## $Id: applicantsbrowser.py 16379 2021-01-20 10:13:07Z henrik $ ## ## Copyright (C) 2017 Uli Fouquet & Henrik Bettermann ## This program is free software; you can redistribute it and/or modify ## it under the terms of the GNU General Public License as published by ## the Free Software Foundation; either version 2 of the License, or ## (at your option) any later version. ## ## This program is distributed in the hope that it will be useful, ## but WITHOUT ANY WARRANTY; without even the implied warranty of ## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ## GNU General Public License for more details. ## ## You should have received a copy of the GNU General Public License ## along with this program; if not, write to the Free Software ## Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA ## import grok import hashlib from datetime import datetime, timedelta from zope.component import getUtility from zope.security import checkPermission from waeup.kofa.interfaces import IKofaUtils from waeup.kofa.utils.helpers import to_timezone from waeup.kofa.browser.layout import UtilityView, KofaPage from waeup.kofa.browser.viewlets import ManageActionButton from kofacustom.nigeria.etranzact.helpers import ( write_payments_log, process_response, query_history) from kofacustom.nigeria.applicants.browser import NigeriaOnlinePaymentDisplayFormPage as NOPDPApplicant from kofacustom.nigeria.payments.interfaces import INigeriaOnlinePayment from kofacustom.nigeria.applicants.interfaces import INigeriaApplicantOnlinePayment from kofacustom.nigeria.interfaces import MessageFactory as _ from kofacustom.nigeria.etranzact.studentsbrowser import webconnect_module_activated from kofacustom.nigeria.etranzact.tests import ( TERMINAL_ID, HOST, HTTPS, SECRET_KEY, LOGO_URL, GATEWAY_AMT) grok.templatedir('browser_templates') class EtranzactActionButtonApplicant(ManageActionButton): grok.order(1) grok.context(INigeriaOnlinePayment) grok.view(NOPDPApplicant) grok.require('waeup.payApplicant') icon = 'actionicon_pay.png' text = _('Pay via Etranzact WebConnect') target = 'goto_etranzact' @property def target_url(self): if not webconnect_module_activated( self.context.__parent__.__parent__.year, self.context): return '' if self.context.p_state != 'unpaid': return '' return self.view.url(self.view.context, self.target) class EtranzactRequeryActionButtonApplicant(ManageActionButton): grok.order(2) grok.context(INigeriaOnlinePayment) grok.view(NOPDPApplicant) grok.require('waeup.payApplicant') icon = 'actionicon_call.png' text = _('Requery Etranzact WebConnect History') target = 'requery_history' @property def target_url(self): if not webconnect_module_activated( self.context.__parent__.__parent__.year, self.context): return '' if self.context.p_state in ('paid', 'waived', 'scholarship', 'failed'): return '' return self.view.url(self.view.context, self.target) class EtranzactPageApplicant(KofaPage): """ View which sends a POST request to the Etranzact payment gateway. """ grok.context(INigeriaApplicantOnlinePayment) grok.name('goto_etranzact') grok.template('goto_etranzact') grok.require('waeup.payApplicant') label = _('Pay via Etranzact') submit_button = _('Pay now') host = HOST https = HTTPS secret_key = SECRET_KEY terminal_id = TERMINAL_ID logo_url = LOGO_URL gateway_amt = GATEWAY_AMT @property def action(self): if self.https: return 'https://' + self.host + '/webconnect/v3/caller.jsp' return 'http://' + self.host + '/webconnect/v3/caller.jsp' def init_update(self): if self.context.p_state == 'paid': return _("Payment ticket can't be re-sent to Etranzact.") now = datetime.utcnow() if self.context.creation_date.tzinfo is not None: # That's bad. Please store timezone-naive datetimes only! now = self.context.creation_date.tzinfo.localize(now) time_delta = now - self.context.creation_date if time_delta.days > 7: return _("This payment ticket is too old. Please create a new ticket.") # In contrast to the procedure in the Remita and Interswitch modules, # we do not call requery_history but receive and evaluate # the response form from Etranzact directly. This is possible # because Etranzact provides the FINAL_CHECKSUM hash value # which authenticates the response. self.responseurl = self.url(self.context, 'receive_etranzact') self.transaction_id = self.context.p_id self.description = "%s - (%s)" % ( self.context.p_category, self.context.p_item) hashargs = self.amount + self.terminal_id + self.transaction_id \ + self.responseurl + self.secret_key self.hashvalue = hashlib.md5(hashargs).hexdigest() self.customer = self.context.__parent__ return def update(self): if not webconnect_module_activated( self.context.__parent__.__parent__.year, self.context): self.flash(_('Forbidden'), type='danger') self.redirect(self.url(self.context, '@@index')) return # Already now it becomes an Etranzact payment. We set the net amount # and add the gateway amount. if not self.context.r_company: self.context.net_amt = self.context.amount_auth self.context.amount_auth += self.gateway_amt self.context.gateway_amt = self.gateway_amt self.context.r_company = u'etranzact' self.amount = "%.1f" % self.context.amount_auth error = self.init_update() if error: self.flash(error, type='danger') self.redirect(self.url(self.context, '@@index')) return return class EtranzactReceiveResponseApplicant(NOPDPApplicant): """ View that receives the response from eTrantact payment gateway. """ grok.name('receive_etranzact') secret_key = SECRET_KEY terminal_id = TERMINAL_ID def update(self): super(EtranzactReceiveResponseApplicant, self).update() if not webconnect_module_activated( self.context.__parent__.__parent__.year, self.context): self.flash(_('Forbidden'), type='danger') self.redirect(self.url(self.context, '@@index')) return applicant = self.context.__parent__ form = self.request.form verify = False if self.context.p_state == 'paid': verify = True success, msg, log = process_response(self.context, form, self, verify) applicant.writeLogMessage(self, log) if not success: self.flash(msg, type='danger') return write_payments_log(applicant.applicant_id, self.context) flashtype, msg, log = self.context.doAfterApplicantPayment() if log is not None: applicant.writeLogMessage(self, log) self.flash(msg, type=flashtype) return class EtranzactRequestPaymentStatusPageApplicant(UtilityView, grok.View): """ Request webservice view for the Etranzact gateway. """ grok.context(INigeriaApplicantOnlinePayment) grok.name('requery_history') grok.require('waeup.payApplicant') host = HOST https = HTTPS secret_key = SECRET_KEY terminal_id = TERMINAL_ID logo_url = LOGO_URL def update(self): if not webconnect_module_activated( self.context.__parent__.__parent__.year, self.context): self.flash(_('Forbidden'), type='danger') self.redirect(self.url(self.context, '@@index')) return if self.context.p_state in ('paid', 'waived', 'scholarship', 'failed'): self.flash(_('This ticket has already been processed.'), type='danger') return applicant = self.context.__parent__ verify = False raw, form = query_history(self.host, self.terminal_id, self.context.p_id, self.https) success, msg, log = process_response(self.context, form, self, verify) applicant.writeLogMessage(self, log) if not success: self.flash(msg, type='danger') return write_payments_log(applicant.applicant_id, self.context) flashtype, msg, log = self.context.doAfterApplicantPayment() if log is not None: applicant.writeLogMessage(self, log) self.flash(msg, type=flashtype) return def render(self): self.redirect(self.url(self.context)) return