mirror of
				https://github.com/invoiceninja/invoiceninja.git
				synced 2025-10-22 18:19:19 -04:00 
			
		
		
		
	
		
			
				
	
	
		
			867 lines
		
	
	
		
			33 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
			
		
		
	
	
			867 lines
		
	
	
		
			33 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
| <?php namespace App\Http\Controllers;
 | |
| 
 | |
| use Datatable;
 | |
| use Input;
 | |
| use Redirect;
 | |
| use Request;
 | |
| use Session;
 | |
| use Utils;
 | |
| use View;
 | |
| use Validator;
 | |
| use Omnipay;
 | |
| use CreditCard;
 | |
| use URL;
 | |
| use Cache;
 | |
| use App\Models\Invoice;
 | |
| use App\Models\Invitation;
 | |
| use App\Models\Client;
 | |
| use App\Models\Account;
 | |
| use App\Models\PaymentType;
 | |
| use App\Models\License;
 | |
| use App\Models\Payment;
 | |
| use App\Models\Affiliate;
 | |
| use App\Ninja\Repositories\PaymentRepository;
 | |
| use App\Ninja\Repositories\InvoiceRepository;
 | |
| use App\Ninja\Repositories\AccountRepository;
 | |
| use App\Ninja\Mailers\ContactMailer;
 | |
| use App\Ninja\Mailers\UserMailer;
 | |
| use App\Services\PaymentService;
 | |
| 
 | |
| use App\Http\Requests\CreatePaymentRequest;
 | |
| use App\Http\Requests\UpdatePaymentRequest;
 | |
| 
 | |
| class PaymentController extends BaseController
 | |
| {
 | |
|     protected $model = 'App\Models\Payment';
 | |
|     
 | |
|     public function __construct(PaymentRepository $paymentRepo, InvoiceRepository $invoiceRepo, AccountRepository $accountRepo, ContactMailer $contactMailer, PaymentService $paymentService, UserMailer $userMailer)
 | |
|     {
 | |
|         // parent::__construct();
 | |
| 
 | |
|         $this->paymentRepo = $paymentRepo;
 | |
|         $this->invoiceRepo = $invoiceRepo;
 | |
|         $this->accountRepo = $accountRepo;
 | |
|         $this->contactMailer = $contactMailer;
 | |
|         $this->paymentService = $paymentService;
 | |
|         $this->userMailer = $userMailer;
 | |
|     }
 | |
| 
 | |
|     public function index()
 | |
|     {
 | |
|         return View::make('list', array(
 | |
|             'entityType' => ENTITY_PAYMENT,
 | |
|             'title' => trans('texts.payments'),
 | |
|             'sortCol' => '6',
 | |
|             'columns' => Utils::trans([
 | |
|               'checkbox',
 | |
|               'invoice',
 | |
|               'client',
 | |
|               'transaction_reference',
 | |
|               'method',
 | |
|               'source',
 | |
|               'payment_amount',
 | |
|               'payment_date',
 | |
|               'status',
 | |
|               ''
 | |
|             ]),
 | |
|         ));
 | |
|     }
 | |
| 
 | |
|     public function getDatatable($clientPublicId = null)
 | |
|     {
 | |
|         return $this->paymentService->getDatatable($clientPublicId, Input::get('sSearch'));
 | |
|     }
 | |
| 
 | |
|     public function create($clientPublicId = 0, $invoicePublicId = 0)
 | |
|     {
 | |
|         if(!$this->checkCreatePermission($response)){
 | |
|             return $response;
 | |
|         }
 | |
|         
 | |
|         $invoices = Invoice::scope()
 | |
|                     ->where('is_recurring', '=', false)
 | |
|                     ->where('is_quote', '=', false)
 | |
|                     ->where('invoices.balance', '>', 0)
 | |
|                     ->with('client', 'invoice_status')
 | |
|                     ->orderBy('invoice_number')->get();
 | |
| 
 | |
|         $data = array(
 | |
|             'clientPublicId' => Input::old('client') ? Input::old('client') : $clientPublicId,
 | |
|             'invoicePublicId' => Input::old('invoice') ? Input::old('invoice') : $invoicePublicId,
 | |
|             'invoice' => null,
 | |
|             'invoices' => $invoices,
 | |
|             'payment' => null,
 | |
|             'method' => 'POST',
 | |
|             'url' => "payments",
 | |
|             'title' => trans('texts.new_payment'),
 | |
|             'paymentTypes' => Cache::get('paymentTypes'),
 | |
|             'paymentTypeId' => Input::get('paymentTypeId'),
 | |
|             'clients' => Client::scope()->with('contacts')->orderBy('name')->get(), );
 | |
| 
 | |
|         return View::make('payments.edit', $data);
 | |
|     }
 | |
| 
 | |
|     public function edit($publicId)
 | |
|     {
 | |
|         $payment = Payment::scope($publicId)->firstOrFail();
 | |
|         
 | |
|         if(!$this->checkEditPermission($payment, $response)){
 | |
|             return $response;
 | |
|         }
 | |
|         
 | |
|         $payment->payment_date = Utils::fromSqlDate($payment->payment_date);
 | |
| 
 | |
|         $data = array(
 | |
|             'client' => null,
 | |
|             'invoice' => null,
 | |
|             'invoices' => Invoice::scope()->where('is_recurring', '=', false)->where('is_quote', '=', false)
 | |
|                             ->with('client', 'invoice_status')->orderBy('invoice_number')->get(),
 | |
|             'payment' => $payment,
 | |
|             'method' => 'PUT',
 | |
|             'url' => 'payments/'.$publicId,
 | |
|             'title' => trans('texts.edit_payment'),
 | |
|             'paymentTypes' => Cache::get('paymentTypes'),
 | |
|             'clients' => Client::scope()->with('contacts')->orderBy('name')->get(), );
 | |
| 
 | |
|         return View::make('payments.edit', $data);
 | |
|     }
 | |
| 
 | |
|     private function getLicensePaymentDetails($input, $affiliate)
 | |
|     {
 | |
|         $data = $this->paymentService->convertInputForOmnipay($input);
 | |
|         $card = new CreditCard($data);
 | |
| 
 | |
|         return [
 | |
|             'amount' => $affiliate->price,
 | |
|             'card' => $card,
 | |
|             'currency' => 'USD',
 | |
|             'returnUrl' => URL::to('license_complete'),
 | |
|             'cancelUrl' => URL::to('/')
 | |
|         ];
 | |
|     }
 | |
| 
 | |
|     public function show_payment($invitationKey, $paymentType = false, $sourceId = false)
 | |
|     {
 | |
| 
 | |
|         $invitation = Invitation::with('invoice.invoice_items', 'invoice.client.currency', 'invoice.client.account.account_gateways.gateway')->where('invitation_key', '=', $invitationKey)->firstOrFail();
 | |
|         $invoice = $invitation->invoice;
 | |
|         $client = $invoice->client;
 | |
|         $account = $client->account;
 | |
|         $useToken = false;
 | |
| 
 | |
|         if ($paymentType) {
 | |
|             $paymentType = 'PAYMENT_TYPE_' . strtoupper($paymentType);
 | |
|         } else {
 | |
|             $paymentType = Session::get($invitation->id . 'payment_type') ?:
 | |
|                                 $account->account_gateways[0]->getPaymentType();
 | |
|         }
 | |
| 
 | |
|         if ($paymentType == PAYMENT_TYPE_TOKEN) {
 | |
|             $useToken = true;
 | |
|             $accountGateway = $invoice->client->account->getTokenGateway();
 | |
|             $paymentType = $accountGateway->getPaymentType();
 | |
|         } else {
 | |
|             $accountGateway = $invoice->client->account->getGatewayByType($paymentType);
 | |
|         }
 | |
| 
 | |
|         Session::put($invitation->id . 'payment_type', $paymentType);
 | |
| 
 | |
|         $gateway = $accountGateway->gateway;
 | |
| 
 | |
|         $acceptedCreditCardTypes = $accountGateway->getCreditcardTypes();
 | |
| 
 | |
|         $isOffsite = ($paymentType != PAYMENT_TYPE_CREDIT_CARD && $accountGateway->getPaymentType() != PAYMENT_TYPE_STRIPE)
 | |
|             || $gateway->id == GATEWAY_EWAY
 | |
|             || $gateway->id == GATEWAY_TWO_CHECKOUT
 | |
|             || $gateway->id == GATEWAY_PAYFAST
 | |
|             || $gateway->id == GATEWAY_MOLLIE;
 | |
| 
 | |
|         // Handle offsite payments
 | |
|         if ($useToken || $isOffsite) {
 | |
|             if (Session::has('error')) {
 | |
|                 Session::reflash();
 | |
|                 return Redirect::to('view/'.$invitationKey);
 | |
|             } else {
 | |
|                 return self::do_payment($invitationKey, false, $useToken, $sourceId);
 | |
|             }
 | |
|         }
 | |
| 
 | |
|         $data = [
 | |
|             'showBreadcrumbs' => false,
 | |
|             'url' => 'payment/'.$invitationKey,
 | |
|             'amount' => $invoice->getRequestedAmount(),
 | |
|             'invoiceNumber' => $invoice->invoice_number,
 | |
|             'client' => $client,
 | |
|             'contact' => $invitation->contact,
 | |
|             'gateway' => $gateway,
 | |
|             'accountGateway' => $accountGateway,
 | |
|             'acceptedCreditCardTypes' => $acceptedCreditCardTypes,
 | |
|             'paymentType' => $paymentType,
 | |
|             'countries' => Cache::get('countries'),
 | |
|             'currencyId' => $client->getCurrencyId(),
 | |
|             'currencyCode' => $client->currency ? $client->currency->code : ($account->currency ? $account->currency->code : 'USD'),
 | |
|             'account' => $client->account,
 | |
|             'clientFontUrl' => $client->account->getFontsUrl(),
 | |
|             'showAddress' => $accountGateway->show_address,
 | |
|         ];
 | |
| 
 | |
|         if ($paymentType == PAYMENT_TYPE_STRIPE_ACH) {
 | |
|             $data['currencies'] = Cache::get('currencies');
 | |
|         }
 | |
| 
 | |
|         if ($gateway->id == GATEWAY_BRAINTREE) {
 | |
|             $data['braintreeClientToken'] = $this->paymentService->getBraintreeClientToken($account);
 | |
|         }
 | |
| 
 | |
|         return View::make('payments.add_paymentmethod', $data);
 | |
|     }
 | |
| 
 | |
|     public function show_license_payment()
 | |
|     {
 | |
|         if (Input::has('return_url')) {
 | |
|             Session::set('return_url', Input::get('return_url'));
 | |
|         }
 | |
| 
 | |
|         if (Input::has('affiliate_key')) {
 | |
|             if ($affiliate = Affiliate::where('affiliate_key', '=', Input::get('affiliate_key'))->first()) {
 | |
|                 Session::set('affiliate_id', $affiliate->id);
 | |
|             }
 | |
|         }
 | |
| 
 | |
|         if (Input::has('product_id')) {
 | |
|             Session::set('product_id', Input::get('product_id'));
 | |
|         } else if (!Session::has('product_id')) {
 | |
|             Session::set('product_id', PRODUCT_ONE_CLICK_INSTALL);
 | |
|         }
 | |
| 
 | |
|         if (!Session::get('affiliate_id')) {
 | |
|             return Utils::fatalError();
 | |
|         }
 | |
| 
 | |
|         if (Utils::isNinjaDev() && Input::has('test_mode')) {
 | |
|             Session::set('test_mode', Input::get('test_mode'));
 | |
|         }
 | |
| 
 | |
|         $account = $this->accountRepo->getNinjaAccount();
 | |
|         $account->load('account_gateways.gateway');
 | |
|         $accountGateway = $account->getGatewayByType(PAYMENT_TYPE_STRIPE_CREDIT_CARD);
 | |
|         $gateway = $accountGateway->gateway;
 | |
|         $acceptedCreditCardTypes = $accountGateway->getCreditcardTypes();
 | |
| 
 | |
|         $affiliate = Affiliate::find(Session::get('affiliate_id'));
 | |
| 
 | |
|         $data = [
 | |
|             'showBreadcrumbs' => false,
 | |
|             'hideHeader' => true,
 | |
|             'url' => 'license',
 | |
|             'amount' => $affiliate->price,
 | |
|             'client' => false,
 | |
|             'contact' => false,
 | |
|             'gateway' => $gateway,
 | |
|             'account' => $account,
 | |
|             'accountGateway' => $accountGateway,
 | |
|             'acceptedCreditCardTypes' => $acceptedCreditCardTypes,
 | |
|             'countries' => Cache::get('countries'),
 | |
|             'currencyId' => 1,
 | |
|             'currencyCode' => 'USD',
 | |
|             'paymentTitle' => $affiliate->payment_title,
 | |
|             'paymentSubtitle' => $affiliate->payment_subtitle,
 | |
|             'showAddress' => true,
 | |
|         ];
 | |
| 
 | |
|         return View::make('payments.add_paymentmethod', $data);
 | |
|     }
 | |
| 
 | |
|     public function do_license_payment()
 | |
|     {
 | |
|         $testMode = Session::get('test_mode') === 'true';
 | |
| 
 | |
|         $rules = array(
 | |
|             'first_name' => 'required',
 | |
|             'last_name' => 'required',
 | |
|             'card_number' => 'required',
 | |
|             'expiration_month' => 'required',
 | |
|             'expiration_year' => 'required',
 | |
|             'cvv' => 'required',
 | |
|             'address1' => 'required',
 | |
|             'city' => 'required',
 | |
|             'state' => 'required',
 | |
|             'postal_code' => 'required',
 | |
|             'country_id' => 'required',
 | |
|         );
 | |
| 
 | |
|         $validator = Validator::make(Input::all(), $rules);
 | |
| 
 | |
|         if ($validator->fails()) {
 | |
|             return Redirect::to('license')
 | |
|                 ->withErrors($validator)
 | |
|                 ->withInput();
 | |
|         }
 | |
| 
 | |
|         $account = $this->accountRepo->getNinjaAccount();
 | |
|         $account->load('account_gateways.gateway');
 | |
|         $accountGateway = $account->getGatewayByType(PAYMENT_TYPE_STRIPE_CREDIT_CARD);
 | |
| 
 | |
|         try {
 | |
|             $affiliate = Affiliate::find(Session::get('affiliate_id'));
 | |
| 
 | |
|             if ($testMode) {
 | |
|                 $ref = 'TEST_MODE';
 | |
|             } else {
 | |
|                 $gateway = $this->paymentService->createGateway($accountGateway);
 | |
|                 $details = self::getLicensePaymentDetails(Input::all(), $affiliate);
 | |
|                 $response = $gateway->purchase($details)->send();
 | |
|                 $ref = $response->getTransactionReference();
 | |
| 
 | |
|                 if (!$response->isSuccessful() || !$ref) {
 | |
|                     $this->error('License', $response->getMessage(), $accountGateway);
 | |
|                     return Redirect::to('license')->withInput();
 | |
|                 }
 | |
|             }
 | |
| 
 | |
|             $licenseKey = Utils::generateLicense();
 | |
| 
 | |
|             $license = new License();
 | |
|             $license->first_name = Input::get('first_name');
 | |
|             $license->last_name = Input::get('last_name');
 | |
|             $license->email = Input::get('email');
 | |
|             $license->transaction_reference = $ref;
 | |
|             $license->license_key = $licenseKey;
 | |
|             $license->affiliate_id = Session::get('affiliate_id');
 | |
|             $license->product_id = Session::get('product_id');
 | |
|             $license->save();
 | |
| 
 | |
|             $data = [
 | |
|                 'message' => $affiliate->payment_subtitle,
 | |
|                 'license' => $licenseKey,
 | |
|                 'hideHeader' => true,
 | |
|                 'productId' => $license->product_id,
 | |
|                 'price' => $affiliate->price,
 | |
|             ];
 | |
| 
 | |
|             $name = "{$license->first_name} {$license->last_name}";
 | |
|             $this->contactMailer->sendLicensePaymentConfirmation($name, $license->email, $affiliate->price, $license->license_key, $license->product_id);
 | |
| 
 | |
|             if (Session::has('return_url')) {
 | |
|                 $data['redirectTo'] = Session::get('return_url')."?license_key={$license->license_key}&product_id=".Session::get('product_id');
 | |
|                 $data['message'] = "Redirecting to " . Session::get('return_url');
 | |
|             }
 | |
| 
 | |
|             return View::make('public.license', $data);
 | |
|         } catch (\Exception $e) {
 | |
|             $this->error('License-Uncaught', false, $accountGateway, $e);
 | |
|             return Redirect::to('license')->withInput();
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     public function claim_license()
 | |
|     {
 | |
|         $licenseKey = Input::get('license_key');
 | |
|         $productId = Input::get('product_id', PRODUCT_ONE_CLICK_INSTALL);
 | |
| 
 | |
|         $license = License::where('license_key', '=', $licenseKey)
 | |
|                     ->where('is_claimed', '<', 5)
 | |
|                     ->where('product_id', '=', $productId)
 | |
|                     ->first();
 | |
| 
 | |
|         if ($license) {
 | |
|             if ($license->transaction_reference != 'TEST_MODE') {
 | |
|                 $license->is_claimed = $license->is_claimed + 1;
 | |
|                 $license->save();
 | |
|             }
 | |
| 
 | |
|             return $productId == PRODUCT_INVOICE_DESIGNS ? file_get_contents(storage_path() . '/invoice_designs.txt') : 'valid';
 | |
|         } else {
 | |
|             return 'invalid';
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     public function do_payment($invitationKey, $onSite = true, $useToken = false, $sourceId = false)
 | |
|     {
 | |
|         $invitation = Invitation::with('invoice.invoice_items', 'invoice.client.currency', 'invoice.client.account.currency', 'invoice.client.account.account_gateways.gateway')->where('invitation_key', '=', $invitationKey)->firstOrFail();
 | |
|         $invoice = $invitation->invoice;
 | |
|         $client = $invoice->client;
 | |
|         $account = $client->account;
 | |
|         $paymentType = Session::get($invitation->id . 'payment_type');
 | |
|         $accountGateway = $account->getGatewayByType($paymentType);
 | |
| 
 | |
| 
 | |
|         $rules = [
 | |
|             'first_name' => 'required',
 | |
|             'last_name' => 'required',
 | |
|         ];
 | |
| 
 | |
|         if ( ! Input::get('stripeToken') && ! Input::get('payment_method_nonce') && !(Input::get('plaidPublicToken') && Input::get('plaidAccountId'))) {
 | |
|             $rules = array_merge(
 | |
|                 $rules,
 | |
|                 [
 | |
|                     'card_number' => 'required',
 | |
|                     'expiration_month' => 'required',
 | |
|                     'expiration_year' => 'required',
 | |
|                     'cvv' => 'required',
 | |
|                 ]
 | |
|             );
 | |
|         }
 | |
| 
 | |
|         if ($accountGateway->show_address) {
 | |
|             $rules = array_merge($rules, [
 | |
|                 'address1' => 'required',
 | |
|                 'city' => 'required',
 | |
|                 'state' => 'required',
 | |
|                 'postal_code' => 'required',
 | |
|                 'country_id' => 'required',
 | |
|             ]);
 | |
|         }
 | |
| 
 | |
|         if ($onSite) {
 | |
|             $validator = Validator::make(Input::all(), $rules);
 | |
| 
 | |
|             if ($validator->fails()) {
 | |
|                 return Redirect::to('payment/'.$invitationKey)
 | |
|                     ->withErrors($validator)
 | |
|                     ->withInput(Request::except('cvv'));
 | |
|             }
 | |
| 
 | |
|             if ($accountGateway->update_address) {
 | |
|                 $client->address1 = trim(Input::get('address1'));
 | |
|                 $client->address2 = trim(Input::get('address2'));
 | |
|                 $client->city = trim(Input::get('city'));
 | |
|                 $client->state = trim(Input::get('state'));
 | |
|                 $client->postal_code = trim(Input::get('postal_code'));
 | |
|                 $client->country_id = Input::get('country_id');
 | |
|                 $client->save();
 | |
|             }
 | |
|         }
 | |
| 
 | |
|         try {
 | |
|             // For offsite payments send the client's details on file
 | |
|             // If we're using a token then we don't need to send any other data
 | |
|             if (!$onSite || $useToken) {
 | |
|                 $data = false;
 | |
|             } else {
 | |
|                 $data = Input::all();
 | |
|             }
 | |
| 
 | |
|             $gateway = $this->paymentService->createGateway($accountGateway);
 | |
|             $details = $this->paymentService->getPaymentDetails($invitation, $accountGateway, $data);
 | |
| 
 | |
|             // check if we're creating/using a billing token
 | |
|             if ($accountGateway->gateway_id == GATEWAY_STRIPE) {
 | |
|                 if ($useToken) {
 | |
|                     $details['customerReference'] = $client->getGatewayToken();
 | |
|                     unset($details['token']);
 | |
|                     if ($sourceId) {
 | |
|                         $details['cardReference'] = $sourceId;
 | |
|                     }
 | |
|                 } elseif ($account->token_billing_type_id == TOKEN_BILLING_ALWAYS || Input::get('token_billing') || $paymentType == PAYMENT_TYPE_STRIPE_ACH) {
 | |
|                     $token = $this->paymentService->createToken($gateway, $details, $accountGateway, $client, $invitation->contact_id, $customerReference/* return parameter */);
 | |
|                     if ($token) {
 | |
|                         $details['token'] = $token;
 | |
|                         $details['customerReference'] = $customerReference;
 | |
| 
 | |
|                         if ($paymentType == PAYMENT_TYPE_STRIPE_ACH && empty(Input::get('plaidPublicToken')) ) {
 | |
|                             // The user needs to complete verification
 | |
|                             Session::flash('message', trans('texts.bank_account_verification_next_steps'));
 | |
|                             return Redirect::to('/client/paymentmethods');
 | |
|                         }
 | |
|                     } else {
 | |
|                         $this->error('Token-No-Ref', $this->paymentService->lastError, $accountGateway);
 | |
|                         return Redirect::to('payment/'.$invitationKey)->withInput(Request::except('cvv'));
 | |
|                     }
 | |
|                 }
 | |
|             } elseif ($accountGateway->gateway_id == GATEWAY_BRAINTREE) {
 | |
|                 if ($token = Input::get('payment_method_nonce')) {
 | |
|                     $details['token'] = $token;
 | |
|                     unset($details['card']);
 | |
|                 }
 | |
| 
 | |
|                 if ($useToken) {
 | |
|                     $details['customerId'] = $customerId = $client->getGatewayToken();
 | |
|                     if (!$sourceId) {
 | |
|                         $customer = $gateway->findCustomer($customerId)->send();
 | |
|                         $details['paymentMethodToken'] = $customer->getData()->paymentMethods[0]->token;
 | |
|                     } else {
 | |
|                         $details['paymentMethodToken'] = $sourceId;
 | |
|                     }
 | |
|                     unset($details['token']);
 | |
|                 } elseif ($account->token_billing_type_id == TOKEN_BILLING_ALWAYS || Input::get('token_billing')) {
 | |
|                     $token = $this->paymentService->createToken($gateway, $details, $accountGateway, $client, $invitation->contact_id, $customerReference/* return parameter */);
 | |
|                     if ($token) {
 | |
|                         $details['paymentMethodToken'] = $token;
 | |
|                         $details['customerId'] = $customerReference;
 | |
|                         unset($details['token']);
 | |
|                     } else {
 | |
|                         $this->error('Token-No-Ref', $this->paymentService->lastError, $accountGateway);
 | |
|                         return Redirect::to('payment/'.$invitationKey)->withInput(Request::except('cvv'));
 | |
|                     }
 | |
|                 }
 | |
|             }
 | |
| 
 | |
|             $response = $gateway->purchase($details)->send();
 | |
| 
 | |
| 
 | |
|             if ($accountGateway->gateway_id == GATEWAY_EWAY) {
 | |
|                 $ref = $response->getData()['AccessCode'];
 | |
|             } elseif ($accountGateway->gateway_id == GATEWAY_TWO_CHECKOUT) {
 | |
|                 $ref = $response->getData()['cart_order_id'];
 | |
|             } elseif ($accountGateway->gateway_id == GATEWAY_PAYFAST) {
 | |
|                 $ref = $response->getData()['m_payment_id'];
 | |
|             } elseif ($accountGateway->gateway_id == GATEWAY_GOCARDLESS) {
 | |
|                 $ref = $response->getData()['signature'];
 | |
|             } elseif ($accountGateway->gateway_id == GATEWAY_CYBERSOURCE) {
 | |
|                 $ref = $response->getData()['transaction_uuid'];
 | |
|             } else {
 | |
|                 $ref = $response->getTransactionReference();
 | |
|             }
 | |
| 
 | |
|             if (!$ref) {
 | |
|                 $this->error('No-Ref', $response->getMessage(), $accountGateway);
 | |
| 
 | |
|                 if ($onSite) {
 | |
|                     return Redirect::to('payment/'.$invitationKey)
 | |
|                             ->withInput(Request::except('cvv'));
 | |
|                 } else {
 | |
|                     return Redirect::to('view/'.$invitationKey);
 | |
|                 }
 | |
|             }
 | |
| 
 | |
|             if ($response->isSuccessful()) {
 | |
|                 $payment = $this->paymentService->createPayment($invitation, $accountGateway, $ref, null, $details, $response);
 | |
|                 Session::flash('message', trans('texts.applied_payment'));
 | |
| 
 | |
|                 if ($account->account_key == NINJA_ACCOUNT_KEY) {
 | |
|                     Session::flash('trackEventCategory', '/account');
 | |
|                     Session::flash('trackEventAction', '/buy_pro_plan');
 | |
|                 }
 | |
| 
 | |
|                 return Redirect::to('view/'.$payment->invitation->invitation_key);
 | |
|             } elseif ($response->isRedirect()) {
 | |
| 
 | |
|                 $invitation->transaction_reference = $ref;
 | |
|                 $invitation->save();
 | |
|                 Session::put('transaction_reference', $ref);
 | |
|                 Session::save();
 | |
|                 $response->redirect();
 | |
|             } else {
 | |
|                 $this->error('Unknown', $response->getMessage(), $accountGateway);
 | |
|                 if ($onSite) {
 | |
|                     return Redirect::to('payment/'.$invitationKey)->withInput(Request::except('cvv'));
 | |
|                 } else {
 | |
|                     return Redirect::to('view/'.$invitationKey);
 | |
|                 }
 | |
|             }
 | |
|         } catch (\Exception $e) {
 | |
|             $this->error('Uncaught', false, $accountGateway, $e);
 | |
|             if ($onSite) {
 | |
|                 return Redirect::to('payment/'.$invitationKey)->withInput(Request::except('cvv'));
 | |
|             } else {
 | |
|                 return Redirect::to('view/'.$invitationKey);
 | |
|             }
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     public function offsite_payment()
 | |
|     {
 | |
|         $payerId = Request::query('PayerID');
 | |
|         $token = Request::query('token');
 | |
| 
 | |
|         if (!$token) {
 | |
|             $token = Session::pull('transaction_reference');
 | |
|         }
 | |
|         if (!$token) {
 | |
|             return redirect(NINJA_WEB_URL);
 | |
|         }
 | |
| 
 | |
|         $invitation = Invitation::with('invoice.client.currency', 'invoice.client.account.account_gateways.gateway')->where('transaction_reference', '=', $token)->firstOrFail();
 | |
|         $invoice = $invitation->invoice;
 | |
|         $client = $invoice->client;
 | |
|         $account = $client->account;
 | |
| 
 | |
|         if ($payerId) {
 | |
|             $paymentType = PAYMENT_TYPE_PAYPAL;
 | |
|         } else {
 | |
|             $paymentType = Session::get($invitation->id . 'payment_type');
 | |
|         }
 | |
|         if (!$paymentType) {
 | |
|             $this->error('No-Payment-Type', false, false);
 | |
|             return Redirect::to($invitation->getLink());
 | |
|         }
 | |
|         $accountGateway = $account->getGatewayByType($paymentType);
 | |
|         $gateway = $this->paymentService->createGateway($accountGateway);
 | |
| 
 | |
|         // Check for Dwolla payment error
 | |
|         if ($accountGateway->isGateway(GATEWAY_DWOLLA) && Input::get('error')) {
 | |
|             $this->error('Dwolla', Input::get('error_description'), $accountGateway);
 | |
|             return Redirect::to($invitation->getLink());
 | |
|         }
 | |
| 
 | |
|         // PayFast transaction referencce
 | |
|         if ($accountGateway->isGateway(GATEWAY_PAYFAST) && Request::has('pt')) {
 | |
|             $token = Request::query('pt');
 | |
|         }
 | |
| 
 | |
|         try {
 | |
|             if ($accountGateway->isGateway(GATEWAY_CYBERSOURCE)) {
 | |
|                 if (Input::get('decision') == 'ACCEPT') {
 | |
|                     $payment = $this->paymentService->createPayment($invitation, $accountGateway, $token, $payerId);
 | |
|                     Session::flash('message', trans('texts.applied_payment'));
 | |
|                 } else {
 | |
|                     Session::flash('error', Input::get('message'));
 | |
|                 }
 | |
|                 return Redirect::to($invitation->getLink());
 | |
|             } elseif (method_exists($gateway, 'completePurchase') 
 | |
|                 && !$accountGateway->isGateway(GATEWAY_TWO_CHECKOUT)
 | |
|                 && !$accountGateway->isGateway(GATEWAY_CHECKOUT_COM)) {
 | |
|                 $details = $this->paymentService->getPaymentDetails($invitation, $accountGateway);
 | |
| 
 | |
|                 $response = $this->paymentService->completePurchase($gateway, $accountGateway, $details, $token);
 | |
| 
 | |
|                 $ref = $response->getTransactionReference() ?: $token;
 | |
| 
 | |
|                 if ($response->isCancelled()) {
 | |
|                     // do nothing
 | |
|                 } elseif ($response->isSuccessful()) {
 | |
|                     $payment = $this->paymentService->createPayment($invitation, $accountGateway, $ref, $payerId, $details, $purchaseResponse);
 | |
|                     Session::flash('message', trans('texts.applied_payment'));
 | |
|                 } else {
 | |
|                     $this->error('offsite', $response->getMessage(), $accountGateway);
 | |
|                 }
 | |
|                 return Redirect::to($invitation->getLink());
 | |
|             } else {
 | |
|                 $payment = $this->paymentService->createPayment($invitation, $accountGateway, $token, $payerId);
 | |
|                 Session::flash('message', trans('texts.applied_payment'));
 | |
|                 return Redirect::to($invitation->getLink());
 | |
|             }
 | |
|         } catch (\Exception $e) {
 | |
|             $this->error('Offsite-uncaught', false, $accountGateway, $e);
 | |
|             return Redirect::to($invitation->getLink());
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     public function store(CreatePaymentRequest $request)
 | |
|     {
 | |
|         $input = $request->input();
 | |
|         
 | |
|         if(!$this->checkUpdatePermission($input, $response)){
 | |
|             return $response;
 | |
|         }
 | |
|         
 | |
|         $input['invoice_id'] = Invoice::getPrivateId($input['invoice']);
 | |
|         $input['client_id'] = Client::getPrivateId($input['client']);
 | |
|         $payment = $this->paymentRepo->save($input);
 | |
| 
 | |
|         if (Input::get('email_receipt')) {
 | |
|             $this->contactMailer->sendPaymentConfirmation($payment);
 | |
|             Session::flash('message', trans('texts.created_payment_emailed_client'));
 | |
|         } else {
 | |
|             Session::flash('message', trans('texts.created_payment'));
 | |
|         }
 | |
| 
 | |
|         return redirect()->to($payment->client->getRoute());
 | |
|     }
 | |
| 
 | |
|     public function update(UpdatePaymentRequest $request)
 | |
|     {
 | |
|         $input = $request->input();
 | |
|                 
 | |
|         if(!$this->checkUpdatePermission($input, $response)){
 | |
|             return $response;
 | |
|         }
 | |
|         
 | |
|         $payment = $this->paymentRepo->save($input);
 | |
| 
 | |
|         Session::flash('message', trans('texts.updated_payment'));
 | |
| 
 | |
|         return redirect()->to($payment->getRoute());
 | |
|     }
 | |
| 
 | |
|     public function bulk()
 | |
|     {
 | |
|         $action = Input::get('action');
 | |
|         $amount = Input::get('amount');
 | |
|         $ids = Input::get('public_id') ? Input::get('public_id') : Input::get('ids');
 | |
|         $count = $this->paymentService->bulk($ids, $action, array('amount'=>$amount));
 | |
| 
 | |
|         if ($count > 0) {
 | |
|             $message = Utils::pluralize($action=='refund'?'refunded_payment':$action.'d_payment', $count);
 | |
|             Session::flash('message', $message);
 | |
|         }
 | |
| 
 | |
|         return Redirect::to('payments');
 | |
|     }
 | |
| 
 | |
|     private function error($type, $error, $accountGateway = false, $exception = false)
 | |
|     {
 | |
|         $message = '';
 | |
|         if ($accountGateway && $accountGateway->gateway) {
 | |
|             $message = $accountGateway->gateway->name . ': ';
 | |
|         }
 | |
|         $message .= $error ?: trans('texts.payment_error');
 | |
| 
 | |
|         Session::flash('error', $message);
 | |
|         Utils::logError("Payment Error [{$type}]: " . ($exception ? Utils::getErrorString($exception) : $message), 'PHP', true);
 | |
|     }
 | |
| 
 | |
|     public function getBankInfo($routingNumber) {
 | |
|         if (strlen($routingNumber) != 9 || !preg_match('/\d{9}/', $routingNumber)) {
 | |
|             return response()->json([
 | |
|                 'message' => 'Invalid routing number',
 | |
|             ], 400);
 | |
|         }
 | |
| 
 | |
|         $data = static::getBankData($routingNumber);
 | |
| 
 | |
|         if (is_string($data)) {
 | |
|             return response()->json([
 | |
|                 'message' => $data,
 | |
|             ], 500);
 | |
|         } elseif (!empty($data)) {
 | |
|             return $data;
 | |
|         }
 | |
|         
 | |
|         return response()->json([
 | |
|             'message' => 'Bank not found',
 | |
|         ], 404);
 | |
|     }
 | |
| 
 | |
|     public static function getBankData($routingNumber) {
 | |
|         $cached = Cache::get('bankData:'.$routingNumber);
 | |
| 
 | |
|         if ($cached != null) {
 | |
|             return $cached == false ? null : $cached;
 | |
|         }
 | |
| 
 | |
|         $dataPath = base_path('vendor/gatepay/FedACHdir/FedACHdir.txt');
 | |
| 
 | |
|         if (!file_exists($dataPath) || !$size = filesize($dataPath)) {
 | |
|             return 'Invalid data file';
 | |
|         }
 | |
| 
 | |
|         $lineSize = 157;
 | |
|         $numLines = $size/$lineSize;
 | |
| 
 | |
|         if ($numLines % 1 != 0) {
 | |
|             // The number of lines should be an integer
 | |
|             return 'Invalid data file';
 | |
|         }
 | |
| 
 | |
|         // Format: http://www.sco.ca.gov/Files-21C/Bank_Master_Interface_Information_Package.pdf
 | |
|         $file = fopen($dataPath, 'r');
 | |
| 
 | |
|         // Binary search
 | |
|         $low = 0;
 | |
|         $high = $numLines - 1;
 | |
|         while ($low <= $high) {
 | |
|             $mid = floor(($low + $high) / 2);
 | |
| 
 | |
|             fseek($file, $mid * $lineSize);
 | |
|             $thisNumber = fread($file, 9);
 | |
| 
 | |
|             if ($thisNumber > $routingNumber) {
 | |
|                 $high = $mid - 1;
 | |
|             } else if ($thisNumber < $routingNumber) {
 | |
|                 $low = $mid + 1;
 | |
|             } else {
 | |
|                 $data = array('routing_number' => $thisNumber);
 | |
|                 fseek($file, 26, SEEK_CUR);
 | |
|                 $data['name'] = trim(fread($file, 36));
 | |
|                 $data['address'] = trim(fread($file, 36));
 | |
|                 $data['city'] = trim(fread($file, 20));
 | |
|                 $data['state'] = fread($file, 2);
 | |
|                 $data['zip'] = fread($file, 5).'-'.fread($file, 4);
 | |
|                 $data['phone'] = fread($file, 10);
 | |
|                 break;
 | |
|             }
 | |
|         }
 | |
| 
 | |
|         if (!empty($data)) {
 | |
|             Cache::put('bankData:'.$routingNumber, $data, 5);
 | |
|             return $data;
 | |
|         } else {
 | |
|             Cache::put('bankData:'.$routingNumber, false, 5);
 | |
|             return null;
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     public function handlePaymentWebhook($accountKey, $gatewayId)
 | |
|     {
 | |
|         $gatewayId = intval($gatewayId);
 | |
| 
 | |
|         if ($gatewayId != GATEWAY_STRIPE) {
 | |
|             return response()->json([
 | |
|                 'message' => 'Unsupported gateway',
 | |
|             ], 404);
 | |
|         }
 | |
| 
 | |
|         $account = Account::where('accounts.account_key', '=', $accountKey)->first();
 | |
| 
 | |
|         if (!$account) {
 | |
|             return response()->json([
 | |
|                 'message' => 'Unknown account',
 | |
|             ], 404);
 | |
|         }
 | |
| 
 | |
|         $eventId = Input::get('id');
 | |
|         $eventType= Input::get('type');
 | |
| 
 | |
|         if (!$eventId) {
 | |
|             return response()->json([
 | |
|                 'message' => 'Missing event id',
 | |
|             ], 400);
 | |
|         }
 | |
| 
 | |
|         if (!$eventType) {
 | |
|             return response()->json([
 | |
|                 'message' => 'Missing event type',
 | |
|             ], 400);
 | |
|         }
 | |
| 
 | |
|         if (!in_array($eventType, array('charge.failed', 'charge.succeeded'))) {
 | |
|             return array('message' => 'Ignoring event');
 | |
|         }
 | |
| 
 | |
|         $accountGateway = $account->getGatewayConfig(intval($gatewayId));
 | |
| 
 | |
|         // Fetch the event directly from Stripe for security
 | |
|         $eventDetails = $this->paymentService->makeStripeCall($accountGateway, 'GET', 'events/'.$eventId);
 | |
| 
 | |
|         if (is_string($eventDetails) || !$eventDetails) {
 | |
|             return response()->json([
 | |
|                 'message' => $eventDetails ? $eventDetails : 'Could not get event details.',
 | |
|             ], 500);
 | |
|         }
 | |
| 
 | |
|         if ($eventType != $eventDetails['type']) {
 | |
|             return response()->json([
 | |
|                 'message' => 'Event type mismatch',
 | |
|             ], 400);
 | |
|         }
 | |
| 
 | |
|         if (!$eventDetails['pending_webhooks']) {
 | |
|             return response()->json([
 | |
|                 'message' => 'This is not a pending event',
 | |
|             ], 400);
 | |
|         }
 | |
| 
 | |
|         $charge = $eventDetails['data']['object'];
 | |
|         $transactionRef = $charge['id'];
 | |
| 
 | |
|         $payment = Payment::where('transaction_reference', '=', $transactionRef)->first();
 | |
| 
 | |
|         if (!$payment) {
 | |
|             return array('message' => 'Unknown payment');
 | |
|         }
 | |
| 
 | |
|         if ($eventType == 'charge.failed') {
 | |
|             if (!$payment->isFailed() {
 | |
|                 $payment->markFailed($charge['failure_message']);
 | |
|                 $this->userMailer->sendNotification($payment->user, $payment->invoice, 'payment_failed', $payment);
 | |
|             }
 | |
|         } elseif ($eventType == 'charge.succeeded') {
 | |
|             $payment->markComplete();
 | |
|         }
 | |
| 
 | |
|         return array('message' => 'Processed successfully');
 | |
|     }
 | |
| }
 |