projects / civicrm-core.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge pull request #18861 from civicrm/5.31
[civicrm-core.git] / CRM / Core / Payment / PayPalImpl.php
1 <?php
2 /*
3 +--------------------------------------------------------------------+
4 | Copyright CiviCRM LLC. All rights reserved. |
5 | |
6 | This work is published under the GNU AGPLv3 license with some |
7 | permitted exceptions and without any warranty. For full license |
8 | and copyright information, see https://civicrm.org/licensing |
9 +--------------------------------------------------------------------+
10 */
11
12 use Civi\Payment\Exception\PaymentProcessorException;
13
14 /**
15 *
16 * @package CRM
17 * @copyright CiviCRM LLC https://civicrm.org/licensing
18 */
19
20 /**
21 * Class CRM_Core_Payment_PayPalImpl for paypal pro, paypal standard & paypal express.
22 */
23 class CRM_Core_Payment_PayPalImpl extends CRM_Core_Payment {
24 const CHARSET = 'iso-8859-1';
25
26 const PAYPAL_PRO = 'PayPal';
27 const PAYPAL_STANDARD = 'PayPal_Standard';
28 const PAYPAL_EXPRESS = 'PayPal_Express';
29
30 protected $_mode = NULL;
31
32 /**
33 * Constructor.
34 *
35 * @param string $mode
36 * The mode of operation: live or test.
37 *
38 * @param CRM_Core_Payment $paymentProcessor
39 *
40 * @return \CRM_Core_Payment_PayPalImpl
41 * @throws \Civi\Payment\Exception\PaymentProcessorException
42 */
43 public function __construct($mode, &$paymentProcessor) {
44 $this->_mode = $mode;
45 $this->_paymentProcessor = $paymentProcessor;
46 }
47
48 /**
49 * @var GuzzleHttp\Client
50 */
51 protected $guzzleClient;
52
53 /**
54 * @return \GuzzleHttp\Client
55 */
56 public function getGuzzleClient(): \GuzzleHttp\Client {
57 return $this->guzzleClient ?? new \GuzzleHttp\Client();
58 }
59
60 /**
61 * @param \GuzzleHttp\Client $guzzleClient
62 */
63 public function setGuzzleClient(\GuzzleHttp\Client $guzzleClient) {
64 $this->guzzleClient = $guzzleClient;
65 }
66
67 /**
68 * Helper function to check which payment processor type is being used.
69 *
70 * @param $typeName
71 *
72 * @return bool
73 * @throws \Civi\Payment\Exception\PaymentProcessorException
74 */
75 public function isPayPalType($typeName) {
76 // Historically payment_processor_type may have been set to the name of the processor but newer versions of CiviCRM use the id set in payment_processor_type_id
77 if (empty($this->_paymentProcessor['payment_processor_type_id']) && empty($this->_paymentProcessor['payment_processor_type'])) {
78 // We need one of them to be set!
79 throw new PaymentProcessorException('CRM_Core_Payment_PayPalImpl: Payment processor type is not defined!');
80 }
81 if (empty($this->_paymentProcessor['payment_processor_type_id']) && !empty($this->_paymentProcessor['payment_processor_type'])) {
82 // Handle legacy case where payment_processor_type was set, but payment_processor_type_id was not.
83 $this->_paymentProcessor['payment_processor_type_id']
84 = CRM_Core_PseudoConstant::getKey('CRM_Financial_BAO_PaymentProcessor', 'payment_processor_type_id', $this->_paymentProcessor['payment_processor_type']);
85 }
86 if ((int) $this->_paymentProcessor['payment_processor_type_id'] ===
87 CRM_Core_PseudoConstant::getKey('CRM_Financial_BAO_PaymentProcessor', 'payment_processor_type_id', $typeName)) {
88 return TRUE;
89 }
90 return FALSE;
91 }
92
93 /**
94 * Are back office payments supported.
95 *
96 * E.g paypal standard won't permit you to enter a credit card associated
97 * with someone else's login.
98 *
99 * @return bool
100 * @throws \Civi\Payment\Exception\PaymentProcessorException
101 */
102 protected function supportsBackOffice() {
103 if ($this->isPayPalType($this::PAYPAL_PRO)) {
104 return TRUE;
105 }
106 return FALSE;
107 }
108
109 /**
110 * Does this processor support pre-approval.
111 *
112 * This would generally look like a redirect to enter credentials which can then be used in a later payment call.
113 *
114 * Currently Paypal express supports this, with a redirect to paypal after the 'Main' form is submitted in the
115 * contribution page. This token can then be processed at the confirm phase. Although this flow 'looks' like the
116 * 'notify' flow a key difference is that in the notify flow they don't have to return but in this flow they do.
117 *
118 * @return bool
119 * @throws \Civi\Payment\Exception\PaymentProcessorException
120 */
121 protected function supportsPreApproval() {
122 if ($this->isPayPalType($this::PAYPAL_EXPRESS) || $this->isPayPalType($this::PAYPAL_PRO)) {
123 return TRUE;
124 }
125 return FALSE;
126 }
127
128 /**
129 * Opportunity for the payment processor to override the entire form build.
130 *
131 * @param CRM_Core_Form $form
132 *
133 * @return bool
134 * Should form building stop at this point?
135 * @throws \Civi\Payment\Exception\PaymentProcessorException
136 */
137 public function buildForm(&$form) {
138 if ($this->supportsPreApproval()) {
139 $this->addPaypalExpressCode($form);
140 if ($this->isPayPalType($this::PAYPAL_EXPRESS)) {
141 CRM_Core_Region::instance('billing-block-post')->add([
142 'template' => 'CRM/Financial/Form/PaypalExpress.tpl',
143 'name' => 'paypal_express',
144 ]);
145 }
146 if ($this->isPayPalType($this::PAYPAL_PRO)) {
147 CRM_Core_Region::instance('billing-block-pre')->add([
148 'template' => 'CRM/Financial/Form/PaypalPro.tpl',
149 ]);
150 }
151 }
152 return FALSE;
153 }
154
155 /**
156 * Billing mode button is basically synonymous with paypal express.
157 *
158 * This is probably a good example of 'odds & sods' code we
159 * need to find a way for the payment processor to assign.
160 *
161 * A tricky aspect is that the payment processor may need to set the order
162 *
163 * @param CRM_Core_Form $form
164 */
165 protected function addPaypalExpressCode(&$form) {
166 // @todo use $this->isBackOffice() instead, test.
167 if (empty($form->isBackOffice)) {
168
169 /**
170 * if payment method selected using ajax call then form object is of 'CRM_Financial_Form_Payment',
171 * instead of 'CRM_Contribute_Form_Contribution_Main' so it generate wrong button name
172 * and then clicking on express button it redirect to confirm screen rather than PayPal Express form
173 */
174
175 if ('CRM_Financial_Form_Payment' == get_class($form) && $form->_formName) {
176 $form->_expressButtonName = '_qf_' . $form->_formName . '_upload_express';
177 }
178 else {
179 $form->_expressButtonName = $form->getButtonName('upload', 'express');
180 }
181 $form->assign('expressButtonName', $form->_expressButtonName);
182 $form->add('xbutton', $form->_expressButtonName, ts('Pay using PayPal'), [
183 'type' => 'submit',
184 'formnovalidate' => 'formnovalidate',
185 'class' => 'crm-form-submit',
186 ]);
187 CRM_Core_Resources::singleton()->addStyle('
188 button#' . $form->_expressButtonName . '{
189 background-image: url(' . $this->_paymentProcessor['url_button'] . ');
190 color: transparent;
191 background-repeat: no-repeat;
192 background-color: transparent;
193 background-position: center;
194 min-width: 150px;
195 min-height: 50px;
196 border: none;
197 ');
198 }
199 }
200
201 /**
202 * Can recurring contributions be set against pledges.
203 *
204 * In practice all processors that use the baseIPN function to finish transactions or
205 * call the completetransaction api support this by looking up previous contributions in the
206 * series and, if there is a prior contribution against a pledge, and the pledge is not complete,
207 * adding the new payment to the pledge.
208 *
209 * However, only enabling for processors it has been tested against.
210 *
211 * @return bool
212 */
213 protected function supportsRecurContributionsForPledges() {
214 return TRUE;
215 }
216
217 /**
218 * Default payment instrument validation.
219 *
220 * Implement the usual Luhn algorithm via a static function in the CRM_Core_Payment_Form if it's a credit card
221 * Not a static function, because I need to check for payment_type.
222 *
223 * @param array $values
224 * @param array $errors
225 *
226 * @throws \Civi\Payment\Exception\PaymentProcessorException
227 */
228 public function validatePaymentInstrument($values, &$errors) {
229 if ($this->isPayPalType($this::PAYPAL_PRO) && !$this->isPaypalExpress($values)) {
230 CRM_Core_Payment_Form::validateCreditCard($values, $errors, $this->_paymentProcessor['id']);
231 CRM_Core_Form::validateMandatoryFields($this->getMandatoryFields(), $values, $errors);
232 }
233 }
234
235 /**
236 * Express checkout code.
237 *
238 * Check PayPal documentation for more information
239 *
240 * @param array $params
241 * Assoc array of input parameters for this transaction.
242 *
243 * @return array
244 * the result in an nice formatted array (or an error object)
245 * @throws \Civi\Payment\Exception\PaymentProcessorException
246 */
247 protected function setExpressCheckOut(&$params) {
248 $args = [];
249
250 $this->initialize($args, 'SetExpressCheckout');
251
252 $args['paymentAction'] = 'Sale';
253 $args['amt'] = $params['amount'];
254 $args['currencyCode'] = $params['currencyID'];
255 $args['desc'] = $params['description'] ?? NULL;
256 $args['invnum'] = $params['invoiceID'];
257 $args['returnURL'] = $this->getReturnSuccessUrl($params['qfKey']);
258 $args['cancelURL'] = $this->getCancelUrl($params['qfKey'], NULL);
259 $args['version'] = '56.0';
260 $args['SOLUTIONTYPE'] = 'Sole';
261
262 //LCD if recurring, collect additional data and set some values
263 if (!empty($params['is_recur'])) {
264 $args['L_BILLINGTYPE0'] = 'RecurringPayments';
265 //$args['L_BILLINGAGREEMENTDESCRIPTION0'] = 'Recurring Contribution';
266 $args['L_BILLINGAGREEMENTDESCRIPTION0'] = $params['amount'] . " Per " . $params['frequency_interval'] . " " . $params['frequency_unit'];
267 $args['L_PAYMENTTYPE0'] = 'Any';
268 }
269
270 // Allow further manipulation of the arguments via custom hooks ..
271 CRM_Utils_Hook::alterPaymentProcessorParams($this, $params, $args);
272
273 $result = $this->invokeAPI($args);
274
275 /* Success */
276
277 return $result['token'];
278 }
279
280 /**
281 * Get any details that may be available to the payment processor due to an approval process having happened.
282 *
283 * In some cases the browser is redirected to enter details on a processor site. Some details may be available as a
284 * result.
285 *
286 * @param array $storedDetails
287 *
288 * @return array
289 * @throws \Civi\Payment\Exception\PaymentProcessorException
290 */
291 public function getPreApprovalDetails($storedDetails) {
292 return empty($storedDetails['token']) ? [] : $this->getExpressCheckoutDetails($storedDetails['token']);
293 }
294
295 /**
296 * Get details from paypal.
297 *
298 * Check PayPal documentation for more information
299 *
300 * @param string $token
301 * The key associated with this transaction.
302 *
303 * @return array
304 * the result in an nice formatted array (or an error object)
305 * @throws \Civi\Payment\Exception\PaymentProcessorException
306 */
307 public function getExpressCheckoutDetails($token) {
308 $args = [];
309
310 $this->initialize($args, 'GetExpressCheckoutDetails');
311 $args['token'] = $token;
312 // LCD
313 $args['method'] = 'GetExpressCheckoutDetails';
314
315 $result = $this->invokeAPI($args);
316
317 /* Success */
318 $fieldMap = [
319 'token' => 'token',
320 'payer_status' => 'payerstatus',
321 'payer_id' => 'payerid',
322 'billing_first_name' => 'firstname',
323 'billing_middle_name' => 'middlename',
324 'billing_last_name' => 'lastname',
325 'street_address' => 'shiptostreet',
326 'supplemental_address_1' => 'shiptostreet2',
327 'city' => 'shiptocity',
328 'postal_code' => 'shiptozip',
329 'state_province' => 'shiptostate',
330 'country' => 'shiptocountrycode',
331 ];
332 return $this->mapPaypalParamsToCivicrmParams($fieldMap, $result);
333 }
334
335 /**
336 * Do the express checkout at paypal.
337 *
338 * Check PayPal documentation for more information
339 *
340 * @param array $params
341 *
342 * @return array
343 * The result in an nice formatted array.
344 *
345 * @throws \Civi\Payment\Exception\PaymentProcessorException
346 */
347 public function doExpressCheckout(&$params) {
348 if (!empty($params['is_recur'])) {
349 return $this->createRecurringPayments($params);
350 }
351 $args = [];
352
353 $this->initialize($args, 'DoExpressCheckoutPayment');
354 $args['token'] = $params['token'];
355 $args['paymentAction'] = 'Sale';
356 $args['amt'] = $params['amount'];
357 $args['currencyCode'] = $params['currencyID'];
358 $args['payerID'] = $params['payer_id'];
359 $args['invnum'] = $params['invoiceID'];
360 $args['returnURL'] = $this->getReturnSuccessUrl($params['qfKey']);
361 $args['cancelURL'] = $this->getCancelUrl($params['qfKey'], NULL);
362 $args['desc'] = $params['description'];
363
364 // add CiviCRM BN code
365 $args['BUTTONSOURCE'] = 'CiviCRM_SP';
366
367 $result = $this->invokeAPI($args);
368
369 /* Success */
370 $params['trxn_id'] = $result['transactionid'];
371 $params['fee_amount'] = $result['feeamt'];
372 $params['net_amount'] = $result['settleamt'] ?? NULL;
373 if ($params['net_amount'] == 0 && $params['fee_amount'] != 0) {
374 $params['net_amount'] = number_format(($params['gross_amount'] - $params['fee_amount']), 2);
375 }
376 $params['payment_status'] = $result['paymentstatus'];
377 $params['pending_reason'] = $result['pendingreason'];
378 if (!empty($params['is_recur'])) {
379 // See comment block.
380 $params['payment_status_id'] = CRM_Core_PseudoConstant::getKey('CRM_Contribute_BAO_Contribution', 'contribution_status_id', 'Pending');
381 }
382 else {
383 $params['payment_status_id'] = CRM_Core_PseudoConstant::getKey('CRM_Contribute_BAO_Contribution', 'contribution_status_id', 'Completed');
384 }
385 return $params;
386 }
387
388 /**
389 * Create recurring payments.
390 *
391 * Use a pre-authorisation token to activate a recurring payment profile
392 * https://developer.paypal.com/docs/classic/api/merchant/CreateRecurringPaymentsProfile_API_Operation_NVP/
393 *
394 * @param array $params
395 *
396 * @return mixed
397 * @throws \Exception
398 */
399 public function createRecurringPayments(&$params) {
400 $args = [];
401 $this->initialize($args, 'CreateRecurringPaymentsProfile');
402
403 $start_time = strtotime(date('m/d/Y'));
404 $start_date = date('Y-m-d\T00:00:00\Z', $start_time);
405
406 $args['token'] = $params['token'];
407 $args['paymentAction'] = 'Sale';
408 $args['amt'] = $params['amount'];
409 $args['currencyCode'] = $params['currencyID'];
410 $args['payerID'] = $params['payer_id'];
411 $args['invnum'] = $params['invoiceID'];
412 $args['profilestartdate'] = $start_date;
413 $args['method'] = 'CreateRecurringPaymentsProfile';
414 $args['billingfrequency'] = $params['frequency_interval'];
415 $args['billingperiod'] = ucwords($params['frequency_unit']);
416 $args['desc'] = $params['amount'] . " Per " . $params['frequency_interval'] . " " . $params['frequency_unit'];
417 $args['totalbillingcycles'] = $params['installments'] ?? NULL;
418 $args['version'] = '56.0';
419 $args['profilereference'] = "i={$params['invoiceID']}" .
420 "&m=" .
421 "&c={$params['contactID']}" .
422 "&r={$params['contributionRecurID']}" .
423 "&b={$params['contributionID']}" .
424 "&p={$params['contributionPageID']}";
425
426 // add CiviCRM BN code
427 $args['BUTTONSOURCE'] = 'CiviCRM_SP';
428
429 $result = $this->invokeAPI($args);
430
431 /* Success - result looks like"
432 * array (
433 * 'profileid' => 'I-CP1U0PLG91R2',
434 * 'profilestatus' => 'ActiveProfile',
435 * 'timestamp' => '2018-05-07T03:55:52Z',
436 * 'correlationid' => 'e717999e9bf62',
437 * 'ack' => 'Success',
438 * 'version' => '56.0',
439 * 'build' => '39949200',)
440 */
441 $params['trxn_id'] = $result['profileid'];
442 $params['payment_status_id'] = CRM_Core_PseudoConstant::getKey('CRM_Contribute_BAO_Contribution', 'contribution_status_id', 'Pending');
443
444 return $params;
445 }
446
447 /**
448 * Initialise.
449 *
450 * @param $args
451 * @param $method
452 */
453 public function initialize(&$args, $method) {
454 $args['user'] = $this->_paymentProcessor['user_name'];
455 $args['pwd'] = $this->_paymentProcessor['password'];
456 $args['version'] = 3.0;
457 $args['signature'] = $this->_paymentProcessor['signature'];
458 $args['subject'] = $this->_paymentProcessor['subject'] ?? NULL;
459 $args['method'] = $method;
460 }
461
462 /**
463 * Process payment - this function wraps around both doTransferCheckout and doDirectPayment.
464 *
465 * The function ensures an exception is thrown & moves some of this logic out of the form layer and makes the forms
466 * more agnostic.
467 *
468 * Payment processors should set payment_status_id. This function adds some historical defaults ie. the
469 * assumption that if a 'doDirectPayment' processors comes back it completed the transaction & in fact
470 * doTransferCheckout would not traditionally come back.
471 *
472 * doDirectPayment does not do an immediate payment for Authorize.net or Paypal so the default is assumed
473 * to be Pending.
474 *
475 * Once this function is fully rolled out then it will be preferred for processors to throw exceptions than to
476 * return Error objects
477 *
478 * @param array $params
479 *
480 * @param string $component
481 *
482 * @return array
483 * Result array
484 *
485 * @throws \Civi\Payment\Exception\PaymentProcessorException
486 */
487 public function doPayment(&$params, $component = 'contribute') {
488 if ($this->isPayPalType($this::PAYPAL_EXPRESS) || ($this->isPayPalType($this::PAYPAL_PRO) && !empty($params['token']))) {
489 $this->_component = $component;
490 return $this->doExpressCheckout($params);
491
492 }
493 return parent::doPayment($params, $component);
494 }
495
496 /**
497 * This function collects all the information from a web/api form and invokes
498 * the relevant payment processor specific functions to perform the transaction
499 *
500 * @param array $params
501 * Assoc array of input parameters for this transaction.
502 *
503 * @param string $component
504 * @return array
505 * the result in an nice formatted array (or an error object)
506 * @throws \Civi\Payment\Exception\PaymentProcessorException
507 */
508 public function doDirectPayment(&$params, $component = 'contribute') {
509 $args = [];
510
511 $this->initialize($args, 'DoDirectPayment');
512
513 $args['paymentAction'] = 'Sale';
514 $args['amt'] = $this->getAmount($params);
515 $args['currencyCode'] = $this->getCurrency($params);
516 $args['invnum'] = $params['invoiceID'];
517 $args['ipaddress'] = $params['ip_address'];
518 $args['creditCardType'] = $params['credit_card_type'];
519 $args['acct'] = $params['credit_card_number'];
520 $args['expDate'] = sprintf('%02d', $params['month']) . $params['year'];
521 $args['cvv2'] = $params['cvv2'];
522 $args['firstName'] = $params['first_name'];
523 $args['lastName'] = $params['last_name'];
524 $args['email'] = $params['email'] ?? NULL;
525 $args['street'] = $params['street_address'];
526 $args['city'] = $params['city'];
527 $args['state'] = $params['state_province'];
528 $args['countryCode'] = $params['country'];
529 $args['zip'] = $params['postal_code'];
530 $args['desc'] = substr(CRM_Utils_Array::value('description', $params), 0, 127);
531 $args['custom'] = $params['accountingCode'] ?? NULL;
532
533 // add CiviCRM BN code
534 $args['BUTTONSOURCE'] = 'CiviCRM_SP';
535
536 if (CRM_Utils_Array::value('is_recur', $params) == 1) {
537 $start_time = strtotime(date('m/d/Y'));
538 $start_date = date('Y-m-d\T00:00:00\Z', $start_time);
539
540 $args['PaymentAction'] = 'Sale';
541 $args['billingperiod'] = ucwords($params['frequency_unit']);
542 $args['billingfrequency'] = $params['frequency_interval'];
543 $args['method'] = "CreateRecurringPaymentsProfile";
544 $args['profilestartdate'] = $start_date;
545 $args['desc'] = "" .
546 $params['description'] . ": " .
547 $params['amount'] . " Per " .
548 $params['frequency_interval'] . " " .
549 $params['frequency_unit'];
550 $args['amt'] = $this->getAmount($params);
551 $args['totalbillingcycles'] = $params['installments'] ?? NULL;
552 $args['version'] = 56.0;
553 $args['PROFILEREFERENCE'] = "" .
554 "i=" . $params['invoiceID'] . "&m=" . $component .
555 "&c=" . $params['contactID'] . "&r=" . $params['contributionRecurID'] .
556 "&b=" . $params['contributionID'] . "&p=" . $params['contributionPageID'];
557 }
558
559 // Allow further manipulation of the arguments via custom hooks ..
560 CRM_Utils_Hook::alterPaymentProcessorParams($this, $params, $args);
561
562 $result = $this->invokeAPI($args);
563
564 $params['recurr_profile_id'] = NULL;
565
566 if (CRM_Utils_Array::value('is_recur', $params) == 1) {
567 $params['recurr_profile_id'] = $result['profileid'];
568 }
569
570 /* Success */
571
572 $params['trxn_id'] = $result['transactionid'] ?? NULL;
573 $params['gross_amount'] = $result['amt'] ?? NULL;
574 $params = array_merge($params, $this->doQuery($params));
575 return $params;
576 }
577
578 /**
579 * Query payment processor for details about a transaction.
580 *
581 * For paypal see : https://developer.paypal.com/webapps/developer/docs/classic/api/merchant/GetTransactionDetails_API_Operation_NVP/
582 *
583 * @param array $params
584 * Array of parameters containing one of:
585 * - trxn_id Id of an individual transaction.
586 * - processor_id Id of a recurring contribution series as stored in the civicrm_contribution_recur table.
587 *
588 * @return array
589 * Extra parameters retrieved.
590 * Any parameters retrievable through this should be documented in the function comments at
591 * CRM_Core_Payment::doQuery. Currently
592 * - fee_amount Amount of fee paid
593 *
594 * @throws \Civi\Payment\Exception\PaymentProcessorException
595 */
596 public function doQuery($params) {
597 //CRM-18140 - trxn_id not returned for recurring paypal transaction
598 if (!empty($params['is_recur'])) {
599 return [];
600 }
601 elseif (empty($params['trxn_id'])) {
602 throw new \Civi\Payment\Exception\PaymentProcessorException('transaction id not set');
603 }
604 $args = [
605 'TRANSACTIONID' => $params['trxn_id'],
606 ];
607 $this->initialize($args, 'GetTransactionDetails');
608 $result = $this->invokeAPI($args);
609 return [
610 'fee_amount' => $result['feeamt'],
611 'net_amount' => $params['gross_amount'] - $result['feeamt'],
612 ];
613 }
614
615 /**
616 * This function checks to see if we have the right config values.
617 *
618 * @return null|string
619 * the error message if any
620 * @throws \Civi\Payment\Exception\PaymentProcessorException
621 */
622 public function checkConfig() {
623 $error = [];
624
625 if (!$this->isPayPalType($this::PAYPAL_STANDARD)) {
626 if (empty($this->_paymentProcessor['signature'])) {
627 $error[] = ts('Signature is not set in the Administer &raquo; System Settings &raquo; Payment Processors.');
628 }
629
630 if (empty($this->_paymentProcessor['password'])) {
631 $error[] = ts('Password is not set in the Administer &raquo; System Settings &raquo; Payment Processors.');
632 }
633 }
634 if (empty($this->_paymentProcessor['user_name'])) {
635 $error[] = ts('User Name is not set in the Administer &raquo; System Settings &raquo; Payment Processors.');
636 }
637
638 if (!empty($error)) {
639 return implode('<p>', $error);
640 }
641 else {
642 return NULL;
643 }
644 }
645
646 /**
647 * Get url for users to manage this recurring contribution for this processor.
648 *
649 * @param int $entityID
650 * @param null $entity
651 * @param string $action
652 *
653 * @return string|null
654 * @throws \CRM_Core_Exception
655 */
656 public function subscriptionURL($entityID = NULL, $entity = NULL, $action = 'cancel') {
657 if ($this->isPayPalType($this::PAYPAL_STANDARD)) {
658 if ($action !== 'cancel') {
659 return NULL;
660 }
661 return "{$this->_paymentProcessor['url_site']}cgi-bin/webscr?cmd=_subscr-find&alias=" . urlencode($this->_paymentProcessor['user_name']);
662 }
663 return parent::subscriptionURL($entityID, $entity, $action);
664 }
665
666 /**
667 * Check whether a method is present ( & supported ) by the payment processor object.
668 *
669 * @param string $method
670 * Method to check for.
671 *
672 * @return bool
673 * @throws \Civi\Payment\Exception\PaymentProcessorException
674 */
675 public function isSupported($method) {
676 if (!$this->isPayPalType($this::PAYPAL_PRO)) {
677 // since subscription methods like cancelSubscription or updateBilling is not yet implemented / supported
678 // by standard or express.
679 return FALSE;
680 }
681 return parent::isSupported($method);
682 }
683
684 /**
685 * Paypal express replaces the submit button with it's own.
686 *
687 * @return bool
688 * Should the form button by suppressed?
689 * @throws \Civi\Payment\Exception\PaymentProcessorException
690 */
691 public function isSuppressSubmitButtons() {
692 if ($this->isPayPalType($this::PAYPAL_EXPRESS)) {
693 return TRUE;
694 }
695 return FALSE;
696 }
697
698 /**
699 * @param string $message
700 * @param array $params
701 *
702 * @return bool
703 * @throws \Civi\Payment\Exception\PaymentProcessorException
704 */
705 public function cancelSubscription(&$message = '', $params = []) {
706 if ($this->isPayPalType($this::PAYPAL_PRO) || $this->isPayPalType($this::PAYPAL_EXPRESS)) {
707 $args = [];
708 $this->initialize($args, 'ManageRecurringPaymentsProfileStatus');
709
710 $args['PROFILEID'] = $params['subscriptionId'] ?? NULL;
711 $args['ACTION'] = 'Cancel';
712 $args['NOTE'] = $params['reason'] ?? NULL;
713
714 $result = $this->invokeAPI($args);
715
716 $message = "{$result['ack']}: profileid={$result['profileid']}";
717 return TRUE;
718 }
719 return FALSE;
720 }
721
722 /**
723 * Process incoming notification.
724 *
725 * @throws \CRM_Core_Exception
726 * @throws \CiviCRM_API3_Exception
727 */
728 public function handlePaymentNotification() {
729 $params = array_merge($_GET, $_REQUEST);
730 $q = explode('/', CRM_Utils_Array::value('q', $params, ''));
731 $lastParam = array_pop($q);
732 if (is_numeric($lastParam)) {
733 $params['processor_id'] = $lastParam;
734 }
735 $result = civicrm_api3('PaymentProcessor', 'get', [
736 'sequential' => 1,
737 'id' => $params['processor_id'],
738 'api.PaymentProcessorType.getvalue' => ['return' => "name"],
739 ]);
740 if (!$result['count']) {
741 throw new CRM_Core_Exception("Could not find a processor with the given processor_id value '{$params['processor_id']}'.");
742 }
743
744 $paymentProcessorType = $result['values'][0]['api.PaymentProcessorType.getvalue'] ?? NULL;
745 switch ($paymentProcessorType) {
746 case 'PayPal':
747 // "PayPal - Website Payments Pro"
748 $paypalIPN = new CRM_Core_Payment_PayPalProIPN($params);
749 break;
750
751 case 'PayPal_Standard':
752 // "PayPal - Website Payments Standard"
753 $paypalIPN = new CRM_Core_Payment_PayPalIPN($params);
754 break;
755
756 default:
757 // If we don't have PayPal Standard or PayPal Pro, something's wrong.
758 // Log an error and exit.
759 throw new CRM_Core_Exception("The processor_id value '{$params['processor_id']}' is for a processor of type '{$paymentProcessorType}', which is invalid in this context.");
760 }
761
762 $paypalIPN->main();
763 }
764
765 /**
766 * @param string $message
767 * @param array $params
768 *
769 * @return array|bool|object
770 * @throws \Civi\Payment\Exception\PaymentProcessorException
771 */
772 public function updateSubscriptionBillingInfo(&$message = '', $params = []) {
773 if ($this->isPayPalType($this::PAYPAL_PRO)) {
774 $config = CRM_Core_Config::singleton();
775 $args = [];
776 $this->initialize($args, 'UpdateRecurringPaymentsProfile');
777
778 $args['PROFILEID'] = $params['subscriptionId'];
779 $args['AMT'] = $this->getAmount($params);
780 $args['CURRENCYCODE'] = $config->defaultCurrency;
781 $args['CREDITCARDTYPE'] = $params['credit_card_type'];
782 $args['ACCT'] = $params['credit_card_number'];
783 $args['EXPDATE'] = sprintf('%02d', $params['month']) . $params['year'];
784 $args['CVV2'] = $params['cvv2'];
785
786 $args['FIRSTNAME'] = $params['first_name'];
787 $args['LASTNAME'] = $params['last_name'];
788 $args['STREET'] = $params['street_address'];
789 $args['CITY'] = $params['city'];
790 $args['STATE'] = $params['state_province'];
791 $args['COUNTRYCODE'] = $params['postal_code'];
792 $args['ZIP'] = $params['country'];
793
794 $result = $this->invokeAPI($args);
795
796 $message = "{$result['ack']}: profileid={$result['profileid']}";
797 return TRUE;
798 }
799 return FALSE;
800 }
801
802 /**
803 * @param string $message
804 * @param array $params
805 *
806 * @return bool
807 * @throws \Civi\Payment\Exception\PaymentProcessorException
808 */
809 public function changeSubscriptionAmount(&$message = '', $params = []) {
810 if ($this->isPayPalType($this::PAYPAL_PRO)) {
811 $config = CRM_Core_Config::singleton();
812 $args = [];
813 $this->initialize($args, 'UpdateRecurringPaymentsProfile');
814
815 $args['PROFILEID'] = $params['subscriptionId'];
816 $args['AMT'] = $this->getAmount($params);
817 $args['CURRENCYCODE'] = $config->defaultCurrency;
818 $args['BILLINGFREQUENCY'] = $params['installments'];
819
820 $result = $this->invokeAPI($args);
821 CRM_Core_Error::debug_var('$result', $result);
822
823 $message = "{$result['ack']}: profileid={$result['profileid']}";
824 return TRUE;
825 }
826 return FALSE;
827 }
828
829 /**
830 * Function to action pre-approval if supported
831 *
832 * @param array $params
833 * Parameters from the form
834 *
835 * @return array
836 * - pre_approval_parameters (this will be stored on the calling form & available later)
837 * - redirect_url (if set the browser will be redirected to this.
838 * @throws \Civi\Payment\Exception\PaymentProcessorException
839 */
840 public function doPreApproval(&$params) {
841 if (!$this->isPaypalExpress($params)) {
842 return [];
843 }
844 $this->_component = $params['component'];
845 $token = $this->setExpressCheckOut($params);
846 return [
847 'pre_approval_parameters' => ['token' => $token],
848 'redirect_url' => $this->_paymentProcessor['url_site'] . "/cgi-bin/webscr?cmd=_express-checkout&token=$token",
849 ];
850 }
851
852 /**
853 * @param array $params
854 * @param string $component
855 *
856 * @throws Exception
857 */
858 public function doTransferCheckout(&$params, $component = 'contribute') {
859
860 $notifyParameters = ['module' => $component];
861 $notifyParameterMap = [
862 'contactID' => 'contactID',
863 'contributionID' => 'contributionID',
864 'eventID' => 'eventID',
865 'participantID' => 'participantID',
866 'membershipID' => 'membershipID',
867 'related_contact' => 'relatedContactID',
868 'onbehalf_dupe_alert' => 'onBehalfDupeAlert',
869 'accountingCode' => 'accountingCode',
870 'contributionRecurID' => 'contributionRecurID',
871 'contributionPageID' => 'contributionPageID',
872 ];
873 foreach ($notifyParameterMap as $paramsName => $notifyName) {
874 if (!empty($params[$paramsName])) {
875 $notifyParameters[$notifyName] = $params[$paramsName];
876 }
877 }
878 $notifyURL = $this->getNotifyUrl();
879
880 $config = CRM_Core_Config::singleton();
881 $url = ($component == 'event') ? 'civicrm/event/register' : 'civicrm/contribute/transact';
882 $cancel = ($component == 'event') ? '_qf_Register_display' : '_qf_Main_display';
883
884 $cancelUrlString = "$cancel=1&cancel=1&qfKey={$params['qfKey']}";
885 if (!empty($params['is_recur'])) {
886 $cancelUrlString .= "&isRecur=1&recurId={$params['contributionRecurID']}&contribId={$params['contributionID']}";
887 }
888
889 $cancelURL = CRM_Utils_System::url(
890 $url,
891 $cancelUrlString,
892 TRUE, NULL, FALSE
893 );
894
895 $paypalParams = [
896 'business' => $this->_paymentProcessor['user_name'],
897 'notify_url' => $notifyURL,
898 'item_name' => $this->getPaymentDescription($params, 127),
899 'quantity' => 1,
900 'undefined_quantity' => 0,
901 'cancel_return' => $cancelURL,
902 'no_note' => 1,
903 'no_shipping' => 1,
904 'return' => $this->getReturnSuccessUrl($params['qfKey']),
905 'rm' => 2,
906 'currency_code' => $params['currencyID'],
907 'invoice' => $params['invoiceID'],
908 'lc' => substr($config->lcMessages, -2),
909 'charset' => function_exists('mb_internal_encoding') ? mb_internal_encoding() : 'UTF-8',
910 'custom' => json_encode($notifyParameters),
911 'bn' => 'CiviCRM_SP',
912 ];
913
914 // add name and address if available, CRM-3130
915 $otherVars = [
916 'first_name' => 'first_name',
917 'last_name' => 'last_name',
918 'street_address' => 'address1',
919 'country' => 'country',
920 'preferred_language' => 'lc',
921 'city' => 'city',
922 'state_province' => 'state',
923 'postal_code' => 'zip',
924 'email' => 'email',
925 ];
926
927 foreach (array_keys($params) as $p) {
928 // get the base name without the location type suffixed to it
929 $parts = explode('-', $p);
930 $name = count($parts) > 1 ? $parts[0] : $p;
931 if (isset($otherVars[$name])) {
932 $value = $params[$p];
933 if ($value) {
934 if ($name == 'state_province') {
935 $stateName = CRM_Core_PseudoConstant::stateProvinceAbbreviation($value);
936 $value = $stateName;
937 }
938 if ($name == 'country') {
939 $countryName = CRM_Core_PseudoConstant::countryIsoCode($value);
940 $value = $countryName;
941 }
942 // ensure value is not an array
943 // CRM-4174
944 if (!is_array($value)) {
945 $paypalParams[$otherVars[$name]] = $value;
946 }
947 }
948 }
949 }
950
951 // if recurring donations, add a few more items
952 if (!empty($params['is_recur'])) {
953 if (!$params['contributionRecurID']) {
954 throw new CRM_Core_Exception(ts('Recurring contribution, but no database id'));
955 }
956
957 $paypalParams += [
958 'cmd' => '_xclick-subscriptions',
959 'a3' => $this->getAmount($params),
960 'p3' => $params['frequency_interval'],
961 't3' => ucfirst(substr($params['frequency_unit'], 0, 1)),
962 'src' => 1,
963 'sra' => 1,
964 'srt' => $params['installments'] ?? NULL,
965 'no_note' => 1,
966 'modify' => 0,
967 ];
968 }
969 else {
970 $paypalParams += [
971 'cmd' => '_xclick',
972 'amount' => $params['amount'],
973 ];
974 }
975
976 // Allow further manipulation of the arguments via custom hooks ..
977 CRM_Utils_Hook::alterPaymentProcessorParams($this, $params, $paypalParams);
978
979 $uri = '';
980 foreach ($paypalParams as $key => $value) {
981 if ($value === NULL) {
982 continue;
983 }
984
985 $value = urlencode($value);
986 if ($key == 'return' ||
987 $key == 'cancel_return' ||
988 $key == 'notify_url'
989 ) {
990 $value = str_replace('%2F', '/', $value);
991 }
992 $uri .= "&{$key}={$value}";
993 }
994
995 $uri = substr($uri, 1);
996 $url = $this->_paymentProcessor['url_site'];
997 $sub = empty($params['is_recur']) ? 'cgi-bin/webscr' : 'subscriptions';
998 $paypalURL = "{$url}{$sub}?$uri";
999
1000 // Allow each CMS to do a pre-flight check before redirecting to PayPal.
1001 CRM_Core_Config::singleton()->userSystem->prePostRedirect();
1002
1003 CRM_Utils_System::redirect($paypalURL);
1004 }
1005
1006 /**
1007 * Hash_call: Function to perform the API call to PayPal using API signature.
1008 *
1009 * @methodName is name of API method.
1010 * @nvpStr is nvp string.
1011 * returns an associative array containing the response from the server.
1012 *
1013 * @param array $args
1014 *
1015 * @return array|object
1016 * @throws \Civi\Payment\Exception\PaymentProcessorException
1017 */
1018 public function invokeAPI($args) {
1019
1020 if (empty($this->_paymentProcessor['url_api'])) {
1021 throw new PaymentProcessorException(ts('Please set the API URL. Please refer to the documentation for more details'));
1022 }
1023
1024 $url = $this->_paymentProcessor['url_api'] . 'nvp';
1025
1026 $p = [];
1027 foreach ($args as $n => $v) {
1028 $p[] = "$n=" . urlencode($v);
1029 }
1030
1031 //NVPRequest for submitting to server
1032 $nvpreq = implode('&', $p);
1033
1034 if (!function_exists('curl_init')) {
1035 throw new PaymentProcessorException('curl functions NOT available.');
1036 }
1037
1038 $response = (string) $this->getGuzzleClient()->post($url, [
1039 'body' => $nvpreq,
1040 'curl' => [
1041 CURLOPT_RETURNTRANSFER => TRUE,
1042 CURLOPT_SSL_VERIFYPEER => Civi::settings()->get('verifySSL'),
1043 ],
1044 ])->getBody();
1045
1046 $result = self::deformat($response);
1047
1048 $outcome = strtolower($result['ack'] ?? '');
1049
1050 if ($outcome !== 'success' && $outcome !== 'successwithwarning') {
1051 throw new PaymentProcessorException("{$result['l_shortmessage0']} {$result['l_longmessage0']}");
1052 }
1053
1054 return $result;
1055 }
1056
1057 /**
1058 * This function will take NVPString and convert it to an Associative Array.
1059 *
1060 * It will decode the response. It is useful to search for a particular key and displaying arrays.
1061 *
1062 * @param string $str
1063 *
1064 * @return array
1065 */
1066 public static function deformat($str) {
1067 $result = [];
1068
1069 while (strlen($str)) {
1070 // position of key
1071 $keyPos = strpos($str, '=');
1072
1073 // position of value
1074 $valPos = strpos($str, '&') ? strpos($str, '&') : strlen($str);
1075
1076 /*getting the Key and Value values and storing in a Associative Array*/
1077
1078 $key = substr($str, 0, $keyPos);
1079 $val = substr($str, $keyPos + 1, $valPos - $keyPos - 1);
1080
1081 //decoding the respose
1082 $result[strtolower(urldecode($key))] = urldecode($val);
1083 $str = substr($str, $valPos + 1, strlen($str));
1084 }
1085
1086 return $result;
1087 }
1088
1089 /**
1090 * Get array of fields that should be displayed on the payment form.
1091 *
1092 * @return array
1093 * @throws \Civi\Payment\Exception\PaymentProcessorException
1094 */
1095 public function getPaymentFormFields() {
1096 if ($this->isPayPalType($this::PAYPAL_PRO)) {
1097 return $this->getCreditCardFormFields();
1098 }
1099 else {
1100 return [];
1101 }
1102 }
1103
1104 /**
1105 * Map the paypal params to CiviCRM params using a field map.
1106 *
1107 * @param array $fieldMap
1108 * @param array $paypalParams
1109 *
1110 * @return array
1111 */
1112 protected function mapPaypalParamsToCivicrmParams($fieldMap, $paypalParams) {
1113 $params = [];
1114 foreach ($fieldMap as $civicrmField => $paypalField) {
1115 $params[$civicrmField] = $paypalParams[$paypalField] ?? NULL;
1116 }
1117 return $params;
1118 }
1119
1120 /**
1121 * Is this being processed by payment express.
1122 *
1123 * Either because it is payment express or because is pro with paypal express in use.
1124 *
1125 * @param array $params
1126 *
1127 * @return bool
1128 * @throws \Civi\Payment\Exception\PaymentProcessorException
1129 */
1130 protected function isPaypalExpress($params) {
1131 if ($this->isPayPalType($this::PAYPAL_EXPRESS)) {
1132 return TRUE;
1133 }
1134 // This would occur postProcess.
1135 if (!empty($params['token'])) {
1136 return TRUE;
1137 }
1138 if (isset($params['button']) && stristr($params['button'], 'express')) {
1139 return TRUE;
1140 }
1141
1142 // The contribution form passes a 'button' but the event form might still set one of these fields.
1143 // @todo more standardisation & get paypal fully out of the form layer.
1144 $possibleExpressFields = [
1145 // @todo - we think these top 2 are likely not required & it's still here
1146 // on a precautionary basis.
1147 // see https://github.com/civicrm/civicrm-core/pull/18680
1148 '_qf_Register_upload_express_x',
1149 '_qf_Payment_upload_express_x',
1150 '_qf_Register_upload_express',
1151 '_qf_Payment_upload_express',
1152 '_qf_Main_upload_express',
1153 ];
1154 if (array_intersect_key($params, array_fill_keys($possibleExpressFields, 1))) {
1155 return TRUE;
1156 }
1157 return FALSE;
1158 }
1159
1160 }