brennen
/
quasicms
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
A Qcodo based CMS/ecommerce framework
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5 Commits
1 Branch
3.2 MiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
quasicms/core/classes/PayPalExpressCheckoutAction...

329 lines
15 KiB
Raw Permalink Normal View History

Import from svn
12 years ago
 
  1. <?php
  2. /**
  3. * This file is a part of Quasi CMS
  4. *@package Quasi
  5. */
  6. if(!defined('QUASICMS') ) die('No Quasi.');
  7. 

  8. if (!defined("PAYPALEXPRESSCHECKOUTACTION.CLASS.PHP")){
  9. define("PAYPALEXPRESSCHECKOUTACTION.CLASS.PHP",1);
  10. 

  11. /**
  12. * Class PayPalExpressCheckoutAction - PayPal  Express Checkout payment action
  13. *
  14. * This class provides an implementation of the PayPal Express Checkout System including the
  15. * two points of entry required. It can be activated either as a selected payment method on the
  16. * checkout review page or by a click on the "Check out with PayPal" button.
  17. *
  18. * Express Checkout consists of 2 phases:
  19. *   1. A request is sent to the server to set up the transaction details and a "token" is returned.
  20. *       This token is stored in _SESSION['PayPalToken'] to be used in the second phase
  21. *        Order status is left at pending and the customer is redirected to PayPal with the token as
  22. *       part of the redirect URL
  23. *   2. PayPal returns the customer to the PayPalExpressReturn page - this page must exist in
  24. *       database and have in it the PayPalExpressReturnModule. This module will use this action
  25. *       again, calling getExpressCheckoutDetails to complete the transaction. The function will
  26. *       DoExpressCheckoutPayment
  27. *
  28. * Note that this payment action requires the existance of the return and cancel pages to which
  29. * the customer is returned from PayPal - and that these pages must contain a content block with
  30. * the PayPalExpressReturnModule to complete the process. Completion will consist of everything
  31. * normally done in PaymentModule in btnPurchase_Click.
  32. *
  33. *@todo
  34. *   - finish stage two, sending confirmation email on approval and completing the order
  35. * 
  36. *@author Erik Winn <erikwinnmail@yahoo.com>
  37. *
  38. * $Id$
  39. *@version 0.1
  40. *
  41. *@copyright (C) 2008 by Erik Winn
  42. *@license GPL v.2
  43. 

  44.  This program is free software; you can redistribute it and/or modify
  45.  it under the terms of the GNU General Public License as published by
  46.  the Free Software Foundation; either version 2 of the License, or
  47.  (at your option) any later version.
  48. 

  49.  This program is distributed in the hope that it will be useful,
  50.  but WITHOUT ANY WARRANTY; without even the implied warranty of
  51.  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  52.  GNU General Public License for more details.
  53. 

  54.  You should have received a copy of the GNU General Public License
  55.  along with this program; if not, write to the Free Software
  56.  Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111 USA
  57. 

  58. *
  59. *@package Quasi
  60. * @subpackage Classes
  61. */
  62. 

  63.     class PayPalExpressCheckoutAction extends PayPalNVPAction
  64.     {
  65.         
  66.         /**
  67.         * PayPalExpressCheckoutAction Constructor
  68.         *
  69.         * This sets various defaults specific to the Express Checkout process
  70.         *
  71.         *@todo
  72.         *   - safeguard the return URLs - send session id? or, encode account id and order id ..
  73.         *
  74.         * @param Order objOrder - the Order to process
  75.         */
  76.         public function __construct(Order $objOrder)
  77.         {
  78.             try {
  79.                 parent::__construct($objOrder);
  80.             } catch (QCallerException $objExc) {
  81.                 $objExc->IncrementOffset();
  82.                 throw $objExc;
  83.             }
  84.             //the order id may be redundant - we already send INVNUM, this may go away ..

  85.             $this->aryRequestValues['RETURNURL'] = 'http://' . Quasi::$ServerName .  __QUASI_SUBDIRECTORY__ 
  86.                                             . '/index.php/PayPalExpressReturn?orderid=' . $this->objOrder->Id;
  87.             $this->aryRequestValues['CANCELURL'] = 'http://' . Quasi::$ServerName .  __QUASI_SUBDIRECTORY__ 
  88.                                             . '/index.php/PayPalExpressCancel?orderid=' . $this->objOrder->Id;
  89.             
  90.             $this->strRedirectCgiUrl = '/cgi-bin/webscr?';
  91.                          
  92.             $this->strTemplateUri = __QUASI_CORE_TEMPLATES__ . '/PayPalExpressCheckoutAction.tpl.php';
  93.         }
  94.        /**
  95.         * The createRequest functions are handled by get/setExpressCheckoutDetails
  96.         * as they occur before and after a customer is redirected to PayPal and are
  97.         * therefor two separate requests. 
  98.         */        
  99.         protected function createPOSTRequest(){}
  100.         protected function createGETRequest(){}
  101.         
  102.         /**
  103.         * Performs any preparation steps prior to submitting an actual payment.
  104.         * We submit a call to the SetExpressCheckoutDetails API here and set up
  105.         * the values for the transaction. If successful, aryResponseValues['TOKEN']
  106.         * will contain the identifier for the transaction.
  107.         *@return bool true on success  
  108.         */        
  109.         public function PreProcess()
  110.         {            
  111.             $this->aryRequestValues['METHOD'] = 'SetExpressCheckout';
  112.             $this->setExpressCheckoutDetails();
  113.             return ! $this->HasErrors;
  114.         }
  115.         /**
  116.         * 
  117.         *@return bool true on success
  118.         */        
  119.         public function Process()
  120.         {
  121.             return ! $this->HasErrors;
  122.         }
  123.         /**
  124.         * This function simply checks the return from setExpressCheckoutDetails and then
  125.         * redirects the user to PayPal's site to complete the payment
  126.         * Updating order_status_history is also performed here.
  127.         *@return bool true on success  
  128.         */        
  129.         public function PostProcess()
  130.         {
  131.             $strRedirectTarget = $this->strRedirectDomainName . $this->strRedirectCgiUrl
  132.                             . 'cmd=_express-checkout&token=' . $this->objPaypalTransaction->PpToken;
  133.             Quasi::Redirect($strRedirectTarget );
  134.         }
  135.         
  136.         /**
  137.         * Creates POST string for the first half of the PayPal transaction, setting the checkout details
  138.         * and storing the result in strPOSTRequest. Then a query is sent to NVP API server and the PayPal
  139.         * "token" is recieved which will be used by getExpressCheckoutDetails to validate the payment.
  140.         */        
  141.         protected function setExpressCheckoutDetails()
  142.         {
  143.             $this->aryRequestValues['METHOD'] = 'SetExpressCheckout';
  144. 

  145.             //optionally send a shipping address to display ..

  146.             if( $this->ShowShippingAddress )
  147.                 $this->initShippingDetails();
  148.             else
  149.                 $this->aryRequestValues['NOSHIPPING'] = 1;
  150. 

  151.             $this->aryRequestValues['AMT'] = $this->fltTotalPrice;
  152.             $this->aryRequestValues['ITEMAMT'] = $this->objOrder->ProductTotalCharged;
  153.             $this->aryRequestValues['INVNUM'] = $this->objOrder->Id;
  154.             $this->aryRequestValues['SHIPPINGAMT'] = $this->objOrder->ShippingCharged;
  155.             $this->aryRequestValues['HANDLINGAMT'] = $this->objOrder->HandlingCharged;
  156.             $this->aryRequestValues['TAXAMT'] = $this->objOrder->Tax;
  157.             //truncated to fit PP specs in case of long store names ..

  158.             $this->aryRequestValues['DESC'] = urlencode(substr(STORE_NAME . ' Order ' . $this->objOrder->Id, 0, 127));
  159.             
  160.             foreach( $this->aryRequestValues as $strName => $strValue )
  161.                 if('' != $strValue )
  162.                     $this->strPOSTRequest .= '&' . $strName . '=' . $strValue;
  163.             $this->submitRequest();
  164.             
  165.             $this->handleResponse();
  166. /*            if( ! $this->submitRequest())
  167.                 throw new Exception('PayPal EC submit failed: ' . $this->strPOSTRequest);
  168.             
  169.             if( ! $this->handleResponse())
  170.                 throw new Exception('PayPal EC submit failed: ' . $this->strErrors
  171.                                                  . ' <br /><br /> Response: ' . $this->strResponse);*/
  172.         }
  173.         /**
  174.         * This function is called by PayPalExpressReturnModule when the buyer returns from PayPal.
  175.         *Here we determine the payer id and status in preparation for completing the order ..
  176.         */
  177.         public function getExpressCheckoutDetails()
  178.         {
  179.             $this->strPOSTRequest = '';
  180.             $this->aryRequestValues['METHOD'] = 'GetExpressCheckoutDetails';
  181.             $this->aryRequestValues['TOKEN'] = $_GET['token'];
  182.             // also adds default settings ..

  183.             foreach( $this->aryRequestValues as $strName => $strValue )
  184.                 if('' != $strValue )
  185.                     $this->strPOSTRequest .= '&' . $strName . '=' . $strValue;
  186. 

  187.             $this->submitRequest();
  188.             $this->handleResponse();
  189.             if( $this->HasErrors )
  190.                 return false;
  191.             if( '' == $this->objPaypalTransaction->PayerId )
  192.             {
  193.                 $this->HasErrors = true;
  194.                 $this->objPaypalTransaction->Messages .= '| Quasi PP Express: No PayerId returned! |';
  195.                 $this->objPaypalTransaction->Save();
  196.                 return false;
  197.             }
  198.             return true;
  199.         }
  200.         /**
  201.         * This function overrides the PaymentActionBase completion - it is called by PayPalExpressReturnModule
  202.         * when the buyer returns from PayPal.
  203.         *@todo handle PENDINGREASON, REASONCODE, PAYMENTTYPE != INSTANT ..
  204.         */
  205.         public function doExpressCheckoutPayment()
  206.         {
  207.             $this->strPOSTRequest = '';
  208.             $this->aryRequestValues['METHOD'] = 'DoExpressCheckoutPayment';
  209.             $this->aryRequestValues['TOKEN'] = $this->objPaypalTransaction->PpToken;
  210.             $this->aryRequestValues['PAYERID'] = $this->objPaypalTransaction->PayerId;
  211.             $this->aryRequestValues['INVNUM'] = $this->objOrder->Id;
  212.             $this->aryRequestValues['AMT'] = $this->fltTotalPrice;
  213.             $this->aryRequestValues['ITEMAMT'] = $this->objOrder->ProductTotalCharged;
  214.             $this->aryRequestValues['SHIPPINGAMT'] = $this->objOrder->ShippingCharged;
  215.             $this->aryRequestValues['HANDLINGAMT'] = $this->objOrder->HandlingCharged;
  216.             $this->aryRequestValues['TAXAMT'] = $this->objOrder->Tax;
  217.             // also adds default settings ..

  218.             foreach( $this->aryRequestValues as $strName => $strValue )
  219.                 if('' != $strValue )
  220.                     $this->strPOSTRequest .= '&' . $strName . '=' . $strValue;
  221. 

  222. //            die($this->strPOSTRequest);

  223.             
  224.             $this->submitRequest();
  225.             $this->handleResponse();
  226.             if( $this->HasErrors )
  227.                 return false;
  228.                 
  229.             // check for the payment status

  230.             $strStatus = $this->objPaypalTransaction->PaymentStatus;
  231.             if('' == $strStatus )
  232.             {
  233.                 $this->HasErrors = true;
  234.                 $this->objPaypalTransaction->Messages .= '| Quasi PP Express: No Payment status returned! |';
  235.                 $this->objPaypalTransaction->Save();
  236.                 return false;
  237.             }
  238. 

  239. ///@todo handle PENDINGREASON, REASONCODE, PAYMENTTYPE != INSTANT ..

  240.             switch( strtoupper($strStatus) )
  241.             {
  242.                 case 'COMPLETED':
  243.                     $this->blnApproved = true;
  244.                     break;
  245.                 case 'PENDING':
  246.                 default:
  247.                     $this->blnApproved = false;                    
  248.             }
  249.         }
  250.         protected function initShippingDetails()
  251.         {
  252.             $this->aryRequestValues['NOSHIPPING'] = 0;
  253.             $this->aryRequestValues['ADDRESSOVERRIDE'] = 1;
  254.             
  255.             //We must concatenate all the name fields into NAME ..

  256.             if( '' != $this->objOrder->ShippingNamePrefix )
  257.                 $this->aryRequestValues['SHIPTONAME'] = urlencode($this->objOrder->ShippingNamePrefix . ' ');
  258.             $this->aryRequestValues['SHIPTONAME'] .= urlencode($this->objOrder->ShippingFirstName);
  259. 

  260.             if( '' != $this->objOrder->ShippingMiddleName )
  261.                 $this->aryRequestValues['SHIPTONAME'] .= urlencode(' ' . $this->objOrder->ShippingMiddleName);
  262.             $this->aryRequestValues['SHIPTONAME'] .= urlencode(' ' . $this->objOrder->ShippingLastName);
  263. 

  264.             if( '' != $this->objOrder->ShippingNameSuffix )
  265.                 $this->aryRequestValues['SHIPTONAME'] .= urlencode(' ' . $this->objOrder->ShippingNameSuffix);
  266. 

  267.             $this->aryRequestValues['SHIPTOSTREET'] = urlencode($this->objOrder->ShippingStreet1);
  268. 

  269.             if( '' != $this->objOrder->ShippingStreet2 )
  270.                 $this->aryRequestValues['SHIPTOSTREET2'] = urlencode($this->objOrder->ShippingStreet2);
  271.             //PayPal offers no field for County or Suburb so we must put them in street2 ..

  272.             if( '' != $this->objOrder->ShippingSuburb )
  273.                 $this->aryRequestValues['SHIPTOSTREET2'] .= urlencode(', ' . $this->objOrder->ShippingSuburb);
  274.             if( '' != $this->objOrder->ShippingCounty )
  275.                 $this->aryRequestValues['SHIPTOSTREET2'] .= urlencode(', ' . $this->objOrder->ShippingCounty);
  276. 

  277.             $this->aryRequestValues['SHIPTOCITY'] = urlencode($this->objOrder->ShippingCity);
  278.             $this->aryRequestValues['SHIPTOSTATE'] = urlencode($this->objOrder->ShippingState);
  279.             $this->aryRequestValues['SHIPTOCOUNTRY'] = urlencode($this->objOrder->ShippingCountry);
  280.             $this->aryRequestValues['SHIPTOZIP'] = urlencode($this->objOrder->ShippingPostalCode);
  281.         }
  282.         /**
  283.         * Creates GET query string for the second half of the PayPal transaction. This function is called
  284.         * by the PayPalExpressReturnModule only, which is effectively the return URL given to PayPal
  285.         * in the first half of the transaction to which the user is redirected after paying. The "token"
  286.         */
  287.         
  288.         public function __get($strName)
  289.         {
  290.             switch ($strName)
  291.             {
  292.                 case 'ShowShippingAddress':
  293.                     return $this->blnShowShippingAddress;
  294.                 default:
  295.                      try {
  296.                         return parent::__get($strName);
  297.                      } catch (QCallerException $objExc) {
  298.                         $objExc->IncrementOffset();
  299.                         throw $objExc;
  300.                      }
  301.             }
  302.         }
  303.         
  304.         public function __set($strName, $mixValue)
  305.         {
  306.             switch ($strName)
  307.             {
  308.                 case 'ShowShippingAddress':
  309.                     try {
  310.                         $this->blnShowShippingAddress = QType::Cast($mixValue, QType::Boolean );
  311.                     } catch (QInvalidCastException $objExc) {
  312.                         $objExc->IncrementOffset();
  313.                         throw $objExc;
  314.                     }
  315.                     //careful, its backwards ..

  316.                     $this->aryRequestValues['NOSHIPPING'] = (true === $mixValue) ? 0 : 1;
  317.                 default:
  318.                     try {
  319.                         return (parent::__set($strName, $mixValue));
  320.                     } catch (QCallerException $objExc) {
  321.                         $objExc->IncrementOffset();
  322.                         throw $objExc;
  323.                     }
  324.             }
  325.         }
  326.     
  327.     }//end class

  328. }//end define

  329. 

  330. ?>