微信開發java開源代碼:
https://github.com/Wechat-Group/weixin-java-tools
申請微信測試接口:
http://mp.weixin.qq.com/debug/cgi-bin/sandbox?t=sandbox/login
設置授權回調頁面域名:
微信網頁授權開發流程參見:
https://mp.weixin.qq.com/wiki?t=resource/res_main&id=mp1421140842
第一步:用戶同意授權,獲取code
https://open.weixin.qq.com/connect/oauth2/authorize?appid=APPID&redirect_uri=REDIRECT_URI&response_type=code&scope=SCOPE&state=STATE#wechat_redirect
其中:REDIRECT_URI需要編碼成utf-8
~~~
/**
* URL編碼(utf-8)
*
* @param source
* @return
*/
public static String urlEncodeUTF8(String source) {
String result = source;
try {
result = java.net.URLEncoder.encode(source, "utf-8");
} catch (UnsupportedEncodingException e) {
e.printStackTrace();
}
return result;
}
~~~
第二步:通過code換取網頁授權access_token和openid
https://api.weixin.qq.com/sns/oauth2/access_token?appid=APPID&secret=SECRET&code=CODE&grant_type=authorization_code
正確時返回的JSON數據包如下:
~~~
{ "access_token":"ACCESS_TOKEN",
"expires_in":7200,
"refresh_token":"REFRESH_TOKEN",
"openid":"OPENID",
"scope":"SCOPE" }
~~~
第三步:拉取用戶信息(需scope為 snsapi_userinfo)
https://api.weixin.qq.com/sns/userinfo?access_token=ACCESS_TOKEN&openid=OPENID&lang=zh_CN
正確時返回的JSON數據包如下:
~~~
{"openid":" OPENID",
" nickname": NICKNAME,
"sex":"1",
"province":"PROVINCE"
"city":"CITY",
"country":"COUNTRY",
"headimgurl": "http://thirdwx.qlogo.cn/mmopen/g3MonUZtNHkdmzicIlibx6iaFqAc56vxLSUfpb6n5WKSYVY0ChQKkiaJSgQ1dZuTOgvLLrhJbERQQ4eMsv84eavHiaiceqxibJxCfHe/46",
"privilege":[ "PRIVILEGE1" "PRIVILEGE2" ],
"unionid": "o6_bmasdasdsad6_2sgVt7hMZOPfL"
}
~~~
參考代碼:
~~~
import javax.servlet.http.HttpServletRequest;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.RequestMapping;
import com.neuedu.utils.CommonUtil;
import net.sf.json.JSONObject;
@Controller
public class WeiXinController {
@RequestMapping("/getcode")
public String getCode(HttpServletRequest request)
{
//1.得到微信返給的code
String code = request.getParameter("code");
//2.根據code得到access_token和openid
String url = "https://api.weixin.qq.com/sns/oauth2/access_token?appid=APPID&secret=SECRET&code=CODE&grant_type=authorization_code";
url = url.replace("APPID", "wxbf9210646fd3bb89");
url = url.replace("SECRET", "9c7874ad52b1f5ba54c5985e52ef1b82");
url = url.replace("CODE", code);
JSONObject obj = CommonUtil.httpsRequest(url, "GET");
//3.根據access_token和openid得到用戶信息
String url2 = "https://api.weixin.qq.com/sns/userinfo?access_token=ACCESS_TOKEN&openid=OPENID&lang=zh_CN";
url2 = url2.replace("ACCESS_TOKEN", obj.getString("access_token"));
url2 = url2.replace("OPENID", obj.getString("openid"));
JSONObject obj2 = CommonUtil.httpsRequest(url2, "GET");
//4.把當前用戶信息放在session中
request.getSession().setAttribute("userinfo", obj2);
//5. 頁面跳轉到index.html
return "redirect:index.html?aid=1";
}
}
~~~
發送https請求的工具類
~~~
import java.io.BufferedReader;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.net.ConnectException;
import java.net.URL;
import javax.net.ssl.HttpsURLConnection;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSocketFactory;
import javax.net.ssl.TrustManager;
import net.sf.json.JSONObject;
/**
*
* 發送https請求
*
*/
public class CommonUtil {
/**
* 發送https請求
*
* @param requestUrl 請求地址
* @param requestMethod 請求方式(GET、POST)
* @param outputStr 提交的數據
* @return JSONObject(通過JSONObject.get(key)的方式獲取json對象的屬性值)
*/
public static JSONObject httpsRequest(String requestUrl, String requestMethod) {
JSONObject jsonObject = null;
try {
// 創建SSLContext對象,并使用我們指定的信任管理器初始化
TrustManager[] tm = { new MyX509TrustManager() };
SSLContext sslContext = SSLContext.getInstance("SSL", "SunJSSE");
sslContext.init(null, tm, new java.security.SecureRandom());
// 從上述SSLContext對象中得到SSLSocketFactory對象
SSLSocketFactory ssf = sslContext.getSocketFactory();
URL url = new URL(requestUrl);
HttpsURLConnection conn = (HttpsURLConnection) url.openConnection();
conn.setSSLSocketFactory(ssf);
conn.setDoOutput(true);
conn.setDoInput(true);
conn.setUseCaches(false);
// 設置請求方式(GET/POST)
conn.setRequestMethod(requestMethod);
// 從輸入流讀取返回內容
InputStream inputStream = conn.getInputStream();
InputStreamReader inputStreamReader = new InputStreamReader(inputStream, "utf-8");
BufferedReader bufferedReader = new BufferedReader(inputStreamReader);
String str = null;
StringBuffer buffer = new StringBuffer();
while ((str = bufferedReader.readLine()) != null) {
buffer.append(str);
}
System.out.println("返回信息:"+buffer);
// 釋放資源
bufferedReader.close();
inputStreamReader.close();
inputStream.close();
inputStream = null;
conn.disconnect();
jsonObject = JSONObject.fromObject(buffer.toString());
} catch (ConnectException ce) {
System.out.println(ce.toString());
//log.error("連接超時:{}", ce);
} catch (Exception e) {
//log.error("https請求異常:{}", e);
System.out.println(e.toString());
}
return jsonObject;
}
public static void main(String[] args) {
//根據code得到accesstoken, openid
JSONObject o = httpsRequest("https://api.weixin.qq.com/sns/oauth2/access_token?appid=wx0156cb18976c3f90&secret=1bcb2d21ce527777ca4593bf452f48dc&code=071ZFuGj05fLQn1GszGj00fuGj0ZFuGa&grant_type=authorization_code","GET");
String access_token = o.getString("access_token");
String openid = o.getString("openid");
//根據accesstoken, openid得到用戶信息
String url = "https://api.weixin.qq.com/sns/userinfo?access_token=ACCESS_TOKEN&openid=OPENID&lang=zh_CN";
url = url.replace("ACCESS_TOKEN", access_token);
url = url.replace("OPENID", openid);
System.out.println(url);
JSONObject o2 = httpsRequest(url,"GET");
System.out.println("昵稱是:"+o2.getString("nickname"));
System.out.println("姓名是:"+o2.getString("sex"));
System.out.println("頭像是:"+o2.getString("headimgurl"));
}
}
~~~
用戶發送https請求的X509TrustManager
~~~
public class MyX509TrustManager implements X509TrustManager {
// 檢查客戶端證書
public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
}
// 檢查服務器端證書
public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
}
// 返回受信任的X509證書數組
public X509Certificate[] getAcceptedIssuers() {
return null;
}
}
~~~
