## $Id: helpers.py 13602 2016-01-12 12:35:59Z henrik $ ## ## Copyright (C) 2012 Uli Fouquet & Henrik Bettermann ## This program is free software; you can redistribute it and/or modify ## it under the terms of the GNU General Public License as published by ## the Free Software Foundation; either version 2 of the License, or ## (at your option) any later version. ## ## This program is distributed in the hope that it will be useful, ## but WITHOUT ANY WARRANTY; without even the implied warranty of ## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ## GNU General Public License for more details. ## ## You should have received a copy of the GNU General Public License ## along with this program; if not, write to the Free Software ## Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA ## """General helper functions for the interswitch module in custom packages. """ from datetime import datetime import httplib import hashlib import json from urllib import urlencode import grok from xml.dom.minidom import parseString from zope.event import notify from kofacustom.nigeria.interfaces import MessageFactory as _ def SOAP_post(soap_action, xml, host, url, https): """Handles making the SOAP request. Further reading: http://testwebpay.interswitchng.com/test_paydirect/services/TransactionQueryWs.asmx?op=getTransactionData """ if https: h = httplib.HTTPSConnection(host) else: h = httplib.HTTPConnection(host) headers={ 'Host':host, 'Content-Type':'text/xml; charset=utf-8', 'Content-Length':len(xml), 'SOAPAction':'"%s"' % soap_action, } h.request('POST', url, body=xml,headers=headers) response = h.getresponse() return response def get_SOAP_response(product_id, transref, host, url, https): xml="""\ %s %s """ % (product_id, transref) response=SOAP_post("http://tempuri.org/getTransactionData",xml, host, url, https) if response.status!=200: return 'Connection error (%s, %s)' % (response.status, response.reason) result_xml = response.read() doc=parseString(result_xml) response=doc.getElementsByTagName('getTransactionDataResult')[0].firstChild.data return response def get_JSON_response(product_id, transref, host, url, https, mac, amount): hashargs = product_id + transref + mac hashvalue = hashlib.sha512(hashargs).hexdigest() headers={ 'Content-Type':'text/xml; charset=utf-8', 'Hash':hashvalue, } if https: h = httplib.HTTPSConnection(host) else: h = httplib.HTTPConnection(host) amount = int(100 * amount) args = {'productid': product_id, 'transactionreference': transref, 'amount': amount} url = '%s?' % url + urlencode(args) h.request("GET", url, headers=headers) response = h.getresponse() if response.status!=200: return {'error': 'Connection error (%s, %s)' % (response.status, response.reason)} jsonout = response.read() parsed_json = json.loads(jsonout) return parsed_json def query_interswitch_SOAP(payment, product_id, host, url, https, verify): sr = get_SOAP_response(product_id, payment.p_id, host, url, https) if sr.startswith('Connection error'): msg = _('Connection error') log = sr return False, msg, log wlist = sr.split(':') if len(wlist) != 7: msg = _('Invalid callback: ${a}', mapping = {'a': sr}) log = 'invalid callback for payment %s: %s' % (payment.p_id, sr) return False, msg, log payment.r_code = wlist[0] payment.r_desc = wlist[1] payment.r_amount_approved = float(wlist[2]) / 100 payment.r_card_num = wlist[3] payment.r_pay_reference = wlist[5] payment.r_company = u'interswitch' if payment.r_code != '00': msg = _('Unsuccessful callback: ${a}', mapping = {'a': sr}) log = 'unsuccessful callback for %s payment %s: %s' % ( payment.p_category, payment.p_id, sr) payment.p_state = 'failed' notify(grok.ObjectModifiedEvent(payment)) return False, msg, log if round(payment.r_amount_approved, 2) != round(payment.amount_auth, 2): msg = _('Callback amount does not match.') log = 'wrong callback for %s payment %s: %s' % ( payment.p_category, payment.p_id, sr) payment.p_state = 'failed' notify(grok.ObjectModifiedEvent(payment)) return False, msg, log if wlist[4] != payment.p_id: msg = _('Callback transaction id does not match.') log = 'wrong callback for %s payment %s: %s' % ( payment.p_category, payment.p_id, sr) payment.p_state = 'failed' notify(grok.ObjectModifiedEvent(payment)) return False, msg, log payment.p_state = 'paid' if not verify: payment.payment_date = datetime.utcnow() msg = _('Successful callback received.') log = 'valid callback for %s payment %s: %s' % ( payment.p_category, payment.p_id, sr) notify(grok.ObjectModifiedEvent(payment)) return True, msg, log def query_interswitch(payment, product_id, host, url, https, mac, verify): # If no mac mac key is given, fall back to deprecated SOAP method # (Uniben, AAUA, FCEOkene). if mac == None: return query_interswitch_SOAP( payment, product_id, host, url, https, verify) jr = get_JSON_response(product_id, payment.p_id, host, url, https, mac, payment.amount_auth) error = jr.get('error') if error: msg = log = error return False, msg, log # A typical JSON response # {u'SplitAccounts': [], # u'MerchantReference':u'p4210665523377', # u'PaymentReference':u'GTB|WEB|KPOLY|12-01-2015|013138', # u'TransactionDate':u'2015-01-12T13:43:39.27', # u'RetrievalReferenceNumber':u'000170548791', # u'ResponseDescription': u'Approved Successful', # u'Amount': 2940000, # u'CardNumber': u'2507', # u'ResponseCode': u'00', # u'LeadBankCbnCode': None, # u'LeadBankName': None} if len(jr) != 11: msg = _('Invalid callback: ${a}', mapping = {'a': str(jr)}) log = 'invalid callback for payment %s: %s' % (payment.p_id, str(jr)) return False, msg, log if verify and jr['ResponseCode'] == '20050': msg = _('Integration method has changed.') log = 'invalid callback for payment %s: %s' % (payment.p_id, str(jr)) return False, msg, log payment.r_code = jr['ResponseCode'] payment.r_desc = jr['ResponseDescription'] payment.r_amount_approved = jr['Amount'] / 100.0 payment.r_card_num = jr['CardNumber'] payment.r_pay_reference = jr['PaymentReference'] payment.r_company = u'interswitch' if payment.r_code != '00': msg = _('Unsuccessful callback: ${a}', mapping = {'a': payment.r_desc}) log = 'unsuccessful callback for %s payment %s: %s' % ( payment.p_category, payment.p_id, payment.r_desc) payment.p_state = 'failed' notify(grok.ObjectModifiedEvent(payment)) return False, msg, log if round(payment.r_amount_approved, 2) != round(payment.amount_auth, 2): msg = _('Callback amount does not match.') log = 'wrong callback for %s payment %s: %s' % ( payment.p_category, payment.p_id, str(jr)) payment.p_state = 'failed' notify(grok.ObjectModifiedEvent(payment)) return False, msg, log if jr['MerchantReference'] != payment.p_id: msg = _('Callback transaction id does not match.') log = 'wrong callback for %s payment %s: %s' % ( payment.p_category, payment.p_id, str(jr)) payment.p_state = 'failed' notify(grok.ObjectModifiedEvent(payment)) return False, msg, log payment.p_state = 'paid' if not verify: payment.payment_date = datetime.utcnow() msg = _('Successful callback received') log = 'valid callback for %s payment %s: %s' % ( payment.p_category, payment.p_id, str(jr)) notify(grok.ObjectModifiedEvent(payment)) return True, msg, log def write_payments_log(id, payment): payment.logger.info( '%s,%s,%s,%s,%s,%s,%s,%s,,,' % ( id, payment.p_id, payment.p_category, payment.amount_auth, payment.r_code, payment.provider_amt, payment.gateway_amt, payment.thirdparty_amt))