## $Id: browser.py 7919 2012-03-19 07:01:48Z henrik $
##
## Copyright (C) 2012 Uli Fouquet & Henrik Bettermann
## This program is free software; you can redistribute it and/or modify
## it under the terms of the GNU General Public License as published by
## the Free Software Foundation; either version 2 of the License, or
## (at your option) any later version.
##
## This program is distributed in the hope that it will be useful,
## but WITHOUT ANY WARRANTY; without even the implied warranty of
## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
## GNU General Public License for more details.
##
## You should have received a copy of the GNU General Public License
## along with this program; if not, write to the Free Software
## Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
##
from datetime import datetime
import httplib
import urllib
from xml.dom.minidom import parseString
import grok
from waeup.kofa.browser.layout import KofaPage, UtilityView
from waeup.kofa.accesscodes import create_accesscode
from waeup.kofa.students.interfaces import IStudentOnlinePayment
from waeup.kofa.students.browser import write_log_message
from waeup.kofa.students.viewlets import RequestCallbackActionButton
from waeup.custom.interfaces import MessageFactory as _
PRODUCT_ID = '57'
SITE_NAME = 'xyz.waeup.org'
PROVIDER_ACCT = '2345'
PROVIDER_BANK_ID = '8'
PROVIDER_ITEM_NAME = 'Kofa Provider Fee'
INSTITUTION_ACCT = '1234'
INSTITUTION_BANK_ID = '9'
INSTITUTION_NAME = 'Sample University'
CURRENCY = '566'
PAY_ITEM_ID = '5700'
QUERY_URL = 'https://testwebpay.interswitchng.com/test_paydirect/services/TransactionQueryURL.aspx'
POST_ACTION = 'https://testwebpay.interswitchng.com/test_paydirect/webpay/pay.aspx'
HOST = 'testwebpay.interswitchng.com'
URL = '/test_paydirect/services/TransactionQueryWs.asmx'
httplib.HTTPConnection.debuglevel = 0
def SOAP_post(soap_action,xml):
"""Handles making the SOAP request.
Further reading:
http://testwebpay.interswitchng.com/test_paydirect/services/TransactionQueryWs.asmx?op=getTransactionData
"""
h = httplib.HTTPConnection(HOST)
headers={
'Host':HOST,
'Content-Type':'text/xml; charset=utf-8',
'Content-Length':len(xml),
'SOAPAction':'"%s"' % soap_action,
}
h.request('POST', URL, body=xml,headers=headers)
r = h.getresponse()
d = r.read()
if r.status!=200:
raise ValueError('Error connecting: %s, %s' % (r.status, r.reason))
return d
def get_SOAP_response(product_id, transref):
xml="""\
%s
%s
""" % (product_id, transref)
result_xml=SOAP_post("http://tempuri.org/getTransactionData",xml)
doc=parseString(result_xml)
response=doc.getElementsByTagName('getTransactionDataResult')[0].firstChild.data
return response
class InterswitchActionButton(RequestCallbackActionButton):
grok.order(2)
icon = 'actionicon_pay.png'
text = _('CollegePAY')
target = 'goto_interswitch'
@property
def target_url(self):
if self.context.p_state != 'unpaid':
return ''
return self.view.url(self.view.context, self.target)
class InterswitchRequestCallbackActionButton(RequestCallbackActionButton):
grok.order(3)
icon = 'actionicon_call.png'
text = _('Request CollegePAY callback')
def target_url(self):
if self.context.p_state == 'paid':
return ''
site_redirect_url = self.view.url(self.view.context, 'callback')
args = {
'transRef':self.context.p_id,
'prodID':PRODUCT_ID,
'redirectURL':site_redirect_url}
return QUERY_URL + '?%s' % urllib.urlencode(args)
# Alternative preferred solution
class InterswitchRequestWebserviceActionButton(RequestCallbackActionButton):
grok.order(4)
icon = 'actionicon_call.png'
text = _('Request CollegePAY webservice')
target = 'request_webservice'
class InterswitchPage(KofaPage):
""" View which sends a POST request to the Interswitch
CollegePAY payment gateway.
"""
grok.context(IStudentOnlinePayment)
grok.name('goto_interswitch')
grok.template('goto_interswitch')
grok.require('waeup.payStudent')
label = _('Submit data to CollegePAY (Interswitch Payment Gateway)')
submit_button = _('Submit')
action = POST_ACTION
site_name = SITE_NAME
currency = CURRENCY
pay_item_id = PAY_ITEM_ID
product_id = PRODUCT_ID
def update(self):
if self.context.p_state != 'unpaid':
self.flash(_("Payment ticket can't be re-send to CollegePAY."))
self.redirect(self.url(self.context, '@@index'))
return
self.student = self.context.getStudent()
self.amount = (self.context.amount_auth + self.context.surcharge_1 +
self.context.surcharge_2 + self.context.surcharge_3)
self.amount_100 = 100 * self.amount
self.local_date_time = str(self.context.creation_date)
self.site_redirect_url = self.url(self.context, 'callback')
certificate = getattr(self.student['studycourse'],'certificate',None)
xmldict = {}
if certificate is not None:
xmldict['department'] = certificate.__parent__.__parent__.code
xmldict['faculty'] = certificate.__parent__.__parent__.__parent__.code
else:
xmldict['department'] = None
xmldict['faculty'] = None
xmldict['detail_ref'] = self.context.p_id
xmldict['provider_amt'] = 100 * self.context.surcharge_1
xmldict['provider_acct'] = PROVIDER_ACCT
xmldict['provider_bank_id'] = PROVIDER_BANK_ID
xmldict['provider_item_name'] = PROVIDER_ITEM_NAME
xmldict['institution_amt'] = 100 * self.context.amount_auth
xmldict['institution_acct'] = INSTITUTION_ACCT
xmldict['institution_bank_id'] = INSTITUTION_BANK_ID
xmldict['institution_item_name'] = self.context.p_category
xmldict['institution_name'] = INSTITUTION_NAME
# Interswitch amount is not part of the xml data
xmltext = """
""" % xmldict
self.xml_data = """""" % xmltext
return
class OnlinePaymentCallbackPage(UtilityView, grok.View):
""" Callback view for the CollegePAY gateway
"""
grok.context(IStudentOnlinePayment)
grok.name('callback')
grok.require('waeup.payStudent')
# This view is not yet working for offline querying transactions
# since the query string differs from the query string sent after
# posting transactions. This Interswitch bug must be removed first.
# Alternatively, we could use the webservice only and replace
# the RequestCallbackActionButton by a RequestWebserviceActionButton
def update(self):
if self.context.p_state == 'paid':
self.flash(_('This ticket has already been paid.'))
return
student = self.context.getStudent()
query = self.request.form
# Should be logged instead of printed
write_log_message(self,'callback received: %s' % query)
if query.get('resp', None) != '00':
self.flash(_('Unsuccessful callback: ${a}',
mapping = {'a': query.get('desc', _('Incomplete query string.'))}))
write_log_message(self,'unsuccessful callback: %s' % self.context.p_id)
self.context.r_card_num = query.get('cardNum', None)
self.context.r_code = query.get('resp', None)
self.context.p_state = 'failed'
return
if query.get('apprAmt', None) != str(self.context.amount_auth):
self.flash(_('Wrong amount'))
write_log_message(self,'successful but wrong amount: %s' % self.context.p_id)
self.context.r_card_num = query.get('cardNum', None)
self.context.r_code = query.get('resp', None)
self.context.p_state = 'failed'
return
# Add webservice validation
validation_list = get_SOAP_response(
PRODUCT_ID, self.context.p_id).split(':')
# Validation does not make sense yet since the query string
# formats are conflicting.
print validation_list
write_log_message(self,'valid callback: %s' % self.context.p_id)
self.context.r_amount_approved = self.context.amount_auth
self.context.r_card_num = query.get('cardNum', None)
self.context.r_code = query.get('resp', None)
self.context.r_desc = query.get('desc', None)
self.context.r_pay_reference = query.get('payRef', None)
self.context.p_state = 'paid'
self.context.payment_date = datetime.now()
if self.context.p_category == 'clearance':
# Create CLR access code
pin, error = create_accesscode('CLR',0,student.student_id)
if error:
self.flash(_('Valid callback received. ${a}',
mapping = {'a':error}))
return
self.context.ac = pin
elif self.context.p_category == 'schoolfee':
# Create SFE access code
pin, error = create_accesscode('SFE',0,student.student_id)
if error:
self.flash(_('Valid callback received. ${a}',
mapping = {'a':error}))
return
self.context.ac = pin
elif self.context.p_category == 'bed_allocation':
# Create HOS access code
pin, error = create_accesscode('HOS',0,student.student_id)
if error:
self.flash(_('Valid callback received. ${a}',
mapping = {'a':error}))
return
self.context.ac = pin
self.flash(_('Valid callback received.'))
return
def render(self):
self.redirect(self.url(self.context, '@@index'))
return
# Alternative solution, replaces OnlinePaymentCallbackPage
class OnlinePaymentRequestWebservicePage(UtilityView, grok.View):
""" Request webservice view for the CollegePAY gateway
"""
grok.context(IStudentOnlinePayment)
grok.name('request_webservice')
grok.require('waeup.payStudent')
def update(self):
if self.context.p_state == 'paid':
self.flash(_('This ticket has already been paid.'))
return
student = self.context.getStudent()
sr = get_SOAP_response(PRODUCT_ID, self.context.p_id)
write_log_message(self,'callback received: %s' % sr)
wlist = sr.split(':')
if len(wlist) != 7:
self.flash(_('Invalid callback: ${a}',
mapping = {'a': wlist}))
write_log_message(self,'invalid callback: %s' % self.context.p_id)
return
self.context.r_code = wlist[0]
self.context.r_desc = wlist[1]
self.context.r_amount_approved = int(wlist[2])
self.context.r_card_num = wlist[3]
self.context.r_pay_reference = wlist[5]
if wlist[0] != '00':
self.flash(_('Unsuccessful callback: ${a}',
mapping = {'a': wlist[1]}))
write_log_message(self,'unsuccessful callback: %s' % self.context.p_id)
self.context.p_state = 'failed'
return
if wlist[2] != str(self.context.amount_auth):
self.flash(_('Wrong amount'))
write_log_message(self,'successful callback but wrong amount: %s' % self.context.p_id)
self.context.p_state = 'failed'
return
if wlist[5] != self.context.p_id:
self.flash(_('Wrong transaction id'))
write_log_message(self,'successful callback but wrong transaction id: %s' % self.context.p_id)
self.context.p_state = 'failed'
return
write_log_message(self,'successful callback: %s' % self.context.p_id)
self.context.p_state = 'paid'
self.context.payment_date = datetime.now()
if self.context.p_category == 'clearance':
# Create CLR access code
pin, error = create_accesscode('CLR',0,student.student_id)
if error:
self.flash(_('Valid callback received. ${a}',
mapping = {'a':error}))
return
self.context.ac = pin
elif self.context.p_category == 'schoolfee':
# Create SFE access code
pin, error = create_accesscode('SFE',0,student.student_id)
if error:
self.flash(_('Valid callback received. ${a}',
mapping = {'a':error}))
return
self.context.ac = pin
elif self.context.p_category == 'bed_allocation':
# Create HOS access code
pin, error = create_accesscode('HOS',0,student.student_id)
if error:
self.flash(_('Valid callback received. ${a}',
mapping = {'a':error}))
return
self.context.ac = pin
self.flash(_('Valid callback received.'))
return
def render(self):
self.redirect(self.url(self.context, '@@index'))
return