PageRenderTime 42ms CodeModel.GetById 14ms RepoModel.GetById 0ms app.codeStats 0ms

/cursos/modules/paypal/validation.php

https://github.com/hecbuma/quali-fisioterapia
PHP | 139 lines | 94 code | 13 blank | 32 comment | 26 complexity | 18a3b5a22d595b4a283e0ab5bcb9dc24 MD5 | raw file
    

  1. <?php
    2. 

  2. /*
    3. 

  3. * 2007-2011 PrestaShop 
    4. 

  4. *
    5. 

  5. * NOTICE OF LICENSE
    6. 

  6. *
    7. 

  7. * This source file is subject to the Academic Free License (AFL 3.0)
    8. 

  8. * that is bundled with this package in the file LICENSE.txt.
    9. 

  9. * It is also available through the world-wide-web at this URL:
    10. 

  10. * http://opensource.org/licenses/afl-3.0.php
    11. 

  11. * If you did not receive a copy of the license and are unable to
    12. 

  12. * obtain it through the world-wide-web, please send an email
    13. 

  13. * to license@prestashop.com so we can send you a copy immediately.
    14. 

  14. *
    15. 

  15. * DISCLAIMER
    16. 

  16. *
    17. 

  17. * Do not edit or add to this file if you wish to upgrade PrestaShop to newer
    18. 

  18. * versions in the future. If you wish to customize PrestaShop for your
    19. 

  19. * needs please refer to http://www.prestashop.com for more information.
    20. 

  20. *
    21. 

  21. *  @author PrestaShop SA <contact@prestashop.com>
    22. 

  22. *  @copyright  2007-2011 PrestaShop SA
    23. 

  23. *  @version  Release: $Revision: 1.4 $
    24. 

  24. *  @license    http://opensource.org/licenses/afl-3.0.php  Academic Free License (AFL 3.0)
    25. 

  25. *  International Registered Trademark & Property of PrestaShop SA
    26. 

  26. */
    27. 

  27. 

  28. include(dirname(__FILE__).'/../../config/config.inc.php');
    29. 

  29. include(dirname(__FILE__).'/paypal.php');
    30. 

  30. 

  31. $errors = '';
    32. 

  32. $result = false;
    33. 

  33. $paypal = new Paypal();
    34. 

  34. 

  35. // Fill params
    36. 

  36. $params = 'cmd=_notify-validate';
    37. 

  37. foreach ($_POST AS $key => $value)
    38. 

  38. 	$params .= '&'.$key.'='.urlencode(stripslashes($value));
    39. 

  39. 

  40. // PayPal Server
    41. 

  41. $paypalServer = 'www.'.(Configuration::get('PAYPAL_SANDBOX') ? 'sandbox.' : '').'paypal.com';
    42. 

  42. 

  43. // Getting PayPal data...
    44. 

  44. if (function_exists('curl_exec'))
    45. 

  45. {
    46. 

  46. 	// curl ready
    47. 

  47. 	$ch = curl_init('https://' . $paypalServer . '/cgi-bin/webscr');
    48. 

  48.     
    49. 

  49. 	// If the above fails, then try the url with a trailing slash (fixes problems on some servers)
    50. 

  50.  	if (!$ch)
    51. 

  51. 		$ch = curl_init('https://' . $paypalServer . '/cgi-bin/webscr/');
    52. 

  52. 	
    53. 

  53. 	if (!$ch)
    54. 

  54. 		$errors .= $paypal->getL('connect').' '.$paypal->getL('curlmethodfailed');
    55. 

  55. 	else
    56. 

  56. 	{
    57. 

  57. 		curl_setopt($ch, CURLOPT_POST, true);
    58. 

  58. 		curl_setopt($ch, CURLOPT_POSTFIELDS, $params);
    59. 

  59. 		curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    60. 

  60. 		curl_setopt($ch, CURLOPT_HEADER, false);
    61. 

  61. 		curl_setopt($ch, CURLOPT_TIMEOUT, 30);
    62. 

  62. 		curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
    63. 

  63. 

  64. 		$result = curl_exec($ch);
    65. 

  65. 

  66. 		if (strtoupper($result) != 'VERIFIED')
    67. 

  67. 			$errors .= $paypal->getL('curlmethod').$result.' cURL error:'.curl_error($ch);
    68. 

  68. 		curl_close($ch);
    69. 

  69. 	}
    70. 

  70. }
    71. 

  71. elseif (($fp = @fsockopen('ssl://' . $paypalServer, 443, $errno, $errstr, 30)) || ($fp = @fsockopen($paypalServer, 80, $errno, $errstr, 30)))
    72. 

  72. {
    73. 

  73. 	// fsockopen ready
    74. 

  74. 	$header = 'POST /cgi-bin/webscr HTTP/1.0'."\r\n" .
    75. 

  75.           'Host: '.$paypalServer."\r\n".
    76. 

  76.           'Content-Type: application/x-www-form-urlencoded'."\r\n".
    77. 

  77.           'Content-Length: '.Tools::strlen($params)."\r\n".
    78. 

  78.           'Connection: close'."\r\n\r\n";
    79. 

  79. 	fputs($fp, $header.$params);
    80. 

  80.  	
    81. 

  81.  	$read = '';
    82. 

  82.  	while (!feof($fp))
    83. 

  83. 	{
    84. 

  84. 		$reading = trim(fgets($fp, 1024));
    85. 

  85. 		$read .= $reading;
    86. 

  86. 		if (strtoupper($reading) == 'VERIFIED' OR strtoupper($reading) == 'INVALID')
    87. 

  87. 		{
    88. 

  88. 		 	$result = $reading;
    89. 

  89. 			break;
    90. 

  90. 		}
    91. 

  91.  	}
    92. 

  92. 	if (strtoupper($result) != 'VERIFIED')
    93. 

  93. 		$errors .= $paypal->getL('socketmethod').$result;
    94. 

  94. 	fclose($fp);
    95. 

  95. }
    96. 

  96. else
    97. 

  97. 	$errors = $paypal->getL('connect').$paypal->getL('nomethod');
    98. 

  98. 

  99. if (isset($_POST['custom']))
    100. 

  100. 	$cart_secure = explode('_', $_POST['custom']);
    101. 

  101. else
    102. 

  102. 	$cart_secure = array();
    103. 

  103. 

  104. // Printing errors...
    105. 

  105. if (strtoupper($result) == 'VERIFIED')
    106. 

  106. {
    107. 

  107. 	if (!isset($_POST['mc_gross']))
    108. 

  108. 		$errors .= $paypal->getL('mc_gross').'<br />';
    109. 

  109. 	if (!isset($_POST['payment_status']))
    110. 

  110. 		$errors .= $paypal->getL('payment_status').'<br />';
    111. 

  111. 	elseif (strtoupper($_POST['payment_status']) != 'COMPLETED')
    112. 

  112. 		$errors .= $paypal->getL('payment').$_POST['payment_status'].'<br />';
    113. 

  113. 	if (!isset($_POST['custom']))
    114. 

  114. 		$errors .= $paypal->getL('custom').'<br />';
    115. 

  115. 	if (!isset($_POST['txn_id']))
    116. 

  116. 		$errors .= $paypal->getL('txn_id').'<br />';
    117. 

  117. 	if (!isset($_POST['mc_currency']))
    118. 

  118. 		$errors .= $paypal->getL('mc_currency').'<br />';
    119. 

  119. 	if (empty($errors))
    120. 

  120. 	{
    121. 

  121. 		$cart = new Cart((int)($cart_secure[0]));
    122. 

  122. 		if (!$cart->id)
    123. 

  123. 			$errors = $paypal->getL('cart').'<br />';
    124. 

  124. 		elseif (Order::getOrderByCartId((int)($cart_secure[0])))
    125. 

  125. 			$errors = $paypal->getL('order').'<br />';
    126. 

  126. 		else
    127. 

  127. 			$paypal->validateOrder((int)$cart_secure[0], _PS_OS_PAYMENT_, (float)($_POST['mc_gross']), $paypal->displayName, $paypal->getL('transaction').$_POST['txn_id'], array('transaction_id' => $_POST['txn_id'], 'payment_status' => $_POST['payment_status']), NULL, false, $cart_secure[1]);
    128. 

  128. 	}
    129. 

  129. }
    130. 

  130. else
    131. 

  131. 	$errors .= $paypal->getL('verified');
    132. 

  132. 

  133. if (!empty($errors) AND isset($_POST['custom']))
    134. 

  134. {
    135. 

  135. 	if (strtoupper($_POST['payment_status']) == 'PENDING')
    136. 

  136. 		$paypal->validateOrder((int)$cart_secure[0], _PS_OS_PAYPAL_, (float)($_POST['mc_gross']), $paypal->displayName, $paypal->getL('transaction').$_POST['txn_id'].'<br />'.$errors, array('transaction_id' => $_POST['txn_id'], 'payment_status' => $_POST['payment_status']), NULL, false, $cart_secure[1]);
    137. 

  137. 	else
    138. 

  138. 		$paypal->validateOrder((int)$cart_secure[0], _PS_OS_ERROR_, 0, $paypal->displayName, $errors.'<br />', array(), NULL, false, $cart_secure[1]);
    139. 

  139. }
    140. 

  140.