PageRenderTime 25ms CodeModel.GetById 0ms RepoModel.GetById 0ms app.codeStats 0ms

/wp-content/plugins/s2member/includes/classes/paypal-notify-in.inc.php

https://gitlab.com/Gashler/dp
PHP | 213 lines | 144 code | 28 blank | 41 comment | 49 complexity | 279f5ef532ac0ae155782622045f126c MD5 | raw file
    

  1. <?php
    2. 

  2. /**
    3. 

  3. * s2Member's PayPal® IPN handler (inner processing routines).
    4. 

  4. *
    5. 

  5. * Copyright: © 2009-2011
    6. 

  6. * {@link http://www.websharks-inc.com/ WebSharks, Inc.}
    7. 

  7. * (coded in the USA)
    8. 

  8. *
    9. 

  9. * Released under the terms of the GNU General Public License.
    10. 

  10. * You should have received a copy of the GNU General Public License,
    11. 

  11. * along with this software. In the main directory, see: /licensing/
    12. 

  12. * If not, see: {@link http://www.gnu.org/licenses/}.
    13. 

  13. *
    14. 

  14. * @package s2Member\PayPal
    15. 

  15. * @since 3.5
    16. 

  16. */
    17. 

  17. if (realpath (__FILE__) === realpath ($_SERVER["SCRIPT_FILENAME"]))
    18. 

  18. 	exit ("Do not access this file directly.");
    19. 

  19. 

  20. if (!class_exists ("c_ws_plugin__s2member_paypal_notify_in"))
    21. 

  21. 	{
    22. 

  22. 		/**
    23. 

  23. 		* s2Member's PayPal® IPN handler (inner processing routines).
    24. 

  24. 		*
    25. 

  25. 		* @package s2Member\PayPal
    26. 

  26. 		* @since 3.5
    27. 

  27. 		*/
    28. 

  28. 		class c_ws_plugin__s2member_paypal_notify_in
    29. 

  29. 			{
    30. 

  30. 				/**
    31. 

  31. 				* Handles PayPal® IPN processing.
    32. 

  32. 				*
    33. 

  33. 				* These same routines also handle s2Member Pro/PayPal® Pro operations;
    34. 

  34. 				* giving you the ability *(as needed)* to Hook into these routines using
    35. 

  35. 				* WordPress® Hooks/Filters; as seen in the source code below.
    36. 

  36. 				*
    37. 

  37. 				* Please do NOT modify the source code directly.
    38. 

  38. 				* Instead, use WordPress® Hooks/Filters.
    39. 

  39. 				*
    40. 

  40. 				* For example, if you'd like to add your own custom conditionals, use:
    41. 

  41. 				* ``add_filter ("ws_plugin__s2member_during_paypal_notify_conditionals", "your_function");``
    42. 

  42. 				*
    43. 

  43. 				* @package s2Member\PayPal
    44. 

  44. 				* @since 3.5
    45. 

  45. 				*
    46. 

  46. 				* @attaches-to ``add_action("init");``
    47. 

  47. 				*
    48. 

  48. 				* @return null Or exits script execution after handling IPN procesing.
    49. 

  49. 				*/
    50. 

  50. 				public static function paypal_notify ()
    51. 

  51. 					{
    52. 

  52. 						global /* For Multisite support. */ $current_site, $current_blog;
    53. 

  53. 

  54. 						do_action ("ws_plugin__s2member_before_paypal_notify", get_defined_vars ());
    55. 

  55. 

  56. 						if (!empty ($_GET["s2member_paypal_notify"]) && ($GLOBALS["WS_PLUGIN__"]["s2member"]["o"]["paypal_business"] || !empty ($_REQUEST["s2member_paypal_proxy"])))
    57. 

  57. 							{
    58. 

  58. 								@ignore_user_abort (true); // Important. Continue processing even if/when the connection is broken by the sending party.
    59. 

  59. 

  60. 								include_once ABSPATH . "wp-admin/includes/admin.php"; // Get administrative functions. Needed for `wp_delete_user()`.
    61. 

  61. 

  62. 								$email_configs_were_on = c_ws_plugin__s2member_email_configs::email_config_status (); // Filters on?
    63. 

  63. 								c_ws_plugin__s2member_email_configs::email_config_release (); // Release s2Member Filters.
    64. 

  64. 

  65. 								if (is_array ($paypal = c_ws_plugin__s2member_paypal_utilities::paypal_postvars ()) && ($_paypal = $paypal) && ($_paypal_s = serialize ($_paypal)))
    66. 

  66. 									{
    67. 

  67. 										$paypal["s2member_log"][] = "IPN received on: " . date ("D M j, Y g:i:s a T");
    68. 

  68. 										$paypal["s2member_log"][] = "s2Member POST vars verified " . ((!empty ($paypal["proxy_verified"])) ? "with a Proxy Key" : "through a POST back to PayPal®.");
    69. 

  69. 

  70. 										$payment_status_issues = "/^(failed|denied|expired|refunded|partially_refunded|reversed|reversal|canceled_reversal|voided)$/i";
    71. 

  71. 

  72. 										$paypal["subscr_gateway"] = (!empty ($_REQUEST["s2member_paypal_proxy"])) ? esc_html (trim (stripslashes ($_REQUEST["s2member_paypal_proxy"]))) : "paypal";
    73. 

  73. 

  74. 										$coupon = (!empty($_REQUEST["s2member_paypal_proxy_coupon"]) && is_array($_REQUEST["s2member_paypal_proxy_coupon"])) ? stripslashes_deep($_REQUEST["s2member_paypal_proxy_coupon"]) : array();
    75. 

  75. 										$coupon = (isset($coupon["full_coupon_code"], $coupon["coupon_code"], $coupon["affiliate_id"]) && is_string($coupon["full_coupon_code"]) && is_string($coupon["coupon_code"]) && is_string($coupon["affiliate_id"])) ? $coupon : array("full_coupon_code" => "", "coupon_code" => "", "affiliate_id" => "");
    76. 

  76. 

  77. 										if (empty ($paypal["custom"]) && !empty ($paypal["recurring_payment_id"])) // Lookup on Recurring Profiles?
    78. 

  78. 											$paypal["custom"] = c_ws_plugin__s2member_utils_users::get_user_custom_with ($paypal["recurring_payment_id"]);
    79. 

  79. 

  80. 										if (!empty ($paypal["custom"]) && preg_match ("/^" . preg_quote (preg_replace ("/\:([0-9]+)$/", "", $_SERVER["HTTP_HOST"]), "/") . "/i", $paypal["custom"]))
    81. 

  81. 											{
    82. 

  82. 												$paypal["s2member_log"][] = "s2Member originating domain ( `\$_SERVER[\"HTTP_HOST\"]` ) validated.";
    83. 

  83. 

  84. 												foreach(array_keys(get_defined_vars())as$__v)$__refs[$__v]=&$$__v;
    85. 

  85. 												if (!apply_filters ("ws_plugin__s2member_during_paypal_notify_conditionals", false, get_defined_vars ()))
    86. 

  86. 													{
    87. 

  87. 														unset /* Unset defined __refs, __v. */ ($__refs, $__v);
    88. 

  88. 

  89. 														if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_virtual_terminal::cp (get_defined_vars ())))
    90. 

  90. 															$paypal = $_paypal_cp;
    91. 

  91. 

  92. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_express_checkout::cp (get_defined_vars ())))
    93. 

  93. 															$paypal = $_paypal_cp;
    94. 

  94. 

  95. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_cart::cp (get_defined_vars ())))
    96. 

  96. 															$paypal = $_paypal_cp;
    97. 

  97. 

  98. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_send_money::cp (get_defined_vars ())))
    99. 

  99. 															$paypal = $_paypal_cp;
    100. 

  100. 

  101. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_web_accept_sp::cp (get_defined_vars ())))
    102. 

  102. 															$paypal = $_paypal_cp;
    103. 

  103. 

  104. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_wa_ccaps_wo_level::cp (get_defined_vars ())))
    105. 

  105. 															$paypal = $_paypal_cp;
    106. 

  106. 

  107. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_subscr_or_wa_w_level::cp (get_defined_vars ())))
    108. 

  108. 															$paypal = $_paypal_cp;
    109. 

  109. 

  110. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_rec_profile_creation_w_level::cp (get_defined_vars ())))
    111. 

  111. 															$paypal = $_paypal_cp;
    112. 

  112. 

  113. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_subscr_modify_w_level::cp (get_defined_vars ())))
    114. 

  114. 															$paypal = $_paypal_cp;
    115. 

  115. 

  116. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_subscr_or_rp_payment_w_level::cp (get_defined_vars ())))
    117. 

  117. 															$paypal = $_paypal_cp;
    118. 

  118. 

  119. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_subscr_or_rp_payment_failed_w_level::cp (get_defined_vars ())))
    120. 

  120. 															$paypal = $_paypal_cp;
    121. 

  121. 

  122. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_subscr_or_rp_cancellation_w_level::cp (get_defined_vars ())))
    123. 

  123. 															$paypal = $_paypal_cp;
    124. 

  124. 

  125. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_subscr_or_rp_eots_w_level::cp (get_defined_vars ())))
    126. 

  126. 															$paypal = $_paypal_cp;
    127. 

  127. 

  128. 														else if (($_paypal_cp = c_ws_plugin__s2member_paypal_notify_in_sp_refund_reversal::cp (get_defined_vars ())))
    129. 

  129. 															$paypal = $_paypal_cp;
    130. 

  130. 

  131. 														else // Ignoring this IPN request. The txn_type/status does NOT require any action.
    132. 

  132. 															$paypal["s2member_log"][] = "Ignoring this IPN request. The `txn_type/status` does NOT require any action on the part of s2Member.";
    133. 

  133. 													}
    134. 

  134. 												else // Else a custom conditional has been applied by Filters.
    135. 

  135. 													unset /* Unset defined __refs, __v. */ ($__refs, $__v);
    136. 

  136. 											}
    137. 

  137. 

  138. 										else if (!empty ($paypal["txn_type"]) && preg_match ("/^recurring_payment_profile_cancel$/i", $paypal["txn_type"]))
    139. 

  139. 											{
    140. 

  140. 												$paypal["s2member_log"][] = "Transaction type ( `recurring_payment_profile_cancel` ), but there is no match to an existing account; so verification of `\$_SERVER[\"HTTP_HOST\"]` was not possible.";
    141. 

  141. 												$paypal["s2member_log"][] = "It's likely this account was just upgraded/downgraded by s2Member Pro; so the Subscr. ID has probably been updated on-site; nothing to worry about here.";
    142. 

  142. 											}
    143. 

  143. 

  144. 										else if (!empty ($paypal["txn_type"]) && preg_match ("/^recurring_/i", $paypal["txn_type"])) // Otherwise, is this a ^recurring_ txn_type?
    145. 

  145. 											$paypal["s2member_log"][] = "Transaction type ( `^recurring_?` ), but there is no match to an existing account; so verification of `\$_SERVER[\"HTTP_HOST\"]` was not possible.";
    146. 

  146. 

  147. 										else // Else, use the default ``$_SERVER["HTTP_HOST"]`` error.
    148. 

  148. 											$paypal["s2member_log"][] = "Unable to verify `\$_SERVER[\"HTTP_HOST\"]`. Please check the `custom` value in your Button Code. It MUST start with your domain name.";
    149. 

  149. 									}
    150. 

  150. 								else // Extensive log reporting here. This is an area where many site owners find trouble. Depending on server configuration; remote HTTPS connections may fail.
    151. 

  151. 									{
    152. 

  152. 										$paypal["s2member_log"][] = "Unable to verify \$_POST vars. This is most likely related to an invalid configuration of s2Member, or a problem with server compatibility.";
    153. 

  153. 										$paypal["s2member_log"][] = "Please see this KB article: `http://www.s2member.com/kb/server-scanner/`. We suggest that you run the s2Member® Server Scanner.";
    154. 

  154. 										$paypal["s2member_log"][] = var_export ($_REQUEST, true); // Recording _POST + _GET vars for analysis and debugging.
    155. 

  155. 									}
    156. 

  156. 								if ($email_configs_were_on) // Back on?
    157. 

  157. 									c_ws_plugin__s2member_email_configs::email_config ();
    158. 

  158. 								/*
    159. 

  159. 								Add IPN proxy (when available) to the ``$paypal`` array.
    160. 

  160. 								*/
    161. 

  161. 								if (!empty ($_REQUEST["s2member_paypal_proxy"]))
    162. 

  162. 									$paypal["s2member_paypal_proxy"] = $_REQUEST["s2member_paypal_proxy"];
    163. 

  163. 								/*
    164. 

  164. 								Add IPN proxy use vars (when available) to the ``$paypal`` array.
    165. 

  165. 								*/
    166. 

  166. 								if (!empty ($_REQUEST["s2member_paypal_proxy_use"]))
    167. 

  167. 									$paypal["s2member_paypal_proxy_use"] = $_REQUEST["s2member_paypal_proxy_use"];
    168. 

  168. 								/*
    169. 

  169. 								Add IPN proxy coupon vars (when available) to the ``$paypal`` array.
    170. 

  170. 								*/
    171. 

  171. 								if (!empty ($_REQUEST["s2member_paypal_proxy_coupon"]))
    172. 

  172. 									$paypal["s2member_paypal_proxy_coupon"] = $_REQUEST["s2member_paypal_proxy_coupon"];
    173. 

  173. 								/*
    174. 

  174. 								Also add IPN proxy self-verification (when available) to the ``$paypal`` array.
    175. 

  175. 								*/
    176. 

  176. 								if (!empty ($_REQUEST["s2member_paypal_proxy_verification"]))
    177. 

  177. 									$paypal["s2member_paypal_proxy_verification"] = $_REQUEST["s2member_paypal_proxy_verification"];
    178. 

  178. 								/*
    179. 

  179. 								If debugging/logging is enabled; we need to append ``$paypal`` to the log file.
    180. 

  180. 									Logging now supports Multisite Networking as well.
    181. 

  181. 								*/
    182. 

  182. 								$logt = c_ws_plugin__s2member_utilities::time_details ();
    183. 

  183. 								$logv = c_ws_plugin__s2member_utilities::ver_details ();
    184. 

  184. 								$logm = c_ws_plugin__s2member_utilities::mem_details ();
    185. 

  185. 								$log4 = $_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"] . "\nUser-Agent: " . $_SERVER["HTTP_USER_AGENT"];
    186. 

  186. 								$log4 = (is_multisite () && !is_main_site ()) ? ($_log4 = $current_blog->domain . $current_blog->path) . "\n" . $log4 : $log4;
    187. 

  187. 								$log2 = (is_multisite () && !is_main_site ()) ? "paypal-ipn-4-" . trim (preg_replace ("/[^a-z0-9]/i", "-", $_log4), "-") . ".log" : "paypal-ipn.log";
    188. 

  188. 

  189. 								if ($GLOBALS["WS_PLUGIN__"]["s2member"]["o"]["gateway_debug_logs"])
    190. 

  190. 									if (is_dir ($logs_dir = $GLOBALS["WS_PLUGIN__"]["s2member"]["c"]["logs_dir"]))
    191. 

  191. 										if (is_writable ($logs_dir) && c_ws_plugin__s2member_utils_logs::archive_oversize_log_files ())
    192. 

  192. 											file_put_contents ($logs_dir . "/" . $log2,
    193. 

  193. 											                   "LOG ENTRY: ".$logt . "\n" . $logv . "\n" . $logm . "\n" . $log4 . "\n" .
    194. 

  194. 											                                            c_ws_plugin__s2member_utils_logs::conceal_private_info(var_export ($paypal, true)) . "\n\n",
    195. 

  195. 											                   FILE_APPEND);
    196. 

  196. 

  197. 								foreach(array_keys(get_defined_vars())as$__v)$__refs[$__v]=&$$__v;
    198. 

  198. 								do_action ("ws_plugin__s2member_during_paypal_notify", get_defined_vars ());
    199. 

  199. 								unset /* Unset defined __refs, __v. */ ($__refs, $__v);
    200. 

  200. 

  201. 								status_header (200); // Send a 200 OK status header.
    202. 

  202. 								header ("Content-Type: text/plain; charset=UTF-8"); // Content-Type text/plain with UTF-8.
    203. 

  203. 								while (@ob_end_clean ()); // Clean any existing output buffers.
    204. 

  204. 

  205. 								exit (((!empty ($paypal["s2member_paypal_proxy_return_url"])) ? $paypal["s2member_paypal_proxy_return_url"] : ""));
    206. 

  206. 							}
    207. 

  207. 						foreach(array_keys(get_defined_vars())as$__v)$__refs[$__v]=&$$__v;
    208. 

  208. 						do_action ("ws_plugin__s2member_after_paypal_notify", get_defined_vars ());
    209. 

  209. 						unset /* Unset defined __refs, __v. */ ($__refs, $__v);
    210. 

  210. 					}
    211. 

  211. 			}
    212. 

  212. 	}
    213. 

  213. ?>
    214.