InputStream inStream = request.getInputStream();
ByteArrayOutputStream outSteam = new ByteArrayOutputStream();
byte[] buffer = new byte[1024];
int len = 0;
while ((len = inStream.read(buffer)) != -1) {
outSteam.write(buffer, 0, len);
}
outSteam.close();
inStream.close();
/** 獲取微信調(diào)用notify_url的返回XML信息 */
String result = new String(outSteam.toByteArray(), "utf-8");

/**
* 傳入微信回調(diào)返回的XML信息
* 以Map形式返回便于取值
* dom4j解析XML,返回第一級(jí)元素鍵值對(duì)。如果第一級(jí)元素有子節(jié)點(diǎn)，則此節(jié)點(diǎn)的值為空
* @param strXML
* @return
* @throws DocumentException 
*/
@SuppressWarnings("rawtypes")
public static SortedMap<String, String> dom4jXMLParse(String strXML) throws DocumentException {
SortedMap<String, String> smap = new TreeMap<String, String>();
Document doc = DocumentHelper.parseText(strXML);
Element root = doc.getRootElement();
for (Iterator iterator = root.elementIterator(); iterator.hasNext();) {
Element e = (Element) iterator.next();
smap.put(e.getName(), e.getText());
}
return smap;
}

/**
* 是否微信V3簽名,規(guī)則是:按參數(shù)名稱a-z排序,遇到空值的參數(shù)不參加簽名
* 傳入微信返回信息解析后的SortedMap格式參數(shù)數(shù)據(jù)
* 驗(yàn)證消息是否是微信發(fā)出的合法消息
* @param smap
* @param apiKey 設(shè)置的密鑰
* @return 驗(yàn)證結(jié)果
*/
@SuppressWarnings("rawtypes")
public static boolean isWechatSign(SortedMap<String, String> smap,String apiKey) {
StringBuffer sb = new StringBuffer();
Set es = smap.entrySet();
Iterator it = es.iterator();
while (it.hasNext()) {
Map.Entry entry = (Map.Entry) it.next();
String k = (String) entry.getKey();
String v = (String) entry.getValue();
if (!"sign".equals(k) && null != v && !"".equals(v) && !"key".equals(k)) {
sb.append(k + "=" + v + "&");
}
}
sb.append("key=" + apiKey);
/** 驗(yàn)證的簽名 */
String sign = MD5Util.MD5Encode(sb.toString(), "utf-8").toUpperCase();
/** 微信端返回的合法簽名 */
String validSign = ((String) smap.get("sign")).toUpperCase();
return validSign.equals(sign);
}