1. 一.
    2.  授权流程
    3.  1. 接收component_verify_ticket
    5.  [1]微信服务器每隔10分钟会向第三方的消息接收地址推送一次component_verify_ticket,拿到后需要在本地做好存储;
    7.  [2]微信第三方平台的消息是加密的(下图),需要进行解密才能获取需要的信息;
    9.  [3]接收并解密消息,代码如下:
    11. /**
    12.      * 授权事件接收URL
    13.      */
    14.     public function msg() {
    15.         import("@.ORG.ArrayTool");
    16.         import("@.ORG.Weixincrypt.WXBizMsgCrypt");
    17.         $timestamp = empty($_GET ['timestamp']) ? '' : trim($_GET ['timestamp']);
    18.         $nonce = empty($_GET ['nonce']) ? '' : trim($_GET ['nonce']);
    19.         $msgSign = empty($_GET ['msg_signature']) ? '' : trim($_GET ['msg_signature']);
    20.         $signature = empty($_GET ['signature']) ? '' : trim($_GET ['signature']);
    21.         $encryptType = empty($_GET ['encrypt_type']) ? '' : trim($_GET ['encrypt_type']);
    22.         $encryptMsg = file_get_contents('php://input');
    23.         $wxData = C("platform_setting");
    24.         $encodingAesKey = $wxData['encodingAesKey'];
    25.         $token = $wxData['token'];
    26.         $appId = $wxData['appId'];
    27.         $Wxcrypt = new WXBizMsgCrypt($token, $encodingAesKey, $appId);
    28.         $postArr = ArrayTool::xml2array($encryptMsg);
    29.         $format = "<xml><ToUserName><![CDATA[toUser]]></ToUserName><Encrypt><![CDATA[%s]]></Encrypt></xml>";
    30.         $fromXml = sprintf($format, $postArr['Encrypt']);
    31.         //第三方收到公众号平台发送的消息
    32.         $msg = '';
    33.         $errCode = $Wxcrypt->decryptMsg($msgSign, $timestamp, $nonce, $fromXml, $msg); // 解密
    34.         if ($errCode == 0) {
    35.             $param = ArrayTool::xml2array($msg);
    36.             switch ($param['InfoType']) {
    37.                 case 'component_verify_ticket' :    // 授权凭证
    38.                     $componentVerifyTicket = $param['ComponentVerifyTicket'];
    39.                     S('component_verify_ticket_' . $appId, $componentVerifyTicket);
    40.                     break;
    41.                 case 'unauthorized' :               // 取消授权
    42.                     break;
    43.                 case 'authorized' :                 // 授权
    44.                     break;
    45.                 case 'updateauthorized' :           // 更新授权
    46.                     break;
    47.             }
    48.         }
    49.         exit("success");
    50.     }
    51.  2.获取component_access_token
    53.  [1]每个令牌是存在有效期(2小时)的,且令牌的调用不是无限制的,请第三方平台做好令牌的管理,在令牌快过期时(比如1小时50分)再进行刷新。所以要对component_access_token做好本地缓存,代码如下:
    55. $wxData = C("setting");
    56.         //1. 取得component_verify_ticket
    57.         $vt = S('component_verify_ticket_' . $wxData['appId']);
    58.         $at = S('component_access_token_' . $wxData['appId']);
    60.         //2. 获取第三方平台component_access_token
    61.         if (empty($at) && !empty($vt)) {
    62.             $url2 = "https://api.weixin.qq.com/cgi-bin/component/api_component_token";
    63.             $post = array();
    64.             $post['component_appid'] = $wxData['appId'];
    65.             $post['component_appsecret'] = $wxData['appSecret'];
    66.             $post['component_verify_ticket'] = $vt;
    67.             $return2 = $this->curlPost($url2, $post);
    68.             if (isset($return2['component_access_token'])) {
    69.                 $at = $return2['component_access_token'];
    70.                 S('component_access_token_' . $wxData['appId'], $at, 6600); //缓存1小时50分钟 = 6600秒
    71.             } else {
    72.                 return false;
    73.             }
    74.         }
    75.  3.获取pre_auth_code(注意这是预授权码,不是授权码):
    78. $wxData = C('platform_setting');
    79.         $appId = $wxData['appId'];
    80.         $HT = new HttpTool();
    81.         $at = $HT->getComponentAccessToken();
    82.         if ($at) {
    83.             //3.获取预授权码pre_auth_code
    84.             $url3 = "https://api.weixin.qq.com/cgi-bin/component/api_create_preauthcode?component_access_token={$at}";
    85.             $post = array();
    86.             $post['component_appid'] = $appId;
    87.             $return3 = $HT->curlPost($url3, $post);
    88.             if (isset($return3['pre_auth_code'])) {
    89.                 $preauthcode = $return3['pre_auth_code'];
    90.                 $redirectUrl = C('site_url') . U("User/App/setauth", array('uid' => $uid));
    91.                 $weixinUrl = "https://mp.weixin.qq.com/cgi-bin/componentloginpage?component_appid={$appId}&pre_auth_code={$preauthcode}&redirect_uri={$redirectUrl}";
    92.                 redirect($weixinUrl);
    93.                 exit;
    94.             }
    95.         }
    96.         $this->error("亲, 授权失败了!");
    97.  4.使用授权码换取公众号的接口调用凭据和授权信息:
    100. //1. 使用授权码换取公众号的接口调用凭据和授权信息
    101.         import("@.ORG.HttpTool");
    102.         $HT = new HttpTool();
    103.         $wxData = C('platform_setting');
    104.         $caccessToken = $HT->getComponentAccessToken();
    105.         $url1 = "https://api.weixin.qq.com/cgi-bin/component/api_query_auth?component_access_token={$caccessToken}";
    107.         $post = array();
    108.         $post['component_appid'] = $wxData['appId'];
    109.         $post['authorization_code'] = $authcode;
    110.         $return = $HT->curlPost($url1, $post);
    111.         if (isset($return['authorization_info'])) {
    112.             $authinfo = $return['authorization_info'];
    113.             $authid = $authinfo['authorizer_appid'];
    114.             $accessToken = $authinfo['authorizer_access_token'];
    115.             $refreshToken = $authinfo['authorizer_refresh_token'];
    116.             //$funcInfo = $authinfo['func_info'];
    117.             //2. 获取授权方的公众号帐号基本信息
    118.             $url2 = "https://api.weixin.qq.com/cgi-bin/component/api_get_authorizer_info?component_access_token={$caccessToken}";
    119.             $post = array();
    120.             $post['component_appid'] = $wxData['appId'];
    121.             $post['authorizer_appid'] = $authid;
    122.             $return2 = $HT->curlPost($url2, $post);
    123.             if (isset($return2['authorizer_info'])) {
    124.                 $wxinfo = $return2['authorizer_info'];
    125.                 $fcinfo = $return2['authorization_info'];
    126.                 $Wxuser = M("Wxuser");
    128.                 //是否已经存在
    129.                 $extFilter = array();
    130.                 $wxuser['uid'] = $uid;
    131.                 $extFilter['auth_appid'] = $fcinfo['authorizer_appid'];
    132.                 $isExt = $Wxuser->where($extFilter)->find();
    134.                 $wxuser = array();
    135.                 $wxuser['uid'] = $uid;
    136.                 $wxuser['token'] = $this->getToken();
    137.                 $wxuser['wxid'] = $wxinfo['user_name'];     //原始ID
    138.                 $wxuser['wxname'] = $wxinfo['nick_name'];   //昵称
    139.                 $wxuser['weixin_type'] = $wxinfo['service_type_info']['id'];  //微信类型 授权方公众号类型,0代表订阅号,1代表由历史老帐号升级后的订阅号,2代表服务号
    140.                 $wxuser['weixin'] = $wxinfo['alias'];       //微信号
    141.                 $wxuser['headerpic'] = $wxinfo['head_img']; //头像
    142.                 $wxuser['bind_type'] = 1;
    143.                 $wxuser['auth_appid'] = $fcinfo['authorizer_appid'];
    144.                 $wxuser['auth_access_token'] = $accessToken;
    145.                 $wxuser['auth_refresh_token'] = $refreshToken;
    146.                 $wxuser['auth_functions'] = json_encode($fcinfo['func_info']);
    147.                 $wxuser['auth_business_info'] = json_encode($wxinfo['business_info']);
    148.                 $wxuser['create_time'] = time();
    149.                 if ($isExt) {
    150.                     $sign = $Wxuser->where($extFilter)->save($wxuser);
    151.                 } else {
    152.                     $sign = $Wxuser->add($wxuser);
    153.                     if ($sign) {
    154.                         //添加功能模块
    155.                         $this->addfc($wxuser['token']);   
    156.                         //记录公众号数量
    157.                         M('Users')->where(array('id' => $uid))->setInc('wechat_card_num');
    158.                     }
    159.                 }
    160.                 if ($sign) {
    161.                     redirect(C("site_url") . U('User/Index/index'));
    162.                 }
    163.             }
    164.         }
    165.         $this->error("亲,获取授权信息失败!", U('User/Index/index'));
    168. 二. 全网发布
    170. 代码如下:
    173. /**
    174.      * 公众号消息与事件接收URL
    175.      */
    176.     public function index() {
    177.         $timestamp = empty($_GET['timestamp']) ? '' : trim($_GET['timestamp']);
    178.         $nonce = empty($_GET['nonce']) ? '' : trim($_GET ['nonce']);
    179.         $msgSign = empty($_GET['msg_signature']) ? '' : trim($_GET['msg_signature']);
    180.         $signature = empty($_GET['signature']) ? '' : trim($_GET['signature']);
    181.         $encryptType = empty($_GET['encrypt_type']) ? '' : trim($_GET['encrypt_type']);
    182.         $openid = trim($_GET['openid']);
    184.         import("@.ORG.ArrayUtil");
    185.         import("@.ORG.Weixincrypt.WXBizMsgCrypt");
    186.         $input = file_get_contents('php://input');
    187.         $paramArr = ArrayUtil::xml2array($input);
    188.         //$this->logPrint($paramArr);
    189.         //$this->logPrint($_GET);
    191.         //解密
    192.         $wxData = C("platform_setting");
    193.         $encodingAesKey = $wxData['encodingAesKey'];
    194.         $token = $wxData['token'];
    195.         $appId = $wxData['appId'];
    196.         $Wxcrypt = new WXBizMsgCrypt($token, $encodingAesKey, $appId);
    197.         $format = "<xml><ToUserName><![CDATA[toUser]]></ToUserName><Encrypt><![CDATA[%s]]></Encrypt></xml>";
    198.         $fromXml = sprintf($format, $paramArr['Encrypt']);
    199.         $errCode = $Wxcrypt->decryptMsg($msgSign, $timestamp, $nonce, $fromXml, $toXml); // 解密
    200.         $this->logPrint($toXml);
    201.         if ($errCode == 0) {
    202.             $param = ArrayUtil::xml2array($toXml);
    203.             $keyword = isset($param['Content']) ? trim($param['Content']) : '';
    204.             // 案例1 - 发送事件
    205.             if (isset($param['Event']) && $paramArr['ToUserName'] == 'gh_3c884a361561') {
    206.                 $contentStr = $param ['Event'] . 'from_callback';
    207.             }
    208.             // 案例2 - 返回普通文本
    209.             elseif ($keyword == "TESTCOMPONENT_MSG_TYPE_TEXT") {
    210.                 $contentStr = "TESTCOMPONENT_MSG_TYPE_TEXT_callback";
    211.             }
    212.             // 案例3 - 返回Api文本信息
    213.             elseif (strpos($keyword, "QUERY_AUTH_CODE:") !== false) {
    214.                 import("@.ORG.HttpTool");
    215.                 $authcode = str_replace("QUERY_AUTH_CODE:", "", $keyword);
    216.                 $contentStr = $authcode . "_from_api";
    217.                 $HT = new HttpTool();
    218.                 $authDetail = $HT->getAccessTokenByAuthCode($authcode);
    219.                 $accessToken = $authDetail['authorizer_access_token'];
    220.                 $HT->sendFansText($accessToken, $param['FromUserName'], $contentStr);
    221.                 //$tokenInfo = WechatOpenApiLogic::getAuthorizerAccessTokenByAuthCode($ticket);
    222.                 //$param ['authorizerAccessToken'] = $tokenInfo ['authorization_info'] ['authorizer_access_token'];
    223.                 //self::sendServiceMsg($param['FromUserName'], $param['ToUserName'], 1, $contentStr); // 客服消息接口
    224.                 return 1;
    225.             }
    227.             $result = '';
    228.             if (!empty($contentStr)) {
    229.                 $xmlTpl = "<xml>
    230.             <ToUserName><![CDATA[%s]]></ToUserName>
    231.             <FromUserName><![CDATA[%s]]></FromUserName>
    232.             <CreateTime>%s</CreateTime>
    233.             <MsgType><![CDATA[text]]></MsgType>
    234.             <Content><![CDATA[%s]]></Content>
    235.             </xml>";
    236.                 $result = sprintf($xmlTpl, $param['FromUserName'], $param['ToUserName'], time(), $contentStr);
    237.                 if (isset($_GET['encrypt_type']) && $_GET['encrypt_type'] == 'aes') { // 密文传输
    238.                     $wxData = C("platform_setting");
    239.                     $msgCryptObj = new WXBizMsgCrypt($wxData['token'], $wxData['encodingAesKey'], $wxData['appId']);
    240.                     $encryptMsg = '';
    241.                     $msgCryptObj->encryptMsg($result, $_GET['timestamp'], $_GET['nonce'], $encryptMsg);
    242.                     $result = $encryptMsg;
    243.                 }
    244.             }
    245.             echo $result;
    246.         }
    247.     }