1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
|
<?php
/*
This file is part of GNU TALER.
Copyright (C) 2014, 2015, 2016 INRIA
TALER is free software; you can redistribute it and/or modify it under the
terms of the GNU Lesser General Public License as published by the Free Software
Foundation; either version 2.1, or (at your option) any later version.
TALER is distributed in the hope that it will be useful, but WITHOUT ANY
WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
You should have received a copy of the GNU Lesser General Public License along with
TALER; see the file COPYING. If not, If not, see <http://www.gnu.org/licenses/>
*/
include '../../copylib/util.php';
log_string("getting money");
// so we won't generate a response for the wrong receiver.
$receiver = get($_GET["receiver"]);
if (empty($receiver))
{
http_response_code(400);
echo json_encode(array(
"error" => "missing parameter",
"parameter" => "receiver"
));
return;
}
session_start();
$payments = &pull($_SESSION, "payments", array());
if (!isset($payments[$receiver]))
{
http_response_code(400);
echo json_encode(array(
"error" => "no payment session active"
));
return;
}
$post_body = file_get_contents('php://input');
$deposit_permission = json_decode ($post_body, true);
// Check if the receiver is actually *mentioned* in the contract
if ($payments[$receiver]['hc'] != $deposit_permission['H_contract']) {
$json = json_encode(
array(
"error" => "ill behaved wallet",
"status" => 400,
"detail" => "deposit permission mismatches with reconstructed contract"
)
);
echo $json;
die();
}
/* Craft the HTTP request, note that the backend
could be on an entirely different machine if
desired. */
// Backend is relative to the shop site.
$url = url_rel("backend/pay");
$req = new http\Client\Request("POST",
$url,
array("Content-Type" => "application/json"));
$req->getBody()->append (json_encode ($deposit_permission));
// Execute the HTTP request to the backend
$client = new http\Client;
$client->enqueue($req)->send();
// Fetch the response
$resp = $client->getResponse();
$status_code = $resp->getResponseCode();
// Our response code is the same we got from the backend:
http_response_code($status_code);
// Now generate our body
if ($status_code != 200)
{
$json = json_encode(
array(
"error" => "backend error",
"status" => $status_code,
"detail" => $resp->body->toString()));
echo $json;
die();
}
$payments = &pull($_SESSION, "payments", array());
$payments[$receiver]['is_payed'] = true;
?>
|