Subversion-Projekte lars-tiefland.php_share

<?php

    /**
     * @package   php_share
     * @author    Webagentur Niewerth <tiefland@weban.de>
     * @copyright 2011 Webagentur Niewerth
     * @license   propietary http://www.weban.de
     * @version   $Rev: 760 $
     * @filesource
     * 
     */

    /**
     * 
     * @package   php_share
     * @author    Webagentur Niewerth <tiefland@weban.de>
     * @copyright 2011 Webagentur Niewerth
     */

    // SVN: $Id: billsafe.php 760 2011-10-12 14:04:01Z tiefland $

    require_once "creditcard.interface.php";
    require_once "Billsfafe_HttpResponse.class.php";
    require_once "Config.php";

    class billsafe implements creditcard
    {
        protected $ini;
        protected $version;
        protected $date;

        function __construct()
        {
            $this->date =
                '$Date: 2011-10-12 16:04:01 +0200 (Wed, 12 Oct 2011) $';
            $this->version = substr( $this->date, 7, 19 );
            if ( !is_array( $_SESSION["INI"] ) )
            {
                $this->ini = $GLOBALS["INI"];
            }
            else
            {
                $this->ini = $_SESSION["INI"];
            }
        }
        function getCreditcardStatus( $bestellId, $summe = null )
        {
            global $Userdata;
            if ( is_null( $summe ) )
            {
                $summe = getBasketSumme();
            }
            //$summe = ( double )$summe;
            $server = $this->ini["billsafe"]["server"];
            try
            {
                $url = $server;
                $params["merchant_id"] = $this->ini["billsafe"]["zugang"];
                $params["merchant_license"] = $this->ini["billsafe"]["secret"];
                $params["application_signature"] = $this->ini["billsafe"]["signature"];
                $params["application_version"] = $this->version;
                $params["method"] = $this->ini["billsafe"]["method"];
                $params["format"] = $this->ini["billsafe"]["format"];
                $params["order_number"] = $bestellId;
                $params["order_amount"] = $summe;
                $params["order_taxAmount"] = round( getBasketSummeMwSt(), 2 );
                $params["order_currencyCode"] = "EUR";
                //$params["customer_id"] = $Userdata["ID"];
                $params["customer_gender"] = ( $_SESSION["SHOP"]["buy"]["Persdata"]["Anrede"] ==
                    "Frau" ) ? "f" : "m";
                $params["customer_firstname"] = $_SESSION["SHOP"]["buy"]["Persdata"]["Vorname"];
                $params["customer_lastname"] = $_SESSION["SHOP"]["buy"]["Persdata"]["Nachname"];
                $params["customer_street"] = $_SESSION["SHOP"]["buy"]["Persdata"]["Strasse"];
                $params["customer_houseNumber"] = $_SESSION["SHOP"]["buy"]["Persdata"]["Hausnummer"];
                $params["customer_postcode"] = $_SESSION["SHOP"]["buy"]["Persdata"]["PLZ"];
                $params["customer_city"] = $_SESSION["SHOP"]["buy"]["Persdata"]["Ort"];
                $params["customer_country"] = "DE";
                $params["customer_email"] = $_SESSION["SHOP"]["buy"]["Persdata"]["email"];
                $params["customer_phone"] = $_SESSION["SHOP"]["buy"]["Persdata"]["Telefon"];
                $items = getBasketItems();
                foreach ( $items as $item_id => $item )
                {
                    $params["articleList_" . $item_id . "_number"] = $item["ID"];
                    $params["articleList_" . $item_id . "_name"] = $item["kurzbezeichnung"];
                    //$params["articleList_" . $item_id . "_description"] = $item["beschreibung"];
                    $params["articleList_" . $item_id . "_quantity"] = $item["Menge"];
                    if ( $this->ini["netto_preise"] == 1 )
                    {
                        $params["articleList_" . $item_id . "_netPrice"] = $item["preis"];
                    }
                    else
                    {
                        $params["articleList_" . $item_id . "_grossPrice"] =
                            $item["preis"];
                    }
                    $params["articleList_" . $item_id . "_tax"] = 19;
                    $params["articleList_" . $item_id . "_type"] = ( $item["Father"] ==
                        -3 ) ? "shipment" : "goods";
                    if ( is_numeric( $item["preis2"] ) && $item["preis2"] >
                        0 )
                    {
                        $item_id++;
                        $name = ( getAufschlag() < 0 ) ?
                            "Zahlungssystemaufschlagrabatt" :
                            "Zahlungssystemaufschlag";
                        $name .= " (" . getProzent() . "%)";
                        $params["articleList_" . $item_id . "_number"] =
                            999999;
                        $params["articleList_" . $item_id . "_name"] = $name;
                        //$params["articleList_" . $item_id . "_description"] = $item["beschreibung"];
                        $params["articleList_" . $item_id . "_quantity"] = 1;
                        if ( $this->ini["netto_preise"] == 1 )
                        {
                            $params["articleList_" . $item_id . "_netPrice"] =
                                getAufschlag();
                        }
                        else
                        {
                            $params["articleList_" . $item_id .
                                "_grossPrice"] = getAufschlag();
                        }
                        $params["articleList_" . $item_id . "_tax"] = 19;
                        $params["articleList_" . $item_id . "_type"] =
                            "handling";
                    }
                }
                $b_url = $this->ini["absoluteURL"];
                $b_url = ( $this->ini["ssl_buy"] ) ? str_replace( "http://",
                    "https://", $b_url ) : $b_url;
                $params["url_return"] = $b_url . "/billsafe_accept_" . $bestellId .
                    ".html";
                $params["url_cancel"] = $b_url . "/billsafe_cancel_" . $bestellId .
                    ".html";
                $params["product"] = "invoice";

                foreach ( $params as $key => $val )
                {
                    $param_arr[] = urlencode( utf8_encode( $key ) ) . "=" .
                        urlencode( utf8_encode( $val ) );
                }
                $params = "" . implode( "&", $param_arr );
                //echo $params;
                $p_url = parse_url( $url );
                $header[] = 'POST ' . $p_url["path"] . ' HTTP/1.1';
                $header[] = 'Host: ' . $p_url["host"];
                $header[] = 'Content-Type: text/plain';
                $header[] = 'Content-Length: ' . strlen( $params );
                $header[] = 'Accept-Encoding: identity'; //no compression yet
                $auth = $this->ini["billsafe"]["user"] . ':' . $this->ini["billsafe"]["password"];
                $header[] = 'Authorization: Basic ' . base64_encode( $auth );
                $header[] = 'Connection: close';

                $header = utf8_encode( implode( "\r\n", $header ) );

                $fp = fsockopen( "ssl://" . $p_url["host"], 443, $error_nr,
                    $error_msg );

                if ( $fp )
                {
                    if ( fwrite( $fp, $header . "\r\n\r\n" . $params ) )
                    {
                        while ( !feof( $fp ) )
                        {
                            $rawResponse .= fgets( $fp, 4096 );
                        }

                    }
                }
                $response["full"] = $this->_parseResponse( $rawResponse );
                $cfg = new Config();
                $cfg_out = $cfg->parseConfig( $response["full"]->body, "XML",
                    array( "isFile" => false ) );
                $xml = $cfg_out->toArray();
                $response["parsed"] = $xml["root"]["response"];

                if ( $response["parsed"]["ack"] == "OK" )
                {
                    $ret = "
                        <form name='rechnung' action='" . $this->ini["billsafe"]["gateway"] .
                        "' id='zahlung'>
                            <input type='hidden' name='token' value='" . $response["parsed"]["token"] .
                        "'>
                            <input type='submit' value='per Rechnung bezahlen'>
                        </form>
                        <script type=\"text/javascript\">
                            zahlungsubmit();
                        </script>
                    ";
                }
                else
                {
                    admin_debug( $response["parsed"] );
                    if ( $this->ini["change_order"] )
                    {
                        $_SESSION["zahlarten"]["billsafe"] = false;
                        $ret["error"] = true;
                        $ret = $this->_getMsg( $ret, "init_fehler", $bestellId );
                    }
                }
                fclose( $fp );
                return $ret;
            }
            catch ( exception $e )
            {
                admin_debug( $e );
                $_SESSION["zahlarten"]["billsafe"] = false;
                $ret["error"] = true;
                $ret = $this->_getMsg( $ret, "init_fehler", $bestellId );
            }
        }
        function getCreditcardReturnStatus( $bestellId )
        {
            $server = $this->ini["billsafe"]["server"];
            try
            {
                $table = ( $this->ini["dbConnect"]["order_db"] ) ? $this->
                    ini["dbConnect"]["order_db"] . "." : "";
                $table .= "Bestellung";
                $query = "SELECT
                        Bemerkung
                    FROM
                        $table
                    WHERE
                        id=$bestellId
                ";
                $res = mysql_query( $query, $GLOBALS["order_dbh"] );
                $row = mysql_fetch_assoc( $res );
                $bemerkung = $row["Bemerkung"];
                if ( $_GET["action"] == "accept" )
                {
                    $params["merchant_id"] = $this->ini["billsafe"]["zugang"];
                    $params["merchant_license"] = $this->ini["billsafe"]["secret"];
                    $params["application_signature"] = $this->ini["billsafe"]["signature"];
                    $params["application_version"] = $this->version;
                    $params["method"] = "getTransactionResult";
                    $params["token"] = $_GET["token"];
                    $params["format"] = $this->ini["billsafe"]["format"];
                    foreach ( $params as $key => $val )
                    {
                        $param_arr[] = urlencode( utf8_encode( $key ) ) .
                            "=" . urlencode( utf8_encode( $val ) );
                    }
                    $params = "" . implode( "&", $param_arr );
                    //var_dump($params);
                    $p_url = parse_url( $server );

                    $header[] = 'POST ' . $p_url["path"] . ' HTTP/1.1';
                    $header[] = 'Host: ' . $p_url["host"];
                    $header[] = 'Content-Type: text/plain';
                    $header[] = 'Content-Length: ' . strlen( $params );
                    $header[] = 'Accept-Encoding: identity'; //no compression yet
                    $auth = $this->ini["billsafe"]["user"] . ':' . $this->
                        ini["billsafe"]["password"];
                    $header[] = 'Authorization: Basic ' . base64_encode( $auth );
                    $header[] = 'Connection: close';

                    $header = utf8_encode( implode( "\r\n", $header ) );

                    $fp = fsockopen( "ssl://" . $p_url["host"], 443, $error_nr,
                        $error_msg );

                    if ( $fp )
                    {
                        if ( fwrite( $fp, $header . "\r\n\r\n" . $params ) )
                        {
                            while ( !feof( $fp ) )
                            {
                                $rawResponse .= fgets( $fp, 4096 );
                            }

                        }
                    }
                    $response["full"] = $this->_parseResponse( $rawResponse );
                    $cfg = new Config();
                    $cfg_out = $cfg->parseConfig( $response["full"]->body,
                        "XML", array( "isFile" => false ) );
                    $xml = $cfg_out->toArray();
                    $response["parsed"] = $xml["root"]["response"];
                    if ( $response["parsed"]["ack"] == "OK" )
                    {
                        switch ( $response["parsed"]["status"] )
                        {
                            case "ACCEPTED":
                                $res = true;
                                $kk_info["code"] = $response["parsed"]["transactionId"];
                                $kk_info["anbieter"] = "billsafe";
                                $kk_info["status"] = "offen";
                                $bemerkung .=
                                    "Die Zahlung wurde von BillSAFE am " .
                                    date( "d.m.Y" ) . " um " . date( "H:i" ) .
                                    " Uhr genehmigt!\nTransaktionsnummer: " .
                                    $kk_info["code"] . "\n";
                                if ( USE_TRANSLATION2 === true )
                                {
                                    $msg = $GLOBALS["langstrings"]["buy"]["billsafe_accepted"];
                                } elseif ( $_SESSION["languageException"] )
                                {
                                    $msg = "Thanks for your purchase at " .
                                        __SHOP__ . "!";
                                }
                                else
                                {
                                    $msg =
                                        "Vielen Dank für Ihren Einkauf bei " .
                                        __SHOP__ . "!";
                                }
                                $sql_u_ab = "
                                    UPDATE
                                        artikel_to_Bestellung AS ab
                                    SET
                                        rechnungStatus='schreiben'
                                    WHERE
                                        Bestellung=$bestellId
                                    AND
                                        artikel IN (SELECT ID FROM artikel WHERE ID=ab.artikel AND Father !=-3)
                                ";
                                mysql_query( $sql_u_ab, $GLOBALS["order_dbh"] );
                                break;
                            case "DECLINED":
                                $kk_info["code"] = $response["parsed"]["declineReason"]["code"];
                                $kk_info["status"] = "abgelehnt";
                                $_SESSION["zahlarten"]["billsafe"] = false;
                                $kk_info["anbieter"] = "billsafe";
                                $bemerkung .=
                                    "Die Zahlung wurde von Billsafe am " .
                                    date( "d.m.Y" ) . " um " . date( "H:i" ) .
                                    " Uhr abgelehnt!\nGrund: " . $response["parsed"]["declineReason"]["message"] .
                                    "\n";
                                $res = false;
                                break;
                        }
                        fclose( $fp );
                    }
                    else
                    {
                        admin_debug( $response["parsed"] );
                        $res = false;
                        $msg = "Ein Fehler ist aufgetreten! ";
                    }
                } elseif ( $_GET["action"] == "cancel" )
                {
                    $bemerkung .=
                        "Die Zahlung per billsafe wurde vom Kunden am " .
                        date( "d.m.Y" ) . " um " . date( "H:i" ) .
                        " Uhr abgebrochen!\n";
                    $kk_info["code"] = "";
                    $kk_info["status"] = "abgebrochen";
                    $res = false;
                }
                if ( is_array( $kk_info ) )
                {
                    $kk_info_str = serialize( $kk_info );
                }
                $query = "
                    UPDATE 
                        $table 
                    SET
                ";
                if ( $kk_info_str )
                {
                    $query .= "
                        kk_info='$kk_info_str', 
                    ";
                }
                $query .= "
                        Bemerkung='$bemerkung' 
                    WHERE 
                        id=$bestellId
                ";
                mysql_query( $query, $GLOBALS["order_dbh"] );
                $ret = array( "error" => !$res );
                if ( $ret["error"] )
                {
                    $msg .= $this->_getMsg( $ret, $kk_info["status"], $bestellId );
                }
                $ret["meld"] = $msg;
                return $ret;
            }
            catch ( exception $e )
            {
                admin_debug( $e );
            }
        }
        function genCheckSum( $src )
        {
            switch ( $this->ini["kreditkarte"]["sha_algo"] )
            {
                case "sha512":
                    $data = hash( "sha512", $src );
                    break;
                case "sha256":
                    $data = hash( "sha256", $src );
                    break;
                case "sha1":
                default:
                    $data = sha1( $src );
                    break;
            }
            return $data;
        }
        private function _parseResponse( $responceString )
        {
            if ( empty( $responceString ) )
            {
                throw new Exception( 'invalid response' );
            }

            $separator = "\r\n\r\n";
            $separatorLength = strlen( $separator );

            $headerEndPosition = strpos( $responceString, "\r\n\r\n" );

            if ( $headerEndPosition === false )
            {
                throw new Exception( 'invalid response' );
            }

            $header = substr( $responceString, 0, $headerEndPosition );
            //$this->_verbose( "[response header] \r\n" . $header );

            $body = substr( $responceString, $headerEndPosition + $separatorLength );

            $response = new Billsafe_HttpResponse();

            if ( preg_match( '#http/\d.\d (\d+) (.*)#i', $header, $match ) )
            {
                $response->statusCode = trim( $match[1] );
                $response->statusText = trim( $match[2] );
            }

            if ( preg_match( '#Content-Type: (.*)#i', $header, $match ) )
            {
                $response->contentType = trim( $match[1] );
            }

            if ( preg_match( '#Content-Length: (.*)#i', $header, $match ) )
            {
                $response->contentLength = ( int )trim( $match[1] );
            }

            if ( preg_match( '#Transfer-Encoding: chunked#i', $header, $match ) )
            {
                $response->body = $this->_joinChunks( $body );
                $response->contentLength = strlen( $response->body );
            }
            else
            {
                $response->body = trim( $body );
            }

            //$this->_verbose( "[response body] \r\n" . $response->body );

            return $response;
        }
        private function _getMsg( $ret, $status, $bestellId )
        {
            if ( USE_TRANSLATION2 === true )
            {
                if ( $this->ini["change_order"] )
                {
                    $abschluss = $GLOBALS["langstrings"]["buy"]["click_button"];
                }
                else
                {
                    $abschluss = $GLOBALS["langstrings"]["buy"]["cancel_order"];
                }
            } elseif ( $_SESSION["languageException"] )
            {
                if ( $this->ini["change_order"] )
                {
                    $abschluss =
                        "Click on the button to choose an other payment method.";
                }
                else
                {
                    $abschluss = "Therefore we will now cancel your order.";
                }
            }
            else
            {
                if ( $this->ini["change_order"] )
                {
                    $abschluss =
                        "Klicken Sie auf den Button, um eine andere Zahlweise auszuwählen.";
                }
                else
                {
                    $abschluss =
                        "Deshalb werden wir nun Ihre Bestellung nun stornieren.";
                }
            }
            switch ( $status )
            {
                case "init_fehler":
                    if ( USE_TRANSLATION2 === true )
                    {
                        $msg = $GLOBALS["langstrings"]["buy"]["billsafe_not_avail"];
                    } elseif ( $_SESSION["languageException"] )
                    {
                        $msg =
                            "Unfourtunately Billsafe is not available at the moment. ";
                    }
                    else
                    {
                        $msg =
                            "Leider steht Billsafe zur Zeit nicht zur Verfügung. ";
                    }
                    break;
                case "abgebrochen":
                    if ( USE_TRANSLATION2 === true )
                    {
                        $msg = $GLOBALS["langstrings"]["buy"]["order_canceled"];
                    } elseif ( $_SESSION["languageException"] )
                    {
                        $msg = "You have canceled the payment. ";
                    }
                    else
                    {
                        $msg = "Sie haben die Zahlung abgebrochen. ";
                    }
                    break;
                case "abgelehnt":
                    if ( USE_TRANSLATION2 === true )
                    {
                        $msg = $GLOBALS["langstrings"]["buy"]["billsafe_declined"];
                    } elseif ( $_SESSION["languageException"] )
                    {
                        $msg =
                            "Unfortunately the payment over BILLSAFE is not possible. ";
                    }
                    else
                    {
                        $msg =
                            "Leider ist der Rechungskauf mit BillSAFE nicht möglich. ";
                    }
                    break;
            }
            $msg .= $abschluss;
            if ( $this->ini["change_order"] )
            {
                $msg .= '
                    <form method="post" action="/">
                        <input type="hidden" name="best_id" value="' . $bestellId .
                    '">
                        <input type="hidden" name="email" value="' . $_SESSION["SHOP"]["buy"]["Persdata"]["email"] .
                    '">
                        <input type="hidden" name="mode" value="change_order">
                        <input type="submit" value="Zahlart / Bestellung &auml;ndern">
                    </form>
                ';
            }
            return $msg;
        }
    }
?>