeURIComponent(k_v[1]);
// 沒有url編碼反解
// this.result[k_v[0]] = k_v[1];
}
}
// 決議后的結果
// console.log(this.result);
// 把地址欄上面的支付結果,再get請求轉發給后端
this.$axios({
url: this.$settings.base_url + '/order/success/' + location.search,
method: 'get',
}).then(response => {
console.log(response.data);
}).catch(() => {
console.log('支付結果同步失敗');
})
},
components: {
Header,
}
}
</script>
<style scoped>
.main {
padding: 60px 0;
margin: 0 auto;
width: 1200px;
background: #fff;
}
.main .title {
display: flex;
-ms-flex-align: center;
align-items: center;
padding: 25px 40px;
border-bottom: 1px solid #f2f2f2;
}
.main .title .success-tips {
box-sizing: border-box;
}
.title img {
vertical-align: middle;
width: 60px;
height: 60px;
margin-right: 40px;
}
.title .success-tips {
box-sizing: border-box;
}
.title .tips {
font-size: 26px;
color: #000;
}
.info span {
color: #ec6730;
}
.order-info {
padding: 25px 48px;
padding-bottom: 15px;
border-bottom: 1px solid #f2f2f2;
}
.order-info p {
display: -ms-flexbox;
display: flex;
margin-bottom: 10px;
font-size: 16px;
}
.order-info p b {
font-weight: 400;
color: #9d9d9d;
white-space: nowrap;
}
.study {
padding: 25px 40px;
}
.study span {
display: block;
width: 140px;
height: 42px;
text-align: center;
line-height: 42px;
cursor: pointer;
background: #ffc210;
border-radius: 6px;
font-size: 16px;
color: #fff;
}
</style>
{
path: '/pay/success/',
name: 'PaySuccess',
component: PaySuccess
},
支付寶同步異步回呼
支付成功之后,支付寶會給前端發送一個post回呼,我們也需要在用戶支付成功之后,在前端添加一個同步的get回呼,以此來反饋給前端,用戶是否支付成功!!
path('success/',views.SuccessView.as_view()),
class SuccessView(APIView):
def get(self,request,*args,**kwargs):
out_trade_no=request.query_params.get('out_trade_no')
order=models.Order.objects.filter(out_trade_no=out_trade_no).first()
if order.order_status==1:
return Response(True)
else:
return Response(False)
def post(self,request,*args,**kwargs):
'''
支付寶回呼介面
'''
from luffyapi.libs.al_pay import alipay
from luffyapi.utils.logger import log
data = https://www.cnblogs.com/suncolor/archive/2022/12/04/request.data
out_trade_no=data.get('out_trade_no',None)
gmt_payment=data.get('gmt_payment',None)
signature = data.pop("sign")
# 驗證簽名
success = alipay.verify(data, signature)
if success and data["trade_status"] in ("TRADE_SUCCESS", "TRADE_FINISHED"):
models.Order.objects.filter(out_trade_no=out_trade_no).update(order_status=1,pay_time=gmt_payment)
log.info('%s訂單支付成功'%out_trade_no)
return Response('success') # 這里必須按支付寶規范回傳一個success
else:
log.error('%s訂單有問題' % out_trade_no)
return Response('error')
轉載請註明出處,本文鏈接:https://www.uj5u.com/houduan/539144.html
標籤:其他
上一篇:Spring回圈依賴