3 +--------------------------------------------------------------------+
5 +--------------------------------------------------------------------+
6 | Copyright CiviCRM LLC (c) 2004-2018 |
7 +--------------------------------------------------------------------+
8 | This file is a part of CiviCRM. |
10 | CiviCRM is free software; you can copy, modify, and distribute it |
11 | under the terms of the GNU Affero General Public License |
12 | Version 3, 19 November 2007 and the CiviCRM Licensing Exception. |
14 | CiviCRM is distributed in the hope that it will be useful, but |
15 | WITHOUT ANY WARRANTY; without even the implied warranty of |
16 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. |
17 | See the GNU Affero General Public License for more details. |
19 | You should have received a copy of the GNU Affero General Public |
20 | License and the CiviCRM Licensing Exception along |
21 | with this program; if not, contact CiviCRM LLC |
22 | at info[AT]civicrm[DOT]org. If you have questions about the |
23 | GNU Affero General Public License or the licensing of CiviCRM, |
24 | see the CiviCRM license FAQ at http://civicrm.org/licensing |
25 +--------------------------------------------------------------------+
28 use Civi\Payment\System
;
29 use Civi\Payment\Exception\PaymentProcessorException
;
32 * Class CRM_Core_Payment.
34 * This class is the main class for the payment processor subsystem.
36 * It is the parent class for payment processors. It also holds some IPN related functions
37 * that need to be moved. In particular handlePaymentMethod should be moved to a factory class.
39 abstract class CRM_Core_Payment
{
42 * Component - ie. event or contribute.
44 * This is used for setting return urls.
48 protected $_component;
51 * How are we getting billing information.
53 * We are trying to completely deprecate these parameters.
55 * FORM - we collect it on the same page
56 * BUTTON - the processor collects it and sends it back to us via some protocol
59 BILLING_MODE_FORM
= 1,
60 BILLING_MODE_BUTTON
= 2,
61 BILLING_MODE_NOTIFY
= 4;
64 * Which payment type(s) are we using?
69 * @todo create option group - nb omnipay uses a 3rd type - transparent redirect cc
72 PAYMENT_TYPE_CREDIT_CARD
= 1,
73 PAYMENT_TYPE_DIRECT_DEBIT
= 2;
76 * Subscription / Recurring payment Status
80 RECURRING_PAYMENT_START
= 'START',
81 RECURRING_PAYMENT_END
= 'END';
83 protected $_paymentProcessor;
86 * Base url of the calling form (offsite processors).
90 protected $baseReturnUrl;
93 * Return url upon success (offsite processors).
97 protected $successUrl;
100 * Return url upon failure (offsite processors).
104 protected $cancelUrl;
107 * Processor type label.
109 * (Deprecated parameter but used in some messages).
115 public $_processorName;
118 * The profile configured to show on the billing form.
120 * Currently only the pseudo-profile 'billing' is supported but hopefully in time we will take an id and
121 * load that from the DB and the processor will be able to return a set of fields that combines it's minimum
122 * requirements with the configured requirements.
124 * Currently only the pseudo-processor 'manual' or 'pay-later' uses this setting to return a 'curated' set
127 * Note this change would probably include converting 'billing' to a reserved profile.
131 protected $billingProfile;
134 * Payment instrument ID.
136 * This is normally retrieved from the payment_processor table.
140 protected $paymentInstrumentID;
143 * Is this a back office transaction.
147 protected $backOffice = FALSE;
152 public function isBackOffice() {
153 return $this->backOffice
;
157 * Set back office property.
159 * @param bool $isBackOffice
161 public function setBackOffice($isBackOffice) {
162 $this->backOffice
= $isBackOffice;
166 * Get payment instrument id.
170 public function getPaymentInstrumentID() {
171 return $this->paymentInstrumentID ?
$this->paymentInstrumentID
: $this->_paymentProcessor
['payment_instrument_id'];
175 * Set payment Instrument id.
177 * By default we actually ignore the form value. The manual processor takes it more seriously.
179 * @param int $paymentInstrumentID
181 public function setPaymentInstrumentID($paymentInstrumentID) {
182 $this->paymentInstrumentID
= $this->_paymentProcessor
['payment_instrument_id'];
186 * Set base return path (offsite processors).
188 * This is only useful with an internal civicrm form.
191 * Internal civicrm path.
193 public function setBaseReturnUrl($url) {
194 $this->baseReturnUrl
= $url;
198 * Set success return URL (offsite processors).
200 * This overrides $baseReturnUrl
203 * Full url of site to return browser to upon success.
205 public function setSuccessUrl($url) {
206 $this->successUrl
= $url;
210 * Set cancel return URL (offsite processors).
212 * This overrides $baseReturnUrl
215 * Full url of site to return browser to upon failure.
217 public function setCancelUrl($url) {
218 $this->cancelUrl
= $url;
222 * Set the configured payment profile.
224 * @param int|string $value
226 public function setBillingProfile($value) {
227 $this->billingProfile
= $value;
231 * Opportunity for the payment processor to override the entire form build.
233 * @param CRM_Core_Form $form
236 * Should form building stop at this point?
238 public function buildForm(&$form) {
243 * Log payment notification message to forensic system log.
245 * @todo move to factory class \Civi\Payment\System (or similar)
247 * @param array $params
251 public static function logPaymentNotification($params) {
252 $message = 'payment_notification ';
253 if (!empty($params['processor_name'])) {
254 $message .= 'processor_name=' . $params['processor_name'];
256 if (!empty($params['processor_id'])) {
257 $message .= 'processor_id=' . $params['processor_id'];
260 $log = new CRM_Utils_SystemLogger();
261 $log->alert($message, $_REQUEST);
265 * Check if capability is supported.
267 * Capabilities have a one to one relationship with capability-related functions on this class.
269 * Payment processor classes should over-ride the capability-specific function rather than this one.
271 * @param string $capability
272 * E.g BackOffice, LiveMode, FutureRecurStartDate.
276 public function supports($capability) {
277 $function = 'supports' . ucfirst($capability);
278 if (method_exists($this, $function)) {
279 return $this->$function();
285 * Are back office payments supported.
287 * e.g paypal standard won't permit you to enter a credit card associated
288 * with someone else's login.
289 * The intention is to support off-site (other than paypal) & direct debit but that is not all working yet so to
290 * reach a 'stable' point we disable.
294 protected function supportsBackOffice() {
295 if ($this->_paymentProcessor
['billing_mode'] == 4 ||
$this->_paymentProcessor
['payment_type'] != 1) {
304 * Can more than one transaction be processed at once?
306 * In general processors that process payment by server to server communication support this while others do not.
308 * In future we are likely to hit an issue where this depends on whether a token already exists.
312 protected function supportsMultipleConcurrentPayments() {
313 if ($this->_paymentProcessor
['billing_mode'] == 4 ||
$this->_paymentProcessor
['payment_type'] != 1) {
322 * Are live payments supported - e.g dummy doesn't support this.
326 protected function supportsLiveMode() {
331 * Are test payments supported.
335 protected function supportsTestMode() {
340 * Should the first payment date be configurable when setting up back office recurring payments.
342 * We set this to false for historical consistency but in fact most new processors use tokens for recurring and can support this
346 protected function supportsFutureRecurStartDate() {
351 * Does this processor support cancelling recurring contributions through code.
353 * If the processor returns true it must be possible to take action from within CiviCRM
354 * that will result in no further payments being processed. In the case of token processors (e.g
355 * IATS, eWay) updating the contribution_recur table is probably sufficient.
359 protected function supportsCancelRecurring() {
360 return method_exists(CRM_Utils_System
::getClassName($this), 'cancelSubscription');
364 * Does this processor support pre-approval.
366 * This would generally look like a redirect to enter credentials which can then be used in a later payment call.
368 * Currently Paypal express supports this, with a redirect to paypal after the 'Main' form is submitted in the
369 * contribution page. This token can then be processed at the confirm phase. Although this flow 'looks' like the
370 * 'notify' flow a key difference is that in the notify flow they don't have to return but in this flow they do.
374 protected function supportsPreApproval() {
379 * Can recurring contributions be set against pledges.
381 * In practice all processors that use the baseIPN function to finish transactions or
382 * call the completetransaction api support this by looking up previous contributions in the
383 * series and, if there is a prior contribution against a pledge, and the pledge is not complete,
384 * adding the new payment to the pledge.
386 * However, only enabling for processors it has been tested against.
390 protected function supportsRecurContributionsForPledges() {
395 * Function to action pre-approval if supported
397 * @param array $params
398 * Parameters from the form
400 * This function returns an array which should contain
401 * - pre_approval_parameters (this will be stored on the calling form & available later)
402 * - redirect_url (if set the browser will be redirected to this.
404 public function doPreApproval(&$params) {}
407 * Get any details that may be available to the payment processor due to an approval process having happened.
409 * In some cases the browser is redirected to enter details on a processor site. Some details may be available as a
412 * @param array $storedDetails
416 public function getPreApprovalDetails($storedDetails) {
421 * Default payment instrument validation.
423 * Implement the usual Luhn algorithm via a static function in the CRM_Core_Payment_Form if it's a credit card
424 * Not a static function, because I need to check for payment_type.
426 * @param array $values
427 * @param array $errors
429 public function validatePaymentInstrument($values, &$errors) {
430 CRM_Core_Form
::validateMandatoryFields($this->getMandatoryFields(), $values, $errors);
431 if ($this->_paymentProcessor
['payment_type'] == 1) {
432 CRM_Core_Payment_Form
::validateCreditCard($values, $errors, $this->_paymentProcessor
['id']);
437 * Getter for the payment processor.
439 * The payment processor array is based on the civicrm_payment_processor table entry.
442 * Payment processor array.
444 public function getPaymentProcessor() {
445 return $this->_paymentProcessor
;
449 * Setter for the payment processor.
451 * @param array $processor
453 public function setPaymentProcessor($processor) {
454 $this->_paymentProcessor
= $processor;
458 * Setter for the payment form that wants to use the processor.
462 * @param CRM_Core_Form $paymentForm
464 public function setForm(&$paymentForm) {
465 $this->_paymentForm
= $paymentForm;
469 * Getter for payment form that is using the processor.
471 * @return CRM_Core_Form
474 public function getForm() {
475 return $this->_paymentForm
;
479 * Get help text information (help, description, etc.) about this payment,
480 * to display to the user.
482 * @param string $context
483 * Context of the text.
484 * Only explicitly supported contexts are handled without error.
485 * Currently supported:
486 * - contributionPageRecurringHelp (params: is_recur_installments, is_email_receipt)
488 * @param array $params
489 * Parameters for the field, context specific.
493 public function getText($context, $params) {
494 // I have deliberately added a noisy fail here.
495 // The function is intended to be extendable, but not by changes
496 // not documented clearly above.
498 case 'contributionPageRecurringHelp':
499 // require exactly two parameters
500 if (array_keys($params) == array('is_recur_installments', 'is_email_receipt')) {
501 $gotText = ts('Your recurring contribution will be processed automatically.');
502 if ($params['is_recur_installments']) {
503 $gotText .= ' ' . ts('You can specify the number of installments, or you can leave the number of installments blank if you want to make an open-ended commitment. In either case, you can choose to cancel at any time.');
505 if ($params['is_email_receipt']) {
506 $gotText .= ' ' . ts('You will receive an email receipt for each recurring contribution.');
515 * Getter for accessing member vars.
517 * @todo believe this is unused
519 * @param string $name
523 public function getVar($name) {
524 return isset($this->$name) ?
$this->$name : NULL;
528 * Get name for the payment information type.
529 * @todo - use option group + name field (like Omnipay does)
532 public function getPaymentTypeName() {
533 return $this->_paymentProcessor
['payment_type'] == 1 ?
'credit_card' : 'direct_debit';
537 * Get label for the payment information type.
538 * @todo - use option group + labels (like Omnipay does)
541 public function getPaymentTypeLabel() {
542 return $this->_paymentProcessor
['payment_type'] == 1 ?
'Credit Card' : 'Direct Debit';
546 * Get array of fields that should be displayed on the payment form.
549 * array('credit_card_type', 'credit_card_number', 'cvv2', 'credit_card_exp_date')
551 * array('account_holder', 'bank_account_number', 'bank_identification_number', 'bank_name')
556 * Array of payment fields appropriate to the payment processor.
558 * @throws CiviCRM_API3_Exception
560 public function getPaymentFormFields() {
561 if ($this->_paymentProcessor
['billing_mode'] == 4) {
564 return $this->_paymentProcessor
['payment_type'] == 1 ?
$this->getCreditCardFormFields() : $this->getDirectDebitFormFields();
568 * Get an array of the fields that can be edited on the recurring contribution.
570 * Some payment processors support editing the amount and other scheduling details of recurring payments, especially
571 * those which use tokens. Others are fixed. This function allows the processor to return an array of the fields that
572 * can be updated from the contribution recur edit screen.
574 * The fields are likely to be a subset of these
577 * - 'frequency_interval',
578 * - 'frequency_unit',
580 * - 'next_sched_contribution_date',
582 * - 'failure_retry_day',
584 * The form does not restrict which fields from the contribution_recur table can be added (although if the html_type
585 * metadata is not defined in the xml for the field it will cause an error.
587 * Open question - would it make sense to return membership_id in this - which is sometimes editable and is on that
588 * form (UpdateSubscription).
592 public function getEditableRecurringScheduleFields() {
593 if (method_exists($this, 'changeSubscriptionAmount')) {
594 return array('amount');
599 * Get the help text to present on the recurring update page.
601 * This should reflect what can or cannot be edited.
605 public function getRecurringScheduleUpdateHelpText() {
606 if (!in_array('amount', $this->getEditableRecurringScheduleFields())) {
607 return ts('Updates made using this form will change the recurring contribution information stored in your CiviCRM database, but will NOT be sent to the payment processor. You must enter the same changes using the payment processor web site.');
609 return ts('Use this form to change the amount or number of installments for this recurring contribution. Changes will be automatically sent to the payment processor. You can not change the contribution frequency.');
613 * Get the metadata for all required fields.
617 protected function getMandatoryFields() {
618 $mandatoryFields = array();
619 foreach ($this->getAllFields() as $field_name => $field_spec) {
620 if (!empty($field_spec['is_required'])) {
621 $mandatoryFields[$field_name] = $field_spec;
624 return $mandatoryFields;
628 * Get the metadata of all the fields configured for this processor.
632 protected function getAllFields() {
633 $paymentFields = array_intersect_key($this->getPaymentFormFieldsMetadata(), array_flip($this->getPaymentFormFields()));
634 $billingFields = array_intersect_key($this->getBillingAddressFieldsMetadata(), array_flip($this->getBillingAddressFields()));
635 return array_merge($paymentFields, $billingFields);
638 * Get array of fields that should be displayed on the payment form for credit cards.
642 protected function getCreditCardFormFields() {
645 'credit_card_number',
647 'credit_card_exp_date',
652 * Get array of fields that should be displayed on the payment form for direct debits.
656 protected function getDirectDebitFormFields() {
659 'bank_account_number',
660 'bank_identification_number',
666 * Return an array of all the details about the fields potentially required for payment fields.
668 * Only those determined by getPaymentFormFields will actually be assigned to the form
673 public function getPaymentFormFieldsMetadata() {
674 //@todo convert credit card type into an option value
675 $creditCardType = array('' => ts('- select -')) + CRM_Contribute_PseudoConstant
::creditCard();
676 $isCVVRequired = Civi
::settings()->get('cvv_backoffice_required');
677 if (!$this->isBackOffice()) {
678 $isCVVRequired = TRUE;
681 'credit_card_number' => array(
682 'htmlType' => 'text',
683 'name' => 'credit_card_number',
684 'title' => ts('Card Number'),
685 'attributes' => array(
688 'autocomplete' => 'off',
689 'class' => 'creditcard',
691 'is_required' => TRUE,
694 'htmlType' => 'text',
696 'title' => ts('Security Code'),
697 'attributes' => array(
700 'autocomplete' => 'off',
702 'is_required' => $isCVVRequired,
705 'rule_message' => ts('Please enter a valid value for your card security code. This is usually the last 3-4 digits on the card\'s signature panel.'),
706 'rule_name' => 'integer',
707 'rule_parameters' => NULL,
711 'credit_card_exp_date' => array(
712 'htmlType' => 'date',
713 'name' => 'credit_card_exp_date',
714 'title' => ts('Expiration Date'),
715 'attributes' => CRM_Core_SelectValues
::date('creditCard'),
716 'is_required' => TRUE,
719 'rule_message' => ts('Card expiration date cannot be a past date.'),
720 'rule_name' => 'currentDate',
721 'rule_parameters' => TRUE,
725 'credit_card_type' => array(
726 'htmlType' => 'select',
727 'name' => 'credit_card_type',
728 'title' => ts('Card Type'),
729 'attributes' => $creditCardType,
730 'is_required' => FALSE,
732 'account_holder' => array(
733 'htmlType' => 'text',
734 'name' => 'account_holder',
735 'title' => ts('Account Holder'),
736 'attributes' => array(
739 'autocomplete' => 'on',
741 'is_required' => TRUE,
743 //e.g. IBAN can have maxlength of 34 digits
744 'bank_account_number' => array(
745 'htmlType' => 'text',
746 'name' => 'bank_account_number',
747 'title' => ts('Bank Account Number'),
748 'attributes' => array(
751 'autocomplete' => 'off',
755 'rule_message' => ts('Please enter a valid Bank Identification Number (value must not contain punctuation characters).'),
756 'rule_name' => 'nopunctuation',
757 'rule_parameters' => NULL,
760 'is_required' => TRUE,
762 //e.g. SWIFT-BIC can have maxlength of 11 digits
763 'bank_identification_number' => array(
764 'htmlType' => 'text',
765 'name' => 'bank_identification_number',
766 'title' => ts('Bank Identification Number'),
767 'attributes' => array(
770 'autocomplete' => 'off',
772 'is_required' => TRUE,
775 'rule_message' => ts('Please enter a valid Bank Identification Number (value must not contain punctuation characters).'),
776 'rule_name' => 'nopunctuation',
777 'rule_parameters' => NULL,
781 'bank_name' => array(
782 'htmlType' => 'text',
783 'name' => 'bank_name',
784 'title' => ts('Bank Name'),
785 'attributes' => array(
788 'autocomplete' => 'off',
790 'is_required' => TRUE,
793 'check_number' => array(
794 'htmlType' => 'text',
795 'name' => 'check_number',
796 'title' => ts('Check Number'),
797 'is_required' => FALSE,
798 'attributes' => NULL,
800 'pan_truncation' => array(
801 'htmlType' => 'text',
802 'name' => 'pan_truncation',
803 'title' => ts('Last 4 digits of the card'),
804 'is_required' => FALSE,
805 'attributes' => array(
809 'autocomplete' => 'off',
813 'rule_message' => ts('Please enter valid last 4 digit card number.'),
814 'rule_name' => 'numeric',
815 'rule_parameters' => NULL,
819 'payment_token' => array(
820 'htmlType' => 'hidden',
821 'name' => 'payment_token',
822 'title' => ts('Authorization token'),
823 'is_required' => FALSE,
824 'attributes' => ['size' => 10, 'autocomplete' => 'off', 'id' => 'payment_token'],
830 * Get billing fields required for this processor.
832 * We apply the existing default of returning fields only for payment processor type 1. Processors can override to
835 * @param int $billingLocationID
839 public function getBillingAddressFields($billingLocationID = NULL) {
840 if (!$billingLocationID) {
841 // Note that although the billing id is passed around the forms the idea that it would be anything other than
842 // the result of the function below doesn't seem to have eventuated.
843 // So taking this as a param is possibly something to be removed in favour of the standard default.
844 $billingLocationID = CRM_Core_BAO_LocationType
::getBilling();
846 if ($this->_paymentProcessor
['billing_mode'] != 1 && $this->_paymentProcessor
['billing_mode'] != 3) {
850 'first_name' => 'billing_first_name',
851 'middle_name' => 'billing_middle_name',
852 'last_name' => 'billing_last_name',
853 'street_address' => "billing_street_address-{$billingLocationID}",
854 'city' => "billing_city-{$billingLocationID}",
855 'country' => "billing_country_id-{$billingLocationID}",
856 'state_province' => "billing_state_province_id-{$billingLocationID}",
857 'postal_code' => "billing_postal_code-{$billingLocationID}",
862 * Get form metadata for billing address fields.
864 * @param int $billingLocationID
867 * Array of metadata for address fields.
869 public function getBillingAddressFieldsMetadata($billingLocationID = NULL) {
870 if (!$billingLocationID) {
871 // Note that although the billing id is passed around the forms the idea that it would be anything other than
872 // the result of the function below doesn't seem to have eventuated.
873 // So taking this as a param is possibly something to be removed in favour of the standard default.
874 $billingLocationID = CRM_Core_BAO_LocationType
::getBilling();
877 $metadata['billing_first_name'] = array(
878 'htmlType' => 'text',
879 'name' => 'billing_first_name',
880 'title' => ts('Billing First Name'),
882 'attributes' => array(
885 'autocomplete' => 'off',
887 'is_required' => TRUE,
890 $metadata['billing_middle_name'] = array(
891 'htmlType' => 'text',
892 'name' => 'billing_middle_name',
893 'title' => ts('Billing Middle Name'),
895 'attributes' => array(
898 'autocomplete' => 'off',
900 'is_required' => FALSE,
903 $metadata['billing_last_name'] = array(
904 'htmlType' => 'text',
905 'name' => 'billing_last_name',
906 'title' => ts('Billing Last Name'),
908 'attributes' => array(
911 'autocomplete' => 'off',
913 'is_required' => TRUE,
916 $metadata["billing_street_address-{$billingLocationID}"] = array(
917 'htmlType' => 'text',
918 'name' => "billing_street_address-{$billingLocationID}",
919 'title' => ts('Street Address'),
921 'attributes' => array(
924 'autocomplete' => 'off',
926 'is_required' => TRUE,
929 $metadata["billing_city-{$billingLocationID}"] = array(
930 'htmlType' => 'text',
931 'name' => "billing_city-{$billingLocationID}",
932 'title' => ts('City'),
934 'attributes' => array(
937 'autocomplete' => 'off',
939 'is_required' => TRUE,
942 $metadata["billing_state_province_id-{$billingLocationID}"] = array(
943 'htmlType' => 'chainSelect',
944 'title' => ts('State/Province'),
945 'name' => "billing_state_province_id-{$billingLocationID}",
947 'is_required' => TRUE,
950 $metadata["billing_postal_code-{$billingLocationID}"] = array(
951 'htmlType' => 'text',
952 'name' => "billing_postal_code-{$billingLocationID}",
953 'title' => ts('Postal Code'),
955 'attributes' => array(
958 'autocomplete' => 'off',
960 'is_required' => TRUE,
963 $metadata["billing_country_id-{$billingLocationID}"] = array(
964 'htmlType' => 'select',
965 'name' => "billing_country_id-{$billingLocationID}",
966 'title' => ts('Country'),
968 'attributes' => array(
969 '' => ts('- select -'),
970 ) + CRM_Core_PseudoConstant
::country(),
971 'is_required' => TRUE,
977 * Get base url dependent on component.
979 * (or preferably set it using the setter function).
983 protected function getBaseReturnUrl() {
984 if ($this->baseReturnUrl
) {
985 return $this->baseReturnUrl
;
987 if ($this->_component
== 'event') {
988 $baseURL = 'civicrm/event/register';
991 $baseURL = 'civicrm/contribute/transact';
997 * Get the currency for the transaction.
999 * Handle any inconsistency about how it is passed in here.
1005 protected function getCurrency($params) {
1006 return CRM_Utils_Array
::value('currencyID', $params, CRM_Utils_Array
::value('currency', $params));
1010 * Get the currency for the transaction.
1012 * Handle any inconsistency about how it is passed in here.
1018 protected function getAmount($params) {
1019 return CRM_Utils_Money
::format($params['amount'], NULL, NULL, TRUE);
1023 * Get url to return to after cancelled or failed transaction.
1025 * @param string $qfKey
1026 * @param int $participantID
1028 * @return string cancel url
1030 public function getCancelUrl($qfKey, $participantID) {
1031 if (isset($this->cancelUrl
)) {
1032 return $this->cancelUrl
;
1035 if ($this->_component
== 'event') {
1036 return CRM_Utils_System
::url($this->getBaseReturnUrl(), array(
1039 'participantId' => $participantID,
1045 return CRM_Utils_System
::url($this->getBaseReturnUrl(), array(
1046 '_qf_Main_display' => 1,
1055 * Get URL to return the browser to on success.
1061 protected function getReturnSuccessUrl($qfKey) {
1062 if (isset($this->successUrl
)) {
1063 return $this->successUrl
;
1066 return CRM_Utils_System
::url($this->getBaseReturnUrl(), array(
1067 '_qf_ThankYou_display' => 1,
1075 * Get URL to return the browser to on failure.
1077 * @param string $key
1078 * @param int $participantID
1079 * @param int $eventID
1082 * URL for a failing transactor to be redirected to.
1084 protected function getReturnFailUrl($key, $participantID = NULL, $eventID = NULL) {
1085 if (isset($this->cancelUrl
)) {
1086 return $this->cancelUrl
;
1089 $test = $this->_is_test ?
'&action=preview' : '';
1090 if ($this->_component
== "event") {
1091 return CRM_Utils_System
::url('civicrm/event/register',
1092 "reset=1&cc=fail&participantId={$participantID}&id={$eventID}{$test}&qfKey={$key}",
1097 return CRM_Utils_System
::url('civicrm/contribute/transact',
1098 "_qf_Main_display=1&cancel=1&qfKey={$key}{$test}",
1105 * Get URl for when the back button is pressed.
1109 * @return string url
1111 protected function getGoBackUrl($qfKey) {
1112 return CRM_Utils_System
::url($this->getBaseReturnUrl(), array(
1113 '_qf_Confirm_display' => 'true',
1121 * Get the notify (aka ipn, web hook or silent post) url.
1123 * If there is no '.' in it we assume that we are dealing with localhost or
1124 * similar and it is unreachable from the web & hence invalid.
1127 * URL to notify outcome of transaction.
1129 protected function getNotifyUrl() {
1130 $url = CRM_Utils_System
::url(
1131 'civicrm/payment/ipn/' . $this->_paymentProcessor
['id'],
1137 return (stristr($url, '.')) ?
$url : '';
1141 * Calling this from outside the payment subsystem is deprecated - use doPayment.
1143 * Does a server to server payment transaction.
1145 * @param array $params
1146 * Assoc array of input parameters for this transaction.
1149 * the result in an nice formatted array (or an error object - but throwing exceptions is preferred)
1151 protected function doDirectPayment(&$params) {
1156 * Process payment - this function wraps around both doTransferPayment and doDirectPayment.
1158 * The function ensures an exception is thrown & moves some of this logic out of the form layer and makes the forms
1161 * Payment processors should set payment_status_id. This function adds some historical defaults ie. the
1162 * assumption that if a 'doDirectPayment' processors comes back it completed the transaction & in fact
1163 * doTransferCheckout would not traditionally come back.
1165 * doDirectPayment does not do an immediate payment for Authorize.net or Paypal so the default is assumed
1168 * Once this function is fully rolled out then it will be preferred for processors to throw exceptions than to
1169 * return Error objects
1171 * @param array $params
1173 * @param string $component
1178 * @throws \Civi\Payment\Exception\PaymentProcessorException
1180 public function doPayment(&$params, $component = 'contribute') {
1181 $this->_component
= $component;
1182 $statuses = CRM_Contribute_BAO_Contribution
::buildOptions('contribution_status_id', 'validate');
1184 // If we have a $0 amount, skip call to processor and set payment_status to Completed.
1185 // Conceivably a processor might override this - perhaps for setting up a token - but we don't
1186 // have an example of that at the mome.
1187 if ($params['amount'] == 0) {
1188 $result['payment_status_id'] = array_search('Completed', $statuses);
1192 if ($this->_paymentProcessor
['billing_mode'] == 4) {
1193 $result = $this->doTransferCheckout($params, $component);
1194 if (is_array($result) && !isset($result['payment_status_id'])) {
1195 $result['payment_status_id'] = array_search('Pending', $statuses);
1199 $result = $this->doDirectPayment($params, $component);
1200 if (is_array($result) && !isset($result['payment_status_id'])) {
1201 if (!empty($params['is_recur'])) {
1202 // See comment block.
1203 $result['payment_status_id'] = array_search('Pending', $statuses);
1206 $result['payment_status_id'] = array_search('Completed', $statuses);
1210 if (is_a($result, 'CRM_Core_Error')) {
1211 throw new PaymentProcessorException(CRM_Core_Error
::getMessages($result));
1217 * Query payment processor for details about a transaction.
1219 * @param array $params
1220 * Array of parameters containing one of:
1221 * - trxn_id Id of an individual transaction.
1222 * - processor_id Id of a recurring contribution series as stored in the civicrm_contribution_recur table.
1225 * Extra parameters retrieved.
1226 * Any parameters retrievable through this should be documented in the function comments at
1227 * CRM_Core_Payment::doQuery. Currently:
1228 * - fee_amount Amount of fee paid
1230 public function doQuery($params) {
1235 * This function checks to see if we have the right config values.
1238 * the error message if any
1240 abstract protected function checkConfig();
1243 * Redirect for paypal.
1245 * @todo move to paypal class or remove
1247 * @param $paymentProcessor
1251 public static function paypalRedirect(&$paymentProcessor) {
1252 if (!$paymentProcessor) {
1256 if (isset($_GET['payment_date']) &&
1257 isset($_GET['merchant_return_link']) &&
1258 CRM_Utils_Array
::value('payment_status', $_GET) == 'Completed' &&
1259 $paymentProcessor['payment_processor_type'] == "PayPal_Standard"
1268 * Handle incoming payment notification.
1270 * IPNs, also called silent posts are notifications of payment outcomes or activity on an external site.
1272 * @todo move to0 \Civi\Payment\System factory method
1273 * Page callback for civicrm/payment/ipn
1275 public static function handleIPN() {
1276 self
::handlePaymentMethod(
1277 'PaymentNotification',
1279 'processor_name' => @$_GET['processor_name'],
1280 'processor_id' => @$_GET['processor_id'],
1281 'mode' => @$_GET['mode'],
1284 CRM_Utils_System
::civiExit();
1288 * Payment callback handler.
1290 * The processor_name or processor_id is passed in.
1291 * Note that processor_id is more reliable as one site may have more than one instance of a
1292 * processor & ideally the processor will be validating the results
1293 * Load requested payment processor and call that processor's handle<$method> method
1295 * @todo move to \Civi\Payment\System factory method
1297 * @param string $method
1298 * 'PaymentNotification' or 'PaymentCron'
1299 * @param array $params
1301 * @throws \CRM_Core_Exception
1302 * @throws \Exception
1304 public static function handlePaymentMethod($method, $params = array()) {
1305 if (!isset($params['processor_id']) && !isset($params['processor_name'])) {
1306 $q = explode('/', CRM_Utils_Array
::value(CRM_Core_Config
::singleton()->userFrameworkURLVar
, $_GET, ''));
1307 $lastParam = array_pop($q);
1308 if (is_numeric($lastParam)) {
1309 $params['processor_id'] = $_GET['processor_id'] = $lastParam;
1312 self
::logPaymentNotification($params);
1313 throw new CRM_Core_Exception("Either 'processor_id' (recommended) or 'processor_name' (deprecated) is required for payment callback.");
1317 self
::logPaymentNotification($params);
1319 $sql = "SELECT ppt.class_name, ppt.name as processor_name, pp.id AS processor_id
1320 FROM civicrm_payment_processor_type ppt
1321 INNER JOIN civicrm_payment_processor pp
1322 ON pp.payment_processor_type_id = ppt.id
1325 if (isset($params['processor_id'])) {
1326 $sql .= " WHERE pp.id = %2";
1327 $args[2] = array($params['processor_id'], 'Integer');
1328 $notFound = ts("No active instances of payment processor %1 were found.", array(1 => $params['processor_id']));
1331 // This is called when processor_name is passed - passing processor_id instead is recommended.
1332 $sql .= " WHERE ppt.name = %2 AND pp.is_test = %1";
1334 (CRM_Utils_Array
::value('mode', $params) == 'test') ?
1 : 0,
1337 $args[2] = array($params['processor_name'], 'String');
1338 $notFound = ts("No active instances of payment processor '%1' were found.", array(1 => $params['processor_name']));
1341 $dao = CRM_Core_DAO
::executeQuery($sql, $args);
1343 // Check whether we found anything at all.
1345 CRM_Core_Error
::fatal($notFound);
1348 $method = 'handle' . $method;
1349 $extension_instance_found = FALSE;
1351 // In all likelihood, we'll just end up with the one instance returned here. But it's
1352 // possible we may get more. Hence, iterate through all instances ..
1354 while ($dao->fetch()) {
1355 // Check pp is extension - is this still required - surely the singleton below handles it.
1356 $ext = CRM_Extension_System
::singleton()->getMapper();
1357 if ($ext->isExtensionKey($dao->class_name
)) {
1358 $paymentClass = $ext->keyToClass($dao->class_name
, 'payment');
1359 require_once $ext->classToPath($paymentClass);
1362 $processorInstance = System
::singleton()->getById($dao->processor_id
);
1364 // Should never be empty - we already established this processor_id exists and is active.
1365 if (empty($processorInstance)) {
1369 // Does PP implement this method, and can we call it?
1370 if (!method_exists($processorInstance, $method) ||
1371 !is_callable(array($processorInstance, $method))
1373 // on the off chance there is a double implementation of this processor we should keep looking for another
1374 // note that passing processor_id is more reliable & we should work to deprecate processor_name
1378 // Everything, it seems, is ok - execute pp callback handler
1379 $processorInstance->$method();
1380 $extension_instance_found = TRUE;
1383 if (!$extension_instance_found) {
1384 $message = "No extension instances of the '%1' payment processor were found.<br />" .
1385 "%2 method is unsupported in legacy payment processors.";
1386 CRM_Core_Error
::fatal(ts($message, array(1 => $params['processor_name'], 2 => $method)));
1391 * Check whether a method is present ( & supported ) by the payment processor object.
1393 * @deprecated - use $paymentProcessor->supports(array('cancelRecurring');
1395 * @param string $method
1396 * Method to check for.
1400 public function isSupported($method) {
1401 return method_exists(CRM_Utils_System
::getClassName($this), $method);
1405 * Some processors replace the form submit button with their own.
1407 * Returning false here will leave the button off front end forms.
1409 * At this stage there is zero cross-over between back-office processors and processors that suppress the submit.
1411 public function isSuppressSubmitButtons() {
1416 * Checks to see if invoice_id already exists in db.
1418 * It's arguable if this belongs in the payment subsystem at all but since several processors implement it
1419 * it is better to standardise to being here.
1421 * @param int $invoiceId The ID to check.
1423 * @param null $contributionID
1424 * If a contribution exists pass in the contribution ID.
1427 * True if invoice ID otherwise exists, else false
1429 protected function checkDupe($invoiceId, $contributionID = NULL) {
1430 $contribution = new CRM_Contribute_DAO_Contribution();
1431 $contribution->invoice_id
= $invoiceId;
1432 if ($contributionID) {
1433 $contribution->whereAdd("id <> $contributionID");
1435 return $contribution->find();
1439 * Get url for users to manage this recurring contribution for this processor.
1441 * @param int $entityID
1442 * @param null $entity
1443 * @param string $action
1447 public function subscriptionURL($entityID = NULL, $entity = NULL, $action = 'cancel') {
1451 $url = 'civicrm/contribute/unsubscribe';
1455 //in notify mode don't return the update billing url
1456 if (!$this->isSupported('updateSubscriptionBillingInfo')) {
1459 $url = 'civicrm/contribute/updatebilling';
1463 $url = 'civicrm/contribute/updaterecur';
1467 $userId = CRM_Core_Session
::singleton()->get('userID');
1469 $checksumValue = '';
1472 // Find related Contact
1476 $contactID = CRM_Core_DAO
::getFieldValue("CRM_Member_DAO_Membership", $entityID, "contact_id");
1480 case 'contribution':
1481 $contactID = CRM_Core_DAO
::getFieldValue("CRM_Contribute_DAO_Contribution", $entityID, "contact_id");
1482 $entityArg = 'coid';
1487 SELECT DISTINCT con.contact_id
1488 FROM civicrm_contribution_recur rec
1489 INNER JOIN civicrm_contribution con ON ( con.contribution_recur_id = rec.id )
1491 $contactID = CRM_Core_DAO
::singleValueQuery($sql, array(1 => array($entityID, 'Integer')));
1492 $entityArg = 'crid';
1497 // Add entity arguments
1498 if ($entityArg != '') {
1499 // Add checksum argument
1500 if ($contactID != 0 && $userId != $contactID) {
1501 $checksumValue = '&cs=' . CRM_Contact_BAO_Contact_Utils
::generateChecksum($contactID, NULL, 'inf');
1503 return CRM_Utils_System
::url($url, "reset=1&{$entityArg}={$entityID}{$checksumValue}", TRUE, NULL, FALSE, TRUE);
1507 if ($this->isSupported('accountLoginURL')) {
1508 return $this->accountLoginURL();
1512 return isset($this->_paymentProcessor
['url_recur']) ?
$this->_paymentProcessor
['url_recur'] : '';
1516 * Get description of payment to pass to processor.
1518 * This is often what people see in the interface so we want to get
1519 * as much unique information in as possible within the field length (& presumably the early part of the field)
1521 * People seeing these can be assumed to be advanced users so quantity of information probably trumps
1522 * having field names to clarify
1524 * @param array $params
1525 * @param int $length
1529 protected function getPaymentDescription($params, $length = 24) {
1530 $parts = array('contactID', 'contributionID', 'description', 'billing_first_name', 'billing_last_name');
1531 $validParts = array();
1532 if (isset($params['description'])) {
1533 $uninformativeStrings = array(ts('Online Event Registration: '), ts('Online Contribution: '));
1534 $params['description'] = str_replace($uninformativeStrings, '', $params['description']);
1536 foreach ($parts as $part) {
1537 if ((!empty($params[$part]))) {
1538 $validParts[] = $params[$part];
1541 return substr(implode('-', $validParts), 0, $length);
1545 * Checks if backoffice recurring edit is allowed
1549 public function supportsEditRecurringContribution() {
1554 * Checks if payment processor supports recurring contributions
1558 public function supportsRecurring() {
1559 if (!empty($this->_paymentProcessor
['is_recur'])) {
1566 * Should a receipt be sent out for a pending payment.
1568 * e.g for traditional pay later & ones with a delayed settlement a pending receipt makes sense.
1570 public function isSendReceiptForPending() {