def ask(request):
user = request.user
q = None
if request.method == 'POST':
questionForm = QuestionForm(user, request.POST)
if questionForm.is_valid():
if not user.is_authenticated():
if questionForm.cleaned_data['newUser'] == u'True':
email = questionForm.cleaned_data['email']
user, password = createUserFromEmail(email, request)
key = hashlib.sha256(user.password).hexdigest()[:8]
activateUrl = 'http://' + SITE_DOMAIN + '/activate/' + email + '/' + key
context = Context({
'activateUrl': activateUrl,
'password': password,
})
sendTemplateEmail('Welcome to code4cheap.com', email, 'questionerSignup', context)
else:
email = questionForm.cleaned_data['email']
user = User.objects.filter(email = email)[0]
user = authenticate(username = user.username, password = questionForm.cleaned_data['password'])
q = Question.objects.create(
text = questionForm.cleaned_data['text'],
price = questionForm.cleaned_data['bounty'],
user = user,
)
#redirect to amazon pipeline
connection = FPSConnection(
aws_access_key_id = AWS_KEY_ID,
aws_secret_access_key = AWS_SECRET_KEY,
is_secure = True,
host = AMAZON_DOMAIN,
path = '/',
)
url = connection.make_url(
cobrandingUrl = AMAZON_COBRAND,
returnURL = 'http://' + SITE_DOMAIN + '/thanks/' + str(q.id),
paymentReason = 'Question on code4cheap',
pipelineName = 'SingleUse',
transactionAmount = str(q.price),
)
return HttpResponseRedirect(url)
else:
questionForm = QuestionForm(user, initial = {'bounty': u'10', 'newUser': '******'})
return render_to_response('ask.html', {
'questionForm': questionForm
}, context_instance = RequestContext(request))
class AmazonFpsIntegration(Integration):
"""
Fields required:
transactionAmount: Amount to be charged/authorized
paymentReason: Description of the transaction
paymentPage: Page to direct the user on completion/failure of transaction
"""
display_name = "Amazon Flexible Payment Service"
def __init__(self, options=None):
if not options:
options = {}
merchant_settings = getattr(settings, "MERCHANT_SETTINGS")
if not merchant_settings or not merchant_settings.get("amazon_fps"):
raise IntegrationNotConfigured("The '%s' integration is not correctly "
"configured." % self.display_name)
amazon_fps_settings = merchant_settings["amazon_fps"]
self.aws_access_key = options.get("aws_access_key", None) or amazon_fps_settings['AWS_ACCESS_KEY']
self.aws_secret_access_key = options.get("aws_secret_access_key", None) or amazon_fps_settings['AWS_SECRET_ACCESS_KEY']
super(AmazonFpsIntegration, self).__init__(options=options)
self.fps_connection = FPSConnection(self.aws_access_key, self.aws_secret_access_key, **options)
@property
def service_url(self):
if self.test_mode:
return FPS_SANDBOX_API_ENDPOINT
return FPS_PROD_API_ENDPOINT
@property
def link_url(self):
tmp_fields = self.fields.copy()
tmp_fields.pop("aws_access_key", None)
tmp_fields.pop("aws_secret_access_key", None)
tmp_fields.pop("paymentPage", None)
return self.fps_connection.make_url(tmp_fields.pop("returnURL"),
tmp_fields.pop("paymentReason"),
tmp_fields.pop("pipelineName"),
str(tmp_fields.pop("transactionAmount")),
**tmp_fields)
def purchase(self, amount, options=None):
if not options:
options = {}
tmp_options = options.copy()
permissible_options = ["senderTokenId", "recipientTokenId",
"chargeFeeTo", "callerReference", "senderReference", "recipientReference",
"senderDescription", "recipientDescription", "callerDescription",
"metadata", "transactionDate", "reserve"]
tmp_options["senderTokenId"] = options["tokenID"]
for key in options:
if key not in permissible_options:
tmp_options.pop(key)
resp = self.fps_connection.pay(amount, tmp_options.pop("senderTokenId"),
callerReference=tmp_options.pop("callerReference"),
**tmp_options)
return {"status": resp[0].TransactionStatus, "response": resp[0]}
def authorize(self, amount, options=None):
if not options:
options = {}
options["reserve"] = True
return self.purchase(amount, options)
def capture(self, amount, options=None):
if not options:
options = {}
assert "ReserveTransactionId" in options, "Expecting 'ReserveTransactionId' in options"
resp = self.fps_connection.settle(options["ReserveTransactionId"], amount)
return {"status": resp[0].TransactionStatus, "response": resp[0]}
def credit(self, amount, options=None):
if not options:
options = {}
assert "CallerReference" in options, "Expecting 'CallerReference' in options"
assert "TransactionId" in options, "Expecting 'TransactionId' in options"
resp = self.fps_connection.refund(options["CallerReference"],
options["TransactionId"],
refundAmount=amount,
callerDescription=options.get("description", None))
return {"status": resp[0].TransactionStatus, "response": resp[0]}
def void(self, identification, options=None):
if not options:
options = {}
# Requires the TransactionID to be passed as 'identification'
resp = self.fps_connection.cancel(identification,
options.get("description", None))
return {"status": resp[0].TransactionStatus, "response": resp[0]}
def get_urls(self):
urlpatterns = patterns('',
url(r'^fps-notify-handler/$', self.fps_ipn_handler, name="fps_ipn_handler"),
url(r'^fps-return-url/$', self.fps_return_url, name="fps_return_url"),
)
return urlpatterns
@csrf_exempt_m
@require_POST_m
def fps_ipn_handler(self, request):
uri = request.build_absolute_uri()
parsed_url = urlparse.urlparse(uri)
resp = self.fps_connection.verify_signature("%s://%s%s" %(parsed_url.scheme,
parsed_url.netloc,
parsed_url.path),
request.raw_post_data)
if not resp[0].VerificationStatus == "Success":
return HttpResponseForbidden()
data = dict(map(lambda x: x.split("="), request.raw_post_data.split("&")))
for (key, val) in data.iteritems():
data[key] = urllib.unquote_plus(val)
if AmazonFPSResponse.objects.filter(transactionId=data["transactionId"]).count():
resp = AmazonFPSResponse.objects.get(transactionId=data["transactionId"])
else:
resp = AmazonFPSResponse()
for (key, val) in data.iteritems():
attr_exists = hasattr(resp, key)
if attr_exists and not callable(getattr(resp, key, None)):
if key == "transactionDate":
val = datetime.datetime(*time.localtime(float(val))[:6])
setattr(resp, key, val)
resp.save()
if resp.statusCode == "Success":
transaction_was_successful.send(sender=self.__class__,
type=data["operation"],
response=resp)
else:
if not "Pending" in resp.statusCode:
transaction_was_unsuccessful.send(sender=self.__class__,
type=data["operation"],
response=resp)
# Return a HttpResponse to prevent django from complaining
return HttpResponse(resp.statusCode)
def fps_return_url(self, request):
uri = request.build_absolute_uri()
parsed_url = urlparse.urlparse(uri)
resp = self.fps_connection.verify_signature("%s://%s%s" %(parsed_url.scheme,
parsed_url.netloc,
parsed_url.path),
parsed_url.query)
if not resp[0].VerificationStatus == "Success":
return HttpResponseForbidden()
return self.transaction(request)
def transaction(self, request):
"""Has to be overridden by the subclasses"""
raise NotImplementedError
class AmazonFpsIntegration(Integration):
"""
Fields required:
transactionAmount: Amount to be charged/authorized
paymentReason: Description of the transaction
paymentPage: Page to direct the user on completion/failure of transaction
"""
display_name = "Amazon Flexible Payment Service"
def __init__(self, options=None):
if not options:
options = {}
merchant_settings = getattr(settings, "MERCHANT_SETTINGS")
if not merchant_settings or not merchant_settings.get("amazon_fps"):
raise IntegrationNotConfigured(
"The '%s' integration is not correctly "
"configured." % self.display_name)
amazon_fps_settings = merchant_settings["amazon_fps"]
self.aws_access_key = options.get(
"aws_access_key", None) or amazon_fps_settings['AWS_ACCESS_KEY']
self.aws_secret_access_key = options.get(
"aws_secret_access_key",
None) or amazon_fps_settings['AWS_SECRET_ACCESS_KEY']
super(AmazonFpsIntegration, self).__init__(options=options)
self.fps_connection = FPSConnection(self.aws_access_key,
self.aws_secret_access_key,
**options)
@property
def service_url(self):
if self.test_mode:
return FPS_SANDBOX_API_ENDPOINT
return FPS_PROD_API_ENDPOINT
@property
def link_url(self):
tmp_fields = self.fields.copy()
tmp_fields.pop("aws_access_key", None)
tmp_fields.pop("aws_secret_access_key", None)
tmp_fields.pop("paymentPage", None)
return self.fps_connection.make_url(
tmp_fields.pop("returnURL"), tmp_fields.pop("paymentReason"),
tmp_fields.pop("pipelineName"),
str(tmp_fields.pop("transactionAmount")), **tmp_fields)
def purchase(self, amount, options=None):
if not options:
options = {}
tmp_options = options.copy()
permissible_options = [
"senderTokenId", "recipientTokenId", "chargeFeeTo",
"callerReference", "senderReference", "recipientReference",
"senderDescription", "recipientDescription", "callerDescription",
"metadata", "transactionDate", "reserve"
]
tmp_options["senderTokenId"] = options["tokenID"]
for key in options:
if key not in permissible_options:
tmp_options.pop(key)
resp = self.fps_connection.pay(
amount,
tmp_options.pop("senderTokenId"),
callerReference=tmp_options.pop("callerReference"),
**tmp_options)
return {"status": resp[0].TransactionStatus, "response": resp[0]}
def authorize(self, amount, options=None):
if not options:
options = {}
options["reserve"] = True
return self.purchase(amount, options)
def capture(self, amount, options=None):
if not options:
options = {}
assert "ReserveTransactionId" in options, "Expecting 'ReserveTransactionId' in options"
resp = self.fps_connection.settle(options["ReserveTransactionId"],
amount)
return {"status": resp[0].TransactionStatus, "response": resp[0]}
def credit(self, amount, options=None):
if not options:
options = {}
assert "CallerReference" in options, "Expecting 'CallerReference' in options"
assert "TransactionId" in options, "Expecting 'TransactionId' in options"
resp = self.fps_connection.refund(options["CallerReference"],
options["TransactionId"],
refundAmount=amount,
callerDescription=options.get(
"description", None))
return {"status": resp[0].TransactionStatus, "response": resp[0]}
def void(self, identification, options=None):
if not options:
options = {}
# Requires the TransactionID to be passed as 'identification'
resp = self.fps_connection.cancel(identification,
options.get("description", None))
return {"status": resp[0].TransactionStatus, "response": resp[0]}
def get_urls(self):
urlpatterns = patterns(
'',
url(r'^fps-notify-handler/$',
self.fps_ipn_handler,
name="fps_ipn_handler"),
url(r'^fps-return-url/$',
self.fps_return_url,
name="fps_return_url"),
)
return urlpatterns
@csrf_exempt_m
@require_POST_m
def fps_ipn_handler(self, request):
uri = request.build_absolute_uri()
parsed_url = urlparse.urlparse(uri)
resp = self.fps_connection.verify_signature(
"%s://%s%s" %
(parsed_url.scheme, parsed_url.netloc, parsed_url.path),
request.raw_post_data)
if not resp[0].VerificationStatus == "Success":
return HttpResponseForbidden()
data = dict(
map(lambda x: x.split("="), request.raw_post_data.split("&")))
for (key, val) in data.iteritems():
data[key] = urllib.unquote_plus(val)
if AmazonFPSResponse.objects.filter(
transactionId=data["transactionId"]).count():
resp = AmazonFPSResponse.objects.get(
transactionId=data["transactionId"])
else:
resp = AmazonFPSResponse()
for (key, val) in data.iteritems():
attr_exists = hasattr(resp, key)
if attr_exists and not callable(getattr(resp, key, None)):
if key == "transactionDate":
val = datetime.datetime(*time.localtime(float(val))[:6])
setattr(resp, key, val)
resp.save()
if resp.statusCode == "Success":
transaction_was_successful.send(sender=self.__class__,
type=data["operation"],
response=resp)
else:
if not "Pending" in resp.statusCode:
transaction_was_unsuccessful.send(sender=self.__class__,
type=data["operation"],
response=resp)
# Return a HttpResponse to prevent django from complaining
return HttpResponse(resp.statusCode)
def fps_return_url(self, request):
uri = request.build_absolute_uri()
parsed_url = urlparse.urlparse(uri)
resp = self.fps_connection.verify_signature(
"%s://%s%s" %
(parsed_url.scheme, parsed_url.netloc, parsed_url.path),
parsed_url.query)
if not resp[0].VerificationStatus == "Success":
return HttpResponseForbidden()
return self.transaction(request)
def transaction(self, request):
"""Has to be overridden by the subclasses"""
raise NotImplementedError
