Commit | Line | Data |
---|---|---|
a2558f2b | 1 | <?php |
2 | /*************************************************************************** | |
c441aabe | 3 | * Copyright (C) 2003-2014 Polytechnique.org * |
a2558f2b | 4 | * http://opensource.polytechnique.org/ * |
5 | * * | |
6 | * This program is free software; you can redistribute it and/or modify * | |
7 | * it under the terms of the GNU General Public License as published by * | |
8 | * the Free Software Foundation; either version 2 of the License, or * | |
9 | * (at your option) any later version. * | |
10 | * * | |
11 | * This program is distributed in the hope that it will be useful, * | |
12 | * but WITHOUT ANY WARRANTY; without even the implied warranty of * | |
13 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * | |
14 | * GNU General Public License for more details. * | |
15 | * * | |
16 | * You should have received a copy of the GNU General Public License * | |
17 | * along with this program; if not, write to the Free Software * | |
18 | * Foundation, Inc., * | |
19 | * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * | |
20 | ***************************************************************************/ | |
21 | ||
22 | /* sort en affichant une erreur */ | |
3ed6d317 | 23 | function cb_erreur($text, $conf_title="") { |
115c90db | 24 | global $globals; |
7380801f | 25 | echo "Error: ".$text."\n"; |
1e33266a | 26 | $mymail = new PlMailer(); |
d7dd70be | 27 | $mymail->addTo($globals->money->email); |
1d55fe45 | 28 | $mymail->setFrom("webmaster@" . $globals->mail->domain); |
a7de4ef7 | 29 | $mymail->setSubject("erreur lors d'un télépaiement (CyberPaiement)"); |
fe5ccad9 | 30 | $content = "raison de l'erreur : " . $text . "\n"; |
3ed6d317 AL |
31 | if ($conf_title != "") { |
32 | $content = $content."paiement : ".$conf_title."\n"; | |
33 | } | |
fe5ccad9 | 34 | $content = $content . "dump de REQUEST :\n" . var_export($_REQUEST, true); |
3ed6d317 | 35 | $mymail->setTxtBody($content); |
a2558f2b | 36 | $mymail->send(); |
9d773172 | 37 | echo "Notification sent.\n"; |
a2558f2b | 38 | exit; |
39 | } | |
40 | ||
41 | /* sort en affichant une erreur */ | |
88e3843c | 42 | function paypal_erreur($text, $send=true) |
43 | { | |
d7610c35 | 44 | global $erreur, $globals; |
a2558f2b | 45 | if ($erreur) return; |
46 | $erreur = $text; | |
47 | if (!$send) return; | |
48 | ||
1e33266a | 49 | $mymail = new PlMailer(); |
d7dd70be | 50 | $mymail->addTo($globals->money->email); |
1d55fe45 | 51 | $mymail->setFrom("webmaster@" . $globals->mail->domain); |
a7de4ef7 | 52 | $mymail->setSubject("erreur lors d'un télépaiement (PayPal)"); |
21a261d7 AL |
53 | $mymail->setTxtBody("raison de l'erreur : ".$text."\n". |
54 | "paiement : $conf_title \n\n". | |
55 | "dump de REQUEST :\n". | |
56 | var_export($_REQUEST,true)); | |
a2558f2b | 57 | $mymail->send(); |
58 | ||
d7610c35 | 59 | Platal::page()->trigError($text); |
a2558f2b | 60 | } |
61 | ||
62 | /* http://fr.wikipedia.org/wiki/Formule_de_Luhn */ | |
63 | function luhn($nombre) { | |
64 | $s = strrev($nombre); | |
65 | $sum = 0; | |
f5e965ca | 66 | for ($i = 0; $i < strlen($s); ++$i) { |
9d773172 | 67 | $dgt = $s{$i}; |
f5e965ca | 68 | $sum += ($i % 2) ? (2 * $dgt) % 9 : $dgt; |
a2558f2b | 69 | } |
70 | return $sum % 10; | |
71 | } | |
72 | ||
a7de4ef7 | 73 | /* calcule la clé d'acceptation a partir de 5 champs */ |
f5e965ca | 74 | function cle_accept($d1, $d2, $d3, $d4, $d5) |
a2558f2b | 75 | { |
f5e965ca SJ |
76 | $m1 = luhn($d1 . $d5); |
77 | $m2 = luhn($d2 . $d5); | |
78 | $m3 = luhn($d3 . $d5); | |
79 | $m4 = luhn($d4 . $d5); | |
a2558f2b | 80 | $n = $m1 + $m2 + $m3 + $m4; |
f5e965ca SJ |
81 | $alpha = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789'; |
82 | return $alpha{$n-1} . $m1 . $m2 . $m3 . $m4; | |
a2558f2b | 83 | } |
84 | ||
17793ccf FB |
85 | /* decode the comment */ |
86 | function comment_decode($comment) { | |
87 | $comment = urldecode($comment); | |
88 | if (is_utf8($comment)) { | |
89 | return $comment; | |
90 | } else { | |
91 | return utf8_encode($comment); | |
92 | } | |
93 | } | |
94 | ||
f56ceafe DB |
95 | /* check if a RIB account number is valid */ |
96 | function check_rib($rib) | |
97 | { | |
f3d6e2cc | 98 | if(strlen($rib) != 23) return false; |
f5e965ca | 99 | |
f56ceafe DB |
100 | // extract fields |
101 | $rib = strtr(strtoupper($rib),'ABCDEFGHIJKLMNOPQRSTUVWXYZ','12345678912345678923456789'); | |
f3d6e2cc DB |
102 | $bank = substr($rib,0,5); |
103 | $counter = substr($rib,5,5); | |
104 | $account = substr($rib,10,11); | |
105 | $key = substr($rib,21,2); | |
f5e965ca | 106 | |
f56ceafe | 107 | // check |
f5e965ca | 108 | return (0 == fmod(89 * $bank + 15 * $counter + 3 * $account + $key, 97)); |
f56ceafe | 109 | } |
a2558f2b | 110 | |
111 | class PaymentModule extends PLModule | |
112 | { | |
113 | function handlers() | |
114 | { | |
115 | return array( | |
6643b3f0 | 116 | 'payment' => $this->make_hook('payment', AUTH_PUBLIC, 'user'), |
19ec6c8a SJ |
117 | 'payment/cyber2_return' => $this->make_hook('cyber2_return', AUTH_PUBLIC, 'user', NO_HTTPS), |
118 | 'payment/paypal_return' => $this->make_hook('paypal_return', AUTH_PUBLIC, 'user', NO_HTTPS), | |
5f85dbd3 SJ |
119 | '%grp/paiement' => $this->make_hook('xnet_payment', AUTH_PUBLIC, 'user'), |
120 | '%grp/payment' => $this->make_hook('xnet_payment', AUTH_PUBLIC, 'user'), | |
bfe9f4c7 | 121 | '%grp/payment/csv' => $this->make_hook('payment_csv', AUTH_PASSWD, 'groupadmin'), |
f5e965ca SJ |
122 | '%grp/payment/cyber2_return' => $this->make_hook('cyber2_return', AUTH_PUBLIC, 'user', NO_HTTPS), |
123 | '%grp/payment/paypal_return' => $this->make_hook('paypal_return', AUTH_PUBLIC, 'user', NO_HTTPS), | |
bfe9f4c7 SJ |
124 | 'admin/payments' => $this->make_hook('admin', AUTH_PASSWD, 'admin'), |
125 | 'admin/payments/methods' => $this->make_hook('adm_methods', AUTH_PASSWD, 'admin'), | |
126 | 'admin/payments/transactions' => $this->make_hook('adm_transactions', AUTH_PASSWD, 'admin'), | |
127 | 'admin/reconcile' => $this->make_hook('adm_reconcile', AUTH_PASSWD, 'admin'), | |
128 | 'admin/reconcile/importlogs' => $this->make_hook('adm_importlogs', AUTH_PASSWD, 'admin'), | |
129 | 'admin/reconcile/transfers' => $this->make_hook('adm_transfers', AUTH_PASSWD, 'admin'), | |
38813e10 | 130 | 'admin/payments/bankaccounts' => $this->make_hook('adm_bankaccounts', AUTH_PASSWD, 'admin'), |
a2558f2b | 131 | ); |
132 | } | |
133 | ||
19ec6c8a | 134 | function handler_payment($page, $ref = -1) |
a2558f2b | 135 | { |
19ec6c8a SJ |
136 | $page->changeTpl('payment/payment.tpl'); |
137 | $page->setTitle('Télépaiement'); | |
6643b3f0 | 138 | $this->load('money.inc.php'); |
a2558f2b | 139 | |
5e2307dc | 140 | $meth = new PayMethod(Env::i('methode', -1)); |
19ec6c8a SJ |
141 | $pay = new Payment($ref); |
142 | ||
6643b3f0 SJ |
143 | if (!$pay->flags->hasflag('public') && (!S::user() || !S::logged())) { |
144 | $page->kill("Vous n'avez pas les permissions nécessaires pour accéder à cette page."); | |
145 | } else { | |
146 | $page->assign('public', true); | |
147 | } | |
148 | ||
149 | if ($pay->flags->hasflag('old')) { | |
19ec6c8a SJ |
150 | $page->kill('La transaction selectionnée est périmée.'); |
151 | } | |
a2558f2b | 152 | |
13f1431d BG |
153 | if (Env::has('montant')) { |
154 | $pay->amount_def = Env::v('montant'); | |
155 | } | |
75d4576e | 156 | $val = (Post::v('amount') != 0) ? Post::v('amount') : $pay->amount_def; |
a2558f2b | 157 | |
75d4576e SJ |
158 | if (($error = $pay->check($val)) !== true) { |
159 | $page->trigError($error); | |
a2558f2b | 160 | } |
161 | ||
75d4576e | 162 | if (Post::has('op') && Post::v('op', 'select') == 'submit') { |
6643b3f0 SJ |
163 | if (S::logged()) { |
164 | $user = S::user(); | |
165 | } else { | |
166 | $user = User::getSilent(Post::t('login')); | |
167 | } | |
168 | ||
169 | if (is_null($user)) { | |
170 | $page->trigError("L'identifiant est erroné."); | |
171 | $page->assign('login_error', true); | |
172 | $page->assign('login', Post::t('login')); | |
173 | } else { | |
174 | $pay->init($val, $meth); | |
175 | $pay->prepareform($user); | |
40cab3b7 | 176 | $page->assign('full_name', $user->fullName(true)); |
6643b3f0 SJ |
177 | $page->assign('sex', $user->isFemale()); |
178 | } | |
179 | } elseif (S::logged()) { | |
a7c0d514 | 180 | $res = XDB::iterator('SELECT ts_confirmed, amount |
69fffc4b | 181 | FROM payment_transactions |
8a7fab54 | 182 | WHERE uid = {?} AND ref = {?} |
a7c0d514 | 183 | ORDER BY ts_confirmed DESC', |
75d4576e | 184 | S::v('uid', -1), $pay->id); |
a2558f2b | 185 | |
f5e965ca SJ |
186 | if ($res->total()) { |
187 | $page->assign('transactions', $res); | |
188 | } | |
069dfa8e | 189 | |
19ec6c8a SJ |
190 | // Only if $id = -1, meaning only for donation the site's association |
191 | if ($ref == -1) { | |
192 | $biggest_donations = XDB::fetchAllAssoc('SELECT IF(p.display, | |
193 | IF(ap.pid IS NOT NULL, CONCAT(a.full_name, \' (\', pd.promo, \')\'), a.full_name), | |
194 | \'XXXX\') AS name, p.amount, p.ts_confirmed | |
195 | FROM payment_transactions AS p | |
196 | INNER JOIN accounts AS a ON (a.uid = p.uid) | |
197 | LEFT JOIN account_profiles AS ap ON (a.uid = ap.uid AND FIND_IN_SET(\'owner\', ap.perms)) | |
198 | LEFT JOIN profile_display AS pd ON (ap.pid = pd.pid) | |
199 | WHERE p.ref = {?} | |
200 | ORDER BY LENGTH(p.amount) DESC, p.amount DESC, name | |
201 | LIMIT 10', | |
202 | $pay->id); | |
203 | ||
204 | $donations = XDB::fetchAllAssoc('(SELECT SUM(amount) AS amount, YEAR(ts_confirmed) AS year, MONTH(ts_confirmed) AS month, ts_confirmed | |
205 | FROM payment_transactions | |
206 | WHERE ref = {?} AND YEAR(ts_confirmed) = YEAR(CURDATE()) | |
207 | GROUP BY month) | |
208 | UNION | |
209 | (SELECT SUM(amount) AS amount, YEAR(ts_confirmed) AS year, 0 AS month, ts_confirmed | |
210 | FROM payment_transactions | |
211 | WHERE ref = {?} AND YEAR(ts_confirmed) < YEAR(CURDATE()) | |
212 | GROUP BY year) | |
213 | ORDER BY year DESC, month DESC', | |
214 | $pay->id, $pay->id); | |
215 | ||
216 | $page->assign('biggest_donations', $biggest_donations); | |
217 | $page->assign('donations', $donations); | |
218 | $page->assign('donation', true); | |
219 | } | |
a2558f2b | 220 | } |
221 | ||
75d4576e SJ |
222 | $val = floor($val * 100) / 100; |
223 | $page->assign('amount', $val); | |
f5e965ca | 224 | $page->assign('comment', Env::v('comment')); |
a2558f2b | 225 | |
226 | $page->assign('meth', $meth); | |
f5e965ca | 227 | $page->assign('pay', $pay); |
19ec6c8a | 228 | $page->assign('evtlink', $pay->event()); |
a2558f2b | 229 | } |
230 | ||
26ba053e | 231 | function handler_cyber2_return($page, $uid = null) |
a690a74c DB |
232 | { |
233 | global $globals, $platal; | |
aab2ffdd | 234 | |
a690a74c DB |
235 | /* on vérifie la signature */ |
236 | $vads_params = array(); | |
237 | foreach($_REQUEST as $key => $value) | |
f5e965ca | 238 | if(substr($key,0,5) == 'vads_') { |
9d773172 | 239 | $vads_params[$key] = $value; |
f5e965ca | 240 | } |
a690a74c | 241 | ksort($vads_params); |
f5e965ca | 242 | $signature = sha1(join('+', $vads_params) . '+' . $globals->money->cyperplus_key); |
a690a74c DB |
243 | //if($signature != Env::v('signature')) { |
244 | // cb_erreur("signature invalide"); | |
245 | //} | |
aab2ffdd | 246 | |
a690a74c | 247 | /* on extrait les informations sur l'utilisateur */ |
ba0fd7f8 | 248 | $user = User::get(Env::i('vads_cust_id')); |
a690a74c DB |
249 | if (!$user) { |
250 | cb_erreur("uid invalide"); | |
251 | } | |
252 | ||
253 | /* on extrait la reference de la commande */ | |
f1995a1e | 254 | if (!preg_match('/-([0-9]+)$/', Env::v('vads_order_id'), $matches)) { |
a690a74c DB |
255 | cb_erreur("référence de commande invalide"); |
256 | } | |
257 | ||
9d773172 | 258 | $ref = $matches[1]; |
f5e965ca | 259 | $res = XDB::query('SELECT mail, text, confirmation |
a690a74c | 260 | FROM payments |
f336915b | 261 | WHERE id={?}', $ref); |
781c92a2 | 262 | if ($res->numRows() != 1) { |
a690a74c DB |
263 | cb_erreur("référence de commande inconnue"); |
264 | } | |
781c92a2 | 265 | list($conf_mail, $conf_title, $conf_text) = $res->fetchOneRow(); |
aab2ffdd | 266 | |
a690a74c | 267 | /* on extrait le montant */ |
f5e965ca | 268 | if (Env::v('vads_currency') != '978') { |
a690a74c DB |
269 | cb_erreur("monnaie autre que l'euro"); |
270 | } | |
a7c0d514 | 271 | $montant = ((float)Env::i('vads_amount')) / 100; |
a690a74c DB |
272 | |
273 | /* on extrait le code de retour */ | |
f5e965ca | 274 | if (Env::v('vads_result') != '00') { |
3ed6d317 | 275 | cb_erreur('erreur lors du paiement : ?? (' . Env::v('vads_result') . ')', $conf_title); |
a690a74c | 276 | } |
aab2ffdd | 277 | |
a690a74c | 278 | /* on fait l'insertion en base de donnees */ |
a7c0d514 DB |
279 | XDB::execute('INSERT INTO payment_transactions (id, method_id, uid, ref, fullref, ts_confirmed, amount, pkey, comment, status, display) |
280 | VALUES ({?}, 2, {?}, {?}, {?}, NOW(), {?}, {?}, {?}, "confirmed", {?})', | |
fbb196fa | 281 | Env::v('vads_trans_date'), $user->id(), $ref, Env::v('vads_order_id'), $montant, '', Env::v('vads_order_info'), Env::i('vads_order_info2')); |
a7c0d514 | 282 | echo "Payment stored.\n"; |
aab2ffdd | 283 | |
a690a74c | 284 | // We check if it is an Xnet payment and then update the related ML. |
6848fb7e | 285 | $res = XDB::query('SELECT eid, asso_id |
a690a74c DB |
286 | FROM group_events |
287 | WHERE paiement_id = {?}', $ref); | |
781c92a2 | 288 | if ($res->numRows() == 1) { |
6848fb7e | 289 | list($eid, $asso_id) = $res->fetchOneRow(); |
a690a74c | 290 | require_once dirname(__FILE__) . '/xnetevents/xnetevents.inc.php'; |
6848fb7e | 291 | $evt = get_event_detail($eid, false, $asso_id); |
c9e710ff | 292 | subscribe_lists_event($user->id(), $evt['short_name'], 1, $montant, true); |
a690a74c DB |
293 | } |
294 | ||
295 | /* on genere le mail de confirmation */ | |
296 | $conf_text = str_replace( | |
781c92a2 | 297 | array('<prenom>', '<nom>', '<promo>', '<montant>', '<salutation>', '<cher>', '<comment>'), |
a690a74c DB |
298 | array($user->firstName(), $user->lastName(), $user->promo(), $montant, |
299 | $user->isFemale() ? 'Chère' : 'Cher', $user->isFemale() ? 'Chère' : 'Cher', | |
9170f4f9 | 300 | Env::v('vads_order_info')), $conf_text); |
a690a74c DB |
301 | |
302 | global $globals; | |
303 | $mymail = new PlMailer(); | |
304 | $mymail->setFrom($conf_mail); | |
305 | $mymail->addCc($conf_mail); | |
306 | $mymail->setSubject($conf_title); | |
307 | $mymail->setWikiBody($conf_text); | |
308 | $mymail->sendTo($user); | |
309 | ||
310 | /* on envoie les details de la transaction à telepaiement@ */ | |
311 | $mymail = new PlMailer(); | |
312 | $mymail->setFrom("webmaster@" . $globals->mail->domain); | |
313 | $mymail->addTo($globals->money->email); | |
314 | $mymail->setSubject($conf_title); | |
315 | $msg = 'utilisateur : ' . $user->login() . ' (' . $user->id() . ')' . "\n" . | |
316 | 'mail : ' . $user->forlifeEmail() . "\n\n" . | |
317 | "paiement : $conf_title ($conf_mail)\n". | |
9d773172 | 318 | "reference : " . Env::v('vads_order_id') . "\n". |
a690a74c DB |
319 | "montant : $montant\n\n". |
320 | "dump de REQUEST:\n". | |
321 | var_export($_REQUEST,true); | |
322 | $mymail->setTxtBody($msg); | |
323 | $mymail->send(); | |
9d773172 | 324 | echo "Notifications sent.\n"; |
a690a74c DB |
325 | exit; |
326 | } | |
327 | ||
26ba053e | 328 | function handler_paypal_return($page, $uid = null) |
a2558f2b | 329 | { |
da157660 | 330 | $page->changeTpl('payment/retour_paypal.tpl'); |
a2558f2b | 331 | |
332 | /* reference banque (numero de transaction) */ | |
7280eb45 | 333 | $no_transaction = Env::s('tx'); |
a2558f2b | 334 | /* token a renvoyer pour avoir plus d'information */ |
7280eb45 | 335 | $clef = Env::s('sig'); |
a2558f2b | 336 | /* code retour */ |
7280eb45 | 337 | $status = Env::s('st'); |
a2558f2b | 338 | /* raison */ |
f5e965ca | 339 | $reason = ($status == 'Pending') ? Env::s('pending_reason') : Env::s('reason_code'); |
a2558f2b | 340 | /* reference complete de la commande */ |
243dc7a0 | 341 | $fullref = str_replace('%2d','-',Env::s('cm')); |
a2558f2b | 342 | /* montant de la transaction */ |
a7c0d514 | 343 | $montant = Env::s('amt'); |
a2558f2b | 344 | /* devise */ |
a7c0d514 DB |
345 | if (Env::s('cc') != 'EUR') { |
346 | cb_erreur("monnaie autre que l'euro"); | |
347 | } | |
a2558f2b | 348 | |
349 | /* on extrait le code de retour */ | |
350 | if ($status != "Completed") { | |
f5e965ca | 351 | if ($status) { |
a2558f2b | 352 | paypal_erreur("erreur lors du paiement : $status - $reason"); |
f5e965ca | 353 | } else { |
a7de4ef7 | 354 | paypal_erreur("Paiement annulé", false); |
f5e965ca | 355 | } |
a2558f2b | 356 | } |
357 | ||
358 | /* on extrait les informations sur l'utilisateur */ | |
1eaaa62d FB |
359 | $user = User::get($uid); |
360 | if (!$user) { | |
a2558f2b | 361 | paypal_erreur("uid invalide"); |
362 | } | |
363 | ||
364 | /* on extrait la reference de la commande */ | |
f1995a1e | 365 | if (!preg_match('/-xorg-([0-9]+)$/', $fullref, $matches)) { |
a7de4ef7 | 366 | paypal_erreur("référence de commande invalide"); |
a2558f2b | 367 | } |
368 | ||
369 | $ref = $matches[1]; | |
f5e965ca | 370 | $res = XDB::query('SELECT mail, text, confirmation |
69fffc4b | 371 | FROM payments |
f5e965ca SJ |
372 | WHERE id = {?}', $ref); |
373 | if (!list($conf_mail, $conf_title, $conf_text) = $res->fetchOneRow()) { | |
374 | paypal_erreur('référence de commande inconnue'); | |
a2558f2b | 375 | } |
376 | ||
377 | /* on fait l'insertion en base de donnees */ | |
a7c0d514 DB |
378 | XDB::execute("INSERT INTO payment_transactions (id, method_id, uid, ref, fullref, ts_confirmed, amount, pkey, comment, status, display) |
379 | VALUES ({?}, 1, {?}, {?}, {?}, NOW(), {?}, {?}, {?}, 'confirmed', {?})", | |
fbb196fa | 380 | $no_transaction, $user->id(), $ref, $fullref, $montant, $clef, Env::v('comment'), Get::i('display')); |
a2558f2b | 381 | |
9ff5b337 | 382 | // We check if it is an Xnet payment and then update the related ML. |
c9e710ff | 383 | $res = XDB::query('SELECT eid, asso_id |
eb41eda9 | 384 | FROM group_events |
9ff5b337 | 385 | WHERE paiement_id = {?}', $ref); |
c9e710ff SJ |
386 | if ($res->numRows() == 1) { |
387 | list($eid, $asso_id) = $res->fetchOneRow(); | |
fd03857b | 388 | require_once dirname(__FILE__) . '/xnetevents/xnetevents.inc.php'; |
c9e710ff | 389 | $evt = get_event_detail($eid, false, $asso_id); |
7852229b | 390 | subscribe_lists_event($user->id(), $evt['short_name'], 1, $montant, true); |
9ff5b337 SJ |
391 | } |
392 | ||
a2558f2b | 393 | /* on genere le mail de confirmation */ |
fb25f6a6 | 394 | $conf_text = str_replace(array('<prenom>', '<nom>', '<promo>', '<montant>', '<salutation>', '<cher>', '<comment>'), |
1eaaa62d | 395 | array($user->firstName(), $user->lastName(), $user->promo(), $montant, |
fb25f6a6 SJ |
396 | $user->isFemale() ? 'Chère' : 'Cher', $user->isFemale() ? 'Chère' : 'Cher', |
397 | Env::v('comment')), $conf_text); | |
a2558f2b | 398 | |
7895f3c1 | 399 | global $globals; |
1e33266a | 400 | $mymail = new PlMailer(); |
a2558f2b | 401 | $mymail->setFrom($conf_mail); |
a2558f2b | 402 | $mymail->addCc($conf_mail); |
403 | $mymail->setSubject($conf_title); | |
88e3843c | 404 | $mymail->setWikiBody($conf_text); |
1eaaa62d | 405 | $mymail->sendTo($user); |
a2558f2b | 406 | |
a7de4ef7 | 407 | /* on envoie les details de la transaction à telepaiement@ */ |
1e33266a | 408 | $mymail = new PlMailer(); |
1d55fe45 | 409 | $mymail->setFrom("webmaster@" . $globals->mail->domain); |
d7dd70be | 410 | $mymail->addTo($globals->money->email); |
a2558f2b | 411 | $mymail->setSubject($conf_title); |
1eaaa62d FB |
412 | $msg = 'utilisateur : ' . $user->login() . ' (' . $user->id() . ')' . "\n" . |
413 | 'mail : ' . $user->forlifeEmail() . "\n\n" . | |
a2558f2b | 414 | "paiement : $conf_title ($conf_mail)\n". |
1eaaa62d | 415 | "reference : $champ200\n". |
a2558f2b | 416 | "montant : $montant\n\n". |
417 | "dump de REQUEST:\n". | |
418 | var_export($_REQUEST,true); | |
419 | $mymail->setTxtBody($msg); | |
420 | $mymail->send(); | |
421 | ||
422 | $page->assign('texte', $conf_text); | |
423 | $page->assign('erreur', $erreur); | |
a2558f2b | 424 | } |
98a7e9dc | 425 | |
26ba053e | 426 | function handler_xnet_payment($page, $pid = null) |
98a7e9dc | 427 | { |
428 | global $globals; | |
eaf30d86 | 429 | |
45a5307b | 430 | $perms = S::v('perms'); |
c68a9e63 AL |
431 | if (is_null($pid)) { |
432 | if (!(S::identified() && $perms->hasFlag('groupadmin'))) { | |
45a5307b FB |
433 | return PL_FORBIDDEN; |
434 | } | |
c68a9e63 AL |
435 | } else { |
436 | if (!(S::identified() && $perms->hasFlag('groupmember'))) { | |
437 | $res = XDB::query("SELECT 1 | |
438 | FROM group_events AS e | |
439 | INNER JOIN group_event_participants AS ep ON (ep.eid = e.eid AND ep.uid = {?}) | |
440 | WHERE e.paiement_id = {?} AND e.asso_id = {?}", | |
441 | S::i('uid'), $pid, $globals->asso('id')); | |
442 | $public = XDB::query("SELECT 1 | |
443 | FROM payments AS p | |
444 | INNER JOIN group_events AS g ON (g.paiement_id = p.id) | |
445 | WHERE g.asso_id = {?} AND p.id = {?} AND FIND_IN_SET('public', p.flags)", | |
446 | $globals->asso('id'), $pid); | |
447 | if ($res->numRows() == 0 && $public->numRows() == 0) { | |
448 | return PL_FORBIDDEN; | |
449 | } | |
45a5307b FB |
450 | } |
451 | } | |
452 | ||
98a7e9dc | 453 | if (!is_null($pid)) { |
454 | return $this->handler_payment($page, $pid); | |
455 | } | |
1490093c | 456 | $page->changeTpl('payment/xnet.tpl'); |
eaf30d86 | 457 | |
98a7e9dc | 458 | $res = XDB::query( |
459 | "SELECT id, text, url | |
a690a74c | 460 | FROM payments |
010268b2 | 461 | WHERE asso_id = {?} AND NOT FIND_IN_SET('old', flags) |
98a7e9dc | 462 | ORDER BY id DESC", $globals->asso('id')); |
463 | $tit = $res->fetchAllAssoc(); | |
af387c4b | 464 | $page->assign('titles', $tit); |
98a7e9dc | 465 | |
98a7e9dc | 466 | $trans = array(); |
467 | $event = array(); | |
af387c4b | 468 | if (may_update()) { |
7088a2a5 | 469 | static $orders = array('ts_confirmed' => 'p', 'directory_name' => 'a', 'promo' => 'pd', 'comment' => 'p', 'amount' => 'p'); |
af387c4b SJ |
470 | |
471 | if (Get::has('order_id') && Get::has('order') && array_key_exists(Get::v('order'), $orders)) { | |
472 | $order_id = Get::i('order_id'); | |
473 | $order = Get::v('order'); | |
474 | $ordering = ' ORDER BY ' . $orders[$order] . '.' . $order; | |
475 | if (Get::has('order_inv') && Get::i('order_inv') == 1) { | |
476 | $ordering .= ' DESC'; | |
477 | $page->assign('order_inv', 0); | |
478 | } else { | |
479 | $page->assign('order_inv', 1); | |
480 | } | |
481 | $page->assign('order_id', $order_id); | |
482 | $page->assign('order', $order); | |
741d92e9 | 483 | $page->assign('anchor', 'legend_' . $order_id); |
af387c4b SJ |
484 | } else { |
485 | $order_id = false; | |
486 | $ordering = ''; | |
487 | $page->assign('order', false); | |
488 | } | |
489 | } else { | |
490 | $ordering = ''; | |
491 | $page->assign('order', false); | |
492 | } | |
98a7e9dc | 493 | foreach($tit as $foo) { |
494 | $pid = $foo['id']; | |
495 | if (may_update()) { | |
a7c0d514 | 496 | $res = XDB::query('SELECT p.uid, IF(p.ts_confirmed = \'0000-00-00\', 0, p.ts_confirmed) AS date, p.comment, p.amount |
af387c4b SJ |
497 | FROM payment_transactions AS p |
498 | INNER JOIN accounts AS a ON (a.uid = p.uid) | |
499 | LEFT JOIN account_profiles AS ap ON (ap.uid = p.uid AND FIND_IN_SET(\'owner\', ap.perms)) | |
500 | LEFT JOIN profile_display AS pd ON (ap.pid = pd.pid) | |
501 | WHERE p.ref = {?}' . (($order_id == $pid) ? $ordering : ''), | |
502 | $pid); | |
1eaaa62d FB |
503 | $trans[$pid] = User::getBulkUsersWithUIDs($res->fetchAllAssoc(), 'uid', 'user'); |
504 | $sum = 0; | |
505 | foreach ($trans[$pid] as $i => $t) { | |
a7c0d514 DB |
506 | $sum += $t['amount']; |
507 | $trans[$pid][$i]['amount'] = $t['amount']; | |
1eaaa62d | 508 | } |
f5e965ca | 509 | $trans[$pid][] = array('limit' => true, |
a7c0d514 | 510 | 'amount' => $sum); |
98a7e9dc | 511 | } |
f5e965ca SJ |
512 | $res = XDB::iterRow("SELECT e.eid, e.short_name, e.intitule, ep.nb, ei.montant, ep.paid |
513 | FROM group_events AS e | |
514 | LEFT JOIN group_event_participants AS ep ON (ep.eid = e.eid AND ep.uid = {?}) | |
515 | INNER JOIN group_event_items AS ei ON (ep.eid = ei.eid AND ep.item_id = ei.item_id) | |
516 | WHERE e.paiement_id = {?}", | |
517 | S::v('uid'), $pid); | |
98a7e9dc | 518 | $event[$pid] = array(); |
519 | $event[$pid]['paid'] = 0; | |
520 | if ($res->total()) { | |
521 | $event[$pid]['topay'] = 0; | |
522 | while(list($eid, $shortname, $title, $nb, $montant, $paid) = $res->next()) { | |
523 | $event[$pid]['topay'] += ($nb * $montant); | |
524 | $event[$pid]['eid'] = $eid; | |
525 | $event[$pid]['shortname'] = $shortname; | |
526 | $event[$pid]['title'] = $title; | |
527 | $event[$pid]['ins'] = !is_null($nb); | |
528 | $event[$pid]['paid'] = $paid; | |
529 | } | |
530 | } | |
a7c0d514 | 531 | $res = XDB::query('SELECT SUM(amount) AS sum_amount |
f5e965ca | 532 | FROM payment_transactions |
e7d5bad7 | 533 | WHERE ref = {?} AND uid = {?}', $pid, S::v('uid')); |
a7c0d514 | 534 | $event[$pid]['paid'] = $res->fetchOneCell(); |
98a7e9dc | 535 | } |
17793ccf | 536 | $page->register_modifier('decode_comment', 'decode_comment'); |
98a7e9dc | 537 | $page->assign('trans', $trans); |
538 | $page->assign('event', $event); | |
539 | } | |
eaf30d86 | 540 | |
4294dc6c SJ |
541 | function handler_payment_csv($page, $pid = null) |
542 | { | |
543 | if (is_null($pid)) { | |
544 | pl_redirect('payment'); | |
545 | } | |
546 | if (substr($pid, -4) == '.vcf') { | |
547 | $pid = substr($pid, 0, strlen($pid) - 4); | |
548 | } | |
549 | ||
a7c0d514 | 550 | $res = XDB::fetchAllAssoc('SELECT uid, IF(ts_confirmed = \'0000-00-00\', 0, ts_confirmed) AS date, comment, amount |
4294dc6c SJ |
551 | FROM payment_transactions |
552 | WHERE ref = {?} | |
a7c0d514 | 553 | ORDER BY ts_confirmed', |
4294dc6c SJ |
554 | $pid); |
555 | if (is_null($res)) { | |
556 | pl_redirect('payment'); | |
557 | } | |
558 | ||
559 | $users = User::getBulkUsersWithUIDs($res, 'uid', 'user'); | |
560 | $sum = 0; | |
561 | ||
ee923b43 | 562 | pl_cached_content_headers('text/x-csv', 'iso-8859-1', 1); |
4294dc6c | 563 | $csv = fopen('php://output', 'w'); |
ee923b43 | 564 | fputcsv($csv, array('Date', 'Nom', utf8_decode('Prénom'), 'Sexe', 'Promotion', 'Email', 'Commentaire', 'Montant'), ';'); |
4294dc6c SJ |
565 | foreach ($users as $item) { |
566 | $user = $item['user']; | |
a7c0d514 | 567 | $sum += $item['amount']; |
ee923b43 | 568 | fputcsv($csv, array(format_datetime($item['date'], '%d/%m/%y'), utf8_decode($user->lastName()), utf8_decode($user->firstName()), |
4294dc6c | 569 | ($user->isFemale()) ? 'F' : 'M', $user->promo(), $user->ForlifeEmail(), |
ee923b43 | 570 | utf8_decode($item['comment']), strtr($item['amount'], '.', ',') . ' EUR' ), ';'); |
4294dc6c | 571 | } |
ee923b43 | 572 | fputcsv($csv, array(date('d/m/y'), 'Total', '', '', '' , '', '', strtr($sum, '.', ',') . ' EUR'), ';'); |
4294dc6c SJ |
573 | |
574 | fclose($csv); | |
575 | exit; | |
576 | } | |
577 | ||
26ba053e | 578 | function handler_admin($page, $action = 'list', $id = null) { |
46f272fe | 579 | $page->setTitle('Administration - Paiements'); |
a7de4ef7 | 580 | $page->assign('title', 'Gestion des télépaiements'); |
69fffc4b | 581 | $table_editor = new PLTableEditor('admin/payments','payments','id'); |
2e7b5921 | 582 | $table_editor->add_sort_field('flags'); |
de61dbcf | 583 | $table_editor->add_sort_field('id', true, true); |
69fffc4b | 584 | $table_editor->on_delete("UPDATE payments SET flags = 'old' WHERE id = {?}", "Le paiement a été archivé"); |
f5e965ca | 585 | $table_editor->describe('text', 'intitulé', true); |
47f51789 RB |
586 | $table_editor->describe('url', 'site web', false, true); |
587 | $table_editor->describe('amount_def', 'montant par défaut', false, true); | |
588 | $table_editor->describe('amount_min', 'montant minimum', false, true); | |
589 | $table_editor->describe('amount_max', 'montant maximum', false, true); | |
f5e965ca | 590 | $table_editor->describe('mail', 'email contact', true); |
47f51789 | 591 | $table_editor->describe('confirmation', 'message confirmation', false, true); |
4876398c | 592 | $table_editor->describe('rib_id', 'RIB', false, true); |
9c966750 | 593 | // adds a column with the start date of the linked event if there is one |
f5e965ca | 594 | $table_editor->add_option_table('group_events', 'group_events.paiement_id = t.id'); |
e9a46d1a | 595 | $table_editor->add_option_field('group_events.archive', 'related_event', 'évènement archivé ?', 'tinyint'); |
4876398c AL |
596 | // adds a column with the linked rib if there is one |
597 | $table_editor->add_option_table('payment_bankaccounts', 'payment_bankaccounts.id = t.rib_id'); | |
598 | $table_editor->add_option_field('payment_bankaccounts.owner', 'linked_rib_owner', 'rib associé', 'varchar'); | |
cdf6d2bf AL |
599 | // adds a link to the table of all the transactions |
600 | $table_editor->addLink('id', "admin/payments/transactions/"); | |
9c966750 | 601 | |
92423144 | 602 | $table_editor->apply($page, $action, $id); |
eaf30d86 | 603 | } |
f5e965ca | 604 | |
26ba053e | 605 | function handler_adm_transactions($page, $payment_id = null, $action = "list", $id = null) { |
f56ceafe DB |
606 | // show transactions. FIXME: should not be modifiable |
607 | $page->setTitle('Administration - Paiements - Transactions'); | |
608 | $page->assign('title', "Liste des transactions pour le paiement {$payment_id}"); | |
f5e965ca | 609 | |
f56ceafe DB |
610 | if ($payment_id == null) |
611 | $page->trigError("Aucun ID de paiement fourni."); | |
f5e965ca | 612 | |
cdf6d2bf | 613 | $table_editor = new PLTableEditor("admin/payments/transactions/{$payment_id}",'payment_transactions','id', true); |
f56ceafe | 614 | $table_editor->set_where_clause(XDB::format('ref = {?}', $payment_id)); |
cdf6d2bf AL |
615 | $table_editor->add_sort_field('id', true); |
616 | $table_editor->describe('ts_initiated', 'ts_initiated', true, false); | |
617 | $table_editor->describe('commission', 'commission', true, false); | |
57fc676c AL |
618 | $table_editor->describe('pkey', 'pkey', true, true); |
619 | $table_editor->describe('comment', 'comment', true, true); | |
cdf6d2bf | 620 | $table_editor->describe('recon_id', 'recon_id', true, false); |
57fc676c | 621 | $table_editor->describe('display', 'display', true, true); |
cdf6d2bf AL |
622 | $table_editor->apply($page, $action, $id); |
623 | $page->assign('addonly', 'addonly'); // don't show modification features, only add feature | |
f56ceafe | 624 | } |
f5e965ca | 625 | |
26ba053e | 626 | function handler_adm_bankaccounts($page, $action = "list", $id = null) { |
f56ceafe DB |
627 | // managment of bank account used for money transfert |
628 | $page->setTitle('Administration - Paiements - RIBs'); | |
629 | $page->assign('title', "Liste des RIBs"); | |
f5e965ca SJ |
630 | |
631 | $table_editor = new PLTableEditor('admin/payments/bankaccounts', 'payment_bankaccounts', 'id'); | |
2746db10 | 632 | $table_editor->describe('asso_id', 'ID du groupe', false, true); |
f5e965ca SJ |
633 | $table_editor->describe('owner', 'titulaire', true); |
634 | $table_editor->add_option_table('groups', 'groups.id = t.asso_id'); | |
38813e10 | 635 | $table_editor->add_option_field('groups.diminutif', 'group_name', 'groupe', 'varchar','iban'); |
f5e965ca | 636 | |
38813e10 | 637 | /* check RIB key FIXME: the column format (and name) changed |
f5e965ca | 638 | if ($action == 'update' && Post::has('account') && !check_rib(Post::v('account'))) { |
f56ceafe | 639 | $page->trigError("Le RIB n'est pas valide"); |
f5e965ca | 640 | $table_editor->apply($page, 'edit', $id); |
f56ceafe DB |
641 | return; |
642 | } | |
38813e10 | 643 | */ |
f5e965ca | 644 | |
f56ceafe DB |
645 | $table_editor->apply($page, $action, $id); |
646 | } | |
f5e965ca | 647 | |
26ba053e | 648 | function handler_adm_methods($page, $action = "list", $id = null) { |
f56ceafe DB |
649 | // show and edit payment methods |
650 | $page->setTitle('Administration - Paiements - Méthodes'); | |
f5e965ca SJ |
651 | $page->assign('title', 'Méthodes de paiement'); |
652 | $table_editor = new PLTableEditor('admin/payments/methods', 'payment_methods', 'id'); | |
f56ceafe DB |
653 | $table_editor->apply($page, $action, $id); |
654 | } | |
655 | ||
26ba053e | 656 | function handler_adm_reconcile($page, $step = 'list', $param = null) { |
f56ceafe DB |
657 | // reconciles logs with transactions |
658 | // FIXME: the admin is considered to be fair => he doesn't hack the $step value, nor other params | |
659 | $page->setTitle('Administration - Paiements - Réconciliations'); | |
660 | $page->changeTpl('payment/reconcile.tpl'); | |
661 | $page->assign('step', $step); | |
f3d6e2cc | 662 | $list = true; |
f5e965ca | 663 | |
f3d6e2cc DB |
664 | // actions |
665 | if ($step == 'delete' && $param != null) { | |
666 | S::assert_xsrf_token(); | |
f5e965ca | 667 | XDB::execute('DELETE FROM payment_reconcilations WHERE id = {?}', $param); |
f3d6e2cc | 668 | // FIXME: hardcoding !!! |
f5e965ca SJ |
669 | XDB::execute('UPDATE payment_transactions SET recon_id = NULL,commission = NULL WHERE recon_id = {?} AND method_id = 2', $param); |
670 | XDB::execute('UPDATE payment_transactions SET recon_id = NULL WHERE recon_id = {?} AND method_id = 1', $param); | |
671 | $page->trigSuccess("L'entrée " . $param . ' a été supprimée.'); | |
672 | ||
f3d6e2cc DB |
673 | } elseif ($step == 'edit') { |
674 | $page->trigError("L'édition n'est pas implémentée."); | |
f5e965ca | 675 | |
f3d6e2cc DB |
676 | } elseif ($step == 'step5') { |
677 | $page->trigSuccess("La réconciliation est terminée. Il est maintenant nécessaire de générer les virements."); | |
f5e965ca | 678 | |
f3d6e2cc | 679 | } |
f5e965ca | 680 | |
f3d6e2cc DB |
681 | if($list) { |
682 | // show list of reconciliations, with a "add" button | |
f5e965ca | 683 | $page->assign('title', 'Réconciliation - Liste'); |
77b81d91 | 684 | $page->assign('step', 'list'); |
f5e965ca | 685 | |
f3d6e2cc | 686 | $recongps = array(); |
f5e965ca | 687 | |
d32d309f | 688 | // récupère les réconciliations non groupées |
f3d6e2cc DB |
689 | $res = XDB::query("SELECT r.id, short_name AS method, period_start, period_end, status, |
690 | payment_count, sum_amounts, sum_commissions | |
691 | FROM payment_reconcilations AS r | |
f5e965ca | 692 | LEFT JOIN payment_methods AS m ON (r.method_id = m.id) |
f3d6e2cc DB |
693 | WHERE recongroup_id IS NULL |
694 | ORDER BY period_end DESC, period_start DESC"); | |
695 | foreach ($res->fetchAllAssoc() as $recon) | |
696 | $recongps[] = array('recons' => array($recon), 'transfers' => array()); | |
f5e965ca | 697 | |
d32d309f | 698 | // ne récupère que les 18 derniers groupements |
f3d6e2cc DB |
699 | $res = XDB::query("SELECT recongroup_id AS id |
700 | FROM payment_reconcilations | |
701 | GROUP BY recongroup_id | |
d32d309f AL |
702 | ORDER BY MAX(period_end) DESC, MIN(period_start) DESC |
703 | LIMIT 18"); | |
f3d6e2cc DB |
704 | foreach ($res->fetchAllAssoc() as $recongp) { |
705 | $res = XDB::query("SELECT r.id, short_name AS method, period_start, period_end, status, | |
706 | payment_count, sum_amounts, sum_commissions | |
707 | FROM payment_reconcilations AS r | |
f5e965ca SJ |
708 | LEFT JOIN payment_methods AS m ON (r.method_id = m.id) |
709 | WHERE recongroup_id = {?} | |
f3d6e2cc DB |
710 | ORDER BY period_end DESC, period_start DESC", |
711 | $recongp['id']); | |
712 | $recongp['recons'] = $res->fetchAllAssoc(); | |
713 | ||
38813e10 | 714 | $res = XDB::query('SELECT t.id, t.payment_id, t.amount, t.message, t.date |
4876398c | 715 | FROM payment_transfers AS t |
f5e965ca | 716 | WHERE recongroup_id = {?}', |
f3d6e2cc | 717 | $recongp['id']); |
38813e10 AL |
718 | $transfers = $res->fetchAllAssoc(); |
719 | foreach ($transfers as $id => $t) { | |
720 | if ($t['date'] == NULL) { // si le virement n'est pas fait, on va récupérer le rib associé au paiment | |
721 | $ownertmp = XDB::fetchOneCell('SELECT b.owner | |
722 | FROM payment_bankaccounts AS b | |
723 | LEFT JOIN payments AS p ON (p.rib_id = b.id) | |
724 | WHERE p.id = {?}', $t['payment_id']); | |
725 | } else { // sinon on prend celui associé au virement | |
726 | $ownertmp = XDB::fetchOneCell('SELECT b.owner | |
727 | FROM payment_bankaccounts AS b | |
728 | LEFT JOIN payment_transfers AS t ON (t.account_id = b.id) | |
729 | WHERE t.id = {?}', $t['id']); | |
730 | } | |
731 | $transfers[$id]['owner'] = $ownertmp; | |
732 | } | |
733 | $recongp['transfers'] = $transfers; | |
f5e965ca | 734 | |
f3d6e2cc DB |
735 | $recongps[] = $recongp; |
736 | } | |
737 | $page->assign_by_ref('recongps', $recongps); | |
738 | } | |
77b81d91 | 739 | } |
f5e965ca | 740 | |
26ba053e | 741 | function handler_adm_importlogs($page, $step, $param = null) { |
77b81d91 DB |
742 | $page->setTitle('Administration - Paiements - Réconciliations'); |
743 | $page->changeTpl('payment/reconcile.tpl'); | |
744 | $page->assign('step', $step); | |
f5e965ca | 745 | |
77b81d91 | 746 | if (isset($_SESSION['paymentrecon_data'])) { |
f56ceafe | 747 | // create temporary table with imported data |
f5e965ca | 748 | XDB::execute('CREATE TEMPORARY TABLE payment_tmp ( |
f56ceafe DB |
749 | reference VARCHAR(255) PRIMARY KEY, |
750 | date DATE, | |
751 | amount DECIMAL(9,2), | |
752 | commission DECIMAL(9,2) | |
f5e965ca | 753 | )'); |
f56ceafe | 754 | foreach ($_SESSION['paymentrecon_data'] as $i) |
f5e965ca | 755 | XDB::execute('INSERT INTO payment_tmp VALUES ({?}, {?}, {?}, {?})', |
f56ceafe DB |
756 | $i['reference'], $i['date'], $i['amount'], $i['commission']); |
757 | } | |
f5e965ca | 758 | |
77b81d91 | 759 | if ($step == 'step1') { |
f5e965ca | 760 | $page->assign('title', 'Étape 1'); |
77b81d91 DB |
761 | unset($_SESSION['paymentrecon_method']); |
762 | unset($_SESSION['paymentrecon_data']); | |
763 | unset($_SESSION['paymentrecon_id']); | |
f5e965ca | 764 | |
f56ceafe DB |
765 | // was a payment method choosen ? |
766 | if ($param != null) { | |
767 | $_SESSION['paymentrecon_method'] = (int)$param; | |
f5e965ca | 768 | pl_redirect('admin/reconcile/importlogs/step2'); |
f56ceafe DB |
769 | |
770 | } else { | |
771 | // ask to choose a payment method | |
f5e965ca | 772 | $res = XDB::query('SELECT id, text FROM payment_methods'); |
f56ceafe DB |
773 | $page->assign('methods', $res->fetchAllAssoc()); |
774 | } | |
775 | ||
776 | } elseif ( $step == 'step2' ) { | |
f5e965ca SJ |
777 | $page->assign('title', 'Étape 2'); |
778 | ||
f56ceafe | 779 | // import logs formated in CVS |
f5e965ca | 780 | $fields = array('date', 'reference', 'amount', 'commission'); |
f56ceafe | 781 | $importer = new PaymentLogsImporter(); |
77b81d91 | 782 | $importer->apply($page, 'admin/reconcile/importlogs/step2', $fields); |
f5e965ca | 783 | |
f56ceafe DB |
784 | // if import is finished |
785 | $result = $importer->get_result(); | |
786 | if($result != null) { | |
787 | $_SESSION['paymentrecon_data'] = $result; | |
f5e965ca | 788 | pl_redirect('admin/reconcile/importlogs/step3'); |
f56ceafe | 789 | } |
f5e965ca | 790 | |
f56ceafe | 791 | } elseif ($step == 'step3' ) { |
f5e965ca SJ |
792 | $page->assign('title', 'Étape 3'); |
793 | ||
f56ceafe | 794 | // compute reconcilation summary data |
f5e965ca | 795 | $res = XDB::query('SELECT MIN(date) AS period_start, MAX(date) AS period_end, |
f56ceafe DB |
796 | count(*) AS payment_count, SUM(amount) AS sum_amounts, |
797 | SUM(commission) AS sum_commissions | |
f5e965ca | 798 | FROM payment_tmp'); |
f56ceafe DB |
799 | $recon = $res->fetchOneAssoc(); |
800 | $recon['method_id'] = $_SESSION['paymentrecon_method']; | |
f5e965ca | 801 | |
f56ceafe DB |
802 | // create reconciliation item in database |
803 | if(Post::has('next')) { | |
804 | S::assert_xsrf_token(); | |
f5e965ca | 805 | |
f56ceafe | 806 | // get parameters |
f5e965ca SJ |
807 | $recon['period_start'] = preg_replace('/([0-9]{1,2})\/([0-9]{1,2})\/([0-9]{4})/', '\3-\2-\1', Post::v('period_start')); |
808 | $recon['period_end'] = preg_replace('/([0-9]{1,2})\/([0-9]{1,2})\/([0-9]{4})/', '\3-\2-\1', Post::v('period_end')); | |
f56ceafe | 809 | // FIXME: save checks to be done at next step |
f5e965ca | 810 | |
f56ceafe DB |
811 | // Create reconcilation item in database |
812 | // FIXME: check if period doesn't overlap with others for the same method_id | |
f5e965ca | 813 | XDB::execute('INSERT INTO payment_reconcilations (method_id, period_start, period_end, |
f56ceafe | 814 | payment_count, sum_amounts, sum_commissions) |
f5e965ca | 815 | VALUES ({?}, {?}, {?}, {?}, {?}, {?})', |
f56ceafe DB |
816 | $recon['method_id'], $recon['period_start'], $recon['period_end'], |
817 | $recon['payment_count'], $recon['sum_amounts'], $recon['sum_commissions']); | |
818 | $_SESSION['paymentrecon_id'] = XDB::insertId(); | |
f5e965ca | 819 | |
f56ceafe DB |
820 | // reconcile simple cases (trans.commission n'est modifié que s'il vaut NULL) |
821 | XDB::execute("UPDATE payment_transactions AS trans, payment_tmp AS tmp | |
f5e965ca SJ |
822 | SET trans.recon_id = {?}, trans.commission=tmp.commission |
823 | WHERE trans.fullref = tmp.reference | |
824 | AND trans.amount = tmp.amount AND DATE(trans.ts_confirmed) = tmp.date | |
825 | AND (trans.commission IS NULL OR trans.commission = tmp.commission) | |
826 | AND method_id = {?} AND recon_id IS NULL AND status = 'confirmed'", | |
f56ceafe | 827 | $_SESSION['paymentrecon_id'], $recon['method_id']); |
f5e965ca SJ |
828 | |
829 | pl_redirect("admin/reconcile/importlogs/step4"); | |
830 | ||
f56ceafe DB |
831 | // show summary of the imported data + ask form start/end of reconcilation period |
832 | } else { | |
833 | $recon['period_start'] = preg_replace('/([0-9]{4})-([0-9]{2})-([0-9]{2})/', '\3/\2/\1', $recon['period_start']); | |
834 | $recon['period_end'] = preg_replace('/([0-9]{4})-([0-9]{2})-([0-9]{2})/', '\3/\2/\1', $recon['period_end']); | |
835 | $page->assign('recon', $recon); | |
836 | } | |
837 | ||
838 | } elseif ($step == 'step4' ) { | |
f5e965ca SJ |
839 | $page->assign('title', 'Étape 4'); |
840 | ||
f56ceafe | 841 | // get reconcilation summary informations |
f5e965ca | 842 | $res = XDB::query('SELECT * FROM payment_reconcilations WHERE id = {?}', $_SESSION['paymentrecon_id']); |
f56ceafe DB |
843 | $recon = $res->fetchOneAssoc(); |
844 | $page->assign('recon', $recon); | |
845 | ||
846 | if (Post::has('force')) { | |
847 | S::assert_xsrf_token(); | |
848 | foreach (Post::v('force') as $id => $value) { | |
f5e965ca SJ |
849 | XDB::execute('UPDATE payment_transactions AS trans, payment_tmp AS tmp |
850 | SET trans.recon_id = {?}, trans.commission = tmp.commission | |
851 | WHERE trans.id = {?} AND trans.fullref = tmp.reference', | |
f56ceafe DB |
852 | $_SESSION['paymentrecon_id'], $id); |
853 | } | |
f5e965ca SJ |
854 | $page->trigSuccess('La réconciliation a été forcée pour ' . count(Post::v('force')) . ' transaction(s).'); |
855 | ||
f56ceafe | 856 | } elseif (Post::has('next')) { |
f5e965ca SJ |
857 | if (strlen($recon['comments'])< 3 ) { |
858 | $page->trigError('Le commentaire doit contenir au moins 3 caractères.'); | |
f56ceafe | 859 | } else { |
f5e965ca | 860 | XDB::execute("UPDATE payment_reconcilations SET status = 'transfering' WHERE id = {?}", $_SESSION['paymentrecon_id']); |
77b81d91 | 861 | pl_redirect('admin/reconcile/step5'); |
f56ceafe | 862 | } |
f5e965ca | 863 | |
f56ceafe DB |
864 | } elseif (Post::has('savecomments')) { |
865 | S::assert_xsrf_token(); | |
866 | $recon['comments'] = Post::v('comments'); | |
f3d6e2cc | 867 | $page->assign('recon', $recon); |
f5e965ca | 868 | XDB::execute('UPDATE payment_reconcilations SET comments = {?} WHERE id = {?}', $recon['comments'], $_SESSION['paymentrecon_id']); |
f56ceafe DB |
869 | $page->trigSuccess('Les commentaires ont été enregistrés.'); |
870 | } | |
f5e965ca | 871 | |
f56ceafe | 872 | // reconcilation results - ok |
f5e965ca SJ |
873 | $res = XDB::query('SELECT count(*), SUM(amount), SUM(commission) |
874 | FROM payment_transactions | |
875 | WHERE recon_id = {?}', | |
f56ceafe | 876 | $recon['id']); |
f5e965ca | 877 | list($ok_count, $ok_sum_amounts, $ok_sum_coms) = $res->fetchOneRow(); |
f56ceafe | 878 | $page->assign('ok_count', $ok_count); |
f5e965ca | 879 | |
f56ceafe | 880 | // reconcilation results - ref exists, but some data differs |
f5e965ca | 881 | $res = XDB::query('SELECT id, fullref, method_id, ts_confirmed, trans.amount, trans.commission, status, recon_id, |
f56ceafe DB |
882 | reference, date, tmp.amount as amount2, tmp.commission as commission2 |
883 | FROM payment_transactions AS trans | |
f5e965ca SJ |
884 | INNER JOIN payment_tmp AS tmp ON (trans.fullref = tmp.reference) |
885 | WHERE trans.recon_id IS NULL OR trans.recon_id != {?}', | |
f56ceafe DB |
886 | $recon['id']); |
887 | $differs = $res->fetchAllAssoc(); | |
888 | $page->assign_by_ref('differs', $differs); | |
889 | $page->assign('differ_count', count($differs)); | |
f5e965ca | 890 | |
f56ceafe | 891 | // reconcilation results - ref doesn't exists in database |
f5e965ca SJ |
892 | $res = XDB::query('SELECT tmp.* |
893 | FROM payment_tmp AS tmp | |
894 | LEFT JOIN payment_transactions AS trans ON (trans.fullref = tmp.reference) | |
895 | WHERE trans.fullref IS NULL'); | |
f56ceafe DB |
896 | $only_import = $res->fetchAllAssoc(); |
897 | $page->assign_by_ref('only_import', $only_import); | |
898 | $page->assign('onlyim_count', count($only_import)); | |
f5e965ca | 899 | |
f56ceafe | 900 | // reconcilation results - exists in database but not in import |
f5e965ca | 901 | $res = XDB::query('SELECT trans.* |
f56ceafe | 902 | FROM payment_transactions AS trans |
f5e965ca SJ |
903 | LEFT JOIN payment_tmp AS tmp ON (trans.fullref = tmp.reference) |
904 | WHERE {?} <= DATE(trans.ts_confirmed) AND DATE(trans.ts_confirmed) <= {?} | |
905 | AND tmp.reference IS NULL AND method_id = {?}', | |
f56ceafe DB |
906 | $recon['period_start'], $recon['period_end'], $recon['method_id']); |
907 | $only_database = $res->fetchAllAssoc(); | |
908 | $page->assign_by_ref('only_database', $only_database); | |
909 | $page->assign('onlydb_count', count($only_database)); | |
f56ceafe | 910 | } |
f3d6e2cc | 911 | } |
f5e965ca | 912 | |
26ba053e | 913 | function handler_adm_transfers($page, $action = null, $id = null) { |
77b81d91 | 914 | // list/log all bank transfers and link them to individual transactions |
f5e965ca | 915 | |
f3d6e2cc DB |
916 | if (Post::has('generate')) { |
917 | $recon_ids = array_keys(Post::v('recon_id')); | |
f5e965ca | 918 | |
f3d6e2cc DB |
919 | // generate a new reconcilation group ID |
920 | $res = XDB::query("SELECT MAX(recongroup_id)+1 FROM payment_reconcilations"); | |
921 | $recongp_id = $res->fetchOneCell(); | |
922 | if ($recongp_id == null) $recongp_id = 1; | |
f5e965ca | 923 | |
f3d6e2cc DB |
924 | // add reconcilations to group |
925 | // FIXME: should check if reconcilations are in good status | |
f5e965ca SJ |
926 | XDB::execute("UPDATE payment_reconcilations |
927 | SET recongroup_id = {?}, status = 'closed' | |
928 | WHERE id IN {?}", | |
929 | $recongp_id, $recon_ids); | |
930 | ||
f3d6e2cc | 931 | // create transfers |
f5e965ca | 932 | XDB::execute('INSERT INTO payment_transfers |
38813e10 | 933 | SELECT NULL, {?}, t.ref, SUM(t.amount+t.commission), NULL, p.text, NULL |
f3d6e2cc | 934 | FROM payment_transactions AS t |
f5e965ca SJ |
935 | LEFT JOIN payments AS p ON (t.ref = p.id) |
936 | LEFT JOIN groups AS g ON (p.asso_id = g.id) | |
53fa9b70 | 937 | WHERE t.recon_id IN {?} AND t.status = "confirmed" |
f5e965ca SJ |
938 | GROUP BY t.ref', |
939 | $recongp_id, $recon_ids); | |
940 | ||
f3d6e2cc DB |
941 | //$res = XDB::query("SELECT * FROM payment_reconcilations WHERE id IN {?}", $recon_ids); |
942 | //$recons = $res->fetchAllAssoc(); | |
f5e965ca SJ |
943 | |
944 | $page->trigSuccess('Les virements ont été générés pour ' . count($recon_ids) . ' réconciliations.'); | |
f3d6e2cc | 945 | $this->handler_adm_reconcile($page); |
f5e965ca SJ |
946 | |
947 | } elseif ($action == 'delgroup') { | |
f3d6e2cc | 948 | S::assert_xsrf_token(); |
f5e965ca SJ |
949 | XDB::execute("UPDATE payment_reconcilations |
950 | SET status = 'transfering', recongroup_id = NULL | |
951 | WHERE recongroup_id = {?}", $id); | |
952 | XDB::execute("DELETE FROM payment_transfers | |
953 | WHERE recongroup_id = {?} AND date IS NULL", $id); | |
954 | ||
f3d6e2cc DB |
955 | $page->trigSuccess("Les virements non réalisés ont été supprimé du groupe ".$id."."); |
956 | $this->handler_adm_reconcile($page); | |
f5e965ca | 957 | |
f3d6e2cc DB |
958 | } elseif ($action == "confirm") { |
959 | S::assert_xsrf_token(); | |
38813e10 AL |
960 | $account_id = XDB::fetchOneCell('SELECT rib_id |
961 | FROM payments AS p | |
962 | LEFT JOIN payment_transfers AS t ON (t.payment_id = p.id) | |
963 | WHERE t.id = {?}', $id); | |
f5e965ca | 964 | XDB::execute('UPDATE payment_transfers |
38813e10 AL |
965 | SET date = NOW(), account_id = {?} |
966 | WHERE id = {?}', $account_id, $id); | |
f5e965ca SJ |
967 | |
968 | $page->trigSuccess('Virement ' . $id . ' confirmé.'); | |
f3d6e2cc | 969 | $this->handler_adm_reconcile($page); |
f5e965ca | 970 | |
f3d6e2cc | 971 | } else { |
f5e965ca | 972 | pl_redirect('admin/reconcile'); |
f3d6e2cc | 973 | } |
f56ceafe DB |
974 | } |
975 | } | |
976 | ||
977 | class PaymentLogsImporter extends CSVImporter { | |
f3d6e2cc | 978 | protected $result; |
f5e965ca | 979 | |
f3d6e2cc DB |
980 | public function __construct() { |
981 | parent::__construct(''); | |
f5e965ca SJ |
982 | $this->registerFunction('systempay_commission', 'Compute BPLC commission', array($this, 'compute_systempay_commission')); |
983 | $this->registerFunction('payment_id', 'Autocompute payment ID', array($this, 'compute_payment_id')); | |
f56ceafe | 984 | //$this->forceValue('payment_id','func_payment_id'); |
f3d6e2cc | 985 | } |
f5e965ca | 986 | |
f3d6e2cc DB |
987 | public function run($action = null, $insert_relation = null, $update_relation = null) { |
988 | $this->result = array(); | |
989 | foreach ($this->data as $line) { | |
f56ceafe | 990 | $a = $this->makeAssoc($line, $insert_relation); |
1fe903b1 | 991 | // convert date |
f5e965ca | 992 | $a['date'] = preg_replace('/([0-9]{2})\/([0-9]{2})\/([0-9]{4}).*/', '\3-\2-\1', $a['date']); |
1fe903b1 | 993 | $a['date'] = preg_replace('/T.*/','', $a['date']); |
75d4576e | 994 | |
1fe903b1 | 995 | // convert money |
f5e965ca SJ |
996 | $a['amount'] = str_replace(',', '.', $a['amount']); |
997 | $a['commission'] = str_replace(',', '.', $a['commission']); | |
f3d6e2cc | 998 | $this->result[] = $a; |
f56ceafe | 999 | } |
f3d6e2cc | 1000 | } |
f5e965ca | 1001 | |
f3d6e2cc DB |
1002 | public function get_result() { |
1003 | return $this->result; | |
1004 | } | |
f5e965ca | 1005 | |
f3d6e2cc | 1006 | static public function compute_systempay_commission($line, $key, $relation) { |
f5e965ca | 1007 | static $EEE_countries = array( |
50af1b00 | 1008 | 'France', 'Allemagne', 'Autriche', 'Belgique', 'Bulgarie', 'Chypre', 'Croatie', |
f5e965ca SJ |
1009 | 'Danemark', 'Espagne', 'Estonie', 'Finlande', 'Grèce', 'Hongrie', 'Irlande', 'Islande', 'Italie', |
1010 | 'Lettonie', 'Liechtenstein', 'Lituanie', 'Luxembourg', 'Malte', 'Norvège', 'Pays-Bas', 'Pologne', | |
1011 | 'Portugal', 'Roumanie', 'Royaume-Uni', 'Slovaquie', 'Slovénie', 'Suède', 'République Tchèque' | |
1012 | ); | |
1013 | ||
1014 | if($key!='commission' || !array_key_exists('carte', $line)) { | |
1015 | return null; | |
1016 | } | |
f3d6e2cc | 1017 | $amount = self::getValue($line, 'amount', $relation['amount']); |
f5e965ca SJ |
1018 | if (in_array($line['pays carte'], $EEE_countries)) { |
1019 | return -0.20 - round($amount * 0.005, 2); | |
1020 | } else { | |
50af1b00 | 1021 | return -0.20 - round($amount * 0.005, 2) - 0.75; |
f5e965ca | 1022 | } |
f3d6e2cc DB |
1023 | } |
1024 | ||
1025 | static public function compute_payment_id($line, $key, $relation) { | |
f5e965ca SJ |
1026 | if ($key != 'payment_id') { |
1027 | return null; | |
1028 | } | |
f3d6e2cc | 1029 | $reference = self::getValue($line, 'reference', $relation['reference']); |
f1995a1e | 1030 | if (preg_match('/-([0-9]+)$/', $reference, $matches)) { |
f3d6e2cc | 1031 | return $matches[1]; |
f5e965ca | 1032 | } else { |
f56ceafe | 1033 | return null; |
f5e965ca | 1034 | } |
f3d6e2cc | 1035 | } |
a2558f2b | 1036 | } |
1037 | ||
448c8cdc | 1038 | // vim:set et sw=4 sts=4 sws=4 foldmethod=marker fenc=utf-8: |
a2558f2b | 1039 | ?> |