ti.sil/open-webui
1
0
Fork 0
mirror of https://github.com/open-webui/open-webui.git synced 2025-12-12 20:35:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
open-webui/backend/open_webui/utils/alipay.py
sylarchen1389 6147cc9acf feat:补充支付功能,需要更新env
2025-12-08 09:37:01 +08:00

234 lines
6.6 KiB
Python
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

"""
支付宝支付服务
使用当面付(扫码支付)模式
"""
import logging
from typing import Optional, Tuple
from urllib.parse import parse_qs, unquote
from open_webui.env import (
ALIPAY_APP_ID,
ALIPAY_PRIVATE_KEY,
ALIPAY_PUBLIC_KEY,
ALIPAY_NOTIFY_URL,
ALIPAY_SANDBOX,
)
log = logging.getLogger(__name__)
def is_alipay_configured() -> bool:
"""检查支付宝是否已配置"""
return bool(ALIPAY_APP_ID and ALIPAY_PRIVATE_KEY and ALIPAY_PUBLIC_KEY)
def get_alipay_client():
"""
获取支付宝客户端
Returns:
DefaultAlipayClient 实例
"""
if not is_alipay_configured():
raise ValueError("支付宝配置不完整,请检查环境变量")
try:
from alipay.aop.api.AlipayClientConfig import AlipayClientConfig
from alipay.aop.api.DefaultAlipayClient import DefaultAlipayClient
except ImportError:
raise ImportError("请安装 alipay-sdk-python: pip install alipay-sdk-python")
config = AlipayClientConfig()
config.app_id = ALIPAY_APP_ID
config.app_private_key = ALIPAY_PRIVATE_KEY
config.alipay_public_key = ALIPAY_PUBLIC_KEY
if ALIPAY_SANDBOX:
config.server_url = "https://openapi-sandbox.dl.alipaydev.com/gateway.do"
else:
config.server_url = "https://openapi.alipay.com/gateway.do"
return DefaultAlipayClient(alipay_client_config=config)
def create_qr_payment(
out_trade_no: str, amount_yuan: float, subject: str = "账户充值"
) -> Tuple[bool, str, Optional[str]]:
"""
创建扫码支付订单
Args:
out_trade_no: 商户订单号
amount_yuan: 金额(元)
subject: 订单标题
Returns:
Tuple[success, message, qr_code]
"""
try:
from alipay.aop.api.domain.AlipayTradePrecreateModel import (
AlipayTradePrecreateModel,
)
from alipay.aop.api.request.AlipayTradePrecreateRequest import (
AlipayTradePrecreateRequest,
)
client = get_alipay_client()
model = AlipayTradePrecreateModel()
model.out_trade_no = out_trade_no
model.total_amount = f"{amount_yuan:.2f}"
model.subject = subject
model.timeout_express = "15m" # 15分钟过期
request = AlipayTradePrecreateRequest(biz_model=model)
if ALIPAY_NOTIFY_URL:
request.notify_url = ALIPAY_NOTIFY_URL
response = client.execute(request)
# 解析响应
if hasattr(response, "code") and response.code == "10000":
qr_code = response.qr_code
log.info(f"创建支付宝订单成功: {out_trade_no}")
return True, "success", qr_code
else:
error_msg = getattr(response, "sub_msg", None) or getattr(
response, "msg", "未知错误"
)
log.error(f"创建支付宝订单失败: {out_trade_no}, {error_msg}")
return False, error_msg, None
except Exception as e:
log.error(f"创建支付宝订单异常: {e}")
return False, str(e), None
def query_payment(out_trade_no: str) -> Tuple[str, Optional[str]]:
"""
查询订单状态
Args:
out_trade_no: 商户订单号
Returns:
Tuple[status, trade_no]
status: WAIT_BUYER_PAY / TRADE_CLOSED / TRADE_SUCCESS / TRADE_FINISHED / NOT_FOUND / ERROR
"""
try:
from alipay.aop.api.domain.AlipayTradeQueryModel import AlipayTradeQueryModel
from alipay.aop.api.request.AlipayTradeQueryRequest import (
AlipayTradeQueryRequest,
)
client = get_alipay_client()
model = AlipayTradeQueryModel()
model.out_trade_no = out_trade_no
request = AlipayTradeQueryRequest(biz_model=model)
response = client.execute(request)
if hasattr(response, "code") and response.code == "10000":
trade_status = response.trade_status
trade_no = response.trade_no
return trade_status, trade_no
else:
return "NOT_FOUND", None
except Exception as e:
log.error(f"查询支付宝订单失败: {e}")
return "ERROR", None
def close_payment(out_trade_no: str) -> bool:
"""
关闭订单
Args:
out_trade_no: 商户订单号
Returns:
是否成功
"""
try:
from alipay.aop.api.domain.AlipayTradeCloseModel import AlipayTradeCloseModel
from alipay.aop.api.request.AlipayTradeCloseRequest import (
AlipayTradeCloseRequest,
)
client = get_alipay_client()
model = AlipayTradeCloseModel()
model.out_trade_no = out_trade_no
request = AlipayTradeCloseRequest(biz_model=model)
response = client.execute(request)
if hasattr(response, "code") and response.code == "10000":
log.info(f"关闭支付宝订单成功: {out_trade_no}")
return True
else:
log.error(f"关闭支付宝订单失败: {out_trade_no}")
return False
except Exception as e:
log.error(f"关闭支付宝订单异常: {e}")
return False
def verify_notify_sign(params: dict) -> bool:
"""
验证支付宝异步通知签名
Args:
params: 支付宝回调参数
Returns:
签名是否有效
"""
if not is_alipay_configured():
return False
try:
from alipay.aop.api.util.SignatureUtils import verify_with_rsa
# 获取签名
sign = params.get("sign", "")
sign_type = params.get("sign_type", "RSA2")
if not sign:
log.error("回调参数缺少签名")
return False
# 构建待验签字符串(按字母排序,排除 sign 和 sign_type
sorted_params = sorted(
[(k, v) for k, v in params.items() if k not in ("sign", "sign_type") and v]
)
unsigned_string = "&".join([f"{k}={v}" for k, v in sorted_params])
# 验签
if sign_type == "RSA2":
result = verify_with_rsa(
ALIPAY_PUBLIC_KEY, unsigned_string.encode("utf-8"), sign
)
else:
# RSA (SHA1)
from alipay.aop.api.util.SignatureUtils import verify_with_rsa as verify_rsa1
result = verify_rsa1(
ALIPAY_PUBLIC_KEY, unsigned_string.encode("utf-8"), sign
)
if result:
log.info(f"支付宝回调验签成功: {params.get('out_trade_no')}")
else:
log.error(f"支付宝回调验签失败: {params.get('out_trade_no')}")
return result
except Exception as e:
log.error(f"支付宝回调验签异常: {e}")
return False
Reference in a new issue View git blame Copy permalink