function process($parameters)
{
$bitcoinPay = new Bitcoinpay();
if (!$bitcoinPay->checkLogin()) {
$this->redirect('error');
}
$paymentId = false;
if (is_numeric($parameters[0])) {
$paymentId = $parameters[0];
} else {
$this->redirect('error');
}
//allow delete only for admin
$paymentUserId = $bitcoinPay->getPaymentUserId($paymentId);
if (!$bitcoinPay->checkIfIsAdminOfUser($_SESSION['id_user'], $paymentUserId)) {
$this->redirect('error');
}
//disable delete invoice, which is already payed
$fakturoid = new FakturoidWrapper();
$paymentFakturoidId = $fakturoid->getFakturoidInvoiceIdFromPaymentId($paymentId);
$fakturoid->cancelInvoice($paymentFakturoidId);
//TODO disable delete for already payed invoices
$result = $bitcoinPay->deletePayment($paymentId);
$this->messages[] = $result;
//navigate to default view for this action
$this->redirect('checkUsers');
}
public function actualizePayments($payments)
{
$bitcoinPay = new Bitcoinpay();
$messages = [];
foreach ($payments as $payment) {
$paymentId = $payment['id_payment'];
$bitcoinpayId = $payment['bitcoinpay_payment_id'];
$fakturoidId = $payment['invoice_fakturoid_id'];
if (empty($payment['status']) || $payment['status'] == 'unpaid') {
$data['status'] = 'unpaid';
$data['price'] = null;
} else {
$data = $bitcoinPay->getTransactionDetails($bitcoinpayId);
//invalid response
if (empty($data)) {
$messages[] = ['s' => 'info', 'cs' => 'Nepovedlo se nám spojit se se serverem bitcoinpay.com - některé platby můžou být neaktualizované', 'en' => 'We failed at connecting with bitcoinpay.com - some payments may be outdated'];
break;
}
}
$newStatus = $data['status'];
//when status is different (or new), save it and inform user
if ($newStatus != $payment['status']) {
Db::queryModify('UPDATE `payments` SET `status` = ? WHERE `id_payment` = ?', [$newStatus, $paymentId]);
$messages[] = $bitcoinPay->getStatusMessage($newStatus);
//and when receive money, make invoice in fakturoid payed
if ($newStatus == 'confirmed') {
$fakturoid = new FakturoidWrapper();
$fakturoid->setInvoicePayed($fakturoidId);
Db::queryModify('UPDATE `payments`
SET `payed_price_BTC` = ?
WHERE `id_payment` = ?', [$data['settled_amount'], $paymentId]);
}
}
}
return $messages;
}
function process($parameters)
{
$bitcoinPay = new Bitcoinpay();
if (!$bitcoinPay->checkLogin()) {
$this->redirect('error');
}
$case = $parameters[0];
$paymentId = false;
if (is_numeric($parameters[1])) {
$paymentId = $parameters[1];
} else {
$this->redirect('error');
}
//finds out if that payment belongs to logged user. If not, redirect to error
$paymentUserId = $bitcoinPay->getPaymentUserId($paymentId);
if ($paymentUserId != $_SESSION['id_user']) {
$bitcoinPay->newTicket('warning', 'payInvoiceController->user mischmasch violence', 'logged user: '******'id_user'] . ' is trying something with payment of user id: ' . $paymentUserId);
$this->redirect('error');
}
switch ($case) {
case 'pay':
$paymentStatus = $bitcoinPay->returnPaymentStatus($paymentId);
$result = $bitcoinPay->requestPayment($paymentId, $paymentStatus, $this->language);
switch ($result['paymentType']) {
case 'new':
//get payment data, save it and redirect to payment
$data = $result['data'];
$bitcoinPay->updatePayment($paymentId, $data);
$this->redirectOut($data['payment_url']);
break;
case 'old':
//redirect to old payment (pending, refund etc.)
$data = $result['data'];
$this->redirectOut($data['payment_url']);
break;
default:
//invoice already payed or error
$this->messages[] = $result;
break;
}
break;
case 'return':
//first via GET returning status about actual action of user (spoofable, info only for ordinary folks)
switch ($_GET['bitcoinpay-status']) {
case 'true':
$this->messages[] = ['s' => 'success', 'cs' => 'Platbu jsme přijali v pořádku', 'en' => 'Payment was successfully accepted'];
break;
case 'cancel':
$this->messages[] = ['s' => 'info', 'cs' => 'Platba byla přerušena', 'en' => 'Payment was interrupted'];
break;
case 'false':
default:
$bitcoinPay->newTicket('error', 'controller $bitcoinPay->case return->case false', 'error with bitcoinpay payment - something wrong happend');
$this->messages[] = ['s' => 'error', 'cs' => 'S platbou se stalo něco zvláštního', 'en' => 'It\'s something unusual with the payment'];
break;
}
//second get status from bitcoinpay.com directly
$data = $bitcoinPay->getTransactionDetails($bitcoinPay->getBitcoinpayId($paymentId));
if (empty($data)) {
$this->messages[] = ['s' => 'error', 'cs' => 'Pardon, nepovedlo se spojení s platebním serverem bitcoinpay.com - zkuste to prosím za pár minut', 'en' => 'Sorry, we cannot connect payment server bitcoinpay.com - try it again after couple of minutes'];
} else {
//update payment info and show result message
$bitcoinPay->updatePayment($paymentId, $data);
$this->messages[] = $bitcoinPay->getStatusMessage($data['status']);
}
break;
case 'notify':
//TODO make landing page for bitcoinpay notification status change
default:
$this->redirect('error');
}
//navigato to default view for this action
$this->redirect('payments');
}
function process($parameters)
{
$bitcoinPay = new Bitcoinpay();
$case = $parameters[0];
//exception for bitcoinpay notices
if (!$bitcoinPay->checkLogin() && $case != 'notify') {
$this->redirect('error');
}
$paymentId = false;
if (is_numeric($parameters[1])) {
$paymentId = $parameters[1];
} else {
$this->redirect('error');
}
switch ($case) {
case 'pay':
//finds out if that payment belongs to logged user. If not, redirect to error
$paymentUserId = $bitcoinPay->getPaymentUserId($paymentId);
if ($paymentUserId != $_SESSION['id_user']) {
$bitcoinPay->newTicket('warning', 'payInvoiceController->user mischmasch violence', 'logged user: '******'id_user'] . ' is trying something with payment of user id: ' . $paymentUserId);
$this->messages[] = ['s' => 'error', 'cs' => 'Bohužel nelze platit za jiného člověka', 'en' => 'Sorry, we can\'t let you pay for another member'];
$this->redirect('error');
} else {
$result = $bitcoinPay->requestPaymentStatus($paymentId, $this->language);
switch ($result['paymentType']) {
case 'new':
//get payment data, save it and redirect to payment
$data = $result['data'];
$bitcoinPay->updatePayment($paymentId, $data);
$this->redirectOut($data['payment_url']);
break;
case 'old':
//redirect to old payment (pending, refund etc.)
$data = $result['data'];
$this->redirectOut($data['payment_url']);
break;
default:
//invoice already payed or error
$this->messages[] = $result;
break;
}
}
break;
case 'return':
//get status from bitcoinpay.com
$data = $bitcoinPay->getTransactionDetails($bitcoinPay->getBitcoinpayId($paymentId));
if (empty($data)) {
$this->messages[] = ['s' => 'error', 'cs' => 'Pardon, nepovedlo se spojení s platebním serverem bitcoinpay.com - zkuste to prosím za pár minut', 'en' => 'Sorry, could not make the connection with the payment server bitcoinpay.com - please try again in a few minutes'];
} else {
//update payment info and show result message
$bitcoinPay->updatePayment($paymentId, $data);
$this->messages[] = $bitcoinPay->getStatusMessage($data['status']);
}
break;
case 'notify':
$databaseStatus = $bitcoinPay->getPaymentStatus($paymentId);
$rawData = file_get_contents('php://input');
$rawDataWithPass = $rawData . BITOINPAY_CALLBACK_PASS;
$dataHash = hash('sha256', $rawDataWithPass);
$headers = apache_request_headers();
$BPSignature = $headers['BPSignature'];
/*wrong signature
if ($dataHash != $BPSignature) {
//$this->redirect('error');
$this->messages[] = [
's' => 'info',
'cs' => 'chyba zabezpečení webu bitcoinpay.com',
'en' => 'error in security from web bitcoinpay.com'
];
}
/**/
$json = json_decode($rawData);
$notifedStatus = $bitcoinPay->sanitize($json->status);
/*
if ($databaseStatus != $notifedStatus)
$bitcoinPay->updatePaymentStatus($paymentId, $notifedStatus);
*/
//TODO debugging bitcoinpay.com
$bitcoinPay->newTicket('debug', 'bitcoinpayRawData', $rawDataWithPass);
$bitcoinPay->newTicket('debug', 'received new status', $notifedStatus);
$bitcoinPay->newTicket('debug', 'bitcoinpayDataHash', $dataHash);
break;
default:
$this->redirect('error');
}
//navigate to default view for this action
$this->redirect('payments');
}