Shulou(Shulou.com)06/03 Report--

Editor to share with you what is the basic knowledge of the development of WeChat Pay, I believe that most people do not know much about it, so share this article for your reference, I hope you will learn a lot after reading this article. Let's learn about it!

1. The Ip of WeChat Pay's result server is not fixed. In general, if a company needs to make a whitelist, almost all the previously connected payment methods are OK, but Wechat informs the national server that there are too many servers to inform the server of the payment result notification, so it is impossible to make a whitelist to prepay malicious users and http://www.php.cn/wiki/397.html" server "_ blank" > security. Access servers and sites need to do special processing.

2. WeChat Pay's notification address and receiving server cannot be encrypted with Https before they can be accessed normally. Because Https is encrypted based on a third-party security certificate, it was not noticed at first. After the payment is completed, the payment result can not be notified normally.

3. When applying for an account, you must make sure to submit the authorized payment directory, such as http://qq.com/b/a.html, so the authorized directory must be the http://qq.com/b/ directory and must go to the lowest level directory, otherwise the pages in other directories do not have the permission to call WeChat Pay (JSAPI) script. This should be paid special attention, once submitted, you can not modify the payment directory. In the past, it could not be modified, but now it can be modified. In theory, an official account is only allowed to have one payment authorization directory. It used to be like this, but now it depends on your ability. It would be tragic if multiple products were connected to the same server. But it depends on your relationship, in fact, a server can apply for multiple payment authorization directories.

4. Users complain that the application account number of the return directory must also be a fixed address, which can not be modified after submission in theory. What do the other parties say? it should be possible with the gradual maturity of the system. If access payment requirements must be connected to the user complaint and feedback system.

5. All your payments cannot be used properly, including testing, before they are formally approved.

6. The test must use a formal account, and there is no test account. A test authorization directory can be temporarily assigned during the test. But the tester's Wechat Id must be whitelisted, otherwise they do not have the permission to participate in the test. The test whitelist has no more than 20 accounts.

7. Once Wechat has approved the account, the Wechat customer can be tested as WeChat Pay in the configured test authorization directory. If WeChat Pay of this official account is released. Sorry, the authorized payment directories of all WeChat Pay test addresses are invalid if there are multiple products. At this time, you can only use an online address for testing. However, Wechat informed that this permission would be released in the future.

8. Wechat's Natvie has already submitted the Getpackage callback address to obtain product information when applying for an account. This is the worst. There is no test address. You can only test with a formal address, and there is no test address available. Although native pay does not need to have WeChat Pay's permission on the authorized directory page. The worst time to get product information callback address is formal, so the test address can not be used, at most can only call up a WeChat Pay sister.

9. Anyone who interacts with Wechat must obtain Wechat authorization access_token. It usually expires after two hours and must be re-acquired before you can interact with all the interfaces of Wechat. Or I'll tell you you don't have access.

10, Wechat's OAuth protocol user information acquisition protocol is the worst, the document given is wrong, and the information communicated to is also wrong. This is also troublesome, must be in Wechat client in malicious access to Wechat information, but also must go to Wechat server transfer to jump to the established server address to get information. Wechat's OpenId is the only Id produced based on user information plus server information. As long as users follow Wechat's server, they can push information to users through their OpenId. Now what Wechat 5.2 is doing is to push payment information even if users are not paying attention, this function is only in the specific functions of some accounts.

The above is all the contents of the article "what are the basics of developing WeChat Pay?" Thank you for reading! I believe we all have a certain understanding, hope to share the content to help you, if you want to learn more knowledge, welcome to follow the industry information channel!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.