d5/d36/paymentko_8php_source.html

<?php

/* Copyright (C) 2001-2002  Rodolphe Quiedeville  <rodolphe@quiedeville.org>

 * Copyright (C) 2006-2013  Laurent Destailleur   <eldy@users.sourceforge.net>

 * Copyright (C) 2012   Regis Houssin     <regis.houssin@inodbox.com>

 *

 * This program is free software; you can redistribute it and/or modify

 * it under the terms of the GNU General Public License as published by

 * the Free Software Foundation; either version 3 of the License, or

 * (at your option) any later version.

 *

 * This program is distributed in the hope that it will be useful,

 * but WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

 * GNU General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program. If not, see <https://www.gnu.org/licenses/>.

 */


if (!defined('NOLOGIN')) {

  define("NOLOGIN", 1); // This means this output page does not require to be logged.

}

if (!defined('NOCSRFCHECK')) {

  define("NOCSRFCHECK", 1); // We accept to go on this page from external web site.

}

if (!defined('NOIPCHECK')) {

  define('NOIPCHECK', '1'); // Do not check IP defined into conf $dolibarr_main_restrict_ip

}

if (!defined('NOBROWSERNOTIF')) {

  define('NOBROWSERNOTIF', '1');

}


// For MultiCompany module.

// Do not use GETPOST here, function is not defined and this test must be done before including main.inc.php

// TODO This should be useless. Because entity must be retrieve from object ref and not from url.

$entity = (!empty($_GET['e']) ? (int) $_GET['e'] : (!empty($_POST['e']) ? (int) $_POST['e'] : 1));

if (is_numeric($entity)) {

  define("DOLENTITY", $entity);

}


// Load Dolibarr environment

require '../../main.inc.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/company.lib.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/payments.lib.php';


if (isModEnabled('paypal')) {

  require_once DOL_DOCUMENT_ROOT.'/paypal/lib/paypal.lib.php';

  require_once DOL_DOCUMENT_ROOT.'/paypal/lib/paypalfunctions.lib.php';

}


$langs->loadLangs(array("main", "other", "dict", "bills", "companies", "paybox", "paypal", "stripe"));


if (isModEnabled('paypal')) {

  $PAYPALTOKEN = GETPOST('TOKEN');

  if (empty($PAYPALTOKEN)) {

    $PAYPALTOKEN = GETPOST('token');

  }

  $PAYPALPAYERID = GETPOST('PAYERID');

  if (empty($PAYPALPAYERID)) {

    $PAYPALPAYERID = GETPOST('PayerID');

  }

}

if (isModEnabled('paybox')) {

}

if (isModEnabled('stripe')) {

}


$FULLTAG = GETPOST('FULLTAG');

if (empty($FULLTAG)) {

  $FULLTAG = GETPOST('fulltag');

}


$suffix = GETPOST("suffix", 'aZ09');


// Detect $paymentmethod

$paymentmethod = '';

$reg = array();

if (preg_match('/PM=([^\.]+)/', $FULLTAG, $reg)) {

  $paymentmethod = $reg[1];

}

if (empty($paymentmethod)) {

  dol_print_error(null, 'The back url does not contain a parameter fulltag that should help us to find the payment method used');

  exit;

} else {

  dol_syslog("paymentmethod=".$paymentmethod);

}


$validpaymentmethod = array();

if (isModEnabled('paypal')) {

  $validpaymentmethod['paypal'] = 'paypal';

}

if (isModEnabled('paybox')) {

  $validpaymentmethod['paybox'] = 'paybox';

}

if (isModEnabled('stripe')) {

  $validpaymentmethod['stripe'] = 'stripe';

}


// Security check

if (empty($validpaymentmethod)) {

  httponly_accessforbidden('No valid payment mode');

}


$object = new stdClass(); // For triggers


/*

 * Actions

 */


/*

 * View

 */


dol_syslog("Callback url when an online payment is refused or canceled. query_string=".(empty($_SERVER["QUERY_STRING"]) ? '' : $_SERVER["QUERY_STRING"])." script_uri=".(empty($_SERVER["SCRIPT_URI"]) ? '' : $_SERVER["SCRIPT_URI"]), LOG_DEBUG, 0, '_payment');


$tracepost = "";

foreach ($_POST as $k => $v) {

  if (is_scalar($k) && is_scalar($v)) {

    $tracepost .= "$k - $v\n";

  }

}

dol_syslog("POST=".$tracepost, LOG_DEBUG, 0, '_payment');


// Set $appli for emails title

$appli = $mysoc->name;


if (!empty($_SESSION['ipaddress'])) {      // To avoid to make action twice

  // Get on url call

  $fulltag            = $FULLTAG;

  $onlinetoken        = empty($PAYPALTOKEN) ? $_SESSION['onlinetoken'] : $PAYPALTOKEN;

  $payerID            = empty($PAYPALPAYERID) ? $_SESSION['payerID'] : $PAYPALPAYERID;

  // Set by newpayment.php

  $paymentType        = $_SESSION['PaymentType'];

  $currencyCodeType   = $_SESSION['currencyCodeType'];

  $FinalPaymentAmt    = $_SESSION['FinalPaymentAmt'];

  // From env

  $ipaddress          = $_SESSION['ipaddress'];

  $errormessage       = $_SESSION['errormessage'];


  if (is_object($object) && method_exists($object, 'call_trigger')) {

    // Call trigger

    $result = $object->call_trigger('PAYMENTONLINE_PAYMENT_KO', $user);

    if ($result < 0) {

      $error++;

    }

    // End call triggers

  }


  // Send an email

  $sendemail = '';

  if (getDolGlobalString('ONLINE_PAYMENT_SENDEMAIL')) {

    $sendemail = $conf->global->ONLINE_PAYMENT_SENDEMAIL;

  }


  // Send warning of error to administrator

  if ($sendemail) {

    $companylangs = new Translate('', $conf);

    $companylangs->setDefaultLang($mysoc->default_lang);

    $companylangs->loadLangs(array('main', 'members', 'bills', 'paypal', 'paybox'));


    $from = getDolGlobalString('MAILING_EMAIL_FROM') ? $conf->global->MAILING_EMAIL_FROM : getDolGlobalString("MAIN_MAIL_EMAIL_FROM");

    $sendto = $sendemail;


    $urlback = $_SERVER["REQUEST_URI"];

    $topic = '['.$appli.'] '.$companylangs->transnoentitiesnoconv("NewOnlinePaymentFailed");

    $content = "";

    $content .= '<span style="color: orange">'.$companylangs->transnoentitiesnoconv("ValidationOfOnlinePaymentFailed")."</span>\n";


    $content .= "<br><br>\n";

    $content .= '<u>'.$companylangs->transnoentitiesnoconv("TechnicalInformation").":</u><br>\n";

    $content .= $companylangs->transnoentitiesnoconv("OnlinePaymentSystem").': <strong>'.$paymentmethod."</strong><br>\n";

    $content .= $companylangs->transnoentitiesnoconv("ReturnURLAfterPayment").': '.$urlback."<br>\n";

    $content .= $companylangs->transnoentitiesnoconv("Error").': '.$errormessage."<br>\n";

    $content .= "<br>\n";

    $content .= "tag=".$fulltag." token=".$onlinetoken." paymentType=".$paymentType." currencycodeType=".$currencyCodeType." payerId=".$payerID." ipaddress=".$ipaddress." FinalPaymentAmt=".$FinalPaymentAmt;


    $ishtml = dol_textishtml($content); // May contain urls


    require_once DOL_DOCUMENT_ROOT.'/core/class/CMailFile.class.php';

    $mailfile = new CMailFile($topic, $sendto, $from, $content, array(), array(), array(), '', '', 0, $ishtml);


    $result = $mailfile->sendfile();

    if ($result) {

      dol_syslog("EMail sent to ".$sendto, LOG_DEBUG, 0, '_payment');

    } else {

      dol_syslog("Failed to send EMail to ".$sendto, LOG_ERR, 0, '_payment');

    }

  }


  unset($_SESSION['ipaddress']);

}


$head = '';

if (getDolGlobalString('ONLINE_PAYMENT_CSS_URL')) {

  $head = '<link rel="stylesheet" type="text/css" href="' . getDolGlobalString('ONLINE_PAYMENT_CSS_URL').'?lang='.$langs->defaultlang.'">'."\n";

}


$conf->dol_hide_topmenu = 1;

$conf->dol_hide_leftmenu = 1;


$replacemainarea = (empty($conf->dol_hide_leftmenu) ? '<div>' : '').'<div>';

llxHeader($head, $langs->trans("PaymentForm"), '', '', 0, 0, '', '', '', 'onlinepaymentbody', $replacemainarea);


// Show ko message

print '<span id="dolpaymentspan"></span>'."\n";

print '<div id="dolpaymentdiv" align="center">'."\n";


// Show logo (search order: logo defined by PAYMENT_LOGO_suffix, then PAYMENT_LOGO, then small company logo, large company logo, theme logo, common logo)

// Define logo and logosmall

$logosmall = $mysoc->logo_small;

$logo = $mysoc->logo;

$paramlogo = 'ONLINE_PAYMENT_LOGO_'.$suffix;

if (!empty($conf->global->$paramlogo)) {

  $logosmall = $conf->global->$paramlogo;

} elseif (getDolGlobalString('ONLINE_PAYMENT_LOGO')) {

  $logosmall = $conf->global->ONLINE_PAYMENT_LOGO;

}

//print '<!-- Show logo (logosmall='.$logosmall.' logo='.$logo.') -->'."\n";

// Define urllogo

$urllogo = '';

$urllogofull = '';

if (!empty($logosmall) && is_readable($conf->mycompany->dir_output.'/logos/thumbs/'.$logosmall)) {

  $urllogo = DOL_URL_ROOT.'/viewimage.php?modulepart=mycompany&amp;entity='.$conf->entity.'&amp;file='.urlencode('logos/thumbs/'.$logosmall);

  $urllogofull = $dolibarr_main_url_root.'/viewimage.php?modulepart=mycompany&entity='.$conf->entity.'&file='.urlencode('logos/thumbs/'.$logosmall);

} elseif (!empty($logo) && is_readable($conf->mycompany->dir_output.'/logos/'.$logo)) {

  $urllogo = DOL_URL_ROOT.'/viewimage.php?modulepart=mycompany&amp;entity='.$conf->entity.'&amp;file='.urlencode('logos/'.$logo);

  $urllogofull = $dolibarr_main_url_root.'/viewimage.php?modulepart=mycompany&entity='.$conf->entity.'&file='.urlencode('logos/'.$logo);

}


// Output html code for logo

if ($urllogo) {

  print '<div class="backgreypublicpayment">';

  print '<div class="logopublicpayment">';

  print '<img id="dolpaymentlogo" src="'.$urllogo.'"';

  print '>';

  print '</div>';

  if (!getDolGlobalString('MAIN_HIDE_POWERED_BY')) {

    print '<div class="poweredbypublicpayment opacitymedium right"><a class="poweredbyhref" href="https://www.dolibarr.org?utm_medium=website&utm_source=poweredby" target="dolibarr" rel="noopener">'.$langs->trans("PoweredBy").'<br><img class="poweredbyimg" src="'.DOL_URL_ROOT.'/theme/dolibarr_logo.svg" width="80px"></a></div>';

  }

  print '</div>';

}

if (getDolGlobalString('MAIN_IMAGE_PUBLIC_PAYMENT')) {

  print '<div class="backimagepublicpayment">';

  print '<img id="idMAIN_IMAGE_PUBLIC_PAYMENT" src="' . getDolGlobalString('MAIN_IMAGE_PUBLIC_PAYMENT').'">';

  print '</div>';

}


print '<br><br>';


print $langs->trans("YourPaymentHasNotBeenRecorded")."<br><br>";


$key = 'ONLINE_PAYMENT_MESSAGE_KO';

if (!empty($conf->global->$key)) {

  print $conf->global->$key;

}


$type = GETPOST('s', 'alpha');

$ref = GETPOST('ref', 'alphanohtml');

$tag = GETPOST('tag', 'alpha');

require_once DOL_DOCUMENT_ROOT.'/core/lib/payments.lib.php';

if ($type || $tag) {

  $urlsubscription = getOnlinePaymentUrl(0, ($type ? $type : 'free'), $ref, $FinalPaymentAmt, $tag);


  print $langs->trans("ClickHereToTryAgain", $urlsubscription);

}


print "\n</div>\n";


htmlPrintOnlineFooter($mysoc, $langs, 0, $suffix);


llxFooter('', 'public');


$db->close();

llxHeader
if(!defined('NOREQUIRESOC')) if(!defined( 'NOREQUIRETRAN')) if(!defined('NOTOKENRENEWAL')) if(!defined( 'NOREQUIREMENU')) if(!defined('NOREQUIREHTML')) if(!defined( 'NOREQUIREAJAX')) llxHeader()
Empty header.
Definition wrapper.php:55

llxFooter
llxFooter()
Empty footer.
Definition wrapper.php:69

CMailFile
Class to send emails (with attachments or not) Usage: $mailfile = new CMailFile($subject,...
Definition CMailFile.class.php:43

Translate
Class to manage translations.
Definition translate.class.php:31

stdClass

htmlPrintOnlineFooter
htmlPrintOnlineFooter($fromcompany, $langs, $addformmessage=0, $suffix='', $object=null)
Show footer of company in HTML pages.
Definition company.lib.php:2439

dol_print_error
dol_print_error($db='', $error='', $errors=null)
Displays error message system with all the information to facilitate the diagnosis and the escalation...
Definition functions.lib.php:5372

dol_textishtml
dol_textishtml($msg, $option=0)
Return if a text is a html content.
Definition functions.lib.php:8038

GETPOST
GETPOST($paramname, $check='alphanohtml', $method=0, $filter=null, $options=null, $noreplace=0)
Return value of a param into GET or POST supervariable.
Definition functions.lib.php:621

getDolGlobalString
getDolGlobalString($key, $default='')
Return dolibarr global constant string value.
Definition functions.lib.php:151

dol_syslog
dol_syslog($message, $level=LOG_INFO, $ident=0, $suffixinfilename='', $restricttologhandler='', $logcontext=null)
Write log message into outputs.
Definition functions.lib.php:1873

httponly_accessforbidden
httponly_accessforbidden($message=1, $http_response_code=403, $stringalreadysanitized=0)
Show a message to say access is forbidden and stop program.
Definition security.lib.php:1165