function IPNHandler($wp)
{
    //if (isset($_GET['ipn_handler'])) {
    global $wpdb;
    $tz = get_option('timezone_string');
    if (empty($tz)) {
        $tz = 'UTC';
    }
    date_default_timezone_set($tz);
    //unlink("log.txt");
    //================================================================================================================
    //		Adaptive Payment IPN for PayPal code
    //================================================================================================================
    //$filetest_handler = fopen("log.txt", 'a+');
    ini_set('post_max_size', '12M');
    //fwrite($filetest_handler, "ini is set so we are increasing post size \n");
    $data_array = array();
    $payment_complete = false;
    $approved = false;
    $status = null;
    $vars = array();
    foreach ($_POST as $key => $val) {
        //fwrite($filetest_handler, $key."=".$val."\n");
        $data1 = explode("=", $key);
        $data2 = explode("=", $val);
        $key = $data1[0];
        $val = $data2[0];
        $vars[$key] = $val;
        if ($data1[0] == "payment_status" && strtoupper($data2[0]) == "COMPLETED") {
            $payment_complete = true;
            //fwrite($filetest_handler, $payment_complete);
        } else {
            if ($data1[0] == "payment_status" && strtoupper($data2[0]) == "PENDING") {
                $payment_complete = true;
                $payment_pending = true;
                //fwrite($filetest_handler, $payment_complete);
            } else {
                if ($data1[0] == "status") {
                    //fwrite($filetest_handler, 'it does equal status');
                    if (strtoupper($data2[0]) == "COMPLETED") {
                        if (isset($vars['preapproval_key'])) {
                            $preauth_key = esc_attr($vars['preapproval_key']);
                            $sender_email = esc_attr($vars['sender_email']);
                            $status = 'C';
                            $txn_id = esc_attr($vars['pay_key']);
                            $sql = $wpdb->prepare('UPDATE ' . $wpdb->prefix . 'ign_pay_info SET status=%s, transaction_id=%s WHERE email = %s AND preapproval_key = %s', $status, $txn_id, $sender_email, $preauth_key);
                            //fwrite($filetest_handler, $sql);
                            $res = $wpdb->query($sql);
                        } else {
                            $payment_complete = true;
                            //fwrite($filetest_handler, $payment_complete);
                        }
                    } else {
                        if (strtoupper($data2[0]) == "ACTIVE") {
                            //fwrite($filetest_handler, 'it should equal active');
                            $status = 'active';
                            //fwrite($filetest_handler, $status);
                        }
                    }
                }
            }
        }
        if ($data1[0] == "approved" && strtoupper($data2[0]) == "TRUE") {
            //fwrite($filetest_handler, 'it should equal true');
            $approved = true;
            //fwrite($filetest_handler, $approved);
        }
        if ($approved == true && $status == 'active') {
            $preauth_complete = true;
            //fwrite($filetest_handler, 'preauthcomplete '. $preauth_complete);
        }
    }
    foreach ($vars as $key => $val) {
        //fwrite($filetest_handler, 'key->'.$key.'='.'val->'.$val);
    }
    if ($payment_complete) {
        //fwrite($filetest_handler, 'payment is complete'."\n");
        if (isset($vars['txn_id'])) {
            $txn_id = esc_attr($vars['txn_id']);
        } else {
            $txn_id = esc_attr($vars['pay_key']);
        }
        $check = $wpdb->prepare('SELECT id FROM ' . $wpdb->prefix . 'ign_pay_info WHERE transaction_id = %s', $txn_id);
        //fwrite($filetest_handler, $check);
        $checkres = $wpdb->get_row($check);
        if (empty($checkres)) {
            $query = "INSERT INTO " . $wpdb->prefix . "ign_pay_info (\r\n\t\t\t\t\t\t\tprod_price,\r\n\t\t\t\t\t\t\tfirst_name,\r\n\t\t\t\t\t\t\tlast_name,\r\n\t\t\t\t\t\t\temail,\r\n\t\t\t\t\t\t\taddress,\r\n\t\t\t\t\t\t\tcountry,\r\n\t\t\t\t\t\t\tstate,\r\n\t\t\t\t\t\t\tcity,\r\n\t\t\t\t\t\t\tzip,\r\n\t\t\t\t\t\t\tproduct_id,\r\n\t\t\t\t\t\t\ttransaction_id,\r\n\t\t\t\t\t\t\tproduct_level,\r\n\t\t\t\t\t\t\tcreated_at\r\n\t\t\t\t\t\t)\r\n\t\t\t\t\t\tvalues (\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['prod_price']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['fname']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['lname']) . "',\r\n\t\t\t\t\t\t\t'" . $_GET['email'] . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['address']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['country']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['state']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['city']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['zip']) . "',\r\n\t\t\t\t\t\t\t'" . absint($_GET['product_id']) . "',\r\n\t\t\t\t\t\t\t'" . $txn_id . "',\r\n\t\t\t\t\t\t\t'" . absint($_GET['level']) . "',\r\n\t\t\t\t\t\t\t'" . date('Y-m-d H:i:s') . "'\r\n\t\t\t\t\t\t)";
            //fwrite($filetest_handler, $query);
            //echo $query;exit;
            $res = $wpdb->query($query);
            $pay_info_id = $wpdb->insert_id;
            do_action('id_payment_success', $pay_info_id);
            //fwrite($filetest_handler, "\n".$pay_info_id);
            $_SESSION['ig_payinfo_id_latest'] = $pay_info_id;
            $_SESSION['ig_product_id_latest'] = esc_attr($_GET['product_id']);
            //$product = $wpdb->get_row("SELECT * FROM ".$wpdb->prefix ."ign_products WHERE id = '".absint(esc_attr($_GET['product_id']))."'");
            // set order status
            if (isset($payment_pending) && $payment_pending == true) {
                setOrderStatus('P', $pay_info_id);
            } else {
                setOrderStatus('C', $pay_info_id);
            }
            //store transaction info in session
            $_SESSION['id_order'] = array('id' => $GLOBALS['transactionId'], 'product_id' => esc_attr($_GET['product_id']), 'shared-on-twitter' => false, 'shared-on-facebook' => false);
        } else {
            //fwrite($filetest_handler, $checkres);
        }
    } else {
        if (isset($preauth_complete)) {
            //fwrite($filetest_handler, 'preauth is complete \n');
            $num_payments = absint(esc_attr($_POST['current_number_of_payments']));
            $preauth_key = esc_attr($_POST['preapproval_key']);
            $current_attempts = absint(esc_attr($_POST['current_period_attempts']));
            $check = $wpdb->prepare('SELECT id FROM ' . $wpdb->prefix . 'ign_pay_info WHERE transaction_id = %s', $vars['preapproval_key']);
            $checkres = $wpdb->get_row($check);
            if (empty($checkres)) {
                $query = "INSERT INTO " . $wpdb->prefix . "ign_pay_info (\r\n\t\t\t\t\t\t\tprod_price,\r\n\t\t\t\t\t\t\tfirst_name,\r\n\t\t\t\t\t\t\tlast_name,\r\n\t\t\t\t\t\t\temail,\r\n\t\t\t\t\t\t\taddress,\r\n\t\t\t\t\t\t\tcountry,\r\n\t\t\t\t\t\t\tstate,\r\n\t\t\t\t\t\t\tcity,\r\n\t\t\t\t\t\t\tzip,\r\n\t\t\t\t\t\t\tproduct_id,\r\n\t\t\t\t\t\t\tpreapproval_key,\r\n\t\t\t\t\t\t\tproduct_level,\r\n\t\t\t\t\t\t\tstatus,\r\n\t\t\t\t\t\t\tcreated_at\r\n\t\t\t\t\t\t)\r\n\t\t\t\t\t\tvalues (\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['prod_price']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['fname']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['lname']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['email']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['address']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['country']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['state']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['city']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['zip']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['product_id']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($vars['preapproval_key']) . "',\r\n\t\t\t\t\t\t\t'" . esc_attr($_GET['level']) . "',\r\n\t\t\t\t\t\t\t'W',\r\n\t\t\t\t\t\t\t'" . date('Y-m-d H:i:s') . "'\r\n\t\t\t\t\t\t)";
                //fwrite($filetest, $query);
                //echo $query;exit;
                $res = $wpdb->query($query);
                $pay_info_id = $wpdb->insert_id;
                do_action('id_payment_success', $pay_info_id);
            }
        } else {
            // read the post from PayPal system and add 'cmd'
            $req = 'cmd=_notify-validate';
            foreach ($_POST as $key => $value) {
                $value = urlencode(stripslashes($value));
                $req .= "&{$key}={$value}";
            }
            // post back to PayPal system to validate
            $header = "POST /cgi-bin/webscr HTTP/1.0\r\n";
            $header .= "Content-Type: application/x-www-form-urlencoded\r\n";
            $header .= "Content-Length: " . strlen($req) . "\r\n\r\n";
            $fp = fsockopen('ssl://www.paypal.com', 443, $errno, $errstr, 30);
            if (!$fp) {
                //fwrite($filetest_handler, 'Paypal errored out');
            } else {
                fputs($fp, $header . $req);
                //fwrite($filetest_handler, 'Paypal was successful');
                while (!feof($fp)) {
                    $res = fgets($fp, 1024);
                    if (strcmp($res, "VERIFIED") == 0) {
                        // check the payment_status is Completed
                        // check that txn_id has not been previously processed
                        // check that receiver_email is your Primary PayPal email
                        // check that payment_amount/payment_currency are correct
                        // process payment
                        //fwrite($filetest_handler, $res."\n");
                        global $wpdb;
                        // Check if a new payment is made using the session variable set before making that payment
                        if (1) {
                            // Deserialize the payment variables and get them to work
                            //$payment_variables = urldecode($_GET['payment_vars']);
                            //$payment_variables = str_replace("\\","",$payment_variables);
                            //fwrite($filetest_handler, "Payment variables: ".$payment_variables."\n");
                            //$payment_variables = unserialize($payment_variables);
                            //fwrite($filetest_handler, "Payment variables array: ".$payment_variables."\n");
                            $query = "INSERT INTO " . $wpdb->prefix . "ign_pay_info (\r\n\t\t\t\t\t\t\t\t\t\tprod_price,\r\n\t\t\t\t\t\t\t\t\t\tfirst_name,\r\n\t\t\t\t\t\t\t\t\t\tlast_name,\r\n\t\t\t\t\t\t\t\t\t\temail,\r\n\t\t\t\t\t\t\t\t\t\taddress,\r\n\t\t\t\t\t\t\t\t\t\tcountry,\r\n\t\t\t\t\t\t\t\t\t\tstate,\r\n\t\t\t\t\t\t\t\t\t\tcity,\r\n\t\t\t\t\t\t\t\t\t\tzip,\r\n\t\t\t\t\t\t\t\t\t\tproduct_id,\r\n\t\t\t\t\t\t\t\t\t\ttransaction_id,\r\n\t\t\t\t\t\t\t\t\t\tproduct_level,\r\n\t\t\t\t\t\t\t\t\t\tcreated_at\r\n\t\t\t\t\t\t\t\t\t)\r\n\t\t\t\t\t\t\t\t\tvalues (\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['prod_price']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['fname']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['lname']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['email']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['address']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['country']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['state']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['city']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['zip']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['product_id']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['tx']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . esc_attr($_GET['level']) . "',\r\n\t\t\t\t\t\t\t\t\t\t'" . date('Y-m-d H:i:s') . "'\r\n\t\t\t\t\t\t\t\t\t)";
                            //echo $query;exit;
                            $res = $wpdb->query($query);
                            $pay_info_id = $wpdb->insert_id;
                            $_SESSION['ig_payinfo_id_latest'] = $pay_info_id;
                            $_SESSION['ig_product_id_latest'] = esc_attr($_GET['product_id']);
                            $product = $wpdb->get_row("SELECT * FROM " . $wpdb->prefix . "ign_products WHERE id = '" . $_GET['product_id'] . "'");
                            // set order status
                            setOrderStatus('C', $pay_info_id);
                            // subscribe user to mailchimp
                            $order = getOrderById($pay_info_id);
                            $mailchip_settings = getMailchimpSettings();
                            $aweber_settings = getAweberSettings();
                            $product_settings = getProductSettings($product->id);
                            if ($product_settings != -1 && $product_settings->active_mailtype == "mailchimp") {
                                subscribeToMailchimp($order->email, array('first_name' => $order->first_name, 'last_name' => $order->last_name), $product->id);
                            } else {
                                if ($mailchip_settings->is_active) {
                                    subscribeToMailchimp($order->email, array('first_name' => $order->first_name, 'last_name' => $order->last_name), $product->id);
                                }
                            }
                            if ($product_settings != -1 && $product_settings->active_mailtype == "aweber") {
                                subscribeToAweber($order->email, array('first_name' => $order->first_name, 'last_name' => $order->last_name), $product->id);
                            } else {
                                if ($aweber_settings->is_active) {
                                    subscribeToAweber($order->email, array('first_name' => $order->first_name, 'last_name' => $order->last_name), $product->id);
                                }
                            }
                            //store transaction info in session
                            $_SESSION['id_order'] = array('id' => $GLOBALS['transactionId'], 'product_id' => esc_attr($_GET['product_id']), 'shared-on-twitter' => false, 'shared-on-facebook' => false);
                        }
                    } else {
                        if (strcmp($res, "INVALID") == 0) {
                            // log for manual investigation
                            //fwrite($filetest_handler, $res);
                        }
                    }
                }
                fclose($fp);
            }
        }
    }
    //fclose($filetest_handler);
    return;
    //======================================== code ends here ========================================================
    //}
}
Esempio n. 2
0
function add_order()
{
    require 'languages/text_variables.php';
    global $wpdb;
    $tz = get_option('timezone_string');
    if (empty($tz)) {
        $tz = 'UTC';
    }
    date_default_timezone_set($tz);
    $cancel_hook = false;
    if (isset($_POST['btnAddOrder'])) {
        if (isset($_POST['manual-input']) && $_POST['manual-input'] !== "") {
            $price = esc_attr(str_replace(',', '', $_POST['manual-input']));
        } else {
            $price = esc_attr($_POST['prod_price']);
        }
        if (isset($_POST['cancel-hook'])) {
            $cancel_hook = true;
        }
        $sql = "INSERT INTO " . $wpdb->prefix . "ign_pay_info\n\t\t\t\t\t(first_name,last_name,email,address,country,state,city,zip,product_id,product_level,prod_price,status,created_at)\n\t\t\t\tVALUES (\n\t\t\t\t\t\n\t\t\t\t\t'" . esc_attr($_POST['first_name']) . "',\n\t\t\t\t\t'" . esc_attr($_POST['last_name']) . "',\n\t\t\t\t\t'" . esc_attr($_POST['email']) . "',\n\t\t\t\t\t'" . esc_attr($_POST['address']) . "',\n\t\t\t\t\t'" . esc_attr($_POST['country']) . "',\n\t\t\t\t\t'" . esc_attr($_POST['state']) . "',\n\t\t\t\t\t'" . esc_attr($_POST['city']) . "',\n\t\t\t\t\t'" . esc_attr($_POST['zip']) . "',\n\t\t\t\t\t'" . absint($_POST['product_id']) . "',\n\t\t\t\t\t'" . absint($_POST['product_level']) . "',\n\t\t\t\t\t'" . esc_attr($price) . "',\n\t\t\t\t\t'" . esc_attr($_POST['status']) . "',\n\t\t\t\t\t'" . date('Y-m-d H:i:s') . "'\n\t\t\t\t)";
        $wpdb->query($sql);
        $pay_info_id = $wpdb->insert_id;
        if (!$cancel_hook) {
            do_action('id_payment_success', $pay_info_id);
        }
        $product_settings = getProductSettings($_POST['product_id']);
        $mailchip_settings = getMailchimpSettings();
        $aweber_settings = getAweberSettings();
        echo '<script type="text/javascript">window.location = "admin.php?page=order_details";</script>';
        //wp_redirect( "admin.php?page=order_details" );
        exit;
    }
    $products = ID_Project::get_all_projects();
    //print_r($products);
    echo '<div class="wrap">
			' . admin_menu_html();
    include_once 'templates/admin/_orderAdd.php';
    echo '</div>';
}
function action_id_payment_success($pay_info_id)
{
    // This function handles all that happens after a successful order
    // 1. Lets set percent meta in case we need to fire the project success hook
    $percent = ID_Project::set_percent_meta();
    // 2. Let's send some mail
    $inactive = get_option('id_email_inactive');
    if (!$inactive) {
        $new_order = new ID_Order($pay_info_id);
        $order = $new_order->get_order();
        if (!empty($order)) {
            $project_id = $order->product_id;
        }
        if (isset($project_id) && $project_id > 0) {
            $mailchimp_settings = getMailchimpSettings();
            $aweber_settings = getAweberSettings();
            $product_settings = getProductSettings($order->product_id);
            if (isset($order->email)) {
                $email = $order->email;
            } else {
                $email = null;
            }
            if (isset($order->first_name)) {
                $first_name = stripslashes(html_entity_decode($order->first_name));
            } else {
                $first_name = '';
            }
            if (isset($order->last_name)) {
                $last_name = stripslashes(html_entity_decode($order->last_name));
            } else {
                $last_name = '';
            }
            if (!empty($email)) {
                if (!empty($product_settings)) {
                    $active_mailtype = $product_settings->active_mailtype;
                    if ($active_mailtype == 'mailchimp') {
                        $api_key = $product_settings->mailchimp_api_key;
                        $list_id = $product_settings->mailchimp_list_id;
                        subscribeToMailchimp($email, array('first_name' => $first_name, 'last_name' => $last_name), $api_key, $list_id);
                    } else {
                        if ($active_mailtype == 'aweber') {
                            subscribeToAweber($email, array('first_name' => $first_name, 'last_name' => $last_name), $project_id);
                        }
                    }
                } else {
                    if (!empty($mailchimp_settings) && $mailchimp_settings->is_active) {
                        $api_key = $mailchimp_settings->api_key;
                        $list_id = $mailchimp_settings->list_id;
                        subscribeToMailchimp($email, array('first_name' => $first_name, 'last_name' => $last_name), $api_key, $list_id);
                    } else {
                        if (!empty($aweber_settings) && $aweber_settings->is_active) {
                            subscribeToAweber($email, array('first_name' => $first_name, 'last_name' => $last_name), $project_id);
                        }
                    }
                }
            }
        }
    }
}