En saa toimimaan IPN systeemiäni.
Table: buyings
Columnit:
username: varchar(50)
quantity: varchar(10000)
custom: varchar(200)
<?php if(isset($_POST['submit1'])) { $username = trim($_POST['username']); $quantity = trim($_POST['quantity']); $custom = trim($_POST['custom']); header("Location: paypal.php?username=". $username ."&quantity=". $quantity ."&custom=". $custom); exit; } ?> <fieldset class="menu main"> <form action="<?php echo basename($_SERVER['PHP_SELF']); ?>" method="POST"> <table> <tr> <td> RS Display Username: <input type="text" name="username" value="" /></td> <tr> <td> RSGP Amount: <input type="text" name="quantity" value="" /></td> <tr> <td> World: <input type="text" name="custom" value="" /></td> </tr> <tr> <td colspan="2"> <input type="submit" name="submit1" value="Pay Via PayPal" /> </td> </tr> </table> </form> </fieldset>
<?php
class paypal_class {
var $last_error;
// holds the last error encountered
var $ipn_log;
// bool: log IPN results to text file?
var $ipn_log_file;
// filename of the IPN log
var $ipn_response;
// holds the IPN response from paypal
var $ipn_data = array();
// array contains the POST values for IPN
var $fields = array();
// array holds the fields to submit to paypal
function paypal_class() {
// initialization constructor. Called when class is created.
$this->paypal_url = 'https://www.sandbox.paypal.com/cgi-bin/webscr';
$this->last_error = '';
$this->ipn_log_file = '.ipn_results.log';
$this->ipn_log = true;
$this->ipn_response = '';
// populate $fields array with a few default values. See the paypal
// documentation for a list of fields and their data types. These defaul
// values can be overwritten by the calling script.
$this->add_field('rm','2');
// Return method = POST
$this->add_field('cmd','_xclick');
}
function add_field($field, $value) {
// adds a key=>value pair to the fields array, which is what will be
// sent to paypal as POST variables. If the value is already in the
// array, it will be overwritten.
$this->fields["$field"] = $value;
}
function submit_paypal_post() {
// this function actually generates an entire HTML page consisting of
// a form with hidden elements which is submitted to paypal via the
// BODY element's onLoad attribute. We do this so that you can validate
// any POST vars from you custom form before submitting to paypal. So
// basically, you'll have your own form which is submitted to your script
// to validate the data, which in turn calls this function to create
// another hidden form and submit to paypal.
// The user will briefly see a message on the screen that reads:
// "Please wait, your order is being processed..." and then immediately
// redirected to paypal.
echo "<html>\n";
echo "<head><title>Processing Payment...</title></head>\n";
echo "<body onLoad=\"document.forms['paypal_form'].submit();\">\n";
echo "<center><h2>Please wait, your order is being processed and you";
echo " will be redirected to the paypal website.</h2></center>\n";
echo "<form method=\"post\" name=\"paypal_form\" ";
echo "action=\"".$this->paypal_url."\">\n";
foreach ($this->fields as $name => $value) {
echo "<input type=\"hidden\" name=\"$name\" value=\"$value\"/>\n";
}
echo "<center><br/><br/>If you are not automatically redirected to ";
echo "paypal within 5 seconds...<br/><br/>\n";
echo "<input type=\"submit\" value=\"Click Here\"></center>\n";
echo "</form>\n";
echo "</body></html>\n";
}
function validate_ipn() {
// parse the paypal URL
$url_parsed=parse_url($this->paypal_url);
// generate the post string from the _POST vars aswell as load the
// _POST vars into an arry so we can play with them from the calling script.
$post_string = '';
foreach ($_POST as $field=>$value) {
$this->ipn_data["$field"] = $value;
$post_string .= $field.'='.urlencode(stripslashes($value)).'&';
}
$post_string.="cmd=_notify-validate";
// append ipn command
// open the connection to paypal
$fp = fsockopen($url_parsed[host],"80",$err_num,$err_str,30);
if(!$fp) {
// could not open the connection. If loggin is on, the error message
// will be in the log.
$this->last_error = "fsockopen error no. $errnum: $errstr";
$this->log_ipn_results(false);
return false;
} else {
// Post the data back to paypal
fputs($fp, "POST $url_parsed[path] HTTP/1.1\r\n");
fputs($fp, "Host: $url_parsed[host]\r\n");
fputs($fp, "Content-type: application/x-www-form-urlencoded\r\n");
fputs($fp, "Content-length: ".strlen($post_string)."\r\n");
fputs($fp, "Connection: close\r\n\r\n");
fputs($fp, $post_string . "\r\n\r\n");
// loop through the response from the server and append to variable
while(!feof($fp)) {
$this->ipn_response .= fgets($fp, 1024);
}
fclose($fp); // close connection
}
if (eregi("VERIFIED",$this->ipn_response)) {
// Valid IPN transaction.
$this->log_ipn_results(true);
return true;
} else {
// Invalid IPN transaction. Check the log for details.
$this->last_error = 'IPN Validation Failed.';
$this->log_ipn_results(false);
return false;
}
}
function log_ipn_results($success) {
if (!$this->ipn_log) return;
// is logging turned off?
// Timestamp
$text = '['.date('m/d/Y g:i A').'] - ';
// Success or failure being logged?
if ($success) $text .= "SUCCESS!\n";
else $text .= 'FAIL: '.$this->last_error."\n";
// Log the POST variables
$text .= "IPN POST Vars from Paypal:\n";
foreach ($this->ipn_data as $key=>$value) {
$text .= "$key=$value, ";
}
// Log the response from the paypal server
$text .= "\nIPN Response from Paypal Server:\n ".$this->ipn_response;
// Write to log
$fp=fopen($this->ipn_log_file,'a');
fwrite($fp, $text . "\n\n");
fclose($fp); // close file
}
}
?><?php // read the post from PayPal system and add 'cmd' $req = 'cmd=_notify-validate'; // post back to PayPal system to validate $header .= "POST /cgi-bin/webscr HTTP/1.0\r\n"; $header .= "Content-Type: application/x-www-form-urlencoded\r\n"; $header .= "Content-Length: " . strlen($req) . "\r\n\r\n"; $fp = fsockopen ('www.paypal.com', 80, $errno, $errstr, 30); require_once('paypal.class.php'); $p = new paypal_class; $this_script = 'http://'.$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF']; if (empty($_GET['action'])) $_GET['action'] = 'process'; $EMAIL = 'seller_1309077421_biz@gmail.com'; switch ($_GET['action']) { case 'process': if (empty($_GET['username'])){ header("Location: index.php"); exit; } if (empty($_GET['quantity'])){ header("Location: index.php"); exit; } if (empty($_GET['custom'])){ header("Location: index.php"); exit; } $price = 0.5; $p->add_field('business', $EMAIL); $p->add_field('return', $this_script.'?action=success'); $p->add_field('cancel_return', $this_script.'?action=cancel'); $p->add_field('notify_url', $this_script.'?action=ipn'); $p->add_field('currency_code', 'EUR'); $p->add_field('username', $_GET['username']); $p->add_field('amount', $price); $p->add_field('quantity', $_GET['quantity']); $p->add_field('custom', $_GET['custom']); $p->add_field('lc', 'GB'); $p->submit_paypal_post(); break; case 'ipn': if (!$fp) { // HTTP ERROR } else { fputs ($fp, $header . $req); while (!feof($fp)) { $username = $p->ipn_data["username"]; $quantity = $p->ipn_data["quantity"]; $custom = $p->ipn_data["custom"]; $username = str_replace("-", "_", $username); $username = str_replace(" ", "_", $username); $username = mysql_real_escape_string($username); $db = mysql_connect("host", "user", "pass"); $query = "INSERT INTO buyings (username, quantity, custom) VALUES ('$username', '$quantity', '$custom')"; mysql_select_db("db"); mysql_query($query,$db); fclose ($fp); } fclose ($fp); } break; case 'success': header("Location: finish.html"); break; case 'cancel': break; } ?>
Auttakaa. :(
Mod. korjasi kooditagit ja otsikon.
ei näytä usernamen valueta mysql tablessa.
Noh mitä tapahtuu seuraavissa?
<?php $username = $p->ipn_data["username"]; $username = str_replace("-", "_", $username); $username = str_replace(" ", "_", $username); $username = mysql_real_escape_string($username); ?>
Tai siis mikä on muuttujan username arvo viimeisellä rivillä?
Aihe on jo aika vanha, joten et voi enää vastata siihen.