InfoStr authorization login process for Alipay app login authorization-PHP Tutorial-php.cn

Home

Backend Development

PHP Tutorial

InfoStr authorization login process for Alipay app login authorization

藏色散人

Sep 06, 2019 am 11:14 AM

Alipay

Official website:

Server sdk: https://docs.open.alipay.com/54/103419/

How to use the client to log in: https://docs.open .alipay.com/218/105329/

App authorization login process:

服务端先拿到 App 端 调用 支付宝 SDK 所需要的 infoStr
App 端 通过 infoStr 获得用户 授权 code
服务端通过 授权 code 拿到请求 token
服务端通过 token 获得用户信息

InfoStr authorization login process for Alipay app login authorization

##App-side Alipay login steps:

1. Backend transfer infoStr

Officially writes this: https://docs.open.alipay.com/218/105325/

See the example here :

apiname=com.alipay.account.auth&app_id=xxxxx&app_name=mc&auth_type=AUTHACCOUNT&biz_type=openservice&method=alipay.open.auth.sdk.code.get&pid=xxxxx&product_id=APP_FAST_LOGIN&scope=kuaijie&sign_type=RSA2&target_id=20141225xxxx&sign=fMcp4GtiM6rxSIeFnJCVePJKV43eXrUP86CQgiLhDHH2u%2FdN75eEvmywc2ulkm7qKRetkU9fbVZtJIqFdMJcJ9Yp%2BJI%2FF%2FpESafFR6rB2fRjiQQLGXvxmDGVMjPSxHxVtIqpZy5FDoKUSjQ2%2FILDKpu3%2F%2BtAtm2jRw1rUoMhgt0%3D

I was very confident at first. I checked if the sdk has alipay.open.auth.sdk.code.get method, but I didn’t see this word after global search.

Then try I tried to use this connection to request whether I would get the authcode, but it still failed.

My mood exploded, and then I saw a blog and realized that I was wrong from the beginning. It turns out that the return only requires background splicing, no request is required.

Maybe the idea at the beginning was incorrect, so I struggled all afternoon.

Quote from other developers:

InfoStr authorization login process for Alipay app login authorization

Get infoStr

/**
 * InfoStr APP登录需要的的infostr
 * 
 * @return String
 */
public function infoStr()
{
    $infoStr = http_build_query([
        &#39;apiname&#39; => &#39;com.alipay.account.auth&#39;,
        &#39;method&#39; => &#39;alipay.open.auth.sdk.code.get&#39;,
        &#39;app_id&#39; => $this->app_id,
        &#39;app_name&#39; => &#39;mc&#39;,
        &#39;biz_type&#39; => &#39;openservice&#39;,
        &#39;pid&#39; => $this->pid,
        &#39;product_id&#39; => &#39;APP_FAST_LOGIN&#39;,
        &#39;scope&#39; => &#39;kuaijie&#39;,
        &#39;target_id&#39; => mt_rand(999, 99999), //商户标识该次用户授权请求的ID，该值在商户端应保持唯一
        &#39;auth_type&#39; => &#39;AUTHACCOUNT&#39;, // AUTHACCOUNT代表授权；LOGIN代表登录
        &#39;sign_type&#39; => &#39;RSA2&#39;,
    ]);
    $infoStr .= &#39;&sign=&#39;.$this->enRSA2($infoStr);
    return $infoStr;
}
/**
 * enRSA2 RSA加密
 * 
 * @param String $data
 * @return String
 */
private function enRSA2($data)
{
    $str = chunk_split(trim($this->private_key), 64, "\n");
    $key = "-----BEGIN RSA PRIVATE KEY-----\n$str-----END RSA PRIVATE KEY-----\n";
    // $key = file_get_contents(storage_path(&#39;rsa_private_key.pem&#39;)); 为文件时这样引入
    $signature = &#39;&#39;;
    $signature = openssl_sign($data, $signature, $key, OPENSSL_ALGO_SHA256)?base64_encode($signature):NULL;
    return $signature;
}

The code comes from https:// learnku.com/articles/30076#replies

The above is the detailed content of InfoStr authorization login process for Alipay app login authorization. For more information, please follow other related articles on the PHP Chinese website!

Statement

This article is reproduced at:csdn. If there is any infringement, please contact admin@php.cn delete

PHP vs. Python: Understanding the DifferencesApr 11, 2025 am 12:15 AM

PHP and Python each have their own advantages, and the choice should be based on project requirements. 1.PHP is suitable for web development, with simple syntax and high execution efficiency. 2. Python is suitable for data science and machine learning, with concise syntax and rich libraries.

PHP: Is It Dying or Simply Adapting?Apr 11, 2025 am 12:13 AM

PHP is not dying, but constantly adapting and evolving. 1) PHP has undergone multiple version iterations since 1994 to adapt to new technology trends. 2) It is currently widely used in e-commerce, content management systems and other fields. 3) PHP8 introduces JIT compiler and other functions to improve performance and modernization. 4) Use OPcache and follow PSR-12 standards to optimize performance and code quality.

The Future of PHP: Adaptations and InnovationsApr 11, 2025 am 12:01 AM

The future of PHP will be achieved by adapting to new technology trends and introducing innovative features: 1) Adapting to cloud computing, containerization and microservice architectures, supporting Docker and Kubernetes; 2) introducing JIT compilers and enumeration types to improve performance and data processing efficiency; 3) Continuously optimize performance and promote best practices.

When would you use a trait versus an abstract class or interface in PHP?Apr 10, 2025 am 09:39 AM

In PHP, trait is suitable for situations where method reuse is required but not suitable for inheritance. 1) Trait allows multiplexing methods in classes to avoid multiple inheritance complexity. 2) When using trait, you need to pay attention to method conflicts, which can be resolved through the alternative and as keywords. 3) Overuse of trait should be avoided and its single responsibility should be maintained to optimize performance and improve code maintainability.

What is a Dependency Injection Container (DIC) and why use one in PHP?Apr 10, 2025 am 09:38 AM

Dependency Injection Container (DIC) is a tool that manages and provides object dependencies for use in PHP projects. The main benefits of DIC include: 1. Decoupling, making components independent, and the code is easy to maintain and test; 2. Flexibility, easy to replace or modify dependencies; 3. Testability, convenient for injecting mock objects for unit testing.

Explain the SPL SplFixedArray and its performance characteristics compared to regular PHP arrays.Apr 10, 2025 am 09:37 AM

SplFixedArray is a fixed-size array in PHP, suitable for scenarios where high performance and low memory usage are required. 1) It needs to specify the size when creating to avoid the overhead caused by dynamic adjustment. 2) Based on C language array, directly operates memory and fast access speed. 3) Suitable for large-scale data processing and memory-sensitive environments, but it needs to be used with caution because its size is fixed.

How does PHP handle file uploads securely?Apr 10, 2025 am 09:37 AM

PHP handles file uploads through the $\_FILES variable. The methods to ensure security include: 1. Check upload errors, 2. Verify file type and size, 3. Prevent file overwriting, 4. Move files to a permanent storage location.

What is the Null Coalescing Operator (??) and Null Coalescing Assignment Operator (??=)?Apr 10, 2025 am 09:33 AM

In JavaScript, you can use NullCoalescingOperator(??) and NullCoalescingAssignmentOperator(??=). 1.??Returns the first non-null or non-undefined operand. 2.??= Assign the variable to the value of the right operand, but only if the variable is null or undefined. These operators simplify code logic, improve readability and performance.

See all articles