第一步登录服务商后台
1.找到工具一栏应用开发卡片
2.点击应用代开发
3.创建代开发应用模版
3.1.按步骤填写这个回调url很重要,必需要项目部署了可以调用的接口,后面用于获取代开发应用secret的
3.2成功后去上线
4.上面的流程应用和模版的上线都要同样的操作,然后回到代开发哪里查看应用模版点击进入
4.1查看模版信息,获取模板ID、模板Secret,这个刷新ticket要记得后续要使用的
5.要企业扫描授权代开发权限,会收到回调信息,是之前模版哪里设置的回调地址,这个回调地址有两地方设置,一个应用里面要设置。一个模版里面,最好设置一样的,因为后面重置应用secret时回调时发送到上线后的模版回调地址的,刷新ticket回调是应用里的回调地址
@RequestMapping("/instructionsCallback")@ApiOperation(value = "指令回掉", notes = "构造网页授权url", response = String.class)public Object instructionsCallback(HttpServletRequest request) throws Exception {String msg_signature = request.getParameter("msg_signature");String timestamp = request.getParameter("timestamp");String nonce = request.getParameter("nonce");String echostr = request.getParameter("echostr");String corpid = wechatParam.getServiceProviderCorpId();InputStream inputStream = request.getInputStream();String sPostData = IOUtils.toString(inputStream, "UTF-8");WXBizMsgCrypt wxBizMsgCrypt = new WXBizMsgCrypt(wechatParam.getServiceProviderToken(), wechatParam.getServiceProviderAesKey(), corpid);String res = "success";if (StringUtils.isNotEmpty(echostr)) {res = wxBizMsgCrypt.verifyUrl(msg_signature, timestamp.toString(), nonce, echostr);} else if (StringUtils.isNotEmpty(sPostData)) {String obj = wxBizMsgCrypt.decryptMsg(msg_signature, timestamp.toString(), nonce, sPostData);logger.info("*************res:{}", obj);Map<String, String> pojo = XMLParse.parseXml(obj);logger.info("*************pojo:{}", pojo);if (!StringUtils.isEmpty(pojo.get("ChangeType"))) {switch (pojo.get("ChangeType")) {case "create_deparmtment":log.info("************************「部门创建回调」*********************");case "create_student"://家长入库后的idlog.info("************************「学生新增回调」*********************");break;case "delete_student":log.info("************************「学生删除回调」*********************");studentMapper.deleteThirdPartyId(String.valueOf(pojo.get("Id")));break;}}switch (pojo.get("InfoType")){case "suite_ticket":logger.info("*************suite_ticket:{}", pojo.get("SuiteTicket"));accessTokenService.updateAccessToken(pojo.get("SuiteTicket"),null);break;case "reset_permanent_code":logger.info("*************AuthCode:{}", pojo.get("AuthCode"));accessTokenService.updateAccessToken(null,pojo.get("AuthCode"));// 场景2:企业授权成功(首次获取permanent_code/Secret)case "create_auth":String permanentCode = pojo.get("PermanentCode"); // 这就是代开发应用的SecretString authCorpId = pojo.get("AuthCorpId"); // 授权企业的corpidString suiteId = pojo.get("SuiteId"); // 代开发模板的suite_idlogger.info("*************企业授权成功,获取到Secret(permanent_code):{},授权企业corpid:{},suite_id:{}", permanentCode, authCorpId, suiteId);// 保存Secret(建议关联suite_id+authCorpId,因为一个模板可被多个企业授权)break;default:logger.info("*************InfoType:{}", pojo.get("InfoType"));}}logger.info("*************res:{}", res);return res;}
通过刷新ticket回调拿到suite_ticket,在调用下面接口获取suite_access_token
参数:suite_ticket、suite_id:模板ID、suite_secret:模板Secret
curl --location --request POST 'https://qyapi.weixin.qq.com/cgi-bin/service/get_suite_token' \
--header 'User-Agent: Apifox/1.0.0 (https://apifox.com)' \
--header 'Content-Type: application/json' \
--header 'Accept: */*' \
--header 'Host: qyapi.weixin.qq.com' \
--header 'Connection: keep-alive' \
--data-raw '{"suite_ticket": "Cfp0_givEagXcYJIztF6sfbdmIZCmpaR8ZBsvJEFFNBrWmnD5-CGYJ3_NhYexMyw","suite_secret": "ldAE_H9anCRN21GKXVfdAAAAAAAAAAAAAAAAAA","suite_id": "wwddddccc7775555aaa"
}'
通过重置secret回调拿到auth_code,在通过下面这个接口拿到代开发应用secret
curl --location --request POST 'https://qyapi.weixin.qq.com/cgi-bin/service/get_permanent_code?suite_access_token=NdDQzssHb' \
--header 'User-Agent: Apifox/1.0.0 (https://apifox.com)' \
--header 'Content-Type: application/json' \
--header 'Accept: */*' \
--header 'Host: qyapi.weixin.qq.com' \
--header 'Connection: keep-alive' \
--data-raw '{"auth_code":"HjnzBFCNeJDrF"}'