forms - Send data to PayPal; submit with PHP -

-

this code:

<form action="" method="post"> <input class="payment_input" type="text" name="name" placeholder="name"> <input class="payment_input" type="text" name="address" placeholder="address"> <input class="payment_input" type="text" name="email" placeholder="e-mail"><br> <input class="payment_input" type="submit" name="submit_paypal" value="go paypal"> </form>  <?php $order_token = md5(uniqid($_post['name'], true));   if (isset($_post["submit_paypal"])) {  $statement = $pdo->prepare("insert customers (name, address, email, order_token) values (:name, :address, :email, :order_token)"); $statement->execute(array(':name' => $_post['name'], ':address' => $_post['address'], ':email' => $_post['email'], ':order_token' => $order_token));  echo " <form action=\"https://www.paypal.com/cgi-bin/webscr\" method=\"post\"> <input type=\"hidden\" name=\"cmd\" value=\"_xclick\"> <input type=\"hidden\" name=\"business\" value=\"test@icloud.com\">  <input type=\"hidden\" name=\"item_name\" value=\"ebook\"> <input type=\"hidden\" name=\"amount\" value=\"10\"> <input type=\"hidden\" name=\"return\" value=\"http://www.example.com/book.php?payment=success&ordertoken=".$order_token."\"> <input type=\"hidden\" name=\"cancel_return\" value=\"http://example.com/book.php?payment=canceled\"> <input type=\"submit\"> </form> "; } ?>

it woks follows: user gets form insert data (name, address, email). when user submits form 2 things should happen: user data stored im database random order_token. order_token needed identify user data when payment done. (when order_token e.g. "5dcb567fb34805d45d55218995df12f5", paypal return link (if payment successful) "http://www.example.com/book.php?payment=success&ordertoken=5dcb567fb34805d45d55218995df12f5").

but have 2 problems:

  1. how submit paypal form user submits order form on website without need make submit button user have click?

  2. how prevent user can manipulate paypal form? user change amount e.g. 10 1.

i hope has energy me because i'm working on since nights.

with of javascript, paypal form can automatically submitted.

the code:

<script type="text/javascript">     document.myform.submit(); </script>

to use need add name="myform"to paypal form.

also, not show paypal ipn system, suggest looking make sure set payment gateway properly.

in addition preventing user changing paypal form code, use of ipn stop this. after payment received, paypal contact php script (ipn) , able verify item's name, how paid ect.


Comments

Post a Comment

Popular posts from this blog

php - How to display all orders for a single product showing the most recent first? Woocommerce -

-
i have password protected page on frontend. on page, want display full list of purchases associated single woocommerce product id. option 1: i've looked through woocommerce docs , , found: wc_cli_order , list_( $args, $assoc_args ) function lists orders. presumably, orders can filtered product id [--=] filter orders based on order property. line item fields (numeric array, started index zero): line_items.0.product_id option 2: i found article , based on customer id. i've modified code based on guesses meta_key , meta_value. $customer_orders = get_posts( array( 'numberposts' => -1, 'meta_key' => '_product', 'meta_value' => get_product_id(), 'post_type' => wc_get_order_types(), 'post_status' => array_keys( wc_get_order_statuses() ), ) ); how display orders single product showing recent order first? here solution put based on these articles: http://www.w...
Read more

asp.net - How to correctly use QUERY_STRING in ISAPI rewrite? -

-
i'm having difficult time , hope guys can help. using helicon isapi rewrite version 3.1.0.104 on our iis server. edit http.conf file , have tried , still fail. this trying do: redirect url: https://www.domain.com/switch-by-version?version=2.8.5.2594 to: https://test.domain.com/load/load.aspx?tver=2.8.5.2594 the version number @ end source url change, , need target url have same version number @ end of url example above shows. i tried following not work: rewritecond %{query_string} ^version=(\d\d?)\.(\d\d?)\.(\d\d?)\.(.*)$ [nc] rewriterule ^/switch-by-version(.*)$ https://test.domain.com/load/load.aspx?tver=%1 [r=307,nc,l] any appreciated! thanks. if it's running in equivalent context of .htaccess , rule shouldn't start / . here's simpler version: rewritecond %{query_string} ^version=(\d+\.\d+\.\d+(?:\..+)?)$ [nc] rewriterule ^switch-by-version/?$ https://test.domain.com/load/load.aspx?tver=%1 [r=307,nc,l]
Read more

angularjs - How restrict admin panel using in backend laravel and admin panel on angular? -

-
https://scotch.io/tutorials/token-based-authentication-for-angularjs-and-laravel-apps following tutorials, try write authentication restrict admin panel, didn't understood how can that. this admin panel, admin panel don't want show , request database unauthenticated users. my laravel-routes route::get('/admin',function(){ return view('index'); }); route::get('/api/v1/employees/{id?}', 'employees@index'); route::get('/api/v1/users/{id?}', 'employees@users'); route::post('/api/v1/employees', 'employees@store'); route::post('/api/v1/employees/{id}', 'employees@update'); route::delete('/api/v1/employees/{id}', 'employees@destroy'); route::group(['prefix' => 'api'], function() { route::resource('authenticate', 'authenticatecontroller', ['only' => ['index']]); route::post('authenticate', 'authentic...
Read more