[civicrm-core.git] / CRM / Core / Payment / Elavon.php

<?php
/*
 +----------------------------------------------------------------------------+
 | Elavon (Nova) Virtual Merchant Core Payment Module for CiviCRM version 4.6 |
 +----------------------------------------------------------------------------+
 | Licensed to CiviCRM under the Academic Free License version 3.0            |
 |                                                                            |
 | Written & Contributed by Eileen McNaughton - Nov March 2008                |
 +----------------------------------------------------------------------------+
*/

/**
 * -----------------------------------------------------------------------------------------------
 * The basic functionality of this processor is that variables from the $params object are transformed
 * into xml. The xml is submitted to the processor's https site
 * using curl and the response is translated back into an array using the processor's function.
 *
 * If an array ($params) is returned to the calling function the values from
 * the array are merged into the calling functions array.
 *
 * If an result of class error is returned it is treated as a failure. No error denotes a success. Be
 * WARY of this when coding
 *
 * -----------------------------------------------------------------------------------------------
 **/
class CRM_Core_Payment_Elavon extends CRM_Core_Payment {
  // (not used, implicit in the API, might need to convert?)
  const
    CHARSET = 'UFT-8';

  /**
   * We only need one instance of this object. So we use the singleton
   * pattern and cache the instance in this variable
   *
   * @var object
   * @static
   */
  static private $_singleton = NULL;

  /**********************************************************
   * Constructor
   *
   * @param string $mode
   *   The mode of operation: live or test.
   *
   * @param $paymentProcessor
   *
   * @return \CRM_Core_Payment_Elavon *******************************************************
   */
  public function __construct($mode, &$paymentProcessor) {
    // live or test
    $this->_mode = $mode;
    $this->_paymentProcessor = $paymentProcessor;
    $this->_processorName = ts('Elavon');
  }

  /**********************************************************
   * This function is set up and put here to make the mapping of fields
   * from the params object  as visually clear as possible for easy editing
   *
   *  Comment out irrelevant fields
   **********************************************************/
  public function mapProcessorFieldstoParams($params) {

    /**********************************************************
     * compile array
     * Payment Processor field name fields from $params array
     **********************************************************/
    // credit card name
    $requestFields['ssl_first_name'] = $params['billing_first_name'];
    // credit card name
    //$requestFields['ssl_middle_name']       = $params['billing_middle_name'];
    // credit card name
    $requestFields['ssl_last_name'] = $params['billing_last_name'];
    // contact name
    $requestFields['ssl_ship_to_first_name'] = $params['first_name'];
    // contact name
    $requestFields['ssl_ship_to_last_name'] = $params['last_name'];
    $requestFields['ssl_card_number'] = $params['credit_card_number'];
    $requestFields['ssl_amount'] = trim($params['amount']);
    $requestFields['ssl_exp_date'] = sprintf('%02d', (int) $params['month']) . substr($params['year'], 2, 2);;
    $requestFields['ssl_cvv2cvc2'] = $params['cvv2'];
    // CVV field passed to processor
    $requestFields['ssl_cvv2cvc2_indicator'] = "1";
    $requestFields['ssl_avs_address'] = $params['street_address'];
    $requestFields['ssl_city'] = $params['city'];
    $requestFields['ssl_state'] = $params['state_province'];
    $requestFields['ssl_avs_zip'] = $params['postal_code'];
    $requestFields['ssl_country'] = $params['country'];
    $requestFields['ssl_email'] = $params['email'];
    // 32 character string
    $requestFields['ssl_invoice_number'] = $params['invoiceID'];
    $requestFields['ssl_transaction_type'] = "CCSALE";
    $requestFields['ssl_description'] = empty($params['description']) ? "backoffice payment" : $params['description'];
    $requestFields['ssl_customer_number'] = substr($params['credit_card_number'], -4);
    // Added two lines below to allow commercial cards to go through as per page 15 of Elavon developer guide
    $requestFields['ssl_customer_code'] = '1111';
    $requestFields['ssl_salestax'] = 0.0;

    /************************************************************************************
     *  Fields available from civiCRM not implemented for Elavon
     *
     *  $params['qfKey'];
     *  $params['amount_other'];
     *  $params['ip_address'];
     *  $params['contributionType_name'  ];
     *  $params['contributionPageID'];
     *  $params['contributionType_accounting_code'];
     *  $params['amount_level'];
     *  $params['credit_card_type'];
     ************************************************************************************/
    return $requestFields;
  }

  /**********************************************************
   * This function sends request and receives response from
   * the processor
   **********************************************************/
  public function doDirectPayment(&$params) {
    if (isset($params['is_recur']) && $params['is_recur'] == TRUE) {
      CRM_Core_Error::fatal(ts('Elavon - recurring payments not implemented'));
    }

    if (!defined('CURLOPT_SSLCERT')) {
      CRM_Core_Error::fatal(ts('Elavon / Nova Virtual Merchant Gateway requires curl with SSL support'));
    }

    /*
         *Create the array of variables to be sent to the processor from the $params array
         * passed into this function
         */

    $requestFields = self::mapProcessorFieldstoParams($params);

    /*
         * define variables for connecting with the gateway
         */

    $requestFields['ssl_merchant_id'] = $this->_paymentProcessor['user_name'];
    $requestFields['ssl_user_id'] = $this->_paymentProcessor['password'];
    $requestFields['ssl_pin'] = $this->_paymentProcessor['signature'];
    $host = $this->_paymentProcessor['url_site'];

    if ($this->_mode == "test") {
      $requestFields['ssl_test_mode'] = "TRUE";
    }

    // Allow further manipulation of the arguments via custom hooks ..
    CRM_Utils_Hook::alterPaymentProcessorParams($this, $params, $requestFields);

    /**********************************************************
     * Check to see if we have a duplicate before we send
     **********************************************************/
    if ($this->_checkDupe($params['invoiceID'])) {
      return self::errorExit(9003, 'It appears that this transaction is a duplicate.  Have you already submitted the form once?  If so there may have been a connection problem.  Check your email for a receipt.  If you do not receive a receipt within 2 hours you can try your transaction again.  If you continue to have problems please contact the site administrator.');
    }

    /**********************************************************
     * Convert to XML using function below
     **********************************************************/
    $xml = self::buildXML($requestFields);

    /**********************************************************
     * Send to the payment processor using cURL
     **********************************************************/

    $chHost = $host . '?xmldata=' . $xml;

    $ch = curl_init($chHost);
    if (!$ch) {
      return self::errorExit(9004, 'Could not initiate connection to payment gateway');
    }

    curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, CRM_Core_BAO_Setting::getItem(CRM_Core_BAO_Setting::SYSTEM_PREFERENCES_NAME, 'verifySSL') ? 2 : 0);
    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, CRM_Core_BAO_Setting::getItem(CRM_Core_BAO_Setting::SYSTEM_PREFERENCES_NAME, 'verifySSL'));
    // return the result on success, FALSE on failure
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    curl_setopt($ch, CURLOPT_TIMEOUT, 36000);
    // set this for debugging -look for output in apache error log
    //curl_setopt ($ch,CURLOPT_VERBOSE,1 );
    // ensures any Location headers are followed
    if (ini_get('open_basedir') == '' && ini_get('safe_mode') == 'Off') {
      curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
    }

    /**********************************************************
     * Send the data out over the wire
     **********************************************************/
    $responseData = curl_exec($ch);

    /**********************************************************
     * See if we had a curl error - if so tell 'em and bail out
     *
     * NOTE: curl_error does not return a logical value (see its documentation), but
     *       a string, which is empty when there was no error.
     **********************************************************/
    if ((curl_errno($ch) > 0) || (strlen(curl_error($ch)) > 0)) {
      curl_close($ch);
      $errorNum = curl_errno($ch);
      $errorDesc = curl_error($ch);

      // Paranoia - in the unlikley event that 'curl' errno fails
      if ($errorNum == 0) {
        $errorNum = 9005;
      }

      // Paranoia - in the unlikley event that 'curl' error fails
      if (strlen($errorDesc) == 0) {
        $errorDesc = "Connection to payment gateway failed";
      }
      if ($errorNum = 60) {
        return self::errorExit($errorNum, "Curl error - " . $errorDesc . " Try this link for more information http://curl.haxx.se/docs/sslcerts.html");
      }

      return self::errorExit($errorNum, "Curl error - " . $errorDesc . " your key is located at " . $key . " the url is " . $host . " xml is " . $requestxml . " processor response = " . $processorResponse);
    }

    /**********************************************************
     * If null data returned - tell 'em and bail out
     *
     * NOTE: You will not necessarily get a string back, if the request failed for
     *       any reason, the return value will be the boolean false.
     **********************************************************/
    if (($responseData === FALSE) || (strlen($responseData) == 0)) {
      curl_close($ch);
      return self::errorExit(9006, "Error: Connection to payment gateway failed - no data returned.");
    }

    /**********************************************************
     * // If gateway returned no data - tell 'em and bail out
     **********************************************************/
    if (empty($responseData)) {
      curl_close($ch);
      return self::errorExit(9007, "Error: No data returned from payment gateway.");
    }

    /**********************************************************
     * // Success so far - close the curl and check the data
     **********************************************************/
    curl_close($ch);

    /**********************************************************
     * Payment successfully sent to gateway - process the response now
     **********************************************************/

    $processorResponse = self::decodeXMLResponse($responseData);
    /*success in test mode returns response "APPROVED"
         * test mode always returns trxn_id = 0
         * fix for CRM-2566
         **********************************************************/

    if ($processorResponse['errorCode']) {
      return self::errorExit(9010, "Error: [" . $processorResponse['errorCode'] . " " . $processorResponse['errorName'] . " " . $processorResponse['errorMessage'] . "] - from payment processor");
    }
    if ($processorResponse['ssl_result_message'] == "APPROVED") {
      if ($this->_mode == 'test') {
        $query = "SELECT MAX(trxn_id) FROM civicrm_contribution WHERE trxn_id LIKE 'test%'";
        $p = array();
        $trxn_id = strval(CRM_Core_Dao::singleValueQuery($query, $p));
        $trxn_id = str_replace('test', '', $trxn_id);
        $trxn_id = intval($trxn_id) + 1;
        $params['trxn_id'] = sprintf('test%08d', $trxn_id);
        return $params;
      }
      else {
        return self::errorExit(9099, "Error: [approval code related to test transaction but mode was " . $this->_mode);
      }
    }

    // transaction failed, print the reason
    if ($processorResponse['ssl_result_message'] != "APPROVAL") {
      return self::errorExit(9009, "Error: [" . $processorResponse['ssl_result_message'] . " " . $processorResponse['ssl_result'] . "] - from payment processor");
    }
    else {
      /*
             * Success !
             */

      if ($this->_mode == 'test') {
      }
      else {
        // 'trxn_id' is varchar(255) field. returned value is length 37
        $params['trxn_id'] = $processorResponse['ssl_txn_id'];
      }

      $params['trxn_result_code'] = $processorResponse['ssl_approval_code'] . "-Cvv2:" . $processorResponse['ssl_cvv2_response'] . "-avs:" . $processorResponse['ssl_avs_response'];

      return $params;
    }
  }
  // end function doDirectPayment

  /**
   * Checks to see if invoice_id already exists in db
   *
   * @param int $invoiceId
   *   The ID to check.
   *
   * @return bool
   *   True if ID exists, else false
   */
  public function _checkDupe($invoiceId) {
    $contribution = new CRM_Contribute_DAO_Contribution();
    $contribution->invoice_id = $invoiceId;
    return $contribution->find();
  }

  /**************************************************
   * Produces error message and returns from class
   **************************************************/
  public function &errorExit($errorCode = NULL, $errorMessage = NULL) {
    $e = CRM_Core_Error::singleton();
    if ($errorCode) {
      $e->push($errorCode, 0, NULL, $errorMessage);
    }
    else {
      $e->push(9000, 0, NULL, 'Unknown System Error.');
    }
    return $e;
  }

  /**************************************************
   * NOTE: 'doTransferCheckout' not implemented
   **************************************************/
  public function doTransferCheckout(&$params, $component) {
    CRM_Core_Error::fatal(ts('This function is not implemented'));
  }

  /********************************************************************************************
   * This public function checks to see if we have the right processor config values set
   *
   * NOTE: Called by Events and Contribute to check config params are set prior to trying
   *  register any credit card details
   *
   * @return null|string
   * @internal param string $mode the mode we are operating in (live or test) - not used
   *
   * returns string $errorMsg if any errors found - null if OK
   *
   ******************************************************************************************
   */
  //  function checkConfig( $mode )          // CiviCRM V1.9 Declaration
  // CiviCRM V2.0 Declaration
  public function checkConfig() {
    $errorMsg = array();

    if (empty($this->_paymentProcessor['user_name'])) {
      $errorMsg[] = ' ' . ts('ssl_merchant_id is not set for this payment processor');
    }

    if (empty($this->_paymentProcessor['url_site'])) {
      $errorMsg[] = ' ' . ts('URL is not set for this payment processor');
    }

    if (!empty($errorMsg)) {
      return implode('<p>', $errorMsg);
    }
    else {
      return NULL;
    }
  }
  //end check config
  /**
   * @param $requestFields
   *
   * @return string
   */
  public function buildXML($requestFields) {
    $xmlFieldLength['ssl_first_name'] = 15;
    // credit card name
    $xmlFieldLength['ssl_last_name'] = 15;
    // contact name
    $xmlFieldLength['ssl_ship_to_first_name'] = 15;
    // contact name
    $xmlFieldLength['ssl_ship_to_last_name'] = 15;
    $xmlFieldLength['ssl_card_number'] = 19;
    $xmlFieldLength['ssl_amount'] = 13;
    $xmlFieldLength['ssl_exp_date'] = 4;
    $xmlFieldLength['ssl_cvv2cvc2'] = 4;
    $xmlFieldLength['ssl_cvv2cvc2_indicator'] = 1;
    $xmlFieldLength['ssl_avs_address'] = 20;
    $xmlFieldLength['ssl_city'] = 20;
    $xmlFieldLength['ssl_state'] = 30;
    $xmlFieldLength['ssl_avs_zip'] = 9;
    $xmlFieldLength['ssl_country'] = 50;
    $xmlFieldLength['ssl_email'] = 100;
    // 32 character string
    $xmlFieldLength['ssl_invoice_number'] = 25;
    $xmlFieldLength['ssl_transaction_type'] = 20;
    $xmlFieldLength['ssl_description'] = 255;
    $xmlFieldLength['ssl_merchant_id'] = 15;
    $xmlFieldLength['ssl_user_id'] = 15;
    $xmlFieldLength['ssl_pin'] = 128;
    $xmlFieldLength['ssl_test_mode'] = 5;
    $xmlFieldLength['ssl_salestax'] = 10;
    $xmlFieldLength['ssl_customer_code'] = 17;
    $xmlFieldLength['ssl_customer_number'] = 25;

    $xml = '<txn>';
    foreach ($requestFields as $key => $value) {
      $xml .= '<' . $key . '>' . self::tidyStringforXML($value, $xmlFieldLength[$key]) . '</' . $key . '>';
    }
    $xml .= '</txn>';
    return $xml;
  }

  /**
   * @param $value
   * @param $fieldlength
   *
   * @return string
   */
  public function tidyStringforXML($value, $fieldlength) {
    // the xml is posted to a url so must not contain spaces etc. It also needs to be cut off at a certain
    // length to match the processor's field length. The cut needs to be made after spaces etc are
    // transformed but must not include a partial transformed character e.g. %20 must be in or out not half-way
    $xmlString = substr(rawurlencode($value), 0, $fieldlength);
    $lastPercent = strrpos($xmlString, '%');
    if ($lastPercent > $fieldlength - 3) {
      $xmlString = substr($xmlString, 0, $lastPercent);
    }
    return $xmlString;
  }

  /************************************************************************
   * Simple function to use in place of the 'simplexml_load_string' call.
   *
   * It returns the NodeValue for a given NodeName
   * or returns an empty string.
   ************************************************************************/
  public function GetNodeValue($NodeName, &$strXML) {
    $OpeningNodeName = "<" . $NodeName . ">";
    $ClosingNodeName = "</" . $NodeName . ">";

    $pos1 = stripos($strXML, $OpeningNodeName);
    $pos2 = stripos($strXML, $ClosingNodeName);

    if (($pos1 === FALSE) || ($pos2 === FALSE)) {

      return "";

    }

    $pos1 += strlen($OpeningNodeName);
    $len = $pos2 - $pos1;

    $return = substr($strXML, $pos1, $len);
    // check out rtn values for debug
    // echo " $NodeName &nbsp &nbsp $return <br>";
    return ($return);
  }

  /**
   * @param $Xml
   *
   * @return mixed
   */
  public function decodeXMLresponse($Xml) {

    /**
     * $xtr = simplexml_load_string($Xml) or die ("Unable to load XML string!");
     **/

    $processorResponse['ssl_result'] = self::GetNodeValue("ssl_result", $Xml);
    $processorResponse['ssl_result_message'] = self::GetNodeValue("ssl_result_message", $Xml);
    $processorResponse['ssl_txn_id'] = self::GetNodeValue("ssl_txn_id", $Xml);
    $processorResponse['ssl_cvv2_response'] = self::GetNodeValue("ssl_cvv2_response", $Xml);
    $processorResponse['ssl_avs_response'] = self::GetNodeValue("ssl_avs_response", $Xml);
    $processorResponse['ssl_approval_code'] = self::GetNodeValue("ssl_approval_code", $Xml);
    $processorResponse['errorCode'] = self::GetNodeValue("errorCode", $Xml);
    $processorResponse['errorName'] = self::GetNodeValue("errorName", $Xml);
    $processorResponse['errorMessage'] = self::GetNodeValue("errorMessage", $Xml);

    return $processorResponse;
  }
}
Commit	Line	Data
6a488035 TO	1	<?php
	2	/*
	3	+----------------------------------------------------------------------------+
39de6fd5	4	\| Elavon (Nova) Virtual Merchant Core Payment Module for CiviCRM version 4.6 \|
6a488035 TO	5	+----------------------------------------------------------------------------+
	6	\| Licensed to CiviCRM under the Academic Free License version 3.0 \|
	7	\| \|
	8	\| Written & Contributed by Eileen McNaughton - Nov March 2008 \|
	9	+----------------------------------------------------------------------------+
	10	*/
	11
	12	/**
353ffa53 TO	13	* -----------------------------------------------------------------------------------------------
	14	* The basic functionality of this processor is that variables from the $params object are transformed
	15	* into xml. The xml is submitted to the processor's https site
	16	* using curl and the response is translated back into an array using the processor's function.
	17	*
	18	* If an array ($params) is returned to the calling function the values from
	19	* the array are merged into the calling functions array.
	20	*
	21	* If an result of class error is returned it is treated as a failure. No error denotes a success. Be
	22	* WARY of this when coding
	23	*
	24	* -----------------------------------------------------------------------------------------------
6a488035 TO	25	**/
	26	class CRM_Core_Payment_Elavon extends CRM_Core_Payment {
	27	// (not used, implicit in the API, might need to convert?)
7da04cde	28	const
353ffa53	29	CHARSET = 'UFT-8';
6a488035 TO	30
	31	/**
	32	* We only need one instance of this object. So we use the singleton
	33	* pattern and cache the instance in this variable
	34	*
	35	* @var object
	36	* @static
	37	*/
	38	static private $_singleton = NULL;
	39
	40	/**********************************************************
	41	* Constructor
	42	*
6a0b768e TO	43	* @param string $mode
6a0b768e TO	44	* The mode of operation: live or test.
6a488035	45	*
77b97be7 EM	46	* @param $paymentProcessor
	47	*
	48	* @return \CRM_Core_Payment_Elavon *******************************************************
	49	*/
00be9182	50	public function __construct($mode, &$paymentProcessor) {
6a488035 TO	51	// live or test
	52	$this->_mode = $mode;
	53	$this->_paymentProcessor = $paymentProcessor;
	54	$this->_processorName = ts('Elavon');
	55	}
	56
6a488035 TO	57	/**********************************************************
	58	* This function is set up and put here to make the mapping of fields
	59	* from the params object as visually clear as possible for easy editing
	60	*
	61	* Comment out irrelevant fields
	62	**********************************************************/
00be9182	63	public function mapProcessorFieldstoParams($params) {
6a488035 TO	64
	65	/**********************************************************
	66	* compile array
	67	* Payment Processor field name fields from $params array
	68	**********************************************************/
	69	// credit card name
	70	$requestFields['ssl_first_name'] = $params['billing_first_name'];
	71	// credit card name
	72	//$requestFields['ssl_middle_name'] = $params['billing_middle_name'];
	73	// credit card name
	74	$requestFields['ssl_last_name'] = $params['billing_last_name'];
	75	// contact name
	76	$requestFields['ssl_ship_to_first_name'] = $params['first_name'];
	77	// contact name
	78	$requestFields['ssl_ship_to_last_name'] = $params['last_name'];
	79	$requestFields['ssl_card_number'] = $params['credit_card_number'];
b3dd98a5	80	$requestFields['ssl_amount'] = trim($params['amount']);
6a488035 TO	81	$requestFields['ssl_exp_date'] = sprintf('%02d', (int) $params['month']) . substr($params['year'], 2, 2);;
	82	$requestFields['ssl_cvv2cvc2'] = $params['cvv2'];
	83	// CVV field passed to processor
	84	$requestFields['ssl_cvv2cvc2_indicator'] = "1";
	85	$requestFields['ssl_avs_address'] = $params['street_address'];
	86	$requestFields['ssl_city'] = $params['city'];
	87	$requestFields['ssl_state'] = $params['state_province'];
	88	$requestFields['ssl_avs_zip'] = $params['postal_code'];
	89	$requestFields['ssl_country'] = $params['country'];
	90	$requestFields['ssl_email'] = $params['email'];
	91	// 32 character string
	92	$requestFields['ssl_invoice_number'] = $params['invoiceID'];
	93	$requestFields['ssl_transaction_type'] = "CCSALE";
ceb10dc7	94	$requestFields['ssl_description'] = empty($params['description']) ? "backoffice payment" : $params['description'];
6a488035	95	$requestFields['ssl_customer_number'] = substr($params['credit_card_number'], -4);
b3dd98a5 DL	96	// Added two lines below to allow commercial cards to go through as per page 15 of Elavon developer guide
	97	$requestFields['ssl_customer_code'] = '1111';
	98	$requestFields['ssl_salestax'] = 0.0;
	99
6a488035 TO	100	/************************************************************************************
	101	* Fields available from civiCRM not implemented for Elavon
	102	*
	103	* $params['qfKey'];
	104	* $params['amount_other'];
	105	* $params['ip_address'];
	106	* $params['contributionType_name' ];
	107	* $params['contributionPageID'];
	108	* $params['contributionType_accounting_code'];
	109	* $params['amount_level'];
	110	* $params['credit_card_type'];
	111	************************************************************************************/
	112	return $requestFields;
	113	}
	114
	115	/**********************************************************
	116	* This function sends request and receives response from
	117	* the processor
	118	**********************************************************/
00be9182	119	public function doDirectPayment(&$params) {
b3dd98a5	120	if (isset($params['is_recur']) && $params['is_recur'] == TRUE) {
6a488035 TO	121	CRM_Core_Error::fatal(ts('Elavon - recurring payments not implemented'));
	122	}
	123
	124	if (!defined('CURLOPT_SSLCERT')) {
	125	CRM_Core_Error::fatal(ts('Elavon / Nova Virtual Merchant Gateway requires curl with SSL support'));
	126	}
	127
	128	/*
	129	*Create the array of variables to be sent to the processor from the $params array
	130	* passed into this function
	131	*/
	132
	133	$requestFields = self::mapProcessorFieldstoParams($params);
	134
	135	/*
	136	* define variables for connecting with the gateway
	137	*/
	138
	139	$requestFields['ssl_merchant_id'] = $this->_paymentProcessor['user_name'];
b3dd98a5	140	$requestFields['ssl_user_id'] = $this->_paymentProcessor['password'];
6a488035 TO	141	$requestFields['ssl_pin'] = $this->_paymentProcessor['signature'];
	142	$host = $this->_paymentProcessor['url_site'];
	143
	144	if ($this->_mode == "test") {
	145	$requestFields['ssl_test_mode'] = "TRUE";
	146	}
	147
	148	// Allow further manipulation of the arguments via custom hooks ..
	149	CRM_Utils_Hook::alterPaymentProcessorParams($this, $params, $requestFields);
	150
	151	/**********************************************************
	152	* Check to see if we have a duplicate before we send
	153	**********************************************************/
	154	if ($this->_checkDupe($params['invoiceID'])) {
	155	return self::errorExit(9003, 'It appears that this transaction is a duplicate. Have you already submitted the form once? If so there may have been a connection problem. Check your email for a receipt. If you do not receive a receipt within 2 hours you can try your transaction again. If you continue to have problems please contact the site administrator.');
	156	}
	157
	158	/**********************************************************
	159	* Convert to XML using function below
	160	**********************************************************/
	161	$xml = self::buildXML($requestFields);
	162
	163	/**********************************************************
	164	* Send to the payment processor using cURL
	165	**********************************************************/
	166
	167	$chHost = $host . '?xmldata=' . $xml;
	168
	169	$ch = curl_init($chHost);
	170	if (!$ch) {
	171	return self::errorExit(9004, 'Could not initiate connection to payment gateway');
	172	}
	173
17c04b52	174	curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, CRM_Core_BAO_Setting::getItem(CRM_Core_BAO_Setting::SYSTEM_PREFERENCES_NAME, 'verifySSL') ? 2 : 0);
6a488035 TO	175	curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, CRM_Core_BAO_Setting::getItem(CRM_Core_BAO_Setting::SYSTEM_PREFERENCES_NAME, 'verifySSL'));
	176	// return the result on success, FALSE on failure
	177	curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
	178	curl_setopt($ch, CURLOPT_TIMEOUT, 36000);
	179	// set this for debugging -look for output in apache error log
	180	//curl_setopt ($ch,CURLOPT_VERBOSE,1 );
	181	// ensures any Location headers are followed
439b9688 LS	182	if (ini_get('open_basedir') == '' && ini_get('safe_mode') == 'Off') {
	183	curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
	184	}
6a488035 TO	185
	186	/**********************************************************
	187	* Send the data out over the wire
	188	**********************************************************/
	189	$responseData = curl_exec($ch);
	190
	191	/**********************************************************
	192	* See if we had a curl error - if so tell 'em and bail out
	193	*
	194	* NOTE: curl_error does not return a logical value (see its documentation), but
	195	* a string, which is empty when there was no error.
	196	**********************************************************/
	197	if ((curl_errno($ch) > 0) \|\| (strlen(curl_error($ch)) > 0)) {
	198	curl_close($ch);
	199	$errorNum = curl_errno($ch);
	200	$errorDesc = curl_error($ch);
	201
	202	// Paranoia - in the unlikley event that 'curl' errno fails
2aa397bc TO	203	if ($errorNum == 0) {
	204	$errorNum = 9005;
	205	}
6a488035 TO	206
6a488035 TO	207	// Paranoia - in the unlikley event that 'curl' error fails
2aa397bc TO	208	if (strlen($errorDesc) == 0) {
	209	$errorDesc = "Connection to payment gateway failed";
	210	}
6a488035 TO	211	if ($errorNum = 60) {
	212	return self::errorExit($errorNum, "Curl error - " . $errorDesc . " Try this link for more information http://curl.haxx.se/docs/sslcerts.html");
	213	}
	214
	215	return self::errorExit($errorNum, "Curl error - " . $errorDesc . " your key is located at " . $key . " the url is " . $host . " xml is " . $requestxml . " processor response = " . $processorResponse);
	216	}
	217
	218	/**********************************************************
	219	* If null data returned - tell 'em and bail out
	220	*
	221	* NOTE: You will not necessarily get a string back, if the request failed for
	222	* any reason, the return value will be the boolean false.
	223	**********************************************************/
	224	if (($responseData === FALSE) \|\| (strlen($responseData) == 0)) {
	225	curl_close($ch);
	226	return self::errorExit(9006, "Error: Connection to payment gateway failed - no data returned.");
	227	}
	228
	229	/**********************************************************
353ffa53	230	* // If gateway returned no data - tell 'em and bail out
6a488035 TO	231	**********************************************************/
	232	if (empty($responseData)) {
	233	curl_close($ch);
	234	return self::errorExit(9007, "Error: No data returned from payment gateway.");
	235	}
	236
	237	/**********************************************************
353ffa53	238	* // Success so far - close the curl and check the data
6a488035 TO	239	**********************************************************/
	240	curl_close($ch);
	241
	242	/**********************************************************
ceb10dc7	243	* Payment successfully sent to gateway - process the response now
6a488035 TO	244	**********************************************************/
	245
	246	$processorResponse = self::decodeXMLResponse($responseData);
	247	/*success in test mode returns response "APPROVED"
	248	* test mode always returns trxn_id = 0
	249	* fix for CRM-2566
	250	**********************************************************/
	251
6a488035 TO	252	if ($processorResponse['errorCode']) {
	253	return self::errorExit(9010, "Error: [" . $processorResponse['errorCode'] . " " . $processorResponse['errorName'] . " " . $processorResponse['errorMessage'] . "] - from payment processor");
	254	}
	255	if ($processorResponse['ssl_result_message'] == "APPROVED") {
	256	if ($this->_mode == 'test') {
353ffa53 TO	257	$query = "SELECT MAX(trxn_id) FROM civicrm_contribution WHERE trxn_id LIKE 'test%'";
	258	$p = array();
	259	$trxn_id = strval(CRM_Core_Dao::singleValueQuery($query, $p));
	260	$trxn_id = str_replace('test', '', $trxn_id);
	261	$trxn_id = intval($trxn_id) + 1;
6a488035 TO	262	$params['trxn_id'] = sprintf('test%08d', $trxn_id);
	263	return $params;
	264	}
	265	else {
	266	return self::errorExit(9099, "Error: [approval code related to test transaction but mode was " . $this->_mode);
	267	}
	268	}
	269
	270	// transaction failed, print the reason
	271	if ($processorResponse['ssl_result_message'] != "APPROVAL") {
	272	return self::errorExit(9009, "Error: [" . $processorResponse['ssl_result_message'] . " " . $processorResponse['ssl_result'] . "] - from payment processor");
	273	}
	274	else {
	275	/*
	276	* Success !
	277	*/
	278
353ffa53 TO	279	if ($this->_mode == 'test') {
353ffa53 TO	280	}
6a488035 TO	281	else {
	282	// 'trxn_id' is varchar(255) field. returned value is length 37
	283	$params['trxn_id'] = $processorResponse['ssl_txn_id'];
	284	}
	285
	286	$params['trxn_result_code'] = $processorResponse['ssl_approval_code'] . "-Cvv2:" . $processorResponse['ssl_cvv2_response'] . "-avs:" . $processorResponse['ssl_avs_response'];
	287
	288	return $params;
	289	}
	290	}
	291	// end function doDirectPayment
	292
	293	/**
	294	* Checks to see if invoice_id already exists in db
	295	*
6a0b768e TO	296	* @param int $invoiceId
6a0b768e TO	297	* The ID to check.
6a488035	298	*
a6c01b45 CW	299	* @return bool
a6c01b45 CW	300	* True if ID exists, else false
6a488035	301	*/
00be9182	302	public function _checkDupe($invoiceId) {
6a488035 TO	303	$contribution = new CRM_Contribute_DAO_Contribution();
	304	$contribution->invoice_id = $invoiceId;
	305	return $contribution->find();
	306	}
	307
	308	/**************************************************
	309	* Produces error message and returns from class
	310	**************************************************/
00be9182	311	public function &errorExit($errorCode = NULL, $errorMessage = NULL) {
6a488035 TO	312	$e = CRM_Core_Error::singleton();
	313	if ($errorCode) {
	314	$e->push($errorCode, 0, NULL, $errorMessage);
	315	}
	316	else {
	317	$e->push(9000, 0, NULL, 'Unknown System Error.');
	318	}
	319	return $e;
	320	}
	321
	322	/**************************************************
	323	* NOTE: 'doTransferCheckout' not implemented
	324	**************************************************/
00be9182	325	public function doTransferCheckout(&$params, $component) {
6a488035 TO	326	CRM_Core_Error::fatal(ts('This function is not implemented'));
	327	}
	328
	329	/********************************************************************************************
	330	* This public function checks to see if we have the right processor config values set
	331	*
	332	* NOTE: Called by Events and Contribute to check config params are set prior to trying
	333	* register any credit card details
	334	*
77b97be7 EM	335	* @return null\|string
77b97be7 EM	336	* @internal param string $mode the mode we are operating in (live or test) - not used
6a488035 TO	337	*
	338	* returns string $errorMsg if any errors found - null if OK
	339	*
77b97be7 EM	340	******************************************************************************************
77b97be7 EM	341	*/
6a488035 TO	342	// function checkConfig( $mode ) // CiviCRM V1.9 Declaration
6a488035 TO	343	// CiviCRM V2.0 Declaration
00be9182	344	public function checkConfig() {
6a488035 TO	345	$errorMsg = array();
	346
	347	if (empty($this->_paymentProcessor['user_name'])) {
	348	$errorMsg[] = ' ' . ts('ssl_merchant_id is not set for this payment processor');
	349	}
	350
	351	if (empty($this->_paymentProcessor['url_site'])) {
	352	$errorMsg[] = ' ' . ts('URL is not set for this payment processor');
	353	}
	354
	355	if (!empty($errorMsg)) {
	356	return implode('<p>', $errorMsg);
	357	}
	358	else {
	359	return NULL;
	360	}
	361	}
	362	//end check config
6c786a9b EM	363	/**
	364	* @param $requestFields
	365	*
	366	* @return string
	367	*/
00be9182	368	public function buildXML($requestFields) {
6a488035 TO	369	$xmlFieldLength['ssl_first_name'] = 15;
	370	// credit card name
	371	$xmlFieldLength['ssl_last_name'] = 15;
	372	// contact name
	373	$xmlFieldLength['ssl_ship_to_first_name'] = 15;
	374	// contact name
	375	$xmlFieldLength['ssl_ship_to_last_name'] = 15;
	376	$xmlFieldLength['ssl_card_number'] = 19;
	377	$xmlFieldLength['ssl_amount'] = 13;
	378	$xmlFieldLength['ssl_exp_date'] = 4;
	379	$xmlFieldLength['ssl_cvv2cvc2'] = 4;
	380	$xmlFieldLength['ssl_cvv2cvc2_indicator'] = 1;
	381	$xmlFieldLength['ssl_avs_address'] = 20;
	382	$xmlFieldLength['ssl_city'] = 20;
	383	$xmlFieldLength['ssl_state'] = 30;
	384	$xmlFieldLength['ssl_avs_zip'] = 9;
	385	$xmlFieldLength['ssl_country'] = 50;
	386	$xmlFieldLength['ssl_email'] = 100;
	387	// 32 character string
	388	$xmlFieldLength['ssl_invoice_number'] = 25;
	389	$xmlFieldLength['ssl_transaction_type'] = 20;
	390	$xmlFieldLength['ssl_description'] = 255;
	391	$xmlFieldLength['ssl_merchant_id'] = 15;
b3dd98a5 DL	392	$xmlFieldLength['ssl_user_id'] = 15;
b3dd98a5 DL	393	$xmlFieldLength['ssl_pin'] = 128;
6a488035	394	$xmlFieldLength['ssl_test_mode'] = 5;
b3dd98a5 DL	395	$xmlFieldLength['ssl_salestax'] = 10;
	396	$xmlFieldLength['ssl_customer_code'] = 17;
	397	$xmlFieldLength['ssl_customer_number'] = 25;
6a488035 TO	398
	399	$xml = '<txn>';
	400	foreach ($requestFields as $key => $value) {
	401	$xml .= '<' . $key . '>' . self::tidyStringforXML($value, $xmlFieldLength[$key]) . '</' . $key . '>';
6a488035	402	}
b3dd98a5	403	$xml .= '</txn>';
6a488035 TO	404	return $xml;
	405	}
	406
6c786a9b EM	407	/**
	408	* @param $value
	409	* @param $fieldlength
	410	*
	411	* @return string
	412	*/
00be9182	413	public function tidyStringforXML($value, $fieldlength) {
6a488035 TO	414	// the xml is posted to a url so must not contain spaces etc. It also needs to be cut off at a certain
	415	// length to match the processor's field length. The cut needs to be made after spaces etc are
	416	// transformed but must not include a partial transformed character e.g. %20 must be in or out not half-way
	417	$xmlString = substr(rawurlencode($value), 0, $fieldlength);
	418	$lastPercent = strrpos($xmlString, '%');
	419	if ($lastPercent > $fieldlength - 3) {
	420	$xmlString = substr($xmlString, 0, $lastPercent);
	421	}
	422	return $xmlString;
	423	}
	424
	425	/************************************************************************
	426	* Simple function to use in place of the 'simplexml_load_string' call.
	427	*
	428	* It returns the NodeValue for a given NodeName
	429	* or returns an empty string.
	430	************************************************************************/
00be9182	431	public function GetNodeValue($NodeName, &$strXML) {
6a488035 TO	432	$OpeningNodeName = "<" . $NodeName . ">";
	433	$ClosingNodeName = "</" . $NodeName . ">";
	434
	435	$pos1 = stripos($strXML, $OpeningNodeName);
	436	$pos2 = stripos($strXML, $ClosingNodeName);
	437
	438	if (($pos1 === FALSE) \|\| ($pos2 === FALSE)) {
	439
	440	return "";
	441
	442	}
	443
	444	$pos1 += strlen($OpeningNodeName);
	445	$len = $pos2 - $pos1;
	446
	447	$return = substr($strXML, $pos1, $len);
	448	// check out rtn values for debug
	449	// echo " $NodeName &nbsp &nbsp $return <br>";
	450	return ($return);
	451	}
	452
6c786a9b EM	453	/**
	454	* @param $Xml
	455	*
	456	* @return mixed
	457	*/
00be9182	458	public function decodeXMLresponse($Xml) {
6a488035 TO	459
	460	/**
	461	* $xtr = simplexml_load_string($Xml) or die ("Unable to load XML string!");
	462	**/
	463
	464	$processorResponse['ssl_result'] = self::GetNodeValue("ssl_result", $Xml);
	465	$processorResponse['ssl_result_message'] = self::GetNodeValue("ssl_result_message", $Xml);
	466	$processorResponse['ssl_txn_id'] = self::GetNodeValue("ssl_txn_id", $Xml);
	467	$processorResponse['ssl_cvv2_response'] = self::GetNodeValue("ssl_cvv2_response", $Xml);
	468	$processorResponse['ssl_avs_response'] = self::GetNodeValue("ssl_avs_response", $Xml);
	469	$processorResponse['ssl_approval_code'] = self::GetNodeValue("ssl_approval_code", $Xml);
	470	$processorResponse['errorCode'] = self::GetNodeValue("errorCode", $Xml);
	471	$processorResponse['errorName'] = self::GetNodeValue("errorName", $Xml);
	472	$processorResponse['errorMessage'] = self::GetNodeValue("errorMessage", $Xml);
	473
	474	return $processorResponse;
	475	}
	476	}