gnh1201/reasonableframework
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
0b6b01b9ed
reasonableframework/route/ordercomplete.pgkcp.php

95 lines
2.3 KiB
PHP
Raw Blame History

<?php
/**
* @file ordercomplete.pgkcp.php
* @created_on 2018-09-03
* @updated_on 2020-01-25
* @author Go Namhyeon <gnh1201@gmail.com>
* @brief KCP PG(Payment Gateway) contoller when completed
*/
// detect CSRF attack
if(check_token_abuse_by_requests("_token", "_POST")) {
set_error("Access denied because of security violation");
show_errors();
}
// set token
set_session_token();
// set redirect variables
$redirect_url = get_requested_value("redirect_url");
$ordr_idxx = get_requested_value("ordr_idxx");
$res_cd = get_requested_value("res_cd");
$pay_method_alias = get_requested_value("pay_method_alias");
// set action
// 0000: completed payment (완료된 결제)
// A001: free plan (무료)
// A002: hand-writing payment (수기결제, 무통장입금 등)
$action = "cancel";
if(in_array($res_cd, array("0000", "A001"))) {
$action = "complete";
} elseif(in_array($res_cd, array("A002"))) {
$action = "hold";
}
// check ordr_idxx
if(empty($ordr_idxx)) {
set_error("ordr_idxx is required");
show_errors();
}
// write storage file
$fd = json_encode($requests['_POST']);
$fw = write_storage_file($fd, array(
"filename" => get_hashed_text($ordr_idxx) . ".json",
"storage_type" => "payman"
));
// check write-protected
if(!$fw) {
set_error("maybe, your storage is write-protected.");
show_errors();
}
// response
$_token = get_session_token();
if(empty($redirect_url)) {
$jscontent = <<<EOF
<!doctype html>
<html>
<head>
<meta charset="utf8">
</head>
<body>
<script type="text/javascript">//<!--<![CDATA[
if(window.opener && !window.opener.closed) {
window.opener.payman_callback({
"token": "$_token",
"ordr_idxx": "$ordr_idxx",
"res_cd": "$res_cd",
"pay_method_alias": "$pay_method_alias"
});
window.close();
self.close();
this.close();
}
//]]>--></script>
</body>
</html>
EOF;
echo $jscontent;
} else {
// redirect
redirect_uri(get_final_link($redirect_url, array(
"_token" => $_token,
"_route" => get_requested_value("route"),
"_action" => $action,
"_ordr_idxx" => $ordr_idxx,
"_res_cd" => $res_cd,
"_pay_method_alias" => $pay_method_alias
), false), array(
"check_origin" => true
));
}
Reference in New Issue View Git Blame Copy Permalink