1 package FS::ClientAPI::MyAccount;
5 use Digest::MD5 qw(md5_hex);
7 use Business::CreditCard;
8 use Cache::SharedMemoryCache; #store in db?
9 use FS::CGI qw(small_custview); #doh
11 use FS::Record qw(qsearch qsearchs);
12 use FS::Msgcat qw(gettext);
17 use FS::cust_main_county;
20 use FS::ClientAPI; #hmm
21 FS::ClientAPI->register_handlers(
22 'MyAccount/login' => \&login,
23 'MyAccount/customer_info' => \&customer_info,
24 'MyAccount/edit_info' => \&edit_info,
25 'MyAccount/invoice' => \&invoice,
26 'MyAccount/cancel' => \&cancel,
27 'MyAccount/payment_info' => \&payment_info,
28 'MyAccount/process_payment' => \&process_payment,
29 'MyAccount/list_pkgs' => \&list_pkgs,
30 'MyAccount/order_pkg' => \&order_pkg,
31 'MyAccount/cancel_pkg' => \&cancel_pkg,
32 'MyAccount/charge' => \&charge,
35 use vars qw( @cust_main_editable_fields );
36 @cust_main_editable_fields = qw(
37 first last company address1 address2 city
38 county state zip country daytime night fax
39 ship_first ship_last ship_company ship_address1 ship_address2 ship_city
40 ship_state ship_zip ship_country ship_daytime ship_night ship_fax
45 my $cache = new Cache::SharedMemoryCache( {
46 'namespace' => 'FS::ClientAPI::MyAccount',
49 #false laziness w/FS::ClientAPI::passwd::passwd
53 my $svc_domain = qsearchs('svc_domain', { 'domain' => $p->{'domain'} } )
54 or return { error => 'Domain '. $p->{'domain'}. ' not found' };
56 my $svc_acct = qsearchs( 'svc_acct', { 'username' => $p->{'username'},
57 'domsvc' => $svc_domain->svcnum, }
59 return { error => 'User not found.' } unless $svc_acct;
60 return { error => 'Incorrect password.' }
61 unless $svc_acct->check_password($p->{'password'});
64 'svcnum' => $svc_acct->svcnum,
67 my $cust_pkg = $svc_acct->cust_svc->cust_pkg;
69 my $cust_main = $cust_pkg->cust_main;
70 $session->{'custnum'} = $cust_main->custnum;
75 $session_id = md5_hex(md5_hex(time(). {}. rand(). $$))
76 } until ( ! defined $cache->get($session_id) ); #just in case
78 $cache->set( $session_id, $session, '1 hour' );
80 return { 'error' => '',
81 'session_id' => $session_id,
87 my $session = $cache->get($p->{'session_id'})
88 or return { 'error' => "Can't resume session" }; #better error message
92 my $custnum = $session->{'custnum'};
94 if ( $custnum ) { #customer record
96 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
97 or return { 'error' => "unknown custnum $custnum" };
99 $return{balance} = $cust_main->balance;
103 invnum => $_->invnum,
104 date => time2str("%b %o, %Y", $_->_date),
107 } $cust_main->open_cust_bill;
108 $return{open_invoices} = \@open;
110 my $conf = new FS::Conf;
111 $return{small_custview} =
112 small_custview( $cust_main, $conf->config('defaultcountry') );
114 $return{name} = $cust_main->first. ' '. $cust_main->get('last');
116 for (@cust_main_editable_fields) {
117 $return{$_} = $cust_main->get($_);
120 if ( $cust_main->payby =~ /^(CARD|DCRD)$/ ) {
121 $return{payinfo} = $cust_main->payinfo_masked;
122 @return{'month', 'year'} = $cust_main->paydate_monthyear;
125 $return{'invoicing_list'} =
126 join(', ', grep { $_ ne 'POST' } $cust_main->invoicing_list );
127 $return{'postal_invoicing'} =
128 0 < ( grep { $_ eq 'POST' } $cust_main->invoicing_list );
130 } else { #no customer record
132 my $svc_acct = qsearchs('svc_acct', { 'svcnum' => $session->{'svcnum'} } )
133 or die "unknown svcnum";
134 $return{name} = $svc_acct->email;
138 return { 'error' => '',
139 'custnum' => $custnum,
147 my $session = $cache->get($p->{'session_id'})
148 or return { 'error' => "Can't resume session" }; #better error message
150 my $custnum = $session->{'custnum'}
151 or return { 'error' => "no customer record" };
153 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
154 or return { 'error' => "unknown custnum $custnum" };
156 my $new = new FS::cust_main { $cust_main->hash };
157 $new->set( $_ => $p->{$_} )
158 foreach grep { exists $p->{$_} } @cust_main_editable_fields;
160 if ( $p->{'payby'} =~ /^(CARD|DCRD)$/ ) {
161 $new->paydate($p->{'year'}. '-'. $p->{'month'}. '-01');
162 if ( $new->payinfo eq $cust_main->payinfo_masked ) {
163 $new->payinfo($cust_main->payinfo);
165 $new->paycvv($p->{'paycvv'});
170 if ( exists $p->{'invoicing_list'} || exists $p->{'postal_invoicing'} ) {
171 #false laziness with httemplate/edit/process/cust_main.cgi
172 @invoicing_list = split( /\s*\,\s*/, $p->{'invoicing_list'} );
173 push @invoicing_list, 'POST' if $p->{'postal_invoicing'};
175 @invoicing_list = $cust_main->invoicing_list;
178 my $error = $new->replace($cust_main, \@invoicing_list);
179 return { 'error' => $error } if $error;
182 return { 'error' => '' };
187 my $session = $cache->get($p->{'session_id'})
188 or return { 'error' => "Can't resume session" }; #better error message
192 my $custnum = $session->{'custnum'};
194 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
195 or return { 'error' => "unknown custnum $custnum" };
197 $return{balance} = $cust_main->balance;
199 $return{payname} = $cust_main->payname
200 || ( $cust_main->first. ' '. $cust_main->get('last') );
202 $return{$_} = $cust_main->get($_) for qw(address1 address2 city state zip);
204 $return{payby} = $cust_main->payby;
206 if ( $cust_main->payby =~ /^(CARD|DCRD)$/ ) {
207 #warn $return{card_type} = cardtype($cust_main->payinfo);
208 $return{payinfo} = $cust_main->payinfo;
210 @return{'month', 'year'} = $cust_main->paydate_monthyear;
214 #list all counties/states/countries
215 $return{'cust_main_county'} =
216 [ map { $_->hashref } qsearch('cust_main_county', {}) ],
218 #shortcut for one-country folks
219 my $conf = new FS::Conf;
220 my %states = map { $_->state => 1 }
221 qsearch('cust_main_county', {
222 'country' => $conf->config('defaultcountry') || 'US'
224 $return{'states'} = [ sort { $a cmp $b } keys %states ];
226 $return{card_types} = {
227 'VISA' => 'VISA card',
228 'MasterCard' => 'MasterCard',
229 'Discover' => 'Discover card',
230 'American Express' => 'American Express card',
234 $return{paybatch} = "webui-MyAccount-$_date-$$-". rand() * 2**32;
236 return { 'error' => '',
242 #some false laziness with httemplate/process/payment.cgi - look there for
243 #ACH and CVV support stuff
244 sub process_payment {
248 my $session = $cache->get($p->{'session_id'})
249 or return { 'error' => "Can't resume session" }; #better error message
253 my $custnum = $session->{'custnum'};
255 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
256 or return { 'error' => "unknown custnum $custnum" };
258 $p->{'payname'} =~ /^([\w \,\.\-\']+)$/
259 or return { 'error' => gettext('illegal_name'). " payname: ". $p->{'payname'} };
262 $p->{'paybatch'} =~ /^([\w \!\@\#\$\%\&\(\)\-\+\;\:\'\"\,\.\?\/\=]*)$/
263 or return { 'error' => gettext('illegal_text'). " paybatch: ". $p->{'paybatch'} };
268 #if ( $payby eq 'CHEK' ) {
270 # $p->{'payinfo1'} =~ /^(\d+)$/
271 # or return { 'error' => "illegal account number ". $p->{'payinfo1'} };
273 # $p->{'payinfo2'} =~ /^(\d+)$/
274 # or return { 'error' => "illegal ABA/routing number ". $p->{'payinfo2'} };
276 # $payinfo = $payinfo1. '@'. $payinfo2;
278 #} elsif ( $payby eq 'CARD' ) {
280 $payinfo = $p->{'payinfo'};
282 $payinfo =~ /^(\d{13,16})$/
283 or return { 'error' => gettext('invalid_card') }; # . ": ". $self->payinfo
286 or return { 'error' => gettext('invalid_card') }; # . ": ". $self->payinfo
287 return { 'error' => gettext('unknown_card_type') }
288 if cardtype($payinfo) eq "Unknown";
290 if ( defined $cust_main->dbdef_table->column('paycvv') ) {
291 if ( length($p->{'paycvv'} ) ) {
292 if ( cardtype($payinfo) eq 'American Express card' ) {
293 $p->{'paycvv'} =~ /^(\d{4})$/
294 or return { 'error' => "CVV2 (CID) for American Express cards is four digits." };
297 $p->{'paycvv'} =~ /^(\d{3})$/
298 or return { 'error' => "CVV2 (CVC2/CID) is three digits." };
305 # die "unknown payby $payby";
308 my $error = $cust_main->realtime_bop( 'CC', $p->{'amount'},
310 'payinfo' => $payinfo,
311 'paydate' => $p->{'year'}. '-'. $p->{'month'}. '-01',
312 'payname' => $payname,
313 'paybatch' => $paybatch,
315 map { $_ => $p->{$_} } qw( address1 address2 city state zip )
317 return { 'error' => $error } if $error;
319 $cust_main->apply_payments;
321 if ( $p->{'save'} ) {
322 my $new = new FS::cust_main { $cust_main->hash };
323 $new->set( $_ => $p->{$_} )
324 foreach qw( payname address1 address2 city state zip payinfo );
325 $new->set( 'paydate' => $p->{'year'}. '-'. $p->{'month'}. '-01' );
326 $new->set( 'payby' => $p->{'auto'} ? 'CARD' : 'DCRD' );
327 my $error = $new->replace($cust_main);
328 return { 'error' => $error } if $error;
332 return { 'error' => '' };
338 my $session = $cache->get($p->{'session_id'})
339 or return { 'error' => "Can't resume session" }; #better error message
341 my $custnum = $session->{'custnum'};
343 my $invnum = $p->{'invnum'};
345 my $cust_bill = qsearchs('cust_bill', { 'invnum' => $invnum,
346 'custnum' => $custnum } )
347 or return { 'error' => "Can't find invnum" };
351 return { 'error' => '',
353 'invoice_text' => join('', $cust_bill->print_text ),
360 my $session = $cache->get($p->{'session_id'})
361 or return { 'error' => "Can't resume session" }; #better error message
363 my $custnum = $session->{'custnum'};
365 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
366 or return { 'error' => "unknown custnum $custnum" };
368 my @errors = $cust_main->cancel( 'quiet'=>1 );
370 my $error = scalar(@errors) ? join(' / ', @errors) : '';
372 return { 'error' => $error };
378 my $session = $cache->get($p->{'session_id'})
379 or return { 'error' => "Can't resume session" }; #better error message
381 my $custnum = $session->{'custnum'};
383 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
384 or return { 'error' => "unknown custnum $custnum" };
386 return { 'cust_pkg' => [ map { $_->hashref } $cust_main->ncancelled_pkgs ] };
392 my $session = $cache->get($p->{'session_id'})
393 or return { 'error' => "Can't resume session" }; #better error message
395 my $custnum = $session->{'custnum'};
397 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
398 or return { 'error' => "unknown custnum $custnum" };
400 #false laziness w/ClientAPI/Signup.pm
402 my $cust_pkg = new FS::cust_pkg ( {
403 'custnum' => $custnum,
404 'pkgpart' => $p->{'pkgpart'},
406 my $error = $cust_pkg->check;
407 return { 'error' => $error } if $error;
409 my $svc_acct = new FS::svc_acct ( {
410 'svcpart' => $p->{'svcpart'} || $cust_pkg->part_pkg->svcpart('svc_acct'),
411 map { $_ => $p->{$_} }
412 qw( username _password sec_phrase popnum ),
417 while ( length($p->{"snarf_machine$snarfnum"}) ) {
418 my $acct_snarf = new FS::acct_snarf ( {
419 'machine' => $p->{"snarf_machine$snarfnum"},
420 'protocol' => $p->{"snarf_protocol$snarfnum"},
421 'username' => $p->{"snarf_username$snarfnum"},
422 '_password' => $p->{"snarf_password$snarfnum"},
425 push @acct_snarf, $acct_snarf;
427 $svc_acct->child_objects( \@acct_snarf );
429 my $y = $svc_acct->setdefault; # arguably should be in new method
430 return { 'error' => $y } if $y && !ref($y);
432 $error = $svc_acct->check;
433 return { 'error' => $error } if $error;
436 tie my %hash, 'Tie::RefHash';
437 %hash = ( $cust_pkg => [ $svc_acct ] );
439 $error = $cust_main->order_pkgs( \%hash, '', 'noexport' => 1 );
440 return { 'error' => $error } if $error;
442 my $conf = new FS::Conf;
443 if ( $conf->exists('signup_server-realtime') ) {
445 my $old_balance = $cust_main->balance;
447 my $bill_error = $cust_main->bill;
448 $cust_main->apply_payments;
449 $cust_main->apply_credits;
450 $bill_error = $cust_main->collect;
452 if ( $cust_main->balance > $old_balance ) {
453 $cust_pkg->cancel('quiet'=>1);
454 return { 'error' => '_decline' };
463 return { error => '' };
469 my $session = $cache->get($p->{'session_id'})
470 or return { 'error' => "Can't resume session" }; #better error message
472 my $custnum = $session->{'custnum'};
474 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
475 or return { 'error' => "unknown custnum $custnum" };
477 my $pkgnum = $session->{'pkgnum'};
479 my $cust_pkg = qsearchs('cust_pkg', { 'custnum' => $custnum,
480 'pkgnum' => $pkgnum, } )
481 or return { 'error' => "unknown pkgnum $pkgnum" };
483 my $error = $cust_main->cancel( 'quiet'=>1 );
484 return { 'error' => $error };