123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410 |
- <?php
- require_once 'swpm_handle_subsc_ipn.php';
- // Ignoring invalid class name PHPCS warning
- class swpm_smart_checkout_ipn_handler { // phpcs:ignore
- public $ipn_log = false; // bool: log IPN results to text file?
- public $ipn_log_file; // filename of the IPN log.
- public $ipn_response; // holds the IPN response from paypal.
- public $ipn_data = array(); // array contains the POST values for IPN.
- public $fields = array(); // array holds the fields to submit to paypal.
- public $sandbox_mode = false;
- public function __construct() {
- $this->paypal_url = 'https://www.paypal.com/cgi-bin/webscr';
- $this->ipn_log_file = 'ipn_handle_debug_swpm.log';
- $this->ipn_response = '';
- }
- public function swpm_validate_and_create_membership() {
- // Check Product Name , Price , Currency , Receivers email.
- $error_msg = '';
- // Read the IPN and validate.
- $gross_total = $this->ipn_data['mc_gross'];
- $transaction_type = $this->ipn_data['txn_type'];
- $txn_id = $this->ipn_data['txn_id'];
- $payment_status = $this->ipn_data['payment_status'];
- // Check payment status.
- if ( ! empty( $payment_status ) ) {
- if ( 'Denied' == $payment_status ) {
- $this->debug_log( 'Payment status for this transaction is DENIED. You denied the transaction... most likely a cancellation of an eCheque. Nothing to do here.', false );
- return false;
- }
- if ( 'Canceled_Reversal' == $payment_status ) {
- $this->debug_log( 'This is a dispute closed notification in your favour. The plugin will not do anyting.', false );
- return true;
- }
- if ( 'Completed' != $payment_status && 'Processed' != $payment_status && 'Refunded' != $payment_status && 'Reversed' != $payment_status ) {
- $error_msg .= 'Funds have not been cleared yet. Transaction will be processed when the funds clear!';
- $this->debug_log( $error_msg, false );
- $this->debug_log( wp_json_encode( $this->ipn_data ), false );
- return false;
- }
- }
- // Check txn type.
- if ( 'new_case' == $transaction_type ) {
- $this->debug_log( 'This is a dispute case. Nothing to do here.', true );
- return true;
- }
- $custom = urldecode( $this->ipn_data['custom'] );
- $this->ipn_data['custom'] = $custom;
- $customvariables = SwpmTransactions::parse_custom_var( $custom );
- // Handle refunds.
- if ( $gross_total < 0 ) {
- // This is a refund or reversal.
- $this->debug_log( 'This is a refund notification. Refund amount: ' . $gross_total, true );
- swpm_handle_subsc_cancel_stand_alone( $this->ipn_data, true );
- return true;
- }
- if ( isset( $this->ipn_data['reason_code'] ) && 'refund' == $this->ipn_data['reason_code'] ) {
- $this->debug_log( 'This is a refund notification. Refund amount: ' . $gross_total, true );
- swpm_handle_subsc_cancel_stand_alone( $this->ipn_data, true );
- return true;
- }
- if ( ( 'subscr_signup' == $transaction_type ) ) {
- $this->debug_log( 'Subscription signup IPN received... (handled by the subscription IPN handler)', true );
- // Code to handle the signup IPN for subscription.
- $subsc_ref = $customvariables['subsc_ref'];
- if ( ! empty( $subsc_ref ) ) {
- $this->debug_log( 'Found a membership level ID. Creating member account...', true );
- $swpm_id = $customvariables['swpm_id'];
- swpm_handle_subsc_signup_stand_alone( $this->ipn_data, $subsc_ref, $this->ipn_data['subscr_id'], $swpm_id );
- // Handle customized subscription signup.
- }
- return true;
- } elseif ( ( 'subscr_cancel' == $transaction_type ) || ( 'subscr_eot' == $transaction_type ) || ( 'subscr_failed' == $transaction_type ) ) {
- // Code to handle the IPN for subscription cancellation.
- $this->debug_log( 'Subscription cancellation IPN received... (handled by the subscription IPN handler)', true );
- swpm_handle_subsc_cancel_stand_alone( $this->ipn_data );
- return true;
- } else {
- $cart_items = array();
- $this->debug_log( 'Transaction Type: Buy Now/Subscribe', true );
- $item_number = $this->ipn_data['item_number'];
- $item_name = $this->ipn_data['item_name'];
- $quantity = $this->ipn_data['quantity'];
- $mc_gross = $this->ipn_data['mc_gross'];
- $mc_currency = $this->ipn_data['mc_currency'];
- $current_item = array(
- 'item_number' => $item_number,
- 'item_name' => $item_name,
- 'quantity' => $quantity,
- 'mc_gross' => $mc_gross,
- 'mc_currency' => $mc_currency,
- );
- array_push( $cart_items, $current_item );
- }
- $counter = 0;
- foreach ( $cart_items as $current_cart_item ) {
- $cart_item_data_num = $current_cart_item['item_number'];
- $cart_item_data_name = trim( $current_cart_item['item_name'] );
- $cart_item_data_quantity = $current_cart_item['quantity'];
- $cart_item_data_total = $current_cart_item['mc_gross'];
- $cart_item_data_currency = $current_cart_item['mc_currency'];
- if ( empty( $cart_item_data_quantity ) ) {
- $cart_item_data_quantity = 1;
- }
- $this->debug_log( 'Item Number: ' . $cart_item_data_num, true );
- $this->debug_log( 'Item Name: ' . $cart_item_data_name, true );
- $this->debug_log( 'Item Quantity: ' . $cart_item_data_quantity, true );
- $this->debug_log( 'Item Total: ' . $cart_item_data_total, true );
- $this->debug_log( 'Item Currency: ' . $cart_item_data_currency, true );
- // Get the button id.
- $pp_hosted_button = false;
- $button_id = $cart_item_data_num; // Button id is the item number.
- $membership_level_id = get_post_meta( $button_id, 'membership_level_id', true );
- if ( ! SwpmUtils::membership_level_id_exists( $membership_level_id ) ) {
- $this->debug_log( 'This payment button was not created in the plugin. This is a paypal hosted button.', true );
- $pp_hosted_button = true;
- }
- // Price check.
- $check_price = true;
- $msg = '';
- $msg = apply_filters( 'swpm_before_price_check_filter', $msg, $current_cart_item );
- if ( ! empty( $msg ) && 'price-check-override' == $msg ) {// This filter allows an extension to do a customized version of price check (if needed).
- $check_price = false;
- $this->debug_log( 'Price and currency check has been overridden by an addon/extension.', true );
- }
- if ( $check_price && ! $pp_hosted_button ) {
- // Check according to buy now payment or subscription payment.
- $button_type = get_post_meta( $button_id, 'button_type', true );
- if ( 'pp_smart_checkout' == $button_type ) {// This is a PayPal Smart Checkout type button.
- $expected_amount = ( get_post_meta( $button_id, 'payment_amount', true ) ) * $cart_item_data_quantity;
- $expected_amount = round( $expected_amount, 2 );
- $expected_amount = apply_filters( 'swpm_payment_amount_filter', $expected_amount, $button_id );
- $received_amount = $cart_item_data_total;
- } else {
- $this->debug_log( 'Error! Unexpected button type: ' . $button_type, false );
- return false;
- }
- if ( $received_amount < $expected_amount ) {
- // Error! amount received is less than expected. This is invalid.
- $this->debug_log( 'Expected amount: ' . $expected_amount, true );
- $this->debug_log( 'Received amount: ' . $received_amount, true );
- $this->debug_log( 'Price check failed. Amount received is less than the amount expected. This payment will not be processed.', false );
- return false;
- }
- }
- // *** Handle Membership Payment ***
- // --------------------------------------------------------------------------------------
- // ========= Need to find the (level ID) in the custom variable ============
- $subsc_ref = $customvariables['subsc_ref']; // Membership level ID.
- $this->debug_log( 'Membership payment paid for membership level ID: ' . $subsc_ref, true );
- if ( ! empty( $subsc_ref ) ) {
- $swpm_id = '';
- if ( isset( $customvariables['swpm_id'] ) ) {
- $swpm_id = $customvariables['swpm_id'];
- }
- if ( 'smart_checkout' == $transaction_type ) {
- $this->debug_log( 'Transaction type: web_accept. Creating member account...', true );
- swpm_handle_subsc_signup_stand_alone( $this->ipn_data, $subsc_ref, $this->ipn_data['txn_id'], $swpm_id );
- }
- } else {
- $this->debug_log( 'Membership level ID is missing in the payment notification! Cannot process this notification.', false );
- }
- // == End of Membership payment handling ==
- $counter++;
- }
- /*
- * * Do Post payment operation and cleanup * *
- */
- // Save the transaction data.
- $this->debug_log( 'Saving transaction data to the database table.', true );
- $this->ipn_data['gateway'] = 'pp_smart_checkout';
- $this->ipn_data['status'] = $this->ipn_data['payment_status'];
- SwpmTransactions::save_txn_record( $this->ipn_data, $cart_items );
- $this->debug_log( 'Transaction data saved.', true );
- // Trigger the PayPal IPN processed action hook (so other plugins can can listen for this event).
- do_action( 'swpm_pp_smart_checkout_ipn_processed', $this->ipn_data );
- do_action( 'swpm_payment_ipn_processed', $this->ipn_data );
- return true;
- }
- public function create_ipn_from_smart_checkout( $data ) {
- $ipn['custom'] = $data['custom_field'];
- $ipn['item_number'] = $data['button_id'];
- $ipn['item_name'] = $data['item_name'];
- $ipn['pay_id'] = $data['id'];
- $ipn['create_time'] = $data['create_time'];
- $ipn['txn_id'] = $data['transactions'][0]['related_resources'][0]['sale']['id'];
- $ipn['reason_code'] = ! empty( $data['transactions'][0]['related_resources'][0]['sale']['reason_code'] ) ? $data['transactions'][0]['related_resources'][0]['sale']['reason_code'] : '';
- $ipn['txn_type'] = 'smart_checkout';
- $ipn['payment_status'] = ucfirst( $data['transactions'][0]['related_resources'][0]['sale']['state'] );
- $ipn['transaction_subject'] = '';
- $ipn['mc_currency'] = $data['transactions'][0]['amount']['currency'];
- $ipn['mc_gross'] = $data['transactions'][0]['amount']['total'];
- $ipn['quantity'] = 1;
- $ipn['receiver_email'] = get_option( 'cart_paypal_email' );
- // customer info.
- $ipn['first_name'] = $data['payer']['payer_info']['first_name'];
- $ipn['last_name'] = $data['payer']['payer_info']['last_name'];
- $ipn['payer_email'] = $data['payer']['payer_info']['email'];
- $ipn['address_street'] = $data['payer']['payer_info']['shipping_address']['line1'];
- $ipn['address_city'] = $data['payer']['payer_info']['shipping_address']['city'];
- $ipn['address_state'] = $data['payer']['payer_info']['shipping_address']['state'];
- $ipn['address_zip'] = $data['payer']['payer_info']['shipping_address']['postal_code'];
- $ipn['address_country'] = $data['payer']['payer_info']['shipping_address']['country_code'];
- $this->ipn_data = $ipn;
- return true;
- }
- public function validate_ipn_smart_checkout() {
- if ( $this->sandbox_mode ) {
- $client_id = get_post_meta( $this->ipn_data['item_number'], 'pp_smart_checkout_test_id', true );
- $secret = get_post_meta( $this->ipn_data['item_number'], 'pp_smart_checkout_test_sec', true );
- $api_base = 'https://api.sandbox.paypal.com';
- } else {
- $client_id = get_post_meta( $this->ipn_data['item_number'], 'pp_smart_checkout_live_id', true );
- $secret = get_post_meta( $this->ipn_data['item_number'], 'pp_smart_checkout_live_sec', true );
- $api_base = 'https://api.paypal.com';
- }
- $wp_request_headers = array(
- 'Accept' => 'application/json',
- // Ignoring base64_encode() PHPCS warning as it's being properly used in this case.
- 'Authorization' => 'Basic ' . base64_encode( $client_id . ':' . $secret ), // phpcs:ignore
- );
- $res = wp_remote_request(
- $api_base . '/v1/oauth2/token',
- array(
- 'method' => 'POST',
- 'headers' => $wp_request_headers,
- 'body' => 'grant_type=client_credentials',
- )
- );
- $code = wp_remote_retrieve_response_code( $res );
- if ( 200 !== $code ) {
- // Some error occured.
- $body = wp_remote_retrieve_body( $res );
- // translators: %1$d is error code; %2$s is error message.
- return sprintf( __( 'Error occured during payment verification. Error code: %1$d. Message: %2$s', 'simple-membership' ), $code, $body );
- }
- $body = wp_remote_retrieve_body( $res );
- $body = json_decode( $body );
- $token = $body->access_token;
- $wp_request_headers = array(
- 'Accept' => 'application/json',
- 'Authorization' => 'Bearer ' . $token,
- );
- $res = wp_remote_request(
- $api_base . '/v1/payments/payment/' . $this->ipn_data['pay_id'],
- array(
- 'method' => 'GET',
- 'headers' => $wp_request_headers,
- )
- );
- $code = wp_remote_retrieve_response_code( $res );
- if ( 200 !== $code ) {
- // Some error occured.
- $body = wp_remote_retrieve_body( $res );
- // translators: %1$d is error code; %2$s is error message.
- return sprintf( __( 'Error occured during payment verification. Error code: %1$d. Message: %2$s', 'simple-membership' ), $code, $body );
- }
- $body = wp_remote_retrieve_body( $res );
- $body = json_decode( $body );
- // check payment details.
- if ( $body->transactions[0]->amount->total === $this->ipn_data['mc_gross'] &&
- $body->transactions[0]->amount->currency === $this->ipn_data['mc_currency'] ) {
- // payment is valid.
- return true;
- } else {
- // payment is invalid.
- // translators: %1$s is expected amount, %2$s is expected currency.
- return sprintf( __( 'Payment check failed: invalid amount received. Expected %1$s %2$s, got %3$s %4$s.', 'simple-membership' ), $this->ipn_data['mc_gross'], $this->ipn_data['mc_currency'], $body->transactions[0]->amount->total, $body->transactions[0]->amount->currency );
- }
- }
- public function debug_log( $message, $success, $end = false ) {
- SwpmLog::log_simple_debug( $message, $success, $end );
- }
- }
- function swpm_pp_smart_checkout_ajax_hanlder() {
- // Start of IPN handling (script execution).
- // check nonce.
- $uniqid = filter_input( INPUT_POST, 'uniqid', FILTER_SANITIZE_STRING );
- if ( ! check_ajax_referer( 'swpm-pp-smart-checkout-ajax-nonce-' . $uniqid, 'nonce', false ) ) {
- wp_send_json(
- array(
- 'success' => false,
- 'errMsg' => __(
- 'Nonce check failed. Please reload page.',
- 'simple-membership'
- ),
- )
- );
- exit;
- }
- $data = filter_input( INPUT_POST, 'swpm_pp_smart_checkout_payment_data', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY );
- if ( empty( $data ) ) {
- wp_send_json(
- array(
- 'success' => false,
- 'errMsg' => __(
- 'Empty payment data received.',
- 'simple-membership'
- ),
- )
- );
- }
- $ipn_handler_instance = new swpm_smart_checkout_ipn_handler();
- $ipn_data_success = $ipn_handler_instance->create_ipn_from_smart_checkout( $data );
- if ( true !== $ipn_data_success ) {
- // error occured during IPN array creation.
- wp_send_json(
- array(
- 'success' => false,
- 'errMsg' => $ipn_data_success,
- )
- );
- }
- $settings = SwpmSettings::get_instance();
- $debug_enabled = $settings->get_value( 'enable-debug' );
- if ( ! empty( $debug_enabled ) ) {// debug is enabled in the system.
- $debug_log = 'log.txt'; // Debug log file name.
- $ipn_handler_instance->ipn_log = true;
- $ipn_handler_instance->ipn_log_file = $debug_log;
- }
- $sandbox_enabled = $settings->get_value( 'enable-sandbox-testing' );
- if ( ! empty( $sandbox_enabled ) ) { // Sandbox testing enabled.
- $ipn_handler_instance->paypal_url = 'https://www.sandbox.paypal.com/cgi-bin/webscr';
- $ipn_handler_instance->sandbox_mode = true;
- }
- $ip = filter_input( INPUT_SERVER, 'REMOTE_ADDR', FILTER_SANITIZE_STRING );
- $ipn_handler_instance->debug_log( 'Paypal Smart Checkout Class Initiated by ' . $ip, true );
- // Validate the IPN.
- $res = $ipn_handler_instance->validate_ipn_smart_checkout();
- if ( true !== $res ) {
- wp_send_json(
- array(
- 'success' => false,
- 'errMsg' => $res,
- )
- );
- }
- $ipn_handler_instance->debug_log( 'Creating product Information to send.', true );
- if ( ! $ipn_handler_instance->swpm_validate_and_create_membership() ) {
- $ipn_handler_instance->debug_log( 'IPN product validation failed.', false );
- wp_send_json(
- array(
- 'success' => false,
- 'errMsg' => __(
- 'IPN product validation failed. Check debug log for more details.',
- 'simple-membership'
- ),
- )
- );
- }
- $ipn_handler_instance->debug_log( 'Paypal class finished.', true, true );
- wp_send_json( array( 'success' => true ) );
- }
|