我第一次实施贝宝付款集成。我正在使用隐藏字段将参数发送到贝宝。我真的不喜欢这种方法,因为用户很容易更改此信息。
有没有其他方法可以将数据发送到贝宝?
以某种或其他方式,您必须使用表单提交到贝宝 url。但是有一些方法可以玩得很聪明。我创建了这个类,它不是最好的,但仍然足以让用户远离编辑字段。
班级
<?php
/*
///// ------------ Author :- Aman Virk
//// ------------- Created On :- 2012-02-17
//// ------------- Licensed Under - Open Source
//// ------------- Author URI :- http://www.thetutlage.com
*/
class paypal_class {
var $last_error; // holds the last error encountered
var $ipn_log; // bool: log IPN results to text file?
var $ipn_log_file; // filename of the IPN log
var $ipn_response; // holds the IPN response from paypal
var $ipn_data = array(); // array contains the POST values for IPN
var $fields = array(); // array holds the fields to submit to paypal
function paypal_class() {
// initialization constructor. Called when class is created.
$this->paypal_url = 'https://www.paypal.com/cgi-bin/webscr';
$this->last_error = '';
$this->ipn_log_file = '.ipn_results.log';
$this->ipn_log = true;
$this->ipn_response = '';
// populate $fields array with a few default values. See the paypal
// documentation for a list of fields and their data types. These defaul
// values can be overwritten by the calling script.
$this->add_field('rm','2'); // Return method = POST
$this->add_field('cmd','_xclick');
}
function add_field($field, $value) {
// adds a key=>value pair to the fields array, which is what will be
// sent to paypal as POST variables. If the value is already in the
// array, it will be overwritten.
$this->fields["$field"] = $value;
}
function submit_paypal_post() {
// this function actually generates an entire HTML page consisting of
// a form with hidden elements which is submitted to paypal via the
// BODY element's onLoad attribute. We do this so that you can validate
// any POST vars from you custom form before submitting to paypal. So
// basically, you'll have your own form which is submitted to your script
// to validate the data, which in turn calls this function to create
// another hidden form and submit to paypal.
// The user will briefly see a message on the screen that reads:
// "Please wait, your order is being processed..." and then immediately
// is redirected to paypal.
$paypal_submit_output = "<html>\n";
$paypal_submit_output .= "<head><title>Processing Payment...</title></head>\n";
$paypal_submit_output .= "<body onLoad=\"document.forms['paypal_form'].submit();\">\n";
$paypal_submit_output .= '<center> <img src="images/ajax-loader.gif" /> <h4> Please wait we are processing your transaction </h4>
<h5> Do not refresh or press back button </h5> <center> ';
$paypal_submit_output .= "<form method=\"post\" name=\"paypal_form\" ";
$paypal_submit_output .= "action=\"".$this->paypal_url."\">\n";
foreach ($this->fields as $name => $value) {
$paypal_submit_output .= "<input type=\"hidden\" name=\"$name\" value=\"$value\"/>\n";
}
$paypal_submit_output .= "<center><input type=\"submit\" value=\"Click Here\"></center>\n<br />";
$paypal_submit_output .= "</form>\n";
$paypal_submit_output .= "</body></html>\n";
return $paypal_submit_output;
}
function validate_ipn() {
// parse the paypal URL
$url_parsed=parse_url($this->paypal_url);
// generate the post string from the _POST vars aswell as load the
// _POST vars into an arry so we can play with them from the calling
// script.
$post_string = '';
foreach ($_POST as $field=>$value) {
$this->ipn_data["$field"] = $value;
$post_string .= $field.'='.urlencode(stripslashes($value)).'&';
}
$post_string.="cmd=_notify-validate"; // append ipn command
// open the connection to paypal
$fp = fsockopen($url_parsed[host],"80",$err_num,$err_str,30);
if(!$fp) {
// could not open the connection. If loggin is on, the error message
// will be in the log.
$this->last_error = "fsockopen error no. $errnum: $errstr";
$this->log_ipn_results(false);
return false;
} else {
// Post the data back to paypal
fputs($fp, "POST $url_parsed[path] HTTP/1.1\r\n");
fputs($fp, "Host: $url_parsed[host]\r\n");
fputs($fp, "Content-type: application/x-www-form-urlencoded\r\n");
fputs($fp, "Content-length: ".strlen($post_string)."\r\n");
fputs($fp, "Connection: close\r\n\r\n");
fputs($fp, $post_string . "\r\n\r\n");
// loop through the response from the server and append to variable
while(!feof($fp)) {
$this->ipn_response .= fgets($fp, 1024);
}
fclose($fp); // close connection
}
if (eregi("VERIFIED",$this->ipn_response)) {
// Valid IPN transaction.
$this->log_ipn_results(true);
return true;
} else {
// Invalid IPN transaction. Check the log for details.
$this->last_error = 'IPN Validation Failed.';
$this->log_ipn_results(false);
return false;
}
}
function log_ipn_results($success) {
if (!$this->ipn_log) return; // is logging turned off?
// Timestamp
$text = '['.date('m/d/Y g:i A').'] - ';
// Success or failure being logged?
if ($success) $text .= "SUCCESS!\n";
else $text .= 'FAIL: '.$this->last_error."\n";
// Log the POST variables
$text .= "IPN POST Vars from Paypal:\n";
foreach ($this->ipn_data as $key=>$value) {
$text .= "$key=$value, ";
}
// Log the response from the paypal server
$text .= "\nIPN Response from Paypal Server:\n ".$this->ipn_response;
// Write to log
$fp=fopen($this->ipn_log_file,'a');
fwrite($fp, $text . "\n\n");
fclose($fp); // close file
}
function dump_fields() {
// Used for debugging, this function will output all the field/value pairs
// that are currently defined in the instance of the class using the
// add_field() function.
echo "<h3>paypal_class->dump_fields() Output:</h3>";
echo "<table width=\"95%\" border=\"1\" cellpadding=\"2\" cellspacing=\"0\">
<tr>
<td bgcolor=\"black\"><b><font color=\"white\">Field Name</font></b></td>
<td bgcolor=\"black\"><b><font color=\"white\">Value</font></b></td>
</tr>";
ksort($this->fields);
foreach ($this->fields as $key => $value) {
echo "<tr><td>$key</td><td>".urldecode($value)." </td></tr>";
}
echo "</table><br>";
}
}
执行
require_once('paypal.class.php');
$p = new paypal_class;
$p->paypal_url = 'https://www.paypal.com/cgi-bin/webscr';
// $p->paypal_url = 'https://www.sandbox.paypal.com/cgi-bin/webscr';
$p->add_field('business',$paypal_id);
$p->add_field('return',$paypal_success_url);
$p->add_field('cancel_return',$paypal_cancel_url);
$p->add_field('notify_url',$paypal_ipn_url);
$p->add_field('item_name',$payment_for);
$p->add_field('amount', $amount);
$p->add_field('custom', $unique_transaction_id);
$new_form = $p->submit_paypal_post();
如果您正在执行 SetExpressCheckout 和 GetExpressCheckout,则可以使用自定义字段。我在 Php 中使用新的 PayPal X.comm SDK Express Checkout,所以我将以此为例。
在设置要传递给 SetExpressCheckout 的请求对象时,您可以将参数放在自定义字段中。
$setECReqDetails->Custom = $billingFreq . "SPACE" . $billingPeriod;
当您从 PayPal 返回时,您可以通过调用 GetExpressCheckoutDetails 并从响应对象的自定义字段中获取参数来取回这些参数。
$getECResponse = $paypalService->GetExpressCheckoutDetails($getExpressCheckoutReq);
$billingInfo = explode("SPACE",$getECResponse->GetExpressCheckoutDetailsResponseDetails->Custom);
$billingFreq = $billingInfo[0];
$billingPeriod = $billingInfo[1];
注意“空间”这个词的使用。这可以是任何词,但它被用作分隔符。这样,您可以通过在它们之间放置“SPACE”来传递任意数量的参数。
如果您想查看完整代码,可以从这里下载 X.comm SDK、express checkout、Php: https ://www.x.com/developers/paypal/documentation-tools/paypal-sdk-index 并转到 Merchant-sdk-dev-2.2.98/samples/ExpressCheckout/SetExpressCheckout.php 和 GetExpressCheckout.php 以查看代码。他们实际上并没有在示例代码中使用自定义,但您可以查看添加代码的位置。