Changeset 1619 for WAeUP_SRP/trunk/skins
- Timestamp:
- 22 Mar 2007, 20:42:53 (18 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
WAeUP_SRP/trunk/skins/waeup_epayment/epayment_cb.py
r1568 r1619 14 14 import logging 15 15 logger = logging.getLogger('Skins.epayment_cb') 16 from AccessControl import Unauthorized 16 17 import DateTime 17 18 if context.portal_membership.isAnonymousUser(): … … 21 22 students = context.portal_url.getPortalObject().campus.students 22 23 wftool = context.portal_workflow 24 mtool = context.portal_membership 25 member = mtool.getAuthenticatedMember() 26 member_id = str(member) 23 27 student_id = context.getStudentId() 24 if student_id is None: 28 if student_id is None or student_id != member_id: 29 logger.info('%s tried to access payment object of %s' % (member_id,student_id)) 30 referer = request.get('HTTP_REFERER','NO REFERER') 31 logger.info('%s:%s illegal access referer %s' % (member_id,student_id,referer)) 32 real_ip = request.get('HTTP_X_REAL_IP',"NO REAL_X_IP") 33 logger.info('%s:%s illegal access real_x_ip %s' % (member_id,student_id,real_ip)) 25 34 return context.REQUEST.RESPONSE.redirect("%s/srp_anonymous_view" % context.portal_url()) 26 35 … … 37 46 for rc,pdk in resp_codes: 38 47 pd[pdk] = request.get(rc) 39 context.getContent().edit(mapping=pd) 48 try: 49 context.getContent().edit(mapping=pd) 50 except UnAuthorized,E: 51 logger.info('%s ' % student_id) 52 40 53 #resp = pd['resp_desc'] 41 54 #if resp.startswith('Appro') and resp.endswith('essful'): … … 44 57 wftool.doActionFor(student,'pay_school_fee') 45 58 logger.info('%s received valid callback' % student_id) 59 referer = request.get('HTTP_REFERER','NO REFERER') 60 logger.info('%s valid callback referer %s' % (student_id,referer)) 61 real_ip = request.get('HTTP_X_REAL_IP',"NO REAL_X_IP") 62 logger.info('%s valid callback real_ip %s' % (student_id,real_ip)) 46 63 47 64 elif len(resp) < 3:
Note: See TracChangeset for help on using the changeset viewer.