addons-server/apps/paypal/__init__.py

import contextlib
import socket
import urllib
import urllib2
import urlparse

from django.conf import settings
from django.utils.http import urlencode

import commonware.log
from statsd import statsd

from amo.helpers import absolutify
from amo.urlresolvers import reverse


class PaypalError(Exception):
    id = None


class AuthError(Exception):
    pass


errors = {'520003': AuthError}
paypal_log = commonware.log.getLogger('z.paypal')


def get_paykey(data):
    """
    Gets a paykey from Paypal. Need to pass in the following in data:
    slug: addon, will form urls for where user goes back to (required)
    email: who the money is going to (required)
    amount: the amount of money (required)
    ip: ip address of end user (required)
    uuid: contribution_uuid (required)
    memo: any nice message
    """
    complete = reverse('addons.paypal', args=[data['slug'], 'complete'])
    cancel = reverse('addons.paypal', args=[data['slug'], 'cancel'])
    uuid_qs = urllib.urlencode({'uuid': data['uuid']})

    paypal_data = {
        'actionType': 'PAY',
        'requestEnvelope.errorLanguage': 'US',
        'currencyCode': 'USD',
        'cancelUrl': absolutify('%s?%s' % (cancel, uuid_qs)),
        'returnUrl': absolutify('%s?%s' % (complete, uuid_qs)),
        'receiverList.receiver(0).email': data['email'],
        'receiverList.receiver(0).amount': data['amount'],
        'receiverList.receiver(0).invoiceID': 'mozilla-%s' % data['uuid'],
        'receiverList.receiver(0).primary': 'TRUE',
        'receiverList.receiver(0).paymentType': 'DIGITALGOODS',
        'trackingId': data['uuid'],
        'ipnNotificationUrl': absolutify(reverse('amo.paypal'))}

    if data.get('memo'):
        paypal_data['memo'] = data['memo']

    with statsd.timer('paypal.paykey.retrieval'):
        try:
            response = _call(settings.PAYPAL_PAY_URL, paypal_data,
                             ip=data['ip'])
        except AuthError, error:
             paypal_log.error('Authentication error: %s' % error)
             raise
    return response['payKey']


def check_refund_permission(token):
    """
    Asks PayPal whether the PayPal ID for this account has granted
    refund permission to us.
    """
    # This is set in settings_test so we don't start calling PayPal
    # by accident. Explicitly set this in your tests.
    if not settings.PAYPAL_PERMISSIONS_URL:
        return False
    try:
        with statsd.timer('paypal.permissions.refund'):
            r = _call(settings.PAYPAL_PERMISSIONS_URL + 'GetPermissions',
                      {'token': token})
    except PaypalError:
        return False
    # in the future we may ask for other permissions so let's just
    # make sure REFUND is one of them.
    return 'REFUND' in [v for (k, v) in r.iteritems()
                        if k.startswith('scope')]


def refund_permission_url(addon):
    """
    Send permissions request to PayPal for refund privileges on
    this addon's paypal account. Returns URL on PayPal site to visit.
    """
    # This is set in settings_test so we don't start calling PayPal
    # by accident. Explicitly set this in your tests.
    if not settings.PAYPAL_PERMISSIONS_URL:
        return ''
    with statsd.timer('paypal.permissions.url'):
        url = reverse('devhub.addons.acquire_refund_permission',
                      args=[addon.slug])
        r = _call(settings.PAYPAL_PERMISSIONS_URL + 'RequestPermissions',
                  {'scope': 'REFUND', 'callback': absolutify(url)})
    return (settings.PAYPAL_CGI_URL +
            '?cmd=_grant-permission&request_token=%s' % r['token'])


def get_permissions_token(request_token, verification_code):
    """
    Send request for permissions token, after user has granted the
    requested permissions via the PayPal page we redirected them to.
    """
    with statsd.timer('paypal.permissions.token'):
        r = _call(settings.PAYPAL_PERMISSIONS_URL + 'GetAccessToken',
                  {'token': request_token, 'verifier': verification_code})
    return r['token']


def _call(url, paypal_data, ip=None):
    request = urllib2.Request(url)

    if 'requestEnvelope.errorLanguage' not in paypal_data:
        paypal_data['requestEnvelope.errorLanguage'] = 'en_US'

    for key, value in [
            ('security-userid', settings.PAYPAL_EMBEDDED_AUTH['USER']),
            ('security-password', settings.PAYPAL_EMBEDDED_AUTH['PASSWORD']),
            ('security-signature', settings.PAYPAL_EMBEDDED_AUTH['SIGNATURE']),
            ('application-id', settings.PAYPAL_APP_ID),
            ('request-data-format', 'NV'),
            ('response-data-format', 'NV')]:
        request.add_header('X-PAYPAL-%s' % key.upper(), value)

    if ip:
        request.add_header('X-PAYPAL-DEVICE-IPADDRESS', ip)

    opener = urllib2.build_opener()
    try:
        with socket_timeout(10):
            feeddata = opener.open(request, urlencode(paypal_data)).read()
    except Exception, error:
        paypal_log.error('HTTP Error: %s' % error)
        raise

    response = dict(urlparse.parse_qsl(feeddata))

    if 'error(0).errorId' in response:
        error = errors.get(response['error(0).errorId'], PaypalError)
        paypal_log.error('Paypal Error: %s' % response['error(0).message'])
        raise error(response['error(0).message'])

    return response


def check_paypal_id(name):
    """
    Use the button API to check if name is a valid Paypal id.

    Returns bool(valid), str(msg).  msg will be None if there wasn't an error.
    """
    d = dict(version=settings.PAYPAL_API_VERSION,
             buttoncode='cleartext',
             buttontype='donate',
             method='BMCreateButton',
             l_buttonvar0='business=%s' % name)
    # TODO(andym): remove this once this is all live and settled down.
    if hasattr(settings, 'PAYPAL_CGI_AUTH'):
        d['user'] = settings.PAYPAL_CGI_AUTH['USER']
        d['pwd'] = settings.PAYPAL_CGI_AUTH['PASSWORD']
        d['signature'] = settings.PAYPAL_CGI_AUTH['SIGNATURE']
    else:
        # In production if PAYPAL_CGI_AUTH doesn't get defined yet,
        # fall back to the existing values.
        d.update(dict(user=settings.PAYPAL_USER,
                      pwd=settings.PAYPAL_PASSWORD,
                      signature=settings.PAYPAL_SIGNATURE))
    with socket_timeout(10):
        r = urllib.urlopen(settings.PAYPAL_API_URL, urlencode(d))
    response = dict(urlparse.parse_qsl(r.read()))
    valid = response['ACK'] == 'Success'
    msg = None if valid else response['L_LONGMESSAGE0']
    return valid, msg


@contextlib.contextmanager
def socket_timeout(timeout):
    """Context manager to temporarily set the default socket timeout."""
    old = socket.getdefaulttimeout()
    try:
        yield
    finally:
        socket.setdefaulttimeout(old)
validate paypal info (bug 602731) 2010-10-11 22:24:41 +04:00			`import contextlib`
			`import socket`
			`import urllib`
move to new payment flow (bug 627077) 2011-01-26 20:06:45 +03:00			`import urllib2`
validate paypal info (bug 602731) 2010-10-11 22:24:41 +04:00			`import urlparse`

			`from django.conf import settings`
beware the unicode devil (bug 604857) 2010-10-22 21:55:29 +04:00			`from django.utils.http import urlencode`
validate paypal info (bug 602731) 2010-10-11 22:24:41 +04:00
move to new payment flow (bug 627077) 2011-01-26 20:06:45 +03:00			`import commonware.log`
use graphite for graphing 2011-06-21 00:21:28 +04:00			`from statsd import statsd`
move to new payment flow (bug 627077) 2011-01-26 20:06:45 +03:00
			`from amo.helpers import absolutify`
			`from amo.urlresolvers import reverse`


			`class PaypalError(Exception):`
			`id = None`


			`class AuthError(Exception):`
			`pass`


			`errors = {'520003': AuthError}`
			`paypal_log = commonware.log.getLogger('z.paypal')`

add in paypal permission checking from ashort (bug 677904) -a (bug premium-details) 2011-09-07 02:22:24 +04:00
move to new payment flow (bug 627077) 2011-01-26 20:06:45 +03:00			`def get_paykey(data):`
			`"""`
			`Gets a paykey from Paypal. Need to pass in the following in data:`
link up purchase button to paypal (bug 684408) 2011-09-09 21:21:30 +04:00			`slug: addon, will form urls for where user goes back to (required)`
move to new payment flow (bug 627077) 2011-01-26 20:06:45 +03:00			`email: who the money is going to (required)`
			`amount: the amount of money (required)`
			`ip: ip address of end user (required)`
			`uuid: contribution_uuid (required)`
			`memo: any nice message`
			`"""`
link up purchase button to paypal (bug 684408) 2011-09-09 21:21:30 +04:00			`complete = reverse('addons.paypal', args=[data['slug'], 'complete'])`
			`cancel = reverse('addons.paypal', args=[data['slug'], 'cancel'])`
			`uuid_qs = urllib.urlencode({'uuid': data['uuid']})`
move to new payment flow (bug 627077) 2011-01-26 20:06:45 +03:00
			`paypal_data = {`
			`'actionType': 'PAY',`
			`'requestEnvelope.errorLanguage': 'US',`
			`'currencyCode': 'USD',`
link up purchase button to paypal (bug 684408) 2011-09-09 21:21:30 +04:00			`'cancelUrl': absolutify('%s?%s' % (cancel, uuid_qs)),`
			`'returnUrl': absolutify('%s?%s' % (complete, uuid_qs)),`
move to new payment flow (bug 627077) 2011-01-26 20:06:45 +03:00			`'receiverList.receiver(0).email': data['email'],`
			`'receiverList.receiver(0).amount': data['amount'],`
			`'receiverList.receiver(0).invoiceID': 'mozilla-%s' % data['uuid'],`
			`'receiverList.receiver(0).primary': 'TRUE',`
			`'receiverList.receiver(0).paymentType': 'DIGITALGOODS',`
			`'trackingId': data['uuid'],`
			`'ipnNotificationUrl': absolutify(reverse('amo.paypal'))}`

			`if data.get('memo'):`
			`paypal_data['memo'] = data['memo']`

add in paypal permission checking from ashort (bug 677904) -a (bug premium-details) 2011-09-07 02:22:24 +04:00			`with statsd.timer('paypal.paykey.retrieval'):`
link up purchase button to paypal (bug 684408) 2011-09-09 21:21:30 +04:00			`try:`
			`response = _call(settings.PAYPAL_PAY_URL, paypal_data,`
			`ip=data['ip'])`
			`except AuthError, error:`
			`paypal_log.error('Authentication error: %s' % error)`
			`raise`
add in paypal permission checking from ashort (bug 677904) -a (bug premium-details) 2011-09-07 02:22:24 +04:00			`return response['payKey']`


			`def check_refund_permission(token):`
			`"""`
			`Asks PayPal whether the PayPal ID for this account has granted`
			`refund permission to us.`
			`"""`
			`# This is set in settings_test so we don't start calling PayPal`
			`# by accident. Explicitly set this in your tests.`
			`if not settings.PAYPAL_PERMISSIONS_URL:`
			`return False`
			`try:`
			`with statsd.timer('paypal.permissions.refund'):`
			`r = _call(settings.PAYPAL_PERMISSIONS_URL + 'GetPermissions',`
			`{'token': token})`
			`except PaypalError:`
			`return False`
			`# in the future we may ask for other permissions so let's just`
			`# make sure REFUND is one of them.`
			`return 'REFUND' in [v for (k, v) in r.iteritems()`
			`if k.startswith('scope')]`


			`def refund_permission_url(addon):`
			`"""`
			`Send permissions request to PayPal for refund privileges on`
			`this addon's paypal account. Returns URL on PayPal site to visit.`
			`"""`
			`# This is set in settings_test so we don't start calling PayPal`
			`# by accident. Explicitly set this in your tests.`
			`if not settings.PAYPAL_PERMISSIONS_URL:`
			`return ''`
			`with statsd.timer('paypal.permissions.url'):`
			`url = reverse('devhub.addons.acquire_refund_permission',`
			`args=[addon.slug])`
			`r = _call(settings.PAYPAL_PERMISSIONS_URL + 'RequestPermissions',`
			`{'scope': 'REFUND', 'callback': absolutify(url)})`
			`return (settings.PAYPAL_CGI_URL +`
			`'?cmd=_grant-permission&request_token=%s' % r['token'])`


			`def get_permissions_token(request_token, verification_code):`
			`"""`
			`Send request for permissions token, after user has granted the`
			`requested permissions via the PayPal page we redirected them to.`
			`"""`
			`with statsd.timer('paypal.permissions.token'):`
			`r = _call(settings.PAYPAL_PERMISSIONS_URL + 'GetAccessToken',`
			`{'token': request_token, 'verifier': verification_code})`
			`return r['token']`


			`def _call(url, paypal_data, ip=None):`
			`request = urllib2.Request(url)`

			`if 'requestEnvelope.errorLanguage' not in paypal_data:`
			`paypal_data['requestEnvelope.errorLanguage'] = 'en_US'`

			`for key, value in [`
			`('security-userid', settings.PAYPAL_EMBEDDED_AUTH['USER']),`
			`('security-password', settings.PAYPAL_EMBEDDED_AUTH['PASSWORD']),`
			`('security-signature', settings.PAYPAL_EMBEDDED_AUTH['SIGNATURE']),`
			`('application-id', settings.PAYPAL_APP_ID),`
			`('request-data-format', 'NV'),`
			`('response-data-format', 'NV')]:`
			`request.add_header('X-PAYPAL-%s' % key.upper(), value)`

			`if ip:`
			`request.add_header('X-PAYPAL-DEVICE-IPADDRESS', ip)`

move to new payment flow (bug 627077) 2011-01-26 20:06:45 +03:00			`opener = urllib2.build_opener()`
			`try:`
			`with socket_timeout(10):`
			`feeddata = opener.open(request, urlencode(paypal_data)).read()`
			`except Exception, error:`
			`paypal_log.error('HTTP Error: %s' % error)`
			`raise`

			`response = dict(urlparse.parse_qsl(feeddata))`

			`if 'error(0).errorId' in response:`
			`error = errors.get(response['error(0).errorId'], PaypalError)`
			`paypal_log.error('Paypal Error: %s' % response['error(0).message'])`
			`raise error(response['error(0).message'])`

add in paypal permission checking from ashort (bug 677904) -a (bug premium-details) 2011-09-07 02:22:24 +04:00			`return response`
move to new payment flow (bug 627077) 2011-01-26 20:06:45 +03:00
validate paypal info (bug 602731) 2010-10-11 22:24:41 +04:00
			`def check_paypal_id(name):`
			`"""`
			`Use the button API to check if name is a valid Paypal id.`

			`Returns bool(valid), str(msg). msg will be None if there wasn't an error.`
			`"""`
make two dicts for auth to avoid conflict (bug 643357) 2011-03-21 22:58:16 +03:00			`d = dict(version=settings.PAYPAL_API_VERSION,`
validate paypal info (bug 602731) 2010-10-11 22:24:41 +04:00			`buttoncode='cleartext',`
			`buttontype='donate',`
			`method='BMCreateButton',`
			`l_buttonvar0='business=%s' % name)`
make two dicts for auth to avoid conflict (bug 643357) 2011-03-21 22:58:16 +03:00			`# TODO(andym): remove this once this is all live and settled down.`
			`if hasattr(settings, 'PAYPAL_CGI_AUTH'):`
			`d['user'] = settings.PAYPAL_CGI_AUTH['USER']`
			`d['pwd'] = settings.PAYPAL_CGI_AUTH['PASSWORD']`
			`d['signature'] = settings.PAYPAL_CGI_AUTH['SIGNATURE']`
			`else:`
			`# In production if PAYPAL_CGI_AUTH doesn't get defined yet,`
			`# fall back to the existing values.`
			`d.update(dict(user=settings.PAYPAL_USER,`
			`pwd=settings.PAYPAL_PASSWORD,`
			`signature=settings.PAYPAL_SIGNATURE))`
validate paypal info (bug 602731) 2010-10-11 22:24:41 +04:00			`with socket_timeout(10):`
beware the unicode devil (bug 604857) 2010-10-22 21:55:29 +04:00			`r = urllib.urlopen(settings.PAYPAL_API_URL, urlencode(d))`
validate paypal info (bug 602731) 2010-10-11 22:24:41 +04:00			`response = dict(urlparse.parse_qsl(r.read()))`
			`valid = response['ACK'] == 'Success'`
			`msg = None if valid else response['L_LONGMESSAGE0']`
			`return valid, msg`


			`@contextlib.contextmanager`
			`def socket_timeout(timeout):`
			`"""Context manager to temporarily set the default socket timeout."""`
			`old = socket.getdefaulttimeout()`
			`try:`
			`yield`
			`finally:`
			`socket.setdefaulttimeout(old)`