查询保单授权信息
更新时间:2026.01.14商户通过商户保险编号查询该笔保单的授权信息。通过此接口,商户可以获知用户是否已完成授权、授权的具体时间,以及当前的授权状态等 。
接口说明
支持商户:【普通商户】
请求方式:【GET】/v3/inspolicymgr/deduct/authorizations/{out_insurance_no}
请求域名:【主域名】https://api.mch.weixin.qq.com 使用该域名将访问就近的接入点
【备域名】https://api2.mch.weixin.qq.com 使用该域名将访问异地的接入点 ,指引点击查看
请求参数
Header HTTP头参数
Authorization 必填 string
请参考签名认证生成认证信息
Accept 必填 string
请设置为application/json
path 路径参数
out_insurance_no 必填 string(32)
【商户保险编号】 商户侧的保单唯一值,商户自定义字段,商户侧需保证该商户号下的唯一性。只能是数字、大小写字母的组合。字段作为整个保单管理流程的保单的唯一标识
请求示例
curl
Java
Go
GET
1curl -X GET \ 2 https://api.mch.weixin.qq.com/v3/inspolicymgr/deduct/authorizations/Auisihsiahishishi4hihsid123418id \ 3 -H "Authorization: WECHATPAY2-SHA256-RSA2048 mchid=\"1900000001\",..." \ 4 -H "Accept: application/json" 5
需配合微信支付工具库 WXPayUtility 使用,请参考Java
1package com.java.demo; 2 3import com.java.utils.WXPayUtility; // 引用微信支付工具库,参考:https://pay.weixin.qq.com/doc/v3/merchant/4014931831 4 5import com.google.gson.annotations.SerializedName; 6import com.google.gson.annotations.Expose; 7import okhttp3.MediaType; 8import okhttp3.OkHttpClient; 9import okhttp3.Request; 10import okhttp3.RequestBody; 11import okhttp3.Response; 12 13import java.io.IOException; 14import java.io.UncheckedIOException; 15import java.security.PrivateKey; 16import java.security.PublicKey; 17import java.util.ArrayList; 18import java.util.HashMap; 19import java.util.List; 20import java.util.Map; 21 22/** 23 * 查询保单授权信息 24 */ 25public class QueryAuthorization { 26 private static String HOST = "https://api.mch.weixin.qq.com"; 27 private static String METHOD = "GET"; 28 private static String PATH = "/v3/inspolicymgr/deduct/authorizations/{out_insurance_no}"; 29 30 public static void main(String[] args) { 31 // TODO: 请准备商户开发必要参数,参考:https://pay.weixin.qq.com/doc/v3/merchant/4013070756 32 QueryAuthorization client = new QueryAuthorization( 33 "19xxxxxxxx", // 商户号,是由微信支付系统生成并分配给每个商户的唯一标识符,商户号获取方式参考 https://pay.weixin.qq.com/doc/v3/merchant/4013070756 34 "1DDE55AD98Exxxxxxxxxx", // 商户API证书序列号,如何获取请参考 https://pay.weixin.qq.com/doc/v3/merchant/4013053053 35 "/path/to/apiclient_key.pem", // 商户API证书私钥文件路径,本地文件路径 36 "PUB_KEY_ID_xxxxxxxxxxxxx", // 微信支付公钥ID,如何获取请参考 https://pay.weixin.qq.com/doc/v3/merchant/4013038816 37 "/path/to/wxp_pub.pem" // 微信支付公钥文件路径,本地文件路径 38 ); 39 40 QueryAuthorizationRequest request = new QueryAuthorizationRequest(); 41 request.outInsuranceNo = "Auisihsiahishishi4hihsid123418id"; 42 try { 43 AuthorizationEntity response = client.run(request); 44 // TODO: 请求成功,继续业务逻辑 45 System.out.println(response); 46 } catch (WXPayUtility.ApiException e) { 47 // TODO: 请求失败,根据状态码执行不同的逻辑 48 e.printStackTrace(); 49 } 50 } 51 52 public AuthorizationEntity run(QueryAuthorizationRequest request) { 53 String uri = PATH; 54 uri = uri.replace("{out_insurance_no}", WXPayUtility.urlEncode(request.outInsuranceNo)); 55 56 Request.Builder reqBuilder = new Request.Builder().url(HOST + uri); 57 reqBuilder.addHeader("Accept", "application/json"); 58 reqBuilder.addHeader("Wechatpay-Serial", wechatPayPublicKeyId); 59 reqBuilder.addHeader("Authorization", WXPayUtility.buildAuthorization(mchid, certificateSerialNo, privateKey, METHOD, uri, null)); 60 reqBuilder.method(METHOD, null); 61 Request httpRequest = reqBuilder.build(); 62 63 // 发送HTTP请求 64 OkHttpClient client = new OkHttpClient.Builder().build(); 65 try (Response httpResponse = client.newCall(httpRequest).execute()) { 66 String respBody = WXPayUtility.extractBody(httpResponse); 67 if (httpResponse.code() >= 200 && httpResponse.code() < 300) { 68 // 2XX 成功,验证应答签名 69 WXPayUtility.validateResponse(this.wechatPayPublicKeyId, this.wechatPayPublicKey, 70 httpResponse.headers(), respBody); 71 72 // 从HTTP应答报文构建返回数据 73 return WXPayUtility.fromJson(respBody, AuthorizationEntity.class); 74 } else { 75 throw new WXPayUtility.ApiException(httpResponse.code(), respBody, httpResponse.headers()); 76 } 77 } catch (IOException e) { 78 throw new UncheckedIOException("Sending request to " + uri + " failed.", e); 79 } 80 } 81 82 private final String mchid; 83 private final String certificateSerialNo; 84 private final PrivateKey privateKey; 85 private final String wechatPayPublicKeyId; 86 private final PublicKey wechatPayPublicKey; 87 88 public QueryAuthorization(String mchid, String certificateSerialNo, String privateKeyFilePath, String wechatPayPublicKeyId, String wechatPayPublicKeyFilePath) { 89 this.mchid = mchid; 90 this.certificateSerialNo = certificateSerialNo; 91 this.privateKey = WXPayUtility.loadPrivateKeyFromPath(privateKeyFilePath); 92 this.wechatPayPublicKeyId = wechatPayPublicKeyId; 93 this.wechatPayPublicKey = WXPayUtility.loadPublicKeyFromPath(wechatPayPublicKeyFilePath); 94 } 95 96 public static class QueryAuthorizationRequest { 97 @SerializedName("out_insurance_no") 98 @Expose(serialize = false) 99 public String outInsuranceNo; 100 } 101 102 public static class AuthorizationEntity { 103 @SerializedName("out_insurance_no") 104 public String outInsuranceNo; 105 106 @SerializedName("appid") 107 public String appid; 108 109 @SerializedName("plan_id") 110 public String planId; 111 112 @SerializedName("out_contract_code") 113 public String outContractCode; 114 115 @SerializedName("insurance_name") 116 public String insuranceName; 117 118 @SerializedName("auth_state") 119 public AuthState authState; 120 121 @SerializedName("user_auth_time") 122 public String userAuthTime; 123 } 124 125 public enum AuthState { 126 @SerializedName("AUTH_STATE_INIT") 127 AUTH_STATE_INIT, 128 @SerializedName("AUTH_STATE_PENDING") 129 AUTH_STATE_PENDING, 130 @SerializedName("AUTH_STATE_GRANTED") 131 AUTH_STATE_GRANTED, 132 @SerializedName("AUTH_STATE_DENIED") 133 AUTH_STATE_DENIED, 134 @SerializedName("AUTH_STATE_EXPIRED") 135 AUTH_STATE_EXPIRED 136 } 137 138} 139
需配合微信支付工具库 wxpay_utility 使用,请参考Go
1package main 2 3import ( 4 "demo/wxpay_utility" // 引用微信支付工具库,参考 https://pay.weixin.qq.com/doc/v3/merchant/4015119334 5 "encoding/json" 6 "fmt" 7 "net/http" 8 "net/url" 9 "strings" 10) 11 12func main() { 13 // TODO: 请准备商户开发必要参数,参考:https://pay.weixin.qq.com/doc/v3/merchant/4013070756 14 config, err := wxpay_utility.CreateMchConfig( 15 "19xxxxxxxx", // 商户号,是由微信支付系统生成并分配给每个商户的唯一标识符,商户号获取方式参考 https://pay.weixin.qq.com/doc/v3/merchant/4013070756 16 "1DDE55AD98Exxxxxxxxxx", // 商户API证书序列号,如何获取请参考 https://pay.weixin.qq.com/doc/v3/merchant/4013053053 17 "/path/to/apiclient_key.pem", // 商户API证书私钥文件路径,本地文件路径 18 "PUB_KEY_ID_xxxxxxxxxxxxx", // 微信支付公钥ID,如何获取请参考 https://pay.weixin.qq.com/doc/v3/merchant/4013038816 19 "/path/to/wxp_pub.pem", // 微信支付公钥文件路径,本地文件路径 20 ) 21 if err != nil { 22 fmt.Println(err) 23 return 24 } 25 26 request := &QueryAuthorizationRequest{ 27 OutInsuranceNo: wxpay_utility.String("Auisihsiahishishi4hihsid123418id"), 28 } 29 30 response, err := QueryAuthorization(config, request) 31 if err != nil { 32 fmt.Printf("请求失败: %+v\n", err) 33 // TODO: 请求失败,根据状态码执行不同的处理 34 return 35 } 36 37 // TODO: 请求成功,继续业务逻辑 38 fmt.Printf("请求成功: %+v\n", response) 39} 40 41func QueryAuthorization(config *wxpay_utility.MchConfig, request *QueryAuthorizationRequest) (response *AuthorizationEntity, err error) { 42 const ( 43 host = "https://api.mch.weixin.qq.com" 44 method = "GET" 45 path = "/v3/inspolicymgr/deduct/authorizations/{out_insurance_no}" 46 ) 47 48 reqUrl, err := url.Parse(fmt.Sprintf("%s%s", host, path)) 49 if err != nil { 50 return nil, err 51 } 52 reqUrl.Path = strings.Replace(reqUrl.Path, "{out_insurance_no}", url.PathEscape(*request.OutInsuranceNo), -1) 53 httpRequest, err := http.NewRequest(method, reqUrl.String(), nil) 54 if err != nil { 55 return nil, err 56 } 57 httpRequest.Header.Set("Accept", "application/json") 58 httpRequest.Header.Set("Wechatpay-Serial", config.WechatPayPublicKeyId()) 59 authorization, err := wxpay_utility.BuildAuthorization(config.MchId(), config.CertificateSerialNo(), config.PrivateKey(), method, reqUrl.RequestURI(), nil) 60 if err != nil { 61 return nil, err 62 } 63 httpRequest.Header.Set("Authorization", authorization) 64 65 client := &http.Client{} 66 httpResponse, err := client.Do(httpRequest) 67 if err != nil { 68 return nil, err 69 } 70 respBody, err := wxpay_utility.ExtractResponseBody(httpResponse) 71 if err != nil { 72 return nil, err 73 } 74 if httpResponse.StatusCode >= 200 && httpResponse.StatusCode < 300 { 75 // 2XX 成功,验证应答签名 76 err = wxpay_utility.ValidateResponse( 77 config.WechatPayPublicKeyId(), 78 config.WechatPayPublicKey(), 79 &httpResponse.Header, 80 respBody, 81 ) 82 if err != nil { 83 return nil, err 84 } 85 response := &AuthorizationEntity{} 86 if err := json.Unmarshal(respBody, response); err != nil { 87 return nil, err 88 } 89 90 return response, nil 91 } else { 92 return nil, wxpay_utility.NewApiException( 93 httpResponse.StatusCode, 94 httpResponse.Header, 95 respBody, 96 ) 97 } 98} 99 100type QueryAuthorizationRequest struct { 101 OutInsuranceNo *string `json:"out_insurance_no,omitempty"` 102} 103 104func (o *QueryAuthorizationRequest) MarshalJSON() ([]byte, error) { 105 type Alias QueryAuthorizationRequest 106 a := &struct { 107 OutInsuranceNo *string `json:"out_insurance_no,omitempty"` 108 *Alias 109 }{ 110 // 序列化时移除非 Body 字段 111 OutInsuranceNo: nil, 112 Alias: (*Alias)(o), 113 } 114 return json.Marshal(a) 115} 116 117type AuthorizationEntity struct { 118 OutInsuranceNo *string `json:"out_insurance_no,omitempty"` 119 Appid *string `json:"appid,omitempty"` 120 PlanId *string `json:"plan_id,omitempty"` 121 OutContractCode *string `json:"out_contract_code,omitempty"` 122 InsuranceName *string `json:"insurance_name,omitempty"` 123 AuthState *AuthState `json:"auth_state,omitempty"` 124 UserAuthTime *string `json:"user_auth_time,omitempty"` 125} 126 127type AuthState string 128 129func (e AuthState) Ptr() *AuthState { 130 return &e 131} 132 133const ( 134 AUTHSTATE_AUTH_STATE_INIT AuthState = "AUTH_STATE_INIT" 135 AUTHSTATE_AUTH_STATE_PENDING AuthState = "AUTH_STATE_PENDING" 136 AUTHSTATE_AUTH_STATE_GRANTED AuthState = "AUTH_STATE_GRANTED" 137 AUTHSTATE_AUTH_STATE_DENIED AuthState = "AUTH_STATE_DENIED" 138 AUTHSTATE_AUTH_STATE_EXPIRED AuthState = "AUTH_STATE_EXPIRED" 139) 140
应答参数
200 OK
out_insurance_no 必填 string(32)
【商户保险编号】 商户侧的保单唯一值,商户自定义字段,商户侧需保证该商户号下的唯一性。只能是数字、大小写字母的组合。字段作为整个保单管理流程的保单的唯一标识
appid 必填 string(32)
【公众账号ID】 是商户在微信开放平台(移动应用)或公众平台(公众号/小程序)上申请的一个唯一标识。需确保该appid与mchid有绑定关系,具体请参考普通商户模式开发必要参数说明。
plan_id 必填 string
【保险委托代扣模板ID】 是商户在微信支付保险委托代扣平台申请模板, 得到的唯一标识。
out_contract_code 必填 string(32)
【商户签约协议号】 商户侧的签约协议号,商户自定义字段,商户侧需保证唯一性。只能是数字、大小写字母的组合。
insurance_name 必填 string(50)
【保险名称】 用户投保的保险名称,用于展示给用户
auth_state 必填 string
【授权状态】 用户授权保单状态
可选取值
AUTH_STATE_INIT: 【初始态】商户提交申请后为初始态AUTH_STATE_PENDING: 【待授权】等待用户授权状态AUTH_STATE_GRANTED: 【已授权】用户授权上传保单AUTH_STATE_DENIED: 【用户不授权】用户不授权上传保单AUTH_STATE_EXPIRED: 【已失效】商户上传保单后授权信息转为已失效;商户超过30天未上传保单转为失效
user_auth_time 选填 string
【用户授权时间】 用户授权后返回;遵循rfc3339标准格式:yyyy-MM-DDTHH:mm:ss+TIMEZONE。yyyy-MM-DD 表示年月日;T 字符用于分隔日期和时间部分;HH:mm:ss 表示具体的时分秒;TIMEZONE 表示时区(例如,+08:00 对应东八区时间,即北京时间)。 示例:2025-05-20T13:29:35+08:00 表示北京时间2025年5月20日13点29分35秒。
应答示例
200 OK
1{ 2 "out_insurance_no" : "Auisihsiahishishi4hihsid123418id", 3 "appid" : "wx7f3f0032b6e6f0cc", 4 "plan_id" : "12535", 5 "out_contract_code" : "G7mQa2RfT9vXe4Bc1Ht5YpLwN3sJd6Zr8Ue2Sa", 6 "insurance_name" : "微医保·百万医疗险", 7 "auth_state" : "AUTH_STATE_GRANTED", 8 "user_auth_time" : "2025-09-21T17:11:12+08:00" 9} 10
错误码
以下是本接口返回的错误码列表。详细错误码规则,请参考微信支付接口规则-错误码和错误提示
文档是否有帮助
