forked from chanjarster/weixin-java-tools
-
-
Notifications
You must be signed in to change notification settings - Fork 8.5k
CP_OAuth2网页授权
Binary Wang edited this page Jan 22, 2019
·
6 revisions
首先构造网页授权url,然后构成超链接让用户点击
WxCpService wxCpService = ...;
wxCpService.getOauth2Service().buildAuthorizationUrl(null);
当用户同意授权后,会回调所设置的url并把authorization code传过来,然后用这个code获得user id.
String[] res = wxCpService.getOauth2Service().getUserInfo(code);
String userId = res[0];
String deviceId = res[1];
String encType = request.getParameter("encrypt_type");
String nonce = request.getParameter("nonce");
String timestamp = request.getParameter("timestamp");
String msgSignature = request.getParameter("msg_signature");
String signature = request.getParameter("signature");
String openid = request.getParameter("openid");
log.info("接收微信请求:[openid=[{}], [openid=[{}],[signature=[{}], encType=[{}], msgSignature=[{}],"
+ " timestamp=[{}], nonce=[{}], requestBody=[{}] ",
appid, openid, signature, encType, msgSignature, timestamp, nonce, requestBody);
if (!this.wxMpService.switchover(appid)) {
throw new IllegalArgumentException(String.format("未找到对应appid=[%s]的配置,请核实!", appid));
}
if (!wxMpService.checkSignature(timestamp, nonce, signature)) {
throw new IllegalArgumentException("非法请求,可能属于伪造的请求!");
}
return ResponseEntity.ok("");