1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
|
<?php
class ControllerExtensionPaymentPPProIframe extends Controller {
public function index() {
$this->load->model('checkout/order');
$this->load->model('extension/payment/pp_pro_iframe');
$this->load->language('extension/payment/pp_pro_iframe');
if ($this->config->get('payment_pp_pro_iframe_checkout_method') == 'redirect') {
$order_info = $this->model_checkout_order->getOrder($this->session->data['order_id']);
$hosted_button_id = $this->constructButtonData($order_info);
if ($this->config->get('payment_pp_pro_iframe_test')) {
$data['url'] = 'https://securepayments.sandbox.paypal.com/webapps/HostedSoleSolutionApp/webflow/sparta/hostedSoleSolutionProcess';
} else {
$data['url'] = 'https://securepayments.paypal.com/webapps/HostedSoleSolutionApp/webflow/sparta/hostedSoleSolutionProcess';
}
if ($hosted_button_id) {
$data['code'] = $hosted_button_id;
$data['error_connection'] = '';
} else {
$data['error_connection'] = $this->language->get('error_connection');
}
}
$data['create'] = HTTPS_SERVER.'index.php?route=extension/payment/pp_pro_iframe/create';
$data['checkout_method'] = $this->config->get('payment_pp_pro_iframe_checkout_method');
return $this->load->view('extension/payment/pp_pro_iframe', $data);
}
public function create() {
$this->load->language('extension/payment/pp_pro_iframe');
$this->load->model('checkout/order');
$this->load->model('extension/payment/pp_pro_iframe');
$data['text_secure_connection'] = $this->language->get('text_secure_connection');
$order_info = $this->model_checkout_order->getOrder($this->session->data['order_id']);
$hosted_button_id = $this->constructButtonData($order_info);
if ($hosted_button_id) {
$data['code'] = $hosted_button_id;
if ($this->config->get('payment_pp_pro_iframe_test')) {
$data['url'] = 'https://securepayments.sandbox.paypal.com/webapps/HostedSoleSolutionApp/webflow/sparta/hostedSoleSolutionProcess';
} else {
$data['url'] = 'https://securepayments.paypal.com/webapps/HostedSoleSolutionApp/webflow/sparta/hostedSoleSolutionProcess';
}
$data['error_connection'] = '';
} else {
$data['error_connection'] = $this->language->get('error_connection');
}
if (file_exists(DIR_APPLICATION . 'view/theme/' . $this->config->get('config_template') . '/stylesheet/stylesheet.css')) {
$data['stylesheet'] = '/catalog/view/theme/' . $this->config->get('config_template') . '/stylesheet/stylesheet.css';
} else {
$data['stylesheet'] = '/catalog/view/theme/default/stylesheet/stylesheet.css';
}
$this->response->setOutput($this->load->view('extension/payment/pp_pro_iframe_body', $data));
}
public function notify() {
$this->load->model('extension/payment/pp_pro_iframe');
if (isset($this->request->post['custom'])) {
$order_id = $this->encryption->decrypt($this->config->get('config_encryption'), $this->request->post['custom']);
} else {
$order_id = 0;
}
$this->load->model('checkout/order');
$order_info = $this->model_checkout_order->getOrder($order_id);
if ($order_info) {
$request = 'cmd=_notify-validate';
foreach ($this->request->post as $key => $value) {
$request .= '&' . $key . '=' . urlencode(html_entity_decode($value, ENT_QUOTES, 'UTF-8'));
}
if (!$this->config->get('pp_pro_iframe')) {
$curl = curl_init('https://www.paypal.com/cgi-bin/webscr');
} else {
$curl = curl_init('https://www.sandbox.paypal.com/cgi-bin/webscr');
}
curl_setopt($curl, CURLOPT_POST, true);
curl_setopt($curl, CURLOPT_POSTFIELDS, $request);
curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
curl_setopt($curl, CURLOPT_HEADER, false);
curl_setopt($curl, CURLOPT_TIMEOUT, 30);
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
$response = curl_exec($curl);
if (curl_errno($curl)) {
if ($this->config->get('payment_pp_pro_iframe_debug')) {
$log = new Log('pp_pro_iframe.log');
$log->write('pp_pro_iframe :: CURL failed ' . curl_error($curl) . '(' . curl_errno($curl) . ')');
}
} else {
if ($this->config->get('payment_pp_pro_iframe_debug')) {
$log = new Log('pp_pro_iframe.log');
$log->write('pp_pro_iframe :: IPN REQUEST: ' . $request);
$log->write('pp_pro_iframe :: IPN RESPONSE: ' . $response);
}
if ((strcmp($response, 'VERIFIED') == 0 || strcmp($response, 'UNVERIFIED') == 0) && isset($this->request->post['payment_status'])) {
$order_status_id = $this->config->get('payment_pp_pro_iframe_canceled_reversal_status_id');
switch ($this->request->post['payment_status']) {
case 'Canceled_Reversal':
$order_status_id = $this->config->get('payment_pp_pro_iframe_canceled_reversal_status_id');
break;
case 'Completed':
$order_status_id = $this->config->get('payment_pp_pro_iframe_completed_status_id');
break;
case 'Denied':
$order_status_id = $this->config->get('payment_pp_pro_iframe_denied_status_id');
break;
case 'Expired':
$order_status_id = $this->config->get('payment_pp_pro_iframe_expired_status_id');
break;
case 'Failed':
$order_status_id = $this->config->get('payment_pp_pro_iframe_failed_status_id');
break;
case 'Pending':
$order_status_id = $this->config->get('payment_pp_pro_iframe_pending_status_id');
break;
case 'Processed':
$order_status_id = $this->config->get('payment_pp_pro_iframe_processed_status_id');
break;
case 'Refunded':
$order_status_id = $this->config->get('payment_pp_pro_iframe_processed_status_id');
break;
case 'Reversed':
$order_status_id = $this->config->get('payment_pp_pro_iframe_reversed_status_id');
break;
case 'Voided':
$order_status_id = $this->config->get('payment_pp_pro_iframe_voided_status_id');
break;
}
if (!$order_info['order_status_id']) {
$paypal_order_data = array(
'order_id' => $order_id,
'capture_status' => ($this->config->get('payment_pp_pro_iframe_transaction_method') == 'sale' ? 'Complete' : 'NotComplete'),
'currency_code' => $this->request->post['mc_currency'],
'authorization_id' => $this->request->post['txn_id'],
'total' => $this->request->post['mc_gross'],
);
$paypal_iframe_order_id = $this->model_extension_payment_pp_pro_iframe->addOrder($paypal_order_data);
$paypal_transaction_data = array(
'paypal_iframe_order_id' => $paypal_iframe_order_id,
'transaction_id' => $this->request->post['txn_id'],
'parent_id' => '',
'note' => '',
'msgsubid' => '',
'receipt_id' => $this->request->post['receipt_id'],
'payment_type' => $this->request->post['payment_type'],
'payment_status' => $this->request->post['payment_status'],
'pending_reason' => (isset($this->request->post['pending_reason']) ? $this->request->post['pending_reason'] : ''),
'transaction_entity' => ($this->config->get('payment_pp_pro_iframe_transaction_method') == 'sale' ? 'payment' : 'auth'),
'amount' => $this->request->post['mc_gross'],
'debug_data' => json_encode($this->request->post),
);
$this->model_extension_payment_pp_pro_iframe->addTransaction($paypal_transaction_data);
$this->model_checkout_order->addOrderHistory($order_id, $order_status_id);
} else {
$this->model_checkout_order->addOrderHistory($order_id, $order_status_id);
}
} else {
$this->model_checkout_order->addOrderHistory($order_id, $this->config->get('config_order_status_id'));
}
}
curl_close($curl);
}
}
private function constructButtonData($order_info) {
$s_data = array();
$s_data['METHOD'] = 'BMCreateButton';
$s_data['VERSION'] = '65.2';
$s_data['BUTTONCODE'] = 'TOKEN';
$s_data['BUTTONLANGUAGE'] = 'en';
$s_data['BUTTONSOURCE'] = 'OpenCart_2.0_HSS';
$s_data['USER'] = $this->config->get('payment_pp_pro_iframe_user');
$s_data['SIGNATURE'] = $this->config->get('payment_pp_pro_iframe_sig');
$s_data['PWD'] = $this->config->get('payment_pp_pro_iframe_password');
$s_data['BUTTONTYPE'] = 'PAYMENT';
$s_data['L_BUTTONVAR0'] = 'subtotal=' . $this->currency->format($order_info['total'], $order_info['currency_code'], false, false);
$s_data['L_BUTTONVAR1'] = 'tax=0.00';
$s_data['L_BUTTONVAR2'] = 'shipping=0.00';
$s_data['L_BUTTONVAR3'] = 'handling=0.00';
if ($this->cart->hasShipping()) {
$s_data['L_BUTTONVAR4'] = 'first_name=' . urlencode($order_info['shipping_firstname']);
$s_data['L_BUTTONVAR5'] = 'last_name=' . urlencode($order_info['shipping_lastname']);
$s_data['L_BUTTONVAR6'] = 'address1=' . urlencode($order_info['shipping_address_1']);
$s_data['L_BUTTONVAR7'] = 'address2=' . urlencode($order_info['shipping_address_2']);
$s_data['L_BUTTONVAR8'] = 'city=' . urlencode($order_info['shipping_city']);
$s_data['L_BUTTONVAR9'] = 'state=' . urlencode($order_info['shipping_zone']);
$s_data['L_BUTTONVAR10'] = 'zip=' . urlencode($order_info['shipping_postcode']);
$s_data['L_BUTTONVAR11'] = 'country=' . urlencode($order_info['shipping_iso_code_2']);
} else {
$s_data['L_BUTTONVAR4'] = 'first_name=' . urlencode($order_info['payment_firstname']);
$s_data['L_BUTTONVAR5'] = 'last_name=' . urlencode($order_info['payment_lastname']);
$s_data['L_BUTTONVAR6'] = 'address1=' . urlencode($order_info['payment_address_1']);
$s_data['L_BUTTONVAR7'] = 'address2=' . urlencode($order_info['payment_address_2']);
$s_data['L_BUTTONVAR8'] = 'city=' . urlencode($order_info['payment_city']);
$s_data['L_BUTTONVAR9'] = 'state=' . urlencode($order_info['payment_zone']);
$s_data['L_BUTTONVAR10'] = 'zip=' . urlencode($order_info['payment_postcode']);
$s_data['L_BUTTONVAR11'] = 'country=' . urlencode($order_info['payment_iso_code_2']);
}
$s_data['L_BUTTONVAR12'] = 'billing_first_name=' . urlencode($order_info['payment_firstname']);
$s_data['L_BUTTONVAR13'] = 'billing_last_name=' . urlencode($order_info['payment_lastname']);
$s_data['L_BUTTONVAR14'] = 'billing_address1=' . urlencode($order_info['payment_address_1']);
$s_data['L_BUTTONVAR15'] = 'billing_address2=' . urlencode($order_info['payment_address_2']);
$s_data['L_BUTTONVAR16'] = 'billing_city=' . urlencode($order_info['payment_city']);
$s_data['L_BUTTONVAR17'] = 'billing_state=' . urlencode($order_info['payment_zone']);
$s_data['L_BUTTONVAR18'] = 'billing_zip=' . urlencode($order_info['payment_postcode']);
$s_data['L_BUTTONVAR19'] = 'billing_country=' . urlencode($order_info['payment_iso_code_2']);
$s_data['L_BUTTONVAR20'] = 'notify_url=' . $this->url->link('extension/payment/pp_pro_iframe/notify', '', true);
$s_data['L_BUTTONVAR21'] = 'cancel_return=' . $this->url->link('checkout/checkout', '', true);
$s_data['L_BUTTONVAR22'] = 'paymentaction=' . $this->config->get('payment_pp_pro_iframe_transaction_method');
$s_data['L_BUTTONVAR23'] = 'currency_code=' . urlencode($order_info['currency_code']);
$s_data['L_BUTTONVAR26'] = 'showBillingAddress=false';
$s_data['L_BUTTONVAR27'] = 'showShippingAddress=false';
$s_data['L_BUTTONVAR28'] = 'showBillingEmail=false';
$s_data['L_BUTTONVAR29'] = 'showBillingPhone=false';
$s_data['L_BUTTONVAR30'] = 'showCustomerName=true';
$s_data['L_BUTTONVAR31'] = 'showCardInfo=true';
$s_data['L_BUTTONVAR32'] = 'showHostedThankyouPage=false';
$s_data['L_BUTTONVAR33'] = 'bn=GBD';
$s_data['L_BUTTONVAR35'] = 'address_override=true';
$s_data['L_BUTTONVAR36'] = 'cpp_header_image=Red';
$s_data['L_BUTTONVAR44'] = 'bodyBgColor=#AEAEAE';
$s_data['L_BUTTONVAR47'] = 'PageTitleTextColor=Blue';
$s_data['L_BUTTONVAR48'] = 'PageCollapseBgColor=#AEAEAE';
$s_data['L_BUTTONVAR49'] = 'PageCollapseTextColor=#AEAEAE';
$s_data['L_BUTTONVAR50'] = 'PageButtonBgColor=#AEAEAE';
$s_data['L_BUTTONVAR51'] = 'orderSummaryBgColor=#AEAEAE';
$s_data['L_BUTTONVAR55'] = 'template=templateD';
$s_data['L_BUTTONVAR56'] = 'return=' . $this->url->link('checkout/success', '', true);
$s_data['L_BUTTONVAR57'] = 'custom=' . $this->encryption->encrypt($this->config->get('config_encryption'), $order_info['order_id']);
if ($this->config->get('payment_pp_pro_iframe_test')) {
$url = 'https://api-3t.sandbox.paypal.com/nvp';
} else {
$url = 'https://api-3t.paypal.com/nvp';
}
$curl = curl_init($url);
curl_setopt($curl, CURLOPT_PORT, 443);
curl_setopt($curl, CURLOPT_HEADER, 0);
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($curl, CURLOPT_FORBID_REUSE, 1);
curl_setopt($curl, CURLOPT_FRESH_CONNECT, 1);
curl_setopt($curl, CURLOPT_POST, 1);
curl_setopt($curl, CURLOPT_POSTFIELDS, http_build_query($s_data, '', "&"));
curl_setopt($curl, CURLOPT_HTTPHEADER, array('X-VPS-REQUEST-ID: ' . md5($order_info['order_id'] . mt_rand())));
$response = curl_exec($curl);
$response_data = array();
parse_str($response, $response_data);
if ($this->config->get('payment_pp_pro_iframe_debug')) {
$log = new Log('pp_pro_iframe.log');
$log->write(print_r(json_encode($response_data), 1));
}
curl_close($curl);
if (!$response || !isset($response_data['HOSTEDBUTTONID'])) {
return false;
} else {
return $response_data['HOSTEDBUTTONID'];
}
}
}
|
