bornhack-website/shop/views.py

import hashlib

from django.http import HttpResponseRedirect, Http404
from django.views.generic import CreateView, TemplateView, ListView, DetailView, View, FormView
from django.core.urlresolvers import reverse_lazy
from django.conf import settings
from django.contrib.auth.mixins import LoginRequiredMixin
from django.http import HttpResponse
from django.contrib import messages

from .models import Order, Product, EpayCallback, EpayPayment
from .forms import CheckoutForm


class ShopIndexView(ListView):
    model = Product
    template_name = "shop_index.html"


class ProductDetailView(LoginRequiredMixin, DetailView):
    model = Product
    template_name = 'product_detail.html'
    context_object_name = 'product'


class OrderDetailView(LoginRequiredMixin, DetailView):
    model = Product
    template_name = 'order_detail.html'
    context_object_name = 'order'


class CheckoutView(LoginRequiredMixin, FormView):
    """
    Shows a summary of all products contained in an order, 
    total price, VAT info, and a button to finalize order and go to payment
    """
    model = Order
    template_name = 'checkout.html'
    context_object_name = 'order'

    def get(self, request, *args, **kwargs):
        if self.get_object().user != request.user:
            raise Http404("Order not found")

        if self.get_object().paid:
            messages.error('This order is already paid for!')
            return HttpResponseRedirect('shop:order_detail')

        if not self.get_object().products:
            messages.error('This order contains no products!')
            return HttpResponseRedirect('shop:order_detail')

        return self.render_to_response(self.get_context_data())

    def form_valid(self, form):
        ### mark order as finalizedredirect user to payment
        form.instance.finalized=True

        ### set payment_method based on submit button used
        if 'credit_card' in form.data:
            form.instance.payment_method=='credit_card'
        elif 'blockchain' in form.data:
            form.instance.payment_method=='blockchain'
        elif 'bank_transfer' in form.data:
            form.instance.payment_method=='bank_transfer'
        else:
            ### unknown submit button
            messages.error(request, 'Unknown submit button :(')
            return reverse('shop:checkout', kwargs={'orderid': self.get_object.id})

        return super(CheckoutView, self).form_valid(form)

    def get_success_url(self):
        if self.get_object.payment_method == 'credit_card':
            return reverse('shop:epay_form', kwargs={'orderid': self.get_object.id})
        elif self.get_object.payment_method == 'blockchain':
            return reverse('shop:coinify_pay', kwargs={'orderid': self.get_object.id})
        elif self.get_object.payment_method == 'bank_transfer':
            return reverse('shop:bank_transfer', kwargs={'orderid': self.get_object.id})
        else:
            ### unknown payment method
            messages.error(request, 'Unknown payment method :(')
            return reverse('shop:checkout', kwargs={'orderid': self.get_object.id})


class CoinifyRedirectView(TemplateView):
    template_name = 'coinify_redirect.html'
    
    def get_context_data(self, **kwargs):
        order = Order.objects.get(pk=kwargs.get('order_id'))
        context = super(CoinifyView, self).get_context_data(**kwargs)
        context['order'] = order
        
        coinifyapi = CoinifyAPI(settings.COINIFY_API_KEY, settings.COINIFY_API_SECRET)

        response = coinifyapi.invoice_create(
            amount,
            currency,
            plugin_name='BornHack 2016 webshop',
            plugin_version='1.0',
            description='BornHack 2016 order id #%s' % order.id,
            callback_url=reverse('shop:coinfy_callback', kwargs={'orderid': order.id}),
            return_url=reverse('shop:order_paid', kwargs={'orderid': order.id}),
        )

        if not response['success']:
            api_error = response['error']
            print "API error: %s (%s)" % (api_error['message'], api_error['code'] )

        invoice = response['data']
        ### change this to pass only needed data when we get that far
        context['invoice'] = invoice
        return context


# class EpayView(TemplateView):
#     template_name = 'tickets/epay_form.html'
#
#     def get_context_data(self, **kwargs):
#         ticket = Ticket.objects.get(pk=kwargs.get('ticket_id'))
#         accept_url = ticket.get_absolute_url()
#         amount = ticket.ticket_type.price * 100
#         order_id = str(ticket.pk)
#         description = str(ticket.user.pk)
#
#         hashstring = (
#             '{merchant_number}{description}11{amount}DKK'
#             '{order_id}{accept_url}{md5_secret}'
#         ).format(
#             merchant_number=settings.EPAY_MERCHANT_NUMBER,
#             description=description,
#             amount=str(amount),
#             order_id=str(order_id),
#             accept_url=accept_url,
#             md5_secret=settings.EPAY_MD5_SECRET,
#         )
#         epay_hash = hashlib.md5(hashstring).hexdigest()
#
#         context = super(EpayView, self).get_context_data(**kwargs)
#         context['merchant_number'] = settings.EPAY_MERCHANT_NUMBER
#         context['description'] = description
#         context['order_id'] = order_id
#         context['accept_url'] = accept_url
#         context['amount'] = amount
#         context['epay_hash'] = epay_hash
#         return context
#
#
# class EpayCallbackView(View):
#
#     def get(self, request, **kwargs):
#
#         callback = EpayCallback.objects.create(
#             payload=request.GET
#         )
#
#         if 'orderid' in request.GET:
#             ticket = Ticket.objects.get(pk=request.GET.get('order_id'))
#             query = dict(
#                 map(
#                     lambda x: tuple(x.split('=')),
#                     request.META['QUERY_STRING'].split('&')
#                 )
#             )
#
#             hashstring = (
#                 '{merchant_number}{description}11{amount}DKK'
#                 '{order_id}{accept_url}{md5_secret}'
#             ).format(
#                 merchant_number=query.get('merchantnumber'),
#                 description=query.get('description'),
#                 amount=query.get('amount'),
#                 order_id=query.get('orderid'),
#                 accept_url=query.get('accepturl'),
#                 md5_secret=settings.EPAY_MD5_SECRET,
#             )
#             epay_hash = hashlib.md5(hashstring).hexdigest()
#
#             if not epay_hash == request.GET['hash']:
#                 return HttpResponse(status=400)
#
#             EpayPayment.objects.create(
#                 ticket=ticket,
#                 callback=callback,
#                 txnid=request.GET['txnid'],
#             )
#         else:
#             return HttpResponse(status=400)
#
#         return HttpResponse('OK')
We don't only operate on tickets - renaming and refactoring accordingly 2016-05-10 20:20:01 +00:00			`import hashlib`

			`from django.http import HttpResponseRedirect, Http404`
more work on shop 2016-05-12 17:08:54 +00:00			`from django.views.generic import CreateView, TemplateView, ListView, DetailView, View, FormView`
We don't only operate on tickets - renaming and refactoring accordingly 2016-05-10 20:20:01 +00:00			`from django.core.urlresolvers import reverse_lazy`
			`from django.conf import settings`
			`from django.contrib.auth.mixins import LoginRequiredMixin`
			`from django.http import HttpResponse`
more work on shop 2016-05-12 17:08:54 +00:00			`from django.contrib import messages`
We don't only operate on tickets - renaming and refactoring accordingly 2016-05-10 20:20:01 +00:00
			`from .models import Order, Product, EpayCallback, EpayPayment`
more work on shop 2016-05-12 17:08:54 +00:00			`from .forms import CheckoutForm`
We don't only operate on tickets - renaming and refactoring accordingly 2016-05-10 20:20:01 +00:00

more work on shop 2016-05-12 17:08:54 +00:00			`class ShopIndexView(ListView):`
			`model = Product`
			`template_name = "shop_index.html"`
We don't only operate on tickets - renaming and refactoring accordingly 2016-05-10 20:20:01 +00:00

			`class ProductDetailView(LoginRequiredMixin, DetailView):`
			`model = Product`
more work on shop 2016-05-12 17:08:54 +00:00			`template_name = 'product_detail.html'`
We don't only operate on tickets - renaming and refactoring accordingly 2016-05-10 20:20:01 +00:00			`context_object_name = 'product'`


more work on shop 2016-05-12 17:08:54 +00:00			`class OrderDetailView(LoginRequiredMixin, DetailView):`
			`model = Product`
			`template_name = 'order_detail.html'`
a bit more work on still unfinished shop 2016-05-12 07:51:35 +00:00			`context_object_name = 'order'`


more work on shop 2016-05-12 17:08:54 +00:00			`class CheckoutView(LoginRequiredMixin, FormView):`
a bit more work on still unfinished shop 2016-05-12 07:51:35 +00:00			`"""`
more work on shop 2016-05-12 17:08:54 +00:00			`Shows a summary of all products contained in an order,`
			`total price, VAT info, and a button to finalize order and go to payment`
a bit more work on still unfinished shop 2016-05-12 07:51:35 +00:00			`"""`
more work on shop 2016-05-12 17:08:54 +00:00			`model = Order`
			`template_name = 'checkout.html'`
			`context_object_name = 'order'`
a bit more work on still unfinished shop 2016-05-12 07:51:35 +00:00
			`def get(self, request, args, *kwargs):`
self.get_object() not self.instance 2016-05-12 16:14:16 +00:00			`if self.get_object().user != request.user:`
a bit more work on still unfinished shop 2016-05-12 07:51:35 +00:00			`raise Http404("Order not found")`

self.get_object() not self.instance 2016-05-12 16:14:16 +00:00			`if self.get_object().paid:`
a bit more work on still unfinished shop 2016-05-12 07:51:35 +00:00			`messages.error('This order is already paid for!')`
			`return HttpResponseRedirect('shop:order_detail')`

self.get_object() not self.instance 2016-05-12 16:14:16 +00:00			`if not self.get_object().products:`
a bit more work on still unfinished shop 2016-05-12 07:51:35 +00:00			`messages.error('This order contains no products!')`
			`return HttpResponseRedirect('shop:order_detail')`

			`return self.render_to_response(self.get_context_data())`

more work on shop 2016-05-12 17:08:54 +00:00			`def form_valid(self, form):`
			`### mark order as finalizedredirect user to payment`
			`form.instance.finalized=True`

			`### set payment_method based on submit button used`
			`if 'credit_card' in form.data:`
			`form.instance.payment_method=='credit_card'`
			`elif 'blockchain' in form.data:`
			`form.instance.payment_method=='blockchain'`
			`elif 'bank_transfer' in form.data:`
			`form.instance.payment_method=='bank_transfer'`
			`else:`
			`### unknown submit button`
			`messages.error(request, 'Unknown submit button :(')`
			`return reverse('shop:checkout', kwargs={'orderid': self.get_object.id})`

			`return super(CheckoutView, self).form_valid(form)`

			`def get_success_url(self):`
			`if self.get_object.payment_method == 'credit_card':`
			`return reverse('shop:epay_form', kwargs={'orderid': self.get_object.id})`
			`elif self.get_object.payment_method == 'blockchain':`
			`return reverse('shop:coinify_pay', kwargs={'orderid': self.get_object.id})`
			`elif self.get_object.payment_method == 'bank_transfer':`
			`return reverse('shop:bank_transfer', kwargs={'orderid': self.get_object.id})`
			`else:`
			`### unknown payment method`
			`messages.error(request, 'Unknown payment method :(')`
			`return reverse('shop:checkout', kwargs={'orderid': self.get_object.id})`


			`class CoinifyRedirectView(TemplateView):`
			`template_name = 'coinify_redirect.html'`
a bit more work on still unfinished shop 2016-05-12 07:51:35 +00:00
			`def get_context_data(self, **kwargs):`
typofest 2016 2016-05-12 16:04:58 +00:00			`order = Order.objects.get(pk=kwargs.get('order_id'))`
a bit more work on still unfinished shop 2016-05-12 07:51:35 +00:00			`context = super(CoinifyView, self).get_context_data(**kwargs)`
			`context['order'] = order`

			`coinifyapi = CoinifyAPI(settings.COINIFY_API_KEY, settings.COINIFY_API_SECRET)`

			`response = coinifyapi.invoice_create(`
			`amount,`
			`currency,`
			`plugin_name='BornHack 2016 webshop',`
			`plugin_version='1.0',`
			`description='BornHack 2016 order id #%s' % order.id,`
			`callback_url=reverse('shop:coinfy_callback', kwargs={'orderid': order.id}),`
			`return_url=reverse('shop:order_paid', kwargs={'orderid': order.id}),`
			`)`

			`if not response['success']:`
			`api_error = response['error']`
			`print "API error: %s (%s)" % (api_error['message'], api_error['code'] )`

			`invoice = response['data']`
			`### change this to pass only needed data when we get that far`
			`context['invoice'] = invoice`
			`return context`


We don't only operate on tickets - renaming and refactoring accordingly 2016-05-10 20:20:01 +00:00			`# class EpayView(TemplateView):`
			`# template_name = 'tickets/epay_form.html'`
			`#`
			`# def get_context_data(self, **kwargs):`
			`# ticket = Ticket.objects.get(pk=kwargs.get('ticket_id'))`
			`# accept_url = ticket.get_absolute_url()`
			`# amount = ticket.ticket_type.price * 100`
			`# order_id = str(ticket.pk)`
			`# description = str(ticket.user.pk)`
			`#`
			`# hashstring = (`
			`# '{merchant_number}{description}11{amount}DKK'`
			`# '{order_id}{accept_url}{md5_secret}'`
			`# ).format(`
			`# merchant_number=settings.EPAY_MERCHANT_NUMBER,`
			`# description=description,`
			`# amount=str(amount),`
			`# order_id=str(order_id),`
			`# accept_url=accept_url,`
			`# md5_secret=settings.EPAY_MD5_SECRET,`
			`# )`
			`# epay_hash = hashlib.md5(hashstring).hexdigest()`
			`#`
			`# context = super(EpayView, self).get_context_data(**kwargs)`
			`# context['merchant_number'] = settings.EPAY_MERCHANT_NUMBER`
			`# context['description'] = description`
			`# context['order_id'] = order_id`
			`# context['accept_url'] = accept_url`
			`# context['amount'] = amount`
			`# context['epay_hash'] = epay_hash`
			`# return context`
			`#`
			`#`
			`# class EpayCallbackView(View):`
			`#`
			`# def get(self, request, **kwargs):`
			`#`
			`# callback = EpayCallback.objects.create(`
			`# payload=request.GET`
			`# )`
			`#`
			`# if 'orderid' in request.GET:`
			`# ticket = Ticket.objects.get(pk=request.GET.get('order_id'))`
			`# query = dict(`
			`# map(`
			`# lambda x: tuple(x.split('=')),`
			`# request.META['QUERY_STRING'].split('&')`
			`# )`
			`# )`
			`#`
			`# hashstring = (`
			`# '{merchant_number}{description}11{amount}DKK'`
			`# '{order_id}{accept_url}{md5_secret}'`
			`# ).format(`
			`# merchant_number=query.get('merchantnumber'),`
			`# description=query.get('description'),`
			`# amount=query.get('amount'),`
			`# order_id=query.get('orderid'),`
			`# accept_url=query.get('accepturl'),`
			`# md5_secret=settings.EPAY_MD5_SECRET,`
			`# )`
			`# epay_hash = hashlib.md5(hashstring).hexdigest()`
			`#`
			`# if not epay_hash == request.GET['hash']:`
			`# return HttpResponse(status=400)`
			`#`
			`# EpayPayment.objects.create(`
			`# ticket=ticket,`
			`# callback=callback,`
			`# txnid=request.GET['txnid'],`
			`# )`
			`# else:`
			`# return HttpResponse(status=400)`
			`#`
			`# return HttpResponse('OK')`