payment_2eximb_2result__rec_8php_source.html

<?if (!defined("B_PROLOG_INCLUDED") || B_PROLOG_INCLUDED !== true) die();?><?

include(GetLangFileName(dirname(__FILE__)."/", "/payment.php"));

if(!function_exists("bx_hmac"))

{

    function bx_hmac($algo, $data, $key, $raw_output = false)

    {

        $algo = mb_strtolower($algo);

        $pack = "H".mb_strlen($algo("test"));

        $size = 64;

        $opad = str_repeat(chr(0x5C), $size);

        $ipad = str_repeat(chr(0x36), $size);


        if (mb_strlen($key) > $size) {

            $key = str_pad(pack($pack, $algo($key)), $size, chr(0x00));

        } else {

            $key = str_pad($key, $size, chr(0x00));

        }


        $lenKey = mb_strlen($key) - 1;

        for ($i = 0; $i < $lenKey; $i++) {

            $opad[$i] = $opad[$i] ^ $key[$i];

            $ipad[$i] = $ipad[$i] ^ $key[$i];

        }


        $output = $algo($opad.pack($pack, $algo($ipad.$data)));

        return ($raw_output) ? pack($pack, $output) : $output;

    }

}


$p_terminal = $_POST["TERMINAL"];

$p_trtype = $_POST["TRTYPE"];

$p_order = $_POST["ORDER"];

$p_amount = $_POST["AMOUNT"];

$p_currency = $_POST["CURRENCY"];

$p_action = $_POST["ACTION"];

$p_rc = $_POST["RC"];

$p_approval = $_POST["APPROVAL"];

$p_rrn = $_POST["RRN"];

$p_int_ref = $_POST["INT_REF"];

$p_tm = $_POST["TIMESTAMP"];

$p_cardbin = $_POST["CARDBIN"];

$p_nonce = $_POST["NONCE"];

$p_sign = $_POST["P_SIGN"];

$p_extcode = $_POST["EXTCODE"];


$bError = true;


$mac = CSalePaySystemAction::GetParamValue("MAC");


if($mac <> '' && $arOrder = CSaleOrder::GetByID(intval($p_order)))

{

    CSalePaySystemAction::InitParamArrays($arOrder, $arOrder["ID"]);


    $amount = CSalePaySystemAction::GetParamValue("SHOULD_PAY");

    $amount = number_format($amount, 2, ".", "");

    $currency = CSalePaySystemAction::GetParamValue("CURRENCY");

    if($currency == '')

        $currency = "UAH";


    $order = CSalePaySystemAction::GetParamValue("ORDER_ID");

    if(mb_strlen($order) < 6)

    {

        $n = 6 - mb_strlen($order);

        for($i = 0; $i < $n; $i++)

            $order = "0".$order;

    }


    $desc = trim(CSalePaySystemAction::GetParamValue("ORDER_DESC").CSalePaySystemAction::GetParamValue("ORDER_ID"));

    $merchant = CSalePaySystemAction::GetParamValue("MERCHANT");

    $terminal = CSalePaySystemAction::GetParamValue("TERMINAL");

    $email = CSalePaySystemAction::GetParamValue("EMAIL");


    $PAY_OK = str_replace("#ID#", $arOrder["ID"], CSalePaySystemAction::GetParamValue("PAY_OK"));

    $PAY_ERROR = str_replace("#ID#", $arOrder["ID"], CSalePaySystemAction::GetParamValue("PAY_ERROR"));

    $ALLOW_DELIVERY = CSalePaySystemAction::GetParamValue("ALLOW_DELIVERY");


    if(CSalePaySystemAction::GetParamValue("IS_TEST") <> '')

        $server_url = "/cgi-bin/cgi_test";

    else

        $server_url = "/cgi-bin/cgi_link";


    $key = pack("H*", $mac);


    $sign = ToUpper(bx_hmac("sha1",

        ($p_rrn <> '' ? mb_strlen($p_rrn).$p_rrn : "-").

        ($p_int_ref <> '' ? mb_strlen($p_int_ref).$p_int_ref : "-").

        ($p_terminal <> '' ? mb_strlen($p_terminal).$p_terminal : "-").

        ($p_trtype <> '' ? mb_strlen($p_trtype).$p_trtype : "-").

        ($p_order <> '' ? mb_strlen($p_order).$p_order : "-").

        ($p_amount <> '' ? mb_strlen($p_amount).$p_amount : "-").

        ($p_currency <> '' ? mb_strlen($p_currency).$p_currency : "-").

        ($p_action <> '' ? mb_strlen($p_action).$p_action : "-").

        ($p_rc <> '' ? mb_strlen($p_rc).$p_rc : "-").

        ($p_approval <> '' ? mb_strlen($p_approval).$p_approval : "-").

        ($p_tm <> '' ? mb_strlen($p_tm).$p_tm : "-").

        ($p_nonce <> '' ? mb_strlen($p_nonce).$p_nonce : "-")

        ,

        $key

        ));


    $strPS_STATUS_DESCRIPTION = "";

    $strPS_STATUS_DESCRIPTION .= "ACTION: ".$p_action."; ";

    $strPS_STATUS_DESCRIPTION .= "RC: ".$p_rc."; ";

    $strPS_STATUS_DESCRIPTION .= "APPROVAL: ".$p_approval."; ";

    $strPS_STATUS_DESCRIPTION .= "RRN: ".$p_rrn."; ";

    $strPS_STATUS_DESCRIPTION .= "INT_REF: ".$p_int_ref."; ";


    $arFields = array(

            "PS_STATUS" => "N",

            "PS_STATUS_CODE" => $p_action,

            "PS_STATUS_DESCRIPTION" => $strPS_STATUS_DESCRIPTION,

            "PS_STATUS_MESSAGE" => "",

            "PS_SUM" => $p_amount,

            "PS_CURRENCY" => $p_currency,

            "PS_RESPONSE_DATE" => Date(CDatabase::DateFormatToPHP(CLang::GetDateFormat("FULL", LANG))),

        );

    if($p_extcode <> '' && $p_extcode != "NONE")

        $arFields["PS_STATUS_MESSAGE"] .= GetMessage("EXTCODE_".$p_extcode).". ";


    if($sign == $p_sign)

    {

        if($p_action == "0" && $p_rc = "00")

        {

            if(DoubleVal($p_amount) == DoubleVal($arOrder["PRICE"]) && $p_currency == $currency)

            {

                echo $PAY_OK;

                $bError = false;

                $arFields["PS_STATUS"] = "Y";


                if($arOrder["PAYED"] != "Y")

                    CSaleOrder::PayOrder($arOrder["ID"], "Y", true, true);

                if($arOrder["ALLOW_DELIVERY"] != "Y" && $ALLOW_DELIVERY == "Y")

                    CSaleOrder::DeliverOrder($arOrder["ID"], "Y");


                $trtype = 21;

                $time = gmdate("YmdHis", time());

                $var = unpack("H*r", ToUpper(mb_substr(md5(uniqid(30)), 0, 8)));

                $nonce = $var[r];


                $signew = bx_hmac("sha1",

                    mb_strlen($order).$order.

                    mb_strlen($amount).$amount.

                    mb_strlen($currency).$currency.

                    mb_strlen($p_rrn).$p_rrn.

                    mb_strlen($p_int_ref).$p_int_ref.

                    mb_strlen($trtype).$trtype.

                    mb_strlen($terminal).$terminal.

                    mb_strlen($time).$time.

                    mb_strlen($nonce).$nonce

                        ,

                        $key

                    );


                $res = "";

                $res .= "TRTYPE=".$trtype;

                $res .= "&ORDER=".$order;

                $res .= "&AMOUNT=".$amount;

                $res .= "&CURRENCY=".$currency;

                $res .= "&RRN=".$p_rrn;

                $res .= "&INT_REF=".$p_int_ref;

                $res .= "&TERMINAL=".$terminal;

                $res .= "&TIMESTAMP=".$time;

                $res .= "&NONCE=".$nonce;

                $res .= "&EMAIL=".$email;

                $res .= "&LANG=";

                $res .= "&P_SIGN=".$signew;


                $header = "POST ".$server_url." HTTP/1.0\r\n";

                $header .= "Content-Type: application/x-www-form-urlencoded\r\n";

                $header .= "Content-Length: ".mb_strlen($res) . "\r\n\r\n";


                $fp = fsockopen("ssl://3ds.eximb.com", 443, $errno, $errstr, 60);

                if($fp)

                    fputs ($fp, $header.$res);

                fclose ($fp);

            }

            else

                $arFields["PS_STATUS_MESSAGE"] .= GetMessage("ERROR_SUM").". ";

        }

    }

    else

        $arFields["PS_STATUS_MESSAGE"] .= GetMessage("ERROR_CHECKSUM")."";


    if($bError)

        echo $PAY_ERROR;


    CSaleOrder::Update($arOrder["ID"], $arFields);

}

?>

CAllSalePaySystemAction\GetParamValue
static GetParamValue($key, $defaultValue=null)
Определения pay_system_action.php:76

CSaleOrder\Update
static Update($ID, $arFields, $bDateUpdate=true)
Определения order.php:140

$arFields
$arFields
Определения dblapprove.php:5

$data
$data['IS_AVAILABLE']
Определения .description.php:13

array
</td ></tr ></table ></td ></tr >< tr >< td class="bx-popup-label bx-width30"><?=GetMessage("PAGE_NEW_TAGS")?> array( $site)
Определения file_new.php:804

$res
$res
Определения filter_act.php:7

$output
$output
Определения options.php:436

ToUpper
ToUpper($str)
Определения tools.php:2247

GetMessage
GetMessage($name, $aReplace=null)
Определения tools.php:3397

GetLangFileName
GetLangFileName($before, $after, $lang=false)
Определения tools.php:3428

$order
$order
Определения payment.php:8

$nonce
$nonce
Определения payment.php:64

$server_url
else $server_url
Определения payment.php:56

$time
$time
Определения payment.php:61

$merchant
$merchant
Определения payment.php:47

$var
$var
Определения payment.php:63

$sign
$sign
Определения payment.php:69

$desc
if(mb_strlen($order)< 6) $desc
Определения payment.php:44

$email
$email
Определения payment.php:49

$trtype
$trtype
Определения payment.php:58

$mac
$mac
Определения payment.php:51

$amount
if(!function_exists("bx_hmac")) $amount
Определения payment.php:30

$terminal
$terminal
Определения payment.php:48

$p_currency
$p_currency
Определения result_rec.php:34

$p_cardbin
$p_cardbin
Определения result_rec.php:41

$p_rc
$p_rc
Определения result_rec.php:36

$p_trtype
$p_trtype
Определения result_rec.php:31

$p_sign
$p_sign
Определения result_rec.php:43

$p_rrn
$p_rrn
Определения result_rec.php:38

$p_approval
$p_approval
Определения result_rec.php:37

$p_action
$p_action
Определения result_rec.php:35

$p_order
$p_order
Определения result_rec.php:32

$bError
$bError
Определения result_rec.php:46

$p_nonce
$p_nonce
Определения result_rec.php:42

$p_tm
$p_tm
Определения result_rec.php:40

$p_amount
$p_amount
Определения result_rec.php:33

$p_int_ref
$p_int_ref
Определения result_rec.php:39

$mac
$mac
Определения result_rec.php:48

$p_terminal
if(!function_exists("bx_hmac")) $p_terminal
Определения result_rec.php:30

$p_extcode
$p_extcode
Определения result_rec.php:44

$key
if(empty($signedUserToken)) $key
Определения quickway.php:257

die
die
Определения quickway.php:367

$i
$i
Определения factura.php:643

$currency
$currency
Определения template.php:266

$n
$n
Определения update_log.php:107