View source
<?php
namespace Drupal\uc_2checkout\Controller;
use Drupal\Component\Utility\SafeMarkup;
use Drupal\Core\Controller\ControllerBase;
use Drupal\uc_cart\CartManagerInterface;
use Drupal\uc_order\Entity\Order;
use Symfony\Component\DependencyInjection\ContainerInterface;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
class TwoCheckoutController extends ControllerBase {
protected $cartManager;
public function __construct(CartManagerInterface $cart_manager) {
$this->cartManager = $cart_manager;
}
public static function create(ContainerInterface $container) {
return new static($container
->get('uc_cart.manager'));
}
public function complete($cart_id = 0, Request $request) {
$this
->getLogger('uc_2checkout')
->notice('Receiving new order notification for order @order_id.', [
'@order_id' => SafeMarkup::checkPlain($request->request
->get('merchant_order_id')),
]);
$order = Order::load($request->request
->get('merchant_order_id'));
if (!$order || $order
->getStateId() != 'in_checkout') {
return [
'#plain_text' => $this
->t('An error has occurred during payment. Please contact us to ensure your order has submitted.'),
];
}
$plugin = \Drupal::service('plugin.manager.uc_payment.method')
->createFromOrder($order);
if ($plugin
->getPluginId() != '2checkout') {
throw new AccessDeniedHttpException();
}
$configuration = $plugin
->getConfiguration();
$key = $request->request
->get('key');
$order_number = $configuration['demo'] ? 1 : $request->request
->get('order_number');
$valid = md5($configuration['secret_word'] . $request->request
->get('sid') . $order_number . $request->request
->get('total'));
if (mb_strtolower($key) != mb_strtolower($valid)) {
uc_order_comment_save($order
->id(), 0, $this
->t('Attempted unverified 2Checkout completion for this order.'), 'admin');
throw new AccessDeniedHttpException();
}
if ($request->request
->get('demo') == 'Y' xor $configuration['demo']) {
$this
->getLogger('uc_2checkout')
->error('The 2Checkout payment for order <a href=":order_url">@order_id</a> demo flag was set to %flag, but the module is set to %mode mode.', [
':order_url' => $order
->toUrl()
->toString(),
'@order_id' => $order
->id(),
'%flag' => $request->request
->get('demo') == 'Y' ? 'Y' : 'N',
'%mode' => $configuration['demo'] ? 'Y' : 'N',
]);
if (!$configuration['demo']) {
throw new AccessDeniedHttpException();
}
}
$address = $order
->getAddress('billing');
$address
->setStreet1($request->request
->get('street_address'));
$address
->setStreet2($request->request
->get('street_address2'));
$address
->setCity($request->request
->get('city'));
$address
->setPostalCode($request->request
->get('zip'));
$address
->setPhone($request->request
->get('phone'));
$address
->setZone($request->request
->get('state'));
$address
->setCountry($request->request
->get('country'));
$order
->setAddress('billing', $address);
$order
->save();
if (mb_strtolower($request->request
->get('email')) !== mb_strtolower($order
->getEmail())) {
uc_order_comment_save($order
->id(), 0, $this
->t('Customer used a different e-mail address during payment: @email', [
'@email' => $request->request
->get('email'),
]), 'admin');
}
if ($request->request
->get('credit_card_processes') == 'Y' && is_numeric($request->request
->get('total'))) {
$comment = $this
->t('Paid by @type, 2Checkout.com order #@order.', [
'@type' => $request->request
->get('pay_method') == 'CC' ? $this
->t('credit card') : $this
->t('echeck'),
'@order' => $request->request
->get('order_number'),
]);
uc_payment_enter($order
->id(), '2checkout', $request->request
->get('total'), 0, NULL, $comment);
}
else {
$this
->messenger()
->addMessage($this
->t('Your order will be processed as soon as your payment clears at 2Checkout.com.'));
uc_order_comment_save($order
->id(), 0, $this
->t('@type payment is pending approval at 2Checkout.com.', [
'@type' => $request->request
->get('pay_method') == 'CC' ? $this
->t('Credit card') : $this
->t('eCheck'),
]), 'admin');
}
uc_order_comment_save($order
->id(), 0, $this
->t('Order created through website.'), 'admin');
return $this->cartManager
->completeSale($order);
}
public function notification(Request $request) {
$values = $request->request;
$this
->getLogger('uc_2checkout')
->notice('Received 2Checkout notification with following data: @data', [
'@data' => print_r($values
->all(), TRUE),
]);
if ($values
->has('message_type') && $values
->has('md5_hash') && $values
->has('message_id')) {
$order_id = $values
->get('vendor_order_id');
$order = Order::load($order_id);
$plugin = \Drupal::service('plugin.manager.uc_payment.method')
->createFromOrder($order);
$configuration = $plugin
->getConfiguration();
$secret_word = $configuration['secret_word'];
$sid = $configuration['sid'];
$twocheckout_order_id = $values
->get('sale_id');
$twocheckout_invoice_id = $values
->get('invoice_id');
$hash = strtoupper(md5($twocheckout_order_id . $sid . $twocheckout_invoice_id . $secret_word));
if ($hash != $values
->get('md5_hash')) {
$this
->getLogger('uc_2checkout')
->notice('2Checkout notification #@num had a wrong hash.', [
'@num' => $values
->get('message_id'),
]);
die('Hash Incorrect');
}
if ($values
->get('message_type') == 'FRAUD_STATUS_CHANGED') {
switch ($values
->get('fraud_status')) {
case 'pass':
break;
case 'wait':
break;
case 'fail':
$order
->setStatusId('canceled')
->save();
uc_order_comment_save($order_id, 0, $this
->t('Order have not passed 2Checkout fraud review.'));
die('fraud');
}
}
elseif ($values
->get('message_type') == 'REFUND_ISSUED') {
$order
->setStatusId('canceled')
->save();
uc_order_comment_save($order_id, 0, $this
->t('Order have been refunded through 2Checkout.'));
die('refund');
}
}
die('ok');
}
}
