Paypal IPN 未更新或插入数据库

【问题标题】:Paypal IPN Not Updating Or Inserting Into DatabasePaypal IPN 未更新或插入数据库
【发布时间】:2015-04-13 23:28:58
【问题描述】:

所以我使用的是 PayPals IPN,但它没有更新数据库。它应该更新用户表,并在事务表中插入一行。它没有做任何事情。它正在向贝宝发送成功的 IPN,但没有更新任何内容。代码如下:

<?php session_start() ?>
<?php require 'connect.php' ?>
<?php
// check if logged into PsychoWars
if(!$id) {
    die('Error: Not Logged In! Contact Us With The Transaction ID!'); 
}

// read the post from PayPal system and add 'cmd'
$req = 'cmd=_notify-validate';
foreach ($_POST as $key => $value) {
$value = urlencode(stripslashes($value));
$req .= "&$key=$value";
}
// post back to PayPal system to validate
$header = "POST /cgi-bin/webscr HTTP/1.0\r\n";
$header .= "Content-Type: application/x-www-form-urlencoded\r\n";
$header .= "Content-Length: " . strlen($req) . "\r\n\r\n";

$fp = fsockopen ('ssl://www.paypal.com', 443, $errno, $errstr, 30);


if (!$fp) {
// HTTP ERROR
} else {
fputs ($fp, $header . $req);
while (!feof($fp)) {
$res = fgets ($fp, 1024);
if (strcmp ($res, "VERIFIED") == 0) {
 $errmsg = '';   // stores errors from fraud checks
// PAYMENT VALIDATED & VERIFIED!
// 1. Make sure the payment status is "Completed" 
    if ($_POST['payment_status'] != 'Completed') { 
        // simply ignore any IPN that is not completed
        exit(0); 
    } 
}

else if (strcmp ($res, "INVALID") == 0) {

$email = $_POST['payer_email'];
$password = mt_rand(1000, 9999);
$item_name = $_POST['item_name'];
$item_number = $_POST['item_number'];
$payment_status = $_POST['payment_status'];
$payment_amount = $_POST['mc_gross'];
$payment_currency = $_POST['mc_currency'];
$txn_id = $_POST['txn_id'];
$receiver_email = $_POST['receiver_email'];
$payer_email = $_POST['payer_email'];

// Checking email
if($receiver_email != 'bad.karma12323@gmail.com') {
    die('Error: Paypal Email Doesn\'t Match!');
}
// Bought $1
if($payment_amount == '1.00') {
$points_amount = '500';
$points_energy = '500'; 
$points_name = '500 Points And 500 Energy';
// Update Database
$update_user = mysql_query("UPDATE users SET points=(points+".$points_amount."),energy=(energy+".$points_energy.") WHERE id=".$id."");
$add_trans = mysql_query("INSERT INTO transactions (user_id,txn_id,item_name,payment_status,cost,time) VALUES ('$id','$txn_id','$points_name','$payment_status','$payment_amount','".time()."')");  
}
// Bought $5
elseif($payment_amount == '5.00') {
$points_amount = '30';
$points_energy = '500'; 
$points_name = '30 Points And 500 Energy';
// Update Database
$update_user = mysql_query("UPDATE users SET points=(points+".$points_amount."),energy=(energy+".$points_energy.") WHERE id=".$id."");
$add_trans = mysql_query("INSERT INTO transactions (user_id,txn_id,item_name,payment_status,cost,time) VALUES ('$id','$txn_id','$points_name','$payment_status','$payment_amount','".time()."')");  
}
// Bought $10
elseif($payment_amount == '10.00') {
$points_amount = '70';
$points_energy = '1200';    
$points_name = '70 Points And 1,200 Energy';
// Update Database
$update_user = mysql_query("UPDATE users SET points=(points+".$points_amount."),energy=(energy+".$points_energy.") WHERE id=".$id."");
$add_trans = mysql_query("INSERT INTO transactions (user_id,txn_id,item_name,payment_status,cost,time) VALUES ('$id','$txn_id','$points_name','$payment_status','$payment_amount','".time()."')");  
}
// Bought $20
elseif($payment_amount == '20.00') {
$points_amount = '155';
$points_energy = '3000';    
$points_name = '155 Points And 3,000 Energy';
// Update Database
$update_user = mysql_query("UPDATE users SET points=(points+".$points_amount."),energy=(energy+".$points_energy.") WHERE id=".$id."");
$add_trans = mysql_query("INSERT INTO transactions (user_id,txn_id,item_name,payment_status,cost,time) VALUES ('$id','$txn_id','$points_name','$payment_status','$payment_amount','".time()."')");  
}
// Bought $50
elseif($payment_amount == '50.00') {
$points_amount = '320';
$points_energy = '7500';    
$points_name = '320 Points And 7,500 Energy';
// Update Database
$update_user = mysql_query("UPDATE users SET points=(points+".$points_amount."),energy=(energy+".$points_energy.") WHERE id=".$id."");
$add_trans = mysql_query("INSERT INTO transactions (user_id,txn_id,item_name,payment_status,cost,time) VALUES ('$id','$txn_id','$points_name','$payment_status','$payment_amount','".time()."')");  
}
// Bought $100
elseif($payment_amount == '100.00') {
$points_amount = '666';
$points_energy = '20000';   
$points_name = '666 Points And 20,000 Energy';
// Update Database
$update_user = mysql_query("UPDATE users SET points=(points+".$points_amount."),energy=(energy+".$points_energy.") WHERE id=".$id."");
$add_trans = mysql_query("INSERT INTO transactions (user_id,txn_id,item_name,payment_status,cost,time) VALUES ('$id','$txn_id','$points_name','$payment_status','$payment_amount','".time()."')");  
}
}
}
fclose ($fp);
}
?>

更新了代码::

<?php session_start() ?>
<?php require 'connect.php' ?>
<?php
// check if logged into PsychoWars
if(!$id) {
    die('Error: Not Logged In! Contact Us With The Transaction ID!'); 
}

// read the post from PayPal system and add 'cmd'
$req = 'cmd=_notify-validate';
foreach ($_POST as $key => $value) {
    $value = urlencode(stripslashes($value));
    $req .= "&$key=$value";
}
// post back to PayPal system to validate
$header = "POST /cgi-bin/webscr HTTP/1.0\r\n";
$header .= "Content-Type: application/x-www-form-urlencoded\r\n";
$header .= "Content-Length: " . strlen($req) . "\r\n\r\n";

$fp = fsockopen ('ssl://www.paypal.com', 443, $errno, $errstr, 30);


if (!$fp) {
    // HTTP ERROR
} 
else {
fputs ($fp, $header . $req);
while (!feof($fp)) {
    $res = fgets ($fp, 1024);
    break;
}
fclose ($fp);

// PAYMENT VALIDATED & VERIFIED!
$payment_status = $_POST['payment_status'];
$txn_id = $_POST['txn_id'];
$payment_amount = $_POST['mc_gross'];
// 1. Make sure the payment status is "Completed"   
if ((strcmp($res, "VERIFIED") == 0) && ($_POST['payment_status'] == 'Completed') && ($receiver_email == 'bad.karma12323@gmail.com')) {
    $errmsg = '';   // stores errors from fraud checks

    $points_amount="";

    switch ($payment_amount){

        case "5.00":
            $points_amount = '30';
            $points_energy = '500'; 
            break;

        case "10.00":
            $points_amount = '70';
            $points_energy = '1200'; 
            break;

        case "20.00":
            $points_amount = '155';
            $points_energy = '3000'; 
            break;  

        case "50.00":
            $points_amount = '320';
            $points_energy = '7500'; 
            break;              

        case "100.00":
            $points_amount = '666';
            $points_energy = '20000'; 
            break;      

    }

    //Only update the database if one of the above conditions is met.
    if (strlen($points_amount)>0){

        //format $points_name
        $points_name=sprintf("%s Points And %s Energy",number_format($points_amount),number_format($points_energy));

        // Update Database
        $update_user = mysql_query("UPDATE users SET points=(points+".$points_amount."),energy=(energy+".$points_energy.") WHERE id=".$id."");
        $add_trans = mysql_query("INSERT INTO transactions (user_id,txn_id,item_name,payment_status,cost,time) VALUES ('$id','$txn_id','$points_name','$payment_status','$payment_amount','".time()."')");   
        $to      = 'bad.karma12323@gmail.com';
        $subject = 'PsychoWars Point Purchase';
        $message = '

        Thank you for your purchase

        -------------------------
        Item :: '.$points_name.'
        Cost :: $'.$payment_amount.'
        -------------------------';

        mail($to, $subject, $message);
    }
    else {
        $to = 'bad.karma12323@gmail.com';
        $subject = 'PsychoWars Point Purchase';
        $message = '

        There was an error with your purchase!

        -------------------------
        Item :: '.$points_name.'
        Cost :: $'.$payment_amount.'
        -------------------------

        Please Contact Customer Support';

        mail($to, $subject, $message);
    }
  }  
}
?>

更新了答案中的代码并修复了其中的 2 个错误。但它仍然无法正常工作,仍然不想插入数据库,甚至不想向我的电子邮件发送电子邮件。

【问题讨论】:

标签: php mysql paypal paypal-ipn


【解决方案1】:

只有在 $res="INVALID" 并且电子邮件检查有效时,您的代码才会更新数据库。

$req = 'cmd=_notify-validate';
foreach ($_POST as $key => $value) {
    $value = urlencode(stripslashes($value));
    $req .= "&$key=$value";
}
// post back to PayPal system to validate
$header = "POST /cgi-bin/webscr HTTP/1.0\r\n";
$header .= "Content-Type: application/x-www-form-urlencoded\r\n";
$header .= "Content-Length: " . strlen($req) . "\r\n\r\n";

$fp = fsockopen ('ssl://www.paypal.com', 443, $errno, $errstr, 30);


if (!$fp) {
    // HTTP ERROR
} else {
    fputs ($fp, $header . $req);
    while (!feof($fp)) {
        $res = fgets ($fp, 1024);
        if (strcmp ($res, "VERIFIED") == 0) {
            $errmsg = '';   // stores errors from fraud checks
            // PAYMENT VALIDATED & VERIFIED!
            // 1. Make sure the payment status is "Completed" 
            if ($_POST['payment_status'] != 'Completed') { 
                    // simply ignore any IPN that is not completed
                exit(0); 
            } 
        }else if (strcmp ($res, "INVALID") == 0) {

            $email = $_POST['payer_email'];
            $password = mt_rand(1000, 9999);
            $item_name = $_POST['item_name'];
            $item_number = $_POST['item_number'];
            $payment_status = $_POST['payment_status'];
            $payment_amount = $_POST['mc_gross'];
            $payment_currency = $_POST['mc_currency'];

            // Checking email
            if($receiver_email != 'bad.karma12323@gmail.com') {
             die('Error: Paypal Email Doesn\'t Match!');
            }
        } //End of elseif's
    }
    fclose ($fp);
}

这里是您的代码稍短的版本:

<?php session_start() ?>
<?php require 'connect.php' ?>
<?php
// check if logged into PsychoWars
if(!$id) {
    die('Error: Not Logged In! Contact Us With The Transaction ID!'); 
}

// read the post from PayPal system and add 'cmd'
$req = 'cmd=_notify-validate';
foreach ($_POST as $key => $value) {
    $value = urlencode(stripslashes($value));
    $req .= "&$key=$value";
}
// post back to PayPal system to validate
$header = "POST /cgi-bin/webscr HTTP/1.0\r\n";
$header .= "Content-Type: application/x-www-form-urlencoded\r\n";
$header .= "Content-Length: " . strlen($req) . "\r\n\r\n";

$fp = fsockopen ('ssl://www.paypal.com', 443, $errno, $errstr, 30);


if (!$fp) {
    // HTTP ERROR
} else {
fputs ($fp, $header . $req);
while (!feof($fp)) {
    $res = fgets ($fp, 1024);
    break;
}
fclose ($fp);

// PAYMENT VALIDATED & VERIFIED!
// 1. Make sure the payment status is "Completed"   
if (strcmp ($res, "VERIFIED") == 0 && $_POST['payment_status'] == 'Completed') && $receiver_email == 'bad.karma12323@gmail.com') {
    $errmsg = '';   // stores errors from fraud checks

    $points_amount="";

    switch ($payment_amount){

        case "1.00":
            $points_amount = '500';
            $points_energy = '500'; 
            break;

        case "5.00":
            $points_amount = '30';
            $points_energy = '500'; 
            break;

        case "10.00":
            $points_amount = '70';
            $points_energy = '1200'; 
            break;

        case "20.00":
            $points_amount = '155';
            $points_energy = '3000'; 
            break;  

        case "50.00":
            $points_amount = '320';
            $points_energy = '7500'; 
            break;              

        case "100.00":
            $points_amount = '666';
            $points_energy = '20000'; 
            break;      

    }

    //Only update the database if one of the above conditions is met.
    if (strlen($points_amount)>0){

        //format $points_name
        $points_name=sprintf("%s Points And %s Energy",number_format($points_amount),number_format($points_energy));

        // Update Database
        $update_user = mysql_query("UPDATE users SET points=(points+".$points_amount."),energy=(energy+".$points_energy.") WHERE id=".$id."");
        $add_trans = mysql_query("INSERT INTO transactions (user_id,txn_id,item_name,payment_status,cost,time) VALUES ('$id','$txn_id','$points_name','$payment_status','$payment_amount','".time()."')");          
    }
}

}

希望对您有所帮助。

【讨论】:

  • 好吧,我用你的编码更新了这个问题,我修复了 2 个错误并添加了它以发送电子邮件,但它仍然无法正常工作。我希望你能找到解决办法!任何帮助我都感激不尽!
  • if ((strcmp($res, "VERIFIED") == 0) &amp;&amp; ($_POST['payment_status'] == 'Completed') &amp;&amp; ($receiver_email == 'bad.karma12323@gmail.com')) 语句之前添加向您发送电子邮件的代码,以查看 $res、$_POST['payment_status'] 和 $receiver_email 字段包含的内容。这些字段中的一个或多个不包含您所期望的内容。
  • 等等.. 这行代码在这里:if (strcmp ($res, "VERIFIED") == 0) { == 0 应该是== 1
  • if (strcmp ($res, "VERIFIED") == 0) 是正确的。如果 $res 等于 'VERIFIED' 它将返回一个 0。
  • 没有实际购买,我手动输入了 url,这就是 $res 变量 = HTTP/1.0 200 OK
猜你喜欢
  • 2014-05-18
  • 2013-06-14
  • 2015-07-04
  • 2015-09-11
  • 2011-06-30
  • 2015-01-31
  • 1970-01-01
  • 2013-04-24
  • 2021-06-17
相关资源
最近更新 更多
热门标签
Java Python linux javascript Mysql C# Docker 算法 前端 SpringBoot Redis Vue spring 设计模式 .net core .net kubernetes c++ 数据库 数据结构 大数据 js 机器学习 微服务 Android Go 程序员 面试 JVM ASP.net core 云原生 人工智能 后端 PHP git CSS golang k8s Nginx Django mybatis 深度学习 多线程 React 架构 devops 爬虫 云计算 Spring Boot LeetCode