網(wǎng)上搜【Python支付寶】始腾，搜到的結(jié)果州刽，除了發(fā)布的人不一樣之外，內(nèi)容一模一樣浪箭。拿過(guò)來(lái)用的時(shí)候老是失敗穗椅，要么合作身份者ID不正確，要么簽名驗(yàn)證出錯(cuò)奶栖，修改了幾次ID匹表，加密也沒(méi)有問(wèn)題门坷。

不知道是我復(fù)制的有問(wèn)題，還是這demo本身就有問(wèn)題桑孩。反正我就是調(diào)不出支付頁(yè)面拜鹤。后來(lái)發(fā)現(xiàn)要加密的數(shù)據(jù)在處理上出現(xiàn)了問(wèn)題框冀。真是醉了啊蓬抄，所有人都復(fù)制的好起勁傲挂小？？声畏？

當(dāng)我看著搜到的結(jié)果中有這幾行的時(shí)候。序愚。(－＂－怒)(－＂－怒)(－＂－怒)

最后復(fù)制粘貼率碾，修修改改。撑刺。

代碼：實(shí)現(xiàn)的是即時(shí)到賬接口

1鹉胖、調(diào)起支付頁(yè)面方法

def smart_str(s, encoding='utf-8', strings_only=False, errors='strict'):
    """
    Returns a bytestring version of 's', encoded as specified in 'encoding'.

    If strings_only is True, don't convert (some) non-string-like objects.
    """
    if strings_only and isinstance(s, (types.NoneType, int)):
        return s
    if not isinstance(s, basestring):
        try:
            return str(s)
        except UnicodeEncodeError:
            if isinstance(s, Exception):
                # An Exception subclass containing non-ASCII data that doesn't
                # know how to print itself properly. We shouldn't raise a
                # further exception.
                return ' '.join([smart_str(arg, encoding, strings_only,
                                           errors) for arg in s])
            return str(s).encode(encoding, errors)
    elif isinstance(s, str):
        return s.encode(encoding, errors)
    elif s and encoding != 'utf-8':
        return s.decode('utf-8', errors).encode(encoding, errors)
    else:
        return s


# 對(duì)數(shù)組排序并除去數(shù)組中的空值和簽名參數(shù)
# 返回?cái)?shù)組和鏈接串
def params_filter(params):
    prestr = ''
    params = OrderedDict({k: v for k, v in params.items() if v != ''})
    params = OrderedDict(sorted(params.items(), key=lambda t: t[0]))
    print(params)
    for k in params:
        prestr += k + '=' + params[k] + '&'
    prestr = prestr[:-1]
    return params, prestr


# 生成簽名結(jié)果
def build_mysign(prestr, key, sign_type='MD5'):
    if sign_type == 'MD5':
        m = hashlib.md5()
        m.update((prestr + key).encode("utf-8"))
        encodeStr = m.hexdigest()
        return encodeStr
    return ''

# 網(wǎng)關(guān)地址
_GATEWAY = 'https://mapi.alipay.com/gateway.do?'

def create_direct_pay_by_user(tn, subject, body, total_fee):
    params = OrderedDict()
    params['service'] = 'create_direct_pay_by_user'
    params['payment_type'] = '1'

    # 獲取配置文件
    params['partner'] = Settings.ALIPAY_PARTNER
    params['seller_email'] = Settings.ALIPAY_SELLER_EMAIL
    params['return_url'] = Settings.ALIPAY_RETURN_URL
    params['notify_url'] = Settings.ALIPAY_NOTIFY_URL
    params['_input_charset'] = Settings.ALIPAY_INPUT_CHARSET
    params['show_url'] = Settings.ALIPAY_SHOW_URL

    # 從訂單數(shù)據(jù)中動(dòng)態(tài)獲取到的必填參數(shù)
    params['out_trade_no'] = tn  # 請(qǐng)與貴網(wǎng)站訂單系統(tǒng)中的唯一訂單號(hào)匹配
    params['subject'] = subject  # 訂單名稱(chēng)，顯示在支付寶收銀臺(tái)里的“商品名稱(chēng)”里够傍，顯示在支付寶的交易管理的“商品名稱(chēng)”的列表里甫菠。
    params['body'] = body  # 訂單描述、訂單詳細(xì)冕屯、訂單備注寂诱，顯示在支付寶收銀臺(tái)里的“商品描述”里
    params['total_fee'] = total_fee  # 訂單總金額，顯示在支付寶收銀臺(tái)里的“應(yīng)付總額”里

     # 擴(kuò)展功能參數(shù)——網(wǎng)銀提前
    if bank=='alipay' or bank=='':
        params['paymethod'] = 'directPay'   # 支付方式安聘，四個(gè)值可選：bankPay(網(wǎng)銀); cartoon(卡通); directPay(余額); CASH(網(wǎng)點(diǎn)支付)
        params['defaultbank'] = ''          # 支付寶支付痰洒，這個(gè)為空
    else:
        params['paymethod'] = 'bankPay'     # 默認(rèn)支付方式，四個(gè)值可選：bankPay(網(wǎng)銀); cartoon(卡通); directPay(余額); CASH(網(wǎng)點(diǎn)支付)
        params['defaultbank'] = bank        # 默認(rèn)網(wǎng)銀代號(hào)浴韭，代號(hào)列表見(jiàn)http://club.alipay.com/read.php?tid=8681379   

    params, prestr = params_filter(params)
    params['sign'] = build_mysign(prestr, Settings.ALIPAY_KEY, Settings.ALIPAY_SIGN_TYPE)
    params['sign_type'] = Settings.ALIPAY_SIGN_TYPE

    return _GATEWAY + urlencode(params)


def notify_verify(post):
    # 初級(jí)驗(yàn)證--簽名
    _,prestr = params_filter(post)
    mysign = build_mysign(prestr, settings.ALIPAY_KEY, settings.ALIPAY_SIGN_TYPE)

    if mysign != post.get('sign'):
        return False
    
    # 二級(jí)驗(yàn)證--查詢(xún)支付寶服務(wù)器此條信息是否有效
    params = {}
    params['partner'] = settings.ALIPAY_PARTNER
    params['notify_id'] = post.get('notify_id')

    gateway = 'https://mapi.alipay.com/gateway.do?service=notify_verify&'
    verify_result = urlopen(gateway, urlencode(params)).read()
    if verify_result.lower().strip() == 'true':
        return True
    return False

2丘喻、config.py

class Settings:
  # 安全檢驗(yàn)碼，以數(shù)字和字母組成的32位字符
  ALIPAY_KEY = 'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'

  ALIPAY_INPUT_CHARSET = 'utf-8'

  # 合作身份者ID念颈，以2088開(kāi)頭的16位純數(shù)字
  ALIPAY_PARTNER = 'xxxxxxxxxxxxxxxx'

  # 簽約支付寶賬號(hào)或賣(mài)家支付寶帳戶(hù)
  ALIPAY_SELLER_EMAIL = 'ls@abc.com'

  ALIPAY_SIGN_TYPE = 'MD5'

  # 付完款后跳轉(zhuǎn)的頁(yè)面（同步通知） 要用 http://格式的完整路徑泉粉，不允許加?id=123這類(lèi)自定義參數(shù)
  ALIPAY_RETURN_URL='http://www.xxx.com/alipay/return/'

  # 交易過(guò)程中服務(wù)器異步通知的頁(yè)面 要用 http://格式的完整路徑，不允許加?id=123這類(lèi)自定義參數(shù)
  ALIPAY_NOTIFY_URL='http://www.xxx.com/alipay/notify/'

3舍肠、view.py

url = create_direct_pay_by_user(order_no, "名稱(chēng)", "描述", total_cost)
        # 去支付頁(yè)面
    return HttpResponseRedirect(url)


#alipay異步通知

@csrf_exempt
def alipay_notify_url (request):
    if request.method == 'POST':
        if notify_verify (request.POST):
            #商戶(hù)網(wǎng)站訂單號(hào)
            tn = request.POST.get('out_trade_no')
            #支付寶單號(hào)
            trade_no=request.POST.get('trade_no')
            #返回支付狀態(tài)
            trade_status = request.POST.get('trade_status')
            cb = cBill.objects.get(pk=tn)
            
            if trade_status == 'TRADE_SUCCESS':
                cb.exe()
                log=Log(operation='notify1_'+trade_status+'_'+trade_no)
                log.save()
                return HttpResponse("success")
            else:
                #寫(xiě)入日志
                log=Log(operation='notify2_'+trade_status+'_'+trade_no)
                log.save()
                return HttpResponse ("success")
        else:
            #黑客攻擊
            log=Log(operation='hack_notify_'+trade_status+'_'+trade_no+'_'+'out_trade_no')
            log.save()
    return HttpResponse ("fail")

#同步通知

def alipay_return_url (request):
    if notify_verify (request.GET):
        tn = request.GET.get('out_trade_no')
        trade_no = request.GET.get('trade_no')
        trade_status = request.GET.get('trade_status')
          
        cb = cBill.objects.get(pk=tn)
        log=Log(operation='return_'+trade_status+'_'+trade_no)
        log.save()
        return HttpResponseRedirect ("/public/verify/"+tn)
    else:
        #錯(cuò)誤或者黑客攻擊
        log=Log(operation='err_return_'+trade_status+'_'+trade_no)
        log.save()
        return HttpResponseRedirect ("/")


#外部跳轉(zhuǎn)回來(lái)的鏈接session可能丟失搀继，無(wú)法再進(jìn)入系統(tǒng)。
#客戶(hù)可能通過(guò)xxx.com操作翠语，但是支付寶只能返回www.xxx.com叽躯，域名不同，session丟失肌括。
def verify(request,cbid):
    try:
        cb=cBill.objects.get(id=cbid)
        #如果訂單時(shí)間距現(xiàn)在超過(guò)1天点骑，跳轉(zhuǎn)到錯(cuò)誤頁(yè)面酣难！
        #避免網(wǎng)站信息流失
        
        return render_to_response('public_verify.html',{'cb':cb},RequestContext(request))
    except ObjectDoesNotExist:
        return HttpResponseRedirect("/err/no_object")

PS:跟在網(wǎng)上搜到的，主要就是修改了【對(duì)數(shù)組排序并除去數(shù)組中的空值和簽名參數(shù)和返回?cái)?shù)組和鏈接串】方法