【小程序+thinkphp5】 用户登陆，返回第三方session3rd

<?php// +----------------------------------------------------------------------// | Desc: 微信配置文件// +----------------------------------------------------------------------// | Author: 依然范儿特西// +----------------------------------------------------------------------return [ ???//微信小程序ID ???"wx_appid"=>"", ???//微信小程序密钥 ???‘wx_appsecret‘=>"", ???//微信接口域名 ???"wx_request_url"=>"https://api.weixin.qq.com/sns/jscode2session",];

<?phpnamespace app\wechat\controller;use ?think\Controller; ??//使用控制器use ?think\Db; ?//使用数据库操作use ?think\Request;use ?think\config;use Wxdev\WXBizDataCrypt; /** 微信模块 */class Wxrun ?extends Base{ ???function __construct(){ ???????parent::__construct(); ???} ???????public function index(){ ???????// 指定json数据输出 ???????return json([‘code‘=>110,‘message‘=>"Power By 研发中心","result"=>null]); ???} ???????//用户登陆 ???public ?function user_login(){ ?????$APPID = config::get("wechat.wx_appid"); ??????$AppSecret = config::get("wechat.wx_appsecret"); ??????$wx_request_url = config::get("wechat.wx_request_url"); ??????$code = input("code"); ?????$param = array( ????????‘appid‘ => $APPID, ????????‘secret‘ => $AppSecret, ????????‘js_code‘ => $code, ????????‘grant_type‘ => ‘authorization_code‘ ?????); ???????// 一个使用curl实现的get方法请求 ?????$arr = http_send($wx_request_url, $param, ‘post‘); ??????$arr = json_decode($arr,true); ?????if(isset($arr[‘errcode‘]) && !empty($arr[‘errcode‘])){ ?????????return json([‘code‘=>‘2‘,‘message‘=>$arr[‘errmsg‘],"result"=>null]); ?????} ?????$openid = $arr[‘openid‘]; ?????$session_key = $arr[‘session_key‘]; ?????// 数据签名校验 ?????$signature = input("signature"); ?????$signature2 = sha1($_GET[‘rawData‘].$session_key); ?//别用框架自带的input,会过滤掉必要的数据 ?????if ($signature != $signature2) { ?????????$msg = "shibai 1"; ?????????return json([‘code‘=>‘2‘,‘message‘=>‘获取失败‘,"result"=>$msg]); ?????} ?????//开发者如需要获取敏感数据，需要对接口返回的加密数据( encryptedData )进行对称解密 ?????$encryptedData = $_GET[‘encryptedData‘]; ?????$iv = $_GET[‘iv‘]; ?????include_once (EXTEND_PATH. ‘Wxdev/wxBizDataCrypt.php‘); ?????$pc = new \WXBizDataCrypt($APPID, $session_key); ?????$errCode = $pc->decryptData($encryptedData, $iv, $data); ?//其中$data包含用户的所有数据 ?????if ($errCode != 0) { ?????????return json([‘code‘=>‘2‘,‘message‘=>‘获取失败‘,"result"=>null]); ?????} ?????/****** */ ?????//写自己的逻辑： 操作数据库等操作 ??????/****** */ ?????//生成第三方3rd_session ?????$session3rd ?= null; ?????$strPol = "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789abcdefghijklmnopqrstuvwxyz"; ?????$max = strlen($strPol)-1; ?????for($i=0;$i<16;$i++){ ?????????$session3rd .=$strPol[rand(0,$max)]; ?????} ?????return json([‘code‘=>‘1‘,‘message‘=>‘获取成功‘,"result"=>$session3rd]); ???} ??????}

// 登录 ???wx.login({ ?????success: res => { ???????// 发送 res.code 到后台换取 openId, sessionKey, unionId ???????var code = res.code; ???????wx.getUserInfo({ ?????????success: res => { ???????????// 可以将 res 发送给后台解码出 unionId ???????????this.globalData.userInfo = res.userInfo ???????????var rawData = res.rawData; ???????????var signature = res.signature; ???????????var encryptedData = res.encryptedData; ???????????var iv = res.iv; ???????????wx.request({ ?????????????url: ‘https://www.test.com/wechat/wx/user_login‘, ?????????????data: { ???????????????"code": code, ???????????????"rawData": rawData, ???????????????"signature": signature, ???????????????‘iv‘: iv, ???????????????‘encryptedData‘: encryptedData ?????????????}, ?????????????success: function (info) { ???????????????console.log(info); ?????????????} ???????????}) ???????????// 由于 getUserInfo 是网络请求，可能会在 Page.onLoad 之后才返回 ???????????// 所以此处加入 callback 以防止这种情况 ???????????if (this.userInfoReadyCallback) { ?????????????this.userInfoReadyCallback(res) ???????????} ?????????} ???????}) ?????} ???})