PageRenderTime 42ms CodeModel.GetById 15ms RepoModel.GetById 1ms app.codeStats 0ms

/htdocs/public/paypal/paymentok.php

https://bitbucket.org/speedealing/speedealing
PHP | 199 lines | 122 code | 33 blank | 44 comment | 21 complexity | 74a8165f276eb936aa7b5ed2ef96da0d MD5 | raw file
Possible License(s): LGPL-3.0, LGPL-2.1, GPL-3.0, MIT 
    

  1. <?php
    2. 

  2. /* Copyright (C) 2001-2002	Rodolphe Quiedeville	<rodolphe@quiedeville.org>
    3. 

  3.  * Copyright (C) 2006-2009	Laurent Destailleur		<eldy@users.sourceforge.net>
    4. 

  4.  * Copyright (C) 2012		Regis Houssin			<regis.houssin@capnetworks.com>
    5. 

  5.  *
    6. 

  6.  * This program is free software; you can redistribute it and/or modify
    7. 

  7.  * it under the terms of the GNU General Public License as published by
    8. 

  8.  * the Free Software Foundation; either version 3 of the License, or
    9. 

  9.  * (at your option) any later version.
    10. 

  10.  *
    11. 

  11.  * This program is distributed in the hope that it will be useful,
    12. 

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    13. 

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    14. 

  14.  * GNU General Public License for more details.
    15. 

  15.  *
    16. 

  16.  * You should have received a copy of the GNU General Public License
    17. 

  17.  * along with this program. If not, see <http://www.gnu.org/licenses/>.
    18. 

  18.  */
    19. 

  19. 

  20. /**
    21. 

  21.  *     	\file       htdocs/public/paypal/paymentok.php
    22. 

  22.  *		\ingroup    paypal
    23. 

  23.  *		\brief      File to show page after a successful payment
    24. 

  24.  *                  This page is called by paypal with url provided to payal competed with parameter TOKEN=xxx
    25. 

  25.  *                  This token can be used to get more informations.
    26. 

  26.  *		\author	    Laurent Destailleur
    27. 

  27.  */
    28. 

  28. 

  29. define("NOLOGIN",1);		// This means this output page does not require to be logged.
    30. 

  30. define("NOCSRFCHECK",1);	// We accept to go on this page from external web site.
    31. 

  31. 

  32. // For MultiCompany module
    33. 

  33. $entity=(! empty($_GET['entity']) ? (int) $_GET['entity'] : (! empty($_POST['entity']) ? (int) $_POST['entity'] : 1));
    34. 

  34. if (is_int($entity))
    35. 

  35. {
    36. 

  36. 	define("DOLENTITY", $entity);
    37. 

  37. }
    38. 

  38. 

  39. require '../../main.inc.php';
    40. 

  40. require_once DOL_DOCUMENT_ROOT.'/paypal/lib/paypal.lib.php';
    41. 

  41. require_once DOL_DOCUMENT_ROOT.'/paypal/lib/paypalfunctions.lib.php';
    42. 

  42. require_once DOL_DOCUMENT_ROOT.'/core/lib/company.lib.php';
    43. 

  43. 

  44. // Security check
    45. 

  45. if (empty($conf->paypal->enabled)) accessforbidden('',1,1,1);
    46. 

  46. 

  47. $langs->load("main");
    48. 

  48. $langs->load("other");
    49. 

  49. $langs->load("dict");
    50. 

  50. $langs->load("bills");
    51. 

  51. $langs->load("companies");
    52. 

  52. $langs->load("paybox");
    53. 

  53. $langs->load("paypal");
    54. 

  54. 

  55. // Clean parameters
    56. 

  56. $PAYPAL_API_USER="";
    57. 

  57. if (! empty($conf->global->PAYPAL_API_USER)) $PAYPAL_API_USER=$conf->global->PAYPAL_API_USER;
    58. 

  58. $PAYPAL_API_PASSWORD="";
    59. 

  59. if (! empty($conf->global->PAYPAL_API_PASSWORD)) $PAYPAL_API_PASSWORD=$conf->global->PAYPAL_API_PASSWORD;
    60. 

  60. $PAYPAL_API_SIGNATURE="";
    61. 

  61. if (! empty($conf->global->PAYPAL_API_SIGNATURE)) $PAYPAL_API_SIGNATURE=$conf->global->PAYPAL_API_SIGNATURE;
    62. 

  62. $PAYPAL_API_SANDBOX="";
    63. 

  63. if (! empty($conf->global->PAYPAL_API_SANDBOX)) $PAYPAL_API_SANDBOX=$conf->global->PAYPAL_API_SANDBOX;
    64. 

  64. $PAYPAL_API_OK="";
    65. 

  65. if ($urlok) $PAYPAL_API_OK=$urlok;
    66. 

  66. $PAYPAL_API_KO="";
    67. 

  67. if ($urlko) $PAYPAL_API_KO=$urlko;
    68. 

  68. if (empty($PAYPAL_API_USER))
    69. 

  69. {
    70. 

  70.     dol_print_error('',"Paypal setup param PAYPAL_API_USER not defined");
    71. 

  71.     return -1;
    72. 

  72. }
    73. 

  73. if (empty($PAYPAL_API_PASSWORD))
    74. 

  74. {
    75. 

  75.     dol_print_error('',"Paypal setup param PAYPAL_API_PASSWORD not defined");
    76. 

  76.     return -1;
    77. 

  77. }
    78. 

  78. if (empty($PAYPAL_API_SIGNATURE))
    79. 

  79. {
    80. 

  80.     dol_print_error('',"Paypal setup param PAYPAL_API_SIGNATURE not defined");
    81. 

  81.     return -1;
    82. 

  82. }
    83. 

  83. 

  84. 

  85. /*
    86. 

  86.  * Actions
    87. 

  87.  */
    88. 

  88. 

  89. 

  90. 

  91. /*
    92. 

  92.  * View
    93. 

  93.  */
    94. 

  94. 

  95. dol_syslog("Callback url when a PayPal payment was done. query_string=".$_SERVER["QUERY_STRING"]);
    96. 

  96. 

  97. llxHeaderPaypal($langs->trans("PaymentForm"));
    98. 

  98. 

  99. 

  100. print '<span id="dolpaymentspan"></span>'."\n";
    101. 

  101. print '<div id="dolpaymentdiv" align="center">'."\n";
    102. 

  102. 

  103. $source=GETPOST('source');
    104. 

  104. $ref=GETPOST('ref');
    105. 

  105. $PAYPALTOKEN=GETPOST('TOKEN');
    106. 

  106. if (empty($PAYPALTOKEN)) $PAYPALTOKEN=GETPOST('token');
    107. 

  107. $PAYPALPAYERID=GETPOST('PAYERID');
    108. 

  108. if (empty($PAYPALPAYERID)) $PAYPALPAYERID=GETPOST('PayerID');
    109. 

  109. $PAYPALFULLTAG=GETPOST('FULLTAG');
    110. 

  110. if (empty($PAYPALFULLTAG)) $PAYPALFULLTAG=GETPOST('fulltag');
    111. 

  111. 

  112. if ($PAYPALTOKEN)
    113. 

  113. {
    114. 

  114.     // Get on url call
    115. 

  115.     $token              = $PAYPALTOKEN;
    116. 

  116.     $fulltag            = $PAYPALFULLTAG;
    117. 

  117.     $payerID            = $PAYPALPAYERID;
    118. 

  118.     // Set by newpayment.php
    119. 

  119.     $paymentType        = $_SESSION['PaymentType'];
    120. 

  120.     $currencyCodeType   = $_SESSION['currencyCodeType'];
    121. 

  121.     $FinalPaymentAmt    = $_SESSION["Payment_Amount"];
    122. 

  122.     // From env
    123. 

  123.     $ipaddress          = $_SESSION['ipaddress'];
    124. 

  124. 

  125. 

  126.     if (! empty($paymentType))
    127. 

  127.     {
    128. 

  128.         dol_syslog("We call GetExpressCheckoutDetails");
    129. 

  129.         $resArray=getDetails($token);
    130. 

  130.         //var_dump($resarray);
    131. 

  131. 

  132.         dol_syslog("We call DoExpressCheckoutPayment token=".$token." paymentType=".$paymentType." currencyCodeType=".$currencyCodeType." payerID=".$payerID." ipaddress=".$ipaddress." FinalPaymentAmt=".$FinalPaymentAmt." fulltag=".$fulltag);
    133. 

  133.         $resArray=confirmPayment($token, $paymentType, $currencyCodeType, $payerID, $ipaddress, $FinalPaymentAmt, $fulltag);
    134. 

  134. 

  135.         $ack = strtoupper($resArray["ACK"]);
    136. 

  136.         if($ack=="SUCCESS" || $ack=="SUCCESSWITHWARNING")
    137. 

  137.         {
    138. 

  138.         	$object = (object) 'paypal';
    139. 

  139. 

  140.         	$object->source		= $source;
    141. 

  141.         	$object->ref		= $ref;
    142. 

  142.         	$object->payerID	= $payerID;
    143. 

  143.         	$object->fulltag	= $fulltag;
    144. 

  144.         	$object->resArray	= $resArray;
    145. 

  145. 

  146.             // resArray was built from a string like that
    147. 

  147.             // TOKEN=EC%2d1NJ057703V9359028&TIMESTAMP=2010%2d11%2d01T11%3a40%3a13Z&CORRELATIONID=1efa8c6a36bd8&ACK=Success&VERSION=56&BUILD=1553277&TRANSACTIONID=9B994597K9921420R&TRANSACTIONTYPE=expresscheckout&PAYMENTTYPE=instant&ORDERTIME=2010%2d11%2d01T11%3a40%3a12Z&AMT=155%2e57&FEEAMT=5%2e54&TAXAMT=0%2e00&CURRENCYCODE=EUR&PAYMENTSTATUS=Completed&PENDINGREASON=None&REASONCODE=None
    148. 

  148.             $PAYMENTSTATUS=urldecode($resArray["PAYMENTSTATUS"]);   // Should contains 'Completed'
    149. 

  149.             $TRANSACTIONID=urldecode($resArray["TRANSACTIONID"]);
    150. 

  150.             $NOTE=urldecode($resArray["NOTE"]);
    151. 

  151. 

  152.             print $langs->trans("YourPaymentHasBeenRecorded")."<br>\n";
    153. 

  153.             print $langs->trans("ThisIsTransactionId",$TRANSACTIONID)."<br>\n";
    154. 

  154.             if (! empty($conf->global->PAYPAL_MESSAGE_OK)) print $conf->global->PAYPAL_MESSAGE_OK;
    155. 

  155. 

  156.             // Appel des triggers
    157. 

  157.             include_once DOL_DOCUMENT_ROOT . '/core/class/interfaces.class.php';
    158. 

  158.             $interface=new Interfaces($db);
    159. 

  159.             $result=$interface->run_triggers('PAYPAL_PAYMENT_OK',$object,$user,$langs,$conf);
    160. 

  160.             if ($result < 0) { $error++; $errors=$interface->errors; }
    161. 

  161.             // Fin appel triggers
    162. 

  162.         }
    163. 

  163.         else
    164. 

  164.         {
    165. 

  165.             //Display a user friendly Error on the page using any of the following error information returned by PayPal
    166. 

  166.             $ErrorCode = urldecode($resArray["L_ERRORCODE0"]);
    167. 

  167.             $ErrorShortMsg = urldecode($resArray["L_SHORTMESSAGE0"]);
    168. 

  168.             $ErrorLongMsg = urldecode($resArray["L_LONGMESSAGE0"]);
    169. 

  169.             $ErrorSeverityCode = urldecode($resArray["L_SEVERITYCODE0"]);
    170. 

  170. 

  171.             echo "DoExpressCheckoutPayment API call failed. ";
    172. 

  172.             echo "Detailed Error Message: " . $ErrorLongMsg;
    173. 

  173.             echo "Short Error Message: " . $ErrorShortMsg;
    174. 

  174.             echo "Error Code: " . $ErrorCode;
    175. 

  175.             echo "Error Severity Code: " . $ErrorSeverityCode;
    176. 

  176. 

  177.             if ($mysoc->email) echo "\nPlease, send a screenshot of this page to ".$mysoc->email;
    178. 

  178.         }
    179. 

  179.     }
    180. 

  180.     else
    181. 

  181.     {
    182. 

  182.         dol_print_error('','Session expired');
    183. 

  183.     }
    184. 

  184. }
    185. 

  185. else
    186. 

  186. {
    187. 

  187.     // No TOKEN parameter in URL
    188. 

  188.     dol_print_error('','No TOKEN parameter in URL');
    189. 

  189. }
    190. 

  190. 

  191. print "\n</div>\n";
    192. 

  192. 

  193. html_print_paypal_footer($mysoc,$langs);
    194. 

  194. 

  195. 

  196. $db->close();
    197. 

  197. 

  198. llxFooterPaypal();
    199. 

  199. ?>
    200. 

  200.