苹果内购消耗型物品购买

Ansjer/config.py

@@ -27,6 +27,15 @@ RESET_REGION_ID_SERIAL_REDIS_LIST = 'reset_region_id_serial_redis_list'
 # 地区id列表
 REGION_ID_LIST = [1, 2, 3, 4, 5]
 
+# 支付类型
+PAY_TYPE_PAYPAL = 1
+PAY_TYPE_ALIPAY = 2
+PAY_TYPE_WECHAT = 3
+PAY_TYPE_APPLE = 4
+PAY_TYPE_IN_APP_PURCHASE = 5
+PAY_TYPE_EXPERIENCE = 10
+PAY_TYPE_CDK = 11
+
 # 阿里云AccessKey和AccessKeySecret
 ALI_ACCESS_KEY_ID = 'LTAI5t9BXQWTPfBEh2Qu8YNA'
 ALI_ACCESS_KEY_SECRET = '8TcEjHkHGsJaknbHlHzZP4HXQ7GuvT'

Ansjer/file/in_app_purchase/SubscriptionKey_N42WMFCV6A.p8

@@ -0,0 +1,6 @@
+-----BEGIN PRIVATE KEY-----
+MIGTAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBHkwdwIBAQQgK4ELia/I5IOMZ+ve
+RcPnCFaEIATOVxenaB+kiVk7pCqgCgYIKoZIzj0DAQehRANCAAT+BA31V9UzMjbF
+DCi3Suspp8jIkfKXkzaHSRv7AQsvvqdfXU5mlqJlaQ2c9seI4u4Rq1E2Ak1RdX8S
+3rd/4G+p
+-----END PRIVATE KEY-----

Ansjer/urls.py

@@ -23,7 +23,7 @@ from Controller import FeedBack, EquipmentOTA, EquipmentInfo, AdminManage, AppIn
     RegionController, VPGController, LanguageController, TestController, DeviceConfirmRegion, S3GetStsController, \
     DetectControllerV2, PcInfo, PctestController, DeviceDebug, PaymentCycle, \
     DeviceLogController, CouponController, AiController, ShadowController, AppAccountManagement, InitController, \
-    WeatherControl
+    WeatherControl, InAppPurchaseController
 from Controller.Cron import CronTaskController
 from Controller.MessagePush import EquipmentMessagePush
 from Controller.Surveys import CloudStorageController
@@ -374,6 +374,7 @@ urlpatterns = [
     re_path(r'^alexaApi/', include("Ansjer.server_urls.alexa_url")),
     re_path('customSubscription/(?P<operation>.*)', UserSubscriptionController.UserSubscriptionControllerView.as_view()),
     re_path(r'^basic/serialNo/(?P<operation>.*)', SerialNumberCheckController.SerialNumberView.as_view()),
+    re_path('inAppPurchase/(?P<operation>.*)', InAppPurchaseController.InAppPurchaseView.as_view()),
 
     # 后台界面接口 -----------------------------------------------------
     # 用户登录信息等

Controller/CloudStorage.py

@@ -28,7 +28,7 @@ from Controller.PaymentCycle import Paypal
 from Model.models import Device_Info, Order_Model, Store_Meal, VodHlsModel, UID_Bucket, StsCrdModel, \
     ExperienceContextModel, Pay_Type, CDKcontextModel, Device_User, SysMsgModel, Unused_Uid_Meal, PromotionRuleModel, \
     VideoPlaybackTimeModel, CouponModel, VodBucketModel, VodHlsSummary, VodHlsTagType, UidSetModel, AiService, \
-    StsFrequency
+    StsFrequency, InAppPurchasePackage
 from Object.AWS.AmazonS3Util import AmazonS3Util
 from Object.AWS.S3Email import S3Email
 from Object.AliPayObject import AliPayObject
@@ -182,111 +182,125 @@ class CloudStorageView(View):
         uid = request_dict.get('uid', None)
         lang = request_dict.get('lang', 'en')
         is_ai = request_dict.get('is_ai', 0)
+        app_type = request_dict.get('app_type', None)
         if not all([uid]):
             return response.json(444)
+        # 苹果内购,app_type:1
+        is_ios = False
+        if app_type is not None:
+            if int(app_type) == 1:
+                is_ios = True
         is_ai = int(is_ai)
         now_time = int(time.time())
         # DVR/NVR设备暂不返回云存套餐列表
         device_info_qs = Device_Info.objects.filter(Q(UID=uid), Q(Type__lte=4) | Q(Type=10001))
         if device_info_qs.exists():
             return response.json(0)
-        # 查询设备像素
-        uid_set_qs = UidSetModel.objects.filter(uid=uid).values('ucode', 'is_ai')
-        if not uid_set_qs.exists():
-            return response.json(173)
-        ucode = uid_set_qs[0]['ucode']
-        dpi_flag = 0
-        if ucode:
-            if ucode[-5] == 'A':
-                dpi_flag = 10
+        try:
+            # 查询设备像素
+            uid_set_qs = UidSetModel.objects.filter(uid=uid).values('ucode', 'is_ai')
+            if not uid_set_qs.exists():
+                return response.json(173)
+            ucode = uid_set_qs[0]['ucode']
+            dpi_flag = 0
+            if ucode:
+                if ucode[-5] == 'A':
+                    dpi_flag = 10
+                else:
+                    dpi_flag = int(ucode[-5])
+            pixel_level = 1 if ucode and dpi_flag >= 8 else 0
+            store_qs = Store_Meal.objects.filter(Q(lang__lang=lang), Q(is_show=0), ~Q(pay_type='11'))  # 过滤激活码、隐藏套餐
+            experience_context_qs = ExperienceContextModel.objects.filter(uid=uid, experience_type=0)
+
+            if mold:
+                store_qs = store_qs.filter(bucket__mold=mold)
+
+            # 没体验过的设备只返回体验套餐,体验过的不返回体验套餐
+            if experience_context_qs.exists():
+                if not is_ai:  # 返回云存套餐
+                    store_qs = store_qs.filter(~Q(pay_type='10'), Q(is_ai=0))  # 筛选像素等级
+                else:  # 返回云存+AI套餐
+                    is_ai = uid_set_qs[0]['is_ai']
+                    is_ai = 1 if is_ai != 2 and CONFIG_INFO != CONFIG_CN else 0  # 国内不支持AI服务
+                    if not is_ai:
+                        return response.json(0)
+                    store_qs = store_qs.filter(~Q(pay_type='10'), Q(is_ai=1))  # 筛选像素等级
+
+                if CONFIG_INFO != CONFIG_CN:  # 国内生产环境不筛选像素 加载所有上架套餐
+                    store_qs = store_qs.filter(Q(pixel_level=pixel_level))
+                if is_ios:
+                    store_qs = store_qs.filter(pay_type=5)
+                else:
+                    store_qs = store_qs.exclude(pay_type=5)
             else:
-                dpi_flag = int(ucode[-5])
-        pixel_level = 1 if ucode and dpi_flag >= 8 else 0
-        store_qs = Store_Meal.objects.filter(Q(lang__lang=lang), Q(is_show=0), ~Q(pay_type='11'))  # 过滤激活码、隐藏套餐
-        experience_context_qs = ExperienceContextModel.objects.filter(uid=uid, experience_type=0)
-
-        if mold:
-            store_qs = store_qs.filter(bucket__mold=mold)
-
-        # 没体验过的设备只返回体验套餐,体验过的不返回体验套餐
-        if experience_context_qs.exists():
-            if not is_ai:  # 返回云存套餐
-                store_qs = store_qs.filter(~Q(pay_type='10'), Q(is_ai=0))  # 筛选像素等级
-            else:  # 返回云存+AI套餐
                 is_ai = uid_set_qs[0]['is_ai']
                 is_ai = 1 if is_ai != 2 and CONFIG_INFO != CONFIG_CN else 0  # 国内不支持AI服务
-                if not is_ai:
-                    return response.json(0)
-                store_qs = store_qs.filter(~Q(pay_type='10'), Q(is_ai=1))  # 筛选像素等级
-
-            if CONFIG_INFO != CONFIG_CN:  # 国内生产环境不筛选像素 加载所有上架套餐
-                store_qs = store_qs.filter(Q(pixel_level=pixel_level))
-        else:
-            is_ai = uid_set_qs[0]['is_ai']
-            is_ai = 1 if is_ai != 2 and CONFIG_INFO != CONFIG_CN else 0  # 国内不支持AI服务
-            store_qs = store_qs.filter(pay_type='10')  # 体验套餐不区分像素等级
-
-        store_qs = store_qs.annotate(title=F('lang__title'), content=F('lang__content'),
-                                     new_title=F('lang__new_title'),
-                                     discount_content=F('lang__discount_content'))
-        store_qs = store_qs.order_by('sort').values("id", "title", "content", "price", "day", "currency",
-                                                    "bucket__storeDay", "new_title",
-                                                    "bucket__bucket", "bucket__area", "commodity_code",
-                                                    "commodity_type", "is_discounts", "virtual_price", "expire",
-                                                    "discount_price", "discount_content", "symbol", "cycle_config_id")
+                store_qs = store_qs.filter(pay_type='10')  # 体验套餐不区分像素等级
+
+            store_qs = store_qs.annotate(title=F('lang__title'), content=F('lang__content'),
+                                         new_title=F('lang__new_title'),
+                                         discount_content=F('lang__discount_content'))
+            store_qs = store_qs.order_by('sort').values("id", "title", "content", "price", "day", "currency",
+                                                        "bucket__storeDay", "new_title",
+                                                        "bucket__bucket", "bucket__area", "commodity_code",
+                                                        "commodity_type", "is_discounts", "virtual_price", "expire",
+                                                        "discount_price", "discount_content", "symbol",
+                                                        "cycle_config_id")
 
-        if not store_qs.exists():
-            return response.json(0)
-        store_list = list(store_qs)
-        store_list.sort(key=itemgetter('bucket__area'))
-        res = []
-        coupon_qs = '' if not user_id else CloudServiceController.get_user_coupon_list(user_id)
-        for area, items in groupby(store_list, key=itemgetter('bucket__area')):
-            items_list = list(items)
-            for item in items_list:
-                pay_type_qs = Pay_Type.objects.filter(store_meal=item['id']).values("id", "payment")
-                item['pay_type'] = list(pay_type_qs)
-                item['is_pay_cycle'] = 1 if item['cycle_config_id'] else 0
-                del item['cycle_config_id']
-                item['isCoupon'] = False if not coupon_qs or not coupon_qs.exists() else \
-                    CloudStorageView.check_user_coupon_is_available(coupon_qs, item['id'])
-                for each in item['pay_type']:
-                    if each['id'] == 10 and CONFIG_INFO != CONFIG_CN:
-                        if is_ai == 0:
-                            item['content'] = item['new_title'].get('1', '')
-                        elif is_ai == 1:
-                            item['content'] = item['new_title'].get('2', '')
-            res_c = {'area': area, 'items': items_list}
-            res.append(res_c)
-        # 是否促销
-        promotion_rule_qs = PromotionRuleModel.objects.filter(status=1, startTime__lte=now_time,
-                                                              endTime__gte=now_time).values('id', 'ruleConfig',
-                                                                                            'ruleName',
-                                                                                            'startTime', 'endTime',
-                                                                                            'ruleDesc')
-        if promotion_rule_qs.exists():
-            promotion = {
-                'is_promotion': 1,
-                'promotionStartTime': promotion_rule_qs[0]['startTime'],
-                'promotionEndTime': promotion_rule_qs[0]['endTime'],
-                'promotionName': json.loads(promotion_rule_qs[0]['ruleName']).get(lang, ''),
-                'promotionDesc': json.loads(promotion_rule_qs[0]['ruleDesc']).get(lang, ''),
-                'nowTime': now_time
-            }
-        else:
-            promotion = {
-                'is_promotion': 0
+            if not store_qs.exists():
+                return response.json(0)
+            store_list = list(store_qs)
+            store_list.sort(key=itemgetter('bucket__area'))
+            res = []
+            coupon_qs = '' if not user_id else CloudServiceController.get_user_coupon_list(user_id)
+            for area, items in groupby(store_list, key=itemgetter('bucket__area')):
+                items_list = list(items)
+                for item in items_list:
+                    pay_type_qs = Pay_Type.objects.filter(store_meal=item['id']).values("id", "payment")
+                    item['pay_type'] = list(pay_type_qs)
+                    item['is_pay_cycle'] = 1 if item['cycle_config_id'] else 0
+                    del item['cycle_config_id']
+                    item['isCoupon'] = False if not coupon_qs or not coupon_qs.exists() else \
+                        CloudStorageView.check_user_coupon_is_available(coupon_qs, item['id'])
+                    for each in item['pay_type']:
+                        if each['id'] == 10 and CONFIG_INFO != CONFIG_CN:
+                            if is_ai == 0:
+                                item['content'] = item['new_title'].get('1', '')
+                            elif is_ai == 1:
+                                item['content'] = item['new_title'].get('2', '')
+                res_c = {'area': area, 'items': items_list}
+                res.append(res_c)
+            # 是否促销
+            promotion_rule_qs = PromotionRuleModel.objects.filter(status=1, startTime__lte=now_time,
+                                                                  endTime__gte=now_time).values('id', 'ruleConfig',
+                                                                                                'ruleName',
+                                                                                                'startTime', 'endTime',
+                                                                                                'ruleDesc')
+            if promotion_rule_qs.exists():
+                promotion = {
+                    'is_promotion': 1,
+                    'promotionStartTime': promotion_rule_qs[0]['startTime'],
+                    'promotionEndTime': promotion_rule_qs[0]['endTime'],
+                    'promotionName': json.loads(promotion_rule_qs[0]['ruleName']).get(lang, ''),
+                    'promotionDesc': json.loads(promotion_rule_qs[0]['ruleDesc']).get(lang, ''),
+                    'nowTime': now_time
+                }
+            else:
+                promotion = {
+                    'is_promotion': 0
+                }
+            result = {
+                'meals': res,
+                'extra':
+                    {
+                        'cloud_banner': SERVER_DOMAIN + 'web/images/cloud_cn_banner.png',
+                        'cloud_en_baner': SERVER_DOMAIN_SSL + 'web/images/cloud_en_banner.png'
+                    },
+                'promotion': promotion,
             }
-        result = {
-            'meals': res,
-            'extra':
-                {
-                    'cloud_banner': SERVER_DOMAIN + 'web/images/cloud_cn_banner.png',
-                    'cloud_en_baner': SERVER_DOMAIN_SSL + 'web/images/cloud_en_banner.png'
-                },
-            'promotion': promotion,
-        }
-        return response.json(0, result)
+            return response.json(0, result)
+        except Exception as e:
+            return response.json(500, 'error_line:{}, error_msg:{}'.format(e.__traceback__.tb_lineno, repr(e)))
 
     @staticmethod
     def check_user_coupon_is_available(coupon_qs, combo_id):
@@ -829,7 +843,8 @@ class CloudStorageView(View):
                 channel = order_list[0]['channel']
                 rank = order_list[0]['rank']
 
-                store_qs = Store_Meal.objects.filter(id=rank).values('day', 'bucket_id', 'expire')
+                store_qs = Store_Meal.objects.filter(id=rank).values('day', 'bucket_id', 'expire',
+                                                                     'icloud_store_meal_id')
                 if not store_qs.exists():
                     return response.json(173)
                 bucket_id = store_qs[0]['bucket_id']
@@ -1407,6 +1422,22 @@ class CloudStorageView(View):
                                                   'orderId': order_id,
                                                   'error_code': 0})
 
+        elif pay_type == 5:
+            # 内购订阅型订单 之前订阅过任意套餐返回不可再次订阅
+            if store_qs[0]['cycle_config_id']:
+                return response.json(173)
+            else:
+                product_id = InAppPurchasePackage.objects.filter(rank_id=rank).values("product_id")[0]["product_id"]
+
+            Order_Model.objects.create(
+                orderID=order_id, UID=uid, channel=channel, userID_id=user_id, desc=content, payType=pay_type,
+                payTime=now_time, price=price, currency=currency, addTime=now_time, updTime=now_time,
+                isSelectDiscounts=is_select_discount, order_type=order_type, commodity_code=commodity_code,
+                commodity_type=commodity_type, rank_id=rank, ai_rank_id=1, store_meal_name=store_meal_name)
+            return JsonResponse(status=200, data={'result_code': 0, 'reason': 'success',
+                                                  'result': {"orderID": order_id, "productId": product_id},
+                                                  'error_code': 0})
+
     def do_experience_order(self, request_dict, user_id, response):  # 生成体验订单
         """
         生成体验订单
@@ -1826,8 +1857,9 @@ class CloudStorageView(View):
                 has_unused = 1 if count_unused > 1 else 0
                 end_time = CommonService.calcMonthLater(unused_uid_bucket['expire'])
                 UID_Bucket.objects.filter(uid=uid).update(channel=unused_uid_bucket['channel'], endTime=end_time,
-                                                          bucket_id=unused_uid_bucket['bucket_id']
-                                                          , updateTime=now_time, use_status=1,
+                                                          bucket_id=unused_uid_bucket['bucket_id'],
+                                                          orderId=unused_uid_bucket['order_id'],
+                                                          updateTime=now_time, use_status=1,
                                                           has_unused=has_unused)
                 # 开通AI服务
                 if unused_uid_bucket['is_ai']:

Controller/InAppPurchaseController.py

@@ -0,0 +1,348 @@
+# @Author    : Rocky
+# @File      : InAppPurchaseController.py
+# @Time      : 2024/6/21 9:10
+import logging
+import time
+import json
+from appstoreserverlibrary.api_client import AppStoreServerAPIClient, GetTransactionHistoryVersion
+from appstoreserverlibrary.models.Environment import Environment
+from appstoreserverlibrary.receipt_utility import ReceiptUtility
+from appstoreserverlibrary.models.HistoryResponse import HistoryResponse
+from appstoreserverlibrary.models.TransactionHistoryRequest import TransactionHistoryRequest, ProductType, Order
+from appstoreserverlibrary.signed_data_verifier import SignedDataVerifier
+
+from cryptography.hazmat.backends import default_backend
+from cryptography.hazmat.primitives.serialization import load_pem_private_key
+
+from django.db.models import Q
+from django.views import View
+from django.http import HttpResponse
+
+from Ansjer.config import LOGGER, CONFIG_INFO, CONFIG_TEST, PAY_TYPE_IN_APP_PURCHASE, BASE_DIR
+from Controller.CheckUserData import DataValid
+from Model.models import Order_Model, Store_Meal, Device_Info, UID_Bucket, Unused_Uid_Meal, AiService, Device_User, \
+    SysMsgModel
+from Object.AWS.S3Email import S3Email
+from Object.AliSmsObject import AliSmsObject
+from Object.RedisObject import RedisObject
+from Service.CommonService import CommonService
+
+ENV = Environment.SANDBOX if CONFIG_INFO == CONFIG_TEST else Environment.PRODUCTION
+
+
+class InAppPurchaseView(View):
+    def get(self, request, *args, **kwargs):
+        request.encoding = 'utf-8'
+        operation = kwargs.get('operation')
+        return self.validation(request.GET, request, operation)
+
+    def post(self, request, *args, **kwargs):
+        request.encoding = 'utf-8'
+        operation = kwargs.get('operation')
+        return self.validation(request.POST, request, operation)
+
+    def validation(self, request_dict, request, operation):
+        if operation == 'AppStoreServerNotifications':  # App Store服务器通知
+            return self.app_store_server_notifications(request)
+        token_code, user_id, response = CommonService.verify_token_get_user_id(request_dict, request)
+        if token_code != 0:
+            return response.json(token_code)
+        if operation == 'verifyTransaction':  # 认证交易
+            return self.verify_transaction(user_id, request_dict, response)
+
+    @classmethod
+    def verify_transaction(cls, user_id, request_dict, response):
+        """
+        认证交易
+        @param user_id: 用户id
+        @param request_dict: 请求参数
+        @request_dict receipt: 收据
+        @param response: 响应对象
+        @return: response
+        """
+        receipt = request_dict.get('receipt', None)
+        order_id = request_dict.get('orderID', None)
+        uid = request_dict.get('uid', None)
+        lang = request_dict.get('lang', 'en')
+        channel = request_dict.get('channel', None)
+        logger = logging.getLogger('apple_pay')
+        logger.info(f"receipt: {receipt}, 订单orderId: {order_id}, uid: {uid}")
+
+        if not all([receipt, uid, channel, order_id]):
+            return response.json(444)
+
+        # redis加锁，防止订单重复
+        redis_obj = RedisObject()
+        redis_key = order_id + 'in_app_purchase'
+        is_lock = redis_obj.CONN.setnx(redis_key, 1)
+        redis_obj.CONN.expire(redis_key, 60)
+        if not is_lock:
+            return response.json(5)
+
+        try:
+            # 从交易信息中获取product_id
+            key_path = '{}/Ansjer/file/in_app_purchase/SubscriptionKey_N42WMFCV6A.p8'.format(BASE_DIR)
+            with open(key_path, 'rb') as file:
+                # 读取文件内容
+                private_key = file.read()
+
+            key_id = 'N42WMFCV6A'
+            issuer_id = '69a6de8c-789b-47e3-e053-5b8c7c11a4d1'
+            bundle_id = 'com.ansjer.zccloud'
+            environment = ENV
+
+            client = AppStoreServerAPIClient(private_key, key_id, issuer_id, bundle_id, environment)
+            receipt_util = ReceiptUtility()
+
+            transaction_id = receipt_util.extract_transaction_id_from_app_receipt(receipt)
+            logger.info(f"订单orderId:{order_id}, transaction_id:{transaction_id}")
+
+            if transaction_id is None:
+                pay_result_url = CommonService.get_payment_status_url(lang, 'fail')
+                return response.json(0, {'url': pay_result_url})
+
+            transaction_info = client.get_transaction_info(transaction_id)
+
+            signed_transaction_info = transaction_info.signedTransactionInfo
+
+            root_certificates = []
+            for cert_name in [
+                'AppleIncRootCertificate.cer', 'AppleComputerRootCertificate.cer',
+                'AppleRootCA-G2.cer', 'AppleRootCA-G3.cer'
+            ]:
+                cert_path = '{}/Ansjer/file/in_app_purchase/{}'.format(BASE_DIR, cert_name)
+                with open(cert_path, 'rb') as file:
+                    # 读取文件内容
+                    root_certificates.append(file.read())
+
+            enable_online_checks = True
+            app_apple_id = None  # 生产环境必需
+            signed_data_verifier = SignedDataVerifier(
+                root_certificates, enable_online_checks, environment, bundle_id, app_apple_id)
+
+            payload = signed_data_verifier.verify_and_decode_signed_transaction(signed_transaction_info)
+
+            product_id = None
+
+            if payload and payload.productId:
+                product_id = payload.productId
+
+            if not product_id:
+                pay_result_url = CommonService.get_payment_status_url(lang, 'fail')
+                return response.json(0, {'url': pay_result_url})
+
+            now_time = int(time.time())
+            order_qs = Order_Model.objects.filter(orderID=order_id, UID=uid).values("rank_id")
+            if not order_qs.exists():
+                return response.json(173, "订单不存在")
+            store_qs = Store_Meal.objects.filter(id=order_qs[0]['rank_id']).values(
+                'id', 'currency', 'price', 'lang__content', 'day', 'commodity_type', 'lang__title', 'expire',
+                'commodity_code', 'discount_price', 'bucket_id', 'bucket__mold', 'cycle_config_id', 'is_ai')
+            if not store_qs.exists():
+                return response.json(173, "套餐不存在")
+
+            bucket_id = store_qs[0]['bucket_id']
+            is_ai = store_qs[0]['is_ai']
+            expire = store_qs[0]['expire']
+            end_time = CommonService.calcMonthLater(expire)
+
+            # 查询设备是否已开过云存
+            use_flag = True
+            uid_bucket_qs = UID_Bucket.objects.filter(uid=uid). \
+                values('id', 'bucket_id', 'bucket__region', 'endTime', 'use_status')
+            if uid_bucket_qs.exists():
+                uid_bucket = uid_bucket_qs.first()
+                uid_bucket_id = uid_bucket['id']
+                # 叠加相同套餐的过期时间
+                if uid_bucket['use_status'] == 1 and uid_bucket['endTime'] > now_time:
+                    Unused_Uid_Meal.objects.create(
+                        uid=uid, channel=channel, addTime=now_time, order_id=order_id, expire=expire, is_ai=is_ai,
+                        bucket_id=bucket_id)
+                    UID_Bucket.objects.filter(id=uid_bucket_id).update(has_unused=1)
+                    use_flag = False
+                # 更新套餐的过期时间
+                else:
+                    UID_Bucket.objects.filter(id=uid_bucket_id).update(
+                        channel=channel, bucket_id=bucket_id, endTime=end_time, updateTime=now_time, use_status=1,
+                        orderId=order_id)
+            else:
+                uid_bucket = UID_Bucket.objects.create(
+                    uid=uid, channel=channel, bucket_id=bucket_id, endTime=end_time, use_status=1, orderId=order_id,
+                    addTime=now_time, updateTime=now_time)
+                uid_bucket_id = uid_bucket.id
+
+            # 开通AI服务
+            if is_ai and use_flag:
+                ai_service = AiService.objects.filter(uid=uid, channel=channel)
+                # 有正在使用的套餐,叠加套餐时间,否则创建
+                if ai_service.exists():
+                    ai_service.update(updTime=now_time, use_status=1, orders_id=order_id, endTime=end_time)
+                else:
+                    AiService.objects.create(
+                        uid=uid, channel=channel, detect_status=1, use_status=1, orders_id=order_id,
+                        addTime=now_time, updTime=now_time, endTime=end_time)
+
+            order_qs.update(status=1, uid_bucket_id=uid_bucket_id, transaction_id=transaction_id, create_vod=1)
+
+            # 发送云存开通信息
+            date_time = time.strftime("%Y-%m-%d", time.localtime())
+            # 如果存在序列号,消息提示用序列号
+            device_info_qs = Device_Info.objects.filter(UID=uid).values('serial_number', 'Type')
+            serial_number = device_info_qs[0]['serial_number']
+            device_type = device_info_qs[0]['Type']
+            if serial_number:
+                device_name = CommonService.get_full_serial_number(uid, serial_number, device_type)
+            else:
+                device_name = uid
+            sys_msg_text_list = [
+                '温馨提示：尊敬的客户，您的{}设备在{}已成功购买云存套餐'.format(device_name, date_time),
+                'Dear customer,you already subscribed the cloud storage package successfully for device {} on '.
+                format(device_name, time.strftime('%b %dth,%Y', time.localtime()))]
+            cls.do_vod_msg_notice(uid, user_id, lang, sys_msg_text_list)
+
+            redis_obj.del_data(redis_key)
+            pay_result_url = CommonService.get_payment_status_url(lang, 'success')
+            return response.json(0, {'url': pay_result_url})
+
+        except Exception as e:
+            redis_obj.del_data(redis_key)
+            LOGGER.info('苹果内购认证交易接口异常:{}'.
+                        format('error_line:{}, error_msg:{}'.format(e.__traceback__.tb_lineno, repr(e))))
+            pay_result_url = CommonService.get_payment_status_url(lang, 'fail')
+            return response.json(0, {'url': pay_result_url})
+
+    @classmethod
+    def do_vod_msg_notice(cls, uid, user_id, lang, sys_msg_text_list):
+        """
+        发送云存开通信息
+        @param uid: uid
+        @param user_id: 用户id
+        @param lang: 语言
+        @param sys_msg_text_list: 消息列表
+        @return: response
+        """
+        if lang == 'cn':
+            sys_msg_text = sys_msg_text_list[0]
+        else:
+            sys_msg_text = sys_msg_text_list[1]
+        now_time = int(time.time())
+        create_data = {
+            'userID_id': user_id,
+            'msg': sys_msg_text,
+            'addTime': now_time,
+            'updTime': now_time,
+            'uid': uid,
+            'eventType': 0
+        }
+        SysMsgModel.objects.create(**create_data)
+
+        # 不接收邮件用户
+        if user_id == '167015836969813800138000':
+            return
+
+        user_qs = Device_User.objects.filter(userID=user_id)
+        if user_qs.exists():
+            user = user_qs.first()
+            username = user.username
+            data_valid = DataValid()
+            if data_valid.email_validate(username):
+                S3Email().faEmail(sys_msg_text, username)
+            elif data_valid.mobile_validate(username):
+                # 如果存在序列号,消息提示用序列号
+                device_info_qs = Device_Info.objects.filter(UID=uid).values('serial_number', 'Type')
+                if device_info_qs.exists():
+                    serial_number = device_info_qs[0]['serial_number']
+                    device_type = device_info_qs[0]['Type']
+                    if serial_number:
+                        device_name = CommonService.get_full_serial_number(uid, serial_number, device_type)
+                    else:
+                        device_name = uid
+                    params = '{"devname":"%s","submittime":"%s"}' % (
+                        device_name, time.strftime("%Y-%m-%d", time.localtime()))
+                    cls.send_message(username, params, 'SMS_219738485')
+
+    @staticmethod
+    def send_message(phone, params, temp_msg):
+        """
+        发送手机消息
+        @param phone: 用户名
+        @param params: 消息参数
+        @param temp_msg: sms码
+        """
+        sign_ms = '周视'
+        ali_sms = AliSmsObject()
+        ali_sms.send_code_sms_cloud(phone=phone, params=params, sign_name=sign_ms, temp_msg=temp_msg)
+
+    @classmethod
+    def app_store_server_notifications(cls, request):
+        logger = logging.getLogger('apple_pay')
+        logger.info('App Store服务器通知请求类型:{}'.format(request.method))
+        logger.info('App Store服务器通知参数:{}'.format(request.POST))
+        logger.info('App Store服务器通知请求body:{}'.format(request.body))
+        payload = json.loads(request.body.decode('utf-8'))
+        logger.info('App Store服务器通知payload:{}'.format(payload))
+        # 获取 signedPayload
+        signed_payload = payload.get('signedPayload')
+        if not signed_payload:
+            return HttpResponse(status=400)
+
+        bundle_id = 'com.ansjer.zccloud'
+        environment = ENV
+        root_certificates = []
+        for cert_name in [
+            'AppleIncRootCertificate.cer', 'AppleComputerRootCertificate.cer',
+            'AppleRootCA-G2.cer', 'AppleRootCA-G3.cer'
+        ]:
+            cert_path = '{}/Ansjer/file/in_app_purchase/{}'.format(BASE_DIR, cert_name)
+            with open(cert_path, 'rb') as file:
+                # 读取文件内容
+                root_certificates.append(file.read())
+
+        enable_online_checks = True
+        app_apple_id = None  # 生产环境必需
+
+        # 验证签名并解码 payload
+        verifier = SignedDataVerifier(
+            root_certificates, enable_online_checks, environment, bundle_id, app_apple_id)
+        decoded_payload = verifier.verify_and_decode_notification(signed_payload)
+        logger.info('App Store服务器通知decoded_payload: {}'.format(decoded_payload))
+        if str(decoded_payload.rawNotificationType) == "REFUND":
+            # 一种通知类型，表示 App Store 成功退还了消耗性应用内购买、非消耗性应用内购买、自动续订或不可续订的交易。
+            # revocationDate 包含退款交易的时间戳。originalTransactionId 和 productId 用于标识原始交易和产品。revocationReason 包含原因。
+            # 要请求客户所有退款交易的列表，请参阅 App Store 服务器 API 中的获取退款历史记录。
+            # 1. 找套餐 使用 transaction_id 找orders
+            decoded_transaction_information = verifier.verify_and_decode_signed_transaction(
+                decoded_payload.data.signedTransactionInfo)
+            transaction_id = decoded_transaction_information.transactionId
+            logger.info('App Store服务器通知退款, transaction_id:{}'.format(transaction_id))
+            orders_qs = Order_Model.objects.filter(transaction_id=transaction_id)
+            # 2. 查找云存套餐使用表 和 云存套餐
+            if orders_qs.exists():
+                orders_qs.update(status=11)
+                orderID = orders_qs[0].orderID
+                uid = orders_qs[0].UID
+                user_id = orders_qs[0].userID
+                # 3. 未使用则删除未使用套餐表，已使用过则删除设备正在使用套餐，并关闭设备云存
+                uid_bucket_qs = UID_Bucket.objects.filter(uid=uid, orderId=orderID, use_status=1, endTime__gt=int(time.time()))
+                unused_uid_meal_qs = Unused_Uid_Meal.objects.filter(order_id=orderID)
+                ai_service_qs = AiService.objects.filter(uid=uid, orderId=orderID, use_status=1, endTime__gt=int(time.time()))
+                if unused_uid_meal_qs.exists():
+                    unused_uid_meal_qs.delete()
+                if uid_bucket_qs.exists():
+                    uid_bucket_qs.update(status=0, use_status=2, endTime=int(time.time()), updateTime=int(time.time()))
+                if ai_service_qs.exists():
+                    ai_service_qs.update(detect_status=0, use_status=2, endTime=int(time.time()), updTime=int(time.time()))
+                    # 关闭ai
+                    msg = {'commandType': 'AIDisable'}
+                    thing_name = CommonService.query_serial_with_uid(uid)  # 存在序列号则为使用序列号作为物品名
+                    topic_name = 'ansjer/generic/{}'.format(thing_name)
+                    req_success = CommonService.req_publish_mqtt_msg(thing_name, topic_name, msg)
+                    LOGGER.info(f'App Store服务器通知用户退款, 关闭AI:{req_success}')
+
+                # 4.发送邮件告知用户退款
+                email_content = f'用户{user_id}, 订单:{orderID}, 设备{uid}退款'
+            else:
+                email_content = f'transaction_id:{transaction_id}退款, 未查询到订单'
+            S3Email().faEmail(email_content, 'servers@ansjer.com')
+
+        return HttpResponse(status=200)

Model/models.py

@@ -1854,9 +1854,9 @@ class Order_Model(models.Model):
     addTime = models.IntegerField(verbose_name='添加时间', default=0)
     updTime = models.IntegerField(verbose_name='更新时间', default=0)
     isSelectDiscounts = models.SmallIntegerField(default=0, verbose_name=u'用户是否选择了第二年优惠 [0=否，1是]')
-    # 0: 待支付, 1：支付成功, 2: 取消支付, 4: 退款失败, 5: 全额退款, 6: 部分退款, 7: PayPal已退款, 9：处理中, 10：支付失败
+    # 0: 待支付, 1：支付成功, 2: 取消支付, 4: 退款失败, 5: 全额退款, 6: 部分退款, 7: PayPal已退款, 9：处理中, 10：支付失败 11：苹果通知退款
     status = models.SmallIntegerField(default=0, verbose_name='付款状态')
-    # 1: PayPal, 2: 支付宝, 3: 微信, 10: 免费体验, 11: 激活码
+    # 1: PayPal, 2: 支付宝, 3: 微信, 5: 苹果内购, 10: 免费体验, 11: 激活码
     payType = models.SmallIntegerField(default=0, verbose_name='支付方式')
     payTime = models.IntegerField(verbose_name='支付成功时间', default=0)
     rank = models.ForeignKey(Store_Meal, to_field='id', default='', on_delete=models.CASCADE, verbose_name='关联云存套餐表')
@@ -1876,6 +1876,9 @@ class Order_Model(models.Model):
     coupon_id = models.CharField(default='', blank=True, max_length=10, verbose_name=u'优惠券id')
     store_meal_name = models.CharField(default='', blank=True, max_length=64, verbose_name=u'关联套餐名')
     create_vod = models.SmallIntegerField(default=0, verbose_name='是否生成云存服务')  # 0：未生成，1：已生成
+    transaction_id = models.CharField(default='', blank=True, max_length=64, verbose_name=u'苹果内购transactionId')
+    original_transaction_id = models.CharField(default='', blank=True, max_length=64,
+                                               verbose_name=u'苹果内购originalTransactionId')
 
     def __str__(self):
         return self.orderID
@@ -4952,3 +4955,20 @@ class StsFrequency(models.Model):
         verbose_name = 'sts统计表'
         verbose_name_plural = verbose_name
         ordering = ('id',)
+
+
+class InAppPurchasePackage(models.Model):
+    id = models.AutoField(primary_key=True, verbose_name=u'自增标记ID')
+    subscription_group_id = models.CharField(default='', max_length=64, verbose_name='内购订阅组id')
+    subscription_group = models.CharField(default='', max_length=64, verbose_name='内购订阅组')
+    product_id = models.CharField(default='', max_length=64, verbose_name='内购商品id')
+    package_type = models.SmallIntegerField(default=0, verbose_name='套餐类型') # 0:非订阅, 1:订阅
+    rank = models.ForeignKey(Store_Meal, blank=True, to_field='id', null=True, on_delete=models.SET_NULL,
+                             verbose_name='关联云存套餐表')
+    is_ai = models.SmallIntegerField(default=0, verbose_name='是否支持ai') # 0:不支持, 1:支持
+    created_time = models.IntegerField(verbose_name='创建时间', default=0)
+    update_time = models.IntegerField(verbose_name='更新时间', default=0)
+
+    class Meta:
+        db_table = 'in_app_purchase_package'
+        verbose_name = '苹果内购套餐表'