Retrieves the pending subscription ID of the member
| public get_pending_subscription_id ( ) |
/**
* Process PayPal IPN
*
* @since 2.1
*/
public function process_webhooks()
{
if (!isset($_GET['listener']) || strtoupper($_GET['listener']) != 'IPN') {
return;
}
global $rcp_options;
nocache_headers();
if (!class_exists('IpnListener')) {
// instantiate the IpnListener class
include RCP_PLUGIN_DIR . 'includes/gateways/paypal/paypal-ipnlistener.php';
}
$listener = new IpnListener();
$verified = false;
if ($this->test_mode) {
$listener->use_sandbox = true;
}
/*
if( isset( $rcp_options['ssl'] ) ) {
$listener->use_ssl = true;
} else {
$listener->use_ssl = false;
}
*/
//To post using the fsockopen() function rather than cURL, use:
if (isset($rcp_options['disable_curl'])) {
$listener->use_curl = false;
}
try {
$listener->requirePostMethod();
$verified = $listener->processIpn();
} catch (Exception $e) {
status_header(402);
//die( 'IPN exception: ' . $e->getMessage() );
}
/*
The processIpn() method returned true if the IPN was "VERIFIED" and false if it
was "INVALID".
*/
if ($verified || isset($_POST['verification_override']) || ($this->test_mode || isset($rcp_options['disable_ipn_verify']))) {
status_header(200);
$user_id = 0;
$posted = apply_filters('rcp_ipn_post', $_POST);
// allow $_POST to be modified
if (!empty($posted['subscr_id'])) {
$user_id = rcp_get_member_id_from_profile_id($posted['subscr_id']);
}
if (empty($user_id) && !empty($posted['custom']) && is_numeric($posted['custom'])) {
$user_id = absint($posted['custom']);
}
if (empty($user_id) && !empty($posted['payer_email'])) {
$user = get_user_by('email', $posted['payer_email']);
$user_id = $user ? $user->ID : false;
}
$member = new RCP_Member($user_id);
if (!$member || !$member->ID > 0) {
die('no member found');
}
$subscription_id = $member->get_pending_subscription_id();
if (empty($subscription_id)) {
$subscription_id = $member->get_subscription_id();
}
if (!$subscription_id) {
die('no subscription for member found');
}
if (!rcp_get_subscription_details($subscription_id)) {
die('no subscription level found');
}
$subscription_name = $posted['item_name'];
$subscription_key = $posted['item_number'];
$amount = number_format((double) $posted['mc_gross'], 2);
$amount2 = number_format((double) $posted['mc_amount3'], 2);
$payment_status = $posted['payment_status'];
$currency_code = $posted['mc_currency'];
$subscription_price = number_format((double) rcp_get_subscription_price($subscription_id), 2);
$pending_amount = get_user_meta($member->ID, 'rcp_pending_subscription_amount', true);
$pending_amount = number_format((double) $pending_amount, 2);
// Check for invalid amounts in the IPN data
if (!empty($pending_amount) && !empty($amount) && in_array($posted['txn_type'], array('web_accept', 'subscr_payment'))) {
if ($amount < $pending_amount) {
rcp_add_member_note($member->ID, sprintf(__('Incorrect amount received in the IPN. Amount received was %s. The amount should have been %s. PayPal Transaction ID: %s', 'rcp'), $amount, $pending_amount, sanitize_text_field($posted['txn_id'])));
die('incorrect amount');
} else {
delete_user_meta($member->ID, 'rcp_pending_subscription_amount');
}
}
// setup the payment info in an array for storage
$payment_data = array('date' => date('Y-m-d H:i:s', strtotime($posted['payment_date'], current_time('timestamp'))), 'subscription' => $posted['item_name'], 'payment_type' => $posted['txn_type'], 'subscription_key' => $subscription_key, 'amount' => $amount, 'user_id' => $user_id, 'transaction_id' => $posted['txn_id']);
do_action('rcp_valid_ipn', $payment_data, $user_id, $posted);
if ($posted['txn_type'] == 'web_accept' || $posted['txn_type'] == 'subscr_payment') {
// only check for an existing payment if this is a payment IPD request
if (rcp_check_for_existing_payment($posted['txn_type'], $posted['payment_date'], $subscription_key)) {
$log_data = array('post_title' => __('Duplicate Payment', 'rcp'), 'post_content' => __('A duplicate payment was detected. The new payment was still recorded, so you may want to check into both payments.', 'rcp'), 'post_parent' => 0, 'log_type' => 'gateway_error');
$log_meta = array('user_subscription' => $posted['item_name'], 'user_id' => $user_id);
$log_entry = WP_Logging::insert_log($log_data, $log_meta);
die('duplicate IPN detected');
}
if (strtolower($currency_code) != strtolower($rcp_options['currency'])) {
// the currency code is invalid
$log_data = array('post_title' => __('Invalid Currency Code', 'rcp'), 'post_content' => sprintf(__('The currency code in an IPN request did not match the site currency code. Payment data: %s', 'rcp'), json_encode($payment_data)), 'post_parent' => 0, 'log_type' => 'gateway_error');
$log_meta = array('user_subscription' => $posted['item_name'], 'user_id' => $user_id);
$log_entry = WP_Logging::insert_log($log_data, $log_meta);
die('invalid currency code');
}
}
if (isset($rcp_options['email_ipn_reports'])) {
wp_mail(get_bloginfo('admin_email'), __('IPN report', 'rcp'), $listener->getTextReport());
}
/* now process the kind of subscription/payment */
$rcp_payments = new RCP_Payments();
// Subscriptions
switch ($posted['txn_type']) {
case "subscr_signup":
// when a new user signs up
// store the recurring payment ID
update_user_meta($user_id, 'rcp_paypal_subscriber', $posted['payer_id']);
if ($member->just_upgraded() && rcp_can_member_cancel($member->ID)) {
$cancelled = rcp_cancel_member_payment_profile($member->ID, false);
}
$member->set_payment_profile_id($posted['subscr_id']);
do_action('rcp_ipn_subscr_signup', $user_id);
die('successful subscr_signup');
break;
case "subscr_payment":
// when a user makes a recurring payment
update_user_meta($user_id, 'rcp_paypal_subscriber', $posted['payer_id']);
$member->set_payment_profile_id($posted['subscr_id']);
$member->renew(true);
// record this payment in the database
$rcp_payments->insert($payment_data);
do_action('rcp_ipn_subscr_payment', $user_id);
die('successful subscr_payment');
break;
case "subscr_cancel":
if (!$member->just_upgraded()) {
// user is marked as cancelled but retains access until end of term
$member->set_status('cancelled');
// set the use to no longer be recurring
delete_user_meta($user_id, 'rcp_paypal_subscriber');
do_action('rcp_ipn_subscr_cancel', $user_id);
die('successful subscr_cancel');
}
break;
case "subscr_failed":
do_action('rcp_ipn_subscr_failed');
die('successful subscr_failed');
break;
case "subscr_eot":
// user's subscription has reached the end of its term
if ('cancelled' !== $member->get_status($user_id)) {
$member->set_status('expired');
}
do_action('rcp_ipn_subscr_eot', $user_id);
die('successful subscr_eot');
break;
case "web_accept":
switch (strtolower($payment_status)) {
case 'completed':
if ($member->just_upgraded() && rcp_can_member_cancel($member->ID)) {
$cancelled = rcp_cancel_member_payment_profile($member->ID, false);
if ($cancelled) {
$member->set_payment_profile_id('');
}
}
// set this user to active
$member->renew();
$rcp_payments->insert($payment_data);
break;
case 'denied':
case 'expired':
case 'failed':
case 'voided':
$member->set_status('cancelled');
break;
}
die('successful web_accept');
break;
case "cart":
case "express_checkout":
default:
break;
}
} else {
if (isset($rcp_options['email_ipn_reports'])) {
// an invalid IPN attempt was made. Send an email to the admin account to investigate
wp_mail(get_bloginfo('admin_email'), __('Invalid IPN', 'rcp'), $listener->getTextReport());
}
status_header(400);
die('invalid IPN');
}
}
public function get_checkout_details($token = '')
{
$args = array('USER' => $this->username, 'PWD' => $this->password, 'SIGNATURE' => $this->signature, 'VERSION' => '124', 'METHOD' => 'GetExpressCheckoutDetails', 'TOKEN' => $token);
$request = wp_remote_get(add_query_arg($args, $this->api_endpoint), array('timeout' => 45, 'sslverify' => false, 'httpversion' => '1.1'));
$body = wp_remote_retrieve_body($request);
$code = wp_remote_retrieve_response_code($request);
$message = wp_remote_retrieve_response_message($request);
if (is_wp_error($request)) {
return $request;
} elseif (200 == $code && 'OK' == $message) {
if (is_string($body)) {
wp_parse_str($body, $body);
}
$member = new RCP_Member(absint($_GET['user_id']));
$subscription_id = $member->get_pending_subscription_id();
if (empty($subscription_id)) {
$subscription_id = $member->get_subscription_id();
}
$body['subscription'] = (array) rcp_get_subscription_details($subscription_id);
return $body;
}
return false;
}