2026-03-01 03:04:24 +08:00
|
|
|
|
import { getEnv } from '@/lib/config';
|
|
|
|
|
|
import { generateSign } from './sign';
|
|
|
|
|
|
import type { EasyPayCreateResponse, EasyPayQueryResponse, EasyPayRefundResponse } from './types';
|
|
|
|
|
|
|
|
|
|
|
|
export interface CreatePaymentOptions {
|
|
|
|
|
|
outTradeNo: string;
|
|
|
|
|
|
amount: string;
|
2026-03-06 15:33:22 +08:00
|
|
|
|
paymentType: string;
|
2026-03-01 03:04:24 +08:00
|
|
|
|
clientIp: string;
|
|
|
|
|
|
productName: string;
|
2026-03-14 01:07:33 +08:00
|
|
|
|
returnUrl?: string;
|
2026-03-01 03:04:24 +08:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function normalizeCidList(cid?: string): string | undefined {
|
|
|
|
|
|
if (!cid) return undefined;
|
|
|
|
|
|
const normalized = cid
|
|
|
|
|
|
.split(',')
|
|
|
|
|
|
.map((item) => item.trim())
|
|
|
|
|
|
.filter(Boolean)
|
|
|
|
|
|
.join(',');
|
|
|
|
|
|
return normalized || undefined;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2026-03-06 15:33:22 +08:00
|
|
|
|
function resolveCid(paymentType: string): string | undefined {
|
2026-03-01 03:04:24 +08:00
|
|
|
|
const env = getEnv();
|
|
|
|
|
|
if (paymentType === 'alipay') {
|
|
|
|
|
|
return normalizeCidList(env.EASY_PAY_CID_ALIPAY) || normalizeCidList(env.EASY_PAY_CID);
|
|
|
|
|
|
}
|
|
|
|
|
|
return normalizeCidList(env.EASY_PAY_CID_WXPAY) || normalizeCidList(env.EASY_PAY_CID);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2026-03-01 17:58:08 +08:00
|
|
|
|
function assertEasyPayEnv(env: ReturnType<typeof getEnv>) {
|
|
|
|
|
|
if (
|
|
|
|
|
|
!env.EASY_PAY_PID ||
|
|
|
|
|
|
!env.EASY_PAY_PKEY ||
|
|
|
|
|
|
!env.EASY_PAY_API_BASE ||
|
|
|
|
|
|
!env.EASY_PAY_NOTIFY_URL ||
|
|
|
|
|
|
!env.EASY_PAY_RETURN_URL
|
|
|
|
|
|
) {
|
|
|
|
|
|
throw new Error(
|
|
|
|
|
|
'EasyPay environment variables (EASY_PAY_PID, EASY_PAY_PKEY, EASY_PAY_API_BASE, EASY_PAY_NOTIFY_URL, EASY_PAY_RETURN_URL) are required',
|
|
|
|
|
|
);
|
|
|
|
|
|
}
|
|
|
|
|
|
return env as typeof env & {
|
|
|
|
|
|
EASY_PAY_PID: string;
|
|
|
|
|
|
EASY_PAY_PKEY: string;
|
|
|
|
|
|
EASY_PAY_API_BASE: string;
|
|
|
|
|
|
EASY_PAY_NOTIFY_URL: string;
|
|
|
|
|
|
EASY_PAY_RETURN_URL: string;
|
|
|
|
|
|
};
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2026-03-01 03:04:24 +08:00
|
|
|
|
export async function createPayment(opts: CreatePaymentOptions): Promise<EasyPayCreateResponse> {
|
2026-03-01 17:58:08 +08:00
|
|
|
|
const env = assertEasyPayEnv(getEnv());
|
2026-03-01 03:04:24 +08:00
|
|
|
|
const params: Record<string, string> = {
|
|
|
|
|
|
pid: env.EASY_PAY_PID,
|
|
|
|
|
|
type: opts.paymentType,
|
|
|
|
|
|
out_trade_no: opts.outTradeNo,
|
|
|
|
|
|
notify_url: env.EASY_PAY_NOTIFY_URL,
|
2026-03-14 01:07:33 +08:00
|
|
|
|
return_url: opts.returnUrl || env.EASY_PAY_RETURN_URL,
|
2026-03-01 03:04:24 +08:00
|
|
|
|
name: opts.productName,
|
|
|
|
|
|
money: opts.amount,
|
|
|
|
|
|
clientip: opts.clientIp,
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
const cid = resolveCid(opts.paymentType);
|
|
|
|
|
|
if (cid) {
|
|
|
|
|
|
params.cid = cid;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
const sign = generateSign(params, env.EASY_PAY_PKEY);
|
|
|
|
|
|
params.sign = sign;
|
|
|
|
|
|
params.sign_type = 'MD5';
|
|
|
|
|
|
|
|
|
|
|
|
const formData = new URLSearchParams(params);
|
|
|
|
|
|
const response = await fetch(`${env.EASY_PAY_API_BASE}/mapi.php`, {
|
|
|
|
|
|
method: 'POST',
|
|
|
|
|
|
body: formData,
|
|
|
|
|
|
headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
|
2026-03-07 04:15:48 +08:00
|
|
|
|
signal: AbortSignal.timeout(10_000),
|
2026-03-01 03:04:24 +08:00
|
|
|
|
});
|
|
|
|
|
|
|
2026-03-01 17:58:08 +08:00
|
|
|
|
const data = (await response.json()) as EasyPayCreateResponse;
|
2026-03-01 03:04:24 +08:00
|
|
|
|
if (data.code !== 1) {
|
|
|
|
|
|
throw new Error(`EasyPay create payment failed: ${data.msg || 'unknown error'}`);
|
|
|
|
|
|
}
|
|
|
|
|
|
return data;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
export async function queryOrder(outTradeNo: string): Promise<EasyPayQueryResponse> {
|
2026-03-01 17:58:08 +08:00
|
|
|
|
const env = assertEasyPayEnv(getEnv());
|
2026-03-14 04:36:33 +08:00
|
|
|
|
// 使用 POST 避免密钥暴露在 URL 中(URL 会被记录到服务器/CDN 日志)
|
|
|
|
|
|
const params = new URLSearchParams({
|
|
|
|
|
|
act: 'order',
|
|
|
|
|
|
pid: env.EASY_PAY_PID,
|
|
|
|
|
|
key: env.EASY_PAY_PKEY,
|
|
|
|
|
|
out_trade_no: outTradeNo,
|
|
|
|
|
|
});
|
|
|
|
|
|
const response = await fetch(`${env.EASY_PAY_API_BASE}/api.php`, {
|
|
|
|
|
|
method: 'POST',
|
|
|
|
|
|
body: params,
|
|
|
|
|
|
headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
|
2026-03-07 04:15:48 +08:00
|
|
|
|
signal: AbortSignal.timeout(10_000),
|
|
|
|
|
|
});
|
2026-03-01 17:58:08 +08:00
|
|
|
|
const data = (await response.json()) as EasyPayQueryResponse;
|
2026-03-01 03:04:24 +08:00
|
|
|
|
if (data.code !== 1) {
|
|
|
|
|
|
throw new Error(`EasyPay query order failed: ${data.msg || 'unknown error'}`);
|
|
|
|
|
|
}
|
|
|
|
|
|
return data;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
export async function refund(tradeNo: string, outTradeNo: string, money: string): Promise<EasyPayRefundResponse> {
|
2026-03-01 17:58:08 +08:00
|
|
|
|
const env = assertEasyPayEnv(getEnv());
|
2026-03-01 03:04:24 +08:00
|
|
|
|
const params = new URLSearchParams({
|
|
|
|
|
|
pid: env.EASY_PAY_PID,
|
|
|
|
|
|
key: env.EASY_PAY_PKEY,
|
|
|
|
|
|
trade_no: tradeNo,
|
|
|
|
|
|
out_trade_no: outTradeNo,
|
|
|
|
|
|
money,
|
|
|
|
|
|
});
|
|
|
|
|
|
const response = await fetch(`${env.EASY_PAY_API_BASE}/api.php?act=refund`, {
|
|
|
|
|
|
method: 'POST',
|
|
|
|
|
|
body: params,
|
|
|
|
|
|
headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
|
2026-03-07 04:15:48 +08:00
|
|
|
|
signal: AbortSignal.timeout(10_000),
|
2026-03-01 03:04:24 +08:00
|
|
|
|
});
|
2026-03-01 17:58:08 +08:00
|
|
|
|
const data = (await response.json()) as EasyPayRefundResponse;
|
2026-03-01 03:04:24 +08:00
|
|
|
|
if (data.code !== 1) {
|
|
|
|
|
|
throw new Error(`EasyPay refund failed: ${data.msg || 'unknown error'}`);
|
|
|
|
|
|
}
|
|
|
|
|
|
return data;
|
|
|
|
|
|
}
|
