diff options
| author | Jonathan Prykop <jonathan@freeside.biz> | 2015-09-29 00:00:42 -0500 | 
|---|---|---|
| committer | Jonathan Prykop <jonathan@freeside.biz> | 2015-10-05 18:52:26 -0500 | 
| commit | 56a6c2354d5b02b89f48af3d5ddf78dd053ed01a (patch) | |
| tree | ac66284ea6d8a528a10d0f5aa2a285f6f854879d | |
| parent | a2dbfca9b10917eba6e8ec2231eb2cc764b886b2 (diff) | |
RT#38048 not storing credit card #s
| -rw-r--r-- | httemplate/misc/process/payment.cgi | 77 | 
1 files changed, 39 insertions, 38 deletions
| diff --git a/httemplate/misc/process/payment.cgi b/httemplate/misc/process/payment.cgi index 27b818660..d9299e5bd 100644 --- a/httemplate/misc/process/payment.cgi +++ b/httemplate/misc/process/payment.cgi @@ -135,6 +135,45 @@ $cgi->param('discount_term') =~ /^(\d*)$/    or errorpage("illegal discount_term");  my $discount_term = $1; +# save first, for proper tokenization later +if ( $cgi->param('save') ) { +  my $new = new FS::cust_main { $cust_main->hash }; +  if ( $payby eq 'CARD' ) {  +    $new->set( 'payby' => ( $cgi->param('auto') ? 'CARD' : 'DCRD' ) ); +  } elsif ( $payby eq 'CHEK' ) { +    $new->set( 'payby' => ( $cgi->param('auto') ? 'CHEK' : 'DCHK' ) ); +  } else { +    die "unknown payby $payby"; +  } +  $new->payinfo($payinfo); #to properly set paymask +  $new->set( 'paydate' => "$year-$month-01" ); +  $new->set( 'payname' => $payname ); + +  #false laziness w/FS:;cust_main::realtime_bop - check both to make sure +  # working correctly +  if ( $payby eq 'CARD' && +       grep { $_ eq cardtype($payinfo) } $conf->config('cvv-save') ) { +    $new->set( 'paycvv' => $paycvv ); +  } else { +    $new->set( 'paycvv' => ''); +  } + +  if ( $payby eq 'CARD' ) { +    my $bill_location = FS::cust_location->new; +    $bill_location->set( $_ => $cgi->param($_) ) +      foreach @{$payby2fields{$payby}}; +    $new->set('bill_location' => $bill_location); +    # will do nothing if the fields are all unchanged +  } else { +    $new->set( $_ => $cgi->param($_) ) foreach @{$payby2fields{$payby}}; +  } + +  my $error = $new->replace($cust_main); +  errorpage("error saving info, payment not processed: $error") +    if $error; +  $cust_main = $new; +} +  my $error = '';  my $paynum = '';  if ( $cgi->param('batch') ) { @@ -190,44 +229,6 @@ if ( $cgi->param('batch') ) {  } -if ( $cgi->param('save') ) { -  my $new = new FS::cust_main { $cust_main->hash }; -  if ( $payby eq 'CARD' ) {  -    $new->set( 'payby' => ( $cgi->param('auto') ? 'CARD' : 'DCRD' ) ); -  } elsif ( $payby eq 'CHEK' ) { -    $new->set( 'payby' => ( $cgi->param('auto') ? 'CHEK' : 'DCHK' ) ); -  } else { -    die "unknown payby $payby"; -  } -  $new->set( 'payinfo' => $cust_main->card_token || $payinfo ); -  $new->set( 'paydate' => "$year-$month-01" ); -  $new->set( 'payname' => $payname ); - -  #false laziness w/FS:;cust_main::realtime_bop - check both to make sure -  # working correctly -  if ( $payby eq 'CARD' && -       grep { $_ eq cardtype($payinfo) } $conf->config('cvv-save') ) { -    $new->set( 'paycvv' => $paycvv ); -  } else { -    $new->set( 'paycvv' => ''); -  } - -  if ( $payby eq 'CARD' ) { -    my $bill_location = FS::cust_location->new; -    $bill_location->set( $_ => $cgi->param($_) ) -      foreach @{$payby2fields{$payby}}; -    $new->set('bill_location' => $bill_location); -    # will do nothing if the fields are all unchanged -  } else { -    $new->set( $_ => $cgi->param($_) ) foreach @{$payby2fields{$payby}}; -  } - -  my $error = $new->replace($cust_main); -  errorpage("payment processed successfully, but error saving info: $error") -    if $error; -  $cust_main = $new; -} -  #success!  </%init> | 
