|
@@ -154,17 +154,17 @@ public class StudentOrderController extends BaseController {
|
|
|
public Object executePayment(BigDecimal amount, String orderNo, String payChannel, String notifyUrl, String returnUrl, String orderSubject, String orderBody, String sign, String code, String platform) throws Exception {
|
|
public Object executePayment(BigDecimal amount, String orderNo, String payChannel, String notifyUrl, String returnUrl, String orderSubject, String orderBody, String sign, String code, String platform) throws Exception {
|
|
|
Map<String, Object> signParams = new LinkedHashMap<>();
|
|
Map<String, Object> signParams = new LinkedHashMap<>();
|
|
|
signParams.put("appId", ConfigInit.appId);
|
|
signParams.put("appId", ConfigInit.appId);
|
|
|
- signParams.put("amount", amount);
|
|
|
|
|
|
|
+ signParams.put("amount", amount.setScale(2,BigDecimal.ROUND_HALF_UP));
|
|
|
signParams.put("orderNo", orderNo);
|
|
signParams.put("orderNo", orderNo);
|
|
|
- signParams.put("notifyUrl", notifyUrl);
|
|
|
|
|
- signParams.put("returnUrl", returnUrl);
|
|
|
|
|
|
|
+// signParams.put("notifyUrl", notifyUrl);
|
|
|
|
|
+// signParams.put("returnUrl", returnUrl);
|
|
|
signParams.put("orderSubject", orderSubject);
|
|
signParams.put("orderSubject", orderSubject);
|
|
|
signParams.put("orderBody", orderBody);
|
|
signParams.put("orderBody", orderBody);
|
|
|
signParams.put("wxAppId", ConfigInit.wxAppId);
|
|
signParams.put("wxAppId", ConfigInit.wxAppId);
|
|
|
|
|
|
|
|
String originalStr = JSONObject.toJSONString(signParams);
|
|
String originalStr = JSONObject.toJSONString(signParams);
|
|
|
String mewSign = DigestUtils.md5DigestAsHex(originalStr.getBytes());
|
|
String mewSign = DigestUtils.md5DigestAsHex(originalStr.getBytes());
|
|
|
- if (mewSign.equals(sign)) {
|
|
|
|
|
|
|
+ if (!mewSign.equals(sign)) {
|
|
|
return failed("请勿非法请求");
|
|
return failed("请勿非法请求");
|
|
|
}
|
|
}
|
|
|
|
|
|
|
@@ -213,7 +213,7 @@ public class StudentOrderController extends BaseController {
|
|
|
paymentParams.put("app_id", ConfigInit.appId);
|
|
paymentParams.put("app_id", ConfigInit.appId);
|
|
|
paymentParams.put("order_no", orderNo);
|
|
paymentParams.put("order_no", orderNo);
|
|
|
paymentParams.put("pay_channel", payChannel);
|
|
paymentParams.put("pay_channel", payChannel);
|
|
|
- paymentParams.put("pay_amt", amount);
|
|
|
|
|
|
|
+ paymentParams.put("pay_amt", amount.setScale(2,BigDecimal.ROUND_HALF_UP));
|
|
|
paymentParams.put("goods_title", orderSubject);
|
|
paymentParams.put("goods_title", orderSubject);
|
|
|
paymentParams.put("goods_desc", orderBody);
|
|
paymentParams.put("goods_desc", orderBody);
|
|
|
paymentParams.put("time_expire", timeExpire);
|
|
paymentParams.put("time_expire", timeExpire);
|
周箭河