src/lib/wxpay/client.ts

import WxPay from 'wechatpay-node-v3';
import crypto from 'crypto';
import { getEnv } from '@/lib/config';
import type { WxpayPcOrderParams, WxpayH5OrderParams, WxpayRefundParams } from './types';

/** 自动补全 PEM 格式（公钥） */
function formatPublicKey(key: string): string {
  if (key.includes('-----BEGIN')) return key;
  return `-----BEGIN PUBLIC KEY-----\n${key}\n-----END PUBLIC KEY-----`;
}

const BASE_URL = 'https://api.mch.weixin.qq.com';

function assertWxpayEnv(env: ReturnType<typeof getEnv>) {
  if (!env.WXPAY_APP_ID || !env.WXPAY_MCH_ID || !env.WXPAY_PRIVATE_KEY || !env.WXPAY_API_V3_KEY) {
    throw new Error(
      'Wxpay environment variables (WXPAY_APP_ID, WXPAY_MCH_ID, WXPAY_PRIVATE_KEY, WXPAY_API_V3_KEY) are required',
    );
  }
  return env as typeof env & {
    WXPAY_APP_ID: string;
    WXPAY_MCH_ID: string;
    WXPAY_PRIVATE_KEY: string;
    WXPAY_API_V3_KEY: string;
  };
}

let payInstance: WxPay | null = null;

function getPayInstance(): WxPay {
  if (payInstance) return payInstance;
  const env = assertWxpayEnv(getEnv());

  const privateKey = Buffer.from(env.WXPAY_PRIVATE_KEY);
  if (!env.WXPAY_PUBLIC_KEY) {
    throw new Error('WXPAY_PUBLIC_KEY is required');
  }
  const publicKey = Buffer.from(formatPublicKey(env.WXPAY_PUBLIC_KEY));

  payInstance = new WxPay({
    appid: env.WXPAY_APP_ID,
    mchid: env.WXPAY_MCH_ID,
    publicKey,
    privateKey,
    key: env.WXPAY_API_V3_KEY,
    serial_no: env.WXPAY_CERT_SERIAL,
  });
  return payInstance;
}

function yuanToFen(yuan: number): number {
  return Math.round(yuan * 100);
}

async function request<T>(method: string, url: string, body?: Record<string, unknown>): Promise<T> {
  const pay = getPayInstance();
  const nonce_str = crypto.randomBytes(16).toString('hex');
  const timestamp = Math.floor(Date.now() / 1000).toString();

  const signature = pay.getSignature(method, nonce_str, timestamp, url, body ? JSON.stringify(body) : '');
  const authorization = pay.getAuthorization(nonce_str, timestamp, signature);

  const headers: Record<string, string> = {
    Authorization: authorization,
    'Content-Type': 'application/json',
    Accept: 'application/json',
    'User-Agent': 'Sub2ApiPay/1.0',
  };

  const res = await fetch(`${BASE_URL}${url}`, {
    method,
    headers,
    body: body ? JSON.stringify(body) : undefined,
    signal: AbortSignal.timeout(10_000),
  });

  if (res.status === 204) return {} as T;

  const data = await res.json();
  if (!res.ok) {
    const code = (data as Record<string, string>).code || res.status;
    const message = (data as Record<string, string>).message || res.statusText;
    throw new Error(`Wxpay API error: [${code}] ${message}`);
  }

  return data as T;
}

/** PC 扫码支付（微信官方 API: /v3/pay/transactions/native） */
export async function createPcOrder(params: WxpayPcOrderParams): Promise<string> {
  const env = assertWxpayEnv(getEnv());
  const result = await request<{ code_url: string }>('POST', '/v3/pay/transactions/native', {
    appid: env.WXPAY_APP_ID,
    mchid: env.WXPAY_MCH_ID,
    description: params.description,
    out_trade_no: params.out_trade_no,
    notify_url: params.notify_url,
    amount: { total: yuanToFen(params.amount), currency: 'CNY' },
  });
  return result.code_url;
}

export async function createH5Order(params: WxpayH5OrderParams): Promise<string> {
  const env = assertWxpayEnv(getEnv());
  const result = await request<{ h5_url: string }>('POST', '/v3/pay/transactions/h5', {
    appid: env.WXPAY_APP_ID,
    mchid: env.WXPAY_MCH_ID,
    description: params.description,
    out_trade_no: params.out_trade_no,
    notify_url: params.notify_url,
    amount: { total: yuanToFen(params.amount), currency: 'CNY' },
    scene_info: {
      payer_client_ip: params.payer_client_ip,
      h5_info: { type: 'Wap' },
    },
  });
  return result.h5_url;
}

export async function queryOrder(outTradeNo: string): Promise<Record<string, unknown>> {
  const env = assertWxpayEnv(getEnv());
  const url = `/v3/pay/transactions/out-trade-no/${outTradeNo}?mchid=${env.WXPAY_MCH_ID}`;
  return request<Record<string, unknown>>('GET', url);
}

export async function closeOrder(outTradeNo: string): Promise<void> {
  const env = assertWxpayEnv(getEnv());
  const url = `/v3/pay/transactions/out-trade-no/${outTradeNo}/close`;
  await request('POST', url, { mchid: env.WXPAY_MCH_ID });
}

export async function createRefund(params: WxpayRefundParams): Promise<Record<string, unknown>> {
  return request<Record<string, unknown>>('POST', '/v3/refund/domestic/refunds', {
    out_trade_no: params.out_trade_no,
    out_refund_no: params.out_refund_no,
    reason: params.reason,
    amount: {
      refund: yuanToFen(params.amount),
      total: yuanToFen(params.total),
      currency: 'CNY',
    },
  });
}

export function decipherNotify<T>(ciphertext: string, associatedData: string, nonce: string): T {
  const env = assertWxpayEnv(getEnv());
  const key = env.WXPAY_API_V3_KEY;
  const ciphertextBuf = Buffer.from(ciphertext, 'base64');
  // AES-GCM 最后 16 字节是 AuthTag
  const authTag = ciphertextBuf.subarray(ciphertextBuf.length - 16);
  const data = ciphertextBuf.subarray(0, ciphertextBuf.length - 16);
  const decipher = crypto.createDecipheriv('aes-256-gcm', key, nonce);
  decipher.setAuthTag(authTag);
  decipher.setAAD(Buffer.from(associatedData));
  const decoded = Buffer.concat([decipher.update(data), decipher.final()]);
  return JSON.parse(decoded.toString('utf-8')) as T;
}

export async function verifyNotifySign(params: {
  timestamp: string;
  nonce: string;
  body: string;
  serial: string;
  signature: string;
}): Promise<boolean> {
  const env = getEnv();
  if (!env.WXPAY_PUBLIC_KEY) {
    throw new Error('WXPAY_PUBLIC_KEY is required for signature verification');
  }

  // 微信支付公钥模式：直接用公钥验签，不拉取平台证书
  const message = `${params.timestamp}\n${params.nonce}\n${params.body}\n`;
  const verify = crypto.createVerify('RSA-SHA256');
  verify.update(message);
  return verify.verify(formatPublicKey(env.WXPAY_PUBLIC_KEY), params.signature, 'base64');
}
-												feat: 集成微信支付直连（Native + H5）及金融级安全修复

- 新增 wxpay provider（wechatpay-node-v3 SDK），支持 Native 扫码和 H5 跳转
- 新增 /api/wxpay/notify 回调路由，AES-256-GCM 解密 + RSA 签名验证
- 修复 confirmPayment count=0 静默成功、充值失败返回 true 等 P0 问题
- 修复 notifyUrl 硬编码 easypay、回调金额覆盖订单金额等 P1 问题
- 手续费计算改用 Prisma.Decimal 精确运算，消除浮点误差
- 支付宝 provider 移除冗余 paramsForVerify，fetch 添加超时
- 补充 .env.example 配置文档和 CLAUDE.md 支付渠道说明

											
										
										
											2026-03-06 13:57:52 +08:00
+								import WxPay from 'wechatpay-node-v3';
-												fix: 微信支付回调验签改用公钥直接验证

wechatpay-node-v3 的 verifySign 会尝试拉取平台证书，
但我们使用的是微信支付公钥模式，不需要平台证书。
改用 crypto.createVerify 直接用公钥做 RSA-SHA256 验签。
同时增加 serial 与 WXPAY_PUBLIC_KEY_ID 的匹配校验。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

											
										
										
											2026-03-06 22:25:58 +08:00
+								import crypto from 'crypto';
-												feat: 集成微信支付直连（Native + H5）及金融级安全修复

- 新增 wxpay provider（wechatpay-node-v3 SDK），支持 Native 扫码和 H5 跳转
- 新增 /api/wxpay/notify 回调路由，AES-256-GCM 解密 + RSA 签名验证
- 修复 confirmPayment count=0 静默成功、充值失败返回 true 等 P0 问题
- 修复 notifyUrl 硬编码 easypay、回调金额覆盖订单金额等 P1 问题
- 手续费计算改用 Prisma.Decimal 精确运算，消除浮点误差
- 支付宝 provider 移除冗余 paramsForVerify，fetch 添加超时
- 补充 .env.example 配置文档和 CLAUDE.md 支付渠道说明

											
										
										
											2026-03-06 13:57:52 +08:00
+								import { getEnv } from '@/lib/config';
-												refactor: 微信支付命名从 Native 改为 PC扫码，统一术语

- WxpayNativeOrderParams → WxpayPcOrderParams
- createNativeOrder → createPcOrder
- 文档注释统一为「PC扫码 / H5」

											
										
										
											2026-03-06 14:31:43 +08:00
+								import type { WxpayPcOrderParams, WxpayH5OrderParams, WxpayRefundParams } from './types';
-												feat: 集成微信支付直连（Native + H5）及金融级安全修复

- 新增 wxpay provider（wechatpay-node-v3 SDK），支持 Native 扫码和 H5 跳转
- 新增 /api/wxpay/notify 回调路由，AES-256-GCM 解密 + RSA 签名验证
- 修复 confirmPayment count=0 静默成功、充值失败返回 true 等 P0 问题
- 修复 notifyUrl 硬编码 easypay、回调金额覆盖订单金额等 P1 问题
- 手续费计算改用 Prisma.Decimal 精确运算，消除浮点误差
- 支付宝 provider 移除冗余 paramsForVerify，fetch 添加超时
- 补充 .env.example 配置文档和 CLAUDE.md 支付渠道说明

											
										
										
											2026-03-06 13:57:52 +08:00
-												fix: 微信支付回调验签 PEM 格式自动补全，Stripe webhook 失败重试

- wxpay client: 添加 formatPublicKey() 自动包裹 PEM 头尾，修复裸 base64 公钥导致的 DECODER routines::unsupported 错误
- stripe webhook: 处理失败时返回 500 让 Stripe 重试
- 修正支付宝测试用例与实际代码对齐

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

											
										
										
											2026-03-07 04:27:38 +08:00
+								/** 自动补全 PEM 格式（公钥） */
 								function formatPublicKey(key: string): string {
 								  if (key.includes('-----BEGIN')) return key;
 								  return `-----BEGIN PUBLIC KEY-----\n${key}\n-----END PUBLIC KEY-----`;
 								}
-												feat: 集成微信支付直连（Native + H5）及金融级安全修复

- 新增 wxpay provider（wechatpay-node-v3 SDK），支持 Native 扫码和 H5 跳转
- 新增 /api/wxpay/notify 回调路由，AES-256-GCM 解密 + RSA 签名验证
- 修复 confirmPayment count=0 静默成功、充值失败返回 true 等 P0 问题
- 修复 notifyUrl 硬编码 easypay、回调金额覆盖订单金额等 P1 问题
- 手续费计算改用 Prisma.Decimal 精确运算，消除浮点误差
- 支付宝 provider 移除冗余 paramsForVerify，fetch 添加超时
- 补充 .env.example 配置文档和 CLAUDE.md 支付渠道说明

											
										
										
											2026-03-06 13:57:52 +08:00
+								const BASE_URL = 'https://api.mch.weixin.qq.com';
 								function assertWxpayEnv(env: ReturnType<typeof getEnv>) {
 								  if (!env.WXPAY_APP_ID || !env.WXPAY_MCH_ID || !env.WXPAY_PRIVATE_KEY || !env.WXPAY_API_V3_KEY) {
 								    throw new Error(
 								      'Wxpay environment variables (WXPAY_APP_ID, WXPAY_MCH_ID, WXPAY_PRIVATE_KEY, WXPAY_API_V3_KEY) are required',
 								    );
 								  }
 								  return env as typeof env & {
 								    WXPAY_APP_ID: string;
 								    WXPAY_MCH_ID: string;
 								    WXPAY_PRIVATE_KEY: string;
 								    WXPAY_API_V3_KEY: string;
 								  };
 								}
 								let payInstance: WxPay | null = null;
 								function getPayInstance(): WxPay {
 								  if (payInstance) return payInstance;
 								  const env = assertWxpayEnv(getEnv());
 								  const privateKey = Buffer.from(env.WXPAY_PRIVATE_KEY);
-												fix: 支付安全审核修复（支付宝+微信）

支付宝:
- 回调增加 app_id 校验，防止跨商户通知
- 回调增加 sign_type 过滤，仅接受 RSA2
- 退款增加 out_request_no 保证幂等
- 金额解析增加精度保护
- timestamp 改用 CST 时区

微信:
- 自行实现 AES-GCM 解密替代库的 decipher_gcm（修复 AuthTag 未验证）
- WXPAY_PUBLIC_KEY_ID 改为必填
- serial 匹配检查改为强制
- 时间戳校验移到签名验证之前
- nonce 改用 crypto.randomBytes
- publicKey 不允许空 Buffer fallback

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

											
										
										
											2026-03-06 22:57:55 +08:00
+								  if (!env.WXPAY_PUBLIC_KEY) {
 								    throw new Error('WXPAY_PUBLIC_KEY is required');
 								  }
-												fix: 微信支付回调验签 PEM 格式自动补全，Stripe webhook 失败重试

- wxpay client: 添加 formatPublicKey() 自动包裹 PEM 头尾，修复裸 base64 公钥导致的 DECODER routines::unsupported 错误
- stripe webhook: 处理失败时返回 500 让 Stripe 重试
- 修正支付宝测试用例与实际代码对齐

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

											
										
										
											2026-03-07 04:27:38 +08:00
+								  const publicKey = Buffer.from(formatPublicKey(env.WXPAY_PUBLIC_KEY));
-												feat: 集成微信支付直连（Native + H5）及金融级安全修复

- 新增 wxpay provider（wechatpay-node-v3 SDK），支持 Native 扫码和 H5 跳转
- 新增 /api/wxpay/notify 回调路由，AES-256-GCM 解密 + RSA 签名验证
- 修复 confirmPayment count=0 静默成功、充值失败返回 true 等 P0 问题
- 修复 notifyUrl 硬编码 easypay、回调金额覆盖订单金额等 P1 问题
- 手续费计算改用 Prisma.Decimal 精确运算，消除浮点误差
- 支付宝 provider 移除冗余 paramsForVerify，fetch 添加超时
- 补充 .env.example 配置文档和 CLAUDE.md 支付渠道说明

											
										
										
											2026-03-06 13:57:52 +08:00
 								  payInstance = new WxPay({
 								    appid: env.WXPAY_APP_ID,
 								    mchid: env.WXPAY_MCH_ID,
 								    publicKey,
 								    privateKey,
 								    key: env.WXPAY_API_V3_KEY,
 								    serial_no: env.WXPAY_CERT_SERIAL,
 								  });
 								  return payInstance;
 								}
 								function yuanToFen(yuan: number): number {
 								  return Math.round(yuan * 100);
 								}
 								async function request<T>(method: string, url: string, body?: Record<string, unknown>): Promise<T> {
 								  const pay = getPayInstance();
-												fix: 支付安全审核修复（支付宝+微信）

支付宝:
- 回调增加 app_id 校验，防止跨商户通知
- 回调增加 sign_type 过滤，仅接受 RSA2
- 退款增加 out_request_no 保证幂等
- 金额解析增加精度保护
- timestamp 改用 CST 时区

微信:
- 自行实现 AES-GCM 解密替代库的 decipher_gcm（修复 AuthTag 未验证）
- WXPAY_PUBLIC_KEY_ID 改为必填
- serial 匹配检查改为强制
- 时间戳校验移到签名验证之前
- nonce 改用 crypto.randomBytes
- publicKey 不允许空 Buffer fallback

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

											
										
										
											2026-03-06 22:57:55 +08:00
+								  const nonce_str = crypto.randomBytes(16).toString('hex');
-												feat: 集成微信支付直连（Native + H5）及金融级安全修复

- 新增 wxpay provider（wechatpay-node-v3 SDK），支持 Native 扫码和 H5 跳转
- 新增 /api/wxpay/notify 回调路由，AES-256-GCM 解密 + RSA 签名验证
- 修复 confirmPayment count=0 静默成功、充值失败返回 true 等 P0 问题
- 修复 notifyUrl 硬编码 easypay、回调金额覆盖订单金额等 P1 问题
- 手续费计算改用 Prisma.Decimal 精确运算，消除浮点误差
- 支付宝 provider 移除冗余 paramsForVerify，fetch 添加超时
- 补充 .env.example 配置文档和 CLAUDE.md 支付渠道说明

											
										
										
											2026-03-06 13:57:52 +08:00
+								  const timestamp = Math.floor(Date.now() / 1000).toString();
 								  const signature = pay.getSignature(method, nonce_str, timestamp, url, body ? JSON.stringify(body) : '');
 								  const authorization = pay.getAuthorization(nonce_str, timestamp, signature);
 								  const headers: Record<string, string> = {
 								    Authorization: authorization,
 								    'Content-Type': 'application/json',
 								    Accept: 'application/json',
 								    'User-Agent': 'Sub2ApiPay/1.0',
 								  };
 								  const res = await fetch(`${BASE_URL}${url}`, {
 								    method,
 								    headers,
 								    body: body ? JSON.stringify(body) : undefined,
 								    signal: AbortSignal.timeout(10_000),
 								  });
 								  if (res.status === 204) return {} as T;
 								  const data = await res.json();
 								  if (!res.ok) {
 								    const code = (data as Record<string, string>).code || res.status;
 								    const message = (data as Record<string, string>).message || res.statusText;
 								    throw new Error(`Wxpay API error: [${code}] ${message}`);
 								  }
 								  return data as T;
 								}
-												refactor: 微信支付命名从 Native 改为 PC扫码，统一术语

- WxpayNativeOrderParams → WxpayPcOrderParams
- createNativeOrder → createPcOrder
- 文档注释统一为「PC扫码 / H5」

											
										
										
											2026-03-06 14:31:43 +08:00
+								/** PC 扫码支付（微信官方 API: /v3/pay/transactions/native） */
 								export async function createPcOrder(params: WxpayPcOrderParams): Promise<string> {
-												feat: 集成微信支付直连（Native + H5）及金融级安全修复

- 新增 wxpay provider（wechatpay-node-v3 SDK），支持 Native 扫码和 H5 跳转
- 新增 /api/wxpay/notify 回调路由，AES-256-GCM 解密 + RSA 签名验证
- 修复 confirmPayment count=0 静默成功、充值失败返回 true 等 P0 问题
- 修复 notifyUrl 硬编码 easypay、回调金额覆盖订单金额等 P1 问题
- 手续费计算改用 Prisma.Decimal 精确运算，消除浮点误差
- 支付宝 provider 移除冗余 paramsForVerify，fetch 添加超时
- 补充 .env.example 配置文档和 CLAUDE.md 支付渠道说明

											
										
										
											2026-03-06 13:57:52 +08:00
+								  const env = assertWxpayEnv(getEnv());
 								  const result = await request<{ code_url: string }>('POST', '/v3/pay/transactions/native', {
 								    appid: env.WXPAY_APP_ID,
 								    mchid: env.WXPAY_MCH_ID,
 								    description: params.description,
 								    out_trade_no: params.out_trade_no,
 								    notify_url: params.notify_url,
 								    amount: { total: yuanToFen(params.amount), currency: 'CNY' },
 								  });
 								  return result.code_url;
 								}
 								export async function createH5Order(params: WxpayH5OrderParams): Promise<string> {
 								  const env = assertWxpayEnv(getEnv());
 								  const result = await request<{ h5_url: string }>('POST', '/v3/pay/transactions/h5', {
 								    appid: env.WXPAY_APP_ID,
 								    mchid: env.WXPAY_MCH_ID,
 								    description: params.description,
 								    out_trade_no: params.out_trade_no,
 								    notify_url: params.notify_url,
 								    amount: { total: yuanToFen(params.amount), currency: 'CNY' },
 								    scene_info: {
 								      payer_client_ip: params.payer_client_ip,
 								      h5_info: { type: 'Wap' },
 								    },
 								  });
 								  return result.h5_url;
 								}
 								export async function queryOrder(outTradeNo: string): Promise<Record<string, unknown>> {
 								  const env = assertWxpayEnv(getEnv());
 								  const url = `/v3/pay/transactions/out-trade-no/${outTradeNo}?mchid=${env.WXPAY_MCH_ID}`;
 								  return request<Record<string, unknown>>('GET', url);
 								}
 								export async function closeOrder(outTradeNo: string): Promise<void> {
 								  const env = assertWxpayEnv(getEnv());
 								  const url = `/v3/pay/transactions/out-trade-no/${outTradeNo}/close`;
 								  await request('POST', url, { mchid: env.WXPAY_MCH_ID });
 								}
 								export async function createRefund(params: WxpayRefundParams): Promise<Record<string, unknown>> {
 								  return request<Record<string, unknown>>('POST', '/v3/refund/domestic/refunds', {
 								    out_trade_no: params.out_trade_no,
 								    out_refund_no: params.out_refund_no,
 								    reason: params.reason,
 								    amount: {
 								      refund: yuanToFen(params.amount),
 								      total: yuanToFen(params.total),
 								      currency: 'CNY',
 								    },
 								  });
 								}
 								export function decipherNotify<T>(ciphertext: string, associatedData: string, nonce: string): T {
-												fix: 支付安全审核修复（支付宝+微信）

支付宝:
- 回调增加 app_id 校验，防止跨商户通知
- 回调增加 sign_type 过滤，仅接受 RSA2
- 退款增加 out_request_no 保证幂等
- 金额解析增加精度保护
- timestamp 改用 CST 时区

微信:
- 自行实现 AES-GCM 解密替代库的 decipher_gcm（修复 AuthTag 未验证）
- WXPAY_PUBLIC_KEY_ID 改为必填
- serial 匹配检查改为强制
- 时间戳校验移到签名验证之前
- nonce 改用 crypto.randomBytes
- publicKey 不允许空 Buffer fallback

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

											
										
										
											2026-03-06 22:57:55 +08:00
+								  const env = assertWxpayEnv(getEnv());
 								  const key = env.WXPAY_API_V3_KEY;
 								  const ciphertextBuf = Buffer.from(ciphertext, 'base64');
 								  // AES-GCM 最后 16 字节是 AuthTag
 								  const authTag = ciphertextBuf.subarray(ciphertextBuf.length - 16);
 								  const data = ciphertextBuf.subarray(0, ciphertextBuf.length - 16);
 								  const decipher = crypto.createDecipheriv('aes-256-gcm', key, nonce);
 								  decipher.setAuthTag(authTag);
 								  decipher.setAAD(Buffer.from(associatedData));
 								  const decoded = Buffer.concat([decipher.update(data), decipher.final()]);
 								  return JSON.parse(decoded.toString('utf-8')) as T;
-												feat: 集成微信支付直连（Native + H5）及金融级安全修复

- 新增 wxpay provider（wechatpay-node-v3 SDK），支持 Native 扫码和 H5 跳转
- 新增 /api/wxpay/notify 回调路由，AES-256-GCM 解密 + RSA 签名验证
- 修复 confirmPayment count=0 静默成功、充值失败返回 true 等 P0 问题
- 修复 notifyUrl 硬编码 easypay、回调金额覆盖订单金额等 P1 问题
- 手续费计算改用 Prisma.Decimal 精确运算，消除浮点误差
- 支付宝 provider 移除冗余 paramsForVerify，fetch 添加超时
- 补充 .env.example 配置文档和 CLAUDE.md 支付渠道说明

											
										
										
											2026-03-06 13:57:52 +08:00
+								}
 								export async function verifyNotifySign(params: {
 								  timestamp: string;
 								  nonce: string;
 								  body: string;
 								  serial: string;
 								  signature: string;
 								}): Promise<boolean> {
-												fix: 微信支付回调验签改用公钥直接验证

wechatpay-node-v3 的 verifySign 会尝试拉取平台证书，
但我们使用的是微信支付公钥模式，不需要平台证书。
改用 crypto.createVerify 直接用公钥做 RSA-SHA256 验签。
同时增加 serial 与 WXPAY_PUBLIC_KEY_ID 的匹配校验。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

											
										
										
											2026-03-06 22:25:58 +08:00
+								  const env = getEnv();
 								  if (!env.WXPAY_PUBLIC_KEY) {
 								    throw new Error('WXPAY_PUBLIC_KEY is required for signature verification');
 								  }
 								  // 微信支付公钥模式：直接用公钥验签，不拉取平台证书
 								  const message = `${params.timestamp}\n${params.nonce}\n${params.body}\n`;
 								  const verify = crypto.createVerify('RSA-SHA256');
 								  verify.update(message);
-												fix: 微信支付回调验签 PEM 格式自动补全，Stripe webhook 失败重试

- wxpay client: 添加 formatPublicKey() 自动包裹 PEM 头尾，修复裸 base64 公钥导致的 DECODER routines::unsupported 错误
- stripe webhook: 处理失败时返回 500 让 Stripe 重试
- 修正支付宝测试用例与实际代码对齐

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

											
										
										
											2026-03-07 04:27:38 +08:00
+								  return verify.verify(formatPublicKey(env.WXPAY_PUBLIC_KEY), params.signature, 'base64');
-												feat: 集成微信支付直连（Native + H5）及金融级安全修复

- 新增 wxpay provider（wechatpay-node-v3 SDK），支持 Native 扫码和 H5 跳转
- 新增 /api/wxpay/notify 回调路由，AES-256-GCM 解密 + RSA 签名验证
- 修复 confirmPayment count=0 静默成功、充值失败返回 true 等 P0 问题
- 修复 notifyUrl 硬编码 easypay、回调金额覆盖订单金额等 P1 问题
- 手续费计算改用 Prisma.Decimal 精确运算，消除浮点误差
- 支付宝 provider 移除冗余 paramsForVerify，fetch 添加超时
- 补充 .env.example 配置文档和 CLAUDE.md 支付渠道说明

											
										
										
											2026-03-06 13:57:52 +08:00
+								}