1 package FS::ClientAPI::MyAccount;
6 use Digest::MD5 qw(md5_hex);
8 use Business::CreditCard;
10 use FS::CGI qw(small_custview); #doh
12 use FS::Record qw(qsearch qsearchs);
13 use FS::Msgcat qw(gettext);
14 use FS::ClientAPI_SessionCache;
21 use FS::cust_main_county;
24 use vars qw( @cust_main_editable_fields );
25 @cust_main_editable_fields = qw(
26 first last company address1 address2 city
27 county state zip country daytime night fax
28 ship_first ship_last ship_company ship_address1 ship_address2 ship_city
29 ship_state ship_zip ship_country ship_daytime ship_night ship_fax
33 use subs qw(_provision);
36 $cache ||= new FS::ClientAPI_SessionCache( {
37 'namespace' => 'FS::ClientAPI::MyAccount',
41 #false laziness w/FS::ClientAPI::passwd::passwd
45 my $svc_domain = qsearchs('svc_domain', { 'domain' => $p->{'domain'} } )
46 or return { error => 'Domain '. $p->{'domain'}. ' not found' };
48 my $svc_acct = qsearchs( 'svc_acct', { 'username' => $p->{'username'},
49 'domsvc' => $svc_domain->svcnum, }
51 return { error => 'User not found.' } unless $svc_acct;
53 my $conf = new FS::Conf;
54 my $pkg_svc = $svc_acct->cust_svc->pkg_svc;
55 return { error => 'Only primary user may log in.' }
56 if $conf->exists('selfservice_server-primary_only')
57 && ( ! $pkg_svc || $pkg_svc->primary_svc ne 'Y' );
59 return { error => 'Incorrect password.' }
60 unless $svc_acct->check_password($p->{'password'});
63 'svcnum' => $svc_acct->svcnum,
66 my $cust_pkg = $svc_acct->cust_svc->cust_pkg;
68 my $cust_main = $cust_pkg->cust_main;
69 $session->{'custnum'} = $cust_main->custnum;
74 $session_id = md5_hex(md5_hex(time(). {}. rand(). $$))
75 } until ( ! defined _cache->get($session_id) ); #just in case
77 _cache->set( $session_id, $session, '1 hour' );
79 return { 'error' => '',
80 'session_id' => $session_id,
86 if ( $p->{'session_id'} ) {
87 _cache->remove($p->{'session_id'});
88 return { 'error' => '' };
90 return { 'error' => "Can't resume session" }; #better error message
97 my($context, $session, $custnum) = _custoragent_session_custnum($p);
98 return { 'error' => $session } if $context eq 'error';
101 if ( $custnum ) { #customer record
103 my $search = { 'custnum' => $custnum };
104 $search->{'agentnum'} = $session->{'agentnum'} if $context eq 'agent';
105 my $cust_main = qsearchs('cust_main', $search )
106 or return { 'error' => "unknown custnum $custnum" };
108 $return{balance} = $cust_main->balance;
112 invnum => $_->invnum,
113 date => time2str("%b %o, %Y", $_->_date),
116 } $cust_main->open_cust_bill;
117 $return{open_invoices} = \@open;
119 my $conf = new FS::Conf;
120 $return{small_custview} =
121 small_custview( $cust_main, $conf->config('countrydefault') );
123 $return{name} = $cust_main->first. ' '. $cust_main->get('last');
125 for (@cust_main_editable_fields) {
126 $return{$_} = $cust_main->get($_);
129 if ( $cust_main->payby =~ /^(CARD|DCRD)$/ ) {
130 $return{payinfo} = $cust_main->payinfo_masked;
131 @return{'month', 'year'} = $cust_main->paydate_monthyear;
134 $return{'invoicing_list'} =
135 join(', ', grep { $_ !~ /^(POST|FAX)$/ } $cust_main->invoicing_list );
136 $return{'postal_invoicing'} =
137 0 < ( grep { $_ eq 'POST' } $cust_main->invoicing_list );
139 } elsif ( $session->{'svcnum'} ) { #no customer record
141 my $svc_acct = qsearchs('svc_acct', { 'svcnum' => $session->{'svcnum'} } )
142 or die "unknown svcnum";
143 $return{name} = $svc_acct->email;
147 return { 'error' => 'Expired session' }; #XXX redirect to login w/this err!
151 return { 'error' => '',
152 'custnum' => $custnum,
160 my $session = _cache->get($p->{'session_id'})
161 or return { 'error' => "Can't resume session" }; #better error message
163 my $custnum = $session->{'custnum'}
164 or return { 'error' => "no customer record" };
166 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
167 or return { 'error' => "unknown custnum $custnum" };
169 my $new = new FS::cust_main { $cust_main->hash };
170 $new->set( $_ => $p->{$_} )
171 foreach grep { exists $p->{$_} } @cust_main_editable_fields;
173 if ( $p->{'payby'} =~ /^(CARD|DCRD)$/ ) {
174 $new->paydate($p->{'year'}. '-'. $p->{'month'}. '-01');
175 if ( $new->payinfo eq $cust_main->payinfo_masked ) {
176 $new->payinfo($cust_main->payinfo);
178 $new->paycvv($p->{'paycvv'});
183 if ( exists $p->{'invoicing_list'} || exists $p->{'postal_invoicing'} ) {
184 #false laziness with httemplate/edit/process/cust_main.cgi
185 @invoicing_list = split( /\s*\,\s*/, $p->{'invoicing_list'} );
186 push @invoicing_list, 'POST' if $p->{'postal_invoicing'};
188 @invoicing_list = $cust_main->invoicing_list;
191 my $error = $new->replace($cust_main, \@invoicing_list);
192 return { 'error' => $error } if $error;
195 return { 'error' => '' };
200 my $session = _cache->get($p->{'session_id'})
201 or return { 'error' => "Can't resume session" }; #better error message
207 my $conf = new FS::Conf;
208 my %states = map { $_->state => 1 }
209 qsearch('cust_main_county', {
210 'country' => $conf->config('countrydefault') || 'US'
213 use vars qw($payment_info); #cache for performance
216 #list all counties/states/countries
217 'cust_main_county' =>
218 [ map { $_->hashref } qsearch('cust_main_county', {}) ],
220 #shortcut for one-country folks
222 [ sort { $a cmp $b } keys %states ],
225 'VISA' => 'VISA card',
226 'MasterCard' => 'MasterCard',
227 'Discover' => 'Discover card',
228 'American Express' => 'American Express card',
237 my %return = %$payment_info;
239 my $custnum = $session->{'custnum'};
241 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
242 or return { 'error' => "unknown custnum $custnum" };
244 $return{balance} = $cust_main->balance;
246 $return{payname} = $cust_main->payname
247 || ( $cust_main->first. ' '. $cust_main->get('last') );
249 $return{$_} = $cust_main->get($_) for qw(address1 address2 city state zip);
251 $return{payby} = $cust_main->payby;
253 if ( $cust_main->payby =~ /^(CARD|DCRD)$/ ) {
254 #warn $return{card_type} = cardtype($cust_main->payinfo);
255 $return{payinfo} = $cust_main->payinfo;
257 @return{'month', 'year'} = $cust_main->paydate_monthyear;
261 #doubleclick protection
263 $return{paybatch} = "webui-MyAccount-$_date-$$-". rand() * 2**32;
265 return { 'error' => '',
271 #some false laziness with httemplate/process/payment.cgi - look there for
272 #ACH and CVV support stuff
273 sub process_payment {
277 my $session = _cache->get($p->{'session_id'})
278 or return { 'error' => "Can't resume session" }; #better error message
282 my $custnum = $session->{'custnum'};
284 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
285 or return { 'error' => "unknown custnum $custnum" };
287 $p->{'payname'} =~ /^([\w \,\.\-\']+)$/
288 or return { 'error' => gettext('illegal_name'). " payname: ". $p->{'payname'} };
291 $p->{'paybatch'} =~ /^([\w \!\@\#\$\%\&\(\)\-\+\;\:\'\"\,\.\?\/\=]*)$/
292 or return { 'error' => gettext('illegal_text'). " paybatch: ". $p->{'paybatch'} };
297 #if ( $payby eq 'CHEK' ) {
299 # $p->{'payinfo1'} =~ /^(\d+)$/
300 # or return { 'error' => "illegal account number ". $p->{'payinfo1'} };
302 # $p->{'payinfo2'} =~ /^(\d+)$/
303 # or return { 'error' => "illegal ABA/routing number ". $p->{'payinfo2'} };
305 # $payinfo = $payinfo1. '@'. $payinfo2;
307 #} elsif ( $payby eq 'CARD' ) {
309 $payinfo = $p->{'payinfo'};
311 $payinfo =~ /^(\d{13,16})$/
312 or return { 'error' => gettext('invalid_card') }; # . ": ". $self->payinfo
315 or return { 'error' => gettext('invalid_card') }; # . ": ". $self->payinfo
316 return { 'error' => gettext('unknown_card_type') }
317 if cardtype($payinfo) eq "Unknown";
319 if ( defined $cust_main->dbdef_table->column('paycvv') ) {
320 if ( length($p->{'paycvv'} ) ) {
321 if ( cardtype($payinfo) eq 'American Express card' ) {
322 $p->{'paycvv'} =~ /^(\d{4})$/
323 or return { 'error' => "CVV2 (CID) for American Express cards is four digits." };
326 $p->{'paycvv'} =~ /^(\d{3})$/
327 or return { 'error' => "CVV2 (CVC2/CID) is three digits." };
334 # die "unknown payby $payby";
337 my $error = $cust_main->realtime_bop( 'CC', $p->{'amount'},
339 'payinfo' => $payinfo,
340 'paydate' => $p->{'year'}. '-'. $p->{'month'}. '-01',
341 'payname' => $payname,
342 'paybatch' => $paybatch,
344 map { $_ => $p->{$_} } qw( address1 address2 city state zip )
346 return { 'error' => $error } if $error;
348 $cust_main->apply_payments;
350 if ( $p->{'save'} ) {
351 my $new = new FS::cust_main { $cust_main->hash };
352 $new->set( $_ => $p->{$_} )
353 foreach qw( payname address1 address2 city state zip payinfo );
354 $new->set( 'paydate' => $p->{'year'}. '-'. $p->{'month'}. '-01' );
355 $new->set( 'payby' => $p->{'auto'} ? 'CARD' : 'DCRD' );
356 my $error = $new->replace($cust_main);
357 return { 'error' => $error } if $error;
361 return { 'error' => '' };
369 my $session = _cache->get($p->{'session_id'})
370 or return { 'error' => "Can't resume session" }; #better error message
374 my $custnum = $session->{'custnum'};
376 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
377 or return { 'error' => "unknown custnum $custnum" };
379 my( $amount, $seconds ) = ( 0, 0 );
380 my $error = $cust_main->recharge_prepay( $p->{'prepaid_cardnum'},
385 return { 'error' => $error } if $error;
387 return { 'error' => '',
389 'seconds' => $seconds,
390 'duration' => duration_exact($seconds),
397 my $session = _cache->get($p->{'session_id'})
398 or return { 'error' => "Can't resume session" }; #better error message
400 my $custnum = $session->{'custnum'};
402 my $invnum = $p->{'invnum'};
404 my $cust_bill = qsearchs('cust_bill', { 'invnum' => $invnum,
405 'custnum' => $custnum } )
406 or return { 'error' => "Can't find invnum" };
410 return { 'error' => '',
412 'invoice_text' => join('', $cust_bill->print_text ),
419 my $session = _cache->get($p->{'session_id'})
420 or return { 'error' => "Can't resume session" }; #better error message
422 my $custnum = $session->{'custnum'};
424 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
425 or return { 'error' => "unknown custnum $custnum" };
427 my @cust_bill = $cust_main->cust_bill;
429 return { 'error' => '',
430 'invoices' => [ map { { 'invnum' => $_->invnum,
431 '_date' => $_->_date,
440 my $session = _cache->get($p->{'session_id'})
441 or return { 'error' => "Can't resume session" }; #better error message
443 my $custnum = $session->{'custnum'};
445 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
446 or return { 'error' => "unknown custnum $custnum" };
448 my @errors = $cust_main->cancel( 'quiet'=>1 );
450 my $error = scalar(@errors) ? join(' / ', @errors) : '';
452 return { 'error' => $error };
459 my($context, $session, $custnum) = _custoragent_session_custnum($p);
460 return { 'error' => $session } if $context eq 'error';
462 my $search = { 'custnum' => $custnum };
463 $search->{'agentnum'} = $session->{'agentnum'} if $context eq 'agent';
464 my $cust_main = qsearchs('cust_main', $search )
465 or return { 'error' => "unknown custnum $custnum" };
467 #return { 'cust_pkg' => [ map { $_->hashref } $cust_main->ncancelled_pkgs ] };
469 my $conf = new FS::Conf;
471 { 'svcnum' => $session->{'svcnum'},
472 'custnum' => $custnum,
473 'cust_pkg' => [ map {
477 [ map $_->hashref, $_->available_part_svc ],
479 [ map { my $ref = { $_->hash,
480 label => [ $_->label ],
482 $ref->{_password} = $_->svc_x->_password
483 if $context eq 'agent'
484 && $conf->exists('agent-showpasswords')
485 && $_->part_svc->svcdb eq 'svc_acct';
490 } $cust_main->ncancelled_pkgs
493 small_custview( $cust_main, $conf->config('countrydefault') ),
501 my($context, $session, $custnum) = _custoragent_session_custnum($p);
502 return { 'error' => $session } if $context eq 'error';
504 my $search = { 'custnum' => $custnum };
505 $search->{'agentnum'} = $session->{'agentnum'} if $context eq 'agent';
506 my $cust_main = qsearchs('cust_main', $search )
507 or return { 'error' => "unknown custnum $custnum" };
509 #false laziness w/ClientAPI/Signup.pm
511 my $cust_pkg = new FS::cust_pkg ( {
512 'custnum' => $custnum,
513 'pkgpart' => $p->{'pkgpart'},
515 my $error = $cust_pkg->check;
516 return { 'error' => $error } if $error;
519 unless ( $p->{'svcpart'} eq 'none' ) {
523 if ( $p->{'svcpart'} =~ /^(\d+)$/ ) {
525 my $part_svc = qsearchs('part_svc', { 'svcpart' => $svcpart } );
526 return { 'error' => "Unknown svcpart $svcpart" } unless $part_svc;
527 $svcdb = $part_svc->svcdb;
531 $svcpart ||= $cust_pkg->part_pkg->svcpart($svcdb);
534 'svc_acct' => [ qw( username _password sec_phrase popnum ) ],
535 'svc_domain' => [ qw( domain ) ],
536 'svc_external' => [ qw( id title ) ],
539 my $svc_x = "FS::$svcdb"->new( {
540 'svcpart' => $svcpart,
541 map { $_ => $p->{$_} } @{$fields{$svcdb}}
544 if ( $svcdb eq 'svc_acct' ) {
547 while ( length($p->{"snarf_machine$snarfnum"}) ) {
548 my $acct_snarf = new FS::acct_snarf ( {
549 'machine' => $p->{"snarf_machine$snarfnum"},
550 'protocol' => $p->{"snarf_protocol$snarfnum"},
551 'username' => $p->{"snarf_username$snarfnum"},
552 '_password' => $p->{"snarf_password$snarfnum"},
555 push @acct_snarf, $acct_snarf;
557 $svc_x->child_objects( \@acct_snarf );
560 my $y = $svc_x->setdefault; # arguably should be in new method
561 return { 'error' => $y } if $y && !ref($y);
563 $error = $svc_x->check;
564 return { 'error' => $error } if $error;
571 tie my %hash, 'Tie::RefHash';
572 %hash = ( $cust_pkg => \@svc );
574 $error = $cust_main->order_pkgs( \%hash, '', 'noexport' => 1 );
575 return { 'error' => $error } if $error;
577 my $conf = new FS::Conf;
578 if ( $conf->exists('signup_server-realtime') ) {
580 my $old_balance = $cust_main->balance;
582 my $bill_error = $cust_main->bill;
583 $cust_main->apply_payments;
584 $cust_main->apply_credits;
585 $bill_error = $cust_main->collect;
587 if ( $cust_main->balance > $old_balance
588 && $cust_main->balance > 0
589 && $cust_main->payby !~ /^(BILL|DCRD|DCHK)$/ ) {
590 #this makes sense. credit is "un-doing" the invoice
591 $cust_main->credit( sprintf("%.2f", $cust_main->balance - $old_balance ),
592 'self-service decline' );
593 $cust_main->apply_credits( 'order' => 'newest' );
595 $cust_pkg->cancel('quiet'=>1);
596 return { 'error' => '_decline', 'bill_error' => $bill_error };
605 return { error => '', pkgnum => $cust_pkg->pkgnum };
611 my $session = _cache->get($p->{'session_id'})
612 or return { 'error' => "Can't resume session" }; #better error message
614 my $custnum = $session->{'custnum'};
616 my $cust_main = qsearchs('cust_main', { 'custnum' => $custnum } )
617 or return { 'error' => "unknown custnum $custnum" };
619 my $pkgnum = $p->{'pkgnum'};
621 my $cust_pkg = qsearchs('cust_pkg', { 'custnum' => $custnum,
622 'pkgnum' => $pkgnum, } )
623 or return { 'error' => "unknown pkgnum $pkgnum" };
625 my $error = $cust_pkg->cancel( 'quiet'=>1 );
626 return { 'error' => $error };
633 return { 'error' => gettext('passwords_dont_match') }
634 if $p->{'_password'} ne $p->{'_password2'};
635 return { 'error' => gettext('empty_password') }
636 unless length($p->{'_password'});
638 _provision( 'FS::svc_acct',
639 [qw(username _password)],
640 [qw(username _password)],
646 sub provision_external {
648 #_provision( 'FS::svc_external', [qw(id title)], [qw(id title)], $p, @_ );
649 _provision( 'FS::svc_external',
658 my( $class, $fields, $return_fields, $p ) = splice(@_, 0, 4);
660 my($context, $session, $custnum) = _custoragent_session_custnum($p);
661 return { 'error' => $session } if $context eq 'error';
663 my $search = { 'custnum' => $custnum };
664 $search->{'agentnum'} = $session->{'agentnum'} if $context eq 'agent';
665 my $cust_main = qsearchs('cust_main', $search )
666 or return { 'error' => "unknown custnum $custnum" };
668 my $pkgnum = $p->{'pkgnum'};
670 my $cust_pkg = qsearchs('cust_pkg', { 'custnum' => $custnum,
673 or return { 'error' => "unknown pkgnum $pkgnum" };
675 my $part_svc = qsearchs('part_svc', { 'svcpart' => $p->{'svcpart'} } )
676 or return { 'error' => "unknown svcpart $p->{'svcpart'}" };
678 my $svc_x = $class->new( {
679 'pkgnum' => $p->{'pkgnum'},
680 'svcpart' => $p->{'svcpart'},
681 map { $_ => $p->{$_} } @$fields
683 my $error = $svc_x->insert;
684 $svc_x = qsearchs($svc_x->table, { 'svcnum' => $svc_x->svcnum })
687 return { 'svc' => $part_svc->svc,
689 map { $_ => $svc_x->get($_) } @$return_fields
697 my($context, $session, $custnum) = _custoragent_session_custnum($p);
698 return { 'error' => $session } if $context eq 'error';
700 my $search = { 'custnum' => $custnum };
701 $search->{'agentnum'} = $session->{'agentnum'} if $context eq 'agent';
702 my $cust_main = qsearchs('cust_main', $search )
703 or return { 'error' => "unknown custnum $custnum" };
705 my $pkgnum = $p->{'pkgnum'};
707 my $cust_pkg = qsearchs('cust_pkg', { 'custnum' => $custnum,
710 or return { 'error' => "unknown pkgnum $pkgnum" };
712 my $svcpart = $p->{'svcpart'};
714 my $pkg_svc = qsearchs('pkg_svc', { 'pkgpart' => $cust_pkg->pkgpart,
715 'svcpart' => $svcpart, } )
716 or return { 'error' => "unknown svcpart $svcpart for pkgnum $pkgnum" };
717 my $part_svc = $pkg_svc->part_svc;
719 my $conf = new FS::Conf;
722 'svc' => $part_svc->svc,
723 'svcdb' => $part_svc->svcdb,
725 'svcpart' => $svcpart,
726 'custnum' => $custnum,
728 'security_phrase' => 0, #XXX !
729 'svc_acct_pop' => [], #XXX !
731 'init_popstate' => '',
736 small_custview( $cust_main, $conf->config('countrydefault') ),
742 sub unprovision_svc {
745 my($context, $session, $custnum) = _custoragent_session_custnum($p);
746 return { 'error' => $session } if $context eq 'error';
748 my $search = { 'custnum' => $custnum };
749 $search->{'agentnum'} = $session->{'agentnum'} if $context eq 'agent';
750 my $cust_main = qsearchs('cust_main', $search )
751 or return { 'error' => "unknown custnum $custnum" };
753 my $svcnum = $p->{'svcnum'};
755 my $cust_svc = qsearchs('cust_svc', { 'svcnum' => $svcnum, } )
756 or return { 'error' => "unknown svcnum $svcnum" };
758 return { 'error' => "Service $svcnum does not belong to customer $custnum" }
759 unless $cust_svc->cust_pkg->custnum == $custnum;
761 my $conf = new FS::Conf;
763 return { 'svc' => $cust_svc->part_svc->svc,
764 'error' => $cust_svc->cancel,
766 small_custview( $cust_main, $conf->config('countrydefault') ),
773 sub _custoragent_session_custnum {
776 my($context, $session, $custnum);
777 if ( $p->{'session_id'} ) {
779 $context = 'customer';
780 $session = _cache->get($p->{'session_id'})
781 or return { 'error' => "Can't resume session" }; #better error message
782 $custnum = $session->{'custnum'};
784 } elsif ( $p->{'agent_session_id'} ) {
787 my $agent_cache = new FS::ClientAPI_SessionCache( {
788 'namespace' => 'FS::ClientAPI::Agent',
790 $session = $agent_cache->get($p->{'agent_session_id'})
791 or return { 'error' => "Can't resume session" }; #better error message
792 $custnum = $p->{'custnum'};
795 return { 'error' => "Can't resume session" }; #better error message
798 ($context, $session, $custnum);