| package com.dsh.course.util.midtrans; | 
|   | 
| import com.alibaba.fastjson.JSON; | 
| import com.midtrans.Config; | 
| import com.midtrans.Midtrans; | 
| import com.midtrans.httpclient.SnapApi; | 
| import com.midtrans.httpclient.TransactionApi; | 
| import com.midtrans.httpclient.error.MidtransError; | 
| import org.json.JSONObject; | 
|   | 
| import javax.servlet.http.HttpServletRequest; | 
| import java.io.BufferedReader; | 
| import java.io.IOException; | 
| import java.io.InputStream; | 
| import java.io.InputStreamReader; | 
| import java.nio.charset.StandardCharsets; | 
| import java.security.MessageDigest; | 
| import java.security.NoSuchAlgorithmException; | 
| import java.util.HashMap; | 
| import java.util.Map; | 
|   | 
| /** | 
| * Midtrans支付工具类 | 
| * @author pzb | 
| * @Date 2022/11/28 14:19 | 
| */ | 
| public class MidtransUtil { | 
|   | 
|     private static String sandbox_merchant_id = "G118246934"; | 
|   | 
|     private static String sandbox_serverKey = "SB-Mid-server-qR4Xy4kbpyxND_7f6c1_knb9"; | 
|   | 
|     private static String sandbox_clientKey = "SB-Mid-client-xhRbIV8lsbu7bKCE"; | 
|   | 
|     private static String merchant_id = "G118246934"; | 
|   | 
|     private static String serverKey = "Mid-server-w1ATM2ldDpd0c4Q0s9sNfeNN"; | 
|   | 
|     private static String clientKey = "Mid-client-X22yMA1Wvs0v1vfO"; | 
|   | 
|   | 
|     /** | 
|      * 获取支付令牌 | 
|      * @param order_id          商户订单id | 
|      * @param gross_amount      支付金额 | 
|      * @param xOverrideNotification     支付状态通知回调地址 | 
|      * @return | 
|      */ | 
|     public static TokenResult getPayToken(String order_id, String gross_amount, String xOverrideNotification){ | 
|         //沙箱环境 | 
|         Midtrans.serverKey = sandbox_serverKey; | 
|         Midtrans.clientKey = sandbox_clientKey; | 
|         Midtrans.isProduction = false; | 
|   | 
|         //生产环境 | 
| //        Midtrans.serverKey = serverKey; | 
| //        Midtrans.clientKey = clientKey; | 
| //        Midtrans.isProduction = true; | 
|   | 
|         Midtrans.paymentOverrideNotification(xOverrideNotification); | 
|         // Create Token and then you can send token variable to FrontEnd, | 
|         // to initialize Snap JS when customer click pay button | 
|         //201    成功创建 Snap 令牌。    “令牌”:“66e4fa55-fdac-4ef9-91b5-733b97d1b862” | 
|         //401    未能创建令牌,因为发送了错误的授权。    “访问被拒绝,请检查客户端或服务器密钥” | 
|         //4xx    未能创建令牌,因为发送了错误的参数。按照 error_message 并检查您的参数。    “transaction_details.gross_amount 不等于 item_details 的总和” | 
|         //5xx    由于 Midtrans 内部错误,无法创建令牌。大多数情况下这是暂时的,您可以稍后重试。    “抱歉,我们遇到内部服务器错误。我们会尽快解决这个问题。” | 
|   | 
|         try { | 
|             JSONObject transaction = SnapApi.createTransaction(requestBody(order_id, gross_amount), Config.getGlobalConfig()); | 
|             TokenResult tokenResult = new TokenResult(); | 
|             tokenResult.setToken(transaction.getString("token")); | 
|             tokenResult.setRedirect_url(transaction.getString("redirect_url")); | 
|             return tokenResult; | 
|         } catch (MidtransError midtransError) { | 
|             midtransError.printStackTrace(); | 
|         } | 
|         return null; | 
|     } | 
|   | 
|   | 
|     // Create params JSON Raw Object request | 
|     public static Map<String, Object> requestBody(String order_id, String gross_amount) { | 
|         Map<String, Object> params = new HashMap<>(); | 
|         Map<String, String> transactionDetails = new HashMap<>(); | 
|         transactionDetails.put("order_id", order_id); | 
|         transactionDetails.put("gross_amount", gross_amount); | 
|         Map<String, String> creditCard = new HashMap<>(); | 
|         creditCard.put("secure", "true"); | 
|         params.put("transaction_details", transactionDetails); | 
|         params.put("credit_card", creditCard); | 
|         return params; | 
|     } | 
|   | 
|   | 
|     /** | 
|      * 获取订单支付状态 | 
|      * @param order_id | 
|      * @return | 
|      */ | 
|     public static PaymentNotice getPayStatus(String order_id){ | 
|         //沙箱环境 | 
|         Midtrans.serverKey = sandbox_serverKey; | 
|         Midtrans.clientKey = sandbox_clientKey; | 
|         Midtrans.isProduction = false; | 
|   | 
|         //生产环境 | 
| //        Midtrans.serverKey = serverKey; | 
| //        Midtrans.clientKey = clientKey; | 
| //        Midtrans.isProduction = true; | 
|         JSONObject jsonObject = null; | 
|         try { | 
|             jsonObject = TransactionApi.checkTransaction(order_id); | 
|         } catch (MidtransError midtransError) { | 
|             midtransError.printStackTrace(); | 
|         } | 
|         PaymentNotice paymentNotice = JSON.parseObject(jsonObject.toString(), PaymentNotice.class); | 
|         if(null == paymentNotice){ | 
|             System.err.println("回调结果解析失败"); | 
|             return null; | 
|         } | 
|         String signature_key = paymentNotice.getSignature_key(); | 
|         order_id = paymentNotice.getOrder_id(); | 
|         String status_code = paymentNotice.getStatus_code(); | 
|         if("400".equals(status_code)){ | 
|             System.err.println("数据丢失或无效"); | 
|             return null; | 
|         } | 
|         if("401".equals(status_code)){ | 
|             System.err.println("授权错误"); | 
|             return null; | 
|         } | 
|         if("404".equals(status_code)){ | 
|             System.err.println("找不到请求的资源"); | 
|             return null; | 
|         } | 
|         String gross_amount = paymentNotice.getGross_amount(); | 
|         String sha_512_securePassword = get_SHA_512_SecurePassword(order_id + status_code + gross_amount + sandbox_serverKey); | 
|         if(!signature_key.equals(sha_512_securePassword)){ | 
|             System.err.println("签名校验失败"); | 
|             return null; | 
|         } | 
|         return paymentNotice; | 
|     } | 
|   | 
|   | 
|     /** | 
|      * 支付回调解析 | 
|      * @param request | 
|      * @return | 
|      */ | 
|     public static PaymentNotice payResultNotification(HttpServletRequest request){ | 
|         String param = null; | 
|         try { | 
|             param = getParam(request); | 
|         } catch (IOException e) { | 
|             e.printStackTrace(); | 
|         } | 
|   | 
|         System.err.println("支付回调结果:========》" + param); | 
|   | 
|         PaymentNotice paymentNotice = JSON.parseObject(param, PaymentNotice.class); | 
|         if(null == paymentNotice){ | 
|             System.err.println("回调结果解析失败"); | 
|             return null; | 
|         } | 
|         String signature_key = paymentNotice.getSignature_key(); | 
|         String order_id = paymentNotice.getOrder_id(); | 
|         String status_code = paymentNotice.getStatus_code(); | 
|         if("400".equals(status_code)){ | 
|             System.err.println("数据丢失或无效"); | 
|             return null; | 
|         } | 
|         if("401".equals(status_code)){ | 
|             System.err.println("授权错误"); | 
|             return null; | 
|         } | 
|         if("404".equals(status_code)){ | 
|             System.err.println("找不到请求的资源"); | 
|             return null; | 
|         } | 
|         String gross_amount = paymentNotice.getGross_amount(); | 
|         String sha_512_securePassword = get_SHA_512_SecurePassword(order_id + status_code + gross_amount + sandbox_serverKey); | 
|         if(!signature_key.equals(sha_512_securePassword)){ | 
|             System.err.println("签名校验失败"); | 
|             return null; | 
|         } | 
|         return paymentNotice; | 
|     } | 
|   | 
|   | 
|     /** | 
|      * 退款交易 | 
|      * @param transaction_id      支付订单id | 
|      * @param refund_key          商户退款id | 
|      * @param amount              退款金额 | 
|      * @param reason              退款说明 | 
|      * @return | 
|      */ | 
|     public static DirectRefundTransaction directRefundTransaction(String transaction_id, String refund_key, String amount, String reason){ | 
|         //沙箱环境 | 
|         Midtrans.serverKey = sandbox_serverKey; | 
|         Midtrans.clientKey = sandbox_clientKey; | 
|         Midtrans.isProduction = false; | 
|   | 
|         //生产环境 | 
| //        Midtrans.serverKey = serverKey; | 
| //        Midtrans.clientKey = clientKey; | 
| //        Midtrans.isProduction = true; | 
|   | 
|         Map<String, String> requestBody = new HashMap<>(); | 
|         requestBody.put("refund_key", refund_key); | 
|         requestBody.put("amount", amount); | 
|         requestBody.put("reason", reason); | 
|   | 
|         JSONObject jsonObject = null; | 
|         try { | 
|             jsonObject = TransactionApi.directRefundTransaction(transaction_id, requestBody); | 
|         } catch (MidtransError midtransError) { | 
|             midtransError.printStackTrace(); | 
|         } | 
|         /** | 
|          * { | 
|          *   "status_code": "200", | 
|          *   "status_message": "Success, refund request is approved by the bank", | 
|          *   "transaction_id": "fddb5889-fd39-46fe-809d-30679fe42434", | 
|          *   "order_id": "MID-1620622357", | 
|          *   "gross_amount": "10000.00", | 
|          *   "payment_type": "credit_card", | 
|          *   "transaction_time": "2016-06-28 09:42:20", | 
|          *   "transaction_status": "refund", | 
|          *   "refund_chargeback_id": 47594, | 
|          *   "refund_amount": "10000.00", | 
|          *   "refund_key": "01f1f771-b75c-48ef-b21d-193a79f8aa5b" | 
|          * } | 
|          */ | 
|   | 
|         DirectRefundTransaction directRefundTransaction = JSON.parseObject(jsonObject.toString(), DirectRefundTransaction.class); | 
|         if(null == directRefundTransaction){ | 
|             System.err.println("退款结果解析失败"); | 
|             return null; | 
|         } | 
|         String status_code = directRefundTransaction.getStatus_code(); | 
|         if("400".equals(status_code)){ | 
|             System.err.println("数据丢失或无效"); | 
|             return null; | 
|         } | 
|         if("401".equals(status_code)){ | 
|             System.err.println("授权错误"); | 
|             return null; | 
|         } | 
|         if("404".equals(status_code)){ | 
|             System.err.println("找不到请求的资源"); | 
|             return null; | 
|         } | 
|         return directRefundTransaction; | 
|     } | 
|   | 
|   | 
|   | 
|   | 
|     /** | 
|      * 获取请求内容 | 
|      * @param request | 
|      * @return | 
|      * @throws IOException | 
|      */ | 
|     private static String getParam(HttpServletRequest request) throws IOException { | 
|         // 读取参数 | 
|         InputStream inputStream; | 
|         StringBuilder sb = new StringBuilder(); | 
|         inputStream = request.getInputStream(); | 
|         String s; | 
|         BufferedReader in = new BufferedReader(new InputStreamReader(inputStream, "UTF-8")); | 
|         while ((s = in.readLine()) != null) { | 
|             sb.append(s); | 
|         } | 
|         in.close(); | 
|         inputStream.close(); | 
|         return sb.toString(); | 
|     } | 
|   | 
|   | 
|     private static String get_SHA_512_SecurePassword(String passwordToHash){ | 
|         String generatedPassword = null; | 
|         try { | 
|             MessageDigest md = MessageDigest.getInstance("SHA-512"); | 
|             byte[] bytes = md.digest(passwordToHash.getBytes(StandardCharsets.UTF_8)); | 
|             StringBuilder sb = new StringBuilder(); | 
|             for(int i=0; i< bytes.length ;i++){ | 
|                 sb.append(Integer.toString((bytes[i] & 0xff) + 0x100, 16).substring(1)); | 
|             } | 
|             generatedPassword = sb.toString(); | 
|         } catch (NoSuchAlgorithmException e) { | 
|             e.printStackTrace(); | 
|         } | 
|         return generatedPassword; | 
|     } | 
|   | 
|   | 
| } |