WPKJ Alipay Gateway for FluentCart
| 开发者 | cmhello |
|---|---|
| 更新时间 | 2025年11月13日 17:18 |
| 捐献地址: | 去捐款 |
| PHP版本: | 8.2 及以上 |
| WordPress版本: | 6.8 |
| 版权: | GPLv2 or later |
| 版权网址: | 版权信息 |
详情介绍:
WPKJ Alipay Gateway for FluentCart is a feature-rich, enterprise-grade payment gateway that seamlessly integrates Alipay with FluentCart. It intelligently detects user environments and automatically selects the optimal payment interface for the best user experience.
Key Features
- Multi-Platform Payment Support
- PC Web Payment for desktop browsers
- Mobile WAP Payment for mobile browsers
- Face-to-Face Payment with QR codes
- Alipay App Payment for native experience [Not yet completed]
- Advanced Subscription Management
- Automatic Renewal via Alipay Recurring Agreement
- Manual Renewal fallback mode
- Trial period support (0-365 days)
- Flexible billing intervals (daily, weekly, monthly, yearly)
- Limited and unlimited billing cycles
- Subscription cancellation sync with orders
- Comprehensive Refund System
- Automatic refunds when orders are cancelled
- Manual refund processing from admin
- Full and partial refund support
- Detailed activity logging
- Enterprise Security
- RSA2 2048-bit encryption
- Signature verification for all requests
- HTTPS/SSL required for production
- Webhook validation
- Amount verification
- International & Multi-Currency
- 14+ currencies supported
- Full internationalization (i18n) ready
- Translation template (POT) included
- Built-in Chinese & English translations
- FluentCart 1.2.0 or higher
- WordPress 6.5 or higher
- PHP 8.2 or higher
- SSL Certificate (HTTPS) for production
- Alipay merchant account
- Clean PSR-4 autoloading architecture
- Comprehensive hooks and filters
- Debug logging support
- Sandbox/Test mode
- Extensive documentation
安装:
Automatic Installation
- Log in to your WordPress admin panel
- Navigate to Plugins > Add New
- Search for "WPKJ Alipay Gateway for FluentCart"
- Click "Install Now" and then "Activate"
- Go to FluentCart > Settings > Payment Methods
- Configure your Alipay credentials
- Download the plugin ZIP file
- Upload to
/wp-content/plugins/wpkj-fluentcart-alipay-payment/ - Activate through the 'Plugins' menu in WordPress
- Navigate to FluentCart > Settings > Payment Methods
- Configure Alipay gateway settings
- Enable the payment method
- Obtain Credentials from Alipay:
- Register at Alipay Open Platform
- Create a new application
- Generate RSA2 key pair
- Upload public key to Alipay
- Get your 16-digit App ID
- Copy Alipay's public key
- Configure Plugin Settings:
- Enter App ID, Private Key, and Alipay Public Key
- Configure Notify URL in Alipay dashboard
- Enable auto-refund (optional)
- Enable Face-to-Face payment (optional)
- For subscriptions: Enter Personal Product Code
- Test Your Setup:
- Use sandbox mode for testing
- Make a test purchase
- Verify webhook notifications
- Test refund functionality
屏幕截图:
常见问题:
Where do I get Alipay credentials?
Register for a merchant account at Alipay Open Platform. After creating an application, you'll receive an App ID and can generate RSA key pairs for secure communication.
Does this plugin support subscription payments?
Yes! The plugin fully supports FluentCart subscriptions with two modes:
- Automatic Renewal (Recommended) - Requires Alipay recurring payment service
- Manual Renewal - Fallback mode, works for all merchants
Can I test before going live?
Absolutely! Use Alipay's sandbox environment for testing. Configure test credentials in the plugin settings and make test transactions before enabling live mode.
What currencies are supported?
The plugin supports 14+ currencies including CNY, USD, EUR, GBP, HKD, JPY, KRW, SGD, AUD, CAD, CHF, NZD, THB, and MYR.
How do refunds work?
Refunds can be processed in two ways:
- Automatic - Enable auto-refund, and cancelling orders triggers instant refunds
- Manual - Process refunds from FluentCart admin panel Both full and partial refunds are supported.
Is the plugin translation ready?
Yes, the plugin is fully internationalized with a POT file included. Chinese and English translations are built-in. You can translate to any language using tools like Poedit.
What happens if webhook notifications fail?
The plugin includes a payment status checker that polls Alipay for payment confirmation if webhooks fail. This ensures reliable payment processing even with network issues.
Can I customize the payment flow?
Yes! The plugin provides numerous hooks and filters for customization:
- Modify payment parameters
- Custom notify/return URLs
- Custom payment subject lines
- Integration with your custom workflows
Does it work on mobile devices?
Yes! The plugin automatically detects mobile devices and uses Alipay's mobile WAP payment interface for the best mobile experience.
What about Face-to-Face payments?
Enable QR code payments in settings. Customers can scan QR codes with their Alipay app for offline/in-store payments.
更新日志:
1.0.9
Release Date: November 12, 2025
- Security: Renamed nonce field to
wpkj_alipay_f2f_nonceto prevent conflicts with other plugins - Security: Updated nonce action name to
wpkj_alipay_f2f_check_payment_status_noncefor better uniqueness - Security: Removed external QR code generation via api.qrserver.com - now uses local QRCode.js library only
- Security: Renamed POST field from generic
noncetowpkj_alipay_f2f_noncein Face-to-Face payment AJAX handler - Security: Added phpcs annotations for webhook nonce verification exceptions (Alipay server requests don't require WordPress nonce)
- Security: Changed wp_redirect() to wp_safe_redirect() in FaceToFacePageHandler to prevent malicious redirects
- Improvement: Optimized POST data processing in webhook handler - now only extracts required fields
- Improvement: Refined Alipay notification field handling for better security and reduced data exposure
- Improvement: Removed unused webhook fields (send_pay_date, gmt_create) - only processes necessary fields
- Improvement: Updated NotifyHandler to only handle essential Alipay notification fields
- Fixed: Corrected required fields list in webhook notification processing
- Fixed: Logger::debug() method call replaced with Logger::info() in OrderCancelListener and TransactionHelper
- Fixed: Plugin directory name updated to wpkj-alipay-gateway-for-fluentcart to match WordPress.org slug
- Refactoring: PaymentStatusChecker nonce verification now uses unique field and action names
- Refactoring: FaceToFacePageHandler nonce generation updated to match new naming convention
- Refactoring: JavaScript Face-to-Face payment handler uses new nonce field name
- Compliance: All changes comply with WordPress.org plugin directory standards and security guidelines
- Note: Nonce field renamed in multiple files: PaymentStatusChecker.php, FaceToFacePageHandler.php, face-to-face-payment.js
- Note: NotifyHandler.php updated with proper phpcs annotations for webhook data handling
- Note: No functional impact - only security and naming improvements
- New: Added Custom Payment API for external system integration
- New: REST API endpoints for programmatically creating payment orders
- New: Support for one-time and subscription payments via API
- New: Payment status query API endpoint
- New: Comprehensive API documentation with usage examples
- Enhancement: Customizable permission checks for API access
- Enhancement: Detailed logging for custom payment operations
- Documentation: Added CUSTOM_PAYMENT_USAGE.md with complete API guide
- Documentation: All documentation moved to docs/ directory for better organization
- Documentation: README.md retained in root for GitHub, readme.txt for WordPress.org
- Security: All exception messages properly escaped with phpcs annotations
- Security: Example code properly annotated for demonstration purposes
- Fixed: Critical issue where next_billing_date was not set for initial subscription payments
- Fixed: Subscription renewal not triggering due to missing next billing date
- Fixed: Next billing date not set after recurring agreement sign success
- Fixed: Critical issue where bill_count was not properly calculated for subscriptions
- Fixed: Initial subscription payment showing bill_count as 0 instead of 1
- Fixed: Manual bill_count increment replaced with FluentCart's automatic calculation
- Fixed: Auto-cancel subscription feature not working - was using wrong field to find subscription
- Fixed: OrderCancelListener now correctly uses Subscription->parent_order_id instead of Order->subscription_id
- Security: Enhanced duplicate refund prevention mechanism in automatic refund feature
- Security: Now checks ALL existing refunds instead of just first one to prevent duplicates
- Security: Added comprehensive logging for refund duplicate prevention
- Security: Validates original transaction UUID match before blocking duplicate refunds
- Refactoring: Migrated to FluentCart standard Refund service for all refund operations
- Refactoring: Simplified AlipayGateway processRefund() method to only handle API calls (~80% code reduction)
- Refactoring: Simplified RefundProcessor to use FluentCart's transaction/order management (~60% code reduction)
- Refactoring: Created centralized SubscriptionService class eliminating ~240 lines of duplicate code
- Refactoring: NotifyHandler and PaymentStatusChecker now use shared subscription service
- Refactoring: Architecture now consistent with WeChat payment plugin
- Improved: FluentCart now handles all transaction creation, order updates, and event triggering
- Improved: Better separation of concerns - Gateway handles payment API, FluentCart handles business logic
- Improved: Added source tracking (webhook/polling) for better debugging
- Improved: Code maintainability with DRY principle - single source of truth for subscription and refund logic
- Improved: Initial subscription payment now properly sets next_billing_date using FluentCart's guessNextBillingDate()
- Improved: Now using SubscriptionService::syncSubscriptionStates() to auto-calculate bill_count from database
- Improved: Proper EOT (End of Term) detection based on actual transaction count
- Improved: Enhanced logging for subscription billing date and bill_count updates
- Improved: Better handling of trial periods in next billing date calculation
- Improved: Order cancellation flow now properly identifies and cancels associated subscriptions
- Improved: Automatic refund now includes detailed security check logs
- Note: This fix ensures FluentCart's cron system can properly schedule subscription renewals
- Note: bill_count is now automatically calculated by querying OrderTransaction records
- Note: Total code reduced by ~35 lines, duplicate code eliminated completely
- Note: In FluentCart, subscriptions are linked via Subscription->parent_order_id, not Order->subscription_id
- Note: Duplicate refund prevention protects against concurrent order cancellation operations
- Added: TransactionHelper utility class for idempotency protection
- Added: Automatic retry mechanism for failed subscription renewals
- Added: WordPress Cron-based renewal retry scheduling
- Added: Comprehensive error handling and logging for renewals
- Improved: Subscription renewal process with FluentCart standard methods
- Improved: Exception message security with esc_html() escaping
- Improved: Timezone safety using gmdate() instead of date()
- Fixed: WordPress coding standards compliance
- Fixed: Translator comments for all placeholder strings
- Security: Enhanced XSS protection for all output
- Performance: Optimized transaction lookup and duplicate detection
- Added: Translator comments for all placeholder strings
- Added: Comprehensive POT translation template
- Improved: Subscription cancellation sync with order cancellation
- Improved: UTF-8 encoding handling for Chinese characters
- Improved: Face-to-Face payment amount formatting
- Fixed: Order number display in payment subject
- Fixed: Multiple placeholder string ordering for proper translation
- Updated: Documentation with detailed configuration guide
- Performance: Optimized webhook processing
- Added: Automatic subscription cancellation when parent order is cancelled
- Added: Configurable subscription cancellation behavior
- Improved: Recurring agreement handling
- Improved: Error messages and logging
- Fixed: Subscription status synchronization issues
- Added: Face-to-Face QR code payment support
- Added: Enhanced mobile device detection
- Fixed: UTF-8 encoding issues with Chinese characters
- Fixed: Subject line truncation for long product names
- Improved: Payment page rendering performance
- Added: Automatic refund feature
- Added: Refund activity logging
- Improved: Webhook security validation
- Fixed: Amount mismatch detection
- Fixed: Timezone issues with Beijing time
- Added: Full subscription payment support
- Added: Recurring agreement integration
- Added: Trial period handling
- Improved: Error handling and logging
- Fixed: Cart session cleanup for repeat purchases
- Initial release
- Multi-platform payment support (PC, Mobile, App)
- Automatic client detection
- Basic refund functionality
- Multi-currency support
- Test mode/Sandbox support
- Webhook notification handling
- i18n/l10n ready