/** * Called to validate the payment_method * If payment with CreditCard is used, than the Data must be in stored in the session * This has be done to prevent sending the CreditCard Number back in hidden fields * If the parameter $is_test is true the Number Visa Creditcard number 4111 1111 1111 1111 * * @param array $d * @param boolean $is_test * @return boolean */ function validate_payment_method(&$d, $is_test) { global $VM_LANG, $vmLogger, $order_total; $auth = $_SESSION['auth']; $cart = $_SESSION['cart']; // We don't need to validate a payment method when // the user has no order total he should pay if (empty($_REQUEST['order_total'])) { if (isset($d['order_total'])) { if (round($d['order_total'], 2) <= 0.0) { return true; } } if (isset($order_total) && $order_total <= 0.0) { return true; } } if (!isset($d["payment_method_id"]) || $d["payment_method_id"] == 0) { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_PAYM', false)); return false; } require_once CLASSPATH . 'ps_payment_method.php'; $ps_payment_method = new ps_payment_method(); $dbp = new ps_DB(); //DB Payment_method // Now Check if all needed Payment Information are entered // Bank Information is found in the User_Info $w = "SELECT `enable_processor` FROM `#__{vm}_payment_method` WHERE "; $w .= "payment_method_id=" . (int) $d["payment_method_id"]; $dbp->query($w); $dbp->next_record(); if ($dbp->f("enable_processor") == "Y" || $dbp->f("enable_processor") == "") { // Creditcard if (empty($_SESSION['ccdata']['creditcard_code'])) { $vmLogger->err($VM_LANG->_('VM_CHECKOUT_ERR_CCTYPE')); return false; } // $_SESSION['ccdata'] = $ccdata; // The Data should be in the session if (!isset($_SESSION['ccdata'])) { //Not? Then Error $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_CCDATA', false)); return False; } if (!$_SESSION['ccdata']['order_payment_number']) { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_CCNR_FOUND', false)); return False; } // CREDIT CARD NUMBER CHECK // USING THE CREDIT CARD CLASS in ps_payment if (!$ps_payment_method->validate_payment($_SESSION['ccdata']['creditcard_code'], $_SESSION['ccdata']['order_payment_number'])) { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_CCDATE', false)); return False; } if (!$is_test) { $payment_number = ereg_replace(" |-", "", $_SESSION['ccdata']['order_payment_number']); if ($payment_number == "4111111111111111") { $vmLogger->warning($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_TEST', false)); return False; } } if (!empty($_SESSION['ccdata']['need_card_code']) && empty($_SESSION['ccdata']['credit_card_code'])) { $vmLogger->err($VM_LANG->_('PHPSHOP_CUSTOMER_CVV2_ERROR', false)); return False; } if (!$_SESSION['ccdata']['order_payment_expire_month']) { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_CCMON', false)); return False; } if (!$_SESSION['ccdata']['order_payment_expire_year']) { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_CCYEAR', false)); return False; } $date = getdate(time()); if ($_SESSION['ccdata']['order_payment_expire_year'] < $date["year"] or $_SESSION['ccdata']['order_payment_expire_year'] == $date["year"] and $_SESSION['ccdata']['order_payment_expire_month'] < $date["mon"]) { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_CCDATE_INV', false)); return False; } return True; } elseif ($dbp->f("enable_processor") == "B") { $_SESSION['ccdata']['creditcard_code'] = ""; $_SESSION['ccdata']['order_payment_name'] = ""; $_SESSION['ccdata']['order_payment_number'] = ""; $_SESSION['ccdata']['order_payment_expire_month'] = ""; $_SESSION['ccdata']['order_payment_expire_year'] = ""; // Bank Account require_once CLASSPATH . 'ps_user.php'; $dbu =& ps_user::getUserInfo($auth["user_id"], array('bank_account_holder', 'bank_iban', 'bank_account_nr', 'bank_sort_code', 'bank_name')); if ($dbu->f("bank_account_holder") == "" || $dbu->f("bank_account_nr") == "") { if (!empty($d['bank_account_holder']) && !empty($d['bank_account_nr'])) { // Insert the given data $fields = array('bank_account_holder' => $d['bank_account_holder'], 'bank_account_nr' => $d['bank_account_nr'], 'bank_sort_code' => $d['bank_sort_code'], 'bank_name' => $d['bank_name'], 'bank_iban' => $d['bank_iban']); ps_user::setUserInfo($fields, $auth["user_id"]); $dbu =& ps_user::getUserInfo($auth["user_id"], array('bank_account_holder', 'bank_iban', 'bank_account_nr', 'bank_sort_code', 'bank_name')); } else { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_USER_DATA', false)); return False; } } if ($dbu->f("bank_account_holder") == "") { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_BA_HOLDER_NAME', false)); return False; } if ($dbu->f("bank_iban") == "" and $dbu->f("bank_account_nr") == "") { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_IBAN', false)); return False; } if ($dbu->f("bank_iban") == "") { if ($dbu->f("bank_account_nr") == "") { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_BA_NUM', false)); return False; } if ($dbu->f("bank_sort_code") == "") { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_BANK_SORT', false)); return False; } if ($dbu->f("bank_name") == "") { $vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_BANK_NAME', false)); return False; } } } else { $_SESSION['ccdata']['creditcard_code'] = ''; $_SESSION['ccdata']['order_payment_name'] = ""; $_SESSION['ccdata']['order_payment_number'] = ""; $_SESSION['ccdata']['order_payment_expire_month'] = ""; $_SESSION['ccdata']['order_payment_expire_year'] = ""; } // Enter additional Payment check procedures here if neccessary return True; }
/** * Returns all Bank payment in a Radiolist * * @param int $payment_method_id * @param boolean $horiz */ function list_bank($payment_method_id, $horiz) { $has_bank_methods = $this->list_payment_radio("B", $payment_method_id, $horiz); //A bit easier :-) if ($has_bank_methods) { require_once CLASSPATH . 'ps_user.php'; $dbu =& ps_user::getUserInfo($_SESSION['auth']['user_id'], array('bank_account_holder', 'bank_iban', 'bank_account_nr', 'bank_sort_code', 'bank_name')); if (!$dbu->f('bank_account_holder') || !$dbu->f('bank_account_nr') || !$dbu->f('bank_sort_code')) { echo '<br />'; require_once CLASSPATH . 'ps_userfield.php'; ps_userfield::listUserFields(ps_userfield::getUserfields('bank'), array(), $dbu); } } }