Change the flow of the payment with QuickPay

Max Görtz · Max Görtz · commit a734cba80a37 · 2019-06-12T16:57:39.000+02:00
A generated orderId and the QuickPay paymentId are now used as
Shopware transactionId and paymentUniqueId. Writing the order
to the database was moved to the successAction to prevent premature
ending of the the ordering process. Once a payment id is received
from Quickpay it is stored in the session until the order is finished.
Identification of the order in the callbackAction is accordingly done
by using the order_id and id of the received payment object.
diff --git a/Components/QuickPayService.php b/Components/QuickPayService.php
@@ -2,29 +2,69 @@
 
 namespace QuickPayPayment\Components;
 
+use Exception;
+use Shopware\Components\Random;
+use function Shopware;
+
 class QuickPayService
 {
     private $baseUrl = 'https://api.quickpay.net';
 
     const METHOD_POST = 'POST';
     const METHOD_PUT = 'PUT';
     const METHOD_GET = 'GET';
+    const METHOD_PATCH = 'PATCH';
 
     /**
      * Create payment
      *
      * @param $orderId
-     * @param $currency
+     * @param $parameters
      * @return mixed
      */
-    public function createPayment($parameters)
+    public function createPayment($orderId, $parameters)
     {
+        $parameters['order_id'] = $orderId;
+        
         //Create payment
         $payment = $this->request(self::METHOD_POST, '/payments', $parameters);
 
         return $payment;
     }
 
+    /**
+     * Create payment
+     *
+     * @param $paymentId
+     * @param $parameters
+     * @return mixed
+     */
+    public function updatePayment($paymentId, $parameters)
+    {
+        $resource = sprintf('/payments/%s', $paymentId);
+        
+        //Update payment
+        $payment = $this->request(self::METHOD_PATCH, $resource, $parameters);
+
+        return $payment;
+    }
+    
+    /**
+     * Get payment information
+     * 
+     * @param $paymentId
+     * @return mixed
+     */
+    public function getPayment($paymentId)
+    {
+        $resource = sprintf('/payments/%s', $paymentId);
+        
+        //Get payment
+        $payment = $this->request(self::METHOD_GET, $resource);
+
+        return $payment;        
+    }
+    
     /**
      * Create payment link
      *
@@ -87,14 +127,14 @@ private function request($method = self::METHOD_POST, $resource, $params = [], $
 
         //Validate reponsecode
         if (! in_array($responseCode, [200, 201, 202])) {
-            throw new \Exception('Invalid gateway response ' . $result);
+            throw new Exception('Invalid gateway response ' . $result);
         }
 
         $response = json_decode($result);
 
         //Check for JSON errors
         if (! $response || (json_last_error() !== JSON_ERROR_NONE)) {
-            throw new \Exception('Invalid json response');
+            throw new Exception('Invalid json response');
         }
 
         return $response;
@@ -124,18 +164,6 @@ private function getApiKey()
         return Shopware()->Config()->getByNamespace('QuickPayPayment', 'public_key');
     }
 
-    /**
-     * Create payment token
-     *
-     * @param float $amount
-     * @param int $customerId
-     * @return string
-     */
-    public function createPaymentToken($amount, $customerId)
-    {
-        return md5(implode('|', [$amount, $customerId]));
-    }
-
     /**
      * Get language code
      *
@@ -147,4 +175,14 @@ private function getLanguageCode()
 
         return substr($locale, 0, 2);
     }
+    
+    /**
+     * Creates a unique order id
+     * 
+     * @return string
+     */
+    public function createOrderId()
+    {
+        return Random::getAlphanumericString(20);
+    }
 }
diff --git a/Controllers/Frontend/QuickPay.php b/Controllers/Frontend/QuickPay.php
@@ -12,31 +12,28 @@ public function redirectAction()
         $service = $this->container->get('quickpay_payment.quickpay_service');
 
         try {
-            $user = $this->getUser();
-            $billing = $user['billingaddress'];
-
-            $paymentId = $this->createPaymentUniqueId();
-            $token = $service->createPaymentToken($this->getAmount(), $billing['customernumber']);
-
-            //Save order and grab ordernumber
-            $orderNumber = $this->saveOrder($paymentId, $token, \Shopware\Models\Order\Status::PAYMENT_STATE_OPEN);
-
-            //Save orderNumber to session
-            Shopware()->Session()->offsetSet('quickpay_order_id', $orderNumber);
-            Shopware()->Session()->offsetSet('quickpay_order_token', $token);
-
             $paymentParameters = [
-                'order_id' => $orderNumber,
                 'currency' => $this->getCurrencyShortName(),
-                'variables' => [
-                    'payment_id' => $paymentId,
-                    'token' => $token
-                ],
             ];
-
-            //Create payment
-            $payment = $service->createPayment($paymentParameters);
-
+            
+            //Save order and grab ordernumber
+            $paymentId = Shopware()->Session()->offsetGet('quickpay_payment_id');
+            if(empty($paymentId))
+            {
+                //Create new QuickPay payment
+                $orderId = $service->createOrderId();
+                
+                $payment = $service->createPayment($orderId, $paymentParameters);
+            }
+            else
+            {
+                //Update existing QuickPay payment
+                $payment = $service->updatePayment($paymentId, $paymentParameters);
+            }
+            
+            // Save ID to session
+            Shopware()->Session()->offsetSet('quickpay_payment_id', $payment->id);
+            
             $user = $this->getUser();
             $email = $user['additional']['user']['email'];
 
@@ -49,14 +46,7 @@ public function redirectAction()
                 $this->getCancelUrl(),
                 $this->getCallbackUrl()
             );
-
-            $repository = Shopware()->Models()->getRepository(\Shopware\Models\Order\Order::class);
-            $order = $repository->findOneBy(array(
-                'number' => $orderNumber
-            ));
-            $order->getAttribute()->setQuickpayPaymentLink($paymentLink);
-            Shopware()->Models()->flush($order->getAttribute());
-
+            
             $this->redirect($paymentLink);
         } catch (\Exception $e) {
             die($e->getMessage());
@@ -90,17 +80,17 @@ public function callbackAction()
                     if (!$testmode && ($response->test_mode === true)) {
 
                         //Set order as cancelled
-                        $this->savePaymentStatus($response->variables->payment_id, $response->variables->token, \Shopware\Models\Order\Status::PAYMENT_STATE_THE_PROCESS_HAS_BEEN_CANCELLED);
+                        $this->savePaymentStatus($response->order_id, $response->id, \Shopware\Models\Order\Status::PAYMENT_STATE_THE_PROCESS_HAS_BEEN_CANCELLED);
                         Shopware()->PluginLogger()->info("Order attempted paid with testcard while testmode was disabled");
                         return;
                     }
 
                     //Set order as reserved
-                    $this->savePaymentStatus($response->variables->payment_id, $response->variables->token, \Shopware\Models\Order\Status::PAYMENT_STATE_RESERVED);
+                    $this->savePaymentStatus($response->order_id, $response->id, \Shopware\Models\Order\Status::PAYMENT_STATE_RESERVED);
                 }
             } else {
                 //Cancel order
-                $this->savePaymentStatus($response->variables->payment_id, $response->variables->token, \Shopware\Models\Order\Status::PAYMENT_STATE_THE_PROCESS_HAS_BEEN_CANCELLED);
+                $this->savePaymentStatus($response->order_id, $response->id, \Shopware\Models\Order\Status::PAYMENT_STATE_THE_PROCESS_HAS_BEEN_CANCELLED);
                 Shopware()->PluginLogger()->info('Checksum mismatch');
             }
         }
@@ -111,6 +101,36 @@ public function callbackAction()
      */
     public function successAction()
     {
+        /** @var \QuickPayPayment\Components\QuickPayService $service */
+        $service = $this->container->get('quickpay_payment.quickpay_service');
+        
+        $paymentId = Shopware()->Session()->offsetGet('quickpay_payment_id');
+        
+        if(empty($paymentId))
+        {
+            $this->redirect(['controller' => 'checkout', 'action' => 'confirm']);    
+            return;
+        }
+        
+        $payment = $service->getPayment($paymentId);
+        if(empty($payment) || !isset($payment->order_id))
+        {
+            $this->redirect(['controller' => 'checkout', 'action' => 'confirm']);    
+            return;
+        }
+        
+        $orderNumber = $this->saveOrder($payment->order_id, $payment->id, \Shopware\Models\Order\Status::PAYMENT_STATE_OPEN);
+        
+        $repository = Shopware()->Models()->getRepository(\Shopware\Models\Order\Order::class);
+        $order = $repository->findOneBy(array(
+            'number' => $orderNumber
+        ));
+        $order->getAttribute()->setQuickpayPaymentLink($payment->link->url);
+        Shopware()->Models()->flush($order->getAttribute());
+        
+        //Remove ID from session
+        Shopware()->Session()->offsetUnset('quickpay_payment_id');
+        
         //Redirect to finish
         $this->redirect(['controller' => 'checkout', 'action' => 'finish']);
 
@@ -122,7 +142,7 @@ public function successAction()
      */
     public function cancelAction()
     {
-        $this->redirect(['controller' => 'checkout', 'action' => 'cancel']);
+        $this->redirect(['controller' => 'checkout', 'action' => 'confirm']);
     }
 
     /**
