PageRenderTime 37ms CodeModel.GetById 1ms RepoModel.GetById 0ms app.codeStats 0ms

/wp-content/plugins/s2member/includes/classes/paypal-return-in-subscr-modify-w-level.inc.php

https://gitlab.com/Gashler/dp
PHP | 233 lines | 170 code | 31 blank | 32 comment | 62 complexity | dbff77d9fcf7c49e488d464e28130b3d MD5 | raw file
    

  1. <?php
    2. 

  2. /**
    3. 

  3. * s2Member's PayPal® Auto-Return/PDT handler (inner processing routine).
    4. 

  4. *
    5. 

  5. * Copyright: © 2009-2011
    6. 

  6. * {@link http://www.websharks-inc.com/ WebSharks, Inc.}
    7. 

  7. * (coded in the USA)
    8. 

  8. *
    9. 

  9. * Released under the terms of the GNU General Public License.
    10. 

  10. * You should have received a copy of the GNU General Public License,
    11. 

  11. * along with this software. In the main directory, see: /licensing/
    12. 

  12. * If not, see: {@link http://www.gnu.org/licenses/}.
    13. 

  13. *
    14. 

  14. * @package s2Member\PayPal
    15. 

  15. * @since 110720
    16. 

  16. */
    17. 

  17. if(realpath(__FILE__) === realpath($_SERVER["SCRIPT_FILENAME"]))
    18. 

  18. 	exit("Do not access this file directly.");
    19. 

  19. 

  20. if(!class_exists("c_ws_plugin__s2member_paypal_return_in_subscr_modify_w_level"))
    21. 

  21. 	{
    22. 

  22. 		/**
    23. 

  23. 		* s2Member's PayPal® Auto-Return/PDT handler (inner processing routine).
    24. 

  24. 		*
    25. 

  25. 		* @package s2Member\PayPal
    26. 

  26. 		* @since 110720
    27. 

  27. 		*/
    28. 

  28. 		class c_ws_plugin__s2member_paypal_return_in_subscr_modify_w_level
    29. 

  29. 			{
    30. 

  30. 				/**
    31. 

  31. 				* s2Member's PayPal® Auto-Return/PDT handler (inner processing routine).
    32. 

  32. 				*
    33. 

  33. 				* @package s2Member\PayPal
    34. 

  34. 				* @since 110720
    35. 

  35. 				*
    36. 

  36. 				* @param array $vars Required. An array of defined variables passed by {@link s2Member\PayPal\c_ws_plugin__s2member_paypal_return_in::paypal_return()}.
    37. 

  37. 				* @return array|bool The original ``$paypal`` array passed in (extracted) from ``$vars``, or false when conditions do NOT apply.
    38. 

  38. 				*
    39. 

  39. 				* @todo Optimize with ``empty()`` and ``isset()``.
    40. 

  40. 				*/
    41. 

  41. 				public static function /* Conditional phase for ``c_ws_plugin__s2member_paypal_notify_in::paypal_notify()``. */ cp($vars = array())
    42. 

  42. 					{
    43. 

  43. 						extract /* Extract all vars passed in from: ``c_ws_plugin__s2member_paypal_notify_in::paypal_notify()``. */($vars);
    44. 

  44. 

  45. 						if((!empty($paypal["txn_type"]) && preg_match("/^subscr_modify$/i", $paypal["txn_type"]))
    46. 

  46. 						&& (!empty($paypal["item_number"]) && preg_match($GLOBALS["WS_PLUGIN__"]["s2member"]["c"]["membership_item_number_w_level_regex"], $paypal["item_number"]))
    47. 

  47. 						&& (!empty($paypal["subscr_id"])))
    48. 

  48. 							{
    49. 

  49. 								foreach(array_keys(get_defined_vars())as$__v)$__refs[$__v]=&$$__v;
    50. 

  50. 								do_action("ws_plugin__s2member_during_paypal_return_before_subscr_modify", get_defined_vars());
    51. 

  51. 								unset /* Unset defined __refs, __v. */($__refs, $__v);
    52. 

  52. 

  53. 								if(!get_transient($transient_rtn = "s2m_rtn_".md5("s2member_transient_".$_paypal_s)) && set_transient($transient_rtn, time(), 31556926 * 10))
    54. 

  54. 									{
    55. 

  55. 										$paypal["s2member_log"][] = "s2Member `txn_type` identified as ( `subscr_modify` ), a Subscription Modification.";
    56. 

  56. 

  57. 										list($paypal["level"], $paypal["ccaps"]/*, $paypal["eotper"] */) = preg_split("/\:/", $paypal["item_number"], 2);
    58. 

  58. 

  59. 										$paypal["ip"] = (preg_match("/ip address/i", $paypal["option_name2"]) && $paypal["option_selection2"]) ? $paypal["option_selection2"] : "";
    60. 

  60. 										$paypal["ip"] = (!$paypal["ip"] && preg_match("/^[a-z0-9]+~[0-9\.]+$/i", $paypal["invoice"])) ? preg_replace("/^[a-z0-9]+~/i", "", $paypal["invoice"]) : $paypal["ip"];
    61. 

  61. 										$paypal["ip"] = (!$paypal["ip"] && $_SERVER["REMOTE_ADDR"]) ? $_SERVER["REMOTE_ADDR"] : $paypal["ip"];
    62. 

  62. 

  63. 										$paypal["period1"] = (preg_match("/^[1-9]/", $paypal["period1"])) ? $paypal["period1"] : /* Defaults to "0 D" (zero days). */ "0 D";
    64. 

  64. 										$paypal["mc_amount1"] = (strlen($paypal["mc_amount1"]) && $paypal["mc_amount1"] > 0) ? $paypal["mc_amount1"] : "0.00";
    65. 

  65. 

  66. 										if /* Conversions for Lifetime & Fixed-Term sales. */(preg_match("/^web_accept$/i", $paypal["txn_type"]))
    67. 

  67. 											{
    68. 

  68. 												$paypal["period3"] = ($paypal["eotper"]) ? $paypal["eotper"] : /* 1 Lifetime. */ "1 L";
    69. 

  69. 												$paypal["mc_amount3"] = /* The "Buy Now" amount is the full gross. */ $paypal["mc_gross"];
    70. 

  70. 											}
    71. 

  71. 

  72. 										$paypal["initial_term"] = (preg_match("/^[1-9]/", $paypal["period1"])) ? $paypal["period1"] : /* Defaults to "0 D" (zero days). */ "0 D";
    73. 

  73. 										$paypal["initial"] = (strlen($paypal["mc_amount1"]) && preg_match("/^[1-9]/", $paypal["period1"])) ? $paypal["mc_amount1"] : $paypal["mc_amount3"];
    74. 

  74. 										$paypal["regular"] = /* This is the Regular Payment Amount that is charged to the Customer. Always required by PayPal®. */ $paypal["mc_amount3"];
    75. 

  75. 										$paypal["regular_term"] = /* This is just set to keep a standard; this way both initial_term & regular_term are available. */ $paypal["period3"];
    76. 

  76. 										$paypal["recurring"] = /* If non-recurring, this should be zero, otherwise Regular. */ ($paypal["recurring"]) ? $paypal["mc_amount3"] : "0";
    77. 

  77. 

  78. 										$ipn_signup_vars = $paypal; /* Create array of wouldbe IPN signup vars w/o s2member_log. */ unset($ipn_signup_vars["s2member_log"]);
    79. 

  79. 

  80. 										if(($user_id = c_ws_plugin__s2member_utils_users::get_user_id_with($paypal["subscr_id"])) && is_object($user = new WP_User($user_id)) && $user->ID)
    81. 

  81. 											{
    82. 

  82. 												if /* Do NOT process this routine on Administrators. */(!$user->has_cap("administrator"))
    83. 

  83. 													{
    84. 

  84. 														$processing = $modifying = $during = /* Yes, we ARE processing this. */ true;
    85. 

  85. 

  86. 														foreach(array_keys(get_defined_vars())as$__v)$__refs[$__v]=&$$__v;
    87. 

  87. 														do_action("ws_plugin__s2member_during_paypal_return_during_before_subscr_modify", get_defined_vars());
    88. 

  88. 														do_action("ws_plugin__s2member_during_collective_mods", $user_id, get_defined_vars(), "rtn-upgrade-downgrade", "modification", "s2member_level".$paypal["level"]);
    89. 

  89. 														unset /* Unset defined __refs, __v. */($__refs, $__v);
    90. 

  90. 

  91. 														$fields = /* These will be needed in the routines below. */ get_user_option("s2member_custom_fields", $user_id);
    92. 

  92. 														$user_reg_ip = /* Original IP during Registration. */ get_user_option("s2member_registration_ip", $user_id);
    93. 

  93. 														$user_reg_ip = $paypal["ip"] = /* Now merge conditionally. */ ($user_reg_ip) ? $user_reg_ip : $paypal["ip"];
    94. 

  94. 

  95. 														if(is_multisite() && !is_user_member_of_blog($user_id) /* Must have a Role on this Blog. */)
    96. 

  96. 															{
    97. 

  97. 																add_existing_user_to_blog(array("user_id" => $user_id, "role" => "s2member_level".$paypal["level"]));
    98. 

  98. 																$user = /* Now update the $user object we're using. */ new WP_User($user_id);
    99. 

  99. 															}
    100. 

  100. 														$current_role = c_ws_plugin__s2member_user_access::user_access_role($user);
    101. 

  101. 

  102. 														if /* Only if we need to. */($current_role !== "s2member_level".$paypal["level"])
    103. 

  103. 															$user->set_role /* (upgrade/downgrade) */("s2member_level".$paypal["level"]);
    104. 

  104. 

  105. 														if($paypal["ccaps"] && preg_match("/^-all/", str_replace("+", "", $paypal["ccaps"])))
    106. 

  106. 															foreach($user->allcaps as $cap => $cap_enabled)
    107. 

  107. 																if(preg_match("/^access_s2member_ccap_/", $cap))
    108. 

  108. 																	$user->remove_cap($ccap = $cap);
    109. 

  109. 

  110. 														if($paypal["ccaps"] && preg_replace("/^-all[\r\n\t\s;,]*/", "", str_replace("+", "", $paypal["ccaps"])))
    111. 

  111. 															foreach(preg_split("/[\r\n\t\s;,]+/", preg_replace("/^-all[\r\n\t\s;,]*/", "", str_replace("+", "", $paypal["ccaps"]))) as $ccap)
    112. 

  112. 																if(strlen($ccap = trim(strtolower(preg_replace("/[^a-z_0-9]/i", "", $ccap)))))
    113. 

  113. 																	$user->add_cap("access_s2member_ccap_".$ccap);
    114. 

  114. 

  115. 														update_user_option($user_id, "s2member_subscr_gateway", $paypal["subscr_gateway"]);
    116. 

  116. 														update_user_option($user_id, "s2member_subscr_id", $paypal["subscr_id"]);
    117. 

  117. 														update_user_option($user_id, "s2member_custom", $paypal["custom"]);
    118. 

  118. 

  119. 														if(!get_user_option("s2member_registration_ip", $user_id))
    120. 

  120. 															update_user_option($user_id, "s2member_registration_ip", $paypal["ip"]);
    121. 

  121. 

  122. 														update_user_option($user_id, "s2member_ipn_signup_vars", $ipn_signup_vars);
    123. 

  123. 

  124. 														delete_user_option($user_id, "s2member_file_download_access_log");
    125. 

  125. 

  126. 														delete_user_option($user_id, "s2member_auto_eot_time");
    127. 

  127. 

  128. 														$pr_times = get_user_option("s2member_paid_registration_times", $user_id);
    129. 

  129. 														$pr_times["level"] = /* Preserve existing. */ (!$pr_times["level"]) ? time() : $pr_times["level"];
    130. 

  130. 														$pr_times["level".$paypal["level"]] = (!$pr_times["level".$paypal["level"]]) ? time() : $pr_times["level".$paypal["level"]];
    131. 

  131. 														update_user_option($user_id, "s2member_paid_registration_times", $pr_times);
    132. 

  132. 

  133. 														c_ws_plugin__s2member_user_notes::clear_user_note_lines($user_id, "/^Demoted by s2Member\:/");
    134. 

  134. 														c_ws_plugin__s2member_user_notes::clear_user_note_lines ($user_id, "/^Paid Subscr\. ID @ time of demotion\:/");
    135. 

  135. 

  136. 														$paypal["s2member_log"][] = "s2Member Level/Capabilities updated on ( `subscr_modify` ), a Subscription Modification.";
    137. 

  137. 

  138. 														setcookie("s2member_tracking", ($s2member_tracking = c_ws_plugin__s2member_utils_encryption::encrypt($paypal["subscr_id"])), time() + 31556926, COOKIEPATH, COOKIE_DOMAIN).setcookie("s2member_tracking", $s2member_tracking, time() + 31556926, SITECOOKIEPATH, COOKIE_DOMAIN).($_COOKIE["s2member_tracking"] = $s2member_tracking);
    139. 

  139. 

  140. 														$paypal["s2member_log"][] = "Transient Tracking Cookie set on ( `subscr_modify` ), a Subscription Modification.";
    141. 

  141. 

  142. 														if($processing && ($code = $GLOBALS["WS_PLUGIN__"]["s2member"]["o"]["modification_tracking_codes"]) && is_array($cv = preg_split("/\|/", $paypal["custom"])))
    143. 

  143. 															{
    144. 

  144. 																if(($code = preg_replace("/%%cv([0-9]+)%%/ei", 'trim($cv[$1])', $code)) && ($code = preg_replace("/%%subscr_id%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($paypal["subscr_id"]), $code)))
    145. 

  145. 																	if(($code = preg_replace("/%%initial%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($paypal["initial"]), $code)) && ($code = preg_replace("/%%regular%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($paypal["regular"]), $code)) && ($code = preg_replace("/%%recurring%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($paypal["recurring"]), $code)))
    146. 

  146. 																		if(($code = preg_replace("/%%initial_term%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($paypal["initial_term"]), $code)) && ($code = preg_replace("/%%regular_term%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($paypal["regular_term"]), $code)))
    147. 

  147. 																			if(($code = preg_replace("/%%item_number%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($paypal["item_number"]), $code)) && ($code = preg_replace("/%%item_name%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($paypal["item_name"]), $code)))
    148. 

  148. 																				if(($code = preg_replace("/%%first_name%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($paypal["first_name"]), $code)) && ($code = preg_replace("/%%last_name%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($paypal["last_name"]), $code)))
    149. 

  149. 																					if(($code = preg_replace("/%%full_name%%/i", c_ws_plugin__s2member_utils_strings::esc_ds(trim($paypal["first_name"]." ".$paypal["last_name"])), $code)))
    150. 

  150. 																						if(($code = preg_replace("/%%payer_email%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($paypal["payer_email"]), $code)))
    151. 

  151. 																							{
    152. 

  152. 																								if(($code = preg_replace("/%%user_first_name%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($user->first_name), $code)) && ($code = preg_replace("/%%user_last_name%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($user->last_name), $code)))
    153. 

  153. 																									if(($code = preg_replace("/%%user_full_name%%/i", c_ws_plugin__s2member_utils_strings::esc_ds(trim($user->first_name." ".$user->last_name)), $code)))
    154. 

  154. 																										if(($code = preg_replace("/%%user_email%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($user->user_email), $code)))
    155. 

  155. 																											if(($code = preg_replace("/%%user_login%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($user->user_login), $code)))
    156. 

  156. 																												if(($code = preg_replace("/%%user_ip%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($user_reg_ip), $code)))
    157. 

  157. 																													if(($code = preg_replace("/%%user_id%%/i", c_ws_plugin__s2member_utils_strings::esc_ds($user_id), $code)))
    158. 

  158. 																														{
    159. 

  159. 																															if(is_array($fields) && !empty($fields))
    160. 

  160. 																																foreach /* Custom Registration/Profile Fields. */($fields as $var => $val)
    161. 

  161. 																																	if(!($code = preg_replace("/%%".preg_quote($var, "/")."%%/i", c_ws_plugin__s2member_utils_strings::esc_ds(maybe_serialize($val)), $code)))
    162. 

  162. 																																		break;
    163. 

  163. 

  164. 																															if(($code = trim(preg_replace("/%%(.+?)%%/i", "", $code))) /* This gets stored into a Transient Queue. */)
    165. 

  165. 																																{
    166. 

  166. 																																	$paypal["s2member_log"][] = "Storing Modification Tracking Codes into a Transient Queue. These will be processed on-site.";
    167. 

  167. 																																	set_transient("s2m_".md5("s2member_transient_modification_tracking_codes_".$paypal["subscr_id"]), $code, 43200);
    168. 

  168. 																																}
    169. 

  169. 																														}
    170. 

  170. 																							}
    171. 

  171. 															}
    172. 

  172. 														foreach(array_keys(get_defined_vars())as$__v)$__refs[$__v]=&$$__v;
    173. 

  173. 														do_action("ws_plugin__s2member_during_paypal_return_during_subscr_modify", get_defined_vars());
    174. 

  174. 														unset /* Unset defined __refs, __v. */($__refs, $__v);
    175. 

  175. 

  176. 														if(($redirection_url_after_modification = apply_filters("ws_plugin__s2member_redirection_url_after_modification", false, get_defined_vars())))
    177. 

  177. 															{
    178. 

  178. 																$paypal["s2member_log"][] = "Redirecting this Member to a custom URL after modification: ".$redirection_url_after_modification;
    179. 

  179. 

  180. 																wp_redirect($redirection_url_after_modification);
    181. 

  181. 															}
    182. 

  182. 														else // Else, use standard/default handling in this scenario. Have the Customer log in again.
    183. 

  183. 															{
    184. 

  184. 																$paypal["s2member_log"][] = "Redirecting Customer to the Login Page (after displaying a quick thank-you message). They need to log back in.";
    185. 

  185. 

  186. 																echo c_ws_plugin__s2member_return_templates::return_template($paypal["subscr_gateway"],
    187. 

  187. 																	'<strong>'._x("Thank you! You've been updated to:", "s2member-front", "s2member").'<br /><em>'.esc_html($paypal["item_name"]).'</em></strong>',
    188. 

  188. 																	_x("Please Log Back In (Click Here)", "s2member-front", "s2member"), wp_login_url());
    189. 

  189. 															}
    190. 

  190. 													}
    191. 

  191. 												else // Else, unable to modify Subscription. The existing User ID is associated with an Administrator. Stopping here.
    192. 

  192. 													{
    193. 

  193. 														$paypal["s2member_log"][] = "Unable to modify Subscription. The existing User ID is associated with an Administrator. Stopping here. Otherwise, an Administrator could lose access. Please make sure that you are NOT logged in as an Administrator while testing.";
    194. 

  194. 

  195. 														$paypal["s2member_log"][] = "Redirecting Customer to the Home Page (after displaying an error message).";
    196. 

  196. 

  197. 														echo c_ws_plugin__s2member_return_templates::return_template($paypal["subscr_gateway"],
    198. 

  198. 															_x('<strong>ERROR:</strong> Unable to modify Subscription.<br />Please contact Support for assistance.<br /><br />The existing User ID is associated with an Administrator. Stopping here. Otherwise, an Administrator could lose access. Please make sure that you are NOT logged in as an Administrator while testing.', "s2member-front", "s2member"),
    199. 

  199. 															_x("Back To Home Page", "s2member-front", "s2member"), home_url("/"));
    200. 

  200. 													}
    201. 

  201. 											}
    202. 

  202. 										else // Unable to modify Subscription. Could not get the existing User ID from the DB.
    203. 

  203. 											{
    204. 

  204. 												$paypal["s2member_log"][] = "Unable to modify Subscription. Could not get the existing User ID from the DB.";
    205. 

  205. 

  206. 												$paypal["s2member_log"][] = "Redirecting Customer to the Home Page (after displaying an error message).";
    207. 

  207. 

  208. 												echo c_ws_plugin__s2member_return_templates::return_template($paypal["subscr_gateway"],
    209. 

  209. 													_x('<strong>ERROR:</strong> Unable to modify Subscription.<br />Please contact Support for assistance.<br /><br />Could not get the existing User ID from the DB.', "s2member-front", "s2member"),
    210. 

  210. 													_x("Back To Home Page", "s2member-front", "s2member"), home_url("/"));
    211. 

  211. 											}
    212. 

  212. 									}
    213. 

  213. 								else // Page Expired. Duplicate Return-Data.
    214. 

  214. 									{
    215. 

  215. 										$paypal["s2member_log"][] = "Page Expired. Duplicate Return-Data.";
    216. 

  216. 										$paypal["s2member_log"][] = "s2Member `txn_type` identified as `subscr_modify`.";
    217. 

  217. 										$paypal["s2member_log"][] = "Page Expired. Redirecting Customer to the Home Page (after displaying an error message).";
    218. 

  218. 

  219. 										echo c_ws_plugin__s2member_return_templates::return_template($paypal["subscr_gateway"],
    220. 

  220. 											_x('<strong>Page Expired:</strong> Duplicate Return-Data.<br />Please contact Support if you need any assistance.', "s2member-front", "s2member"),
    221. 

  221. 											_x("Back To Home Page", "s2member-front", "s2member"), home_url("/"));
    222. 

  222. 									}
    223. 

  223. 								foreach(array_keys(get_defined_vars())as$__v)$__refs[$__v]=&$$__v;
    224. 

  224. 								do_action("ws_plugin__s2member_during_paypal_return_after_subscr_modify", get_defined_vars());
    225. 

  225. 								unset /* Unset defined __refs, __v. */($__refs, $__v);
    226. 

  226. 

  227. 								return apply_filters("c_ws_plugin__s2member_paypal_return_in_subscr_modify_w_level", $paypal, get_defined_vars());
    228. 

  228. 							}
    229. 

  229. 						else return apply_filters("c_ws_plugin__s2member_paypal_return_in_subscr_modify_w_level", false, get_defined_vars());
    230. 

  230. 					}
    231. 

  231. 			}
    232. 

  232. 	}
    233. 

  233. ?>
    234.