/**
* Kontrola parametru predavanych ve zpetnem volani po potvrzeni/zruseni platby - verifikace podpisu.
*
* @param float $returnedGoId - goId vracene v redirectu
* @param float $returnedPaymentSessionId - paymentSessionId vracene v redirectu
* @param float $returnedParentPaymentSessionId - id puvodni platby pri opakovane platbe
* @param string $returnedOrderNumber - identifikace objednavky vracena v redirectu - identifikator platby na eshopu
* @param string $returnedEncryptedSignature - kontrolni podpis vraceny v redirectu
* @param float $targetGoId - identifikace prijemce - GoId pridelene GoPay
* @param string $orderNumber - identifikace akt. objednavky
* @param string $secureKey - kryptovaci klic prideleny eshopu / uzivateli, urceny k podepisovani komunikace
*
* @throws \Exception
*/
public static function checkPaymentIdentity($returnedGoId, $returnedPaymentSessionId, $returnedParentPaymentSessionId, $returnedOrderNumber, $returnedEncryptedSignature, $targetGoId, $orderNumber, $secureKey)
{
if (trim($returnedOrderNumber) != trim($orderNumber)) {
throw new \Exception("PI invalid VS");
}
if ($returnedGoId != $targetGoId) {
throw new \Exception("PI invalid GoID");
}
$hashedSignature = GopayHelper::hash(GopayHelper::concatPaymentIdentity((double) $returnedGoId, (double) $returnedPaymentSessionId, (double) $returnedParentPaymentSessionId, $returnedOrderNumber, $secureKey));
$decryptedHash = GopayHelper::decrypt($returnedEncryptedSignature, $secureKey);
if ($decryptedHash != $hashedSignature) {
throw new \Exception("PS invalid signature");
}
}
/**
* Kontrola parametru predavanych ve zpetnem volani po potvrzeni/zruseni platby - verifikace podpisu.
*
* @param float $returnedGoId - goId vracene v redirectu
* @param float $returnedPaymentSessionId - paymentSessionId vracene v redirectu
* @param string $returnedVariableSymbol - variableSymbol vraceny v redirectu - identifikator platby na eshopu
* @param string $returnedEncryptedSignature - kontrolni podpis vraceny v redirectu
* @param float $goId - identifikace eshopu - GoId eshopu pridelene GoPay
* @param string $variableSymbol - identifikace akt. objednavky
* @param string $secret - kryptovaci heslo pridelene eshopu / uzivateli, urcene k podepisovani komunikace
*
* @return true
* @return false
*/
public static function checkPaymentIdentity($returnedGoId, $returnedPaymentSessionId, $returnedVariableSymbol, $returnedEncryptedSignature, $goId, $variableSymbol, $secret)
{
$valid = true;
if (trim($returnedVariableSymbol) != trim($variableSymbol)) {
$valid = false;
// echo "PI invalid VS <br>";
}
if ($returnedGoId != $goId) {
$valid = false;
// echo "PI invalid EID<br>";
}
$hashedSignature = GopayHelper::hash(GopayHelper::concatPaymentIdentity((double) $returnedGoId, (double) $returnedPaymentSessionId, $returnedVariableSymbol, $secret));
$decryptedHash = GopayHelper::decrypt($returnedEncryptedSignature, $secret);
if ($decryptedHash != $hashedSignature) {
$valid = false;
// echo "PI invalid signature <br>";
}
return $valid;
}
