0
Fork 0
mirror of https://github.com/logto-io/logto.git synced 2025-01-20 21:32:31 -05:00
logto/packages/connector-alipay/README.md

9.4 KiB
Raw Blame History

Alipay Web

Alipay Web connector is designed for desktop Web applications. It takes advantage of Alipay's OAuth 2.0 authentication workflow and enables Alipay users to sign in to other Apps using public Alipay user profiles without going through a troublesome register process.

支付宝网页链接器是为桌面网页应用设计的。它采用了支付宝的 OAuth 2.0 认证流程,并使支付宝用户可以使用公开的支付宝用户信息登录其他应用,而不需要进行令人困惑的注册过程。

Table of contents

Register Alipay developer account

Register an Alipay developer account if you don't have one.

Create and configure Alipay app

  1. Sign in to the Alipay console with the account you have just registered.
  2. Go to Web & Mobile Apps (网页&移动应用) tab in My Application (我的应用) panel.
  3. Click Create an App (立即创建) button to start configuring your application.
  4. Name your application in Application Name (应用名称) following the naming conventions and upload your Application Icon (应用图标), make sure you choose web application (网页应用) as App type (应用类型).
  5. After finishing creating the application, we come to the Overview page, where we should click add ability (添加能力) to add Third-party application authorization (第三方应用授权), Get member information (获取会员信息) and App Alipay login (App 支付宝登录) before enabling Alipay sign-in.
  6. Go to Alipay Customer Center, and sign in with the Alipay developer account. Click Account Center (账号中心) on the top bar and go to APPID binding (APPID 绑定), whose entrance can be found at the bottom of the sidebar. Add binding (添加绑定) by type in the APPID of the web application you just created in step 4. After finishing this step, you are expected to find abilities you have just added in step 5 kicks in.
  7. Come back to Alipay open platform console page, and you can find Interface signing method (接口加签方式(密钥/证书)) in development information (开发信息) section. Click set up (设置) button, and you can find yourself on a page setting signing method. Public Key (公钥) is the preferred signing mode, and fill in contents from the public key file you have generated in the text input box.
  8. Set up Authorization Redirect URI (授权回调地址) by clicking set up (设置) button on the bottom of the Alipay console page. ${your_logto_origin}/callback/alipay-web is the default redirect URI used in Logto core.
  9. After finishing all these steps, go back to the top right corner of Alipay console page, and click Submit for review (提交审核). Once the review is approved, you are good to go with a smooth Alipay sign-in flow.

Set up the Logto Alipay Web connector settings

  1. In the Alipay console workspace go to My application (我的应用) panel and click Web & Mobile Apps (网页&移动应用) tab, you can find APPID of all applications.
  2. In step 7 of the previous part, you have already generated a key pair including a private key and a public key.
  3. Fill out the Logto connector settings:
    • Fill out the appId field with APPID you've got from step 1.
    • Fill out the privateKey field with contents from the private key file mentioned in step 2. Remember to use '\n' to replace all newlines.
    • Fill out the signType field with 'RSA2' due to the Public key signing mode we chose in step 7 of Create And Configure Alipay Apps.
    • Fill out the charset field with either 'GBK' or 'UTF8'. You can leave this field blank as it is OPTIONAL. The default value is set to be 'UTF8'.

Config types

Name Type Enum values
appId string N/A
privateKey string N/A
signType enum string 'RSA' | 'RSA2'
charset enum string (OPTIONAL) 'GBK' | 'UTF8' | undefined

Test Alipay web connector

That's it. Don't forget to Enable connector in sign-in experience.

Once Alipay web connector is enabled, you can build and run your web app to see if it works.

References

支付宝网页链接器

注册支付宝开发者账号

如果你还没有支付宝开发者账号,参考链接:注册一个支付宝开发者账号

在支付宝开放平台上创建并且配置应用

  1. 使用你所创建的支付宝开发者账号登录 支付宝开放平台控制台
  2. 在「我的应用」中选择「网页&移动应用」标签页。
  3. 点击「立即创建」开始创建并且配置你的应用
  4. 根据平台的命名规则通过「应用名称」字段给你的应用命名;在「应用图标」中上传应用图标;将「应用类型」设定为「网页应用」。
  5. 当应用创建成功后,我们进入到了「概览」页面,接下来我们在「能力列表」中点击「+ 添加能力」将「App 支付宝登录」、「获取会员信息」、「第三方应用授权」添加到能力列表中。
  6. 使用开发者账号登录 支付宝商家中心从顶栏菜单的进入「账号中心」然后选择从左侧的菜单栏底部进入「APPID 绑定」页面。点击「+ 添加绑定」,之后输入你在步骤 4 中所创建的应用的 APPID。 当此步骤完成后,步骤 5 中所添加的各种「能力」即可生效。
  7. 回到「支付宝开放平台控制台」中第 5 步所创建的应用的「概览」页面, 在该页面的「开发信息」中点击「接口加签方式(密钥/证书)」的「设置」链接,将「选择加签模式」设定为「公钥」,然后将你生成的公钥填入下方「填写公钥字符」的文本编辑框中。
  8. 点击「授权回调地址」的「设置链接」,选择你所需要的「回调地址类型」,将 Logto Core 默认使用的 ${your_logto_origin}/callback/alipay-web 设置为「回调地址」。
  9. 当设置完以上的所有步骤,点击「概览」页面上方的「提交审核」,当审核通过后,你将可以顺利地使用支付宝登录自己的网页应用。

设置支付宝网页连接器

  1. 支付宝开放平台控制台 中,点击「我的应用」面板中的「网页&移动应用」,获取应用的 APPID。
  2. 获取你在上一部分的第 7 个步骤中生成的密钥对。
  3. 配置你的应用的支付宝网页连接器:
    • 将你在第 1 步中获取的 APPID 填入 appId 字段。
    • 将你在第 2 步中获得的密钥对的私钥填入 privateKey 字段,使用 '\n' 换行。
    • 将你在第 2 步中所获得的密钥的签名模式 'RSA2' 填入 signType 字段。
    • charset 字段中填入 'GBK' 或 'UTF8' 字符串。这个字段也可以选择不填,此时我们会使用 'UTF8' 的默认值。

配置类型

名称 类型 枚举值
appId string N/A
privateKey string N/A
signType enum string 'RSA' | 'RSA2'
charset enum string (OPTIONAL) 'GBK' | 'UTF8' | undefined

测试支付宝网页连接器

大功告成。别忘了 在登录体验中启用社交登录

在支付宝网页连接器启用后,你可以构建并运行你的网页应用看看是否生效。

参考