| Server IP : 104.21.64.1 / Your IP : 216.73.216.145 Web Server : LiteSpeed System : Linux premium151.web-hosting.com 4.18.0-553.44.1.lve.el8.x86_64 #1 SMP Thu Mar 13 14:29:12 UTC 2025 x86_64 User : tempvsty ( 647) PHP Version : 8.0.30 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /home/tempvsty/pontiacques.org/wp-content/plugins/simple-membership/ipn/ |
Upload File : |
<?php
class swpm_smart_checkout_ipn_handler {
public $ipn_log = false; // bool: log IPN results to text file?
public $ipn_log_file; // filename of the IPN log.
public $ipn_response; // holds the IPN response from paypal.
public $ipn_data = array(); // array contains the POST values for IPN.
public $fields = array(); // array holds the fields to submit to paypal.
public $sandbox_mode = false;
public $paypal_url = 'https://www.paypal.com/cgi-bin/webscr';
public function __construct() {
$this->paypal_url = 'https://www.paypal.com/cgi-bin/webscr';
$this->ipn_log_file = 'ipn_handle_debug_swpm.log';
$this->ipn_response = '';
}
public function swpm_validate_and_create_membership() {
// Check Product Name , Price , Currency , Receivers email.
$error_msg = '';
// Read the IPN and validate.
$gross_total = $this->ipn_data['mc_gross'];
$transaction_type = $this->ipn_data['txn_type'];
$txn_id = $this->ipn_data['txn_id'];
$payment_status = $this->ipn_data['payment_status'];
// Check payment status.
if ( ! empty( $payment_status ) ) {
if ( 'Denied' == $payment_status ) {
$this->debug_log( 'Payment status for this transaction is DENIED. You denied the transaction... most likely a cancellation of an eCheque. Nothing to do here.', false );
return false;
}
if ( 'Canceled_Reversal' == $payment_status ) {
$this->debug_log( 'This is a dispute closed notification in your favour. The plugin will not do anyting.', false );
return true;
}
if ( 'Completed' != $payment_status && 'Processed' != $payment_status && 'Refunded' != $payment_status && 'Reversed' != $payment_status ) {
$error_msg .= 'Funds have not been cleared yet. Transaction will be processed when the funds clear!';
$this->debug_log( $error_msg, false );
$this->debug_log( wp_json_encode( $this->ipn_data ), false );
return false;
}
}
// Check txn type.
if ( 'new_case' == $transaction_type ) {
$this->debug_log( 'This is a dispute case. Nothing to do here.', true );
return true;
}
$custom = urldecode( $this->ipn_data['custom'] );
$this->ipn_data['custom'] = $custom;
$customvariables = SwpmTransactions::parse_custom_var( $custom );
// Handle refunds.
if ( $gross_total < 0 ) {
// This is a refund or reversal.
$this->debug_log( 'This is a refund notification. Refund amount: ' . $gross_total, true );
swpm_handle_subsc_cancel_stand_alone( $this->ipn_data, true );
return true;
}
if ( isset( $this->ipn_data['reason_code'] ) && 'refund' == $this->ipn_data['reason_code'] ) {
$this->debug_log( 'This is a refund notification. Refund amount: ' . $gross_total, true );
swpm_handle_subsc_cancel_stand_alone( $this->ipn_data, true );
return true;
}
if ( ( 'subscr_signup' == $transaction_type ) ) {
$this->debug_log( 'Subscription signup IPN received... (handled by the subscription IPN handler)', true );
// Code to handle the signup IPN for subscription.
$subsc_ref = $customvariables['subsc_ref'];
if ( ! empty( $subsc_ref ) ) {
$this->debug_log( 'Found a membership level ID. Creating member account...', true );
$swpm_id = $customvariables['swpm_id'];
swpm_handle_subsc_signup_stand_alone( $this->ipn_data, $subsc_ref, $this->ipn_data['subscr_id'], $swpm_id );
// Handle customized subscription signup.
}
return true;
} elseif ( ( 'subscr_cancel' == $transaction_type ) || ( 'subscr_eot' == $transaction_type ) || ( 'subscr_failed' == $transaction_type ) ) {
// Code to handle the IPN for subscription cancellation.
$this->debug_log( 'Subscription cancellation IPN received... (handled by the subscription IPN handler)', true );
swpm_handle_subsc_cancel_stand_alone( $this->ipn_data );
return true;
} else {
$cart_items = array();
$this->debug_log( 'Transaction Type: Buy Now/Subscribe', true );
$item_number = $this->ipn_data['item_number'];
$item_name = $this->ipn_data['item_name'];
$quantity = $this->ipn_data['quantity'];
$mc_gross = $this->ipn_data['mc_gross'];
$mc_currency = $this->ipn_data['mc_currency'];
$current_item = array(
'item_number' => $item_number,
'item_name' => $item_name,
'quantity' => $quantity,
'mc_gross' => $mc_gross,
'mc_currency' => $mc_currency,
);
array_push( $cart_items, $current_item );
}
$counter = 0;
foreach ( $cart_items as $current_cart_item ) {
$cart_item_data_num = $current_cart_item['item_number'];
$cart_item_data_name = trim( $current_cart_item['item_name'] );
$cart_item_data_quantity = $current_cart_item['quantity'];
$cart_item_data_total = $current_cart_item['mc_gross'];
$cart_item_data_currency = $current_cart_item['mc_currency'];
if ( empty( $cart_item_data_quantity ) ) {
$cart_item_data_quantity = 1;
}
$this->debug_log( 'Item Number: ' . $cart_item_data_num, true );
$this->debug_log( 'Item Name: ' . $cart_item_data_name, true );
$this->debug_log( 'Item Quantity: ' . $cart_item_data_quantity, true );
$this->debug_log( 'Item Total: ' . $cart_item_data_total, true );
$this->debug_log( 'Item Currency: ' . $cart_item_data_currency, true );
// Get the button id.
$pp_hosted_button = false;
$button_id = $cart_item_data_num; // Button id is the item number.
$membership_level_id = get_post_meta( $button_id, 'membership_level_id', true );
if ( ! SwpmUtils::membership_level_id_exists( $membership_level_id ) ) {
$this->debug_log( 'This payment button was not created in the plugin. This is a paypal hosted button.', true );
$pp_hosted_button = true;
}
// Price check.
$check_price = true;
$msg = '';
$msg = apply_filters( 'swpm_before_price_check_filter', $msg, $current_cart_item );
if ( ! empty( $msg ) && 'price-check-override' == $msg ) {// This filter allows an extension to do a customized version of price check (if needed).
$check_price = false;
$this->debug_log( 'Price and currency check has been overridden by an addon/extension.', true );
}
if ( $check_price && ! $pp_hosted_button ) {
// Check according to buy now payment or subscription payment.
$button_type = get_post_meta( $button_id, 'button_type', true );
if ( 'pp_smart_checkout' == $button_type ) {// This is a PayPal Smart Checkout type button.
$expected_amount = ( get_post_meta( $button_id, 'payment_amount', true ) ) * $cart_item_data_quantity;
$expected_amount = round( $expected_amount, 2 );
$expected_amount = apply_filters( 'swpm_payment_amount_filter', $expected_amount, $button_id );
$received_amount = $cart_item_data_total;
} else {
$this->debug_log( 'Error! Unexpected button type: ' . $button_type, false );
return false;
}
if ( $received_amount < $expected_amount ) {
// Error! amount received is less than expected. This is invalid.
$this->debug_log( 'Expected amount: ' . $expected_amount, true );
$this->debug_log( 'Received amount: ' . $received_amount, true );
$this->debug_log( 'Price check failed. Amount received is less than the amount expected. This payment will not be processed.', false );
return false;
}
}
// *** Handle Membership Payment ***
// --------------------------------------------------------------------------------------
// ========= Need to find the (level ID) in the custom variable ============
$subsc_ref = $customvariables['subsc_ref']; // Membership level ID.
$this->debug_log( 'Membership payment paid for membership level ID: ' . $subsc_ref, true );
if ( ! empty( $subsc_ref ) ) {
$swpm_id = '';
if ( isset( $customvariables['swpm_id'] ) ) {
$swpm_id = $customvariables['swpm_id'];
}
if ( 'smart_checkout' == $transaction_type ) {
$this->debug_log( 'Transaction type: web_accept. Creating member account...', true );
swpm_handle_subsc_signup_stand_alone( $this->ipn_data, $subsc_ref, $this->ipn_data['txn_id'], $swpm_id );
}
} else {
$this->debug_log( 'Membership level ID is missing in the payment notification! Cannot process this notification.', false );
}
// == End of Membership payment handling ==
$counter++;
}
/*
* * Do Post payment operation and cleanup * *
*/
// Save the transaction data.
$this->debug_log( 'Saving transaction data to the database table.', true );
$this->ipn_data['gateway'] = 'pp_smart_checkout';
$this->ipn_data['status'] = $this->ipn_data['payment_status'];
SwpmTransactions::save_txn_record( $this->ipn_data, $cart_items );
$this->debug_log( 'Transaction data saved.', true );
// Trigger the PayPal IPN processed action hook (so other plugins can can listen for this event).
do_action( 'swpm_pp_smart_checkout_ipn_processed', $this->ipn_data );
do_action( 'swpm_payment_ipn_processed', $this->ipn_data );
return true;
}
public function create_ipn_from_smart_checkout( $data ) {
$address_street = $data['payer']['payer_info']['shipping_address']['line1'];
if ( isset ( $data[ 'payer' ][ 'payer_info' ][ 'shipping_address' ][ 'line2' ] )){
//If address line 2 is present, add it to the address.
$address_street .= ", " . $data[ 'payer' ][ 'payer_info' ][ 'shipping_address' ][ 'line2' ];
}
$ipn['custom'] = $data['custom_field'];
$ipn['item_number'] = $data['button_id'];
$ipn['item_name'] = $data['item_name'];
$ipn['pay_id'] = $data['id'];
$ipn['create_time'] = $data['create_time'];
$ipn['txn_id'] = $data['transactions'][0]['related_resources'][0]['sale']['id'];
$ipn['reason_code'] = ! empty( $data['transactions'][0]['related_resources'][0]['sale']['reason_code'] ) ? $data['transactions'][0]['related_resources'][0]['sale']['reason_code'] : '';
$ipn['txn_type'] = 'smart_checkout';
$ipn['payment_status'] = ucfirst( $data['transactions'][0]['related_resources'][0]['sale']['state'] );
$ipn['transaction_subject'] = '';
$ipn['mc_currency'] = $data['transactions'][0]['amount']['currency'];
$ipn['mc_gross'] = $data['transactions'][0]['amount']['total'];
$ipn['quantity'] = 1;
$ipn['receiver_email'] = get_option( 'cart_paypal_email' );
// customer info.
$ipn['first_name'] = $data['payer']['payer_info']['first_name'];
$ipn['last_name'] = $data['payer']['payer_info']['last_name'];
$ipn['payer_email'] = $data['payer']['payer_info']['email'];
$ipn['address_street'] = $address_street;
$ipn['address_city'] = $data['payer']['payer_info']['shipping_address']['city'];
$ipn['address_state'] = $data['payer']['payer_info']['shipping_address']['state'];
$ipn['address_zip'] = $data['payer']['payer_info']['shipping_address']['postal_code'];
$ipn['address_country'] = $data['payer']['payer_info']['shipping_address']['country_code'];
$this->ipn_data = $ipn;
return true;
}
public function validate_ipn_smart_checkout() {
if ( $this->sandbox_mode ) {
$client_id = get_post_meta( $this->ipn_data['item_number'], 'pp_smart_checkout_test_id', true );
$secret = get_post_meta( $this->ipn_data['item_number'], 'pp_smart_checkout_test_sec', true );
$api_base = 'https://api.sandbox.paypal.com';
} else {
$client_id = get_post_meta( $this->ipn_data['item_number'], 'pp_smart_checkout_live_id', true );
$secret = get_post_meta( $this->ipn_data['item_number'], 'pp_smart_checkout_live_sec', true );
$api_base = 'https://api.paypal.com';
}
$wp_request_headers = array(
'Accept' => 'application/json',
// Ignoring base64_encode() PHPCS warning as it's being properly used in this case.
'Authorization' => 'Basic ' . base64_encode( $client_id . ':' . $secret ), // phpcs:ignore
);
$res = wp_remote_request(
$api_base . '/v1/oauth2/token',
array(
'method' => 'POST',
'headers' => $wp_request_headers,
'body' => 'grant_type=client_credentials',
)
);
$code = wp_remote_retrieve_response_code( $res );
if ( 200 !== $code ) {
// Some error occured.
$body = wp_remote_retrieve_body( $res );
// translators: %1$d is error code; %2$s is error message.
return sprintf( __( 'Error occured during payment verification. Error code: %1$d. Message: %2$s', 'simple-membership' ), $code, $body );
}
$body = wp_remote_retrieve_body( $res );
$body = json_decode( $body );
$token = $body->access_token;
$wp_request_headers = array(
'Accept' => 'application/json',
'Authorization' => 'Bearer ' . $token,
);
$res = wp_remote_request(
$api_base . '/v1/payments/payment/' . $this->ipn_data['pay_id'],
array(
'method' => 'GET',
'headers' => $wp_request_headers,
)
);
$code = wp_remote_retrieve_response_code( $res );
if ( 200 !== $code ) {
// Some error occured.
$body = wp_remote_retrieve_body( $res );
// translators: %1$d is error code; %2$s is error message.
return sprintf( __( 'Error occured during payment verification. Error code: %1$d. Message: %2$s', 'simple-membership' ), $code, $body );
}
$body = wp_remote_retrieve_body( $res );
$body = json_decode( $body );
// check payment details.
if ( $body->transactions[0]->amount->total === $this->ipn_data['mc_gross'] &&
$body->transactions[0]->amount->currency === $this->ipn_data['mc_currency'] ) {
// payment is valid.
return true;
} else {
// payment is invalid.
// translators: %1$s is expected amount, %2$s is expected currency.
return sprintf( __( 'Payment check failed: invalid amount received. Expected %1$s %2$s, got %3$s %4$s.', 'simple-membership' ), $this->ipn_data['mc_gross'], $this->ipn_data['mc_currency'], $body->transactions[0]->amount->total, $body->transactions[0]->amount->currency );
}
}
public function debug_log( $message, $success, $end = false ) {
SwpmLog::log_simple_debug( $message, $success, $end );
}
}
function swpm_pp_smart_checkout_ajax_hanlder() {
// Start of IPN handling (script execution).
// check nonce.
$uniqid = isset( $_POST['uniqid'] ) ? sanitize_text_field( stripslashes ( $_POST['uniqid'] ) ) : '';
if ( ! check_ajax_referer( 'swpm-pp-smart-checkout-ajax-nonce-' . $uniqid, 'nonce', false ) ) {
wp_send_json(
array(
'success' => false,
'errMsg' => __(
'Nonce check failed. Please reload the page.',
'simple-membership'
),
)
);
exit;
}
$data = filter_input( INPUT_POST, 'swpm_pp_smart_checkout_payment_data', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY );
if ( empty( $data ) ) {
wp_send_json(
array(
'success' => false,
'errMsg' => __(
'Empty payment data received.',
'simple-membership'
),
)
);
}
$ipn_handler_instance = new swpm_smart_checkout_ipn_handler();
$ipn_data_success = $ipn_handler_instance->create_ipn_from_smart_checkout( $data );
if ( true !== $ipn_data_success ) {
// error occured during IPN array creation.
wp_send_json(
array(
'success' => false,
'errMsg' => $ipn_data_success,
)
);
}
$settings = SwpmSettings::get_instance();
$debug_enabled = $settings->get_value( 'enable-debug' );
if ( ! empty( $debug_enabled ) ) {// debug is enabled in the system.
$debug_log = 'log.txt'; // Debug log file name.
$ipn_handler_instance->ipn_log = true;
$ipn_handler_instance->ipn_log_file = $debug_log;
}
$sandbox_enabled = $settings->get_value( 'enable-sandbox-testing' );
if ( ! empty( $sandbox_enabled ) ) { // Sandbox testing enabled.
$ipn_handler_instance->paypal_url = 'https://www.sandbox.paypal.com/cgi-bin/webscr';
$ipn_handler_instance->sandbox_mode = true;
}
$ip = filter_input( INPUT_SERVER, 'REMOTE_ADDR', FILTER_UNSAFE_RAW );
$ip = sanitize_text_field( $ip );
$ipn_handler_instance->debug_log( 'Paypal Smart Checkout Class Initiated by ' . $ip, true );
// Validate the IPN.
$res = $ipn_handler_instance->validate_ipn_smart_checkout();
if ( true !== $res ) {
wp_send_json(
array(
'success' => false,
'errMsg' => $res,
)
);
}
$ipn_handler_instance->debug_log( 'Creating product Information to send.', true );
if ( ! $ipn_handler_instance->swpm_validate_and_create_membership() ) {
$ipn_handler_instance->debug_log( 'IPN product validation failed.', false );
wp_send_json(
array(
'success' => false,
'errMsg' => __(
'IPN product validation failed. Check the debug log for more details.',
'simple-membership'
),
)
);
}
$ipn_handler_instance->debug_log( 'Paypal class finished.', true, true );
wp_send_json( array( 'success' => true ) );
}