diff --git a/application/plugins/view/weixinwebauthorization/admin/admin/index.html b/application/plugins/view/weixinwebauthorization/admin/admin/index.html
index 64fa0cc158dc7d6a3b99581e4d78f1e672c28c2b..7c498a3b6f0bf1a240d5079e6e6a589ca4f99850 100755
--- a/application/plugins/view/weixinwebauthorization/admin/admin/index.html
+++ b/application/plugins/view/weixinwebauthorization/admin/admin/index.html
@@ -19,6 +19,16 @@
                     {{/if}}
                 </div>
             </div>
+            <div class="items">
+                <label>AppSecret</label>
+                <div>
+                    {{if !empty($data['secret'])}}
+                        {{$data.secret}}
+                    {{else /}}
+                        未填写
+                    {{/if}}
+                </div>
+            </div>
             <div class="items">
                 <label>授权方式</label>
                 <div>
diff --git a/application/plugins/view/weixinwebauthorization/admin/admin/saveinfo.html b/application/plugins/view/weixinwebauthorization/admin/admin/saveinfo.html
index e91ad8e42d7c5ed7df711be97d8d448287289d37..139179477b0eacba3a648dfae584df55ad775695 100755
--- a/application/plugins/view/weixinwebauthorization/admin/admin/saveinfo.html
+++ b/application/plugins/view/weixinwebauthorization/admin/admin/saveinfo.html
@@ -15,6 +15,11 @@
                 <input type="text" name="appid" placeholder="appid" maxlength="30" data-validation-message="appid格式最多 30 个字符" class="am-radius" {{if !empty($data['appid'])}} value="{{$data.appid}}"{{/if}} />
             </div>
 
+            <div class="am-form-group">
+                <label>secret<span class="am-form-group-label-tips">公众号/服务号AppSecret</span></label>
+                <input type="text" name="secret" placeholder="secret" maxlength="60" data-validation-message="secret格式最多 60 个字符" class="am-radius" {{if !empty($data['secret'])}} value="{{$data.secret}}"{{/if}} />
+            </div>
+
             <div class="am-form-group">
                 <label>授权方式<span class="am-form-group-label-tips">默认 静默授权方式</span></label>
                 <div>
diff --git a/application/plugins/weixinwebauthorization/index/Auth.php b/application/plugins/weixinwebauthorization/index/Auth.php
index a789b5c1927040aa1d4c9289d3a1e11a82a72a09..42147533ce9af704cfb5b6ca3fb5932096db1e4e 100644
--- a/application/plugins/weixinwebauthorization/index/Auth.php
+++ b/application/plugins/weixinwebauthorization/index/Auth.php
@@ -30,7 +30,7 @@ class Auth extends Controller
      * @datetime 2019-02-07T08:21:54+0800
      * @param    [array]          $params [输入参数]
      */
-    public function index($params = [])
+    public function Index($params = [])
     {
         $ret = PluginsService::PluginsData('weixinwebauthorization');
         if($ret['code'] == 0)
@@ -49,7 +49,7 @@ class Auth extends Controller
             $auth_type = (isset($ret['data']['auth_type']) && $ret['data']['auth_type'] == 1) ? 'snsapi_userinfo' : 'snsapi_base';
 
             // 授权code
-            $url = 'https://open.weixin.qq.com/connect/oauth2/authorize?appid=4444&redirect_uri='.$redirect_uri.'&response_type=code&scope='.$auth_type.'&state=login#wechat_redirect';
+            $url = 'https://open.weixin.qq.com/connect/oauth2/authorize?appid='.$ret['data']['appid'].'&redirect_uri='.$redirect_uri.'&response_type=code&scope='.$auth_type.'&state=login#wechat_redirect';
             return redirect($url);
         } else {
             $this->assign('msg', $ret['msg']);
@@ -65,7 +65,7 @@ class Auth extends Controller
      * @datetime 2019-02-07T08:21:54+0800
      * @param    [array]          $params [输入参数]
      */
-    public function callback($params = [])
+    public function Callback($params = [])
     {
         // 参数校验
         if(empty($params['code']))
@@ -73,11 +73,72 @@ class Auth extends Controller
             $this->assign('msg', '授权code为空');
             return $this->fetch('public/tips_error');
         }
+
+        // 本地获取access_token
+
+        // 远程获取access_token
+        $ret = $this->RemoteAccessToken($params);
+
         echo '<pre>';
         print_r($params);
 
         echo __MY_VIEW_URL__;
     }
 
+    /**
+     * 获取access_token
+     * @author  Devil
+     * @blog    http://gong.gg/
+     * @version 1.0.0
+     * @date    2019-05-24
+     * @desc    description
+     * @param   array           $params [description]
+     */
+    private function AccessToken($params = [])
+    {
+        
+        
+    }
+
+    /**
+     * 远程获取access_token
+     * @author  Devil
+     * @blog    http://gong.gg/
+     * @version 1.0.0
+     * @date    2019-05-24
+     * @desc    description
+     * @param   array           $params [description]
+     */
+    private function RemoteAccessToken($params = [])
+    {
+        $ret = PluginsService::PluginsData('weixinwebauthorization');
+        if($ret['code'] == 0)
+        {
+            // 参数校验
+            if(empty($ret['data']['appid']))
+            {
+                return DataReturn('appid未配置', -1);
+            }
+            if(empty($ret['data']['secret']))
+            {
+                return DataReturn('secret未配置', -1);
+            }
+            if(empty($params['code']))
+            {
+                return DataReturn('code授权码为空', -1);
+            }
+
+            // 获取access_token
+            $url = 'https://api.weixin.qq.com/sns/oauth2/access_token?appid='.$ret['data']['appid'].'&secret='.$ret['data']['secret'].'&code='.$params['code'].'&grant_type=authorization_code';
+            $data = json_decode(file_get_contents($url), true);
+
+            echo '<pre>';
+            print_r($data);die;
+
+        } else {
+            return DataReturn($ret['msg'], -1);
+        }
+    }
+
 }
 ?>
\ No newline at end of file