【Vue】纯前端实现微信 H5 鉴权

其他 2020-01-17 10:45:04 阅读次数: 0

最近在做微信网页版开发,整理出微信 H5 鉴权常见坑位,流程图分析如下,后附简易代码实现
H5鉴权流程图

1. 获取code

逻辑实现:通过重定向授权从地址栏拿取 code 并缓存,不可重复调用,不然会报 code used
官方传送门 => 微信开放文档-网页授权

async getAccessToken(redirectUri) {
   const code  = $$.getQueryValue('code', redirectUri) || $$.getStore('code')

   if (code) {
     const $ticketToken = await $$.setStoreAsync('ticketToken', this.getTicketToken)
     $$.setStore('code', code, true).setStoreAsync('token', this.getAuthToken.bind(this, code))

     return Promise.resolve(this.getConfigInfo($ticketToken, redirectUri))
   } else {
     const url = ('https://open.weixin.qq.com/connect/oauth2/authorize?' + $$.serializeParams({
       appid,
       redirect_uri: encodeURIComponent(redirectUri),
       response_type: 'code',
       scope: 'snsapi_userinfo',
       state: '200'
     }) + '#wechat_redirect')

     return redirect(url)
   }
 }

2. 获取 ticketToken

逻辑实现:调用https://api.weixin.qq.com/cgi-bin/token?grant_type=client_credential&appid=APPID&secret=APPSECRET, 获取 access_token 并缓存,实现signature 签名

官方传送门 => 微信开放文档-获取access_token

async getTicketToken() {
  const { access_token } = await get(prefix + '/cgi-bin/token', {
     appid,
     secret,
     grant_type: 'client_credential'
   })

   return Promise.resolve(access_token)
 },
 async getTicket(ticketToken) {
   const { ticket, errcode } = await get(prefix + '/cgi-bin/ticket/getticket', {
     access_token: ticketToken,
     type: 'jsapi'
   })

   return Promise.resolve(ticket)
 }

3. 签名实现

逻辑实现:主要参数,第一步的回调 url ,第二步的 ticket,并生成指定字段,返回配置信息给 wx.config

官方传送门 => JS-SDK使用权限签名算法

async getConfigInfo(ticketToken, redirectUri) {
  const ticket = await $$.setStoreAsync('jsapiTicket', this.getTicket.bind(this, ticketToken))

  const req = {
    noncestr: $$.randomStr(),
    'jsapi_ticket': ticket,
    timestamp: Date.parse(new Date()),
    url: redirectUri
  }
  
  const signature = [$$.objSortByASCII, $$.serializeParams, $$.cryptoBase().sha1].reduce(function(target, callBack) {
    return callBack(target)
  }, Object.assign({}, req))

  return Promise.resolve({
    signature,
    nonceStr: req.noncestr,
    timestamp: req.timestamp,
    appId: appid
  })
}

4. 小结

setStoreAsync 首次请求,调用接口,之后返回缓存信息,采用 store2 进行持久化存储方案

async setStoreAsync(key, callBack) {
  let data = {}
  if (!this.store.get(key)) {
    data = await callBack()
    this.store.set(key, data)
  }

  return Promise.resolve(this.store.get(key))
}

5. 完整代码

以下代码经过封装,仅供参考,如有意向了解更多,欢迎评论分享 : -)


import $$ from '~/utils/' // 常用工具类实现

const prefix = '/api-wx'  // 固定请求头,本地代理实现跨域
const appid  =  ''  
const secret = ''

export default (axios, post, get, store, redirect) => {
  return {
    async getAccessToken(redirectUri) {
      const code  = $$.getQueryValue('code', redirectUri) || $$.getStore('code')

      if (code) {
        const $ticketToken = await $$.setStoreAsync('ticketToken', this.getTicketToken)
        $$.setStore('code', code, true).setStoreAsync('token', this.getAuthToken.bind(this, code))

        return Promise.resolve(this.getConfigInfo($ticketToken, redirectUri))
      } else {
        const url = ('https://open.weixin.qq.com/connect/oauth2/authorize?' + $$.serializeParams({
          appid,
          redirect_uri: encodeURIComponent(redirectUri),
          response_type: 'code',
          scope: 'snsapi_userinfo',
          state: '200'
        }) + '#wechat_redirect')

        return redirect(url)
      }
    },
    async getAuthToken(code) {
      const token = await get(prefix + '/sns/oauth2/access_token', {
        appid,
        secret,
        code,
        grant_type: 'authorization_code'
      })

      return Promise.resolve(token)
    },
    async refreshToken() {
      const token = await get(prefix + '/sns/oauth2/refresh_token', {
        appid,
        grant_type: 'refresh_token',
        refresh_token: $$.getStore('token')['refresh_token']
      })

      return Promise.resolve($$.setStore({ token }))
    },
    async getTicketToken() {
      const { access_token } = await get(prefix + '/cgi-bin/token', {
        appid,
        secret,
        grant_type: 'client_credential'
      })

      return Promise.resolve(access_token)
    },
    async getTicket(ticketToken) {
      const { ticket, errcode } = await get(prefix + '/cgi-bin/ticket/getticket', {
        access_token: ticketToken,
        type: 'jsapi'
      })

      return Promise.resolve(ticket)
    },
    async getConfigInfo(ticketToken, redirectUri) {
      const ticket = await $$.setStoreAsync('jsapiTicket', this.getTicket.bind(this, ticketToken))

      const req = {
        noncestr: $$.randomStr(),
        'jsapi_ticket': ticket,
        timestamp: Date.parse(new Date()),
        url: redirectUri
      }
      
      const signature = [$$.objSortByASCII, $$.serializeParams, $$.cryptoBase().sha1].reduce(function(target, callBack) {
        return callBack(target)
      }, Object.assign({}, req))

      return Promise.resolve({
        signature,
        nonceStr: req.noncestr,
        timestamp: req.timestamp,
        appId: appid
      })
    }
  }
}
Asn.Li
发布了18 篇原创文章 · 获赞 7 · 访问量 1万+
私信 关注

猜你喜欢

转载自blog.csdn.net/qq_41597258/article/details/103975512
今日推荐
面壁智能发布 Eurux-8x22B 开源大模型 —— 堪称「理科状元」
开源日报 | 谷歌扶持鸿蒙上位;开源Rabbit R1;Docker加持的安卓手机;微软的焦虑和野心;海尔电器把开放平台关了
中国码农的“35岁魔咒”
蘭雅 CorelDRAW 插件 2024.5.1 国际劳动节版,免费下载
Arc Browser for Windows 1.0 正式 GA
90后程序员开发视频搬运软件、不到一年获利超 700 万,结局很刑!
周排行
【转】spring中对控制反转和依赖注入的理解
tms webcore 安装和使用
java程序员进阶相关书籍
SpringMVC接受请求参数、
如何保存训练好的机器学习模型
MyEclipse、Eclipse设置项目JDK的三个地方
商超行业微信小程序开发定制一般多少钱 (行业技术人员解读)
Markdown编辑器语言——30分钟入门到到精通
Linux系统下MongoDB的简单安装与基本操作
Power Strings
每日归档
更多
2024-05-07(14)
2024-05-06(40)
2024-05-05(0)
2024-05-04(7)
2024-05-03(19)
2024-05-02(0)
2024-05-01(4)
2024-04-30(1)
2024-04-29(40)
2024-04-28(0)

代码天地 © 2018 codetd.com

境外服务器   最新电视剧2022