Paypalos sé rendelésnél nem irodik jóvá a sé.

[szotyola.]

sziasztok!
Megrendelem paypalon a sé-t, ki is engedi fizetni, meg jön a pénz de a sé-t nem irja jóvá a rebdszer.
Miért lehet ez?
paypal.php:

Kód Kijelölés Kibont

<?phprequire 'inc/init.php';// CONFIG: Enable debug mode. This means we'll log requests into 'ipn.log' in the same directory.// Especially useful if you encounter network errors or other intermittent problems with IPN (validation).// Set this to 0 once you go live or don't require logging.define("DEBUG", 0);// Set to 0 once you're ready to go livedefine("USE_SANDBOX", 0);define("LOG_FILE", "inc/paypal.log");// Read POST data// reading posted data directly from $_POST causes serialization// issues with array data in POST. Reading raw POST data from input stream instead.$raw_post_data = file_get_contents('php://input');$raw_post_array = explode('&', $raw_post_data);$myPost = array();foreach ($raw_post_array as $keyval) {	$keyval = explode ('=', $keyval);	if (count($keyval) == 2)		$myPost[$keyval[0]] = urldecode($keyval[1]);}// read the post from PayPal system and add 'cmd'$req = 'cmd=_notify-validate';if(function_exists('get_magic_quotes_gpc')) {	$get_magic_quotes_exists = true;}foreach ($myPost as $key => $value) {	if($get_magic_quotes_exists == true && get_magic_quotes_gpc() == 1) {		$value = urlencode(stripslashes($value));	} else {		$value = urlencode($value);	}	$req .= "&$key=$value";}// Post IPN data back to PayPal to validate the IPN data is genuine// Without this step anyone can fake IPN dataif(USE_SANDBOX == true) {	$paypal_url = "https://www.sandbox.paypal.com/cgi-bin/webscr";} else {	$paypal_url = "https://www.paypal.com/cgi-bin/webscr";}$ch = curl_init($paypal_url);if ($ch == FALSE) {	return FALSE;}curl_setopt($ch, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_1);curl_setopt($ch, CURLOPT_POST, 1);curl_setopt($ch, CURLOPT_RETURNTRANSFER,1);curl_setopt($ch, CURLOPT_POSTFIELDS, $req);curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 1);curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2);curl_setopt($ch, CURLOPT_FORBID_REUSE, 1);if(DEBUG == true) {	curl_setopt($ch, CURLOPT_HEADER, 1);	curl_setopt($ch, CURLINFO_HEADER_OUT, 1);}// CONFIG: Optional proxy configuration//curl_setopt($ch, CURLOPT_PROXY, $proxy);//curl_setopt($ch, CURLOPT_HTTPPROXYTUNNEL, 1);// Set TCP timeout to 30 secondscurl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 30);curl_setopt($ch, CURLOPT_HTTPHEADER, array('Connection: Close'));// CONFIG: Please download 'cacert.pem' from "http://curl.haxx.se/docs/caextract.html" and set the directory path// of the certificate as shown below. Ensure the file is readable by the webserver.// This is mandatory for some environments.//$cert = __DIR__ . "./cacert.pem";//curl_setopt($ch, CURLOPT_CAINFO, $cert);$res = curl_exec($ch);if (curl_errno($ch) != 0) // cURL error	{	if(DEBUG == true) {			error_log(date('[Y-m-d H:i e] '). "Can't connect to PayPal to validate IPN message: " . curl_error($ch) . PHP_EOL, 3, LOG_FILE);	}	curl_close($ch);	exit;} else {		// Log the entire HTTP response if debug is switched on.		if(DEBUG == true) {			error_log(date('[Y-m-d H:i e] '). "HTTP request of validation request:". curl_getinfo($ch, CURLINFO_HEADER_OUT) ." for IPN payload: $req" . PHP_EOL, 3, LOG_FILE);			error_log(date('[Y-m-d H:i e] '). "HTTP response of validation request: $res" . PHP_EOL, 3, LOG_FILE);		}		curl_close($ch);}// Inspect IPN validation result and act accordingly// Split response headers and payload, a better way for strcmp$tokens = explode("\r\n\r\n", trim($res));$res = trim(end($tokens));if (strcmp ($res, "VERIFIED") == 0) {	$item_name = $_POST['item_name'];	$payment_status = $_POST['payment_status'];	$payment_amount = $_POST['mc_gross'];	$payment_currency = $_POST['mc_currency'];	$txn_id = $_POST['txn_id'];	$receiver_email = $_POST['receiver_email'];	$payer_email = $_POST['payer_email'];	$account = $_POST['custom'];		if($payment_status == 'Completed')	{        global $dbname;        ///////////////////		$query1 = Database::query("SELECT * FROM ".$dbname.".paypal_payments WHERE txnid = ?", array($txn_id));		if($query1 == 0 AND $receiver_email == Core::getPaypalEmail() AND $payment_currency == Core::getPaypalCurrency() AND User::usernameExists($account))		{            Database::query("INSERT INTO ".$dbname.".paypal_payments (txnid, payment_amount, payment_currency, payment_status, itemname, payer_email, payer_account, createdtime) VALUES					(?,?,?,?,?,?,?,?)", array($txn_id, $payment_amount, $payment_currency, $payment_status, $item_name, $payer_email, $account, date('Y-m-d H:i:s')));            $is = new Itemshop();            $options_info = $is->getAllPaypalOptions();            foreach($options_info as $row2)            {                if(round($payment_amount) == round($row2["price"]))                {                    $coins = $row2["coins"];                }            }            if(isset($coins))            {                User::addCoins($account, $coins);            }		}	}	if(DEBUG == true) {		error_log(date('[Y-m-d H:i e] '). "Verified IPN: $req ". PHP_EOL, 3, LOG_FILE);	}} else if (strcmp ($res, "INVALID") == 0) {	// log for manual investigation	// Add business logic here which deals with invalid IPN messages	if(DEBUG == true) {		error_log(date('[Y-m-d H:i e] '). "Invalid IPN: $req" . PHP_EOL, 3, LOG_FILE);	}}?>

A Segitséget előre is köszönöm!

[Csedwik]

Ebbe a php-ban nincs coins felülírás.

[Meli]

Ebbe a php-ban nincs coins felülírás.

sziasztok!
Megrendelem paypalon a sé-t, ki is engedi fizetni, meg jön a pénz de a sé-t nem irja jóvá a rebdszer.
Miért lehet ez?
paypal.php:

Kód Kijelölés Kibont

<?phprequire 'inc/init.php';// CONFIG: Enable debug mode. This means we'll log requests into 'ipn.log' in the same directory.// Especially useful if you encounter network errors or other intermittent problems with IPN (validation).// Set this to 0 once you go live or don't require logging.define("DEBUG", 0);// Set to 0 once you're ready to go livedefine("USE_SANDBOX", 0);define("LOG_FILE", "inc/paypal.log");// Read POST data// reading posted data directly from $_POST causes serialization// issues with array data in POST. Reading raw POST data from input stream instead.$raw_post_data = file_get_contents('php://input');$raw_post_array = explode('&', $raw_post_data);$myPost = array();foreach ($raw_post_array as $keyval) {	$keyval = explode ('=', $keyval);	if (count($keyval) == 2)		$myPost[$keyval[0]] = urldecode($keyval[1]);}// read the post from PayPal system and add 'cmd'$req = 'cmd=_notify-validate';if(function_exists('get_magic_quotes_gpc')) {	$get_magic_quotes_exists = true;}foreach ($myPost as $key => $value) {	if($get_magic_quotes_exists == true && get_magic_quotes_gpc() == 1) {		$value = urlencode(stripslashes($value));	} else {		$value = urlencode($value);	}	$req .= "&$key=$value";}// Post IPN data back to PayPal to validate the IPN data is genuine// Without this step anyone can fake IPN dataif(USE_SANDBOX == true) {	$paypal_url = "https://www.sandbox.paypal.com/cgi-bin/webscr";} else {	$paypal_url = "https://www.paypal.com/cgi-bin/webscr";}$ch = curl_init($paypal_url);if ($ch == FALSE) {	return FALSE;}curl_setopt($ch, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_1);curl_setopt($ch, CURLOPT_POST, 1);curl_setopt($ch, CURLOPT_RETURNTRANSFER,1);curl_setopt($ch, CURLOPT_POSTFIELDS, $req);curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 1);curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2);curl_setopt($ch, CURLOPT_FORBID_REUSE, 1);if(DEBUG == true) {	curl_setopt($ch, CURLOPT_HEADER, 1);	curl_setopt($ch, CURLINFO_HEADER_OUT, 1);}// CONFIG: Optional proxy configuration//curl_setopt($ch, CURLOPT_PROXY, $proxy);//curl_setopt($ch, CURLOPT_HTTPPROXYTUNNEL, 1);// Set TCP timeout to 30 secondscurl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 30);curl_setopt($ch, CURLOPT_HTTPHEADER, array('Connection: Close'));// CONFIG: Please download 'cacert.pem' from "http://curl.haxx.se/docs/caextract.html" and set the directory path// of the certificate as shown below. Ensure the file is readable by the webserver.// This is mandatory for some environments.//$cert = __DIR__ . "./cacert.pem";//curl_setopt($ch, CURLOPT_CAINFO, $cert);$res = curl_exec($ch);if (curl_errno($ch) != 0) // cURL error	{	if(DEBUG == true) {			error_log(date('[Y-m-d H:i e] '). "Can't connect to PayPal to validate IPN message: " . curl_error($ch) . PHP_EOL, 3, LOG_FILE);	}	curl_close($ch);	exit;} else {		// Log the entire HTTP response if debug is switched on.		if(DEBUG == true) {			error_log(date('[Y-m-d H:i e] '). "HTTP request of validation request:". curl_getinfo($ch, CURLINFO_HEADER_OUT) ." for IPN payload: $req" . PHP_EOL, 3, LOG_FILE);			error_log(date('[Y-m-d H:i e] '). "HTTP response of validation request: $res" . PHP_EOL, 3, LOG_FILE);		}		curl_close($ch);}// Inspect IPN validation result and act accordingly// Split response headers and payload, a better way for strcmp$tokens = explode("\r\n\r\n", trim($res));$res = trim(end($tokens));if (strcmp ($res, "VERIFIED") == 0) {	$item_name = $_POST['item_name'];	$payment_status = $_POST['payment_status'];	$payment_amount = $_POST['mc_gross'];	$payment_currency = $_POST['mc_currency'];	$txn_id = $_POST['txn_id'];	$receiver_email = $_POST['receiver_email'];	$payer_email = $_POST['payer_email'];	$account = $_POST['custom'];		if($payment_status == 'Completed')	{        global $dbname;        ///////////////////		$query1 = Database::query("SELECT * FROM ".$dbname.".paypal_payments WHERE txnid = ?", array($txn_id));		if($query1 == 0 AND $receiver_email == Core::getPaypalEmail() AND $payment_currency == Core::getPaypalCurrency() AND User::usernameExists($account))		{            Database::query("INSERT INTO ".$dbname.".paypal_payments (txnid, payment_amount, payment_currency, payment_status, itemname, payer_email, payer_account, createdtime) VALUES					(?,?,?,?,?,?,?,?)", array($txn_id, $payment_amount, $payment_currency, $payment_status, $item_name, $payer_email, $account, date('Y-m-d H:i:s')));            $is = new Itemshop();            $options_info = $is->getAllPaypalOptions();            foreach($options_info as $row2)            {                if(round($payment_amount) == round($row2["price"]))                {                    $coins = $row2["coins"];                }            }            if(isset($coins))            {                User::addCoins($account, $coins);            }		}	}	if(DEBUG == true) {		error_log(date('[Y-m-d H:i e] '). "Verified IPN: $req ". PHP_EOL, 3, LOG_FILE);	}} else if (strcmp ($res, "INVALID") == 0) {	// log for manual investigation	// Add business logic here which deals with invalid IPN messages	if(DEBUG == true) {		error_log(date('[Y-m-d H:i e] '). "Invalid IPN: $req" . PHP_EOL, 3, LOG_FILE);	}}?>

A Segitséget előre is köszönöm!


Én chas-t se látok, általában a coins vagy a chas-t kellene írnia.

[Csedwik]

Ugyan az a kettő. Sőt semmilyen UPDATE sincs.

[Meli]

Ugyan az a kettő. Sőt semmilyen UPDATE sincs.

Ugyan az a kettő valóban, de az, hogy a weboldala melyikből olvas az már nem mindegy

[szotyola.]

Ott van a coins benne. Csak van hozzá egy laungage. CLASs.php amiből olvassa a változókat.

[Step]

Kód Kijelölés Kibont

User::addCoins($account, $coins);
Nyílván ez adná meg a sét de hát nem teszi meg.

[szotyola.]

Mit tudok tenni?

[SilverWolf]

Miért nem csinálsz egy értelmes jóváíró scriptet, ha ennyire értesz hozzá?

Adok egy kis támpontot... Ezek működő scriptek, semmit sem írtam benne át a mysql kapcsolódási adatokon kívül. Sajnos most nincs időm rá átírni, de ez segíthet. Ez biztos, hogy fog működni, ha átírod a dolgokat benne!

[szotyola.]

Honnan jött neked hogy értek hozzá? Köszönöm a scriptet.

[SilverWolf]

jah azt hittem, mert gondoltam te írtad a kódot. De akkor nem, nekem mindegy.
Igazából nincs mit. Ha nagyon nem menne keress meg privátban és segítek beüzemelni, de amúgy nem nagy kunszt!