alroyso
/
neiyou_user_web


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134
							<?php


namespace App\Http\Controllers\Gateway;


use App\Models\Payment;
use Auth;
use Illuminate\Http\Request;
use Response;

class BitpayX extends AbstractPayment {
	private $bitpayGatewayUri = 'https://api.mugglepay.com/v1/';

	/**
	 * @param  Request  $request
	 *
	 * @return mixed
	 */
	public function purchase(Request $request) {
		$payment = new Payment();
		$payment->trade_no = self::generateGuid();
		$payment->user_id = Auth::id();
		$payment->oid = $request->input('oid');
		$payment->amount = $request->input('amount');
		$payment->save();

		$data = [
			'merchant_order_id' => $payment->trade_no,
			'price_amount'      => (float) $request->input('amount'),
			'price_currency'    => 'CNY',
			'pay_currency'      => $request->input('type') == 1? 'ALIPAY' : 'WECHAT',
			'title'             => '支付单号：'.$payment->trade_no,
			'description'       => parent::$systemConfig['subject_name']?: parent::$systemConfig['website_name'],
			'callback_url'      => (parent::$systemConfig['website_callback_url']?: parent::$systemConfig['website_url']).'/callback/notify?method=bitpayx',
			'success_url'       => parent::$systemConfig['website_url'].'/invoices',
			'cancel_url'        => parent::$systemConfig['website_url'],
			'token'             => $this->sign($this->prepareSignId($payment->trade_no)),

		];

		$result = json_decode($this->mprequest($data), true);


		if($result['status'] === 200 || $result['status'] === 201){
			$result['payment_url'] .= '&lang=zh';
			Payment::whereId($payment->id)->update(['url' => $result['payment_url']]);

			return Response::json([
				'status'  => 'success',
				'url'     => $result['payment_url'] .= '&lang=zh',
				'message' => '创建订单成功!'
			]);
		}

		return Response::json(['status' => 'fail', 'data' => $result, 'message' => '创建订单失败!']);
	}

	private function sign($data) {
		return strtolower(md5(md5($data).parent::$systemConfig['bitpay_secret']));
	}

	private function prepareSignId($tradeno) {
		$data_sign = [
			'merchant_order_id' => $tradeno,
			'secret'            => parent::$systemConfig['bitpay_secret'],
			'type'              => 'FIAT',
		];
		ksort($data_sign);

		return http_build_query($data_sign);
	}

	private function mprequest($data, $type = 'pay') {
		$headers = ['content-type: application/json', 'token: '.parent::$systemConfig['bitpay_secret']];
		$curl = curl_init();
		if($type === 'pay'){
			$this->bitpayGatewayUri .= 'orders';
			curl_setopt($curl, CURLOPT_URL, $this->bitpayGatewayUri);
			curl_setopt($curl, CURLOPT_POST, 1);
			$data_string = json_encode($data);
			curl_setopt($curl, CURLOPT_POSTFIELDS, $data_string);
		}elseif($type === 'query'){
			$this->bitpayGatewayUri .= 'orders/merchant_order_id/status?id='.$data['merchant_order_id'];
			curl_setopt($curl, CURLOPT_URL, $this->bitpayGatewayUri);
			curl_setopt($curl, CURLOPT_HTTPGET, 1);
		}
		curl_setopt($curl, CURLOPT_HTTPHEADER, $headers);
		curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
		curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
		curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);
		$data = curl_exec($curl);
		curl_close($curl);

		return $data;
	}

	public function notify(Request $request) {
		$inputString = file_get_contents('php://input', 'r');
		$inputStripped = str_replace(["\r", "\n", "\t", "\v"], '', $inputString);
		$inputJSON = json_decode($inputStripped, true); //convert JSON into array
		$data = [];
		if($inputJSON !== null){
			$data = [
				'status'            => $inputJSON['status'],
				'order_id'          => $inputJSON['order_id'],
				'merchant_order_id' => $inputJSON['merchant_order_id'],
				'price_amount'      => $inputJSON['price_amount'],
				'price_currency'    => $inputJSON['price_currency'],
				'created_at_t'      => $inputJSON['created_at_t'],
			];
		}
		// 准备待签名数据
		$str_to_sign = $this->prepareSignId($inputJSON['merchant_order_id']);
		$resultVerify = $this->verify($str_to_sign, $inputJSON['token']);
		$isPaid = $data !== null && $data['status'] !== null && $data['status'] === 'PAID';

		if($resultVerify && $isPaid){
			$this->postPayment($inputJSON['merchant_order_id'], 'BitPayX');
			$return['status'] = 200;
			echo json_encode($return);
		}else{
			$return['status'] = 400;
			echo json_encode($return);
		}
		exit();
	}

	private function verify($data, $signature) {
		$mySign = $this->sign($data);

		return $mySign === $signature;
	}
}