/**
* View the cart
*/
function shop_user_viewcart()
{
// If the user returns to the cart after taking other steps, unset any errors from earlier in the session.
xarSession::delVar('errors');
sys::import('modules.dynamicdata.class.objects.master');
$subtotals = array();
$products = array();
$total = 0;
// May want to display cust info with the cart...
$cust = xarMod::APIFunc('shop', 'user', 'customerinfo');
$data['cust'] = $cust;
$shop = xarSession::getVar('shop');
foreach ($shop as $pid => $val) {
// If this post variable is set, we must need to update the quantity
if (isset($_POST['qty' . $pid])) {
unset($qty_new);
// Have to unset this since we're in a foreach
if (!xarVarFetch('qty' . $pid, 'isset', $qty_new, NULL, XARVAR_DONT_SET)) {
return;
}
if ($qty_new == 0) {
unset($shop[$pid]);
} else {
$shop[$pid]['qty'] = $qty_new;
}
}
// If the quantity hasn't been set to zero, add it to the $products array...
if (isset($shop[$pid])) {
// Commas in the quantity seem to mess up our math
$products[$pid]['qty'] = str_replace(',', '', $shop[$pid]['qty']);
// Get the product info
$object = DataObjectMaster::getObject(array('name' => 'shop_products'));
$some_id = $object->getItem(array('itemid' => $pid));
$values = $object->getFieldValues();
$products[$pid]['title'] = xarVarPrepForDisplay($values['title']);
$products[$pid]['price'] = $values['price'];
$subtotal = $values['price'] * $products[$pid]['qty'];
$subtotals[] = $subtotal;
// so we can use array_sum() to add it all up
if (substr($subtotal, 0, 1) == '.') {
$subtotal = '0' . $subtotal;
}
$products[$pid]['subtotal'] = number_format($subtotal, 2);
}
}
xarSession::setVar('shop', $shop);
$total = array_sum($subtotals);
// Add a zero to the front of the number if it starts with a decimal...
if (substr($total, 0, 1) == '.') {
$total = '0' . $total;
}
$total = number_format($total, 2);
xarSession::setVar('products', $products);
// update the session variable
$data['products'] = $products;
// don't want too much session stuff in the templates
xarSession::setVar('total', $total);
$data['total'] = $total;
return $data;
}
/**
* Complete the order. If all goes well, we'll submit the transaction to the payment gateway, save our own transaction record, and update customer info
*/
function shop_user_complete()
{
// Redirects at the start of the user functions are just a way to make sure someone isn't where they don't need to be
if (!xarUserIsLoggedIn()) {
xarResponse::redirect(xarModURL('shop', 'user', 'viewcart'));
return true;
}
$order = xarSession::getVar('order');
if (empty($order)) {
//Probably a page reload... no reason to be here anymore
xarResponse::redirect(xarModURL('shop', 'user', 'main'));
return true;
}
$data['order'] = $order['products'];
$data['ordertid'] = $order['tid'];
$data['orderdate'] = $order['date'];
$data['total'] = xarSession::getVar('total');
xarSession::delVar('order');
// For privacy, order will not be redisplayed if the page is visited later
xarSession::delVar('total');
return $data;
}
/**
* Select existing payment method or create new one to use for this transaction
*/
function shop_user_paymentmethod()
{
// Redirects at the start of the user functions are just a way to make sure someone isn't where they don't need to be
$shippingaddress = xarSession::getVar('shippingaddress');
if (empty($shippingaddress)) {
xarResponse::redirect(xarModURL('shop', 'user', 'shippingaddress'));
return true;
}
$shop = xarSession::getVar('shop');
if (!xarUserIsLoggedIn() || empty($shop)) {
xarResponse::redirect(xarModURL('shop', 'user', 'main'));
return true;
}
if (!xarVarFetch('proceedsaved', 'str', $proceedsaved, NULL, XARVAR_NOT_REQUIRED)) {
return;
}
if (!xarVarFetch('proceednew', 'str', $proceednew, NULL, XARVAR_NOT_REQUIRED)) {
return;
}
if (!xarVarFetch('paymentmethod', 'str', $paymentmethod, NULL, XARVAR_NOT_REQUIRED)) {
return;
}
if (!xarVarFetch('remove', 'str', $remove, NULL, XARVAR_NOT_REQUIRED)) {
return;
}
$cust = xarMod::APIFunc('shop', 'user', 'customerinfo');
$data['cust'] = $cust;
sys::import('modules.dynamicdata.class.objects.master');
sys::import('modules.dynamicdata.class.properties.master');
$shippingobject = DataObjectMaster::getObject(array('name' => 'shop_shippingaddresses'));
$shippingobject->getItem(array('itemid' => xarSession::getVar('shippingaddress')));
$shippingvals = $shippingobject->getFieldValues();
$data['shippingvals'] = $shippingvals;
// Get the saved payment methods, if any exist
$mylist = DataObjectMaster::getObjectList(array('name' => 'shop_paymentmethods'));
$filters = array('status' => DataPropertyMaster::DD_DISPLAYSTATE_ACTIVE, 'where' => 'customer eq ' . xarUserGetVar('id'));
$paymentmethods = $mylist->getItems($filters);
$data['paymentmethods'] = $paymentmethods;
$data['paymentobject'] = DataObjectMaster::getObject(array('name' => 'shop_paymentmethods'));
$data['paymentobject']->properties['name']->display_show_salutation = false;
$data['paymentobject']->properties['name']->display_show_middlename = false;
$data['paymentobject']->properties['address']->display_rows = 1;
$data['paymentobject']->properties['address']->display_show_country = false;
$data['properties'] = $data['paymentobject']->getProperties();
if ($remove) {
if ($remove == xarSession::getVar('paymentmethod')) {
xarSession::delVar('paymentmethod');
}
$data['paymentobject']->getItem(array('itemid' => $remove));
$data['paymentobject']->deleteItem();
xarResponse::redirect(xarModURL('shop', 'user', 'paymentmethod'));
return true;
}
$selectedpaymentmethod = xarSession::getVar('paymentmethod');
if (!empty($selectedpaymentmethod)) {
$data['paymentmethod'] = $selectedpaymentmethod;
}
// If we're using a saved payment method...
if ($proceedsaved) {
xarSession::setVar('paymentmethod', $paymentmethod);
xarResponse::redirect(xarModURL('shop', 'user', 'order'));
return true;
} elseif ($proceednew) {
// We're not using a saved payment method...
$isvalid = $data['paymentobject']->checkInput();
if (isset($exp_date)) {
$exp_month = substr($exp_date, 0, 2);
$exp_year = substr($exp_date, 2, 4);
$reverse_date = $exp_year . $exp_month;
$minimum_date = date('ym', time());
if ($minimum_date > $reverse_date) {
$errors['exp_date'] = true;
}
}
if (isset($errors)) {
xarSession::setVar('errors', $errors);
}
if (!$isvalid) {
return xarTplModule('shop', 'user', 'paymentmethod', $data);
} else {
xarSession::setVar('paymentmethod', $data['paymentobject']->createItem());
xarResponse::redirect(xarModURL('shop', 'user', 'order'));
return true;
}
}
return $data;
}
/**
* New account info (ship address)
*/
function shop_user_shippingaddress()
{
// Redirects at the start of the user functions are just a way to make sure someone isn't where they don't need to be
$shop = xarSession::getVar('shop');
if (!xarUserIsLoggedIn() || empty($shop)) {
xarResponse::redirect(xarModURL('shop', 'user', 'main'));
return true;
}
if (!xarVarFetch('proceed', 'str', $proceed, NULL, XARVAR_NOT_REQUIRED)) {
return;
}
if (!xarVarFetch('shipto', 'str', $shipto, NULL, XARVAR_NOT_REQUIRED)) {
return;
}
if (!xarVarFetch('remove', 'str', $remove, NULL, XARVAR_NOT_REQUIRED)) {
return;
}
if (!xarVarFetch('next', 'str', $data['next'], NULL, XARVAR_NOT_REQUIRED)) {
return;
}
sys::import('modules.dynamicdata.class.objects.master');
$data['shippingobject'] = DataObjectMaster::getObject(array('name' => 'shop_shippingaddresses'));
$data['shippingobject']->properties['name']->display_show_salutation = false;
$data['shippingobject']->properties['name']->display_show_middlename = false;
$data['shippingobject']->properties['address']->display_rows = 1;
$data['shippingobject']->properties['address']->display_show_country = false;
$data['properties'] = $data['shippingobject']->properties;
if ($shipto) {
xarSession::setVar('shippingaddress', $shipto);
if (isset($data['next']) && !empty($data['next'])) {
$func = $data['next'];
} else {
$func = 'paymentmethod';
}
xarResponse::redirect(xarModURL('shop', 'user', $func));
return true;
}
if ($remove) {
if ($remove == xarSession::getVar('shippingaddress')) {
xarSession::delVar('shippingaddress');
}
$data['shippingobject']->getItem(array('itemid' => $remove));
$data['shippingobject']->deleteItem();
xarResponse::redirect(xarModURL('shop', 'user', 'shippingaddress'));
return true;
}
if ($proceed) {
$isvalid = $data['shippingobject']->checkInput();
if (!$isvalid) {
return xarTplModule('shop', 'user', 'shippingaddress', $data);
}
// Save the customer data
$custobject = DataObjectMaster::getObject(array('name' => 'shop_customers'));
$custobject->getItem(array('itemid' => xarUserGetVar('id')));
$name = $data['shippingobject']->properties['name']->value;
$custobject->properties['name']->setValue($name);
$custobject->updateItem();
// Save the shipping address
$itemid = $data['shippingobject']->createItem();
xarSession::setVar('shippingaddress', $itemid);
// update the name field in roles to use first and last name instead of email
$rolesobject = xarCurrentRole();
$rolesobject->properties['name']->value = $name;
$rolesobject->updateItem();
xarResponse::redirect(xarModURL('shop', 'user', 'paymentmethod'));
return true;
xarSession::setVar('errors', $errors);
}
return $data;
}
/**
* Review and submit order
*/
function shop_user_order()
{
// Redirects at the start of the user functions are just a way to make sure someone isn't where they don't need to be
$shippingaddress = xarSession::getVar('shippingaddress');
if (empty($shippingaddress)) {
xarResponse::redirect(xarModURL('shop', 'user', 'shippingaddress'));
return true;
}
$paymentmethod = xarSession::getVar('paymentmethod');
if (empty($paymentmethod)) {
xarResponse::redirect(xarModURL('shop', 'user', 'paymentmethod'));
return true;
}
$shop = xarSession::getVar('shop');
if (!xarUserIsLoggedIn() || empty($shop)) {
xarResponse::redirect(xarModURL('shop', 'user', 'main'));
return;
}
if (!xarVarFetch('placeorder', 'str', $placeorder, NULL, XARVAR_NOT_REQUIRED)) {
return;
}
sys::import('modules.dynamicdata.class.objects.master');
$shippingobject = DataObjectMaster::getObject(array('name' => 'shop_shippingaddresses'));
$shippingobject->getItem(array('itemid' => xarSession::getVar('shippingaddress')));
$shippingvals = $shippingobject->getFieldValues();
$data['shippingvals'] = $shippingvals;
$data['products'] = xarSession::getVar('products');
$data['total'] = xarSession::getVar('total');
$time = time();
xarSession::setVar('time', $time);
$paymentobject = DataObjectMaster::getObject(array('name' => 'shop_paymentmethods'));
$paymentmethod = xarSession::getVar('paymentmethod');
$paymentobject->getItem(array('itemid' => $paymentmethod));
$values = $paymentobject->getFieldValues();
$data['payvalues'] = $values;
if ($placeorder) {
/*if (isset($exp_date)) {
$exp_month = substr($exp_date,0,2);
$exp_year = substr($exp_date,2,4);
$reverse_date = $exp_year . $exp_month;
$minimum_date = date('ym',time());
if ($minimum_date > $reverse_date) {
$errors = xarSession::getVar('errors');
$errors['exp_date'] = true;
xarSession::setVar('errors',$errors);
}
}*/
// A few more things
$values['date'] = $time;
$values['products'] = serialize($data['products']);
$values['total'] = xarSession::getVar('total');
/*****************************/
/***** PAYMENT PROCESSING ****/
/*****************************/
$response = xarMod::APIFunc('shop', 'admin', 'handlepgresponse', array('transfields' => $values));
if (isset($response['trans_id']) && !empty($response['trans_id'])) {
// We have a successful transaction...
$data['response'] = $response;
$values['pg_transaction_id'] = $response['trans_id'];
$transobject = DataObjectMaster::getObject(array('name' => 'shop_transactions'));
$tid = $transobject->createItem($values);
$order = xarSession::getVar('order');
$order['products'] = xarSession::getVar('products');
$order['tid'] = $tid;
$order['date'] = date('F j, Y g:i a', xarSession::getVar('time'));
xarSession::setVar('order', $order);
xarSession::delVar('pg_response');
// This is set in shop_adminapi_handlepgresponse()
//Need to clear all this now that the purchase went through. Doing so ensures we don't re-submit the order
xarSession::delVar('errors');
xarSession::delVar('shop');
xarSession::delVar('products');
xarResponse::redirect(xarModURL('shop', 'user', 'complete'));
return true;
} else {
// There must be a problem...
$pg_key = xarModVars::get('shop', 'pg_key');
// Assuming we're using the key field for all payment gateways for keys, passwords and the like...
if (empty($pg_key)) {
$errors = xarSession::getVar('pg_response');
$pg_response['msg'] .= "<p style='color:red'><strong>Looks like you haven't entered a payment gateway key. <a href='" . xarModURL('shop', 'admin', 'overview') . "'>Read me</a>.</strong></p>";
xarSession::setVar('pg_response', $pg_response);
}
xarResponse::redirect(xarModURL('shop', 'user', 'order'));
return true;
}
}
return $data;
}
