# -*- coding: utf-'8' "-*-" from openerp.addons.payment_acquirer.models import payment_acquirer from openerp.addons.payment_acquirer.models.payment_acquirer import ValidationError from openerp.addons.payment_acquirer_paypal.controllers.main import PaypalController from openerp.osv import osv, fields from openerp.tools.float_utils import float_compare import base64 try: import simplejson as json except ImportError: import json import logging import urlparse import urllib import urllib2 _logger = logging.getLogger(__name__) class AcquirerPaypal(osv.Model): _inherit = 'payment.acquirer' _columns = { 'paypal_email_id': fields.char('Email ID', required_if_provider='paypal'), 'paypal_username': fields.char('Username', required_if_provider='paypal'), 'paypal_tx_url': fields.char('Transaction URL', required_if_provider='paypal'), 'paypal_use_ipn': fields.boolean('Use IPN'), # Server 2 server 'paypal_api_enabled': fields.boolean('Use Rest API'), 'paypal_api_username': fields.char('Rest API Username'), 'paypal_api_password': fields.char('Rest API Password'), 'paypal_api_access_token': fields.char('Access Token'), 'paypal_api_access_token_validity': fields.datetime('Access Token Validity'), } _defaults = { 'paypal_tx_url': 'https://www.sandbox.paypal.com/cgi-bin/webscr', 'paypal_use_ipn': True, 'fees_active': False, 'fees_dom_fixed': 0.35, 'fees_dom_var': 3.4, 'fees_int_fixed': 0.35, 'fees_int_var': 3.9, 'paypal_api_enabled': False, } def paypal_compute_fees(self, cr, uid, id, amount, currency_id, country_id, context=None): """ Compute paypal fees. :param float amount: the amount to pay :param integer country_id: an ID of a res.country, or None. This is the customer's country, to be compared to the acquirer company country. :return float fees: computed fees """ acquirer = self.browse(cr, uid, id, context=context) if not acquirer.fees_active: return 0.0 country = self.pool['res.country'].browse(cr, uid, country_id, context=context) if country and acquirer.company_id.country_id.id == country.id: fees = amount * (1 + acquirer.fees_dom_var / 100.0) + acquirer.fees_dom_fixed - amount else: fees = amount * (1 + acquirer.fees_int_var / 100.0) + acquirer.fees_int_fixed - amount return fees def paypal_form_generate_values(self, cr, uid, id, reference, amount, currency, partner_id=False, partner_values=None, tx_custom_values=None, context=None): if partner_values is None: partner_values = {} base_url = self.pool['ir.config_parameter'].get_param(cr, uid, 'web.base.url') acquirer = self.browse(cr, uid, id, context=context) partner = None if partner_id: partner = self.pool['res.partner'].browse(cr, uid, partner_id, context=context) tx_values = { 'cmd': '_xclick', 'business': acquirer.paypal_email_id, 'item_name': reference, 'item_number': reference, 'amount': amount, 'currency_code': currency and currency.name or 'EUR', 'address1': payment_acquirer._partner_format_address(partner and partner.street or partner_values.get('street', ''), partner and partner.street2 or partner_values.get('street2', '')), 'city': partner and partner.city or partner_values.get('city', ''), 'country': partner and partner.country_id and partner.country_id.name or partner_values.get('country_name', ''), 'email': partner and partner.email or partner_values.get('email', ''), 'zip': partner and partner.zip or partner_values.get('zip', ''), 'first_name': payment_acquirer._partner_split_name(partner and partner.name or partner_values.get('name', ''))[0], 'last_name': payment_acquirer._partner_split_name(partner and partner.name or partner_values.get('name', ''))[1], 'return': '%s' % urlparse.urljoin(base_url, PaypalController._return_url), 'notify_url': '%s' % urlparse.urljoin(base_url, PaypalController._notify_url), 'cancel_return': '%s' % urlparse.urljoin(base_url, PaypalController._cancel_url), } if acquirer.fees_active: tx_values['handling'] = '%.2f' % tx_custom_values.pop('fees', 0.0) if tx_custom_values and tx_custom_values.get('return_url'): tx_values['custom'] = json.dumps({'return_url': '%s' % tx_custom_values.pop('return_url')}) if tx_custom_values: tx_values.update(tx_custom_values) return tx_values def paypal_get_form_action_url(self, cr, uid, id, context=None): acquirer = self.browse(cr, uid, id, context=context) return acquirer.paypal_tx_url def _paypal_s2s_get_access_token(self, cr, uid, ids, context=None): """ Note: see # see http://stackoverflow.com/questions/2407126/python-urllib2-basic-auth-problem for explanation why we use Authorization header instead of urllib2 password manager """ res = dict.fromkeys(ids, False) parameters = urllib.urlencode({'grant_type': 'client_credentials'}) request = urllib2.Request('https://api.sandbox.paypal.com/v1/oauth2/token', parameters) # add other headers (https://developer.paypal.com/webapps/developer/docs/integration/direct/make-your-first-call/) request.add_header('Accept', 'application/json') request.add_header('Accept-Language', 'en_US') for acquirer in self.browse(cr, uid, ids, context=context): # add authorization header base64string = base64.encodestring('%s:%s' % ( acquirer.paypal_api_username, acquirer.paypal_api_password) ).replace('\n', '') request.add_header("Authorization", "Basic %s" % base64string) request = urllib2.urlopen(request) result = request.read() res[acquirer.id] = json.loads(result).get('access_token') request.close() return res class TxPaypal(osv.Model): _inherit = 'payment.transaction' _columns = { 'paypal_txn_id': fields.char('Transaction ID'), 'paypal_txn_type': fields.char('Transaction type'), } # -------------------------------------------------- # FORM RELATED METHODS # -------------------------------------------------- def paypal_form_generate_values(self, cr, uid, id, tx_custom_values=None, context=None): tx = self.browse(cr, uid, id, context=context) tx_data = { 'item_name': tx.name, 'first_name': payment_acquirer._partner_split_name(tx.partner_name)[0], 'last_name': payment_acquirer._partner_split_name(tx.partner_name)[0], 'email': tx.partner_email, 'zip': tx.partner_zip, 'address1': tx.partner_address, 'city': tx.partner_city, 'country': tx.partner_country_id and tx.partner_country_id.name or '', } if tx_custom_values: tx_data.update(tx_custom_values) return self.pool['payment.acquirer'].paypal_form_generate_values( cr, uid, tx.acquirer_id.id, tx.reference, tx.amount, tx.currency_id, tx_custom_values=tx_data, context=context ) def _paypal_form_get_tx_from_data(self, cr, uid, data, context=None): reference, txn_id = data.get('item_number'), data.get('txn_id') if not reference or not txn_id: error_msg = 'Paypal: received data with missing reference (%s) or txn_id (%s)' % (reference, txn_id) _logger.error(error_msg) raise ValidationError(error_msg) # find tx -> @TDENOTE use txn_id ? tx_ids = self.pool['payment.transaction'].search(cr, uid, [('reference', '=', reference)], context=context) if not tx_ids or len(tx_ids) > 1: error_msg = 'Paypal: received data for reference %s' % (reference) if not tx_ids: error_msg += '; no order found' else: error_msg += '; multiple order found' _logger.error(error_msg) raise ValidationError(error_msg) return self.browse(cr, uid, tx_ids[0], context=context) def _paypal_form_get_invalid_parameters(self, cr, uid, tx, data, context=None): # TODO: txn_id: shoudl be false at draft, set afterwards, and verified with txn details invalid_parameters = [] if data.get('notify_version')[0] != '2.6': _logger.warning( 'Received a notification from Paypal with version %s instead of 2.6. This could lead to issues when managing it.' % data.get('notify_version') ) if data.get('test_ipn'): _logger.warning( 'Received a notification from Paypal using sandbox' ), # check what is buyed if float_compare(float(data.get('mc_gross', '0.0')), tx.amount, 2) != 0: invalid_parameters.append(('mc_gross', data.get('mc_gross'), '%.2f' % tx.amount)) if data.get('mc_currency') != tx.currency_id.name: invalid_parameters.append(('mc_currency', data.get('mc_currency'), tx.currency_id.name)) # if parameters.get('payment_fee') != tx.payment_fee: # invalid_parameters.append(('payment_fee', tx.payment_fee)) # if parameters.get('quantity') != tx.quantity: # invalid_parameters.append(('mc_currency', tx.quantity)) # if parameters.get('shipping') != tx.shipping: # invalid_parameters.append(('shipping', tx.shipping)) # check buyer # if parameters.get('payer_id') != tx.payer_id: # invalid_parameters.append(('mc_gross', tx.payer_id)) # if parameters.get('payer_email') != tx.payer_email: # invalid_parameters.append(('payer_email', tx.payer_email)) # check seller # if parameters.get('receiver_email') != tx.receiver_email: # invalid_parameters.append(('receiver_email', tx.receiver_email)) # if parameters.get('receiver_id') != tx.receiver_id: # invalid_parameters.append(('receiver_id', tx.receiver_id)) return invalid_parameters def _paypal_form_validate(self, cr, uid, tx, data, context=None): status = data.get('payment_status') if status in ['Completed', 'Processed']: _logger.info('Validated Paypal payment for tx %s: set as done' % (tx.reference)) tx.write({ 'state': 'done', 'date_validate': data.get('payment_date', fields.datetime.now()), 'paypal_txn_id': data['txn_id'], 'paypal_txn_type': data.get('express_checkout'), }) return True elif status in ['Pending', 'Expired']: _logger.info('Received notification for Paypal payment %s: set as pending' % (tx.reference)) tx.write({ 'state': 'pending', 'state_message': data.get('pending_reason', ''), 'paypal_txn_id': data['txn_id'], 'paypal_txn_type': data.get('express_checkout'), }) return True else: error = 'Received unrecognized status for Paypal payment %s: %s, set as error' % (tx.reference, status) _logger.info(error) tx.write({ 'state': 'error', 'state_message': error, 'paypal_txn_id': data['txn_id'], 'paypal_txn_type': data.get('express_checkout'), }) return False # -------------------------------------------------- # SERVER2SERVER RELATED METHODS # -------------------------------------------------- def _paypal_try_url(self, request, tries=3, context=None): try: res = urllib2.urlopen(request) except urllib2.HTTPError as e: res = e.read() e.close() if tries and res and json.loads(res)['name'] == 'INTERNAL_SERVICE_ERROR': _logger.warning('Failed contacting Paypal, retrying (%s remaining)' % tries) return self._paypal_try_url(request, tries=tries - 1, context=context) raise except: raise result = res.read() res.close() return result def _paypal_s2s_send(self, cr, uid, values, cc_values, context=None): tx_id = self.create(cr, uid, values, context=context) tx = self.browse(cr, uid, tx_id, context=context) headers = { 'Content-Type': 'application/json', 'Authorization': 'Bearer %s' % tx.acquirer_id._paypal_s2s_get_access_token()[tx.acquirer_id.id], } data = { 'intent': 'sale', 'transactions': [{ 'amount': { 'total': '%.2f' % tx.amount, 'currency': tx.currency_id.name, }, 'description': tx.reference, }] } if cc_values: data['payer'] = { 'payment_method': 'credit_card', 'funding_instruments': [{ 'credit_card': { 'number': cc_values['number'], 'type': cc_values['brand'], 'expire_month': cc_values['expiry_mm'], 'expire_year': cc_values['expiry_yy'], 'cvv2': cc_values['cvc'], 'first_name': tx.partner_name, 'last_name': tx.partner_name, 'billing_address': { 'line1': tx.partner_address, 'city': tx.partner_city, 'country_code': tx.partner_country_id.code, 'postal_code': tx.partner_zip, } } }] } else: data['redirect_urls'] = { 'return_url': 'http://example.com/your_redirect_url/', 'cancel_url': 'http://example.com/your_cancel_url/', }, data['payer'] = { 'payment_method': 'paypal', } data = json.dumps(data) request = urllib2.Request('https://api.sandbox.paypal.com/v1/payments/payment', data, headers) result = self._paypal_try_url(request, tries=3, context=context) return (tx_id, result) def _paypal_s2s_get_invalid_parameters(self, cr, uid, tx, data, context=None): invalid_parameters = [] return invalid_parameters def _paypal_s2s_validate(self, cr, uid, tx, data, context=None): values = json.loads(data) status = values.get('state') if status in ['approved']: _logger.info('Validated Paypal s2s payment for tx %s: set as done' % (tx.reference)) tx.write({ 'state': 'done', 'date_validate': values.get('udpate_time', fields.datetime.now()), 'paypal_txn_id': values['id'], }) return True elif status in ['pending', 'expired']: _logger.info('Received notification for Paypal s2s payment %s: set as pending' % (tx.reference)) tx.write({ 'state': 'pending', # 'state_message': data.get('pending_reason', ''), 'paypal_txn_id': values['id'], }) return True else: error = 'Received unrecognized status for Paypal s2s payment %s: %s, set as error' % (tx.reference, status) _logger.info(error) tx.write({ 'state': 'error', # 'state_message': error, 'paypal_txn_id': values['id'], }) return False def _paypal_s2s_get_tx_status(self, cr, uid, tx, context=None): # TDETODO: check tx.paypal_txn_id is set headers = { 'Content-Type': 'application/json', 'Authorization': 'Bearer %s' % tx.acquirer_id._paypal_s2s_get_access_token()[tx.acquirer_id.id], } url = 'https://api.sandbox.paypal.com/v1/payments/payment/%s' % (tx.paypal_txn_id) request = urllib2.Request(url, headers=headers) data = self._paypal_try_url(request, tries=3, context=context) return self.s2s_feedback(cr, uid, tx.id, data, context=context)