<?php

// Copyright AI Software Ltd Bucharest, Romania 2001-2011

require_once("config/rights.php");

require_once("config/language.php");

require_once("config/db.php");

//specific for this site

getSiteConfigs();

global $conn;

global $_CONFIG;

require_once 'extern/Mobilpay/Payment/Request/Abstract.php';

require_once 'extern/Mobilpay/Payment/Request/Card.php';

require_once 'extern/Mobilpay/Payment/Request/Notify.php';

require_once 'extern/Mobilpay/Payment/Invoice.php';

require_once 'extern/Mobilpay/Payment/Address.php';

$errorCode = 0;

$errorType = Mobilpay_Payment_Request_Abstract::CONFIRM_ERROR_TYPE_NONE;

$errorMessage = '';

if (strcasecmp($_SERVER['REQUEST_METHOD'], 'post') == 0)

{

if(isset($_POST['env_key']) && isset($_POST['data']))

{

#calea catre cheia privata

#cheia privata este generata de mobilpay, accesibil in Admin -> Conturi de comerciant -> Detalii -> Setari securitate

$privateKeyFilePath = getUserConfig('mobilpay_key');

try

{

global $objPmReq;

$objPmReq = Mobilpay_Payment_Request_Abstract::factoryFromEncrypted($_POST['env_key'], $_POST['data'], $privateKeyFilePath);

#uncomment the line below in order to see the content of the request

print_r($objPmReq);

$errorCode = $objPmReq->objPmNotify->errorCode;

// action = status only if the associated error code is zero

if ($errorCode == "0") {

switch($objPmReq->objPmNotify->action)

{

#orice action este insotit de un cod de eroare si de un mesaj de eroare. Acestea pot fi citite folosind $cod_eroare = $objPmReq->objPmNotify->errorCode; respectiv $mesaj_eroare = $objPmReq->objPmNotify->errorMessage;

#pentru a identifica ID-ul comenzii pentru care primim rezultatul platii folosim $id_comanda = $objPmReq->orderId;

case 'confirmed':

#cand action este confirmed avem certitudinea ca banii au plecat din contul posesorului de card si facem update al starii comenzii si livrarea produsului

//update DB, SET status = "confirmed/captured"

$_GET['mobilpayipn']=true;

$_GET['mobilpayipn_post']=true;

require_once("extensions/process_offer_ws.php");

global $objPmReq;

$offid=intval($objPmReq->orderId);

if($offid)

{

//force approved

$_POST['offid']=$offid;

$_POST['ipnmessage']="Approved";

$_POST['ipnamount']=$objPmReq->objPmNotify->processedAmount;

$_POST['ipnrrn']=$objPmReq->objPmNotify->purchaseId;

$_POST['ipnref']=$objPmReq->objPmNotify->purchaseId;

$off=ws_process('DateOferta');

}

$errorMessage = $objPmReq->objPmNotify->errorMessage;

break;

case 'confirmed_pending':

#cand action este confirmed_pending inseamna ca tranzactia este in curs de verificare antifrauda. Nu facem livrare/expediere. In urma trecerii de aceasta verificare se va primi o noua notificare pentru o actiune de confirmare sau anulare.

//update DB, SET status = "pending"

$errorMessage = $objPmReq->objPmNotify->errorMessage;

break;

case 'paid_pending':

#cand action este paid_pending inseamna ca tranzactia este in curs de verificare. Nu facem livrare/expediere. In urma trecerii de aceasta verificare se va primi o noua notificare pentru o actiune de confirmare sau anulare.

//update DB, SET status = "pending"

$errorMessage = $objPmReq->objPmNotify->errorMessage;

break;

case 'paid':

#cand action este paid inseamna ca tranzactia este in curs de procesare. Nu facem livrare/expediere. In urma trecerii de aceasta procesare se va primi o noua notificare pentru o actiune de confirmare sau anulare.

//update DB, SET status = "open/preauthorized"

$errorMessage = $objPmReq->objPmNotify->errorMessage;

break;

case 'canceled':

#cand action este canceled inseamna ca tranzactia este anulata. Nu facem livrare/expediere.

//update DB, SET status = "canceled"

$errorMessage = $objPmReq->objPmNotify->errorMessage;

break;

case 'credit':

#cand action este credit inseamna ca banii sunt returnati posesorului de card. Daca s-a facut deja livrare, aceasta trebuie oprita sau facut un reverse.

//update DB, SET status = "refunded"

$errorMessage = $objPmReq->objPmNotify->errorMessage;

break;

default:

$errorType = Mobilpay_Payment_Request_Abstract::CONFIRM_ERROR_TYPE_PERMANENT;

$errorCode = Mobilpay_Payment_Request_Abstract::ERROR_CONFIRM_INVALID_ACTION;

$errorMessage = 'mobilpay_refference_action paramaters is invalid';

break;

}

}

else {

//update DB, SET status = "rejected"

$errorMessage = $objPmReq->objPmNotify->errorMessage;

$_GET['mobilpayipn']=true;

$_GET['mobilpayipn_post']=true;

require_once("extensions/process_offer_ws.php");

global $objPmReq;

$offid=intval($objPmReq->orderId);

if($offid)

{

//force approved

$_POST['offid']=$offid;

$_POST['ipnmessage']="Failed";

$_POST['ipnamount']=0;

$_POST['ipnrrn']=$errorMessage;

$_POST['ipnref']='';

$off=ws_process('DateOferta');

}

}

}

catch(Exception $e)

{

$errorType = Mobilpay_Payment_Request_Abstract::CONFIRM_ERROR_TYPE_TEMPORARY;

$errorCode = $e->getCode();

$errorMessage = $e->getMessage();

}

}

else

{

$errorType = Mobilpay_Payment_Request_Abstract::CONFIRM_ERROR_TYPE_PERMANENT;

$errorCode = Mobilpay_Payment_Request_Abstract::ERROR_CONFIRM_INVALID_POST_PARAMETERS;

$errorMessage = 'mobilpay.ro posted invalid parameters';

}

}

else

{

if(isset($_GET['orderId']))

{

header("Location: ".$_CONFIG['ws_merch_kiturl']."site.php?t=thankyou&offid=".intval($_GET['orderId']));

die();

}

$errorType = Mobilpay_Payment_Request_Abstract::CONFIRM_ERROR_TYPE_PERMANENT;

$errorCode = Mobilpay_Payment_Request_Abstract::ERROR_CONFIRM_INVALID_POST_METHOD;

$errorMessage = 'invalid request metod for payment confirmation';

}

header('Content-type: application/xml');

echo "<?xml version=\"1.0\" encoding=\"utf-8\"?>\n";

if($errorCode == 0)

{

echo "<crc>{$errorMessage}</crc>";

}

else

{

echo "<crc error_type=\"{$errorType}\" error_code=\"{$errorCode}\">{$errorMessage}</crc>";

}