탐색 도움말
가입하기 로그인
jichaobo
/
USKYZHAF
1
0
포크 0
파일 이슈 0 풀 리퀘스트 0 위키
브렌치: Z-J-KF
브랜치 태그
USKYZHAF
/
sign.php

sign.php 3.5 KB
고유링크 히스토리 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132 
  1. <?php
    2. 

  2. 

  3. // 微信 JS 接口签名校验工具: https://mp.weixin.qq.com/debug/cgi-bin/sandbox?t=jsapisign
    4. 

  4. //$appid = 'wx8bba7ec467b61efa';
    5. 

  5. //$secret = 'f934ca9ae9558dec76f38636d737a635';
    6. 

  6. $appid = 'wx41e478e592f9e04a';
    7. 

  7. $secret = 'fc165de4aa5cd24b628baa30b100e146';
    8. 

  8. 

  9. 

  10. // 获取token
    11. 

  11. $token_data = file_get_contents('./wechat_token.txt');
    12. 

  12. if (!empty($token_data)) {
    13. 

  13.     $token_data = json_decode($token_data, true);
    14. 

  14. }
    15. 

  15. 

  16. $time  = time() - $token_data['time'];
    17. 

  17. if ($time > 3600) {
    18. 

  18.     $token_url = "https://api.weixin.qq.com/cgi-bin/token?grant_type=client_credential&appid={$appid}&secret={$secret}";
    19. 

  19.     $token_res = https_request($token_url);
    20. 

  20.     $token_res = json_decode($token_res, true);
    21. 

  21.     $token = $token_res['access_token'];
    22. 

  22. 

  23.     $data = array(
    24. 

  24.         'time' =>time(),
    25. 

  25.         'token' =>$token
    26. 

  26.     );
    27. 

  27.     $res = file_put_contents('./wechat_token.txt', json_encode($data));
    28. 

  28.     if ($res) {
    29. 

  29.         echo '更新 token 成功';
    30. 

  30.     }
    31. 

  31. } else {
    32. 

  32.     $token = $token_data['token'];
    33. 

  33. }
    34. 

  34. 

  35. 

  36. // 获取ticket
    37. 

  37. $ticket_data = file_get_contents('./wechat_ticket.txt');
    38. 

  38. if (!empty($ticket_data)) {
    39. 

  39.     $ticket_data = json_decode($ticket_data, true);
    40. 

  40. }
    41. 

  41. 

  42. $time  = time() - $ticket_data['time'];
    43. 

  43. if ($time > 3600) {
    44. 

  44.     $ticket_url = "https://api.weixin.qq.com/cgi-bin/ticket/getticket?access_token={$token}&type=jsapi";
    45. 

  45.     $ticket_res = https_request($ticket_url);
    46. 

  46.     $ticket_res = json_decode($ticket_res, true);
    47. 

  47.     $ticket = $ticket_res['ticket'];
    48. 

  48. 

  49.     $data = array(
    50. 

  50.         'time'    =>time(),
    51. 

  51.         'ticket'  =>$ticket
    52. 

  52.     );
    53. 

  53.     $res = file_put_contents('./wechat_ticket.txt', json_encode($data));
    54. 

  54.     if ($res) {
    55. 

  55.         echo '更新 ticket 成功';
    56. 

  56.     }
    57. 

  57. } else {
    58. 

  58.     $ticket = $ticket_data['ticket'];
    59. 

  59. }
    60. 

  60. 

  61. 

  62. // 进行sha1签名
    63. 

  63. $timestamp = time();
    64. 

  64. $nonceStr = createNonceStr();
    65. 

  65. 

  66. // 注意 URL 建议动态获取(也可以写死).
    67. 

  67. $protocol = (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off' || $_SERVER['SERVER_PORT'] == 443) ? "https://" : "http://";
    68. 

  68. // $url = "$protocol$_SERVER[HTTP_HOST]$_SERVER[REQUEST_URI]"; // 调用JSSDK的页面地址
    69. 

  69. // $url = $_SERVER['HTTP_REFERER']; // 前后端分离的, 获取请求地址(此值不准确时可以通过其他方式解决)
    70. 

  70. 

  71. // $url = "https://s.yxin.tech/hello.html";
    72. 

  72. $url = $_GET['url'];
    73. 

  73. 

  74. $str = "jsapi_ticket={$ticket}&noncestr={$nonceStr}&timestamp={$timestamp}&url={$url}";
    75. 

  75.     file_put_contents('./sign_before.txt', $str);
    76. 

  76. 

  77. $sha_str = sha1($str);
    78. 

  78.     file_put_contents('./sign_after.txt', $sha_str);
    79. 

  79. 

  80. 

  81. function createNonceStr($length = 16) {
    82. 

  82.     $chars = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
    83. 

  83.     $str = "";
    84. 

  84.     for ($i = 0; $i < $length; $i++) {
    85. 

  85.       $str .= substr($chars, mt_rand(0, strlen($chars) - 1), 1);
    86. 

  86.     }
    87. 

  87.     return $str;
    88. 

  88. }
    89. 

  89. 

  90. 

  91. /**
    92. 

  92.  * 模拟 http 请求
    93. 

  93.  * @param  String $url  请求网址
    94. 

  94.  * @param  Array  $data 数据
    95. 

  95.  */
    96. 

  96. function https_request($url, $data = null){
    97. 

  97.     // curl 初始化
    98. 

  98.     $curl = curl_init();
    99. 

  99. 

  100.     // curl 设置
    101. 

  101.     curl_setopt($curl, CURLOPT_URL, $url);
    102. 

  102.     curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, FALSE);
    103. 

  103.     curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, FALSE);
    104. 

  104. 

  105.     // 判断 $data get  or post
    106. 

  106.     if ( !empty($data) ) {
    107. 

  107.         curl_setopt($curl, CURLOPT_POST, 1);
    108. 

  108.         curl_setopt($curl, CURLOPT_POSTFIELDS, $data);
    109. 

  109.     }
    110. 

  110. 

  111.     curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
    112. 

  112. 

  113.     // 执行
    114. 

  114.     $res = curl_exec($curl);
    115. 

  115.     curl_close($curl);
    116. 

  116.     return $res;
    117. 

  117. }
    118. 

  118. 

  119. 

  120. echo json_encode([
    121. 

  121.     'timestamp'=>$timestamp,
    122. 

  122.         'nonceStr'=>$nonceStr,
    123. 

  123. 

  124.     'appid'=>$appid,
    125. 

  125. 

  126.     'sha_str'=>$sha_str,
    127. 

  127. 

  128.     
    129. 

  129.     ]);
    130. 

  130. 

  131. ?>
    132. 

  132.