This repository has been archived on 2024-04-08. You can view files and clone it, but cannot push or open issues or pull requests.
khosb/modules/checkout/checkout.inc.php

870 lines
29 KiB
PHP
Raw Normal View History

<?php
/**
* AgileBill - Open Billing Software
*
* This body of work is free software; you can redistribute it and/or
* modify it under the terms of the Open AgileBill License
* License as published at http://www.agileco.com/agilebill/license1-4.txt
2009-08-03 04:10:16 +00:00
*
* Originally authored by Tony Landis, AgileBill LLC
*
* Recent modifications by Deon George
*
* @author Deon George <deonATleenooksDOTnet>
* @copyright 2009 Deon George
* @link http://osb.leenooks.net
*
* @link http://www.agileco.com/
* @copyright 2004-2008 Agileco, LLC.
* @license http://www.agileco.com/agilebill/license1-4.txt
2009-08-03 04:10:16 +00:00
* @author Tony Landis <tony@agileco.com>
* @package AgileBill
* @subpackage Module:Checkout
*/
/**
* The main AgileBill Checkout Class
*
* @package AgileBill
2009-08-03 04:10:16 +00:00
* @subpackage Module:Checkout
*/
2009-08-03 04:10:16 +00:00
class checkout extends OSB_module {
var $account_id;
var $session_id;
var $affiliate_id;
var $campaign_id;
2009-08-03 04:10:16 +00:00
var $admin_view=false;
var $admin_checkout=false;
2009-08-03 04:10:16 +00:00
var $admin_checkout_option=false;
/**
2009-08-03 04:10:16 +00:00
* Add Discount for Admin Checkout
*/
function admin_adddiscount($VAR) {
if(empty($VAR['amount'])) return false;
2009-08-03 04:10:16 +00:00
if(empty($VAR['id'])) return false;
$db=&DB();
$fields=Array('ad_hoc_discount'=>round($VAR['amount'],2));
2009-08-03 04:10:16 +00:00
$db->Execute(sqlUpdate($db,"cart",$fields,"id = ::{$VAR['id']}:: "));
return true;
}
/**
2009-08-03 04:10:16 +00:00
* Add Discount Code to Sess
*/
function adddiscount($VAR)
{
include_once(PATH_MODULES.'discount/discount.inc.php');
$dsc=new discount();
$dsc->add_cart_discount($VAR);
}
/**
2009-08-03 04:10:16 +00:00
* Admin Create the Invoice Record
*/
function admin_checkoutnow($VAR)
2009-08-03 04:10:16 +00:00
{
# Get the account id & session_id
if(!empty($VAR['account_id']))
{
$this->account_id = $VAR['account_id'];
$db = &DB();
$sql = 'SELECT id FROM ' . AGILE_DB_PREFIX . 'session WHERE account_id = ' . $db->qstr( $this->account_id ) . ' AND site_id = ' . $db->qstr(DEFAULT_SITE);
$rs = $db->Execute($sql);
if(!empty($rs->fields['id'])) {
$this->session_id = $rs->fields['id'];
} else {
$this->session_id = SESS;
}
} else {
return false;
}
# Get the affiliate details
global $C_list;
if(!$C_list->is_installed('affiliate')) {
$this->affiliate_id = '';
} else {
if(SESS_AFFILIATE != "") {
$this->affiliate_id = SESS_AFFILIATE;
} else {
# Get the affiliate details for this account
$db = &DB();
$sql = 'SELECT affiliate_id FROM ' . AGILE_DB_PREFIX . 'account WHERE id = ' . $db->qstr( $this->account_id ) . ' AND site_id = ' . $db->qstr(DEFAULT_SITE);
$rs = $db->Execute($sql);
if(!empty($rs->fields['affiliate_id']))
{
$this->affiliate_id = $rs->fields['affiliate_id'];
} else {
# Get the affiliate account for the admin creating this invoice
$db = &DB();
$sql = 'SELECT id FROM ' . AGILE_DB_PREFIX . 'affiliate WHERE account_id = ' . $db->qstr( SESS_ACCOUNT ) . ' AND site_id = ' . $db->qstr(DEFAULT_SITE);
$rs = $db->Execute($sql);
if(!empty($rs->fields['id']))
$this->affiliate_id = $rs->fields['id'];
else
$this->affiliate_id = '';
}
}
}
$this->redirect = true;
$this->admin_checkout = true;
2009-08-03 04:10:16 +00:00
# Is processor free checkout?
if(@$VAR['option'] == '999') $this->admin_checkout_option = true;
# Checkout
if($this->checkoutnow($VAR, $this)) {
echo '<script language="javascript">
window.parent.location = \'?_page=invoice:view&id='.$this->invoice_id.'\';
window.parent.window.parent.location = \'?_page=invoice:view&id='.$this->invoice_id.'\';
window.close();
</script>';
}
}
/**
* Get available checkout option
*
* @param int $account_id
* @param float $total
* @param array $product_arr Array of product_ids being purchased
* @param int $country_id
* @param bool $any_new
* @param bool $any_trial
* @param bool $any_recurring
* @return array
*/
2009-08-03 04:10:16 +00:00
function get_checkout_options($account_id,$total=0,$product_arr=false,$country_id=1,$any_new=false,$any_trial=false,$any_recurring=false) {
$options=false;
if($any_trial) $options .= " AND allow_trial=1 ";
if($any_recurring) $options .= " AND allow_recurring=1 ";
if($any_new) $options .= " AND allow_new=1 ";
2009-08-03 04:10:16 +00:00
if(!$options) return false;
$db=&DB();
2009-08-03 04:10:16 +00:00
$chopt = $db->Execute(sqlSelect($db,"checkout","*","active=1 $options"));
if($chopt && $chopt->RecordCount()) {
while( !$chopt->EOF ) {
$show = true;
# Check that the cart total is not to low:
2009-08-03 04:10:16 +00:00
if ( $show == true && $chopt->fields["total_minimum"] != "" && $total < $chopt->fields["total_minimum"] ) $show = false;
# Check that the cart total is not to high:
if ( $show == true && $chopt->fields["total_maximum"] != "" && $total > $chopt->fields["total_maximum"] ) {
$show = false;
} elseif ($chopt->fields["total_maximum"] == '0' && $total > 0) {
$show = false;
2009-08-03 04:10:16 +00:00
}
# Check that the group requirement is met:
if ( $show == true && !$this->admin_view && !empty ( $chopt->fields["required_groups"] ) ) {
global $C_auth;
$arr = unserialize ( $chopt->fields["required_groups"] );
if(count($arr) > 0 && !empty($arr[0])) $show = false;
for ( $i=0; $i<count($arr); $i++ ) {
if($C_auth->auth_group_by_id($arr[$i])) {
$show = true;
$i=count($arr);
}
}
2009-08-03 04:10:16 +00:00
}
# Check that the customer is not ordering a blocked SKU:
if ( $show == true && !$this->admin_view && !empty ( $chopt->fields["excluded_products"] ) && $product_arr ) {
$arr = unserialize ( $chopt->fields["excluded_products"] );
if(count($arr) > 0) {
for($i=0; $i<count($product_arr); $i++) {
for($isk=0; $isk<count($arr); $isk++) {
if($product_arr[$i] == $arr[$isk] && !empty($arr[$isk]) && !empty($product_arr[$i]['product_id']) ) {
$show = false;
//$i=count($smart);
$isk=count($arr);
}
}
}
}
2009-08-03 04:10:16 +00:00
}
$list_ord = 100;
2009-08-03 04:10:16 +00:00
# Check if this method should be the default method:
if ( $show == true) {
# By Amount:
if ( !empty ( $chopt->fields["default_when_amount"] ) ) {
@$arr = unserialize ( $chopt->fields["default_when_amount"] );
2009-08-03 04:10:16 +00:00
for ( $i=0; $i<count($arr); $i++ ) if ( $total >= $arr[$i] ) $list_ord--; $i=count($arr);
}
# By Currency
if ( !empty ( $chopt->fields["default_when_currency"] ) ) {
@$arr = unserialize ( $chopt->fields["default_when_currency"] );
2009-08-03 04:10:16 +00:00
for ( $i=0; $i<count($arr); $i++ ) if ( SESS_CURRENCY == $arr[$i] ) $list_ord--; $i=count($arr);
}
# By Group
if ( !empty ( $chopt->fields["default_when_group"] ) ) {
@$arr = unserialize ( $chopt->fields["default_when_group"] );
global $C_auth;
2009-08-03 04:10:16 +00:00
for ( $i=0; $i<count($arr); $i++ ) if ( $C_auth->auth_group_by_account_id( $account_id, $arr[$i] ) ) $list_ord--; $i=count($arr);
}
# By Country
if ( !empty ( $chopt->fields["default_when_country"] ) ) {
@$arr = unserialize ( $chopt->fields["default_when_country"] );
2009-08-03 04:10:16 +00:00
for ( $i=0; $i<count($arr); $i++ ) if ( $country_id == $arr[$i] ) $list_ord--; $i=count($arr);
}
# Add to the array
2009-08-03 04:10:16 +00:00
$checkout_options[] = Array ('sort'=>$list_ord, 'fields'=>$chopt->fields);
}
$chopt->MoveNext();
2009-08-03 04:10:16 +00:00
}
# Sort the checkout_options array by the [fields] element
if(count($checkout_options) > 0 ) {
foreach ( $checkout_options as $key => $row ) $sort[$key] = $row["sort"];
array_multisort ( $sort, SORT_ASC, $checkout_options );
return $checkout_options;
}
} else {
return false;
2009-08-03 04:10:16 +00:00
}
return false;
}
2009-08-03 04:10:16 +00:00
/**
2009-08-03 04:10:16 +00:00
* Admin View Preview / Confirm prior to checkout
*/
2009-08-03 04:10:16 +00:00
function admin_preview($VAR) {
global $C_auth;
if(!empty($VAR['account_id']) && $C_auth->auth_method_by_name('checkout','admin_checkoutnow')) {
$this->account_id=$VAR['account_id'];
$this->admin_view = true;
} else {
2009-08-03 04:10:16 +00:00
$this->account_id=SESS_ACCOUNT;
}
$this->preview($VAR, $this);
}
2009-08-03 04:10:16 +00:00
/**
* Preview / Confirm prior to checkout
2009-08-03 04:10:16 +00:00
*/
public function preview($VAR) {
if (! SESS_LOGGED)
return false;
$db = &DB();
if (empty($this->session_id))
$this->session_id = SESS;
if (empty($this->account_id))
$this->account_id = SESS_ACCOUNT;
include_once(PATH_MODULES.'/cart/cart.inc.php');
$cartObj = new cart;
2009-08-03 04:10:16 +00:00
$cartObj->account_id = $this->account_id;
$cartObj->session_id = $this->session_id;
$result = $cartObj->get_contents();
if (! $result || $result->RecordCount() == 0)
return false;
# Load invoice object
include_once(PATH_MODULES.'invoice/invoice.inc.php');
$invoice = new invoice;
2009-08-03 04:10:16 +00:00
$invoice->initNew(0);
$invoice->account_id = $this->account_id;
2009-08-03 04:10:16 +00:00
# Get the account details:
$account = $db->Execute(sqlSelect($db,'account','*',array('id'=>$this->account_id)));
$invoice->country_id = $account->fields['country_id'];
$invoice->state = $account->fields['state'];
2009-08-03 04:10:16 +00:00
# Put cart contents into invoice format
$smart = $cartObj->put_contents_invoice($result,$invoice);
# Get available checkout options
$product_arr = array();
foreach ($invoice->invoice_item as $item)
if (! empty($item['product_id']))
array_push($product_arr,$item['product_id']);
$checkout_options = $this->get_checkout_options($this->account_id,$invoice->total_amt,$product_arr,$invoice->country_id,$invoice->any_new,$invoice->any_trial,$invoice->any_recurring);
$checkout_c = count($checkout_options);
2009-08-03 04:10:16 +00:00
global $smarty;
2009-08-03 04:10:16 +00:00
$smarty->assign('results',count($invoice->invoice_item));
$smarty->assign('cart',$smart);
$smarty->assign('sub_total',($invoice->total_amt+$invoice->discount_amt)-$invoice->tax_amt);
2009-08-03 04:10:16 +00:00
$smarty->assign('total',$invoice->total_amt);
$smarty->assign('discount',$invoice->group_discounts());
$smarty->assign('tax',$invoice->group_taxes());
$smarty->assign('checkout',$checkout_options);
$smarty->assign('checkout_c',$checkout_c);
$checkout_c--;
2009-08-03 04:10:16 +00:00
$smarty->assign('last_checkout_id',$checkout_options[$checkout_c]['fields']['id']);
}
2009-08-03 04:10:16 +00:00
/**
2009-08-03 04:10:16 +00:00
* Create the Invoice Record and send user to checkout
*/
2009-08-03 04:10:16 +00:00
public function checkoutnow($VAR) {
global $C_translate,$C_list,$smarty;
$db = &DB();
2009-08-03 04:10:16 +00:00
# Validate user is logged in:
if (! SESS_LOGGED) {
printf('<script type="text/javascript">alert("%s...");</script>',
_('You must be logged in to complete this purchase! Please refresh this page in your browser to login now.'));
return false;
}
2009-08-03 04:10:16 +00:00
# Check for admin
if (! $this->admin_checkout && ! empty($VAR['account_id'])) {
global $C_auth;
2009-08-03 04:10:16 +00:00
if (! empty($VAR['account_id']) && $C_auth->auth_method_by_name('checkout','admin_checkoutnow')) {
$this->account_id = $VAR['account_id'];
$this->admin_checkout = true;
} else {
2009-08-03 04:10:16 +00:00
$this->account_id = SESS_ACCOUNT;
}
}
2009-08-03 04:10:16 +00:00
if (empty($this->session_id))
$this->session_id = SESS;
if (empty($this->account_id))
$this->account_id = SESS_ACCOUNT;
include_once(PATH_MODULES.'/cart/cart.inc.php');
$cartObj = new cart;
2009-08-03 04:10:16 +00:00
$cartObj->account_id = $this->account_id;
$cartObj->session_id = $this->session_id;
$result = $cartObj->get_contents();
if (! $result || $result->RecordCount() == 0)
return false;
# Load invoice object
include_once(PATH_MODULES.'invoice/invoice.inc.php');
$invoice = new invoice;
2009-08-03 04:10:16 +00:00
$invoice->initNew(0);
$invoice->account_id = $this->account_id;
2009-08-03 04:10:16 +00:00
# Get the account details:
$account = $db->Execute(sqlSelect($db,'account','*',array('id'=>$this->account_id)));
$invoice->country_id = $account->fields['country_id'];
$invoice->state = $account->fields['state'];
2009-08-03 04:10:16 +00:00
# Put cart contents into invoice format
$cartObj->put_contents_invoice($result,$invoice);
// Validate and init a checkout plugin
2009-08-03 04:10:16 +00:00
$checkout = false;
if ($this->admin_checkout_option) {
# Admin checkout option specified
include_once(PATH_MODULES.'checkout/checkout_admin.inc.php');
$PLG = new checkout_admin;
$checkout = true;
$invoice->checkout_plugin_id = false;
} else {
// Get available checkout options and check against the one provided
$invoice->checkout_plugin_id = $VAR['option'];
$product_arr = array();
foreach ($invoice->invoice_item as $item)
if (! empty($item['product_id']))
array_push($product_arr,$item['product_id']);
$checkout_options = $this->get_checkout_options($this->account_id,$invoice->total_amt,$product_arr,$invoice->country_id,$invoice->any_new,$invoice->any_trial,$invoice->any_recurring);
if ($checkout_options) {
foreach ($checkout_options as $a) {
if ($a['fields']['id'] == $invoice->checkout_plugin_id) {
# Load the selected checkout plugin and run pre-validation
$checkout_plugin = $a['fields']['checkout_plugin'];
include_once(sprintf('%scheckout/%s.php',PATH_PLUGINS,$checkout_plugin));
eval ('$PLG = new plg_chout_'.$checkout_plugin.'("'.$invoice->checkout_plugin_id.'");');
$plugin_validate = $PLG->validate($VAR,$this);
if ($plugin_validate != true) {
echo $plugin_validate;
return false;
2009-08-03 04:10:16 +00:00
}
$checkout=true;
break;
}
}
2009-08-03 04:10:16 +00:00
}
}
2009-08-03 04:10:16 +00:00
if (! $checkout) {
echo '<script language=Javascript> alert("Unable to checkout with the selected method, please select another."); </script> ';
return false;
}
2009-08-03 04:10:16 +00:00
// validate credit card on file details
2009-08-03 04:10:16 +00:00
global $VAR;
if (! empty($VAR['account_billing_id']) && @$VAR['new_card']==2) {
$invoice->account_billing_id=$VAR['account_billing_id'];
/* validate credit card on file details */
if(!$PLG->setBillingFromDB($this->account_id, $invoice->account_billing_id, $invoice->checkout_plugin_id)) {
global $C_debug;
$C_debug->alert("Sorry, we cannot use that billing record for this purchase.");
return false;
}
2009-08-03 04:10:16 +00:00
} else {
/* use passed in vars */
$PLG->setBillingFromParams($VAR);
2009-08-03 04:10:16 +00:00
}
// validate recurring processing options
if ($PLG->recurr_only) {
if ($invoice->recur_amt<=0) {
echo '<script language=Javascript> alert("Cannot process non-recurring charges with this payment option, please select another payment option."); </script> ';
return false;
}
2009-08-03 04:10:16 +00:00
if(is_array($invoice->recur_arr) && count($invoice->recur_arr)>1) {
$recurring = true;
// validate recur day and recurring schedule are the same for both products
2009-08-03 04:10:16 +00:00
foreach($invoice->recur_arr as $a) {
foreach($invoice->recur_arr as $b) {
foreach($b as $key=>$val) {
if($key != 'price' && $key != 'recurr_week' && $a[$key] != $val) {
$recurring=false;
break;
}
}
}
2009-08-03 04:10:16 +00:00
}
if (!$recurring) {
echo '<script language=Javascript> alert("This payment option cannot be used when ordering both prorated and non-prorated subscriptions, or when ordering two or more subscriptions with different billing schedules selected. Please make sure all your subscriptions have the same billing schedule selected, try another payment option, or order one subscription at a time. We apologize for any inconvenience."); </script> ';
return false;
}
}
}
2009-08-03 04:10:16 +00:00
# Affiliate
if(empty($this->affiliate_id)) {
if(!empty($account->fields['affiliate_id']))
$invoice->affiliate_id = $account->fields['affiliate_id'];
else
$invoice->affiliate_id = SESS_AFFILIATE;
}
# Campaign
if(empty($this->campaign_id)) {
if(!empty($account->fields['campaign_id']))
$invoice->campaign_id = $account->fields['campaign_id'];
else
$invoice->campaign_id = SESS_CAMPAIGN;
}
2009-08-03 04:10:16 +00:00
$invoice->record_id = sqlGenID($db,"invoice");
$invoice->actual_billed_currency_id = SESS_CURRENCY;
$invoice->billed_currency_id = DEFAULT_CURRENCY;
$invoice->checkout_type = $PLG->type;
2009-08-03 04:10:16 +00:00
// initial invoice status
if( $invoice->total_amt == 0 || $PLG->type == 'gateway') {
2009-08-03 04:10:16 +00:00
$invoice->billing_status = 1;
$invoice->actual_billed_amt = $C_list->format_currency_decimal($invoice->total_amt, SESS_CURRENCY);
$invoice->billed_amt = $invoice->total_amt;
}
// Currency conversion:
if (SESS_CURRENCY != DEFAULT_CURRENCY) {
$bill_amt = $C_list->format_currency_decimal ($invoice->total_amt, SESS_CURRENCY);
$recur_amt = $C_list->format_currency_decimal ($invoice->recur_amt, SESS_CURRENCY);
} else {
$bill_amt = round($invoice->total_amt,2);
$recur_amt = round($invoice->recur_amt,2);
}
2009-08-03 04:10:16 +00:00
// Get currency ISO (three_digit) for checkout plugin
$currrs = $db->Execute(sqlSelect($db,"currency","three_digit","id=".SESS_CURRENCY));
if($currrs && $currrs->RecordCount()) $currency_iso = $currrs->fields['three_digit'];
// Run the plugin bill_checkout() method:
$currency_iso = $C_list->currency_iso(SESS_CURRENCY);
$invoice->checkout_plugin_data = $PLG->bill_checkout($bill_amt, $invoice->record_id, $currency_iso, $account->fields, $recur_amt, $invoice->recur_arr);
if($invoice->checkout_plugin_data === false || $invoice->checkout_plugin_data == '' ) {
if(!empty($PLG->redirect)) echo $PLG->redirect;
2009-08-03 04:10:16 +00:00
return false;
} elseif ($PLG->type == "gateway" || empty($PLG->redirect)) {
2009-08-03 04:10:16 +00:00
$VAR['id'] = $invoice->record_id;
if(!$this->admin_checkout) $VAR['_page'] = "invoice:thankyou";
$invoice->checkout_plugin_data=false;
} elseif(!$this->admin_checkout) {
echo "<html><head></head><body><center>
Please wait while we redirect you to the secure payment site....
{$PLG->redirect}</center></body></html>";
}
// Call the Plugin method for storing the checkout data:
$invoice->account_billing_id = $PLG->store_billing($VAR, $invoice->account_id);
2009-08-03 04:10:16 +00:00
// clear user discounts
$fields=Array('discounts'=>"");
$db->Execute(sqlUpdate($db,"session",$fields,"id = ::".SESS."::"));
2009-08-03 04:10:16 +00:00
// admin options
$email=true;
2009-08-03 04:10:16 +00:00
if($this->admin_checkout) {
if(empty($VAR['send_email']) || $VAR['send_email']=='false') $email=false; else $email=true;
if(!empty($VAR['due_date'])) $invoice->due_date=$this->getInputDate($VAR['due_date']);
if(!empty($VAR['grace_period'])) $invoice->grace_period=$VAR['grace_period'];
2009-08-03 04:10:16 +00:00
if(!empty($VAR['notice_max'])) $invoice->notice_max=$VAR['notice_max'];
}
2009-08-03 04:10:16 +00:00
if ($invoice->commitNew($taxObj,$discountObj,$email)) {
# Delete all cart items
$db->Execute(sqlDelete($db,'cart',sprintf('(session_id=::%s:: OR account_id=%s)',SESS,$invoice->account_id)));
# Admin redirect
if ($this->admin_checkout)
printf('<script language="javascript">parent.location.href=\'%sadmin.php?_page=invoice:view&id=%s\';</script>',URL,$invoice->record_id);
}
return false;
}
2009-08-03 04:10:16 +00:00
/** Convert a localized d,m,y string to epoch timestamp
*/
2009-08-03 04:10:16 +00:00
function getInputDate($date) {
2009-03-28 05:20:19 +00:00
$Arr_format = explode(DEFAULT_DATE_DIVIDER, UNIX_DATE_FORMAT);
$Arr_date = explode(DEFAULT_DATE_DIVIDER, $date);
for($i=0; $i<3; $i++)
{
if($Arr_format[$i] == 'd') $day = $Arr_date[$i];
if($Arr_format[$i] == 'm') $month = $Arr_date[$i];
if($Arr_format[$i] == 'Y') $year = $Arr_date[$i];
}
$timestamp = mktime(0, 0, 0, $month, $day, $year);
2009-08-03 04:10:16 +00:00
return $timestamp;
return time();
}
2009-08-03 04:10:16 +00:00
/**
2009-08-03 04:10:16 +00:00
* Manage postback for multiple invoices
*/
function postback_multiple($arr) {
$db=&DB();
include_once(PATH_MODULES.'invoice/invoice.inc.php');
2009-08-03 04:10:16 +00:00
$invoice=new invoice;
// get multi-invoice details
$total = $invoice->multiple_invoice_total($arr['invoice_id']);
2009-08-03 04:10:16 +00:00
if(!$total) return false;
$amt = $arr['amount'];
2009-08-03 04:10:16 +00:00
foreach($invoice->invoice_id as $id)
{
if($amt > 0)
{
// get total due for this invoice:
$rs=sqlSelect($db, "invoice","SUM(total_amt-billed_amt) as total","id=$id");
if($rs && $rs->RecordCount()) {
$thisamt = $rs->fields["total"];
2009-08-03 04:10:16 +00:00
if($thisamt > $amt)
$arr['amount'] = $amt;
else
$arr['amount'] = $thisamt;
$arr["invoice_id"] = $id;
2009-08-03 04:10:16 +00:00
$this->postback($arr);
$amt -= $thisamt;
}
2009-08-03 04:10:16 +00:00
}
}
}
2009-08-03 04:10:16 +00:00
/**
2009-08-03 04:10:16 +00:00
* Postback for Redirect Pay
*/
function postback($arr)
{
global $C_debug;
2009-08-03 04:10:16 +00:00
if(empty($arr['invoice_id'])) return false;
if(empty($arr['transaction_id'])) return false;
if(empty($arr['amount'])) return false;
2009-08-03 04:10:16 +00:00
if(eregi("MULTI-", $arr['invoice_id'])) {
$this->postback_multiple($arr);
return;
}
# Get the latest invoice info:
2009-08-03 04:10:16 +00:00
$db = &DB();
$sql1 ="";
if(!empty($arr['subscription_id']))
$sql1 = "checkout_plugin_data = ".$db->qstr( trim($arr['subscription_id']) )." OR ";
$q = "SELECT * FROM ".AGILE_DB_PREFIX."invoice WHERE
2009-08-03 04:10:16 +00:00
(
$sql1
parent_id = ".$db->qstr(@$arr['invoice_id'])."
OR
2009-08-03 04:10:16 +00:00
id = ".$db->qstr(@$arr['invoice_id'])."
)
AND
billing_status != 1
2009-08-03 04:10:16 +00:00
AND
site_id = ".$db->qstr(DEFAULT_SITE)."
ORDER BY date_orig
2009-08-03 04:10:16 +00:00
LIMIT 0,1";
$invoice = $db->Execute($q);
if ($invoice === false || $invoice->RecordCount()==0)
$C_debug->error('checkout.inc.php','postback', $q . " | " . @$db->ErrorMsg());
if($invoice->RecordCount() == 0)
return false;
$invoice_id = $invoice->fields['id'];
# Validate the currency
$billed_currency_id = $invoice->fields['billed_currency_id'];
$total_amt = $invoice->fields['total_amt'];
$billed_amt = $invoice->fields['billed_amt'];
$actual_billed_amt = $invoice->fields['actual_billed_amt'];
$currency_iso = @$arr['currency'];
if(empty($currency_iso) || !$currency_iso)
{
# same as billed_currency_id
$this->billed_amt = $arr['amount'] + $billed_amt;
$this->actual_billed_amt = $arr['amount'] + $billed_amt;
$this->actual_billed_currency_id = $billed_currency_id;
}
else
{
# Get the actual billed currency id currency info:
$q = "SELECT * FROM ".AGILE_DB_PREFIX."currency WHERE
three_digit = ".$db->qstr($currency_iso)." AND
site_id = ".$db->qstr(DEFAULT_SITE);
$result = $db->Execute($q);
if ($result === false)
$C_debug->error('checkout.inc.php','postback', $q . " | " . @$db->ErrorMsg());
$actual_billed_currency_id = $result->fields['id'];
if(is_string($result->fields["convert_array"]))
$convert = unserialize($result->fields["convert_array"]);
else
$convert = false;
$this->format_currency[$actual_billed_currency_id] = Array (
'symbol' => $result->fields["symbol"],
'convert' => $convert,
'iso' => $result->fields["three_digit"]);
if($result->RecordCount() == 0 || $actual_billed_currency_id == $billed_currency_id)
{
# same as billed_currency_id
$this->billed_amt = $arr['amount'] + $billed_amt;
$this->actual_billed_amt = $arr['amount'] + $billed_amt;
$this->actual_billed_currency_id = $actual_billed_currency_id;
}
else
{
# Get the billed currency id currency info:
$q = "SELECT * FROM ".AGILE_DB_PREFIX."currency WHERE
id = ".$db->qstr($billed_currency_id)." AND
site_id = ".$db->qstr(DEFAULT_SITE);
$result = $db->Execute($q);
if ($result === false)
$C_debug->error('checkout.inc.php','postback', $q . " | " . @$db->ErrorMsg());
$this->format_currency[$billed_currency_id] = Array (
'symbol' => $result->fields["symbol"],
'convert' => unserialize($result->fields["convert_array"]),
'iso' => $result->fields["three_digit"]);
# Convert the invoice amount to the actual billed currency amount
$due_amount = $invoice->fields['total_amt'] - $invoice->fields['billed_amt'];
$conversion = $this->format_currency[$billed_currency_id]["convert"][$actual_billed_currency_id]["rate"];
$this->billed_amt = $billed_amt + ($arr['amount'] /= $conversion);
$this->actual_billed_amt = $actual_billed_amt + $arr['amount'];
$this->actual_billed_currency_id = $actual_billed_currency_id;
}
}
# Check for any subscription_id
if(!empty($arr['subscription_id'])) {
$this->subscription_id = trim($arr['subscription_id']);
} else {
$this->subscription_id = trim($invoice->fields['checkout_plugin_data']);
}
# Check for the checkout_id
if(!empty($arr['checkout_id'])) {
$this->checkout_id = $arr['checkout_id'];
} else {
$this->checkout_id = $invoice->fields['checkout_plugin_id'];
}
# Check for the billing status:
if($this->billed_amt >= $invoice->fields['total_amt']) {
$this->billing_status = '1';
} else {
$this->billing_status = '0';
}
# Check if this transaction_id has already been processed:
$q = "SELECT id FROM ".AGILE_DB_PREFIX."invoice_memo WHERE
invoice_id = ".$db->qstr($invoice_id)." AND
type = ".$db->qstr('postback')." AND
memo = ".$db->qstr($arr['transaction_id'])." AND
2009-08-03 04:10:16 +00:00
site_id = ".$db->qstr(DEFAULT_SITE);
$memo = $db->Execute($q);
if ($memo === false)
$C_debug->error('checkout.inc.php','postback', $q . " | " . @$db->ErrorMsg());
if ($memo->RecordCount() > 0) {
# duplicate post:
$C_debug->error('Duplicate Postback','checkout.inc.php :: postback()', "Duplicate postback for invoice {$arr['invoice_id']} & transaction id {$arr['transaction_id']}");
} else {
# Create the invoice memo:
$memo_id = $db->GenID(AGILE_DB_PREFIX . 'invoice_memo_id');
$q = "INSERT INTO
2009-08-03 04:10:16 +00:00
".AGILE_DB_PREFIX."invoice_memo
SET
id = ".$db->qstr($memo_id).",
site_id = ".$db->qstr(DEFAULT_SITE).",
2009-08-03 04:10:16 +00:00
date_orig = ".$db->qstr(time()).",
invoice_id = ".$db->qstr($invoice_id).",
account_id = ".$db->qstr(0).",
type = ".$db->qstr('postback').",
memo = ".$db->qstr($arr['transaction_id']) ;
$memosql = $db->Execute($q);
if ($memosql === false)
$C_debug->error('checkout.inc.php','postback', $q . " | " . @$db->ErrorMsg());
# Update the invoice billing info:
$q = "UPDATE
2009-08-03 04:10:16 +00:00
".AGILE_DB_PREFIX."invoice
SET
2009-08-03 04:10:16 +00:00
date_last = ".$db->qstr(time()).",
billing_status = ".$db->qstr($this->billing_status).",
checkout_plugin_id = ".$db->qstr($this->checkout_id).",
checkout_plugin_data = ".$db->qstr($this->subscription_id).",
billed_amt = ".$db->qstr($this->billed_amt).",
actual_billed_amt = ".$db->qstr($this->actual_billed_amt).",
actual_billed_currency_id = ".$db->qstr($this->actual_billed_currency_id)."
WHERE
id = ".$db->qstr($invoice_id)." AND
site_id = ".$db->qstr(DEFAULT_SITE);
$memosql = $db->Execute($q);
if ($memosql === false)
$C_debug->error('checkout.inc.php','postback', $q . " | " . @$db->ErrorMsg());
# Update the invoice approval status
$VAR['id'] = $invoice_id;
include_once(PATH_MODULES.'invoice/invoice.inc.php');
$inv = new invoice;
if(!$arr['status'])
{
# void
$inv->voidInvoice($VAR);
# create a record of the viod in an invoice memo:
$memo_id = $db->GenID(AGILE_DB_PREFIX . 'invoice_memo_id');
$q = "INSERT INTO
2009-08-03 04:10:16 +00:00
".AGILE_DB_PREFIX."invoice_memo
SET
id = ".$db->qstr($memo_id).",
site_id = ".$db->qstr(DEFAULT_SITE).",
2009-08-03 04:10:16 +00:00
date_orig = ".$db->qstr(time()).",
invoice_id = ".$db->qstr($invoice_id).",
account_id = ".$db->qstr(0).",
type = ".$db->qstr('void').",
memo = ".$db->qstr("Voided due to postback: ".$arr['transaction_id']) ;
$rsql = $db->Execute($q);
if ($rsql === false)
$C_debug->error('checkout.inc.php','postback', $q . " | " . @$db->ErrorMsg());
} else {
# approve
$inv->autoApproveInvoice($invoice_id);
# User invoice payment confirmation
include_once(PATH_MODULES.'email_template/email_template.inc.php');
$email = new email_template;
$email->send('invoice_paid_user', $invoice->fields['account_id'], $invoice_id, DEFAULT_CURRENCY, '');
# Admin alert of payment processed
$email = new email_template;
$email->send('admin->invoice_paid_admin', $invoice->fields['account_id'], $invoice_id, DEFAULT_CURRENCY, '');
}
}
return true;
}
/**
2009-08-03 04:10:16 +00:00
* Display Checkout Data Form
*/
function checkoutoption($VAR) {
2009-08-03 04:10:16 +00:00
global $VAR,$C_translate,$C_auth,$C_vars,$smarty;
2009-08-03 04:10:16 +00:00
if (SESS_LOGGED != '1') {
$smarty->assign('plugin_template',false);
return false;
}
2009-08-03 04:10:16 +00:00
# Normal checkout
$db = &DB();
2009-08-03 04:10:16 +00:00
$rs = $db->Execute(sqlSelect($db,'checkout','*',array('id'=>$VAR['option'])));
if (! $rs || $rs->RecordCount() == 0) {
$smarty->assign('plugin_template',false);
return false;
}
2009-08-03 04:10:16 +00:00
# Determine account id
if (! empty($VAR['account_id']) && $C_auth->auth_method_by_name('checkout','admin_checkoutnow')) {
$this->account_id = $VAR['account_id'];
$this->admin_view = true;
} else {
$this->account_id=SESS_ACCOUNT;
}
2009-08-03 04:10:16 +00:00
# Set account options && seed VAR with defaults
if (empty($VAR['detailsnocopy'])) {
$acct = $db->Execute(sqlSelect($db,'account','first_name,last_name,address1,address2,city,state,zip,country_id,email,company',array('id'=>$this->account_id)));
2009-08-03 04:10:16 +00:00
if ($acct && $acct->RecordCount())
foreach ($acct->fields as $key=>$val)
if(!is_numeric($key) && empty($VAR[$key]))
$VAR[$key]=stripslashes($acct->fields[$key]);
}
2009-08-03 04:10:16 +00:00
$C_vars->strip_slashes_all();
$smarty->assign('VAR',$VAR);
$smarty->assign('plugin_template','checkout_plugin:plugin_ord_'.$rs->fields['checkout_plugin']);
}
2009-08-03 04:10:16 +00:00
public function tpl_get_plugindata($VAR) {
global $smarty;
2009-08-03 04:10:16 +00:00
# Normal checkout
$db = &DB();
$rs = $db->Execute(sqlSelect($db,'checkout','plugin_data',array('id'=>$VAR['checkout_id'])));
if ($rs || $rs->RecordCount() == 1)
$smarty->assign('plugin_data',$rs->fields['plugin_data']);
}
}
2009-08-03 04:10:16 +00:00
?>