/**
* View the cart.
* This function shows the shopping cart, either with the quantity fields
* and option to update, or with the checkout buttons depending on the
* value of $checkout.
*
* @uses getCheckoutButtons()
* @param boolean $checkout True to indicate this is the final checkout
* @return string HTML for the "view cart" form
*/
public function View($checkout = false)
{
global $_CONF, $_PP_CONF, $_USER, $LANG_PP, $_TABLES, $_SYSTEM;
USES_paypal_class_product();
USES_paypal_class_currency();
$currency = new ppCurrency();
$T = new Template(PAYPAL_PI_PATH . '/templates');
$tpltype = $_SYSTEM['framework'] == 'uikit' ? '.uikit' : '';
$T->set_file('cart', $checkout ? "order{$tpltype}.thtml" : "viewcart{$tpltype}.thtml");
if (!isset($this->m_cart) || empty($this->m_cart)) {
return $LANG_PP['cart_empty'];
}
if ($checkout) {
foreach ($_PP_CONF['workflows'] as $key => $value) {
$T->set_var('have_' . $value, 'true');
foreach ($this->_addr_fields as $fldname) {
$T->set_var($value . '_' . $fldname, $this->m_info[$value][$fldname]);
}
}
$T->set_var('not_final', 'true');
}
$T->set_block('order', 'ItemRow', 'iRow');
// Get the workflows so we show the relevant info.
if (!isset($_PP_CONF['workflows']) || !is_array($_PP_CONF['workflows'])) {
USES_paypal_class_workflow();
ppWorkflow::Load();
}
$T->set_block('cart', 'ItemRow', 'iRow');
$counter = 0;
$subtotal = 0;
$shipping = 0;
foreach ($this->m_cart as $id => $item) {
$counter++;
$attr_desc = '';
list($item_id, $attr_keys) = PAYPAL_explode_opts($item['item_id']);
if (is_numeric($item_id)) {
// a catalog item, get the "right" price
$P = new Product($item_id);
$item_price = $P->getPrice($attr_keys, $item['quantity']);
if (!empty($attr_keys)) {
foreach ($attr_keys as $attr_key) {
if (!isset($P->options[$attr_key])) {
continue;
}
// invalid?
//$attr_price = (float)$P->options[$attr_key]['attr_price'];
$attr_name = $P->options[$attr_key]['attr_name'];
$attr_value = $P->options[$attr_key]['attr_value'];
$attr_desc .= "<br /> -- {$attr_name}: {$attr_value}";
/*if ($attr_price != 0) {
$item_price += $attr_price;
}*/
}
}
$text_names = explode('|', $P->custom);
if (!empty($text_names) && is_array($item['extras']['custom'])) {
foreach ($item['extras']['custom'] as $tid => $val) {
$attr_desc .= '<br /> -- ' . htmlspecialchars($text_names[$tid]) . ': ' . htmlspecialchars($val);
}
}
$item['descrip'] .= $attr_desc;
// Get shipping amount and weight
if ($P->shipping_type == 2 && $P->shipping_amt > 0) {
// fixed shipping amount per item. Update actual cart
$this->m_cart[$id]['shipping'] = $P->shipping_amt * $item['quantity'];
$shipping += $this->m_cart[$id]['shipping'];
// for display
} elseif ($P->shipping_type == 1 && $P->weight > 0) {
// using gateway profile, save the item's weight in the cart
$this->m_cart[$id]['weight'] = $P->weight * $item['quantity'];
}
$this->m_cart[$id]['taxable'] = $P->taxable ? 'Y' : 'N';
$this->m_cart[$id]['type'] = $P->prod_type;
} else {
// A plugin item, it's not something we can look up
$item_price = (double) $item['price'];
if (isset($item['extras']['shipping'])) {
$shipping += (double) $item['extras']['shipping'];
$this->m_cart[$id]['shipping'] = $item['extras']['shipping'];
}
}
$item_total = $item_price * $item['quantity'];
$T->set_var(array('cart_item_id' => $id, 'pi_url' => PAYPAL_URL, 'cart_id' => $item['item_id'], 'pp_id' => $counter, 'item_id' => $item_id, 'item_descrip' => $item['descrip'], 'item_price' => COM_numberFormat($item_price, 2), 'item_quantity' => $item['quantity'], 'item_total' => COM_numberFormat($item_total, 2), 'item_link' => is_numeric($item_id) ? 'true' : ''));
$T->parse('iRow', 'ItemRow', true);
$subtotal += $item_total;
}
$custom_info = array('uid' => $_USER['uid'], 'transtype' => 'cart_upload', 'cart_id' => $this->cartID());
$total = $subtotal + $shipping;
// A little hack to show only the total if there are no other
// charges
//if ($total == $subtotal) $subtotal = 0;
// Format the TOC link, if any
if (!empty($_PP_CONF['tc_link'])) {
$tc_link = str_replace('{site_url}', $_CONF['site_url'], $_PP_CONF['tc_link']);
} else {
$tc_link = '';
}
$T->set_var(array('paypal_url' => $_PP_CONF['paypal_url'], 'receiver_email' => $_PP_CONF['receiver_email'][0], 'custom' => serialize($custom_info), 'shipping' => $shipping > 0 ? $currency->Format($shipping) : '', 'subtotal' => $subtotal > 0 ? $currency->Format($subtotal) : '', 'total' => $currency->Format($total), 'order_instr' => htmlspecialchars($this->getInstructions()), 'tc_link' => $tc_link));
// If this is the final checkout, then show the payment buttons
if ($checkout) {
$T->set_var(array('gateway_vars' => $this->getCheckoutButtons(), 'checkout' => 'true'));
}
$T->parse('output', 'cart');
$form = $T->finish($T->get_var('output'));
return $form;
}
/**
* Send an email to the buyer
*
* @param string $status Order status (pending, paid, etc.)
* @param string $msg Optional message to include with email
*/
public function Notify($status = '', $gw_msg = '')
{
global $_CONF, $_PP_CONF, $_TABLES;
// Check if we're supposed to send a notification
if ($this->uid != 1 && $_PP_CONF['purch_email_user'] || $this->uid == 1 && $_PP_CONF['purch_email_anon']) {
PAYPAL_debug("Sending email to " . $this->uid);
// setup templates
$message = new Template(PAYPAL_PI_PATH . '/templates');
$message->set_file(array('subject' => 'purchase_email_subject.txt', 'msg_admin' => 'purchase_email_admin.txt', 'msg_user' => 'purchase_email_user.txt', 'msg_body' => 'purchase_email_body.txt'));
// Add all the items to the message
$total = (double) 0;
// Track total purchase value
$files = array();
// Array of filenames, for attachments
$num_format = "%5.2f";
$item_total = 0;
$have_physical = 0;
// Assume no physical items.
$dl_links = '';
// Start with empty download links
USES_paypal_class_product();
foreach ($this->items as $id => $item) {
if (!PAYPAL_is_plugin_item($item['product_id'])) {
$P = new Product($item['product_id']);
if ($P->prod_type & PP_PROD_PHYSICAL == PP_PROD_PHYSICAL) {
$have_physical = 1;
}
// Add the file to the filename array, if any. Download
// links are only included if the order status is 'paid'
$file = $P->file;
if (!empty($file) && $this->status == 'paid') {
$files[] = $file;
$dl_url = PAYPAL_URL . '/download.php?';
// There should always be a token, but fall back to the
// product ID if there isn't
if (!empty($item['token'])) {
$dl_url .= 'token=' . urlencode($item['token']);
} else {
$dl_url .= 'id=' . $item['item_number'];
}
$dl_links .= "<a href=\"{$dl_url}\">{$dl_url}</a><br />";
}
}
$ext = (double) $item['quantity'] * (double) $item['price'];
$item_total += $ext;
$item_descr = isset($item['description']) ? $item['description'] : $item['descrip'];
//$message->set_block('message', 'ItemList', 'List');
$opts = json_decode($item['options_text'], true);
if ($opts) {
foreach ($opts as $opt_text) {
$options_text .= " -- {$opt_text}<br />";
}
}
$message->set_block('msg_body', 'ItemList', 'List');
$message->set_var(array('qty' => $item['quantity'], 'price' => sprintf($num_format, $item['price']), 'ext' => sprintf($num_format, $ext), 'name' => $item_descr, 'options_text' => $options_text));
//PAYPAL_debug("Qty: {$item['quantity']} : Amount: {$item['price']} : Name: {$item['name']}", 'debug_ipn');
$message->parse('List', 'ItemList', true);
}
// Determine if files will be attached to this message based on
// global config and whether there are actually any files to
// attach. Affects the 'files' flag in the email template and
// which email function is used.
if ((is_numeric($this->uid) && $this->uid != 1 && $_PP_CONF['purch_email_user_attach'] || (!is_numeric($this->uid) || $this->uid == 1) && $_PP_CONF['purch_email_anon_attach']) && count($files) > 0) {
$do_send_attachments = true;
} else {
$do_send_attachments = false;
}
$total_amount = $item_total + $this->tax + $this->shipping + $this->handling;
$user_name = COM_getDisplayName($this->uid);
if ($this->billto_name == '') {
$this->billto_name = $user_name;
}
$message->set_var(array('payment_gross' => sprintf($num_format, $total_amount), 'payment_items' => sprintf($num_format, $item_total), 'tax' => sprintf($num_format, $this->tax), 'shipping' => sprintf($num_format, $this->shipping), 'handling' => sprintf($num_format, $this->handling), 'payment_date' => $_PP_CONF['now']->toMySQL(true), 'payer_email' => $this->buyer_email, 'payer_name' => $this->billto_name, 'site_name' => $_CONF['site_name'], 'txn_id' => $this->pmt_txn_id, 'pi_url' => PAYPAL_URL, 'pi_admin_url' => PAYPAL_ADMIN_URL, 'dl_links' => $dl_links, 'files' => $do_send_attachments ? 'true' : '', 'buyer_uid' => $this->uid, 'user_name' => $user_name, 'gateway_name' => $this->pmt_method, 'pending' => $this->status == 'pending' ? 'true' : '', 'gw_msg' => $gw_msg, 'status' => $this->status, 'order_instr' => $this->instructions));
// parse templates for subject/text
$subject = trim($message->parse('output', 'subject'));
$message->set_var('purchase_details', $message->parse('detail', 'msg_body'));
$user_text = $message->parse('user_out', 'msg_user');
$admin_text = $message->parse('admin_out', 'msg_admin');
if ($this->buyer_email != '') {
// if specified to mail attachment, do so, otherwise skip
// attachment
if ($do_send_attachments) {
// Make sure plugin functions are available
USES_paypal_functions();
PAYPAL_mailAttachment($this->buyer_email, $subject, $user_text, $_CONF['site_email'], true, 0, '', '', $files);
} else {
// Otherwise send a standard notification
COM_emailNotification(array('to' => array($this->buyer_email), 'from' => $_CONF['site_mail'], 'htmlmessage' => $user_text, 'subject' => $subject));
}
}
// Send a notification to the administrator, new purchases only
if ($status == '') {
if ($_PP_CONF['purch_email_admin'] == 2 || $have_physical && $_PP_CONF['purch_email_admin'] == 1) {
PAYPAL_debug('Sending email to Admin');
$email_addr = empty($_PP_CONF['admin_email_addr']) ? $_CONF['site_mail'] : $_PP_CONF['admin_email_addr'];
COM_emailNotification(array('to' => array($email_addr), 'from' => $_CONF['noreply_mail'], 'htmlmessage' => $admin_text, 'subject' => $subject));
}
}
}
}
if (isset($_GET['id'])) {
$id = COM_sanitizeID($_GET['id']);
} else {
$id = COM_applyFilter(COM_getArgument('id'));
}
$display = PAYPAL_siteHeader();
$T = new Template(PAYPAL_PI_PATH . '/templates');
$T->set_file('title', 'paypal_title.thtml');
$T->set_var('title', $LANG_PP['main_title']);
$display .= $T->parse('', 'title');
if (!empty($msg)) {
//msg block
$display .= COM_startBlock('', '', 'blockheader-message.thtml');
$display .= $msg;
$display .= COM_endBlock('blockfooter-message.thtml');
}
$display .= PAYPAL_userMenu($LANG_PP['product_list']);
$content = '';
if (!empty($id)) {
USES_paypal_class_product();
$P = new Product($id);
if ($P->id == $id) {
$content = $P->Detail();
}
}
if (empty($content)) {
$content = PAYPAL_errorMessage($LANG_PP['invalid_product_id']);
}
$display .= $content;
$display .= PAYPAL_siteFooter();
echo $display;
/**
* Diaplay the product catalog items.
*
* @return string HTML for product catalog.
*/
function PAYPAL_ProductList($cat = 0, $search = '')
{
global $_TABLES, $_CONF, $_PP_CONF, $LANG_PP, $_USER, $_PLUGINS, $_IMAGE_TYPE, $_GROUPS;
USES_paypal_class_product();
if (SEC_hasRights('paypal.admin')) {
$isAdmin = true;
} else {
$isAdmin = false;
}
$my_groups = implode(',', $_GROUPS);
$cat_name = '';
$breadcrumbs = '';
$img_url = '';
$display = '';
if ($cat != 0) {
$breadcrumbs = PAYPAL_Breadcrumbs($cat);
$cat = (int) $cat;
$A = DB_fetchArray(DB_query("SELECT cat_name, image\n FROM {$_TABLES['paypal.categories']}\n WHERE cat_id='{$cat}' " . COM_getPermSQL('AND')), false);
if (!empty($A)) {
$cat_name = $A['cat_name'];
if (!empty($A['image']) && is_file($_CONF['path_html'] . $_PP_CONF['pi_name'] . '/images/categories/' . $A['image'])) {
$img_url = PAYPAL_URL . '/images/categories/' . $A['image'];
}
}
}
// Display categories
if (isset($_PP_CONF['cat_columns']) && $_PP_CONF['cat_columns'] > 0) {
$sql = "SELECT cat.cat_id, cat.cat_name, count(prod.id) AS cnt \n FROM {$_TABLES['paypal.categories']} cat\n LEFT JOIN {$_TABLES['paypal.products']} prod\n ON prod.cat_id = cat.cat_id\n WHERE cat.enabled = '1' AND cat.parent_id = '{$cat}' \n AND prod.enabled = '1' " . COM_getPermSQL('AND', 0, 2, 'cat') . " GROUP BY cat.cat_id\n ORDER BY cat.cat_name";
//HAVING cnt > 0
//echo $sql;die;
$CT = new Template(PAYPAL_PI_PATH . '/templates');
$CT->set_file(array('table' => 'category_table.thtml', 'row' => 'category_row.thtml', 'category' => 'category.thtml'));
$CT->set_var('width', floor(100 / $_PP_CONF['cat_columns']));
if ($breadcrumbs != '') {
$CT->set_var('breadcrumbs', $breadcrumbs);
}
if ($img_url != '') {
$CT->set_var('catimg_url', $img_url);
}
$res = DB_query($sql);
$A = array();
while ($C = DB_fetchArray($res, false)) {
$A[$C['cat_id']] = array($C['cat_name'], $C['cnt']);
}
// Now get categories from plugins
foreach ($_PLUGINS as $pi_name) {
$function = 'USES_' . $pi_name . '_paypal';
if (function_exists($function)) {
$function();
$function = 'plugin_paypal_getcategories_' . $pi_name;
if (function_exists($function)) {
$pi_cats = $function();
foreach ($pi_cats as $catid => $data) {
$A[$catid] = $data;
}
}
}
}
$i = 1;
$nrows = count($A);
foreach ($A as $category => $info) {
$CT->set_var(array('category_name' => $info[0], 'category_link' => PAYPAL_URL . '/index.php?category=' . urlencode($category)));
/*if ($category == $cat) {
$CT->set_var('curr', 'current');
$cat_name = $info[0];
} else {
$CT->set_var('curr', 'other');
}*/
$CT->parse('catrow', 'category', true);
if ($i % $_PP_CONF['cat_columns'] == 0) {
$CT->parse('categories', 'row', true);
$CT->set_var('catrow', '');
}
$i++;
}
if ($nrows % $_PP_CONF['cat_columns'] != 0) {
$CT->parse('categories', 'row', true);
}
$display .= $CT->parse('', 'table');
}
/*$sortby_opts = array(
'name' => $LANG_PP['name'],
'price' => $LANG_PP['price'],
'dt_add' => $LANG_PP['dt_add'],
);
switch ($_REQUEST['sortby']){
case 'name':
case 'price':
case 'dt_add':
$sortby = $_REQUEST['sortby'];
break;
default:
$sortby = $_PP_CONF['order'];
break;
}
$sortby_options = '';
foreach ($sortby_opts as $value=>$text) {
$sel = $value == $sortby ? ' selected="selected"' : '';
$sortby_options .= "<option value=\"$value\" $sel>$text</option>\n";
}
$sortdir = $_REQUEST['sortdir'] == 'DESC' ? 'DESC' : 'ASC';*/
$sortby = $_PP_CONF['order'];
$sortdir = 'ASC';
// Get products from database. "c.enabled is null" is to allow products
// with no category defined
$sql = " FROM {$_TABLES['paypal.products']} p\n LEFT JOIN {$_TABLES['paypal.categories']} c\n ON p.cat_id = c.cat_id\n WHERE p.enabled=1 \n AND (\n (c.enabled=1 " . COM_getPermSQL('AND', 0, 2, 'c') . ")\n OR c.enabled IS NULL\n )\n AND (\n p.track_onhand = 0 OR p.onhand > 0 OR p.oversell < 2\n )";
$pagenav_args = array();
// If applicable, limit by category
if (!empty($_REQUEST['category'])) {
$cat_list = $_REQUEST['category'];
$cat_list .= PAYPAL_recurseCats('PAYPAL_callbackCatCommaList', 0, $_REQUEST['category']);
if (!empty($cat_list)) {
$sql .= " AND c.cat_id IN ({$cat_list})";
}
$pagenav_args[] = 'category=' . urlencode($_REQUEST['category']);
} else {
$cat_list = '';
}
// If applicable, limit by search string
if (!empty($_REQUEST['search_name'])) {
$srch = DB_escapeString($_REQUEST['search_name']);
$sql .= " AND (p.name like '%{$srch}%' OR \n p.short_description like '%{$srch}%' OR\n p.description like '%{$srch}%' OR\n p.keywords like '%{$srch}%')";
//if (!$isAdmin) $sql .= " AND p.grp_access IN ($my_groups) ";
$pagenav_args[] = 'search_name=' . urlencode($_REQUEST['search_name']);
}
// If applicable, order by
$sql .= " ORDER BY {$sortby} {$sortdir}";
// If applicable, handle pagination of query
if (isset($_PP_CONF['prod_per_page']) && $_PP_CONF['prod_per_page'] > 0) {
// Count products from database
$res = DB_query('SELECT COUNT(*) as cnt ' . $sql);
$x = DB_fetchArray($res, false);
if (isset($x['cnt'])) {
$count = (int) $x['cnt'];
} else {
$count = 0;
}
// Make sure page requested is reasonable, if not, fix it
if (!isset($_REQUEST['page']) || $_REQUEST['page'] <= 0) {
$_REQUEST['page'] = 1;
}
$page = (int) $_REQUEST['page'];
$start_limit = ($page - 1) * $_PP_CONF['prod_per_page'];
if ($start_limit > $count) {
$page = ceil($count / $_PP_CONF['prod_per_page']);
}
// Add limit for pagination (if applicable)
if ($count > $_PP_CONF['prod_per_page']) {
$sql .= " LIMIT {$start_limit}, {$_PP_CONF['prod_per_page']}";
}
}
// Re-execute query with the limit clause in place
$res = DB_query('SELECT DISTINCT p.id ' . $sql);
// Create product template
$product = new Template(PAYPAL_PI_PATH . '/templates');
$product->set_file(array('start' => 'product_list_start.thtml', 'end' => 'product_list_end.thtml', 'product' => 'product_list_item.thtml', 'download' => 'buttons/btn_download.thtml', 'login_req' => 'buttons/btn_login_req.thtml', 'btn_details' => 'buttons/btn_details.thtml'));
if ($nrows == 0 && COM_isAnonUser()) {
$product->set_var('anon_and_empty', 'true');
}
$product->set_var(array('pi_url' => PAYPAL_URL, 'user_id' => $_USER['uid'], 'currency' => $_PP_CONF['currency']));
if (!empty($cat_name)) {
$product->set_var('title', $cat_name);
} else {
$product->set_var('title', $LANG_PP['blocktitle']);
}
/*$product->set_var('sortby_options', $sortby_options);
if ($sortdir == 'DESC') {
$product->set_var('sortdir_desc_sel', ' selected="selected"');
} else {
$product->set_var('sortdir_asc_sel', ' selected="selected"');
}
$product->set_var('sortby', $sortby);
$product->set_var('sortdir', $sortdir);*/
$display .= $product->parse('', 'start');
// Create an empty product object
$P = new Product();
if ($_PP_CONF['ena_ratings'] == 1) {
$PP_ratedIds = RATING_getRatedIds('paypal');
}
// Display each product
while ($A = DB_fetchArray($res, false)) {
$P->Read($A['id']);
if ($_PP_CONF['ena_ratings'] == 1 && $P->rating_enabled == 1) {
if (in_array($A['id'], $PP_ratedIds)) {
$static = true;
$voted = 1;
} elseif (plugin_canuserrate_paypal($A['id'], $_USER['uid'])) {
$static = false;
$voted = 0;
} else {
$static = true;
$voted = 0;
}
$rating_box = RATING_ratingBar('paypal', $A['id'], $P->votes, $P->rating, $voted, 5, $static, 'sm');
$product->set_var('rating_bar', $rating_box);
} else {
$product->set_var('rating_bar', '');
}
$product->set_var(array('id' => $A['id'], 'name' => $P->name, 'short_description' => PLG_replacetags($P->short_description), 'img_cell_width' => $_PP_CONF['max_thumb_size'] + 20, 'encrypted' => '', 'item_url' => COM_buildURL(PAYPAL_URL . '/detail.php?id=' . $A['id']), 'img_cell_width' => $_PP_CONF['max_thumb_size'] + 20, 'track_onhand' => $P->track_onhand ? 'true' : '', 'qty_onhand' => $P->onhand));
if ($P->price > 0) {
//$product->set_var('price', COM_numberFormat($P->price, 2));
$product->set_var('price', $P->currency->Format($P->price));
} else {
$product->clear_var('price');
}
if ($isAdmin) {
$product->set_var('is_admin', 'true');
$product->set_var('pi_admin_url', PAYPAL_ADMIN_URL);
$product->set_var('edit_icon', "{$_CONF['layout_url']}/images/edit.{$_IMAGE_TYPE}");
}
$pic_filename = DB_getItem($_TABLES['paypal.images'], 'filename', "product_id = '{$A['id']}'");
if ($pic_filename) {
$product->set_var('small_pic', PAYPAL_ImageUrl($pic_filename));
} else {
$product->set_var('small_pic', '');
}
// FIXME: If a user purchased once with no expiration, this query
// will not operate correctly
/*$time = DB_getItem($_TABLES['paypal.purchases'],
'MAX(UNIX_TIMESTAMP(expiration))',
"user_id = {$_USER['uid']} AND product_id ='{$A['id']}'");
*/
$product->set_block('product', 'BtnBlock', 'Btn');
if (!$P->hasAttributes()) {
// Buttons only show in the list if there are no options to select
$buttons = $P->PurchaseLinks();
foreach ($buttons as $name => $html) {
$product->set_var('button', $html);
$product->parse('Btn', 'BtnBlock', true);
}
} else {
if ($_PP_CONF['ena_cart']) {
// If the product has attributes, then the cart must be
// enabled to allow purchasing
$button = $product->parse('', 'btn_details') . ' ';
$product->set_var('button', $button);
$product->parse('Btn', 'BtnBlock', true);
}
}
$display .= $product->parse('', 'product');
$product->clear_var('Btn');
}
// Get products from plugins.
// For now, this hack shows plugins only on the first page, since
// they're not included in the page calculation.
if ($page == 1 && empty($cat_list)) {
// Get the currency class for formatting prices
USES_paypal_class_currency();
$Cur = new ppCurrency($_PP_CONF['currency']);
$product->clear_var('rating_bar');
// no ratings for plugins (yet)
foreach ($_PLUGINS as $pi_name) {
$status = LGLIB_invokeService($pi_name, 'getproducts', array(), $plugin_data, $svc_msg);
if ($status != PLG_RET_OK || empty($plugin_data)) {
continue;
}
foreach ($plugin_data as $A) {
// Reset button values
$buttons = '';
$product->set_var(array('id' => $A['id'], 'name' => $A['name'], 'short_description' => $A['short_description'], 'display' => '; display: none', 'small_pic' => '', 'encrypted' => '', 'item_url' => $A['url'], 'track_onhand' => ''));
if ($A['price'] > 0) {
$product->set_var('price', $Cur->Format($A['price']));
} else {
$product->clear_var('price');
}
if ($A['price'] > 0 && $_USER['uid'] == 1 && !$_PP_CONF['anon_buy']) {
$buttons .= $product->set_var('', 'login_req') . ' ';
} elseif ($A['prod_type'] > PP_PROD_PHYSICAL && $A['price'] == 0) {
// Free items or items purchases and not expired, download.
$buttons .= $product->set_var('', 'download') . ' ';
} elseif (is_array($A['buttons'])) {
// Buttons for everyone else
$product->set_block('product', 'BtnBlock', 'Btn');
foreach ($A['buttons'] as $type => $html) {
$product->set_var('button', $html);
$product->parse('Btn', 'BtnBlock', true);
}
}
//$product->set_var('buttons', $buttons);
$display .= $product->parse('', 'product');
$product->clear_var('Btn');
}
// foreach plugin_data
}
// foreach $_PLUGINS
}
// if page == 1
$pagenav_args = empty($pagenav_args) ? '' : '?' . implode('&', $pagenav_args);
// Display pagination
if (isset($_PP_CONF['prod_per_page']) && $_PP_CONF['prod_per_page'] > 0 && $count > $_PP_CONF['prod_per_page']) {
$product->set_var('pagination', COM_printPageNavigation(PAYPAL_URL . '/index.php' . $pagenav_args, $page, ceil($count / $_PP_CONF['prod_per_page'])));
} else {
$product->set_var('pagination', '');
}
$display .= $product->parse('', 'end');
return $display;
}
/**
* Get the form variables for the cart checkout button.
*
* @uses _addItem()
* @uses _getButton()
* @uses getActionUrl()
* @return string HTML code for the button
*/
public function CheckoutButton($cart)
{
global $_PP_CONF, $_USER, $LANG_PP_authorizenetsim;
if (!$this->Supports('checkout')) {
return '';
}
$this->cart = $cart;
$cartItems = $this->cart->Cart();
$cartID = $this->cart->cartID();
$this->AddCustom('cart_id', $cartID);
USES_paypal_class_product();
foreach ($cartItems as $item_id => $item) {
list($id, $optstr) = explode('|', $item_id);
if (is_numeric($id)) {
$P = new Product($id);
if ($optstr) {
$opts = explode(',', $optstr);
$optdesc = $P->getOptionDesc($opts);
if (!empty($optdesc)) {
$item['descrip'] .= ', ' . $optdesc;
}
}
}
$this->_addItem($item_id, $item);
/*$this->_addItem($item_id, $item['name'] , $item['descrip'],
$item['price'],
$item['quantity'], $item['shipping'], $item['taxable']);*/
}
$gateway_vars = $this->_getButton('cart');
$T = new Template(PAYPAL_PI_PATH . '/templates/buttons/' . $this->gw_name);
$T->set_file(array('btn' => 'btn_checkout.thtml'));
$T->set_var('action_url', $this->getActionUrl());
$T->set_var('gw_name', $this->gw_name);
$T->set_var('gateway_vars', $gateway_vars);
$T->set_var('btn_text', $LANG_PP_authorizenetsim['buy_now']);
$retval = $T->parse('', 'btn');
return $retval;
}
/**
* Processes the purchase, for purchases made without an IPN message.
*
* @param array $vals Submitted values, e.g. $_POST
*/
public function handlePurchase($vals = array())
{
global $_TABLES, $_CONF, $_PP_CONF;
USES_paypal_functions();
USES_paypal_class_cart();
USES_paypal_class_order();
USES_paypal_class_product();
if (!empty($vals['cart_id'])) {
$cart = new ppCart($vals['cart_id']);
if (!$cart->hasItems()) {
return;
}
// shouldn't be empty
$items = $cart->Cart();
} else {
$cart = new ppCart();
}
// Create an order record to get the order ID
$Order = $this->CreateOrder($vals, $cart);
$db_order_id = DB_escapeString($Order->order_id);
$prod_types = 0;
// For each item purchased, record purchase in purchase table
foreach ($items as $id => $item) {
//COM_errorLog("Processing item: $id");
list($item_number, $item_opts) = PAYPAL_explode_opts($id, true);
// If the item number is numeric, assume it's an
// inventory item. Otherwise, it should be a plugin-supplied
// item with the item number like pi_name:item_number:options
if (PAYPAL_is_plugin_item($item_number)) {
PAYPAL_debug("handlePurchase for Plugin item " . $item_number);
// Initialize item info array to be used later
$A = array();
// Split the item number into component parts. It could
// be just a single string, depending on the plugin's needs.
$pi_info = explode(':', $item['item_number']);
PAYPAL_debug('Paymentgw::handlePurchase() pi_info: ' . print_r($pi_info, true));
$status = LGLIB_invokeService($pi_info[0], 'productinfo', array($item_number, $item_opts), $product_info, $svc_msg);
if ($status != PLG_RET_OK) {
$product_info = array();
}
if (!empty($product_info)) {
$items[$id]['name'] = $product_info['name'];
}
PAYPAL_debug("Paymentgw::handlePurchase() Got name " . $items[$id]['name']);
$vars = array('item' => $item, 'ipn_data' => array());
$status = LGLIB_invokeService($pi_info[0], 'handlePurchase', $vars, $A, $svc_msg);
if ($status != PLG_RET_OK) {
$A = array();
}
// Mark what type of product this is
$prod_types |= PP_PROD_VIRTUAL;
} else {
PAYPAL_debug("Paypal item " . $item_number);
$P = new Product($item_number);
$A = array('name' => $P->name, 'short_description' => $P->short_description, 'expiration' => $P->expiration, 'prod_type' => $P->prod_type, 'file' => $P->file, 'price' => $item['price']);
if (!empty($item_opts)) {
$opts = explode(',', $itemopts);
$opt_str = $P->getOptionDesc($opts);
if (!empty($opt_str)) {
$A['short_description'] .= " ({$opt_str})";
}
$item_number .= '|' . $item_opts;
}
// Mark what type of product this is
$prod_types |= $P->prod_type;
}
// An invalid item number, or nothing returned for a plugin
if (empty($A)) {
//$this->Error("Item {$item['item_number']} not found");
continue;
}
// If it's a downloadable item, then get the full path to the file.
// TODO: pp_data isn't available here, should be from $vals?
if (!empty($A['file'])) {
$this->items[$id]['file'] = $_PP_CONF['download_path'] . $A['file'];
$token_base = $this->pp_data['txn_id'] . time() . rand(0, 99);
$token = md5($token_base);
$this->items[$id]['token'] = $token;
} else {
$token = '';
}
$items[$id]['prod_type'] = $A['prod_type'];
// If a custom name was supplied by the gateway's IPN processor,
// then use that. Otherwise, plug in the name from inventory or
// the plugin, for the notification email.
if (empty($item['name'])) {
$items[$id]['name'] = $A['short_description'];
}
// Add the purchase to the paypal purchase table
$uid = isset($vals['uid']) ? (int) $vals['uid'] : $_USER['uid'];
$sql = "INSERT INTO {$_TABLES['paypal.purchases']} SET \n order_id = '{$db_order_id}',\n product_id = '{$item_number}',\n description = '{$items[$id]['name']}',\n quantity = '{$item['quantity']}', \n user_id = '{$uid}', \n txn_type = '{$this->gw_id}',\n txn_id = '', \n purchase_date = '{$_PP_CONF['now']->toMySQL()}', \n status = 'complete',\n token = '{$token}',\n price = " . (double) $item['price'] . ",\n options = '" . DB_escapeString($item_opts) . "'";
// add an expiration date if appropriate
if (is_numeric($A['expiration']) && $A['expiration'] > 0) {
$sql .= ", expiration = DATE_ADD('{$_PP_CONF['now']->toMySQL()}', INTERVAL {$A['expiration']} DAY)";
}
//echo $sql;die;
PAYPAL_debug($sql);
DB_query($sql);
}
// foreach item
// If this was a user's cart, then clear that also
if (isset($vals['cart_id']) && !empty($vals['cart_id'])) {
DB_delete($_TABLES['paypal.cart'], 'cart_id', $vals['cart_id']);
}
}