from django.db.models import Q
from django.http import HttpResponseForbidden
from django.core.exceptions import ValidationError, PermissionDenied
+from django.conf import settings
+from django.contrib.sites.models import get_current_site
+
+import commands
+
+import logging
+log = logging.getLogger('payment')
+
+def call_scherlocks(what, data, merchant_id):
+ """
+ Perform a Scherlock's call, with parameters in data
+ what is either 'request' or 'response', the program to call
+ """
+ log.debug('call_scherlocks %r %r' % (what, data))
+ requestbin = os.path.join(settings.PAYMENT_SHERLOCKS_PATH, 'bin/static', what)
+ params = dict(data)
+ params['pathfile'] = os.path.join(settings.PAYMENT_SHERLOCKS_PATH,
+ 'param/pathfile.' + merchant_id)
+ params = ' '.join([ '%s=%s' % (k,v) for k,v in params.items() ])
+ cmdline = requestbin + ' ' + params
+
+ print cmdline
+
+ status, out = commands.getstatusoutput(cmdline)
+ if status:
+ raise OSError, "error calling %s" % cmdline
+ res = out.split('!')[1:-1]
+ if int(res[0]):
+ raise ValueError, "Scherlock's returned %s" % res[1]
+ return res[2:]
+
+def check_payment_info(data):
+ """
+ Check that the payment info are valid
+ """
+ response_code = data[8];
+ cvv_response_code = data[14];
+
+ log.debug('check_payment_info %s %s' % (response_code, cvv_response_code))
+
+ return response_code == '00'
+
+def process_payment(request, payment):
+ """
+ Process a payment to Sherlocks
+ """
+ params = dict(settings.PAYMENT_PARAMETERS)
+ period = payment.student.period
+ period_short_name = period.name.split()[0]
+ params['merchant_id'] = params['merchant_id'][period_short_name]
+ merchant_id = params['merchant_id']
+ params['amount'] = str(int(payment.value*100))
+ params['order_id'] = str(payment.pk)
+ current_site = get_current_site(request)
+ root = 'https://%s' % (current_site.domain)
+
+ kwargs = { 'merchant_id': merchant_id }
+ params['normal_return_url'] = root + reverse('teleforma-bank-success',
+ kwargs = kwargs)
+ params['cancel_return_url'] = root + reverse('teleforma-bank-cancel',
+ kwargs = kwargs)
+ params['automatic_response_url'] = root + reverse('teleforma-bank-auto',
+ kwargs = kwargs)
+ res = call_scherlocks('request', params, merchant_id = merchant_id)
+ return res[0]
+
class PaymentStartView(DetailView):
if payment.student.user_id != self.request.user.pk and not self.request.user.is_superuser:
raise PermissionDenied
context['payment'] = payment
+ context['sherlock_info'] = process_payment(self.request, payment)
return context
@method_decorator(login_required)
def dispatch(self, *args, **kwargs):
return super(PaymentStartView, self).dispatch(*args, **kwargs)
-class PaymentValidateView(DetailView):
-
- template_name = 'payment/payment_validate.html'
- model = Payment
-
- def get_context_data(self, **kwargs):
- context = super(PaymentValidateView, self).get_context_data(**kwargs)
- payment = self.get_object()
- if payment.type != 'online' or payment.online_paid:
- raise PermissionDenied
- if payment.student.user_id != self.request.user.pk and not self.request.user.is_superuser:
- raise PermissionDenied
-
+@csrf_exempt
+def bank_auto(request, merchant_id):
+ """
+ Bank automatic callback
+ """
+ res = call_scherlocks('response', { 'message': request.POST['DATA'] },
+ merchant_id = merchant_id)
+ order_id = res[24];
+ payment = Payment.objects.get(pk = order_id)
+ if check_payment_info(res) and payment.type == 'online' and not payment.online_paid:
payment.online_paid = True
payment.save()
- context['payment'] = payment
- return context
+ return HttpResponse('OK - Validated')
+ else:
+ return HttpResponse('OK - Cancelled')
- @method_decorator(login_required)
- def dispatch(self, *args, **kwargs):
- return super(PaymentValidateView, self).dispatch(*args, **kwargs)
+@csrf_exempt
+def bank_success(request, merchant_id):
+ """
+ Bank success callback
+ """
+ log.info("bank_success %r" % request.POST)
+ res = call_scherlocks('response', { 'message': request.POST['DATA'] },
+ merchant_id = merchant_id)
+ if check_payment_info(res):
+ order_id = res[24];
+ payment = Payment.objects.get(pk = order_id)
+ if payment.type == 'online' and payment.online_paid and (payment.student.user_id == request.user.pk or request.user.is_superuser):
+ return render_to_response('payment/payment_validate.html',
+ {'payment': payment, },
+ context_instance=RequestContext(request))
+ return HttpResponseRedirect('/echec-de-paiement')
+
+@csrf_exempt
+def bank_cancel(request, merchant_id):
+ """
+ Bank cancel operation callback
+ """
+ return HttpResponseRedirect('/echec-de-paiement')
+def bank_fail(request):
+ """
+ Display message when a payment failed
+ """
+ return render_to_response('payment/payment_fail.html')
projects / teleforma.git / commitdiff