public function processRequest($ip)
{
$this->ip = $ip;
$parts = preg_split('/&/', $this->response);
foreach ($parts as $part) {
$p = preg_split('/=/', $part, 2);
$this->results[$p[0]] = $p[1];
}
$this->invoice = new Web_Invoice_GetInfo(web_invoice_get_invoice_id_by_payment($this->results['VendorTxCode']));
if (!$this->invoice) {
return;
}
if ($this->results['Status'] == 'OK' && intval($this->results['Amount']) == intval($this->invoice->display('amount'))) {
$this->approved = true;
web_invoice_mark_as_paid($this->invoice->id);
$this->_logSuccess($this->results['VPSTxId']);
web_invoice_update_invoice_meta($this->invoice->id, 'transaction_id', $this->results['VPSTxId']);
web_invoice_update_invoice_meta($this->invoice->id, 'auth_code', $this->results['TxAuthNo']);
} else {
if ($this->results['Status'] == 'NOTAUTHED') {
$this->declined = true;
$this->_logFailure($this->results['VPSTxId']);
web_invoice_update_invoice_meta($this->invoice->id, 'transaction_id', $this->results['VPSTxId']);
} else {
$this->error = true;
$this->_logFailure($this->results['VPSTxId']);
web_invoice_update_invoice_meta($this->invoice->id, 'transaction_id', $this->results['VPSTxId']);
}
}
wp_redirect(web_invoice_build_invoice_link($this->invoice->id));
}
function _processCharge($ip, $request)
{
$this->gc_status = $request['new-financial-order-state'];
if (strtolower($this->gc_status) != "charged") {
$this->_logSuccess('Payment in progress (' . $this->gc_status . ')');
header('HTTP/1.0 200 OK');
header('Content-type: text/plain; charset=UTF-8');
print 'Thank you very much for letting us know. REF: Not success';
exit(0);
}
web_invoice_mark_as_paid($this->invoice->id);
}
function processRequest($ip, $request)
{
$req = 'cmd=_notify-validate';
$post_values = "";
$cart = array();
foreach ($request as $key => $value) {
$value = urlencode(stripslashes($value));
$req .= "&{$key}={$value}";
$post_values .= " {$key} : {$value}\n";
}
$header = "";
// post back to PayPal system to validate
$header .= "POST /cgi-bin/webscr HTTP/1.0\r\n";
$header .= "Content-Type: application/x-www-form-urlencoded\r\n";
$header .= "Content-Length: " . strlen($req) . "\r\n\r\n";
if (get_option('web_invoice_paypal_sandbox') == 'True') {
$fp = fsockopen('ssl://www.sandbox.paypal.com', 443, $errno, $errstr, 30);
} else {
$fp = fsockopen('ssl://www.paypal.com', 443, $errno, $errstr, 30);
}
$this->ip = $ip;
$this->pay_to_email = $request['receiver_email'];
$this->pay_from_email = $request['payer_email'];
$this->transaction_id = $request['txn_id'];
$this->status = $request['payment_status'];
$this->amount = $request['mc_gross'];
$this->currency = $request['mc_currency'];
$this->test_ipn = $request['test_ipn'];
if (isset($request['subscr_id'])) {
$this->recurring_payment_id = $request['subscr_id'];
}
if (!$this->invoice->id) {
$this->_logFailure('Invoice not found');
header('HTTP/1.0 404 Not Found');
header('Content-type: text/plain; charset=UTF-8');
print 'Invoice not found';
exit(0);
}
if ($this->currency != $this->invoice->display('currency')) {
$this->_logFailure('Invalid currency');
header('HTTP/1.0 400 Bad Request');
header('Content-type: text/plain; charset=UTF-8');
print 'We were not expecting you. REF: PP0';
exit(0);
}
if ($this->amount != $this->invoice->display('amount')) {
$this->_logFailure('Invalid amount');
header('HTTP/1.0 400 Bad Request');
header('Content-type: text/plain; charset=UTF-8');
print 'We were not expecting you. REF: PP1';
exit(0);
}
if ($this->pay_to_email != get_option('web_invoice_paypal_address')) {
$this->_logFailure('Invalid pay_to_email');
header('HTTP/1.0 400 Bad Request');
header('Content-type: text/plain; charset=UTF-8');
print 'We were not expecting you. REF: PP2';
exit(0);
}
if (!$fp) {
$this->_logFailure('Unable to verify');
header('HTTP/1.0 400 Bad Request');
header('Content-type: text/plain; charset=UTF-8');
print 'We were not expecting you. REF: PP2';
exit(0);
} else {
fputs($fp, $header . $req);
while (!feof($fp)) {
$res = fgets($fp, 1024);
if (strcmp($res, "VERIFIED") == 0) {
if ($this->status == "Completed") {
if ($this->test_ipn == 1) {
if (get_option('web_invoice_paypal_sandbox') == 'True') {
$this->_logFailure('Test payment');
}
} else {
$this->_logSuccess('Paid');
web_invoice_mark_as_paid($this->invoice->id);
}
header('HTTP/1.0 200 OK');
header('Content-type: text/plain; charset=UTF-8');
print 'Success';
exit(0);
} else {
$message = "Corrupted PayPal IPN {$txn_id}, {$count}, {$receiver_email}";
}
} else {
if (strcmp($res, "INVALID") == 0) {
$message = "Invalid PayPal IPN {$txn_id}";
}
}
}
fclose($fp);
}
$this->_logFailure($message);
header('HTTP/1.0 200 OK');
header('Content-type: text/plain; charset=UTF-8');
print 'Thank you very much for letting us know. REF: ' . $message;
exit(0);
}
function _processPayment($ip, $request)
{
$this->_logSuccess('Payment in progress (' . $this->respmsg . ')');
web_invoice_mark_as_paid($this->invoice->id);
header('HTTP/1.0 200 OK');
header('Content-type: text/plain; charset=UTF-8');
print 'Thank you very much for letting us know. REF: Paid';
}
function web_invoice_process_cc_transaction($cc_data)
{
$errors = array();
$errors_msg = null;
$_POST['processing_problem'] = '';
$stop_transaction = false;
$invoice_id = preg_replace("/[^0-9]/", "", $_POST['invoice_num']);
/* this is the real invoice id */
if (web_invoice_recurring($invoice_id)) {
$recurring = true;
}
$invoice = new Web_Invoice_GetInfo($invoice_id);
// Accomodate Custom Invoice IDs by changing the post value, this is passed to Authorize.net account
$web_invoice_custom_invoice_id = web_invoice_meta($invoice_id, 'web_invoice_custom_invoice_id');
// If there is a custom invoice id, we're setting the $_POST['invoice_num'] to the custom id, because that is what's getting passed to authorize.net
if ($web_invoice_custom_invoice_id) {
$_POST['invoice_num'] = $web_invoice_custom_invoice_id;
}
$wp_users_id = get_web_invoice_user_id($invoice_id);
if (empty($_POST['first_name'])) {
$errors['first_name'][] = "Please enter your first name under billing details.";
$stop_transaction = true;
}
if (empty($_POST['last_name'])) {
$errors['last_name'][] = "Please enter your last name under billing details.";
$stop_transaction = true;
}
if (empty($_POST['email_address'])) {
$errors['email_address'][] = "Please provide an email address under billing details.";
$stop_transaction = true;
}
if (empty($_POST['phonenumber'])) {
$errors['phonenumber'][] = "Please enter your phone number under billing details.";
$stop_transaction = true;
}
if (empty($_POST['address'])) {
$errors['address'][] = "Please enter your address under billing details.";
$stop_transaction = true;
}
if (empty($_POST['city'])) {
$errors['city'][] = "Please enter your city under billing details.";
$stop_transaction = true;
}
if (empty($_POST['zip'])) {
$errors['zip'][] = "Please enter your ZIP code under billing details.";
$stop_transaction = true;
}
if (empty($_POST['country'])) {
$errors['country'][] = "Please enter your country under billing details.";
$stop_transaction = true;
}
if (empty($_POST['state']) && $_POST['country'] == 'US') {
$errors['state'][] = "Please select your state under billing details.";
$stop_transaction = true;
}
if (!isset($_POST['processor']) || $_POST['processor'] != 'sagepay') {
if (empty($_POST['card_num'])) {
$errors['card_num'][] = "Please enter your credit card number under billing details.";
$stop_transaction = true;
} else {
if (!web_invoice_validate_cc_number($_POST['card_num'])) {
$errors['card_num'][] = "Please enter a valid credit card number.";
$stop_transaction = true;
}
}
if (empty($_POST['exp_month'])) {
$errors['exp_month'][] = "Please enter your credit card's expiration month under billing details.";
$stop_transaction = true;
}
if (empty($_POST['exp_year'])) {
$errors['exp_year'][] = "Please enter your credit card's expiration year under billing details.";
$stop_transaction = true;
}
if (empty($_POST['card_code'])) {
$errors['card_code'][] = "The <b>Security Code</b> is the code on the back of your card under billing details.";
$stop_transaction = true;
}
}
if ($_POST['processor'] == 'pfp' && get_option('web_invoice_pfp_shipping_details') == 'True' || $_POST['processor'] == 'sagepay' && get_option('web_invoice_sagepay_shipping_details') == 'True') {
if (empty($_POST['shipto_first_name'])) {
$errors['shipto_first_name'][] = "Please enter your first name under shipping details.";
$stop_transaction = true;
}
if (empty($_POST['shipto_last_name'])) {
$errors['shipto_last_name'][] = "Please enter your last name under shipping details. ";
$stop_transaction = true;
}
if (empty($_POST['shipto_email_address'])) {
$errors['shipto_email_address'][] = "Please provide an email address under shipping details.";
$stop_transaction = true;
}
if (empty($_POST['shipto_phonenumber'])) {
$errors['shipto_phonenumber'][] = "Please enter your phone number under shipping details.";
$stop_transaction = true;
}
if (empty($_POST['shipto_address'])) {
$errors['shipto_address'][] = "Please enter your address under shipping details.";
$stop_transaction = true;
}
if (empty($_POST['shipto_city'])) {
$errors['shipto_city'][] = "Please enter your city under shipping details.";
$stop_transaction = true;
}
if (empty($_POST['shipto_zip'])) {
$errors['shipto_zip'][] = "Please enter your ZIP code under shipping details.";
$stop_transaction = true;
}
if (empty($_POST['shipto_country'])) {
$errors['shipto_country'][] = "Please enter your country under shipping details.";
$stop_transaction = true;
}
if (empty($_POST['shipto_state']) && $_POST['shipto_country'] == 'US') {
$errors['shipto_state'][] = "Please select your state under shipping details.";
$stop_transaction = true;
}
}
// Charge Card
if (!$stop_transaction) {
if (isset($_POST['processor']) && $_POST['processor'] == 'sagepay') {
$data_arr = array();
$data_arr['VendorTxCode'] = $invoice->display('trx_id');
$data_arr['VendorEMail'] = get_option("web_invoice_email_address");
$data_arr['Amount'] = $invoice->display('amount');
$data_arr['Currency'] = $invoice->display('currency');
$data_arr['Description'] = $invoice->display('subject');
$data_arr['SuccessURL'] = web_invoice_build_invoice_link($invoice_id);
$data_arr['FailureURL'] = web_invoice_build_invoice_link($invoice_id);
$data_arr['CustomerName'] = "{$_POST['first_name']} {$_POST['last_name']}";
$data_arr['CustomerEMail'] = $_POST['email_address'];
$data_arr['BillingFirstnames'] = $_POST['first_name'];
$data_arr['BillingSurname'] = $_POST['last_name'];
$data_arr['BillingAddress1'] = $_POST['address'];
$data_arr['BillingCity'] = $_POST['city'];
$data_arr['BillingPostCode'] = $_POST['zip'];
$data_arr['BillingCountry'] = $_POST['country'];
if (!empty($_POST['state'])) {
$data_arr['BillingState'] = substr($_POST['state'], 0, 2);
}
$data_arr['BillingPhone'] = $_POST['phonenumber'];
if (get_option('web_invoice_sagepay_shipping_details') == 'True') {
$data_arr['DeliveryFirstnames'] = $_POST['shipto_first_name'];
$data_arr['DeliverySurname'] = $_POST['shipto_last_name'];
$data_arr['DeliveryAddress1'] = $_POST['shipto_address'];
$data_arr['DeliveryCity'] = $_POST['shipto_city'];
$data_arr['DeliveryPostCode'] = $_POST['shipto_zip'];
$data_arr['DeliveryCountry'] = $_POST['shipto_country'];
if (!empty($_POST['shipto_state'])) {
$data_arr['DeliveryState'] = substr($_POST['shipto_state'], 0, 2);
}
$data_arr['DeliveryPhone'] = $_POST['shipto_phonenumber'];
} else {
$data_arr['DeliveryFirstnames'] = $_POST['first_name'];
$data_arr['DeliverySurname'] = $_POST['last_name'];
$data_arr['DeliveryAddress1'] = $_POST['address'];
$data_arr['DeliveryCity'] = $_POST['city'];
$data_arr['DeliveryPostCode'] = $_POST['zip'];
if (!empty($_POST['state'])) {
$data_arr['DeliveryState'] = substr($_POST['state'], 0, 2);
}
$data_arr['DeliveryCountry'] = $_POST['country'];
$data_arr['DeliveryPhone'] = $_POST['phonenumber'];
}
$itemized_array = $invoice->display('itemized');
$basket = count($itemized_array);
foreach ($itemized_array as $itemized_item) {
$basket .= ":" . $itemized_item[name] . ":" . $itemized_item[quantity] . ":" . number_format($itemized_item[price], 2) . ":" . number_format($itemized_item[price] * ($tax / 100), 2) . ":" . number_format($itemized_item[price] * ($tax / 100) + $itemized_item[price], 2) . ":" . number_format(($itemized_item[price] * ($tax / 100) + $itemized_item[price]) * $itemized_item[quantity], 2);
}
$data_arr['Basket'] = $basket;
$datas_arr = array();
foreach ($data_arr as $key => $_val) {
$datas_arr[] = "{$key}={$_val}";
}
$datas = join('&', $datas_arr);
$enc_data = web_invoice_xor_encrypt($datas, get_option('web_invoice_sagepay_vendor_key'));
print $enc_data;
} else {
if (isset($_POST['processor']) && $_POST['processor'] == 'pfp') {
require_once 'gateways/payflowpro.class.php';
if ($recurring) {
$arb = new Web_Invoice_PayflowProRecurring();
$arb->transaction($_POST['card_num']);
$arb->setTransactionType('R');
// Billing Info
$arb->setParameter("CVV2", $_POST['card_code']);
$arb->setParameter("EXPDATE ", $_POST['exp_month'] . substr($_POST['exp_year'], 2));
$arb->setParameter("AMT", $invoice->display('amount'));
$arb->setParameter("CURRENCYCODE", $invoice->display('currency'));
if ($recurring) {
$arb->setParameter("RECURRING", 'Y');
}
//Subscription Info
$arb->setParameter('BILLINGFREQUENCY', $invoice->display('interval_length'));
if (get_option('web_invoice_pfp_authentication') == '3token' || get_option('web_invoice_pfp_authentication') == 'unipay') {
$arb->setParameter('DESC', $invoice->display('subscription_name'));
$arb->setParameter('BILLINGPERIOD', web_invoice_pfp_convert_interval($invoice->display('interval_length'), $invoice->display('interval_unit')));
$arb->setParameter('PROFILESTARTDATE', date('c', strtotime($invoice->display('startDateM'))));
$arb->setParameter('TOTALBILLINGCYCLES', $invoice->display('totalOccurrences'));
} else {
$arb->setParameter('PROFILENAME', $invoice->display('subscription_name'));
$arb->setParameter('START', date('mdY', strtotime($invoice->display('startDateM')) + 3600 * 24));
$arb->setParameter('TERM', $invoice->display('totalOccurrences'));
$arb->setParameter('PAYPERIOD', web_invoice_pfp_wpppe_convert_interval($invoice->display('interval_length'), $invoice->display('interval_unit')));
}
$arb->setParameter('ACTION', 'A');
$arb->setParameter("CUSTBROWSER", $_SERVER['HTTP_USER_AGENT']);
$arb->setParameter("CUSTHOSTNAME", $_SERVER['HTTP_HOST']);
$arb->setParameter("CUSTIP ", $_SERVER['REMOTE_ADDR']);
//Customer Info
$arb->setParameter("FIRSTNAME", $_POST['first_name']);
$arb->setParameter("LASTNAME", $_POST['last_name']);
$arb->setParameter("STREET", $_POST['address']);
$arb->setParameter("CITY", $_POST['city']);
$arb->setParameter("STATE", $_POST['state']);
$arb->setParameter("COUNTRYCODE", $_POST['country']);
$arb->setParameter("ZIP", $_POST['zip']);
$arb->setParameter("PHONENUM", $_POST['phonenumber']);
$arb->setParameter("EMAIL", $_POST['email_address']);
$arb->setParameter("COMMENT1", "{$_POST['first_name']} {$_POST['last_name']} " . $invoice->display('subscription_name') . " Recurring");
if (get_option('web_invoice_pfp_shipping_details') == 'True') {
//Shipping Info
$arb->setParameter("SHIPTONAME", "{$_POST['shipto_first_name']} {$_POST['shipto_last_name']}");
$arb->setParameter("SHIPTOSTREET", $_POST['shipto_address']);
$arb->setParameter("SHIPTOCITY", $_POST['shipto_city']);
$arb->setParameter("SHIPTOSTATE", $_POST['shipto_state']);
$arb->setParameter("SHIPTOCOUNTRY", $_POST['shipto_country']);
$arb->setParameter("SHIPTOZIP", $_POST['shipto_zip']);
$arb->setParameter("SHIPTOPHONENUM", $_POST['shipto_phonenumber']);
}
// Order Info
$arb->setParameter("COMMENT2", $invoice->display('subject'));
$arb->setParameter("CUSTREF", $invoice->display('display_id'));
$arb->createAccount();
if ($arb->isSuccessful()) {
echo "Transaction okay.";
update_usermeta($wp_users_id, 'last_name', $_POST['last_name']);
update_usermeta($wp_users_id, 'first_name', $_POST['first_name']);
update_usermeta($wp_users_id, 'city', $_POST['city']);
update_usermeta($wp_users_id, 'state', $_POST['state']);
update_usermeta($wp_users_id, 'zip', $_POST['zip']);
update_usermeta($wp_users_id, 'tax_id', $_POST['tax_id']);
update_usermeta($wp_users_id, 'company_name', $_POST['company_name']);
update_usermeta($wp_users_id, 'streetaddress', $_POST['address']);
update_usermeta($wp_users_id, 'phonenumber', $_POST['phonenumber']);
update_usermeta($wp_users_id, 'country', $_POST['country']);
if (get_option('web_invoice_pfp_shipping_details') == 'True') {
update_usermeta($wp_users_id, 'shipto_last_name', $_POST['shipto_last_name']);
update_usermeta($wp_users_id, 'shipto_first_name', $_POST['shipto_first_name']);
update_usermeta($wp_users_id, 'shipto_streetaddress', $_POST['shipto_address']);
update_usermeta($wp_users_id, 'shipto_city', $_POST['shipto_city']);
update_usermeta($wp_users_id, 'shipto_state', $_POST['shipto_state']);
update_usermeta($wp_users_id, 'shipto_zip', $_POST['shipto_zip']);
update_usermeta($wp_users_id, 'shipto_phonenumber', $_POST['shipto_phonenumber']);
update_usermeta($wp_users_id, 'shipto_country', $_POST['shipto_country']);
}
web_invoice_update_recurring_start_date($invoice_id, strtotime(date('Y-m-d')));
web_invoice_update_invoice_meta($invoice_id, 'subscription_id', $arb->getSubscriberID());
web_invoice_update_invoice_meta($invoice_id, 'recurring_transaction_id', $arb->getTransactionID());
web_invoice_update_invoice_meta($invoice_id, 'pfp_status', 'active');
web_invoice_update_log($invoice_id, 'subscription', ' Subscription initiated, Subcription ID - ' . $arb->getSubscriberID());
web_invoice_paid($invoice_id);
web_invoice_mark_as_paid($invoice_id);
}
if ($arb->isError()) {
$errors['processing_problem'][] .= "One-time credit card payment is processed successfully. However, recurring billing setup failed.";
$stop_transaction = true;
web_invoice_update_log($invoice_id, 'subscription_error', 'Response Code: ' . $arb->getResponseCode() . ' | Subscription error - ' . $arb->getResponseText());
web_invoice_update_log($invoice_id, 'pfp_failure', "Failed PFP payment. REF: " . serialize($payment));
}
} else {
$payment = new Web_Invoice_PayflowPro(true);
$payment->transaction($_POST['card_num']);
// Billing Info
$payment->setParameter("CVV2", $_POST['card_code']);
$payment->setParameter("EXPDATE ", $_POST['exp_month'] . substr($_POST['exp_year'], 2));
$payment->setParameter("AMT", $invoice->display('amount'));
$payment->setParameter("CURRENCYCODE", $invoice->display('currency'));
if ($recurring) {
$payment->setParameter("RECURRING", 'Y');
}
$payment->setParameter("CUSTBROWSER", $_SERVER['HTTP_USER_AGENT']);
$payment->setParameter("CUSTHOSTNAME", $_SERVER['HTTP_HOST']);
$payment->setParameter("CUSTIP ", $_SERVER['REMOTE_ADDR']);
//Customer Info
$payment->setParameter("FIRSTNAME", $_POST['first_name']);
$payment->setParameter("LASTNAME", $_POST['last_name']);
$payment->setParameter("STREET", $_POST['address']);
$payment->setParameter("CITY", $_POST['city']);
$payment->setParameter("STATE", $_POST['state']);
$payment->setParameter("COUNTRYCODE", $_POST['country']);
$payment->setParameter("ZIP", $_POST['zip']);
$payment->setParameter("PHONENUM", $_POST['phonenumber']);
$payment->setParameter("EMAIL", $_POST['email_address']);
$payment->setParameter("COMMENT1", "WP User - " . $invoice->recipient('user_id'));
if (get_option('web_invoice_pfp_shipping_details') == 'True') {
//Shipping Info
$payment->setParameter("SHIPTONAME", "{$_POST['shipto_first_name']} {$_POST['shipto_last_name']}");
$payment->setParameter("SHIPTOSTREET", $_POST['shipto_address']);
$payment->setParameter("SHIPTOCITY", $_POST['shipto_city']);
$payment->setParameter("SHIPTOSTATE", $_POST['shipto_state']);
$payment->setParameter("SHIPTOCOUNTRY", $_POST['shipto_country']);
$payment->setParameter("SHIPTOZIP", $_POST['shipto_zip']);
$payment->setParameter("SHIPTOPHONENUM", $_POST['shipto_phonenumber']);
}
// Order Info
$payment->setParameter("COMMENT2", $invoice->display('subject'));
$payment->setParameter("CUSTREF", $invoice->display('display_id'));
$payment->process();
if ($payment->isApproved()) {
echo "Transaction okay.";
update_usermeta($wp_users_id, 'last_name', $_POST['last_name']);
update_usermeta($wp_users_id, 'first_name', $_POST['first_name']);
update_usermeta($wp_users_id, 'city', $_POST['city']);
update_usermeta($wp_users_id, 'state', $_POST['state']);
update_usermeta($wp_users_id, 'zip', $_POST['zip']);
update_usermeta($wp_users_id, 'tax_id', $_POST['tax_id']);
update_usermeta($wp_users_id, 'company_name', $_POST['company_name']);
update_usermeta($wp_users_id, 'streetaddress', $_POST['address']);
update_usermeta($wp_users_id, 'phonenumber', $_POST['phonenumber']);
update_usermeta($wp_users_id, 'country', $_POST['country']);
if (get_option('web_invoice_pfp_shipping_details') == 'True') {
update_usermeta($wp_users_id, 'shipto_last_name', $_POST['shipto_last_name']);
update_usermeta($wp_users_id, 'shipto_first_name', $_POST['shipto_first_name']);
update_usermeta($wp_users_id, 'shipto_streetaddress', $_POST['shipto_address']);
update_usermeta($wp_users_id, 'shipto_city', $_POST['shipto_city']);
update_usermeta($wp_users_id, 'shipto_state', $_POST['shipto_state']);
update_usermeta($wp_users_id, 'shipto_zip', $_POST['shipto_zip']);
update_usermeta($wp_users_id, 'shipto_phonenumber', $_POST['shipto_phonenumber']);
update_usermeta($wp_users_id, 'shipto_country', $_POST['shipto_country']);
}
//Mark invoice as paid
web_invoice_paid($invoice_id);
web_invoice_update_log($invoice_id, 'pfp_success', "Successful payment. REF: {$payment->getTransactionID()}");
web_invoice_update_invoice_meta($invoice_id, 'transaction_id', $payment->getTransactionID());
web_invoice_mark_as_paid($invoice_id);
// if(get_option('web_invoice_send_thank_you_email') == 'yes') web_invoice_send_email_receipt($invoice_id);
} else {
$errors['processing_problem'][] .= $payment->getResponseText();
$stop_transaction = true;
web_invoice_update_log($invoice_id, 'pfp_failure', "Failed PFP payment. REF: " . $payment->getTransactionID() . " " . serialize($payment));
}
}
} else {
require_once 'gateways/authnet.class.php';
require_once 'gateways/authnetARB.class.php';
$payment = new Web_Invoice_Authnet(true);
$payment->transaction($_POST['card_num']);
// Billing Info
$payment->setParameter("x_card_code", $_POST['card_code']);
$payment->setParameter("x_exp_date ", $_POST['exp_month'] . $_POST['exp_year']);
$payment->setParameter("x_amount", $invoice->display('amount'));
if ($recurring) {
$payment->setParameter("x_web_invoice_recurring_billing", true);
}
// Order Info
$payment->setParameter("x_description", $invoice->display('subject'));
$payment->setParameter("x_invoice_num", $invoice->display('display_id'));
$payment->setParameter("x_test_request", false);
$payment->setParameter("x_duplicate_window", 30);
//Customer Info
$payment->setParameter("x_first_name", $_POST['first_name']);
$payment->setParameter("x_last_name", $_POST['last_name']);
$payment->setParameter("x_address", $_POST['address']);
$payment->setParameter("x_city", $_POST['city']);
$payment->setParameter("x_state", $_POST['state']);
$payment->setParameter("x_country", $_POST['country']);
$payment->setParameter("x_zip", $_POST['zip']);
$payment->setParameter("x_phone", $_POST['phonenumber']);
$payment->setParameter("x_email", $_POST['email_address']);
$payment->setParameter("x_cust_id", "WP User - " . $invoice->recipient('user_id'));
$payment->setParameter("x_customer_ip ", $_SERVER['REMOTE_ADDR']);
$payment->process();
if ($payment->isApproved()) {
echo "Transaction okay.";
update_usermeta($wp_users_id, 'last_name', $_POST['last_name']);
update_usermeta($wp_users_id, 'first_name', $_POST['first_name']);
update_usermeta($wp_users_id, 'city', $_POST['city']);
update_usermeta($wp_users_id, 'state', $_POST['state']);
update_usermeta($wp_users_id, 'zip', $_POST['zip']);
update_usermeta($wp_users_id, 'tax_id', $_POST['tax_id']);
update_usermeta($wp_users_id, 'company_name', $_POST['company_name']);
update_usermeta($wp_users_id, 'streetaddress', $_POST['address']);
update_usermeta($wp_users_id, 'phonenumber', $_POST['phonenumber']);
update_usermeta($wp_users_id, 'country', $_POST['country']);
//Mark invoice as paid
web_invoice_paid($invoice_id);
web_invoice_mark_as_paid($invoice_id);
// if(get_option('web_invoice_send_thank_you_email') == 'yes') web_invoice_send_email_receipt($invoice_id);
if ($recurring) {
$arb = new Web_Invoice_AuthnetARB();
// Customer Info
$arb->setParameter('customerId', "WP User - " . $invoice->recipient('user_id'));
$arb->setParameter('firstName', $_POST['first_name']);
$arb->setParameter('lastName', $_POST['last_name']);
$arb->setParameter('address', $_POST['address']);
$arb->setParameter('city', $_POST['city']);
$arb->setParameter('state', $_POST['state']);
$arb->setParameter('zip', $_POST['zip']);
$arb->setParameter('country', $_POST['country']);
$arb->setParameter('customerEmail', $_POST['email_address']);
$arb->setParameter('customerPhoneNumber', $_POST['phonenumber']);
// Billing Info
$arb->setParameter('amount', $invoice->display('amount'));
$arb->setParameter('cardNumber', $_POST['card_num']);
$arb->setParameter('expirationDate', $_POST['exp_month'] . $_POST['exp_year']);
//Subscription Info
$arb->setParameter('refID', $invoice->display('display_id'));
$arb->setParameter('subscrName', $invoice->display('subscription_name'));
$arb->setParameter('interval_length', $invoice->display('interval_length'));
$arb->setParameter('interval_unit', $invoice->display('interval_unit'));
$arb->setParameter('startDate', $invoice->display('startDate'));
$arb->setParameter('totalOccurrences', $invoice->display('totalOccurrences'));
// First billing cycle is taken care off with initial payment
$arb->setParameter('trialOccurrences', '1');
$arb->setParameter('trialAmount', '0.00');
$arb->setParameter('orderInvoiceNumber', $invoice->display('display_id'));
$arb->setParameter('orderDescription', $invoice->display('subject'));
$arb->createAccount();
if ($arb->isSuccessful()) {
web_invoice_update_recurring_start_date($invoice_id, strtotime(date('Y-m-d')));
web_invoice_update_invoice_meta($invoice_id, 'subscription_id', $arb->getSubscriberID());
web_invoice_update_log($invoice_id, 'subscription', ' Subscription initiated, Subcription ID - ' . $arb->getSubscriberID());
}
if ($arb->isError()) {
$errors['processing_problem'][] .= "One-time credit card payment is processed successfully. However, recurring billing setup failed." . $arb->getResponse();
$stop_transaction = true;
web_invoice_update_log($invoice_id, 'subscription_error', 'Response Code: ' . $arb->getResponseCode() . ' | Subscription error - ' . $arb->getResponse());
}
}
} else {
$errors['processing_problem'][] .= $payment->getResponseText();
$stop_transaction = true;
}
}
}
// Uncomment these to troubleshoot. You will need FireBug to view the response of the AJAX post.
//echo $arb->xml;
//echo $arb->response;
//echo $arb->getResponse();
// echo $payment->getResponseText();
// echo $payment->getTransactionID();
// echo $payment->getAVSResponse();
// echo $payment->getAuthCode();
}
if ($stop_transaction && is_array($_POST)) {
foreach ($_POST as $key => $value) {
if (array_key_exists($key, $errors)) {
foreach ($errors[$key] as $k => $v) {
$errors_msg .= "error|{$key}|{$v}\n";
}
} else {
$errors_msg .= "ok|{$key}\n";
}
}
}
echo $errors_msg;
}
function processRequest($ip, $request)
{
$this->ip = $ip;
$this->ap_custemailaddress = $request['ap_custemailaddress'];
$this->ap_custfirstname = $request['ap_custfirstname'];
$this->ap_custlastname = $request['ap_custlastname'];
$this->ap_custaddress = $request['ap_custaddress'];
$this->ap_custcity = $request['ap_custcity'];
$this->ap_custstate = $request['ap_custstate'];
$this->ap_custcountry = $request['ap_custcountry'];
$this->ap_custzip = $request['ap_custzip'];
$this->ap_merchant = $request['ap_merchant'];
$this->ap_referencenumber = $request['ap_referencenumber'];
$this->ap_totalamount = $request['ap_totalamount'];
$this->ap_currency = $request['ap_currency'];
$this->ap_amount = $request['ap_amount'];
$this->ap_itemname = $request['ap_itemname'];
$this->ap_securitycode = $request['ap_securitycode'];
$this->ap_status = $request['ap_status'];
$this->ap_test = $request['ap_test'];
if (!$this->_allowedIp()) {
$this->_logFailure('Invalid IP');
header('HTTP/1.0 403 Forbidden');
header('Content-type: text/plain; charset=UTF-8');
print 'We were unable to authenticate the request';
exit(0);
}
if (!$this->invoice->id) {
$this->_logFailure('Invoice not found');
header('HTTP/1.0 404 Not Found');
header('Content-type: text/plain; charset=UTF-8');
print 'Invoice not found';
exit(0);
}
if ($this->ap_currency != web_invoice_meta($this->invoice->id, 'web_invoice_currency_code')) {
$this->_logFailure('Invalid currency');
header('HTTP/1.0 400 Bad Request');
header('Content-type: text/plain; charset=UTF-8');
print 'We were not expecting you. REF: AP0';
exit(0);
}
if ($this->ap_totalamount != $this->invoice->display('amount')) {
$this->_logFailure('Invalid amount');
header('HTTP/1.0 400 Bad Request');
header('Content-type: text/plain; charset=UTF-8');
print 'We were not expecting you. REF: AP1';
exit(0);
}
if ($this->ap_merchant != get_option('web_invoice_alertpay_address')) {
$this->_logFailure('Invalid pay_to_email');
header('HTTP/1.0 400 Bad Request');
header('Content-type: text/plain; charset=UTF-8');
print 'We were not expecting you. REF: AP2';
exit(0);
}
if ($this->ap_securitycode != get_option('web_invoice_alertpay_secret')) {
$this->_logFailure('Invalid security code');
header('HTTP/1.0 403 Forbidden');
header('Content-type: text/plain; charset=UTF-8');
print 'We were unable to authenticate the request';
exit(0);
}
if (strtolower($this->ap_status) != "success") {
$this->_logSuccess('Payment failed (status)');
header('HTTP/1.0 200 OK');
header('Content-type: text/plain; charset=UTF-8');
print 'Thank you very much for letting us know. REF: Not success';
exit(0);
}
if ($this->ap_test == 1) {
if (get_option('web_invoice_alertpay_test_mode') == 'TRUE') {
$this->_logFailure('Test payment');
$this->updateContactInfo();
}
} else {
$this->updateContactInfo();
web_invoice_mark_as_paid($this->invoice->id);
}
header('HTTP/1.0 200 OK');
header('Content-type: text/plain; charset=UTF-8');
print 'Thank you very much for letting us know';
exit(0);
}
function processRequest($ip, $request)
{
$this->ip = $ip;
$this->tco_order_number = $request['order_number'];
$this->tco_cart_order_id = $request['cart_order_id'];
$this->tco_credit_card_processed = $request['credit_card_processed'];
$this->tco_key = $request['key'];
$this->tco_demo = $request['demo'];
$this->tco_total = $request['total'];
if (!$this->invoice->id) {
$this->_logFailure('Invoice not found');
header('HTTP/1.0 404 Not Found');
header('Content-type: text/plain; charset=UTF-8');
print 'Invoice not found';
exit(0);
}
$calc_key = md5(get_option('web_invoice_2co_secret_word') . get_option('web_invoice_2co_sid') . $this->tco_order_number . $this->tco_total);
if (strtolower($this->tco_key) != strtolower($calc_key)) {
$this->_logFailure('Invalid security code');
header('HTTP/1.0 403 Forbidden');
header('Content-type: text/plain; charset=UTF-8');
print 'We were unable to authenticate the request';
exit(0);
}
if (strtolower($this->tco_credit_card_processed) != "y") {
$this->_logSuccess('2CO order # ' . $this->tco_order_number);
header('HTTP/1.0 200 OK');
header('Content-type: text/plain; charset=UTF-8');
print 'Thank you very much for letting us know. REF: Not success';
exit(0);
}
if (strtolower($this->tco_demo) == "y") {
if (get_option('web_invoice_2co_demo_mode') == 'TRUE') {
$this->_logFailure('Test payment');
}
} else {
if (intval($this->tco_total) >= $this->invoice->display('due_amount')) {
web_invoice_mark_as_paid($this->invoice->id);
}
$payment_id = web_invoice_payment_register($this->invoice->id, $this->tco_total, $this->trx_id, 1);
web_invoice_update_payment_meta($payment_id, 'time_stamp', time());
}
header('HTTP/1.0 200 OK');
header('Content-type: text/plain; charset=UTF-8');
print 'Thank you very much for letting us know';
exit(0);
}
function Web_Invoice_Decider($web_invoice_action = null)
{
global $wpdb, $web_invoice_memory_head_room;
if (26214400 > $web_invoice_memory_head_room) {
$this->message = sprintf(__("Less than 25MB of memory available for Web Invoice, please set <code>memory_limit = %s</code> in your" . "<code>php.ini</code> if Web Invoice crashes unexpectedly", WEB_INVOICE_TRANS_DOMAIN), web_invoice_return_bytes_nice(web_invoice_return_bytes(ini_get('memory_limit')) + 27000000));
}
$web_invoice_action = !empty($_REQUEST['web_invoice_action']) ? $_REQUEST['web_invoice_action'] : $web_invoice_action;
$invoice_id = $_REQUEST['invoice_id'];
if (!$invoice_id) {
$invoice_id = $_REQUEST['multiple_invoices'][0];
}
$web_invoice_recurring_billing = web_invoice_meta($invoice_id, 'web_invoice_recurring_billing');
//echo "do this: " . $web_invoice_action;
echo "<div class='wrap'>";
switch ($web_invoice_action) {
case "save_and_preview":
if (empty($invoice_id)) {
web_invoice_show_message("Error - invoice id was not passed.");
} else {
web_invoice_show_message(web_invoice_process_invoice_update($invoice_id), 'updated fade');
if (web_invoice_meta($invoice_id, 'subscription_id') && web_invoice_meta($invoice_id, 'recurring_transaction_id')) {
require_once 'gateways/payflowpro.class.php';
$pfp = new Web_Invoice_PayflowProRecurring();
if (web_invoice_meta($invoice_id, 'web_invoice_recurring_billing')) {
$pfp->updateProfile($invoice_id);
web_invoice_update_log($invoice_id, 'pfp_subscription_update', "Subscription updated. REF: " . $pfp->getRef());
} else {
if ($pfp->deleteProfile(web_invoice_meta($invoice_id, 'subscription_id'))) {
web_invoice_update_log($invoice_id, 'pfp_subscription_update', "Subscription cancelled. REF: " . $pfp->getRef());
web_invoice_update_invoice_meta($invoice_id, 'pfp_status', 'cancelled');
web_invoice_delete_invoice_meta($invoice_id, 'subscription_id');
}
}
}
web_invoice_saved_preview($invoice_id);
do_action('web_invoice_invoice_save', $invoice_id);
}
break;
case "clear_log":
web_invoice_show_message(web_invoice_clear_invoice_status($invoice_id), 'updated fade');
web_invoice_options_manageInvoice($invoice_id);
break;
case "doPausePfp":
if (web_invoice_meta($invoice_id, 'subscription_id') && web_invoice_meta($invoice_id, 'recurring_transaction_id')) {
require_once 'gateways/payflowpro.class.php';
$pfp = new Web_Invoice_PayflowProRecurring();
if (web_invoice_meta($invoice_id, 'web_invoice_recurring_billing')) {
$profile_id = web_invoice_meta($invoice_id, 'subscription_id');
if ($pfp->pauseProfile($profile_id)) {
web_invoice_update_log($invoice_id, 'pfp_subscription_update', "Subscription paused. REF: " . $pfp->getRef());
web_invoice_update_invoice_meta($invoice_id, 'pfp_status', 'paused');
web_invoice_delete_invoice_meta($invoice_id, 'subscription_id');
do_action('web_invoice_invoice_pause_recurring', $invoice_id);
$message = 'Paused subscription.';
} else {
$message = 'Failed to pause subscription.';
}
$message .= " <a href='admin.php?page=new_web_invoice&web_invoice_action=doInvoice&invoice_id=" . $invoice_id . "'>Continue editing</a>";
web_invoice_show_message($message, 'updated fade');
}
}
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
case "doRestartRecurringPfp":
if (web_invoice_meta($invoice_id, 'recurring_transaction_id')) {
require_once 'gateways/payflowpro.class.php';
$pfp = new Web_Invoice_PayflowProRecurring();
if (web_invoice_meta($invoice_id, 'web_invoice_recurring_billing')) {
$profile_id = web_invoice_meta($invoice_id, 'recurring_transaction_id');
if ($pfp->reactivateProfile($profile_id, $invoice_id)) {
web_invoice_update_log($invoice_id, 'pfp_subscription_update', "Subscription reactivated. REF: " . $pfp->getRef());
web_invoice_update_invoice_meta($invoice_id, 'pfp_status', 'active');
web_invoice_update_invoice_meta($invoice_id, 'subscription_id', $profile_id);
do_action('web_invoice_invoice_restart_recurring', $invoice_id);
$message = 'Reactivated subscription.';
} else {
$message = 'Failed to reactivate subscription.';
}
$message .= " <a href='admin.php?page=new_web_invoice&web_invoice_action=doInvoice&invoice_id=" . $invoice_id . "'>Continue editing</a>";
web_invoice_show_message($message, 'updated fade');
}
}
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
case "complete_removal":
web_invoice_complete_removal();
web_invoice_show_settings();
break;
case "doInvoice":
if (isset($invoice_id)) {
web_invoice_options_manageInvoice($invoice_id);
} else {
web_invoice_options_manageInvoice();
}
break;
case "overview":
web_invoice_default();
break;
case "user_overview":
web_invoice_user_default();
break;
case "web_invoice_show_welcome_message":
web_invoice_show_welcome_message();
break;
case "web_invoice_recurring_billing":
web_invoice_recurring_overview();
break;
case "send_now":
web_invoice_show_message(web_invoice_send_email($invoice_id));
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
case "first_setup":
if (isset($_POST['web_invoice_web_invoice_page'])) {
update_option('web_invoice_web_invoice_page', $_POST['web_invoice_web_invoice_page']);
}
if (isset($_POST['web_invoice_payment_method'])) {
update_option('web_invoice_payment_method', join($_POST['web_invoice_payment_method'], ','));
}
if (isset($_POST['web_invoice_gateway_username'])) {
update_option('web_invoice_gateway_username', $_POST['web_invoice_gateway_username']);
}
if (isset($_POST['web_invoice_gateway_tran_key'])) {
update_option('web_invoice_gateway_tran_key', $_POST['web_invoice_gateway_tran_key']);
}
if (isset($_POST['web_invoice_gateway_merchant_email'])) {
update_option('web_invoice_gateway_merchant_email', $_POST['web_invoice_gateway_merchant_email']);
}
// PayPal
if (isset($_POST['web_invoice_paypal_address'])) {
update_option('web_invoice_paypal_address', $_POST['web_invoice_paypal_address']);
}
if (isset($_POST['web_invoice_paypal_only_button'])) {
update_option('web_invoice_paypal_only_button', $_POST['web_invoice_paypal_only_button']);
}
if (isset($_POST['web_invoice_paypal_sandbox'])) {
update_option('web_invoice_paypal_sandbox', $_POST['web_invoice_paypal_sandbox']);
}
// Payflow
if (isset($_POST['web_invoice_payflow_login'])) {
update_option('web_invoice_payflow_login', $_POST['web_invoice_payflow_login']);
}
if (isset($_POST['web_invoice_payflow_partner'])) {
update_option('web_invoice_payflow_partner', $_POST['web_invoice_payflow_partner']);
}
if (isset($_POST['web_invoice_payflow_only_button'])) {
update_option('web_invoice_payflow_only_button', $_POST['web_invoice_payflow_only_button']);
}
if (isset($_POST['web_invoice_payflow_silent_post'])) {
update_option('web_invoice_payflow_silent_post', $_POST['web_invoice_payflow_silent_post']);
}
// Other/Bank
if (isset($_POST['web_invoice_other_details'])) {
update_option('web_invoice_other_details', $_POST['web_invoice_other_details']);
}
// Moneybookers
if (isset($_POST['web_invoice_moneybookers_address'])) {
update_option('web_invoice_moneybookers_address', $_POST['web_invoice_moneybookers_address']);
}
if (isset($_POST['web_invoice_moneybookers_recurring_address'])) {
update_option('web_invoice_moneybookers_recurring_address', $_POST['web_invoice_moneybookers_recurring_address']);
}
if (isset($_POST['web_invoice_moneybookers_merchant'])) {
update_option('web_invoice_moneybookers_merchant', $_POST['web_invoice_moneybookers_merchant']);
}
if (isset($_POST['web_invoice_moneybookers_secret'])) {
update_option('web_invoice_moneybookers_secret', $_POST['web_invoice_moneybookers_secret']);
}
if (isset($_POST['web_invoice_moneybookers_ip'])) {
update_option('web_invoice_moneybookers_ip', $_POST['web_invoice_moneybookers_ip']);
}
// AlertPay
if (isset($_POST['web_invoice_alertpay_address'])) {
update_option('web_invoice_alertpay_address', $_POST['web_invoice_alertpay_address']);
}
if (isset($_POST['web_invoice_alertpay_merchant'])) {
update_option('web_invoice_alertpay_merchant', $_POST['web_invoice_alertpay_merchant']);
}
if (isset($_POST['web_invoice_alertpay_secret'])) {
update_option('web_invoice_alertpay_secret', $_POST['web_invoice_alertpay_secret']);
}
web_invoice_options_manageInvoice();
break;
case "web_invoice_settings":
web_invoice_process_settings();
web_invoice_show_settings();
break;
case "web_invoice_email_templates":
web_invoice_process_email_templates();
web_invoice_show_email_templates();
break;
case "delete_invoice":
web_invoice_show_message(web_invoice_delete($_REQUEST['multiple_invoices']));
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
case "send_invoice":
if (empty($_REQUEST['multiple_invoices'])) {
web_invoice_show_message("No invoices selected, nothing sent.");
} else {
web_invoice_show_message(web_invoice_send_email($_REQUEST['multiple_invoices']), 'updated fade');
}
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
case "send_reminder":
if (empty($_REQUEST['multiple_invoices'])) {
web_invoice_show_message("No invoices selected, no reminder sent.");
} else {
web_invoice_show_message(web_invoice_send_email($_REQUEST['multiple_invoices'], 'reminder'), 'updated fade');
}
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
case "archive_invoice":
if (empty($_REQUEST['multiple_invoices'])) {
web_invoice_show_message("No invoices selected, nothing archived.");
} else {
web_invoice_show_message(web_invoice_archive($_REQUEST['multiple_invoices']), 'updated fade');
}
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
case "unarchive_invoice":
if (empty($_REQUEST['multiple_invoices'])) {
web_invoice_show_message("No invoices selected, nothing un-archived.");
} else {
web_invoice_show_message(web_invoice_unarchive($_REQUEST['multiple_invoices']), 'updated fade');
}
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
case "mark_as_paid":
if (empty($_REQUEST['multiple_invoices'])) {
web_invoice_show_message("No invoices selected, nothing marked as paid.");
} else {
web_invoice_show_message(web_invoice_mark_as_paid($_REQUEST['multiple_invoices']), 'updated fade');
}
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
case "mark_as_sent":
if (empty($_REQUEST['multiple_invoices'])) {
web_invoice_show_message("No invoices selected, nothing marked as sent..");
} else {
web_invoice_show_message(web_invoice_mark_as_sent($_REQUEST['multiple_invoices']), 'updated fade');
}
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
case "save_not_send":
// Already saved, this just shows a message
$web_invoice_custom_invoice_id = web_invoice_meta($invoice_id, 'web_invoice_custom_invoice_id');
if ($web_invoice_custom_invoice_id) {
$message = "Invoice <b>{$web_invoice_custom_invoice_id}</b> saved.";
} else {
$message = "Invoice <b>#" . $invoice_id . "</b> saved.";
}
$message .= " <a href=" . web_invoice_build_invoice_link($invoice_id) . ">View Web Invoice</a>";
web_invoice_show_message($message, ' updated fade');
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
default:
if ($web_invoice_recurring_billing) {
web_invoice_recurring_overview();
} else {
web_invoice_default();
}
break;
}
echo "</div>";
}
function processRequest($ip, $request)
{
$this->ip = $ip;
$this->pay_to_email = $request['pay_to_email'];
$this->pay_from_email = $request['pay_from_email'];
$this->merchant_id = $request['merchant_id'];
$this->mb_transaction_id = $request['mb_transaction_id'];
$this->transaction_id = $request['transaction_id'];
$this->mb_amount = $request['mb_amount'];
$this->mb_currency = $request['mb_currency'];
$this->status = $request['status'];
$this->md5sig = $request['md5sig'];
$this->amount = $request['amount'];
$this->currency = $request['currency'];
if (isset($request['rec_payment_id'])) {
$this->recurring_payment_id = $request['rec_payment_id'];
}
if (isset($request['rec_payment_type'])) {
$this->recurring_payment_type = $request['rec_payment_type'];
}
if (!$this->_allowedIp()) {
$this->_logFailure('Invalid IP');
header('HTTP/1.0 403 Forbidden');
header('Content-type: text/plain; charset=UTF-8');
print 'We were unable to authenticate the request';
exit(0);
}
if (!$this->invoice->id) {
$this->_logFailure('Invoice not found');
header('HTTP/1.0 404 Not Found');
header('Content-type: text/plain; charset=UTF-8');
print 'Invoice not found';
exit(0);
}
if ($this->currency != web_invoice_meta($this->invoice->id, 'web_invoice_currency_code')) {
$this->_logFailure('Invalid currency');
header('HTTP/1.0 400 Bad Request');
header('Content-type: text/plain; charset=UTF-8');
print 'We were not expecting you. REF: MB0';
exit(0);
}
if ($this->amount != $this->invoice->display('amount')) {
$this->_logFailure('Invalid amount');
header('HTTP/1.0 400 Bad Request');
header('Content-type: text/plain; charset=UTF-8');
print 'We were not expecting you. REF: MB1';
exit(0);
}
if ($this->pay_to_email != get_option('web_invoice_moneybookers_address') && $this->pay_to_email != get_option('web_invoice_moneybookers_recurring_address')) {
$this->_logFailure('Invalid pay_to_email');
header('HTTP/1.0 400 Bad Request');
header('Content-type: text/plain; charset=UTF-8');
print 'We were not expecting you. REF: MB2';
exit(0);
}
$secret_word = strtoupper(md5(get_option('web_invoice_moneybookers_secret')));
$our_signature = strtoupper(md5("{$this->merchant_id}{$this->transaction_id}{$secret_word}{$this->mb_amount}{$this->mb_currency}{$this->status}"));
if ($this->md5sig != $our_signature) {
$this->_logFailure('Invalid signature, we calculated ' . $our_signature);
header('HTTP/1.0 403 Forbidden');
header('Content-type: text/plain; charset=UTF-8');
print 'We were unable to authenticate the request';
exit(0);
}
if ($this->status != 2) {
if ($this->status == -2) {
$this->_logSuccess('Payment failed (status)');
}
if ($this->status == -1) {
$this->_logSuccess('Payment cancelled (status)');
}
if ($this->status == 0) {
$this->_logSuccess('Payment pending (status)');
}
header('HTTP/1.0 200 OK');
header('Content-type: text/plain; charset=UTF-8');
print 'Thank you very much for letting us know. REF: Pending';
exit(0);
}
$this->_logSuccess('Paid');
web_invoice_mark_as_paid($this->invoice->id);
header('HTTP/1.0 200 OK');
header('Content-type: text/plain; charset=UTF-8');
print 'Thank you very much for letting us know';
exit(0);
}