function rcp_process_data()
{
if (!is_admin()) {
return;
}
if (!empty($_POST)) {
/****************************************
* subscription levels
****************************************/
// add a new subscription level
if (isset($_POST['rcp-action']) && $_POST['rcp-action'] == 'add-level') {
if (!current_user_can('rcp_manage_levels')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$levels = new RCP_Levels();
$add = $levels->insert($_POST);
if ($add) {
$url = get_bloginfo('wpurl') . '/wp-admin/admin.php?page=rcp-member-levels&rcp_message=level_added';
} else {
$url = get_bloginfo('wpurl') . '/wp-admin/admin.php?page=rcp-member-levels&rcp_message=level_not_added';
}
wp_safe_redirect($url);
exit;
}
// edit a subscription level
if (isset($_POST['rcp-action']) && $_POST['rcp-action'] == 'edit-subscription') {
if (!current_user_can('rcp_manage_levels')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$levels = new RCP_Levels();
$update = $levels->update($_POST['subscription_id'], $_POST);
if ($update) {
// clear the cache
$url = get_bloginfo('wpurl') . '/wp-admin/admin.php?page=rcp-member-levels&rcp_message=level_updated';
} else {
$url = get_bloginfo('wpurl') . '/wp-admin/admin.php?page=rcp-member-levels&rcp_message=level_not_updated';
}
wp_safe_redirect($url);
exit;
}
// add a subscription for an existing member
if (isset($_POST['rcp-action']) && $_POST['rcp-action'] == 'add-subscription') {
if (!current_user_can('rcp_manage_members')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
if (isset($_POST['expiration']) && strtotime('NOW') > strtotime($_POST['expiration']) && 'none' !== $_POST['expiration']) {
$url = get_bloginfo('wpurl') . '/wp-admin/admin.php?page=rcp-members&rcp_message=user_not_added';
header("Location:" . $url);
} else {
$levels = new RCP_Levels();
$user = get_user_by('login', $_POST['user']);
$expiration = isset($_POST['expiration']) ? sanitize_text_field($_POST['expiration']) : 'none';
$level_id = absint($_POST['level']);
rcp_set_expiration_date($user->ID, $expiration);
rcp_set_status($user->ID, 'active');
update_user_meta($user->ID, 'rcp_signup_method', 'manual');
// Add a role, if needed, to the user
$subscription = $levels->get_level($level_id);
update_user_meta($user->ID, 'rcp_subscription_level', $level_id);
// Add the new user role
$role = !empty($subscription->role) ? $subscription->role : 'subscriber';
$user->add_role($role);
if (isset($_POST['recurring'])) {
update_user_meta($user->ID, 'rcp_recurring', 'yes');
} else {
delete_user_meta($user->ID, 'rcp_recurring');
}
$url = get_bloginfo('wpurl') . '/wp-admin/admin.php?page=rcp-members&rcp_message=user_added';
header("Location:" . $url);
}
}
// bulk edit members
if (isset($_POST['rcp-bulk-action']) && $_POST['rcp-bulk-action']) {
if (!wp_verify_nonce($_POST['rcp_bulk_edit_nonce'], 'rcp_bulk_edit_nonce')) {
wp_die(__('Nonce verification failed.', 'rcp'));
}
if (!current_user_can('rcp_manage_members')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
if (empty($_POST['member-ids'])) {
wp_die(__('Please select at least one member to edit.', 'rcp'));
}
$member_ids = array_map('absint', $_POST['member-ids']);
$action = !empty($_POST['rcp-bulk-action']) ? sanitize_text_field($_POST['rcp-bulk-action']) : false;
foreach ($member_ids as $member_id) {
$member = new RCP_Member($member_id);
if (!empty($_POST['expiration']) && 'delete' !== $action) {
$member->set_expiration_date(date('Y-m-d H:i:s', strtotime($_POST['expiration'])));
}
if ($action) {
switch ($action) {
case 'mark-active':
$member->set_status('active');
break;
case 'mark-expired':
$member->set_status('expired');
break;
case 'mark-cancelled':
$member->set_status('cancelled');
break;
case 'delete':
wp_delete_user($member->ID);
break;
}
}
}
wp_redirect(admin_url('admin.php?page=rcp-members&rcp_message=members_updated'));
exit;
}
// edit a member's subscription
if (isset($_POST['rcp-action']) && $_POST['rcp-action'] == 'edit-member') {
if (!current_user_can('rcp_manage_members')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$levels = new RCP_Levels();
$user_id = absint($_POST['user']);
$member = new RCP_Member($user_id);
$status = sanitize_text_field($_POST['status']);
$level_id = absint($_POST['level']);
$expiration = isset($_POST['expiration']) ? sanitize_text_field($_POST['expiration']) : 'none';
$expiration = 'none' !== $expiration ? date('Y-m-d 23:59:59', strtotime($_POST['expiration'])) : $expiration;
if (!empty($_POST['expiration'])) {
$member->set_expiration_date($expiration);
}
if (isset($_POST['level'])) {
$current_id = rcp_get_subscription_id($user_id);
$new_level = $levels->get_level($level_id);
$old_level = $levels->get_level($current_id);
if ($current_id != $level_id) {
update_user_meta($user_id, 'rcp_subscription_level', $level_id);
// Remove the old user role
$role = !empty($old_level->role) ? $old_level->role : 'subscriber';
$member->remove_role($role);
// Add the new user role
$role = !empty($new_level->role) ? $new_level->role : 'subscriber';
$member->add_role($role);
}
}
if (isset($_POST['recurring'])) {
$member->set_recurring(true);
} else {
$member->set_recurring(false);
}
if (isset($_POST['trialing'])) {
update_user_meta($user_id, 'rcp_is_trialing', 'yes');
} else {
delete_user_meta($user_id, 'rcp_is_trialing');
}
if (isset($_POST['signup_method'])) {
update_user_meta($user_id, 'rcp_signup_method', $_POST['signup_method']);
}
if (isset($_POST['notes'])) {
update_user_meta($user_id, 'rcp_notes', wp_kses($_POST['notes'], array()));
}
if (isset($_POST['status'])) {
rcp_set_status($user_id, $status);
}
if (isset($_POST['payment-profile-id'])) {
$member->set_payment_profile_id($_POST['payment-profile-id']);
}
do_action('rcp_edit_member', $user_id);
wp_redirect(admin_url('admin.php?page=rcp-members&edit_member=' . $user_id . '&rcp_message=user_updated'));
exit;
}
/****************************************
* discount codes
****************************************/
// add a new discount code
if (isset($_POST['rcp-action']) && $_POST['rcp-action'] == 'add-discount') {
if (!current_user_can('rcp_manage_discounts')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$discounts = new RCP_Discounts();
// Setup unsanitized data
$data = array('name' => $_POST['name'], 'description' => $_POST['description'], 'amount' => $_POST['amount'], 'unit' => isset($_POST['unit']) && $_POST['unit'] == '%' ? '%' : 'flat', 'code' => $_POST['code'], 'status' => 'active', 'expiration' => $_POST['expiration'], 'max_uses' => $_POST['max'], 'subscription_id' => $_POST['subscription']);
$add = $discounts->insert($data);
if ($add) {
$url = get_bloginfo('wpurl') . '/wp-admin/admin.php?page=rcp-discounts&rcp_message=discount_added';
} else {
$url = get_bloginfo('wpurl') . '/wp-admin/admin.php?page=rcp-discounts&rcp_message=discount_not_added';
}
wp_safe_redirect($url);
exit;
}
// edit a discount code
if (isset($_POST['rcp-action']) && $_POST['rcp-action'] == 'edit-discount') {
if (!current_user_can('rcp_manage_discounts')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$discounts = new RCP_Discounts();
// Setup unsanitized data
$data = array('name' => $_POST['name'], 'description' => $_POST['description'], 'amount' => $_POST['amount'], 'unit' => isset($_POST['unit']) && $_POST['unit'] == '%' ? '%' : 'flat', 'code' => $_POST['code'], 'status' => $_POST['status'], 'expiration' => $_POST['expiration'], 'max_uses' => $_POST['max'], 'subscription_id' => $_POST['subscription']);
$update = $discounts->update($_POST['discount_id'], $data);
if ($update) {
$url = get_bloginfo('wpurl') . '/wp-admin/admin.php?page=rcp-discounts&discount-updated=1';
} else {
$url = get_bloginfo('wpurl') . '/wp-admin/admin.php?page=rcp-discounts&discount-updated=0';
}
wp_safe_redirect($url);
exit;
}
// add a new manual payment
if (isset($_POST['rcp-action']) && $_POST['rcp-action'] == 'add-payment') {
if (!current_user_can('rcp_manage_payments')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$payments = new RCP_Payments();
$user = get_user_by('login', $_POST['user']);
if ($user) {
$data = array('amount' => empty($_POST['amount']) ? 0.0 : sanitize_text_field($_POST['amount']), 'user_id' => $user->ID, 'date' => empty($_POST['date']) ? date('Y-m-d H:i:s', current_time('timestamp')) : date('Y-m-d', strtotime($_POST['date'], current_time('timestamp'))) . ' ' . date('H:i:s', current_time('timestamp')), 'payment_type' => 'manual', 'subscription' => rcp_get_subscription($user->ID), 'subscription_key' => rcp_get_subscription_key($user->ID), 'transaction_id' => sanitize_text_field($_POST['transaction-id']), 'status' => sanitize_text_field($_POST['status']));
$add = $payments->insert($data);
}
if (!empty($add)) {
$cache_args = array('earnings' => 1, 'subscription' => 0, 'user_id' => 0, 'date' => '');
$cache_key = md5(implode(',', $cache_args));
delete_transient($cache_key);
$url = admin_url('admin.php?page=rcp-payments&rcp_message=payment_added');
} else {
$url = admin_url('admin.php?page=rcp-payments&rcp_message=payment_not_added');
}
wp_safe_redirect($url);
exit;
}
// edit a payment
if (isset($_POST['rcp-action']) && $_POST['rcp-action'] == 'edit-payment') {
if (!current_user_can('rcp_manage_payments')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$payments = new RCP_Payments();
$payment_id = absint($_POST['payment-id']);
$user = get_user_by('login', $_POST['user']);
if ($user && $payment_id) {
$data = array('amount' => empty($_POST['amount']) ? 0.0 : sanitize_text_field($_POST['amount']), 'user_id' => $user->ID, 'date' => empty($_POST['date']) ? date('Y-m-d H:i:s', current_time('timestamp')) : date('Y-m-d', strtotime($_POST['date'], current_time('timestamp'))) . ' ' . date('H:i:s', current_time('timestamp')), 'subscription' => rcp_get_subscription($user->ID), 'subscription_key' => rcp_get_subscription_key($user->ID), 'transaction_id' => sanitize_text_field($_POST['transaction-id']), 'status' => sanitize_text_field($_POST['status']));
$update = $payments->update($payment_id, $data);
}
if (!empty($update)) {
$cache_args = array('earnings' => 1, 'subscription' => 0, 'user_id' => 0, 'date' => '');
$cache_key = md5(implode(',', $cache_args));
delete_transient($cache_key);
$url = admin_url('admin.php?page=rcp-payments&rcp_message=payment_updated');
} else {
$url = admin_url('admin.php?page=rcp-payments&rcp_message=payment_not_updated');
}
wp_safe_redirect($url);
exit;
}
}
/*************************************
* delete data
*************************************/
if (!empty($_GET)) {
/* member processing */
if (isset($_GET['revoke_access'])) {
if (!current_user_can('rcp_manage_members')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
rcp_set_status(urldecode(absint($_GET['revoke_access'])), 'cancelled');
}
if (isset($_GET['activate_member'])) {
if (!current_user_can('rcp_manage_members')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
rcp_set_status(urldecode(absint($_GET['activate_member'])), 'active');
}
if (isset($_GET['cancel_member'])) {
if (!current_user_can('rcp_manage_members')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
rcp_cancel_member_payment_profile(urldecode(absint($_GET['cancel_member'])));
wp_safe_redirect(admin_url(add_query_arg('rcp_message', 'member_cancelled', 'admin.php?page=rcp-members')));
exit;
}
/* subscription processing */
if (isset($_GET['delete_subscription']) && $_GET['delete_subscription'] > 0) {
if (!current_user_can('rcp_manage_levels')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$members_of_subscription = rcp_get_members_of_subscription(absint($_GET['delete_subscription']));
// cancel all active members of this subscription
if ($members_of_subscription) {
foreach ($members_of_subscription as $member) {
rcp_set_status($member, 'cancelled');
}
}
$levels = new RCP_Levels();
$levels->remove($_GET['delete_subscription']);
}
if (isset($_GET['activate_subscription']) && $_GET['activate_subscription'] > 0) {
if (!current_user_can('rcp_manage_levels')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$levels = new RCP_Levels();
$update = $levels->update(absint($_GET['activate_subscription']), array('status' => 'active'));
delete_transient('rcp_subscription_levels');
}
if (isset($_GET['deactivate_subscription']) && $_GET['deactivate_subscription'] > 0) {
if (!current_user_can('rcp_manage_levels')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$levels = new RCP_Levels();
$update = $levels->update(absint($_GET['deactivate_subscription']), array('status' => 'inactive'));
delete_transient('rcp_subscription_levels');
}
/* discount processing */
if (!empty($_GET['delete_discount'])) {
if (!current_user_can('rcp_manage_discounts')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$discounts = new RCP_Discounts();
$discounts->delete($_GET['delete_discount']);
}
if (!empty($_GET['activate_discount'])) {
if (!current_user_can('rcp_manage_discounts')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$discounts = new RCP_Discounts();
$discounts->update($_GET['activate_discount'], array('status' => 'active'));
}
if (!empty($_GET['deactivate_discount'])) {
if (!current_user_can('rcp_manage_discounts')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$discounts = new RCP_Discounts();
$discounts->update($_GET['deactivate_discount'], array('status' => 'disabled'));
}
if (!empty($_GET['rcp-action']) && $_GET['rcp-action'] == 'delete_payment' && wp_verify_nonce($_GET['_wpnonce'], 'rcp_delete_payment_nonce')) {
if (!current_user_can('rcp_manage_payments')) {
wp_die(__('You do not have permission to perform this action.', 'rcp'));
}
$payments = new RCP_Payments();
$payments->delete(absint($_GET['payment_id']));
wp_safe_redirect(admin_url(add_query_arg('rcp_message', 'payment_deleted', 'admin.php?page=rcp-payments')));
exit;
}
}
}
/**
* Register a new user
*
* @access public
* @since 1.0
*/
function rcp_process_registration() {
if ( isset( $_POST["rcp_register_nonce"] ) && wp_verify_nonce( $_POST['rcp_register_nonce'], 'rcp-register-nonce' ) ) {
global $rcp_options, $user_ID;
$subscription_id = isset( $_POST['rcp_level'] ) ? absint( $_POST['rcp_level'] ) : false;
$discount = isset( $_POST['rcp_discount'] ) ? sanitize_text_field( $_POST['rcp_discount'] ) : '';
$discount_valid = false;
$price = number_format( (float) rcp_get_subscription_price( $subscription_id ), 2 );
$price = str_replace( ',', '', $price );
$base_price = $price; // Used for discount calculations later
$expiration = rcp_get_subscription_length( $subscription_id );
$subscription = rcp_get_subscription_details( $subscription_id );
// get the selected payment method/gateway
if( ! isset( $_POST['rcp_gateway'] ) ) {
$gateway = 'paypal';
} else {
$gateway = sanitize_text_field( $_POST['rcp_gateway'] );
}
/***********************
* validate the form
***********************/
do_action( 'rcp_before_form_errors', $_POST );
$is_ajax = isset( $_POST['rcp_ajax'] );
$user_data = rcp_validate_user_data();
if( ! $subscription_id ) {
// no subscription level was chosen
rcp_errors()->add( 'no_level', __( 'Please choose a subscription level', 'rcp' ), 'register' );
}
if( $subscription_id ) {
if( $price == 0 && $expiration->duration > 0 && rcp_has_used_trial( $user_data['id'] ) ) {
// this ensures that users only sign up for a free trial once
rcp_errors()->add( 'free_trial_used', __( 'You may only sign up for a free trial once', 'rcp' ), 'register' );
}
}
if( ! empty( $discount ) ) {
if( rcp_validate_discount( $discount, $subscription_id ) ) {
$discount_valid = true;
} else {
// the entered discount code is incorrect
rcp_errors()->add( 'invalid_discount', __( 'The discount you entered is invalid', 'rcp' ), 'register' );
}
if( $discount_valid && $price > 0 ) {
if( ! $user_data['need_new'] && rcp_user_has_used_discount( $user_data['id'] , $discount ) && apply_filters( 'rcp_discounts_once_per_user', true ) ) {
$discount_valid = false;
rcp_errors()->add( 'discount_already_used', __( 'You can only use the discount code once', 'rcp' ), 'register' );
}
if( $discount_valid ) {
$discounts = new RCP_Discounts();
$discount_obj = $discounts->get_by( 'code', $discount );
if( is_object( $discount_obj ) ) {
// calculate the after-discount price
$price = $discounts->calc_discounted_price( $base_price, $discount_obj->amount, $discount_obj->unit );
}
}
}
}
if( $price == 0 && isset( $_POST['rcp_auto_renew'] ) ) {
// since free subscriptions do not go through PayPal, they cannot be auto renewed
rcp_errors()->add( 'invalid_auto_renew', __( 'Free subscriptions cannot be automatically renewed', 'rcp' ), 'register' );
}
// Validate extra fields in gateways with the 2.1+ gateway API
if( ! has_action( 'rcp_gateway_' . $gateway ) && $price > 0 ) {
$gateways = new RCP_Payment_Gateways;
$gateway_var = $gateways->get_gateway( $gateway );
$gateway_obj = new $gateway_var['class'];
$gateway_obj->validate_fields();
}
do_action( 'rcp_form_errors', $_POST );
// retrieve all error messages, if any
$errors = rcp_errors()->get_error_messages();
if ( ! empty( $errors ) && $is_ajax ) {
wp_send_json_error( array( 'success' => false, 'errors' => rcp_get_error_messages_html( 'register' ), 'nonce' => wp_create_nonce( 'rcp-register-nonce' ) ) );
} elseif( $is_ajax ) {
wp_send_json_success( array( 'success' => true ) );
}
// only create the user if there are no errors
if( ! empty( $errors ) ) {
return;
}
// deterime the expiration date of the user's subscription
if( $expiration->duration > 0 ) {
$member_expires = rcp_calc_member_expiration( $expiration );
} else {
$member_expires = 'none';
}
if( $user_data['need_new'] ) {
$user_data['id'] = wp_insert_user( array(
'user_login' => $user_data['login'],
'user_pass' => $user_data['password'],
'user_email' => $user_data['email'],
'first_name' => $user_data['first_name'],
'last_name' => $user_data['last_name'],
'user_registered' => date( 'Y-m-d H:i:s' )
)
);
}
if( $user_data['id'] ) {
if( ! rcp_is_active( $user_data['id'] ) ) {
rcp_set_status( $user_data['id'], 'pending' );
}
// setup a unique key for this subscription
$subscription_key = rcp_generate_subscription_key();
update_user_meta( $user_data['id'], 'rcp_subscription_key', $subscription_key );
update_user_meta( $user_data['id'], 'rcp_subscription_level', $subscription_id );
rcp_set_expiration_date( $user_data['id'], $member_expires );
// Set the user's role
$role = ! empty( $subscription->role ) ? $subscription->role : 'subscriber';
$user = new WP_User( $user_data['id'] );
$user->add_role( apply_filters( 'rcp_default_user_level', $role, $subscription_id ) );
do_action( 'rcp_form_processing', $_POST, $user_data['id'], $price );
// process a paid subscription
if( $price > '0' ) {
if( ! empty( $discount ) ) {
// record the usage of this discount code
$discounts->add_to_user( $user_data['id'], $discount );
// incrase the usage count for the code
$discounts->increase_uses( $discount_obj->id );
// if the discount is 100%, log the user in and redirect to success page
if( $price == '0' ) {
rcp_set_status( $user_data['id'], 'active' );
rcp_email_subscription_status( $user_data['id'], 'active' );
rcp_login_user_in( $user_data['id'], $user_data['login'] );
wp_redirect( rcp_get_return_url( $user_data['id'] ) ); exit;
}
}
// Determine auto renew behavior
if( '3' == rcp_get_auto_renew_behavior() && isset( $_POST['rcp_auto_renew'] ) ) {
$auto_renew = true;
} elseif( '1' == rcp_get_auto_renew_behavior() ) {
$auto_renew = true;
} else {
$auto_renew = false;
}
// Remove trialing status, if it exists
delete_user_meta( $user_data['id'], 'rcp_is_trialing' );
// log the new user in
rcp_login_user_in( $user_data['id'], $user_data['login'] );
$redirect = rcp_get_return_url( $user_data['id'] );
$subscription_data = array(
'price' => $price,
'discount' => $base_price - $price,
'discount_code' => $discount,
'fee' => ! empty( $subscription->fee ) ? number_format( $subscription->fee, 2 ) : 0,
'length' => $expiration->duration,
'length_unit' => strtolower( $expiration->duration_unit ),
'subscription_id' => $subscription->id,
'subscription_name' => $subscription->name,
'key' => $subscription_key,
'user_id' => $user_data['id'],
'user_name' => $user_data['login'],
'user_email' => $user_data['email'],
'currency' => $rcp_options['currency'],
'auto_renew' => $auto_renew,
'return_url' => $redirect,
'new_user' => $user_data['need_new'],
'post_data' => $_POST
);
// send all of the subscription data off for processing by the gateway
rcp_send_to_gateway( $gateway, apply_filters( 'rcp_subscription_data', $subscription_data ) );
// process a free or trial subscription
} else {
// This is a free user registration or trial
// if the subscription is a free trial, we need to record it in the user meta
if( $member_expires != 'none' ) {
// this is so that users can only sign up for one trial
update_user_meta( $user_data['id'], 'rcp_has_trialed', 'yes' );
update_user_meta( $user_data['id'], 'rcp_is_trialing', 'yes' );
// activate the user's trial subscription
rcp_set_status( $user_data['id'], 'active' );
rcp_email_subscription_status( $user_data['id'], 'trial' );
} else {
// set the user's status to free
rcp_set_status( $user_data['id'], 'free' );
rcp_email_subscription_status( $user_data['id'], 'free' );
}
// date for trial / paid users, "none" for free users
rcp_set_expiration_date( $user_data['id'], $member_expires );
if( $user_data['need_new'] ) {
if( ! isset( $rcp_options['disable_new_user_notices'] ) ) {
// send an email to the admin alerting them of the registration
wp_new_user_notification( $user_data['id']) ;
}
// log the new user in
rcp_login_user_in( $user_data['id'], $user_data['login'] );
}
// send the newly created user to the redirect page after logging them in
wp_redirect( rcp_get_return_url( $user_data['id'] ) ); exit;
} // end price check
} // end if new user id
} // end nonce check
}
function rcp_check_ipn()
{
global $rcp_options;
if (!class_exists('IpnListener')) {
// instantiate the IpnListener class
include RCP_PLUGIN_DIR . 'includes/gateways/paypal/ipnlistener.php';
}
$listener = new IpnListener();
if (isset($rcp_options['sandbox'])) {
$listener->use_sandbox = true;
}
if (isset($rcp_options['ssl'])) {
$listener->use_ssl = true;
} else {
$listener->use_ssl = false;
}
//To post using the fsockopen() function rather than cURL, use:
if (isset($rcp_options['disable_curl'])) {
$listener->use_curl = false;
}
try {
$listener->requirePostMethod();
$verified = $listener->processIpn();
} catch (Exception $e) {
//exit(0);
}
/*
The processIpn() method returned true if the IPN was "VERIFIED" and false if it
was "INVALID".
*/
if ($verified || isset($_POST['verification_override']) || (isset($rcp_options['sandbox']) || isset($rcp_options['disable_ipn_verify']))) {
$posted = apply_filters('rcp_ipn_post', $_POST);
// allow $_POST to be modified
$user_id = $posted['custom'];
$subscription_name = $posted['item_name'];
$subscription_key = $posted['item_number'];
$amount = number_format((double) $posted['mc_gross'], 2);
$amount2 = number_format((double) $posted['mc_amount3'], 2);
$payment_status = $posted['payment_status'];
$currency_code = $posted['mc_currency'];
$subscription_id = rcp_get_subscription_id($user_id);
$subscription_price = number_format((double) rcp_get_subscription_price(rcp_get_subscription_id($user_id)), 2);
$user_data = get_userdata($user_id);
if (!$user_data || !$subscription_id) {
return;
}
if (!rcp_get_subscription_details($subscription_id)) {
return;
}
// setup the payment info in an array for storage
$payment_data = array('date' => date('Y-m-d g:i:s', strtotime($posted['payment_date'])), 'subscription' => $posted['item_name'], 'payment_type' => $posted['txn_type'], 'subscription_key' => $subscription_key, 'amount' => $amount, 'user_id' => $user_id, 'transaction_id' => $posted['txn_id']);
do_action('rcp_valid_ipn', $payment_data, $user_id, $posted);
if ($posted['txn_type'] == 'web_accept' || $posted['txn_type'] == 'subscr_payment') {
// only check for an existing payment if this is a payment IPD request
if (rcp_check_for_existing_payment($posted['txn_type'], $posted['payment_date'], $subscription_key)) {
$log_data = array('post_title' => __('Duplicate Payment', 'rcp'), 'post_content' => __('A duplicate payment was detected. The new payment was still recorded, so you may want to check into both payments.', 'rcp'), 'post_parent' => 0, 'log_type' => 'gateway_error');
$log_meta = array('user_subscription' => $posted['item_name'], 'user_id' => $user_id);
$log_entry = WP_Logging::insert_log($log_data, $log_meta);
return;
// this IPN request has already been processed
}
/* do some quick checks to make sure all necessary data validates */
if ($amount < $subscription_price && $amount2 < $subscription_price) {
/*
// the subscription price doesn't match, so lets check to see if it matches with a discount code
if( ! rcp_check_paypal_return_price_after_discount( $subscription_price, $amount, $amount2, $user_id ) ) {
$log_data = array(
'post_title' => __( 'Price Mismatch', 'rcp' ),
'post_content' => sprintf( __( 'The price in an IPN request did not match the subscription price. Payment data: %s', 'rcp' ), json_encode( $payment_data ) ),
'post_parent' => 0,
'log_type' => 'gateway_error'
);
$log_meta = array(
'user_subscription' => $posted['item_name'],
'user_id' => $user_id
);
$log_entry = WP_Logging::insert_log( $log_data, $log_meta );
//return;
}
*/
}
if (strtolower($currency_code) != strtolower($rcp_options['currency'])) {
// the currency code is invalid
$log_data = array('post_title' => __('Invalid Currency Code', 'rcp'), 'post_content' => sprintf(__('The currency code in an IPN request did not match the site currency code. Payment data: %s', 'rcp'), json_encode($payment_data)), 'post_parent' => 0, 'log_type' => 'gateway_error');
$log_meta = array('user_subscription' => $posted['item_name'], 'user_id' => $user_id);
$log_entry = WP_Logging::insert_log($log_data, $log_meta);
return;
}
}
if (isset($rcp_options['email_ipn_reports'])) {
wp_mail(get_bloginfo('admin_email'), __('IPN report', 'rcp'), $listener->getTextReport());
}
if (rcp_get_subscription_key($user_id) != $subscription_key) {
// the subscription key is invalid
$log_data = array('post_title' => __('Subscription Key Mismatch', 'rcp'), 'post_content' => sprintf(__('The subscription key in an IPN request did not match the subscription key recorded for the user. Payment data: %s', 'rcp'), json_encode($payment_data)), 'post_parent' => 0, 'log_type' => 'gateway_error');
$log_meta = array('user_subscription' => $posted['item_name'], 'user_id' => $user_id);
$log_entry = WP_Logging::insert_log($log_data, $log_meta);
return;
}
/* now process the kind of subscription/payment */
$rcp_payments = new RCP_Payments();
// Subscriptions
switch ($posted['txn_type']) {
case "subscr_signup":
// when a new user signs up
// store the recurring payment ID
update_user_meta($user_id, 'rcp_paypal_subscriber', $posted['payer_id']);
// set the user's status to active
rcp_set_status($user_id, 'active');
if (!isset($rcp_options['disable_new_user_notices'])) {
wp_new_user_notification($user_id);
}
// send welcome email
rcp_email_subscription_status($user_id, 'active');
update_user_meta($user_id, 'rcp_recurring', 'yes');
do_action('rcp_ipn_subscr_signup', $user_id);
break;
case "subscr_payment":
// when a user makes a recurring payment
// record this payment in the database
$rcp_payments->insert($payment_data);
$subscription = rcp_get_subscription_details(rcp_get_subscription_id($user_id));
// update the user's expiration to correspond with the new payment
$member_new_expiration = date('Y-m-d H:i:s', strtotime('+' . $subscription->duration . ' ' . $subscription->duration_unit . ' 23:59:59'));
rcp_set_expiration_date($user_id, $member_new_expiration);
update_user_meta($user_id, 'rcp_paypal_subscriber', $posted['payer_id']);
// make sure the user's status is active
rcp_set_status($user_id, 'active');
update_user_meta($user_id, 'rcp_recurring', 'yes');
delete_user_meta($user_id, '_rcp_expired_email_sent');
do_action('rcp_ipn_subscr_payment', $user_id);
break;
case "subscr_cancel":
// user is marked as cancelled but retains access until end of term
rcp_set_status($user_id, 'cancelled');
// set the use to no longer be recurring
delete_user_meta($user_id, 'rcp_recurring');
delete_user_meta($user_id, 'rcp_paypal_subscriber');
// send sub cancelled email
rcp_email_subscription_status($user_id, 'cancelled');
do_action('rcp_ipn_subscr_cancel', $user_id);
break;
case "subscr_failed":
do_action('rcp_ipn_subscr_failed');
break;
case "subscr_eot":
// user's subscription has reach the end of its term
// set the use to no longer be recurring
delete_user_meta($user_id, 'rcp_recurring');
if ('cancelled' !== rcp_get_status($user_id)) {
rcp_set_status($user_id, 'expired');
// send expired email
rcp_email_subscription_status($user_id, 'expired');
}
do_action('rcp_ipn_subscr_eot', $user_id);
break;
case "cart":
return;
// get out of here
// get out of here
case "express_checkout":
return;
// get out of here
// get out of here
case "web_accept":
switch (strtolower($payment_status)) {
case 'completed':
if (isset($_POST['verification_override'])) {
// this is a method for providing a new expiration if it doesn't exist
$subscription = rcp_get_subscription_details_by_name($payment_data['subscription']);
// update the user's expiration to correspond with the new payment
$member_new_expiration = date('Y-m-d H:i:s', strtotime('+' . $subscription->duration . ' ' . $subscription->duration_unit . ' 23:59:59'));
rcp_set_expiration_date($user_id, $member_new_expiration);
}
// set this user to active
rcp_set_status($user_id, 'active');
$rcp_payments->insert($payment_data);
rcp_email_subscription_status($user_id, 'active');
if (!isset($rcp_options['disable_new_user_notices'])) {
// send welcome email here
wp_new_user_notification($user_id);
}
delete_user_meta($user_id, '_rcp_expired_email_sent');
break;
case 'denied':
case 'expired':
case 'failed':
case 'voided':
rcp_set_status($user_id, 'cancelled');
// send cancelled email here
break;
}
break;
default:
break;
}
} else {
if (isset($rcp_options['email_ipn_reports'])) {
// an invalid IPN attempt was made. Send an email to the admin account to investigate
wp_mail(get_bloginfo('admin_email'), __('Invalid IPN', 'rcp'), $listener->getTextReport());
}
}
}