/**
* Called to validate the payment_method
* If payment with CreditCard is used, than the Data must be in stored in the session
* This has be done to prevent sending the CreditCard Number back in hidden fields
* If the parameter $is_test is true the Number Visa Creditcard number 4111 1111 1111 1111
*
* @param array $d
* @param boolean $is_test
* @return boolean
*/
function validate_payment_method(&$d, $is_test)
{
global $VM_LANG, $vmLogger, $order_total;
$auth = $_SESSION['auth'];
$cart = $_SESSION['cart'];
// We don't need to validate a payment method when
// the user has no order total he should pay
if (empty($_REQUEST['order_total'])) {
if (isset($d['order_total'])) {
if (round($d['order_total'], 2) <= 0.0) {
return true;
}
}
if (isset($order_total) && $order_total <= 0.0) {
return true;
}
}
if (!isset($d["payment_method_id"]) || $d["payment_method_id"] == 0) {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_PAYM', false));
return false;
}
require_once CLASSPATH . 'ps_payment_method.php';
$ps_payment_method = new ps_payment_method();
$dbp = new ps_DB();
//DB Payment_method
// Now Check if all needed Payment Information are entered
// Bank Information is found in the User_Info
$w = "SELECT `enable_processor` FROM `#__{vm}_payment_method` WHERE ";
$w .= "payment_method_id=" . (int) $d["payment_method_id"];
$dbp->query($w);
$dbp->next_record();
if ($dbp->f("enable_processor") == "Y" || $dbp->f("enable_processor") == "") {
// Creditcard
if (empty($_SESSION['ccdata']['creditcard_code'])) {
$vmLogger->err($VM_LANG->_('VM_CHECKOUT_ERR_CCTYPE'));
return false;
}
// $_SESSION['ccdata'] = $ccdata;
// The Data should be in the session
if (!isset($_SESSION['ccdata'])) {
//Not? Then Error
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_CCDATA', false));
return False;
}
if (!$_SESSION['ccdata']['order_payment_number']) {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_CCNR_FOUND', false));
return False;
}
// CREDIT CARD NUMBER CHECK
// USING THE CREDIT CARD CLASS in ps_payment
if (!$ps_payment_method->validate_payment($_SESSION['ccdata']['creditcard_code'], $_SESSION['ccdata']['order_payment_number'])) {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_CCDATE', false));
return False;
}
if (!$is_test) {
$payment_number = ereg_replace(" |-", "", $_SESSION['ccdata']['order_payment_number']);
if ($payment_number == "4111111111111111") {
$vmLogger->warning($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_TEST', false));
return False;
}
}
if (!empty($_SESSION['ccdata']['need_card_code']) && empty($_SESSION['ccdata']['credit_card_code'])) {
$vmLogger->err($VM_LANG->_('PHPSHOP_CUSTOMER_CVV2_ERROR', false));
return False;
}
if (!$_SESSION['ccdata']['order_payment_expire_month']) {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_CCMON', false));
return False;
}
if (!$_SESSION['ccdata']['order_payment_expire_year']) {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_CCYEAR', false));
return False;
}
$date = getdate(time());
if ($_SESSION['ccdata']['order_payment_expire_year'] < $date["year"] or $_SESSION['ccdata']['order_payment_expire_year'] == $date["year"] and $_SESSION['ccdata']['order_payment_expire_month'] < $date["mon"]) {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_CCDATE_INV', false));
return False;
}
return True;
} elseif ($dbp->f("enable_processor") == "B") {
$_SESSION['ccdata']['creditcard_code'] = "";
$_SESSION['ccdata']['order_payment_name'] = "";
$_SESSION['ccdata']['order_payment_number'] = "";
$_SESSION['ccdata']['order_payment_expire_month'] = "";
$_SESSION['ccdata']['order_payment_expire_year'] = "";
// Bank Account
require_once CLASSPATH . 'ps_user.php';
$dbu =& ps_user::getUserInfo($auth["user_id"], array('bank_account_holder', 'bank_iban', 'bank_account_nr', 'bank_sort_code', 'bank_name'));
if ($dbu->f("bank_account_holder") == "" || $dbu->f("bank_account_nr") == "") {
if (!empty($d['bank_account_holder']) && !empty($d['bank_account_nr'])) {
// Insert the given data
$fields = array('bank_account_holder' => $d['bank_account_holder'], 'bank_account_nr' => $d['bank_account_nr'], 'bank_sort_code' => $d['bank_sort_code'], 'bank_name' => $d['bank_name'], 'bank_iban' => $d['bank_iban']);
ps_user::setUserInfo($fields, $auth["user_id"]);
$dbu =& ps_user::getUserInfo($auth["user_id"], array('bank_account_holder', 'bank_iban', 'bank_account_nr', 'bank_sort_code', 'bank_name'));
} else {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_USER_DATA', false));
return False;
}
}
if ($dbu->f("bank_account_holder") == "") {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_BA_HOLDER_NAME', false));
return False;
}
if ($dbu->f("bank_iban") == "" and $dbu->f("bank_account_nr") == "") {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_IBAN', false));
return False;
}
if ($dbu->f("bank_iban") == "") {
if ($dbu->f("bank_account_nr") == "") {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_BA_NUM', false));
return False;
}
if ($dbu->f("bank_sort_code") == "") {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_BANK_SORT', false));
return False;
}
if ($dbu->f("bank_name") == "") {
$vmLogger->err($VM_LANG->_('PHPSHOP_CHECKOUT_ERR_NO_BANK_NAME', false));
return False;
}
}
} else {
$_SESSION['ccdata']['creditcard_code'] = '';
$_SESSION['ccdata']['order_payment_name'] = "";
$_SESSION['ccdata']['order_payment_number'] = "";
$_SESSION['ccdata']['order_payment_expire_month'] = "";
$_SESSION['ccdata']['order_payment_expire_year'] = "";
}
// Enter additional Payment check procedures here if neccessary
return True;
}
/**
* Returns all Bank payment in a Radiolist
*
* @param int $payment_method_id
* @param boolean $horiz
*/
function list_bank($payment_method_id, $horiz)
{
$has_bank_methods = $this->list_payment_radio("B", $payment_method_id, $horiz);
//A bit easier :-)
if ($has_bank_methods) {
require_once CLASSPATH . 'ps_user.php';
$dbu =& ps_user::getUserInfo($_SESSION['auth']['user_id'], array('bank_account_holder', 'bank_iban', 'bank_account_nr', 'bank_sort_code', 'bank_name'));
if (!$dbu->f('bank_account_holder') || !$dbu->f('bank_account_nr') || !$dbu->f('bank_sort_code')) {
echo '<br />';
require_once CLASSPATH . 'ps_userfield.php';
ps_userfield::listUserFields(ps_userfield::getUserfields('bank'), array(), $dbu);
}
}
}
