Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Paypoint.net 2012


MattReid

Recommended Posts

Hello

 

Has anybody managed to force a Paypoint.net (formerly SECpay) module to work?

 

I can see from the forums that it's always been problematic, but the last post I can find on the matter was April 2009, and even that didn't look resolved.

 

If anyone's got a working module for the current Paypoint.net system, I'd be eternally grateful to see it.

 

Cheers

Matt

Link to comment
Share on other sites

  • 7 months later...

Hi Matt,

 

After few hours of debugging of the Secpay (paypoint) module i found the idea how to fix it.

 

OsCommerce version is 2.2RC2

 

this is secpay module source code:

<?php
/*
$Id: secpay.php 1739 2007-12-20 00:52:16Z hpdl $

osCommerce, Open Source E-Commerce Solutions
http://www.oscommerce.com

Copyright (c) 2003 osCommerce

Released under the GNU General Public License
*/

class secpay {
var $code, $title, $description, $enabled;

// class constructor
function secpay() {
 global $order;

 $this->code = 'secpay';
 $this->title = MODULE_PAYMENT_SECPAY_TEXT_TITLE;
 $this->description = MODULE_PAYMENT_SECPAY_TEXT_DESCRIPTION;
 $this->sort_order = MODULE_PAYMENT_SECPAY_SORT_ORDER;
 $this->enabled = ((MODULE_PAYMENT_SECPAY_STATUS == 'True') ? true : false);

 if ((int)MODULE_PAYMENT_SECPAY_ORDER_STATUS_ID > 0) {
 $this->order_status = MODULE_PAYMENT_SECPAY_ORDER_STATUS_ID;
 }

 if (is_object($order)) $this->update_status();

 $this->form_action_url = 'https://www.secpay.com/java-bin/ValCard';
}

// class methods
function update_status() {
 global $order;

 if ( ($this->enabled == true) && ((int)MODULE_PAYMENT_SECPAY_ZONE > 0) ) {
 $check_flag = false;
 $check_query = tep_db_query("select zone_id from " . TABLE_ZONES_TO_GEO_ZONES . " where geo_zone_id = '" . MODULE_PAYMENT_SECPAY_ZONE . "' and zone_country_id = '" . $order->billing['country']['id'] . "' order by zone_id");
 while ($check = tep_db_fetch_array($check_query)) {
	 if ($check['zone_id'] < 1) {
	 $check_flag = true;
	 break;
	 } elseif ($check['zone_id'] == $order->billing['zone_id']) {
	 $check_flag = true;
	 break;
	 }
 }

 if ($check_flag == false) {
	 $this->enabled = false;
 }
 }
}

function javascript_validation() {
 return false;
}

function selection() {
 return array('id' => $this->code,
			 'module' => $this->title);
}

function pre_confirmation_check() {
 return false;
}

function confirmation() {
 return false;
}

function process_button() {
 global $order, $currencies, $currency;

 switch (MODULE_PAYMENT_SECPAY_CURRENCY) {
 case 'Default Currency':
	 $sec_currency = DEFAULT_CURRENCY;
	 break;
 case 'Any Currency':
 default:
	 $sec_currency = $currency;
	 break;
 }

 switch (MODULE_PAYMENT_SECPAY_TEST_STATUS) {
 case 'Always Fail':
	 $test_status = 'false';
	 break;
 case 'Production':
	 $test_status = 'live';
	 break;
 case 'Always Successful':
 default:
	 $test_status = 'true';
	 break;
 }

// Calculate the digest to send to SECPAY

 $digest_string=STORE_NAME . date('Ymdhis') . number_format($order->info['total'] * $currencies->get_value($sec_currency), $currencies->currencies[$sec_currency]['decimal_places'], '.', '') . MODULE_PAYMENT_SECPAY_REMOTE ;

 // There is a bug in the digest code, if there are any spaces in the trans id ( usually in the STORE_NAME
 // SECPay will replace these with an _ and the hash is calculated of that so need to do a search and replace
 // in the digest_string for spaces and replace with _

 $space=" ";
 $replace="_";
 $digest_string = str_replace($space,$replace,$digest_string) ;

 $digest=MD5($digest_string) ;

 // Incase this gets 'fixed' at the SECPay end do a search and replace on the trans_id too

 $trans_id = STORE_NAME . date('Ymdhis') ;

 $trans_id = str_replace($space,$replace,$trans_id) ;

 $process_button_string = tep_draw_hidden_field('merchant', MODULE_PAYMENT_SECPAY_MERCHANT_ID) .
						 tep_draw_hidden_field('trans_id', STORE_NAME . date('Ymdhis')) .
						 tep_draw_hidden_field('amount', number_format($order->info['total'] * $currencies->get_value($sec_currency), $currencies->currencies[$sec_currency]['decimal_places'], '.', '')) .
						 tep_draw_hidden_field('bill_name', $order->billing['firstname'] . ' ' . $order->billing['lastname']) .
						 tep_draw_hidden_field('bill_addr_1', $order->billing['street_address']) .
						 tep_draw_hidden_field('bill_addr_2', $order->billing['suburb']) .
						 tep_draw_hidden_field('bill_city', $order->billing['city']) .
						 tep_draw_hidden_field('bill_state', $order->billing['state']) .
						 tep_draw_hidden_field('bill_post_code', $order->billing['postcode']) .
						 tep_draw_hidden_field('bill_country', $order->billing['country']['title']) .
						 tep_draw_hidden_field('bill_tel', $order->customer['telephone']) .
						 tep_draw_hidden_field('bill_email', $order->customer['email_address']) .
						 tep_draw_hidden_field('ship_name', $order->delivery['firstname'] . ' ' . $order->delivery['lastname']) .
						 tep_draw_hidden_field('ship_addr_1', $order->delivery['street_address']) .
						 tep_draw_hidden_field('ship_addr_2', $order->delivery['suburb']) .
						 tep_draw_hidden_field('ship_city', $order->delivery['city']) .
						 tep_draw_hidden_field('ship_state', $order->delivery['state']) .
						 tep_draw_hidden_field('ship_post_code', $order->delivery['postcode']) .
						 tep_draw_hidden_field('ship_country', $order->delivery['country']['title']) .
						 tep_draw_hidden_field('currency', $sec_currency) .
						 tep_draw_hidden_field('callback', tep_href_link(FILENAME_CHECKOUT_PROCESS, '', 'SSL', false) . ';' . tep_href_link(FILENAME_CHECKOUT_PAYMENT, 'payment_error=' . $this->code, 'SSL', false)) .
						 tep_draw_hidden_field(tep_session_name(), tep_session_id()) .
						 tep_draw_hidden_field('customer_id', $_SESSION['customer_id']) .
						 tep_draw_hidden_field('options', 'test_status=' . $test_status . ',dups=false,cb_flds=customer_id:' . tep_session_name()) .
tep_draw_hidden_field('digest', $digest ) ;

 return $process_button_string;
}

function before_process() {
 global $HTTP_GET_VARS, $_POST;

if (
$HTTP_GET_VARS['valid'] == 'true'
&& $HTTP_GET_VARS['code'] == 'A'
&& !empty($HTTP_GET_VARS['auth_code'])
&& empty($HTTP_GET_VARS['resp_code'])
&& !empty($HTTP_GET_VARS['osCsid'])
)
{
 // MUST CONTAIN YOUR DIGEST PASSWORD ESTABLISHED WITH SECPAY
 // $DIGEST_PASSWORD = "secpay" ;	
$DIGEST_PASSWORD = MODULE_PAYMENT_SECPAY_READERS_DIGEST ;
 list($REQUEST_URI, $CHECK_SUM) = split("hash=", $_SERVER['REQUEST_URI']) ;

 if ($HTTP_GET_VARS['hash'] != MD5($REQUEST_URI.$DIGEST_PASSWORD)) {
	 tep_redirect(tep_href_link(FILENAME_CHECKOUT_PAYMENT, tep_session_name() . '=' . $HTTP_GET_VARS[tep_session_name()] . '&payment_error=' . $this->code ."&detail=hash", 'SSL', false, false));
 }
}

else {
	 tep_redirect(tep_href_link(FILENAME_CHECKOUT_PAYMENT, tep_session_name() . '=' . $HTTP_GET_VARS[tep_session_name()] . '&payment_error=' . $this->code, 'SSL', false, false));
 }
}

function after_process() {
 return false;
}

function get_error() {
global $HTTP_GET_VARS;

if ($HTTP_GET_VARS['code'] == "N") {
$error = "TRANSACTION WAS NOT AUTHORISED. PLEASE TRY ANOTHER CARD.";
}
elseif ($HTTP_GET_VARS['code'] == "C") {
$error = "There was a communications problem in contacing the bank, please try again.";
}
else {
$error = MODULE_PAYMENT_SECPAY_TEXT_ERROR_MESSAGE;
}

return array('title' => MODULE_PAYMENT_SECPAY_TEXT_ERROR,
'error' => $error);
}

function check() {
 if (!isset($this->_check)) {
 $check_query = tep_db_query("select configuration_value from " . TABLE_CONFIGURATION . " where configuration_key = 'MODULE_PAYMENT_SECPAY_STATUS'");
 $this->_check = tep_db_num_rows($check_query);
 }
 return $this->_check;
}

function install() {
 tep_db_query("insert into " . TABLE_CONFIGURATION . " (configuration_title, configuration_key, configuration_value, configuration_description, configuration_group_id, sort_order, set_function, date_added) values ('Enable SECpay Module', 'MODULE_PAYMENT_SECPAY_STATUS', 'True', 'Do you want to accept SECPay payments?', '6', '1', 'tep_cfg_select_option(array(\'True\', \'False\'), ', now())");
 tep_db_query("insert into " . TABLE_CONFIGURATION . " (configuration_title, configuration_key, configuration_value, configuration_description, configuration_group_id, sort_order, date_added) values ('Merchant ID', 'MODULE_PAYMENT_SECPAY_MERCHANT_ID', 'secpay', 'Merchant ID to use for the SECPay service', '6', '2', now())");
 tep_db_query("insert into " . TABLE_CONFIGURATION . " (configuration_title, configuration_key, configuration_value, configuration_description, configuration_group_id, sort_order, set_function, date_added) values ('Transaction Currency', 'MODULE_PAYMENT_SECPAY_CURRENCY', 'Any Currency', 'The currency to use for credit card transactions', '6', '3', 'tep_cfg_select_option(array(\'Any Currency\', \'Default Currency\'), ', now())");
 tep_db_query("insert into " . TABLE_CONFIGURATION . " (configuration_title, configuration_key, configuration_value, configuration_description, configuration_group_id, sort_order, set_function, date_added) values ('Transaction Mode', 'MODULE_PAYMENT_SECPAY_TEST_STATUS', 'Always Successful', 'Transaction mode to use for the SECPay service', '6', '4', 'tep_cfg_select_option(array(\'Always Successful\', \'Always Fail\', \'Production\'), ', now())");
 tep_db_query("insert into " . TABLE_CONFIGURATION . " (configuration_title, configuration_key, configuration_value, configuration_description, configuration_group_id, sort_order, date_added) values ('Sort order of display.', 'MODULE_PAYMENT_SECPAY_SORT_ORDER', '0', 'Sort order of display. Lowest is displayed first.', '6', '0', now())");
 tep_db_query("insert into " . TABLE_CONFIGURATION . " (configuration_title, configuration_key, configuration_value, configuration_description, configuration_group_id, sort_order, use_function, set_function, date_added) values ('Payment Zone', 'MODULE_PAYMENT_SECPAY_ZONE', '0', 'If a zone is selected, only enable this payment method for that zone.', '6', '2', 'tep_get_zone_class_title', 'tep_cfg_pull_down_zone_classes(', now())");
 tep_db_query("insert into " . TABLE_CONFIGURATION . " (configuration_title, configuration_key, configuration_value, configuration_description, configuration_group_id, sort_order, set_function, use_function, date_added) values ('Set Order Status', 'MODULE_PAYMENT_SECPAY_ORDER_STATUS_ID', '0', 'Set the status of orders made with this payment module to this value', '6', '0', 'tep_cfg_pull_down_order_statuses(', 'tep_get_order_status_name', now())");
 tep_db_query("insert into " . TABLE_CONFIGURATION . " (configuration_title, configuration_key, configuration_value, configuration_description, configuration_group_id, sort_order, date_added) values ('Remote Password', 'MODULE_PAYMENT_SECPAY_REMOTE', 'secpay', 'The Remote Password needs to be created in the PayPoint extranet.', '6', '0', now())");
 tep_db_query("insert into " . TABLE_CONFIGURATION . " (configuration_title, configuration_key, configuration_value, configuration_description, configuration_group_id, sort_order, date_added) values ('Digest Key', 'MODULE_PAYMENT_SECPAY_READERS_DIGEST', 'secpay', 'The Digest Key needs to be created in the PayPoint extranet.', '6', '0', now())");
}

function remove() {
 tep_db_query("delete from " . TABLE_CONFIGURATION . " where configuration_key in ('" . implode("', '", $this->keys()) . "')");
}

function keys() {
 return array('MODULE_PAYMENT_SECPAY_STATUS', 'MODULE_PAYMENT_SECPAY_MERCHANT_ID', 'MODULE_PAYMENT_SECPAY_CURRENCY', 'MODULE_PAYMENT_SECPAY_TEST_STATUS', 'MODULE_PAYMENT_SECPAY_ZONE', 'MODULE_PAYMENT_SECPAY_ORDER_STATUS_ID', 'MODULE_PAYMENT_SECPAY_SORT_ORDER', 'MODULE_PAYMENT_SECPAY_REMOTE', 'MODULE_PAYMENT_SECPAY_READERS_DIGEST');
}
}
?>

 

In the includes/configure.php line

define('STORE_SESSIONS', 'mysql');

changed to

define('STORE_SESSIONS', '');

 

In the file checkout_process.php add

 

 $_SESSION['customer_id'] = $_GET['customer_id'];
if (isset($_GET['valid']) && !isset($_GET['predir']))
{
$query = http_build_query($_GET);
$location = HTTP_SERVER.'/checkout_process.php?' . $query . '&predir=true';
 echo "<script>location.href='$location';</script>";
 exit;
}

 

before code:

 

// if the customer is not logged on, redirect them to the login page
if (!tep_session_is_registered('customer_id')) {
$navigation->set_snapshot(array('mode' => 'SSL', 'page' => FILENAME_CHECKOUT_PAYMENT));
tep_redirect(tep_href_link(FILENAME_LOGIN, '', 'SSL'));
}

 

this fix works fine for SUCCESS transaction, no incorrect redirects to login page or empty cart page

 

in file checkout_payment.php

 

add code

 

 $_SESSION['customer_id'] = $_GET['customer_id'];
if (isset($_GET['valid']) && !isset($_GET['predir']))
{
$query = http_build_query($_GET);
$location = HTTP_SERVER.'/checkout_payment.php?' . $query . '&predir=true';
 echo "<script>location.href='$location';</script>";
 exit;
}

 

before

 

// if the customer is not logged on, redirect them to the login page
if (!tep_session_is_registered('customer_id')) {
$navigation->set_snapshot();
tep_redirect(tep_href_link(FILENAME_LOGIN, '', 'SSL'));
}

Link to comment
Share on other sites

  • 7 months later...

I am not an expert but I had PayPoint working, then it stopped working. It seemed to be the switch over that I had made from php 5.2 to php 5.4. When I switch the php back to 5.2 it started working fine. This may not be the problem above but you never know.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...