diff --git a/app/Libs/AlipayF2F.class.php b/app/Libs/AlipayF2F.class.php
index d72df22..2bf35d4 100644
--- a/app/Libs/AlipayF2F.class.php
+++ b/app/Libs/AlipayF2F.class.php
@@ -47,15 +47,16 @@ class AlipayF2F
         $options->gatewayHost = 'openapi.alipay.com';
         $options->signType = 'RSA2';
 
+        // 为避免私钥随源码泄露，推荐从文件中读取私钥字符串而不是写入源码中
+        $options->merchantPrivateKey = env("ALI_PRIVATE_KEY");
+
         $options->appId = env("ALI_APP_ID");
         $options->alipayCertPath = env("ALI_CERT_ALIPAY");
         $options->alipayRootCertPath = env("ALI_CERT_ROOT");
         $options->merchantCertPath = env("ALI_CERT_APP");
 
-        // 为避免私钥随源码泄露，推荐从文件中读取私钥字符串而不是写入源码中
-        $options->merchantPrivateKey = env("ALI_PRIVATE_KEY");
         //注：如果采用非证书模式，则无需赋值上面的三个证书路径，改为赋值如下的支付宝公钥字符串即可
-        $options->alipayPublicKey = env("ALI_PUBLIC_KEY");
+        //$options->alipayPublicKey = env("ALI_PUBLIC_KEY");
 
         //可设置异步通知接收服务地址（可选）
         $options->notifyUrl = "";