php实现充值
PHP 实现充值功能
数据库设计
创建数据库表存储用户余额和充值记录:
CREATE TABLE users (
id INT PRIMARY KEY AUTO_INCREMENT,
username VARCHAR(50) UNIQUE,
balance DECIMAL(10,2) DEFAULT 0.00
);
CREATE TABLE recharge_records (
id INT PRIMARY KEY AUTO_INCREMENT,
user_id INT,
amount DECIMAL(10,2),
payment_method VARCHAR(20),
transaction_id VARCHAR(50),
status ENUM('pending','completed','failed') DEFAULT 'pending',
created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
FOREIGN KEY (user_id) REFERENCES users(id)
);充值表单页面
创建HTML表单接收充值金额和支付方式:
<form action="process_recharge.php" method="post">
<input type="number" name="amount" min="1" step="0.01" required>
<select name="payment_method" required>
<option value="alipay">支付宝</option>
<option value="wechat">微信支付</option>
<option value="bank">银行卡</option>
</select>
<button type="submit">充值</button>
</form>处理充值逻辑
创建处理充值的PHP脚本:
// process_recharge.php
session_start();
require 'db_connection.php';
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$userId = $_SESSION['user_id'];
$amount = floatval($_POST['amount']);
$paymentMethod = $_POST['payment_method'];
// 生成唯一交易ID
$transactionId = uniqid('recharge_');
// 记录充值订单
$stmt = $pdo->prepare("INSERT INTO recharge_records
(user_id, amount, payment_method, transaction_id)
VALUES (?, ?, ?, ?)");
$stmt->execute([$userId, $amount, $paymentMethod, $transactionId]);
// 调用支付接口
$paymentResult = callPaymentGateway($amount, $paymentMethod, $transactionId);
if ($paymentResult['success']) {
// 更新订单状态
$pdo->prepare("UPDATE recharge_records SET status='completed'
WHERE transaction_id=?")->execute([$transactionId]);
// 更新用户余额
$pdo->prepare("UPDATE users SET balance=balance+?
WHERE id=?")->execute([$amount, $userId]);
header("Location: recharge_success.php");
} else {
// 支付失败处理
$pdo->prepare("UPDATE recharge_records SET status='failed'
WHERE transaction_id=?")->execute([$transactionId]);
header("Location: recharge_failed.php");
}
}
function callPaymentGateway($amount, $method, $transactionId) {
// 实际项目中这里调用第三方支付API
// 模拟返回成功
return ['success' => true];
}支付结果回调处理
创建处理支付回调的接口:
// payment_callback.php
require 'db_connection.php';
$transactionId = $_POST['transaction_id'];
$status = $_POST['status']; // 'success' or 'failed'
$record = $pdo->prepare("SELECT * FROM recharge_records
WHERE transaction_id=?")->fetch([$transactionId]);
if ($record && $record['status'] === 'pending') {
if ($status === 'success') {
$pdo->beginTransaction();
try {
// 更新订单状态
$pdo->prepare("UPDATE recharge_records SET status='completed'
WHERE transaction_id=?")->execute([$transactionId]);
// 更新用户余额
$pdo->prepare("UPDATE users SET balance=balance+?
WHERE id=?")->execute([$record['amount'], $record['user_id']]);
$pdo->commit();
echo 'SUCCESS';
} catch (Exception $e) {
$pdo->rollBack();
echo 'FAILED';
}
} else {
$pdo->prepare("UPDATE recharge_records SET status='failed'
WHERE transaction_id=?")->execute([$transactionId]);
echo 'FAILED';
}
} else {
echo 'INVALID_REQUEST';
}安全注意事项
- 验证用户输入金额必须大于0
- 使用HTTPS保护传输数据
- 对支付回调进行签名验证
- 记录完整的操作日志
- 实现防重复提交机制
第三方支付集成
实际项目中需要集成支付宝、微信等官方SDK:
// 支付宝支付示例
function createAlipayOrder($amount, $transactionId) {
require_once 'alipay_sdk/AopSdk.php';
$request = new AlipayTradePagePayRequest();
$request->setBizContent(json_encode([
'subject' => '账户充值',
'out_trade_no' => $transactionId,
'total_amount' => $amount,
'product_code' => 'FAST_INSTANT_TRADE_PAY'
]));
$response = $aop->pageExecute($request);
return $response;
}测试充值流程
- 开发环境使用支付沙箱
- 测试各种金额边界情况
- 模拟支付成功和失败场景
- 验证余额更新准确性
- 检查并发充值情况下的数据一致性
