2007-05-27 17:33:06 +00:00
|
|
|
<?php
|
|
|
|
|
|
|
|
require_once("../inc/util.inc");
|
|
|
|
db_init();
|
|
|
|
|
|
|
|
// read the post from PayPal system and add 'cmd'
|
|
|
|
$req = 'cmd=_notify-validate';
|
|
|
|
|
|
|
|
foreach ($_POST as $key => $value) {
|
|
|
|
$value = urlencode(stripslashes($value));
|
|
|
|
$req .= "&$key=$value";
|
|
|
|
}
|
|
|
|
|
|
|
|
// post back to PayPal system to validate
|
|
|
|
$header .= "POST /cgi-bin/webscr HTTP/1.0\r\n";
|
|
|
|
$header .= "Content-Type: application/x-www-form-urlencoded\r\n";
|
|
|
|
$header .= "Content-Length: " . strlen($req) . "\r\n\r\n";
|
|
|
|
$fp = fsockopen ('www.paypal.com', 80, $errno, $errstr, 30);
|
|
|
|
|
|
|
|
// assign posted variables to local variables
|
|
|
|
$item_name = $_POST['item_name'];
|
|
|
|
$item_number = $_POST['item_number'];
|
|
|
|
$payment_status = $_POST['payment_status'];
|
|
|
|
$payment_amount = $_POST['mc_gross'];
|
|
|
|
$payment_fee = $_POST['mc_fee'];
|
|
|
|
$payment_currency = $_POST['mc_currency'];
|
|
|
|
$txn_id = $_POST['txn_id'];
|
|
|
|
$receiver_email = $_POST['receiver_email'];
|
|
|
|
$payer_email = $_POST['payer_email'];
|
|
|
|
$payer_name = $_POST['first_name']." ".$_POST['last_name'];
|
|
|
|
$ip = $_SERVER['REMOTE_ADDR'];
|
|
|
|
$agent = strtolower($_SERVER[HTTP_USER_AGENT]);
|
|
|
|
|
|
|
|
if (!$fp) {
|
|
|
|
// HTTP ERROR, might want to do additional handling here
|
|
|
|
} else {
|
|
|
|
fputs ($fp, $header . $req);
|
|
|
|
while (!feof($fp)) {
|
|
|
|
$res = fgets ($fp, 1024);
|
|
|
|
if (strcmp ($res, "VERIFIED") == 0) {
|
|
|
|
$item_array = explode("_",$item_number);
|
|
|
|
$payment_id = abs($item_array[0]);
|
|
|
|
$order_time = abs($item_array[1]);
|
2007-05-31 11:14:49 +00:00
|
|
|
$result = mysql_query("SELECT * FROM donation_paypal WHERE order_time = '$order_time' AND id = '$payment_id' AND processed = '0'");
|
2007-05-27 17:33:06 +00:00
|
|
|
$num_rows = mysql_num_rows($result);
|
|
|
|
if ($num_rows == 1) {
|
|
|
|
$row = mysql_fetch_object($result);
|
|
|
|
$userid = $row->userid;
|
2008-01-22 13:20:59 +00:00
|
|
|
mysql_query("UPDATE donation_paypal SET processed = '1', payment_time = '".time()."', item_name = '$item_name', payment_status = '$payment_status', payment_amount = '$payment_amount', payment_fee = '$payment_fee', payment_currency = '$payment_currency', txn_id = '$txn_id', receiver_email = '$receiver_email', payer_email = '$payer_email', payer_name = '$payer_name' WHERE id = '$payment_id'");
|
2007-05-27 17:33:06 +00:00
|
|
|
if ($userid > 0) {
|
|
|
|
mysql_query("UPDATE user SET donated = '1' WHERE id = '$userid'");
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
fclose ($fp);
|
|
|
|
}
|
|
|
|
|
|
|
|
?>
|