ti.sil/open-webui
1
0
Fork 0
mirror of https://github.com/open-webui/open-webui.git synced 2025-12-14 21:35:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
open-webui/backend/open_webui/utils/alipay.py

235 lines
6.6 KiB
Python
Raw Normal View History

feat:补充支付功能,需要更新env
2025-12-08 01:37:01 +00:00
"""
支付宝支付服务
使用当面付扫码支付模式
"""
import logging
from typing import Optional, Tuple
from urllib.parse import parse_qs, unquote
from open_webui.env import (
ALIPAY_APP_ID,
ALIPAY_PRIVATE_KEY,
ALIPAY_PUBLIC_KEY,
ALIPAY_NOTIFY_URL,
ALIPAY_SANDBOX,
)
log = logging.getLogger(__name__)
def is_alipay_configured() -> bool:
"""检查支付宝是否已配置"""
return bool(ALIPAY_APP_ID and ALIPAY_PRIVATE_KEY and ALIPAY_PUBLIC_KEY)
def get_alipay_client():
"""
获取支付宝客户端
Returns:
DefaultAlipayClient 实例
"""
if not is_alipay_configured():
raise ValueError("支付宝配置不完整,请检查环境变量")
try:
from alipay.aop.api.AlipayClientConfig import AlipayClientConfig
from alipay.aop.api.DefaultAlipayClient import DefaultAlipayClient
except ImportError:
raise ImportError("请安装 alipay-sdk-python: pip install alipay-sdk-python")
config = AlipayClientConfig()
config.app_id = ALIPAY_APP_ID
config.app_private_key = ALIPAY_PRIVATE_KEY
config.alipay_public_key = ALIPAY_PUBLIC_KEY
if ALIPAY_SANDBOX:
config.server_url = "https://openapi-sandbox.dl.alipaydev.com/gateway.do"
else:
config.server_url = "https://openapi.alipay.com/gateway.do"
return DefaultAlipayClient(alipay_client_config=config)
def create_qr_payment(
out_trade_no: str, amount_yuan: float, subject: str = "账户充值"
) -> Tuple[bool, str, Optional[str]]:
"""
创建扫码支付订单
Args:
out_trade_no: 商户订单号
amount_yuan: 金额
subject: 订单标题
Returns:
Tuple[success, message, qr_code]
"""
try:
from alipay.aop.api.domain.AlipayTradePrecreateModel import (
AlipayTradePrecreateModel,
)
from alipay.aop.api.request.AlipayTradePrecreateRequest import (
AlipayTradePrecreateRequest,
)
client = get_alipay_client()
model = AlipayTradePrecreateModel()
model.out_trade_no = out_trade_no
model.total_amount = f"{amount_yuan:.2f}"
model.subject = subject
model.timeout_express = "15m" # 15分钟过期
request = AlipayTradePrecreateRequest(biz_model=model)
if ALIPAY_NOTIFY_URL:
request.notify_url = ALIPAY_NOTIFY_URL
response = client.execute(request)
# 解析响应
if hasattr(response, "code") and response.code == "10000":
qr_code = response.qr_code
log.info(f"创建支付宝订单成功: {out_trade_no}")
return True, "success", qr_code
else:
error_msg = getattr(response, "sub_msg", None) or getattr(
response, "msg", "未知错误"
)
log.error(f"创建支付宝订单失败: {out_trade_no}, {error_msg}")
return False, error_msg, None
except Exception as e:
log.error(f"创建支付宝订单异常: {e}")
return False, str(e), None
def query_payment(out_trade_no: str) -> Tuple[str, Optional[str]]:
"""
查询订单状态
Args:
out_trade_no: 商户订单号
Returns:
Tuple[status, trade_no]
status: WAIT_BUYER_PAY / TRADE_CLOSED / TRADE_SUCCESS / TRADE_FINISHED / NOT_FOUND / ERROR
"""
try:
from alipay.aop.api.domain.AlipayTradeQueryModel import AlipayTradeQueryModel
from alipay.aop.api.request.AlipayTradeQueryRequest import (
AlipayTradeQueryRequest,
)
client = get_alipay_client()
model = AlipayTradeQueryModel()
model.out_trade_no = out_trade_no
request = AlipayTradeQueryRequest(biz_model=model)
response = client.execute(request)
if hasattr(response, "code") and response.code == "10000":
trade_status = response.trade_status
trade_no = response.trade_no
return trade_status, trade_no
else:
return "NOT_FOUND", None
except Exception as e:
log.error(f"查询支付宝订单失败: {e}")
return "ERROR", None
def close_payment(out_trade_no: str) -> bool:
"""
关闭订单
Args:
out_trade_no: 商户订单号
Returns:
是否成功
"""
try:
from alipay.aop.api.domain.AlipayTradeCloseModel import AlipayTradeCloseModel
from alipay.aop.api.request.AlipayTradeCloseRequest import (
AlipayTradeCloseRequest,
)
client = get_alipay_client()
model = AlipayTradeCloseModel()
model.out_trade_no = out_trade_no
request = AlipayTradeCloseRequest(biz_model=model)
response = client.execute(request)
if hasattr(response, "code") and response.code == "10000":
log.info(f"关闭支付宝订单成功: {out_trade_no}")
return True
else:
log.error(f"关闭支付宝订单失败: {out_trade_no}")
return False
except Exception as e:
log.error(f"关闭支付宝订单异常: {e}")
return False
def verify_notify_sign(params: dict) -> bool:
"""
验证支付宝异步通知签名
Args:
params: 支付宝回调参数
Returns:
签名是否有效
"""
if not is_alipay_configured():
return False
try:
from alipay.aop.api.util.SignatureUtils import verify_with_rsa
# 获取签名
sign = params.get("sign", "")
sign_type = params.get("sign_type", "RSA2")
if not sign:
log.error("回调参数缺少签名")
return False
# 构建待验签字符串(按字母排序,排除 sign 和 sign_type
sorted_params = sorted(
[(k, v) for k, v in params.items() if k not in ("sign", "sign_type") and v]
)
unsigned_string = "&".join([f"{k}={v}" for k, v in sorted_params])
# 验签
if sign_type == "RSA2":
result = verify_with_rsa(
ALIPAY_PUBLIC_KEY, unsigned_string.encode("utf-8"), sign
)
else:
# RSA (SHA1)
from alipay.aop.api.util.SignatureUtils import verify_with_rsa as verify_rsa1
result = verify_rsa1(
ALIPAY_PUBLIC_KEY, unsigned_string.encode("utf-8"), sign
)
if result:
log.info(f"支付宝回调验签成功: {params.get('out_trade_no')}")
else:
log.error(f"支付宝回调验签失败: {params.get('out_trade_no')}")
return result
except Exception as e:
log.error(f"支付宝回调验签异常: {e}")
return False
Reference in a new issue Copy permalink