is_embedded = $request->get('is_embedded') == '1'; $this->gateway = $gateway; } /** * Validate a ticket request. If successful reserve the tickets and redirect to checkout * * @param Request $request * @param $event_id * @return \Illuminate\Http\JsonResponse|\Illuminate\Http\RedirectResponse */ public function postValidateTickets(Request $request, $event_id) { /* * Order expires after X min */ $order_expires_time = Carbon::now()->addMinutes(config('attendize.checkout_timeout_after')); $event = Event::findOrFail($event_id); if (!$request->has('tickets')) { return response()->json([ 'status' => 'error', 'message' => 'No tickets selected', ]); } $ticket_ids = $request->get('tickets'); /* * Remove any tickets the user has reserved */ ReservedTickets::where('session_id', '=', session()->getId())->delete(); /* * Go though the selected tickets and check if they're available * , tot up the price and reserve them to prevent over selling. */ $validation_rules = []; $validation_messages = []; $tickets = []; $order_total = 0; $total_ticket_quantity = 0; $booking_fee = 0; $organiser_booking_fee = 0; $quantity_available_validation_rules = []; foreach ($ticket_ids as $ticket_id) { $current_ticket_quantity = (int)$request->get('ticket_' . $ticket_id); if ($current_ticket_quantity < 1) { continue; } $total_ticket_quantity = $total_ticket_quantity + $current_ticket_quantity; $ticket = Ticket::find($ticket_id); $ticket_quantity_remaining = $ticket->quantity_remaining; $max_per_person = min($ticket_quantity_remaining, $ticket->max_per_person); $quantity_available_validation_rules['ticket_' . $ticket_id] = [ 'numeric', 'min:' . $ticket->min_per_person, 'max:' . $max_per_person ]; $quantity_available_validation_messages = [ 'ticket_' . $ticket_id . '.max' => 'The maximum number of tickets you can register is ' . $ticket_quantity_remaining, 'ticket_' . $ticket_id . '.min' => 'You must select at least ' . $ticket->min_per_person . ' tickets.', ]; $validator = Validator::make(['ticket_' . $ticket_id => (int)$request->get('ticket_' . $ticket_id)], $quantity_available_validation_rules, $quantity_available_validation_messages); if ($validator->fails()) { return response()->json([ 'status' => 'error', 'messages' => $validator->messages()->toArray(), ]); } $order_total = $order_total + ($current_ticket_quantity * $ticket->price); $booking_fee = $booking_fee + ($current_ticket_quantity * $ticket->booking_fee); $organiser_booking_fee = $organiser_booking_fee + ($current_ticket_quantity * $ticket->organiser_booking_fee); $tickets[] = [ 'ticket' => $ticket, 'qty' => $current_ticket_quantity, 'price' => ($current_ticket_quantity * $ticket->price), 'booking_fee' => ($current_ticket_quantity * $ticket->booking_fee), 'organiser_booking_fee' => ($current_ticket_quantity * $ticket->organiser_booking_fee), 'full_price' => $ticket->price + $ticket->total_booking_fee, ]; /* * Reserve the tickets for X amount of minutes */ $reservedTickets = new ReservedTickets(); $reservedTickets->ticket_id = $ticket_id; $reservedTickets->event_id = $event_id; $reservedTickets->quantity_reserved = $current_ticket_quantity; $reservedTickets->expires = $order_expires_time; $reservedTickets->session_id = session()->getId(); $reservedTickets->save(); for ($i = 0; $i < $current_ticket_quantity; $i++) { /* * Create our validation rules here */ $validation_rules['ticket_holder_first_name.' . $i . '.' . $ticket_id] = ['required']; $validation_rules['ticket_holder_last_name.' . $i . '.' . $ticket_id] = ['required']; $validation_rules['ticket_holder_email.' . $i . '.' . $ticket_id] = ['required', 'email']; $validation_messages['ticket_holder_first_name.' . $i . '.' . $ticket_id . '.required'] = 'Ticket holder ' . ($i + 1) . '\'s first name is required'; $validation_messages['ticket_holder_last_name.' . $i . '.' . $ticket_id . '.required'] = 'Ticket holder ' . ($i + 1) . '\'s last name is required'; $validation_messages['ticket_holder_email.' . $i . '.' . $ticket_id . '.required'] = 'Ticket holder ' . ($i + 1) . '\'s email is required'; $validation_messages['ticket_holder_email.' . $i . '.' . $ticket_id . '.email'] = 'Ticket holder ' . ($i + 1) . '\'s email appears to be invalid'; /* * Validation rules for custom questions */ foreach ($ticket->questions as $question) { if ($question->is_required && $question->is_enabled) { $validation_rules['ticket_holder_questions.' . $ticket_id . '.' . $i . '.' . $question->id] = ['required']; $validation_messages['ticket_holder_questions.' . $ticket_id . '.' . $i . '.' . $question->id . '.required'] = "This question is required"; } } } } if (empty($tickets)) { return response()->json([ 'status' => 'error', 'message' => 'No tickets selected.', ]); } // if (config('attendize.enable_dummy_payment_gateway') == TRUE) { // $activeAccountPaymentGateway = new AccountPaymentGateway(); // $activeAccountPaymentGateway->fill(['payment_gateway_id' => config('attendize.payment_gateway_dummy')]); // $paymentGateway = $activeAccountPaymentGateway; // } else { // $activeAccountPaymentGateway = $event->account->getGateway($event->account->payment_gateway_id); // //if no payment gateway configured and no offline pay, don't go to the next step and show user error // if (empty($activeAccountPaymentGateway) && !$event->enable_offline_payments) { // return response()->json([ // 'status' => 'error', // 'message' => 'No payment gateway configured', // ]); // } // $paymentGateway = $activeAccountPaymentGateway ? $activeAccountPaymentGateway->payment_gateway : false; // } /* * The 'ticket_order_{event_id}' session stores everything we need to complete the transaction. */ session()->put('ticket_order_' . $event->id, [ 'validation_rules' => $validation_rules, 'validation_messages' => $validation_messages, 'event_id' => $event->id, 'tickets' => $tickets, 'total_ticket_quantity' => $total_ticket_quantity, 'order_started' => time(), 'expires' => $order_expires_time, 'reserved_tickets_id' => $reservedTickets->id, 'order_total' => $order_total, 'booking_fee' => $booking_fee, 'organiser_booking_fee' => $organiser_booking_fee, 'total_booking_fee' => $booking_fee + $organiser_booking_fee, 'order_requires_payment' => (ceil($order_total) == 0) ? false : true, 'account_id' => $event->account->id, 'affiliate_referral' => Cookie::get('affiliate_' . $event_id), // 'account_payment_gateway' => $activeAccountPaymentGateway, // 'payment_gateway' => $paymentGateway ]); /* * If we're this far assume everything is OK and redirect them * to the the checkout page. */ if ($request->ajax()) { return response()->json([ 'status' => 'success', 'redirectUrl' => route('showEventCheckout', [ 'event_id' => $event_id, 'is_embedded' => $this->is_embedded, ]) . '#order_form', ]); } /* * Maybe display something prettier than this? */ exit('Please enable Javascript in your browser.'); } /** * Show the checkout page * * @param Request $request * @param $event_id * @return \Illuminate\Http\RedirectResponse|\Illuminate\View\View */ public function showEventCheckout(Request $request, $event_id) { $order_session = session()->get('ticket_order_' . $event_id); if (!$order_session || $order_session['expires'] < Carbon::now()) { $route_name = $this->is_embedded ? 'showEmbeddedEventPage' : 'showEventPage'; return redirect()->route($route_name, ['event_id' => $event_id]); } $secondsToExpire = Carbon::now()->diffInSeconds($order_session['expires']); $event = Event::findorFail($order_session['event_id']); $orderService = new OrderService($order_session['order_total'], $order_session['total_booking_fee'], $event); $orderService->calculateFinalCosts(); $data = $order_session + [ 'event' => $event, 'secondsToExpire' => $secondsToExpire, 'is_embedded' => $this->is_embedded, 'orderService' => $orderService ]; if ($this->is_embedded) { return view('Public.ViewEvent.Embedded.EventPageCheckout', $data); } return view('Public.ViewEvent.EventPageCheckout', $data); } /** * Create the order, handle payment, update stats, fire off email jobs then redirect user * * @param Request $request * @param $event_id * @return \Illuminate\Http\JsonResponse */ public function postCreateOrder(Request $request, $event_id) { //If there's no session kill the request and redirect back to the event homepage. if (!session()->get('ticket_order_' . $event_id)) { return response()->json([ 'status' => 'error', 'message' => 'Your session has expired.', 'redirectUrl' => route('showEventPage', [ 'event_id' => $event_id, ]) ]); } $event = Event::findOrFail($event_id); $order = new Order(); $ticket_order = session()->get('ticket_order_' . $event_id); $validation_rules = $ticket_order['validation_rules']; $validation_messages = $ticket_order['validation_messages']; $order->rules = $order->rules + $validation_rules; $order->messages = $order->messages + $validation_messages; if ($request->has('is_business') && $request->get('is_business')) { // Dynamic validation on the new business fields, only gets validated if business selected $businessRules = [ 'business_name' => 'required', 'business_tax_number' => 'required', 'business_address_line1' => 'required', 'business_address_city' => 'required', 'business_address_code' => 'required', ]; $businessMessages = [ 'business_name.required' => 'Please enter a valid business name', 'business_tax_number.required' => 'Please enter a valid business tax number', 'business_address_line1.required' => 'Please enter a valid street address', 'business_address_city.required' => 'Please enter a valid city', 'business_address_code.required' => 'Please enter a valid code', ]; $order->rules = $order->rules + $businessRules; $order->messages = $order->messages + $businessMessages; } if (!$order->validate($request->all())) { return response()->json([ 'status' => 'error', 'messages' => $order->errors(), ]); } //Add the request data to a session in case payment is required off-site session()->push('ticket_order_' . $event_id . '.request_data', $request->except(['card-number', 'card-cvc'])); $orderRequiresPayment = $ticket_order['order_requires_payment']; if ($orderRequiresPayment && $request->get('pay_offline') && $event->enable_offline_payments) { return $this->completeOrder($event_id); } if (!$orderRequiresPayment) { return $this->completeOrder($event_id); } try { //more transaction data being put in here. $transaction_data = []; // if (config('attendize.enable_dummy_payment_gateway') == TRUE) { // $formData = config('attendize.fake_card_data'); // $transaction_data = [ // 'card' => $formData // ]; // // $gateway = Omnipay::create('Dummy'); // $gateway->initialize(); // // } else { //// $gateway = Omnipay::create($ticket_order['payment_gateway']->name); //// $gateway->initialize($ticket_order['account_payment_gateway']->config + [ //// 'testMode' => config('attendize.enable_test_payments'), //// ]); // $gateway = Omnipay::create('Dummy'); // $gateway->initialize(); // } $orderService = new OrderService($ticket_order['order_total'], $ticket_order['total_booking_fee'], $event); $orderService->calculateFinalCosts(); $transaction_data += [ 'amount' => $orderService->getGrandTotal()*10,//todo multiply by 10 'currency' => 934, 'description' => 'Order for customer: ' . $request->get('order_email'), 'orderNumber' => uniqid(), 'failUrl' => route('showEventCheckoutPaymentReturn', [ 'event_id' => $event_id, 'is_payment_cancelled' => 1 ]), 'returnUrl' => route('showEventCheckoutPaymentReturn', [ 'event_id' => $event_id, 'is_payment_successful' => 1 ]), ]; //TODO: class with an interface that builds the transaction data. // switch ($ticket_order['payment_gateway']->id) { // case config('attendize.payment_gateway_dummy'): // $token = uniqid(); // $transaction_data += [ // 'token' => $token, // 'receipt_email' => $request->get('order_email'), // 'card' => $formData // ]; // break; // case config('attendize.payment_gateway_paypal'): // // $transaction_data += [ // 'cancelUrl' => route('showEventCheckoutPaymentReturn', [ // 'event_id' => $event_id, // 'is_payment_cancelled' => 1 // ]), // 'returnUrl' => route('showEventCheckoutPaymentReturn', [ // 'event_id' => $event_id, // 'is_payment_successful' => 1 // ]), // 'brandName' => isset($ticket_order['account_payment_gateway']->config['brandingName']) // ? $ticket_order['account_payment_gateway']->config['brandingName'] // : $event->organiser->name // ]; // break; // case config('attendize.payment_gateway_stripe'): // $token = $request->get('stripeToken'); // $transaction_data += [ // 'token' => $token, // 'receipt_email' => $request->get('order_email'), // ]; // break; // default: // Log::error('No payment gateway configured.'); // return response()->json([ // 'status' => 'error', // 'message' => 'No payment gateway configured.' // ]); // break; // } $response = $this->gateway->registerPayment($transaction_data); //todo start resolving payment here ///////////////////////////////////////////////////// // if ($response->isSuccessful()) { // // session()->push('ticket_order_' . $event_id . '.transaction_id', // $response->getTransactionReference()); // // return $this->completeOrder($event_id); // // } elseif ($response->isRedirect()) { if($response->isSuccessfull()){ /* * As we're going off-site for payment we need to store some data in a session so it's available * when we return */ $transaction_data['orderId'] = $response->getPaymentReferenceId(); session()->push('ticket_order_' . $event_id . '.transaction_data', $transaction_data); Log::info("Redirect url: " . $response->getRedirectUrl()); $return = [ 'status' => 'success', 'redirectUrl' => $response->getRedirectUrl(), 'message' => 'Redirecting to payment gateway' ]; // GET method requests should not have redirectData on the JSON return string // if($response->getRedirectMethod() == 'POST') { // $return['redirectData'] = $response->getRedirectData(); // } return response()->json($return); } else { // display error to customer return response()->json([ 'status' => 'error', 'message' => $response->errorMessage(), ]); } } catch (\Exeption $e) { // dd($e); Log::error($e); $error = 'Sorry, there was an error processing your payment. Please try again.'; } if ($error) { return response()->json([ 'status' => 'error', 'message' => $error, ]); } } /** * Attempt to complete a user's payment when they return from * an off-site gateway * * @param Request $request * @param $event_id * @return \Illuminate\Http\JsonResponse|\Illuminate\Http\RedirectResponse */ public function showEventCheckoutPaymentReturn(Request $request, $event_id) { if ($request->get('is_payment_cancelled') == '1') { session()->flash('message', trans('Event.payment_cancelled')); return response()->redirectToRoute('showEventCheckout', [ 'event_id' => $event_id, 'is_payment_cancelled' => 1, ]); } // $ticket_order = session()->get('ticket_order_' . $event_id); // $gateway = Omnipay::create($ticket_order['payment_gateway']->name); // // $gateway->initialize($ticket_order['account_payment_gateway']->config + [ // 'testMode' => config('attendize.enable_test_payments'), // ]); // // $transaction = $gateway->completePurchase($ticket_order['transaction_data'][0]); // $gateway = app()->make('App\Payment\CardPayment'); $transaction_data = session()->get('ticket_order_' . $event_id . '.transaction_data'); // dd($transaction_data); $response = $this->gateway->getPaymentStatus($transaction_data[0]['orderId']); if ($response->isSuccessfull()) { session()->push('ticket_order_' . $event_id . '.transaction_id', $response->getPaymentReferenceId()); return $this->completeOrder($event_id, false); } else { session()->flash('message', $response->errorMessage()); return response()->redirectToRoute('showEventCheckout', [ 'event_id' => $event_id, 'is_payment_failed' => 1, ]); } } /** * Complete an order * * @param $event_id * @param bool|true $return_json * @return \Illuminate\Http\JsonResponse|\Illuminate\Http\RedirectResponse */ public function completeOrder($event_id, $return_json = true) { DB::beginTransaction(); try { $order = new Order(); $ticket_order = session()->get('ticket_order_' . $event_id); $request_data = $ticket_order['request_data'][0]; $event = Event::findOrFail($ticket_order['event_id']); $attendee_increment = 1; $ticket_questions = isset($request_data['ticket_holder_questions']) ? $request_data['ticket_holder_questions'] : []; /* * Create the order */ if (isset($ticket_order['transaction_id'])) { $order->transaction_id = $ticket_order['transaction_id'][0]; } // if ($ticket_order['order_requires_payment'] && !isset($request_data['pay_offline'])) { // $order->payment_gateway_id = $ticket_order['payment_gateway']->id; // } $order->first_name = sanitise($request_data['order_first_name']); $order->last_name = sanitise($request_data['order_last_name']); $order->email = sanitise($request_data['order_email']); $order->order_status_id = isset($request_data['pay_offline']) ? config('attendize.order_awaiting_payment') : config('attendize.order_complete'); $order->amount = $ticket_order['order_total']; $order->booking_fee = $ticket_order['booking_fee']; $order->organiser_booking_fee = $ticket_order['organiser_booking_fee']; $order->discount = 0.00; $order->account_id = $event->account->id; $order->event_id = $ticket_order['event_id']; $order->is_payment_received = isset($request_data['pay_offline']) ? 0 : 1; // Business details is selected, we need to save the business details if (isset($request_data['is_business']) && (bool)$request_data['is_business']) { $order->is_business = $request_data['is_business']; $order->business_name = sanitise($request_data['business_name']); $order->business_tax_number = sanitise($request_data['business_tax_number']); $order->business_address_line_one = sanitise($request_data['business_address_line1']); $order->business_address_line_two = sanitise($request_data['business_address_line2']); $order->business_address_state_province = sanitise($request_data['business_address_state']); $order->business_address_city = sanitise($request_data['business_address_city']); $order->business_address_code = sanitise($request_data['business_address_code']); } // Calculating grand total including tax $orderService = new OrderService($ticket_order['order_total'], $ticket_order['total_booking_fee'], $event); $orderService->calculateFinalCosts(); $order->taxamt = $orderService->getTaxAmount(); $order->save(); /* * Update the event sales volume */ $event->increment('sales_volume', $orderService->getGrandTotal()); $event->increment('organiser_fees_volume', $order->organiser_booking_fee); /* * Update affiliates stats stats */ if ($ticket_order['affiliate_referral']) { $affiliate = Affiliate::where('name', '=', $ticket_order['affiliate_referral']) ->where('event_id', '=', $event_id)->first(); $affiliate->increment('sales_volume', $order->amount + $order->organiser_booking_fee); $affiliate->increment('tickets_sold', $ticket_order['total_ticket_quantity']); } /* * Update the event stats */ $event_stats = EventStats::updateOrCreate([ 'event_id' => $event_id, 'date' => DB::raw('CURRENT_DATE'), ]); $event_stats->increment('tickets_sold', $ticket_order['total_ticket_quantity']); if ($ticket_order['order_requires_payment']) { $event_stats->increment('sales_volume', $order->amount); $event_stats->increment('organiser_fees_volume', $order->organiser_booking_fee); } /* * Add the attendees */ foreach ($ticket_order['tickets'] as $attendee_details) { /* * Update ticket's quantity sold */ $ticket = Ticket::findOrFail($attendee_details['ticket']['id']); /* * Update some ticket info */ $ticket->increment('quantity_sold', $attendee_details['qty']); $ticket->increment('sales_volume', ($attendee_details['ticket']['price'] * $attendee_details['qty'])); $ticket->increment('organiser_fees_volume', ($attendee_details['ticket']['organiser_booking_fee'] * $attendee_details['qty'])); /* * Insert order items (for use in generating invoices) */ $orderItem = new OrderItem(); $orderItem->title = $attendee_details['ticket']['title']; $orderItem->quantity = $attendee_details['qty']; $orderItem->order_id = $order->id; $orderItem->unit_price = $attendee_details['ticket']['price']; $orderItem->unit_booking_fee = $attendee_details['ticket']['booking_fee'] + $attendee_details['ticket']['organiser_booking_fee']; $orderItem->save(); /* * Create the attendees */ for ($i = 0; $i < $attendee_details['qty']; $i++) { $attendee = new Attendee(); $attendee->first_name = strip_tags($request_data["ticket_holder_first_name"][$i][$attendee_details['ticket']['id']]); $attendee->last_name = strip_tags($request_data["ticket_holder_last_name"][$i][$attendee_details['ticket']['id']]); $attendee->email = $request_data["ticket_holder_email"][$i][$attendee_details['ticket']['id']]; $attendee->event_id = $event_id; $attendee->order_id = $order->id; $attendee->ticket_id = $attendee_details['ticket']['id']; $attendee->account_id = $event->account->id; $attendee->reference_index = $attendee_increment; $attendee->save(); /* * Save the attendee's questions */ foreach ($attendee_details['ticket']->questions as $question) { $ticket_answer = isset($ticket_questions[$attendee_details['ticket']->id][$i][$question->id]) ? $ticket_questions[$attendee_details['ticket']->id][$i][$question->id] : null; if (is_null($ticket_answer)) { continue; } /* * If there are multiple answers to a question then join them with a comma * and treat them as a single answer. */ $ticket_answer = is_array($ticket_answer) ? implode(', ', $ticket_answer) : $ticket_answer; if (!empty($ticket_answer)) { QuestionAnswer::create([ 'answer_text' => $ticket_answer, 'attendee_id' => $attendee->id, 'event_id' => $event->id, 'account_id' => $event->account->id, 'question_id' => $question->id ]); } } /* Keep track of total number of attendees */ $attendee_increment++; } } } catch (Exception $e) { Log::error($e); DB::rollBack(); return response()->json([ 'status' => 'error', 'message' => 'Whoops! There was a problem processing your order. Please try again.' ]); } //save the order to the database DB::commit(); //forget the order in the session session()->forget('ticket_order_' . $event->id); /* * Remove any tickets the user has reserved after they have been ordered for the user */ ReservedTickets::where('session_id', '=', session()->getId())->delete(); // Queue up some tasks - Emails to be sent, PDFs etc. Log::info('Firing the event'); event(new OrderCompletedEvent($order)); if ($return_json) { return response()->json([ 'status' => 'success', 'redirectUrl' => route('showOrderDetails', [ 'is_embedded' => $this->is_embedded, 'order_reference' => $order->order_reference, ]), ]); } return response()->redirectToRoute('showOrderDetails', [ 'is_embedded' => $this->is_embedded, 'order_reference' => $order->order_reference, ]); } /** * Show the order details page * * @param Request $request * @param $order_reference * @return \Illuminate\View\View */ public function showOrderDetails(Request $request, $order_reference) { $order = Order::where('order_reference', '=', $order_reference)->first(); if (!$order) { abort(404); } $orderService = new OrderService($order->amount, $order->organiser_booking_fee, $order->event); $orderService->calculateFinalCosts(); $data = [ 'order' => $order, 'orderService' => $orderService, 'event' => $order->event, 'tickets' => $order->event->tickets, 'is_embedded' => $this->is_embedded, ]; if ($this->is_embedded) { return view('Public.ViewEvent.Embedded.EventPageViewOrder', $data); } return view('Public.ViewEvent.EventPageViewOrder', $data); } /** * Shows the tickets for an order - either HTML or PDF * * @param Request $request * @param $order_reference * @return \Illuminate\View\View */ public function showOrderTickets(Request $request, $order_reference) { $order = Order::where('order_reference', '=', $order_reference)->first(); if (!$order) { abort(404); } $images = []; $imgs = $order->event->images; foreach ($imgs as $img) { $images[] = base64_encode(file_get_contents(public_path($img->image_path))); } $data = [ 'order' => $order, 'event' => $order->event, 'tickets' => $order->event->tickets, 'attendees' => $order->attendees, 'css' => file_get_contents(public_path('assets/stylesheet/ticket.css')), 'image' => base64_encode(file_get_contents(public_path($order->event->organiser->full_logo_path))), 'images' => $images, ]; if ($request->get('download') == '1') { return PDF::html('Public.ViewEvent.Partials.PDFTicket', $data, 'Tickets'); } return view('Public.ViewEvent.Partials.PDFTicket', $data); } }