0
Fork 0
mirror of https://github.com/logto-io/logto.git synced 2024-12-30 20:33:54 -05:00
logto/packages/connectors/connector-alipay-native/README.md

268 lines
15 KiB
Markdown
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# Alipay Native
The official Logto connector for Alipay social sign-in in mobile-device native apps.
支付宝原生应用社交登录官方 Logto 连接器 [中文文档](#支付宝原生连接器)
**Table of contents**
- [Alipay Native](#alipay-native)
- [Get started](#get-started)
- [Register Alipay developer account](#register-alipay-developer-account)
- [Create and configure Alipay app](#create-and-configure-alipay-app)
- [Set up the Logto Alipay Native connector settings](#set-up-the-logto-alipay-native-connector-settings)
- [Config types](#config-types)
- [Enable Alipay native sign-in in your app](#enable-alipay-native-sign-in-in-your-app)
- [iOS](#ios)
- [Android](#android)
- [Test Alipay native connector](#test-alipay-native-connector)
- [References](#references)
- [支付宝原生连接器](#支付宝原生连接器)
- [开始上手](#开始上手)
- [注册支付宝开发者账号](#注册支付宝开发者账号)
- [在支付宝开放平台上创建并且配置应用](#在支付宝开放平台上创建并且配置应用)
- [设置支付宝原生连接器](#设置支付宝原生连接器)
- [配置类型](#配置类型)
- [在你的应用中启用支付宝原生登录](#在你的应用中启用支付宝原生登录)
- [iOS](#ios-1)
- [Android](#android-1)
- [测试支付宝原生连接器](#测试支付宝原生连接器)
- [参考](#参考)
## Get started
Alipay Native connector works closely with Logto SDK on mobile platforms. It takes advantage of Alipay's OAuth 2.0 authentication workflow and enables Alipay users to sign in to other Apps using public Alipay user profiles without going through a troublesome register process.
## Register Alipay developer account
[Register an Alipay developer account](https://certifyweb.alipay.com/certify/reg/guide#/) if you don't have one.
## Create and configure Alipay app
1. Sign in to the [Alipay console](https://open.alipay.com/) with the account you have just registered.
2. Go to "Web & Mobile Apps" (网页&移动应用) tab in "My Application" (我的应用) panel.
3. Click "Create an App" (立即创建) button to start configuring your application.
4. Name your application in "Application Name" (应用名称) following the naming conventions and upload your "Application Icon" (应用图标), make sure you choose "mobile application" (移动应用) as "App type" (应用类型). For building iOS App, a unique "Bundle ID" is required. Also, "application signature" (应用签名) and "application package name" (应用包名) are required for Android apps.
5. After finishing creating the application, we come to the Overview page, where we should click "add ability" (添加能力) to add "Third-party application authorization" (第三方应用授权), "Get member information" (获取会员信息) and "App Alipay login" (App 支付宝登录) before enabling Alipay sign-in.
6. Go to [Alipay Customer Center](https://b.alipay.com/index2.htm), and sign in with the Alipay developer account. Click "Account Center" (账号中心) on the topbar and go to "APPID binding" (APPID 绑定), whose entrance can be found at the bottom of the sidebar. "Add binding" (添加绑定) by type in the APPID of the mobile application you just created in step 4.
7. Click on "Sign" button of "App Alipay login", and finish signing process following the guide. After finishing this step, you are expected to find abilities you have just added in step 5 kicks in.
8. Come back to Alipay open platform console page, and you can find "Interface signing method" (接口加签方式(密钥/证书)) in "development information" (开发信息) section. Click "set up" (设置) button, and you can find yourself on a page setting signing method. "Public Key" (公钥) is the preferred signing mode, and fill in contents from the public key file you have generated in the text input box.
9. Set up "Authorization Redirect URI" (授权回调地址) by clicking "set up" (设置) button on the bottom of the Alipay console page. `${your_logto_origin}/callback/${connector_id}` is the default redirect URI used in Logto core. The `connector_id` can be found on the top bar of the Logto Admin Console connector details page.
10. After finishing all these steps, go back to the top right corner of Alipay console page, and click "Submit for review" (提交审核). Once the review is approved, you are good to go with a smooth Alipay sign-in flow.
> **Note**
>
> You can use _openssl_ to generate key pairs on your local machine by executing following code snippet in terminal.
>
> ```bash
> openssl genrsa -out private.pem 2048
> openssl rsa -in private.pem -outform PEM -pubout -out public.pem
> ```
>
> When filling in the public key on the Alipay app setup website, you need to remove the header and footer of `public.pem`, delete all newline characters, and paste the rest of the contents into the text input box for "public key".
## Set up the Logto Alipay Native connector settings
1. In [the Alipay console workspace](https://open.alipay.com/dev/workspace) go to "My application" (我的应用) panel and click "Web & Mobile Apps" (网页&移动应用) tab, you can find APPID of all applications.
2. In step 7 of the previous part, you have already generated a key pair including a private key and a public key.
3. Fill out the Logto connector settings:
- Fill out the `appId` field with APPID you've got from step 1.
- Fill out the `privateKey` field with contents from the private key file mentioned in step 2. Please MAKE SURE to use '\n' to replace all newline characters. You don't need to remove header and footer in private key file.
- Fill out the `signType` filed with 'RSA2' due to the `Public key` signing mode we chose in step 7 of "Create And Configure Alipay Apps".
### Config types
| Name | Type | Enum values |
|------------|-------------|-----------------|
| appId | string | N/A |
| privateKey | string | N/A |
| signType | enum string | 'RSA' \| 'RSA2' |
## Enable Alipay native sign-in in your app
### iOS
We assume you have integrated [Logto iOS SDK](https://docs.logto.io/docs/recipes/integrate-logto/ios) in your app. In this case, things are pretty simple, and you don't even need to read the Alipay SDK doc:
**1. Add `LogtoSocialPluginAlipay` to your Xcode project**
Add the framework:
![Add framework](/packages/connectors/connector-alipay-native/docs/add-framework.png)
> **Note**
>
> The plugin includes Alipay "minimalist SDK" (极简版 SDK). You can directly use `import AFServiceSDK` once imported the plugin.
**2. Add the plugin to your `LogtoClient` init options**
```swift
let logtoClient = LogtoClient(
useConfig: config,
socialPlugins: [LogtoSocialPluginAlipay(callbackScheme: "your-scheme")]
)
```
Where `callbackScheme` is one of the [custom URL Schemes](https://developer.apple.com/documentation/xcode/defining-a-custom-url-scheme-for-your-app) that can navigate to your app.
### Android
We assume you have integrated [Logto Android SDK](https://docs.logto.io/docs/recipes/integrate-logto/android) in your app. In this case, things are pretty simple, and you don't even need to read the Alipay SDK doc:
**1. Download the Alipay "minimalist SDK" and add it to your project**
Download the Alipay "minimalist SDK" (极简版 SDK) from [Logto 3rd-party Social SDKs](https://github.com/logto-io/social-sdks/blob/master/alipay/android/alipaySdk-15.7.9-20200727142846.aar) to your project's `app/libs` folder:
```bash
project-path/app/libs/alipaySdk-15.7.9-20200727142846.aar
```
**2. Add the Alipay "minimalist SDK" as a dependency**
Open your `build.gradle` file:
```bash
project-path/app/build.gradle
```
Add the dependency:
```kotlin
dependencies {
// ...
implementation(files("./libs/alipaySdk-15.7.9-20200727142846.aar")) // kotlin-script
// or
implementation files('./libs/alipaySdk-15.7.9-20200727142846.aar') // groovy-script
}
```
### Test Alipay native connector
That's it. Don't forget to [Enable connector in sign-in experience](https://docs.logto.io/docs/tutorials/get-started/passwordless-sign-in-by-adding-connectors#enable-social-sign-in).
Once Alipay native connector is enabled, you can build and run your app to see if it works.
## References
- [Alipay Docs - Access Preparation - How to create an app](https://opendocs.alipay.com/support/01rau6)
- [Alipay Docs - Web & Mobile Apps - Create an app](https://opendocs.alipay.com/open/200/105310)
# 支付宝原生连接器
## 开始上手
支付宝原生连接器与 Logto 所提供的原生平台上的 SDK 紧密搭配使用。它利用支付宝所提供的 OAuth 2.0 身份认证服务,使支付宝用户无需繁琐的注册流程,即可直接用其在支付宝上公开的身份信息登录其他应用。
## 注册支付宝开发者账号
如果你还没有支付宝开发者账号,参考链接:[注册一个支付宝开发者账号](https://certifyweb.alipay.com/certify/reg/guide#/)
## 在支付宝开放平台上创建并且配置应用
1. 使用你所创建的支付宝开发者账号登录[支付宝开放平台控制台](https://open.alipay.com/)。
2. 在「我的应用」中选择「网页&移动应用」标签页。
3. 点击「立即创建」开始创建并且配置你的应用
4. 根据平台的命名规则通过「应用名称」字段给你的应用命名;在「应用图标」中上传应用图标;将「应用类型」设定为「移动应用」。当要创建一个 iOS 应用时, 需要提供「Bundle ID」。当创建的是 Android 应用时,则需要提供「应用签名」和「应用名」。
5. 当应用创建成功后,我们进入到了「概览」页面,接下来我们在「能力列表」中点击「+ 添加能力」将「App 支付宝登录」、「获取会员信息」、「第三方应用授权」添加到能力列表中。
6. 使用开发者账号登录[支付宝商家中心](https://b.alipay.com/index2.htm)后从顶栏菜单的进入「账号中心」然后选择从左侧的菜单栏底部进入「APPID 绑定」页面。点击「+ 添加绑定」,之后输入你在步骤 4 中所创建的应用的 APPID。
7. 点按「App 支付宝登录」旁边「签约」按钮,并按照提示完成签约。当此步骤完成后,步骤 5 中所添加的各种「能力」即可生效。
8. 回到「支付宝开放平台控制台」中第 5 步所创建的应用的「概览」页面, 在该页面的「开发信息」中点击「接口加签方式(密钥/证书)」的「设置」链接,将「选择加签模式」设定为「公钥」,然后将你生成的公钥填入下方「填写公钥字符」的文本编辑框中。
9. 点击「授权回调地址」的「设置链接」,选择你所需要的「回调地址类型」,将 Logto Core 默认使用的 `${your_logto_origin}/callback/${connector_id}` 设置为「回调地址」。`connector_id` 在管理控制台相应连接器的详情页的顶栏中可以找到。
10. 当设置完以上的所有步骤,点击「概览」页面上方的「提交审核」,当审核通过后,你将可以顺利地使用支付宝登录自己的应用。
> **注意**
>
> 你可以用 _openssl_ 来在本地机器上,用下面这一段代码在终端里生成一个密钥对。
>
> ```bash
> openssl genrsa -out private.pem 2048
> openssl rsa -in private.pem -outform PEM -pubout -out public.pem
> ```
>
> 在支付宝应用设置网页上填写公钥时,需要把生成的 `public.pem` 文件中内容的文件头和文件尾去掉,同时删除所有的换行符,再把剩下的内容粘贴到填写公钥的文本框中。
## 设置支付宝原生连接器
1. 在[支付宝开放平台控制台](https://open.alipay.com/dev/workspace)中,点击「我的应用」面板中的「网页&移动应用」,获取应用的 APPID。
2. 获取你在上一部分的第 7 个步骤中生成的密钥对。
3. 配置你的应用的支付宝原生连接器:
- 将你在第 1 步中获取的 APPID 填入 `appId` 字段。
- 将你在第 2 步中获得的密钥对的私钥填入 `privateKey` 字段。请保留私钥文件内容中的文件头和文件尾,并 **确保** 使用 '\n' 替换了所有换行符。
- 将你在第 2 步中所获得的密钥的签名模式 'RSA2' 填入 `signType` 字段。
### 配置类型
| 名称 | 类型 | 枚举值 |
|------------|-------------|-----------------|
| appId | string | N/A |
| privateKey | string | N/A |
| signType | enum string | 'RSA' \| 'RSA2' |
## 在你的应用中启用支付宝原生登录
### iOS
我们假设你已经在你的应用中集成了 [Logto iOS SDK](https://docs.logto.io/docs/recipes/integrate-logto/ios)。之后的流程很简单,你甚至不需要阅读支付宝 SDK 文档:
**1. 添加 `LogtoSocialPluginAlipay` 到你的 Xcode 工程**
添加 framework
![Add framework](/packages/connectors/connector-alipay-native/docs/add-framework.png)
> **Note**
>
> 该插件已包含支付宝极简 SDK。在引入插件后你可以直接使用 `import AFServiceSDK`。
**2. 将插件添加至 `LogtoClient` 的初始化项**
```swift
let logtoClient = LogtoClient(
useConfig: config,
socialPlugins: [LogtoSocialPluginAlipay(callbackScheme: "your-scheme")]
)
```
其中 `callbackScheme` 是 [custom URL Schemes](https://developer.apple.com/documentation/xcode/defining-a-custom-url-scheme-for-your-app) 中之一,它将被用来在登录成功后跳转回应用。
### Android
我们假设你已经在你的应用中集成了 [Logto Android SDK](https://docs.logto.io/docs/recipes/integrate-logto/android)。之后的流程很简单,你甚至不需要阅读支付宝 SDK 文档:
**1. 下载支付宝极简版 SDK 到你的项目中**
从 [Logto 3rd-party Social SDKs](https://github.com/logto-io/social-sdks/blob/master/alipay/android/alipaySdk-15.7.9-20200727142846.aar) 下载支付宝极简版 SDK 到项目的 `app/libs` 目录下:
```bash
project-path/app/libs/alipaySdk-15.7.9-20200727142846.aar
```
**2. 添加支付宝极简版 SDK 为项目依赖项**
打开 `build.gradle` 文件:
```bash
project-path/app/build.gradle
```
添加依赖:
```kotlin
dependencies {
// ...
implementation(files("./libs/alipaySdk-15.7.9-20200727142846.aar")) // kotlin-script
// or
implementation files('./libs/alipaySdk-15.7.9-20200727142846.aar') // groovy-script
}
```
## 测试支付宝原生连接器
大功告成。别忘了 [在登录体验中启用社交登录](https://docs.logto.io/docs/tutorials/get-started/passwordless-sign-in-by-adding-connectors#enable-social-sign-in)。
在支付宝原生连接器启用后,你可以构建并运行你的应用看看是否生效。
## 参考
- [支付宝文档中心 - 接入准备 - 如何创建应用](https://opendocs.alipay.com/support/01rau6)
- [支付宝文档中心 - 网页&移动应用 - 创建应用](https://opendocs.alipay.com/open/200/105310)