dsql = $dsql; } function __construct() { $this->Alipay(); } /** * 设定接口会送地址 * * 例如: $this->SetReturnUrl($cfg_basehost."/tuangou/control/index.php?ac=pay&orderid=".$p2_Order) * * @param string $returnurl 会送地址 * @return void */ function SetReturnUrl($returnurl='') { if (!empty($returnurl)) { $this->return_url = $returnurl; } } /** * 生成支付代码 * @param array $order 订单信息 * @param array $payment 支付方式信息 */ function GetCode($order, $payment) { global $cfg_basehost,$cfg_cmspath,$cfg_soft_lang; $charset = $cfg_soft_lang; //对于二级目录的处理 if(!empty($cfg_cmspath)) $cfg_basehost = $cfg_basehost.'/'.$cfg_cmspath; $real_method = $payment['alipay_pay_method']; switch ($real_method){ case '0': $service = 'trade_create_by_buyer'; break; case '1': $service = 'create_partner_trade_by_buyer'; break; case '2': $service = 'create_direct_pay_by_user'; break; } $agent = 'C4335994340215837114'; $parameter = array( 'agent' => $agent, 'service' => $service, 'partner' => $payment['alipay_partner'], //'partner' => ALIPAY_ID, '_input_charset' => $charset, 'notify_url' => $cfg_basehost.$this->return_url."&code=".$payment['code'], 'return_url' => $cfg_basehost.$this->return_url."&code=".$payment['code'], /* 业务参数 */ 'subject' => "支付订单号:".$order['out_trade_no'], 'out_trade_no' => $order['out_trade_no'], 'price' => $order['price'], 'quantity' => 1, 'payment_type' => 1, /* 物流参数 */ 'logistics_type' => 'EXPRESS', 'logistics_fee' => 0, 'logistics_payment' => 'BUYER_PAY_AFTER_RECEIVE', /* 买卖双方信息 */ 'seller_email' => $payment['alipay_account'] ); ksort($parameter); reset($parameter); $param = ''; $sign = ''; foreach ($parameter AS $key => $val) { $param .= "$key=" .urlencode($val). "&"; $sign .= "$key=$val&"; } $param = substr($param, 0, -1); $sign = substr($sign, 0, -1). $payment['alipay_key']; $button = '

'; /* 清空购物车 */ require_once DEDEINC.'/shopcar.class.php'; $cart = new MemberShops(); $cart->clearItem(); $cart->MakeOrders(); return $button; } /** * 响应操作 */ function respond() { if (!empty($_POST)) { foreach($_POST as $key => $data) { $_GET[$key] = $data; } } /* 引入配置文件 */ $code = preg_replace( "#[^0-9a-z-]#i", "", $_GET['code'] ); require_once DEDEDATA.'/payment/'.$code.'.php'; /* 取得订单号 */ $order_sn = trim(addslashes($_GET['out_trade_no'])); /*判断订单类型*/ if(preg_match ("/S-P[0-9]+RN[0-9]/",$order_sn)) { //检查支付金额是否相符 $row = $this->dsql->GetOne("SELECT * FROM #@__shops_orders WHERE oid = '{$order_sn}'"); if ($row['priceCount'] != $_GET['total_fee']) { return $msg = "支付失败，支付金额与商品总价不相符!"; } $this->mid = $row['userid']; $ordertype="goods"; }else if (preg_match ("/M[0-9]+T[0-9]+RN[0-9]/", $order_sn)){ $row = $this->dsql->GetOne("SELECT * FROM #@__member_operation WHERE buyid = '{$order_sn}'"); //获取订单信息，检查订单的有效性 if(!is_array($row)||$row['sta']==2) return $msg = "您的订单已经处理，请不要重复提交!"; elseif($row['money'] != $_GET['total_fee']) return $msg = "支付失败，支付金额与商品总价不相符!"; $ordertype = "member"; $product = $row['product']; $pname= $row['pname']; $pid=$row['pid']; $this->mid = $row['mid']; } else { return $msg = "支付失败，您的订单号有问题！"; } /* 检查数字签名是否正确 */ ksort($_GET); reset($_GET); $sign = ''; foreach ($_GET AS $key=>$val) { if ($key != 'sign' && $key != 'sign_type' && $key != 'code' && $key != 'dopost') { $sign .= "$key=$val&"; } } $sign = substr($sign, 0, -1).$payment['alipay_key']; if (md5($sign) != $_GET['sign']) { return $msg = "支付失败!"; } if($_GET['trade_status'] == 'TRADE_FINISHED' || $_GET['trade_status'] == 'WAIT_SELLER_SEND_GOODS' || $_GET['trade_status'] == 'TRADE_SUCCESS') { if($ordertype=="goods"){ if($this->success_db($order_sn)) return $msg = "支付成功!
返回主页 会员中心"; else return $msg = "支付失败！
返回主页 会员中心"; } else if ( $ordertype=="member" ) { $oldinf = $this->success_mem($order_sn,$pname,$product,$pid); return $msg = "".$oldinf."
返回主页 会员中心"; } } else { $this->log_result ("verify_failed"); return $msg = "支付失败！
返回主页 会员中心"; } } /*处理物品交易*/ function success_db($order_sn) { //获取订单信息，检查订单的有效性 $row = $this->dsql->GetOne("SELECT state FROM #@__shops_orders WHERE oid='$order_sn' "); if($row['state'] > 0) { return TRUE; } /* 改变订单状态_支付成功 */ $sql = "UPDATE `#@__shops_orders` SET `state`='1' WHERE `oid`='$order_sn' AND `userid`='".$this->mid."'"; if($this->dsql->ExecuteNoneQuery($sql)) { $this->log_result("verify_success,订单号:".$order_sn); //将验证结果存入文件 return TRUE; } else { $this->log_result ("verify_failed,订单号:".$order_sn);//将验证结果存入文件 return FALSE; } } /*处理点卡，会员升级*/ function success_mem($order_sn,$pname,$product,$pid) { //更新交易状态为已付款 $sql = "UPDATE `#@__member_operation` SET `sta`='1' WHERE `buyid`='$order_sn' AND `mid`='".$this->mid."'"; $this->dsql->ExecuteNoneQuery($sql); /* 改变点卡订单状态_支付成功 */ if($product=="card") { $row = $this->dsql->GetOne("SELECT cardid FROM #@__moneycard_record WHERE ctid='$pid' AND isexp='0' ");; //如果找不到某种类型的卡，直接为用户增加金币 if(!is_array($row)) { $nrow = $this->dsql->GetOne("SELECT num FROM #@__moneycard_type WHERE pname = '{$pname}'"); $dnum = $nrow['num']; $sql1 = "UPDATE `#@__member` SET `money`=money+'{$nrow['num']}' WHERE `mid`='".$this->mid."'"; $oldinf ="已经充值了".$nrow['num']."金币到您的帐号！"; } else { $cardid = $row['cardid']; $sql1=" UPDATE #@__moneycard_record SET uid='".$this->mid."',isexp='1',utime='".time()."' WHERE cardid='$cardid' "; $oldinf='您的充值密码是：'.$cardid.''; } //更新交易状态为已关闭 $sql2=" UPDATE #@__member_operation SET sta=2,oldinfo='$oldinf' WHERE buyid='$order_sn'"; if($this->dsql->ExecuteNoneQuery($sql1) && $this->dsql->ExecuteNoneQuery($sql2)) { $this->log_result("verify_success,订单号:".$order_sn); //将验证结果存入文件 return $oldinf; } else { $this->log_result ("verify_failed,订单号:".$order_sn);//将验证结果存入文件 return "支付失败！"; } /* 改变会员订单状态_支付成功 */ } else if ( $product=="member" ){ $row = $this->dsql->GetOne("SELECT rank,exptime FROM #@__member_type WHERE aid='$pid' "); $rank = $row['rank']; $exptime = $row['exptime']; /*计算原来升级剩余的天数*/ $rs = $this->dsql->GetOne("SELECT uptime,exptime FROM #@__member WHERE mid='".$this->mid."'"); if($rs['uptime']!=0 && $rs['exptime']!=0 ) { $nowtime = time(); $mhasDay = $rs['exptime'] - ceil(($nowtime - $rs['uptime'])/3600/24) + 1; $mhasDay=($mhasDay>0)? $mhasDay : 0; } //获取会员默认级别的金币和积分数 $memrank = $this->dsql->GetOne("SELECT money,scores FROM #@__arcrank WHERE rank='$rank'"); //更新会员信息 $sql1 = " UPDATE #@__member SET rank='$rank',money=money+'{$memrank['money']}', scores=scores+'{$memrank['scores']}',exptime='$exptime'+'$mhasDay',uptime='".time()."' WHERE mid='".$this->mid."'"; //更新交易状态为已关闭 $sql2=" UPDATE #@__member_operation SET sta='2',oldinfo='会员升级成功!' WHERE buyid='$order_sn' "; if($this->dsql->ExecuteNoneQuery($sql1) && $this->dsql->ExecuteNoneQuery($sql2)) { $this->log_result("verify_success,订单号:".$order_sn); //将验证结果存入文件 return "会员升级成功！"; } else { $this->log_result ("verify_failed,订单号:".$order_sn);//将验证结果存入文件 return "会员升级失败！"; } } } function log_result($word) { global $cfg_cmspath; $fp = fopen(dirname(__FILE__)."/../../data/payment/log.txt","a"); flock($fp, LOCK_EX) ; fwrite($fp,$word.",执行日期:".strftime("%Y-%m-%d %H:%I:%S",time())."\r\n"); flock($fp, LOCK_UN); fclose($fp); } }//End API