第三方平台api地址
https://developers.weixin.qq.com/doc/oplatform/openApi/OpenApiDoc/

预授权码获取之后调用接口获取授权方信息
https://developers.weixin.qq.com/doc/oplatform/Third-party_Platforms/2.0/api/ThirdParty/token/authorization_info.html#%E6%8E%88%E6%9D%83%E4%BF%A1%E6%81%AF%E8%AF%B4%E6%98%8E

1.微信开放平台编辑开发配置

image.png

2.授权事件接受配置>获取令牌>获取预授权码>查询预授权码

        <!--            网络请求-->
        <dependency>
            <groupId>com.github.lianjiatech</groupId>
            <artifactId>retrofit-spring-boot-starter</artifactId>
            <version>2.3.5</version>
        </dependency>
        <dependency>
            <groupId>com.squareup.retrofit2</groupId>
            <artifactId>converter-simplexml</artifactId>
            <version>2.9.0</version>
        </dependency>

@RetrofitClient(baseUrl = "https://api.weixin.qq.com/")
public interface WeChatApi {
    /**
     * 令牌
     * 文档地址 https://developers.weixin.qq.com/doc/oplatform/Third-party_Platforms/2.0/api/ThirdParty/token/component_access_token.html
     * 请求地址 https://api.weixin.qq.com/cgi-bin/component/api_component_token
     */
    @POST("cgi-bin/component/api_component_token")
    JSONObject getComponentAccessToken(@Body GetComponentAccessTokenParam param);

    /**
     * 预授权码
     * <p>
     * 文档地址 https://developers.weixin.qq.com/doc/oplatform/Third-party_Platforms/2.0/api/ThirdParty/token/pre_auth_code.html
     * 请求地址 https://api.weixin.qq.com/cgi-bin/component/api_create_preauthcode?component_access_token=COMPONENT_ACCESS_TOKEN
     */
    @POST("/cgi-bin/component/api_create_preauthcode")
    JSONObject getPreAuthCode(@Query("component_access_token") String token, @Body GetPreAuthCodeParam param);


    /**
     * 查询授权方接口
     * https://api.weixin.qq.com/cgi-bin/component/api_query_auth?component_access_token=COMPONENT_ACCESS_TOKEN
     */
    @POST("/cgi-bin/component/api_query_auth")
    JSONObject getApiQueryAuth(@Query("component_access_token") String accessToken,@Body GetApiQueryAuthParam param);
}

3.授权事件接收配置

    @ApiOperation("授权事件接收配置")
    @RequestMapping("/component_verify_ticket")
    @ResponseBody
    public String componentVerifyTicket(@RequestParam("timestamp") String timestamp, @RequestParam("nonce") String nonce, @RequestParam("msg_signature") String msgSignature,
                                        @RequestBody String postData) throws DocumentException, AesException {
        //https://sunuping.com/vt/api/wx/open/component_verify_ticket
        return this.memberWxService.componentVerifyTicket(postData, msgSignature, timestamp, nonce);
    }


@Override
    public String componentVerifyTicket(String data, String msgSignature, String timestamp, String nonce) throws DocumentException, AesException {
        if (log.isDebugEnabled()) {
            log.debug(data);
        }
        //这个类是微信官网提供的解密类,需要用到消息校验Token 消息加密Key和服务平台appid
        WXBizMsgCrypt pc = new WXBizMsgCrypt(WxConfigConstant.TOKEN, WxConfigConstant.KEY, WxConfigConstant.APPID);
        String xml = pc.decryptMsg(msgSignature, timestamp, nonce, data);
        Map<String, String> map = XmlTools.getMap(xml);
        final String d = map.get("ComponentVerifyTicket");
        if (log.isDebugEnabled()) {
            log.debug("获取微信验证票据:{}", d);
        }

        if (StringUtils.isNotBlank(d)) {
            //缓存11小时
            redisService.set(WxRedisKeyConstant.COMPONENT_VERIFY_TICKET, d, 39600);
        }
        return "success";
    }

4.获取第三方api授权token

    @Override
    public String getComponentAccessToken() {
        String componentAccessToken = (String) redisService.get(WxRedisKeyConstant.COMPONENT_ACCESS_TOKEN);
        if (StringUtils.isBlank(componentAccessToken)) {
            final String ticket = Optional.ofNullable((String) redisService.get(WxRedisKeyConstant.COMPONENT_VERIFY_TICKET)).orElseThrow(() -> new ErrorException("验证凭据获取失败"));
            JSONObject tokenJson = Optional.ofNullable(weChatApi.getComponentAccessToken(new GetComponentAccessTokenParam(WxConfigConstant.APPID, WxConfigConstant.APP_SECRET, ticket)))
                                           //
                                           .orElseThrow(() -> new ErrorException("令牌获取失败"));
            if (log.isDebugEnabled()) {
                log.debug(tokenJson.toJSONString());
            }
            componentAccessToken = Optional.ofNullable(tokenJson.getString("component_access_token")).orElseThrow(() -> new ErrorException("令牌数据为空"));
            //缓存1小时50分钟
            redisService.set(WxRedisKeyConstant.COMPONENT_ACCESS_TOKEN, componentAccessToken, tokenJson.getIntValue("expires_in"));
        }
        return componentAccessToken;
    }

5.获取预授权码

@Override
    public String getPreAuthCode() {
        final String componentAccessToken = this.getComponentAccessToken();

        String code = (String) this.redisService.get(WxRedisKeyConstant.PRE_AUTH_CODE);
        if (StringUtils.isBlank(code)) {
            JSONObject preAuthCodeJson = Optional.ofNullable(weChatApi.getPreAuthCode(componentAccessToken, new GetPreAuthCodeParam(WxConfigConstant.APPID)))
                                                 //
                                                 .orElseThrow(() -> new ErrorException("获取预授权码失败"));
            if (log.isDebugEnabled()) {
                log.debug(preAuthCodeJson.toJSONString());
            }
            code = Optional.ofNullable(preAuthCodeJson.getString("pre_auth_code")).orElseThrow(() -> new ErrorException("获取预授权码失败"));
            this.redisService.set(WxRedisKeyConstant.PRE_AUTH_CODE, code, preAuthCodeJson.getIntValue("expires_in"));

        }
        return this.generatePreAuthCodeUrl(code);
    }

    private String generatePreAuthCodeUrl(String code) {
        long mid = StpUtil.getLoginIdAsLong();
        //https://mp.weixin.qq.com/cgi-bin/componentloginpage?component_appid=xxxx&pre_auth_code=xxxxx&redirect_uri=xxxx&auth_type=xxx
        return "https://mp.weixin.qq.com/cgi-bin/componentloginpage?component_appid=" + WxConfigConstant.APPID + "&pre_auth_code=" + code
                //授权完回去的页面 授权回去的域名要去配置的域名一样
                + "&redirect_uri=https://xxxx/x/bind_wx_public?mid=" + mid + "&auth_type=1";
    }

6.拉取授权方信息

    @GetMapping("/bind_wx_public")
    @ApiOperation("绑定微信公众号")
    public void bindWxPublic(@RequestParam("auth_code") String authCode, @RequestParam("expires_in") Integer expiresIn, @RequestParam("mid") Long mid) throws IOException {
        this.memberWxService.bindWxPublic(authCode, expiresIn, mid);
    }

@Override
    public void bindWxPublic(String authCode, Integer expiresIn, Long mid) throws IOException {
        log.debug("授权码:{},失效时间/秒:{}", authCode, expiresIn);
        final String componentAccessToken = this.getComponentAccessToken();
        JSONObject apiQueryAuthJson = this.weChatApi.getApiQueryAuth(componentAccessToken, new GetApiQueryAuthParam(WxConfigConstant.APPID, authCode));
        log.debug("授权方信息:{}", apiQueryAuthJson.toJSONString());
        JSONObject authorizationInfo = apiQueryAuthJson.getJSONObject("authorization_info");
        //授权方 appid
        String authorizerAppid = authorizationInfo.getString("authorizer_appid");
        //接口调用令牌
        String authorizerAccessToken = authorizationInfo.getString("authorizer_access_token");
        //authorizer_access_token 的有效期
        int authorizerAccessTokenExpiresIn = authorizationInfo.getIntValue("expires_in");
        //刷新令牌
        String authorizerRefreshToken = authorizationInfo.getString("authorizer_refresh_token");
        //授权给开发者的权限集列表
        JSONArray funcInfoJsonArr = authorizationInfo.getJSONArray("func_info");

       //业务处理完后 重定向到某个页面
        response.sendRedirect("https://xxxxx");
    }