banner
biuaxia

biuaxia

"万物皆有裂痕,那是光进来的地方。"
github
bilibili
tg_channel
HomeArchives

The pitfalls of using TePass!

207
AI Translation
This post is translated from Chinese into English through AI.View Original
AI-generated summary
This article discusses the common issues encountered when configuring TePass, including problems with verifying Alipay callback notifications, website issues such as using a CDN, being on Alipay's blacklist, and incorrect callback addresses. It also mentions the importance of using the correct version of the private/public key generator and handling data formats properly. Additionally, it notes the need for SSL certificates for HTTPS pages and reminds readers that notify_url pages should only return "success" and cannot contain any HTML code.

title: Pitfalls in the process of using TePass!
date: 2022-05-24 13:40:00
toc: false
index_img: http://api.btstu.cn/sjbz/?lx=m_dongman&cid=1
category:

  • Tips
    tags:
  • Configuration
  • Support
  • Format

There are many pitfalls when configuring TePass. Let's record them one by one below:

  1. When Alipay sends a callback notification, signature verification is required. Many people don't pay attention to the documentation and use the Alipay public key instead of the merchant application's public key.
  2. Website issues, such as using CDN. In this case, you need to find the callback URL of your own website and exclude it from the CDN settings (this URL should not be executed by the CDN).
  3. The website is blacklisted by Alipay, so it will definitely not receive notifications.
  4. There is a problem with the version of the merchant's private and public key generation. At least version 1.4 or above is required.
  5. The callback address is filled in incorrectly, or no callback address is filled in on the Alipay open platform.
  6. There may be issues with the data format in the Alipay callback notification. Pay attention to escape characters and handle them yourself.
  7. Confirm whether the page is HTTP or HTTPS. If it is HTTPS, you need to install an SSL certificate. The certificate requirements are as follows: "Issued by a reputable certificate authority, self-signed certificates are not supported."

Note: The notify_url page can only return "success". There should be no HTML code on the asynchronous notification page.

Loading...
Ownership of this post data is guaranteed by blockchain and smart contracts to the creator alone.