src/Controller/CheckoutController.php line 251

Open in your IDE?
  1. <?php
  3. /**
  4.  * Pimcore
  5.  *
  6.  * This source file is available under two different licenses:
  7.  * - GNU General Public License version 3 (GPLv3)
  8.  * - Pimcore Enterprise License (PEL)
  9.  * Full copyright and license information is available in
  10.  * LICENSE.md which is distributed with this source code.
  11.  *
  12.  *  @copyright  Copyright (c) Pimcore GmbH (http://www.pimcore.org)
  13.  *  @license    http://www.pimcore.org/license     GPLv3 and PEL
  14.  */
  16. namespace App\Controller;
  18. use App\Form\DeliveryAddressFormType;
  19. use App\Form\JoinFormType;
  20. use App\Form\PasswordFormType;
  21. use App\Model\SecretsManager;
  22. use App\Model\Product\AbstractProduct;
  23. use App\Services\PermissionService;
  24. use App\Services\TrycareService;
  25. use App\Stripe\UserHandler;
  26. use App\Website\Navigation\BreadcrumbHelperService;
  27. use Pimcore\Bundle\EcommerceFrameworkBundle\Factory;
  28. use Pimcore\Controller\FrontendController;
  29. use Pimcore\Model\DataObject;
  30. use Pimcore\Model\DataObject\OnlineShopOrder;
  31. use Pimcore\Model\Redirect;
  32. use Pimcore\Bundle\EcommerceFrameworkBundle\Model\AbstractOrder;
  33. use Symfony\Component\Form\FormError;
  34. use Symfony\Component\HttpFoundation\File\Exception\AccessDeniedException;
  35. use Symfony\Component\HttpFoundation\RedirectResponse;
  36. use Symfony\Component\HttpFoundation\Request;
  37. use Symfony\Component\HttpFoundation\Response;
  38. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  39. use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
  40. use Symfony\Component\HttpKernel\Exception\UnauthorizedHttpException;
  41. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  42. use Symfony\Component\Intl\Countries;
  43. use Symfony\Component\Routing\Annotation\Route;
  44. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  46. class CheckoutController extends FrontendController
  47. {
  48.     const SUB_LICENSE_ID 2454;
  49.     const TRYCARE_CART_NAME 'trycare';
  50.     const PLAN_OPTIONS = ['annual''monthly'];
  51.     const PLAN_TYPES = ['starter''premium'];
  53.     private $stripeSK;
  55.     public function __construct()
  56.     {
  57.         $secretsManager = new SecretsManager();
  58.         $this->stripeSK $secretsManager->getSecret('stripe-private-key');
  59.     }
  61.     /**
  62.      * @Route("/checkout-address", name="shop-checkout-address")
  63.      *
  64.      * @param Factory $factory
  65.      * @param Request $request
  66.      * @param BreadcrumbHelperService $breadcrumbHelperService
  67.      * @param Factory $ecommerceFactory
  68.      *
  69.      * @return Response|RedirectResponse
  70.      */
  71.     public function checkoutAddressAction(Factory $factoryRequest $requestBreadcrumbHelperService $breadcrumbHelperServiceFactory $ecommerceFactory)
  72.     {
  73.         $cartManager $factory->getCartManager();
  74.         $cart $cartManager->getOrCreateCartByName('cart');
  76.         $checkoutManager $factory->getCheckoutManager($cart);
  78.         $deliveryAddress $checkoutManager->getCheckoutStep('deliveryaddress');
  79.         $deliveryAddressDataArray $this->fillDeliveryAddressFromCustomer($deliveryAddress->getData());
  81.         $form $this->createForm(DeliveryAddressFormType::class, $deliveryAddressDataArray, []);
  82.         $form->handleRequest($request);
  84.         $breadcrumbHelperService->enrichCheckoutPage();
  86.         if ($request->getMethod() == Request::METHOD_POST) {
  87.             $address = new \stdClass();
  89.             $formData $form->getData();
  90.             foreach ($formData as $key => $value) {
  91.                 $address->{$key} = $value;
  92.             }
  94.             // save address if we have no errors
  95.             if (count($form->getErrors()) === 0) {
  96.                 // commit step
  97.                 $checkoutManager->commitStep($deliveryAddress$address);
  99.                 //TODO remove this - only needed, because one step only is not supported by the framework right now
  100.                 $confirm $checkoutManager->getCheckoutStep('confirm');
  101.                 $checkoutManager->commitStep($confirmtrue);
  103.                 return $this->redirectToRoute('shop-checkout-payment');
  104.             }
  105.         }
  107.         $trackingManager $ecommerceFactory->getTrackingManager();
  108.         $trackingManager->trackCheckoutStep($deliveryAddress$cart1);
  110.         return $this->render('checkout/checkout_address.html.twig', [
  111.             'cart' => $cart,
  112.             'form' => $form->createView(),
  113.         ]);
  114.     }
  116.     /**
  117.      * @param $deliveryAddress
  118.      *
  119.      * @return array|null
  120.      */
  121.     protected function fillDeliveryAddressFromCustomer($deliveryAddress)
  122.     {
  123.         $user $this->getUser();
  125.         $deliveryAddress = (array) $deliveryAddress;
  127.         if ($user) {
  128.             if ($deliveryAddress === null) {
  129.                 $deliveryAddress = [];
  130.             }
  132.             $params = ['email''firstname''lastname''street''zip''city''countryCode'];
  133.             foreach ($params as $param) {
  134.                 if (empty($deliveryAddress[$param])) {
  135.                     $deliveryAddress[$param] = $user->{'get' ucfirst($param)}();
  136.                 }
  137.             }
  138.         }
  140.         return $deliveryAddress;
  141.     }
  143.     /**
  144.      * @Route("/sign-up", name="sign-up")
  145.      *
  146.      * @param Factory $factory
  147.      * @param Request $request
  148.      * @param BreadcrumbHelperService $breadcrumbHelperService
  149.      * @param Factory $ecommerceFactory
  150.      *
  151.      * @return Response|RedirectResponse
  152.      */
  153.     public function SignUpAction(Factory $factoryRequest $request)
  154.     {
  155.         $queryPlan 'monthly';
  156.         $id $request->query->get('id');
  158.         $errors = [];
  159.         $licence DataObject\License::getById($id);
  160.         if (!$licence) {
  161.             $errors[] = "Invalid licence type";
  162.         } elseif (!$this->checkStripeProductHasUsers($licence->getStripeId())) {
  163.             $errors[] = "Something went wrong, please contact our support.";
  164.         }
  166.         $form $this->createForm(JoinFormType::class);
  167.         $form->handleRequest($request);
  169.         if ($form->isSubmitted() && $form->isValid() && $licence && $this->checkStripeProductHasUsers($licence->getStripeId())) {
  171.             $formData $form->getData();
  172.             if (!$formData['termsAndPrivacy']) {
  173.                 $errors[] = 'Sorry, an error occured. Go back to memberships page and try again.';
  174.             } else {
  176.                 $entries = new DataObject\Customer\Listing();
  177.                 $entries->setCondition("email LIKE ?", ["%" $formData['email'] . "%"]);
  178.                 $entries->load();
  180.                 if (!empty($entries->load())) {
  181.                     $errors[] = 'Invalid email.';
  182.                 } else {
  183.                     $environment Factory::getInstance()->getEnvironment();
  184.                     $environment->setCurrentCheckoutTenant('licence');
  185.                     $environment->save();
  187.                     $cartManager $factory->getCartManager();
  188.                     $cart $cartManager->getOrCreateCartByName('licence');
  189.                     $cart->clear();
  190.                     $checkoutManager $factory->getCheckoutManager($cart);
  192.                     $mainInfo $checkoutManager->getCheckoutStep('collectInfo');
  194.                     $cart->addItem($licence1);
  195.                     $cart->save();
  197.                     $userData = new \stdClass();
  198.                     foreach ($formData as $key => $value) {
  199.                         $userData->{$key} = $value;
  200.                     }
  201.                     $userData->{'plan'} = $queryPlan;
  202.                     // commit step
  203.                     $checkoutManager->commitStep($mainInfo$userData);
  205.                     //TODO remove this - only needed, because one step only is not supported by the framework right now
  206.                     $confirm $checkoutManager->getCheckoutStep('confirm');
  207.                     $checkoutManager->commitStep($confirmtrue);
  209.                     return $this->redirectToRoute('stripe-subscription-payment');
  210.                 }
  211.             }
  212.         }
  213.         if ($form->isSubmitted() && !$form->isValid()) {
  214.             foreach ($form->getErrors(true) as $error) {
  215.                 $errors[] = $error->getMessage();
  216.             }
  217.         }
  219.         $name $licence $licence->getName() : '';
  221.         return $this->render('checkout/sign-up.html.twig', [
  222.             'form' => $form->createView(),
  223.             'errors' => $errors,
  224.             'plan' => $queryPlan,
  225.             'name' => $name
  226.         ]);
  227.     }
  229.     /**
  230.      * THis function checks if users are defined in the metadata field
  231.      */
  232.     public function checkStripeProductHasUsers($productId)
  233.     {
  234.         \Stripe\Stripe::setApiKey($this->stripeSK);
  236.         $product \Stripe\Product::retrieve($productId);
  238.         return is_numeric($product->metadata->users);
  239.     }
  241.     /**
  242.      * @Route("/join-us", name="join-us")
  243.      *
  244.      * @param Factory $factory
  245.      * @param Request $request
  246.      * @param BreadcrumbHelperService $breadcrumbHelperService
  247.      * @param Factory $ecommerceFactory
  248.      *
  249.      * @return Response|RedirectResponse
  250.      */
  251.     public function JoinAction(Factory $factoryRequest $requestBreadcrumbHelperService $breadcrumbHelperServiceFactory $ecommerceFactory)
  252.     {
  254.         $cartManager $factory->getCartManager();
  255.         $cart $cartManager->getOrCreateCartByName('cart');
  257.         $checkoutManager $factory->getCheckoutManager($cart);
  259.         $mainInfo $checkoutManager->getCheckoutStep('collectInfo');
  260.         /*  $mainInfoArray = $this->fillDeliveryAddressFromCustomer($deliveryAddress->getData()); */
  262.         $form $this->createForm(JoinFormType::class);
  263.         $form->handleRequest($request);
  265.         $breadcrumbHelperService->enrichCheckoutPage();
  267.         if ($request->getMethod() == Request::METHOD_POST) {
  268.             $userData = new \stdClass();
  270.             $formData $form->getData();
  271.             $subLicensesQty $formData['sublicenses'];
  273.             $entries = new DataObject\Customer\Listing();
  274.             $entries->setCondition("email LIKE ?", ["%" $formData['email'] . "%"]);
  275.             $entries->load();
  277.             if (!empty($entries->load())) {
  278.                 $form->addError(new FormError('Invalid Email.'));
  279.             }
  281.             if (!is_null($subLicensesQty) && $subLicensesQty !== 0) {
  282.                 $subLicense AbstractProduct::getById(self::SUB_LICENSE_ID);
  283.                 $cartManager->removeFromCart(self::SUB_LICENSE_ID$cart->getId());
  284.                 $cart->addItem($subLicense$subLicensesQty);
  285.                 $cart->save();
  286.             }
  288.             foreach ($formData as $key => $value) {
  289.                 $userData->{$key} = $value;
  290.             }
  293.             // save address if we have no errors
  294.             if (count($form->getErrors()) === 0) {
  295.                 // commit step
  296.                 $response $checkoutManager->commitStep($mainInfo$userData);
  298.                 //TODO remove this - only needed, because one step only is not supported by the framework right now
  299.                 $confirm $checkoutManager->getCheckoutStep('confirm');
  300.                 $checkoutManager->commitStep($confirmtrue);
  302.                 /*  return $this->redirectToRoute('shop-checkout-start-payment'); */
  303.                 return $this->redirectToRoute('stripe-checkout-payment');
  304.                 /* return $this->redirectToRoute('shop-checkout-payment'); */
  305.             }
  306.         }
  308.         // $cart = $this->addMainLicenseToCart($cart);
  310.         /* $trackingManager = $ecommerceFactory->getTrackingManager();
  311.         $trackingManager->trackCheckoutStep($deliveryAddress, $cart, 1); */
  313.         $errors = [];
  314.         foreach ($form->getErrors() as $error) {
  315.             $errors[] = $error->getMessage();
  316.         }
  317.         return $this->render('checkout/join.html.twig', [
  318.             'cart' => $cart,
  319.             'form' => $form->createView(),
  320.             'errors' => $errors
  321.         ]);
  322.     }
  324.     /**
  325.      * @Route("/rejoin", name="rejoin")
  326.      *
  327.      * @param Factory $factory
  328.      * @param Request $request
  329.      * @param BreadcrumbHelperService $breadcrumbHelperService
  330.      * @param Factory $ecommerceFactory
  331.      *
  332.      * @return Response|RedirectResponse
  333.      */
  334.     public function rejoinAction(Factory $factoryRequest $requestUserHandler $userHandler)
  335.     {
  336.         $planId $request->query->get('id');
  337.         $loggedUser $this->getUser();
  338.         if (!$loggedUser) {
  339.             return $this->redirect('/account/login?referer=' urlencode('/rejoin?id=' $planId));
  340.         }
  341.         if ($loggedUser->getTypeOfUser() != 'superuser') {
  342.             return $this->redirect('/');
  343.         }
  345.         $mainSubscriptionStatus $loggedUser->getSubscription()->getStatus();
  347.         if ($mainSubscriptionStatus === 'active') {
  348.             return $this->redirect('/');
  349.         }
  351.         $queryPlan 'monthly';
  353.         $errors = [];
  354.         $licence DataObject\License::getById($planId);
  355.         if (!$licence) {
  356.             $errors[] = "Invalid licence type";
  357.         } elseif (!$this->checkStripeProductHasUsers($licence->getStripeId())) {
  358.             $errors[] = "Something went wrong, please contact our support.";
  359.         }
  361.         $licenceMaxSubusers $userHandler->getAdditionalUsersFromLicence($licence->getStripeId());
  362.         $superUserIncludedSubs count($loggedUser->getIncludedSubscriptions());
  363.         if ($superUserIncludedSubs $licenceMaxSubusers) {
  364.             $errors[] = 'This plan does not support the number of additional users you currently have. Please choose Another plan or contact support.';
  365.         }
  367.         $name $licence $licence->getName() : 'Custom Plan';
  368.         if ($request->isMethod('get') || !empty($errors)) {
  369.             return $this->render('checkout/rejoin.html.twig', [
  370.                 'errors' => $errors,
  371.                 'plan' => $queryPlan,
  372.                 'name' => $name,
  373.                 'id' => $planId
  374.             ]);
  375.         }
  376.         $userSubscription $loggedUser->getSubscription();
  377.         $isFreeTrial $userSubscription->getIsFreeTrial();
  378.         //check if stripe sub is expired, if yes redirect to customer portal, otherwise create a new stripe sub
  379.         if (!$isFreeTrial && $userHandler->hasExpiredStripeSubscription($userSubscription)) {
  380.             return $this->redirect('/create-customer-portal-session');
  381.         }
  383.         $cartManager $factory->getCartManager();
  384.         $cart $cartManager->getOrCreateCartByName('licence');
  385.         $cart->clear();
  386.         $checkoutManager $factory->getCheckoutManager($cart);
  388.         $mainInfo $checkoutManager->getCheckoutStep('collectInfo');
  390.         $mainLicence $isFreeTrial $licence $userHandler->getOrCreateLicenceFromStripeProduct($userSubscription->getStripeProductId());
  392.         $cart->addItem($mainLicence1);
  393.         $cart->save();
  395.         $userData = new \stdClass();
  396.         $userData->{'reactivation'} = $loggedUser->getStripeCustomerId();
  397.         $userData->{'superuserId'} = $loggedUser->getId();
  398.         $userData->{'email'} = $loggedUser->getEmail();
  399.         $userData->{'plan'} = $queryPlan;
  400.         $userData->{'stripeProductId'} = $mainLicence->getStripeId();
  401.         $userData->{'stripeId'} = $userSubscription->getStripeId();
  403.         // commit step
  404.         $checkoutManager->commitStep($mainInfo$userData);
  406.         //TODO remove this - only needed, because one step only is not supported by the framework right now
  407.         $confirm $checkoutManager->getCheckoutStep('confirm');
  408.         $checkoutManager->commitStep($confirmtrue);
  410.         return $this->redirectToRoute('stripe-subscription-payment');
  411.     }
  413.     /**
  414.      * @Route("/additional-users/reactivation", name="subuser-reactivation")
  415.      *
  416.      * @param Factory $factory
  417.      * @param Request $request
  418.      * @param BreadcrumbHelperService $breadcrumbHelperService
  419.      * @param Factory $ecommerceFactory
  420.      *
  421.      * @return Response|RedirectResponse
  422.      */
  423.     public function subuserReactivationAction(Request $requestUserHandler $userHandler)
  424.     {
  425.         //authorization checks
  426.         $loggedUser $this->getUser();
  427.         if (!$loggedUser) {
  428.             throw new UnauthorizedHttpException('Not authorized.');
  429.         }
  430.         if (!$loggedUser || $loggedUser->getTypeOfUser() != 'superuser') {
  431.             return $this->redirect('/');
  432.         }
  434.         $mainSubscription $loggedUser->getSubscription();
  436.         if ($mainSubscription->getStatus() != 'active') {
  437.             return $this->redirect('/');
  438.         }
  440.         //check if it has expired or canceled pimcore subscriptions
  441.         $expiredOrCancelledExtraSub array_filter($loggedUser->getExtraSubscriptions(), function ($sub) {
  442.             return $sub->getStatus() != 'active';
  443.         });
  444.         $hasExpiredOrCancelledExtraSubscriptions = !empty($expiredOrCancelledExtraSub);
  445.         if (!$hasExpiredOrCancelledExtraSubscriptions) {
  446.             return $this->redirect('/');
  447.         }
  449.         $paymentFailed $request->query->get('failed');
  451.         if ($request->isMethod('get')) {
  452.             return $this->render('checkout/add-users-reactivation.html.twig', ['clientSecret' => null'paymentFailed' => $paymentFailed]);
  453.         }
  455.         if ($request->request->get('yes') !== null) {
  456.             $stripeResponse $userHandler->reactivateSublicences($loggedUser);
  457.             if ($stripeResponse['status'] === 'requires_action') {
  458.                 return $this->render('checkout/add-users-reactivation.html.twig', ['clientSecret' => $stripeResponse['secret'], 'paymentFailed' => null]);
  459.             }
  460.             if ($stripeResponse['status'] === 'failed') {
  461.                 return $this->render('checkout/add-users-reactivation.html.twig', ['clientSecret' => null'paymentFailed' => true]);
  462.             }
  463.         }
  464.         if (
  465.             $request->request->get('no') !== null
  466.         ) {
  467.             $userHandler->deactivateSublicences($loggedUser);
  468.         }
  469.         return $this->redirect('/workplace/home');
  470.     }
  472.     /**
  473.      * @Route("/set-password", name="set-password")
  474.      *
  475.      * @param SessionInterface $session
  476.      * @param Factory $ecommerceFactory
  477.      *
  478.      * @return Response
  479.      */
  480.     public function setPasswordAction(Request $requestFactory $ecommerceFactorySessionInterface $sessionTokenStorageInterface $tokenStorage)
  481.     {
  482.         $user $this->getUser();
  484.         if (!$this->isGranted('ROLE_USER')) {
  485.             return $this->redirect('/');
  486.         }
  488.         if (!$user) {
  489.             throw new AccessDeniedException('Not authorized.');
  490.         }
  492.         $form $this->createForm(PasswordFormType::class);
  493.         $form->handleRequest($request);
  495.         $errors = [];
  496.         if ($form->isSubmitted() && $form->isValid()) {
  497.             $plainPass $form->getData()['password'];
  498.             $user->setPassword($plainPass);
  499.             $user->save();
  500.             return $this->redirect('/home');
  501.         }
  502.         if ($form->isSubmitted() && !$form->isValid()) {
  504.             foreach ($form->get('password')->getErrors() as $error) {
  505.                 $errors[] = $error->getMessage();
  506.             }
  507.         }
  509.         return $this->render('account/first_time_password.html.twig', [
  510.             'form' => $form->createView(),
  511.             'errors' => $errors,
  512.         ]);
  513.     }
  514.     /**
  515.      * @Route("/checkout-completed", name="shop-checkout-completed")
  516.      *
  517.      * @param SessionInterface $session
  518.      * @param Factory $ecommerceFactory
  519.      *
  520.      * @return Response
  521.      */
  522.     public function checkoutCompletedAction(SessionInterface $sessionFactory $ecommerceFactory)
  523.     {
  524.         $orderId $session->get('last_order_id');
  526.         $order OnlineShopOrder::getById($orderId);
  528.         $trackingManager $ecommerceFactory->getTrackingManager();
  529.         $trackingManager->trackCheckoutComplete($order);
  531.         $cartManager $ecommerceFactory->getCartManager();
  532.         $cart $cartManager->getOrCreateCartByName('cart');
  533.         $checkoutManager $ecommerceFactory->getCheckoutManager($cart);
  535.         return $this->render('checkout/checkout_completed.html.twig', [
  536.             'order' => $order,
  537.             'hideBreadcrumbs' => true
  538.         ]);
  539.     }
  541.     /**
  542.      * @Route("/api/checkout-completed/{orderNumber}", name="api-shop-checkout-completed")
  543.      *
  544.      * @param SessionInterface $session
  545.      * @param Factory $ecommerceFactory
  546.      *
  547.      * @return Response
  548.      */
  549.     public function getCompletedCheckoutAction(SessionInterface $sessionFactory $ecommerceFactory$orderNumber)
  550.     {
  551.         $loggedUser $this->getUser();
  552.         if (!$loggedUser) {
  553.             throw new UnauthorizedHttpException('Not authorized.');
  554.         }
  556.         $order OnlineShopOrder::getByOrdernumber($orderNumber);
  558.         if (!$order) {
  559.             throw new BadRequestHttpException('No valid order provided.');
  560.         }
  561.         $orderData $order->getData()[0];
  562.         if ($loggedUser->getEmail() != $orderData->getCustomerEmail() && $loggedUser->getId() != $orderData->getCustomerOrderedBy()) {
  563.             throw new AccessDeniedException('You have no access to this order.');
  564.         }
  565.         
  566.         $items = [];
  567.         foreach ($orderData->getItems() as $item) {
  568.             $items[] = [
  569.                 'sku' => $item->getPart(),
  570.                 'name' => $item->getProductName(),
  571.                 'quantity' => $item->getAmount(),
  572.                 'totalPrice' => (float)$item->getTotalNetPrice(),
  573.             ];
  574.         }
  575.         foreach ($orderData->getGiftItems() as $item) {
  576.             $items[] = [
  577.                 'sku' => $item->getPart(),
  578.                 'name' => $item->getProductName(),
  579.                 'quantity' => $item->getAmount(),
  580.                 'totalPrice' => 'FREE',
  581.             ];
  582.         }
  583.         $deliveryAddress = [];
  584.         $deliveryAddress['addressLine1'] = $orderData->getDeliveryLine1();
  585.         $deliveryAddress['addressLine2'] = $orderData->getDeliveryLine2();
  586.         $deliveryAddress['city'] = $orderData->getDeliveryCity();
  587.         $deliveryAddress['county'] = $orderData->getDeliveryCounty();
  588.         $deliveryAddress['postcode'] = $orderData->getDeliveryZip();
  589.         $deliveryAddress['country'] = Countries::getName($orderData->getDeliveryCountry() == 'UK' 'GB' $orderData->getDeliveryCountry());
  592.         $customerInfo = [];
  593.         $customerInfo['firstName'] = $orderData->getCustomerFirstname();
  594.         $customerInfo['lastName'] = $orderData->getCustomerLastname();
  595.         $customerInfo['emailAddress'] = $orderData->getCustomerEmail();
  596.         $customerInfo['gdcNumber'] = $orderData->getCustomerGdcNumber();
  599.         $data = [
  600.             'state' => $orderData->getOrderState(),
  601.             'deliveryAddress' => $deliveryAddress,
  602.             'customerInfo' => $customerInfo,
  603.             'items' => $items,
  604.             'amount' => [
  605.                 'net' => $orderData->getTotalNetPrice(),
  606.                 'delivery' => floatval($orderData->getTotalNetPrice()) - floatval($orderData->getSubTotalNetPrice()),
  607.                 'gross' => $orderData->getTotalPrice()
  608.             ]
  609.         ];
  611.         $response = new Response();
  613.         $response->headers->set('Content-Type''application/json');
  614.         $response->headers->set('Access-Control-Allow-Origin''*');
  616.         $response->setContent(json_encode(['order' => $data]));
  618.         return $response;
  619.     }
  621.     /**
  622.      * @Route("/api/checkout-default", name="checkout-default", methods="POST")
  623.      *
  624.      * @param Factory $factory
  625.      * @param Request $request
  626.      * @param BreadcrumbHelperService $breadcrumbHelperService
  627.      * @param Factory $ecommerceFactory
  628.      *
  629.      * @return Response|RedirectResponse
  630.      */
  631.     public function defaultCheckoutAction(Factory $factoryRequest $requestBreadcrumbHelperService $breadcrumbHelperServicePermissionService $permissionProviderTrycareService $trycareProvider)
  632.     {
  633.         $loggedUser $this->getUser();
  634.         if (!$loggedUser) {
  635.             throw new UnauthorizedHttpException('Not authorized.');
  636.         }
  638.         // $permissions = $permissionProvider->checkPermissions('placeOrder', $loggedUser);
  640.         $data json_decode($request->getContent(), true);
  642.         $environment Factory::getInstance()->getEnvironment();
  643.         $environment->setCurrentCheckoutTenant('oscare');
  644.         $environment->save();
  646.         $cartManager $factory->getCartManager();
  647.         $cart $cartManager->getOrCreateCartByName(self::TRYCARE_CART_NAME);
  649.         $items $cart->getItems();
  650.         if (empty($items)) {
  651.             throw new BadRequestHttpException('Cart is empty');
  652.         }
  653.         if (!$data['deliveryAddress'] || !$data['billingAddress']) {
  654.             throw new BadRequestHttpException('Addresses must be provided.');
  655.         }
  657.         $checkoutManager $factory->getCheckoutManager($cart);
  659.         $clinic $loggedUser->getClinic();
  661.         $deliveryAddress DataObject::getById($data['deliveryAddress']);
  662.         if (!$deliveryAddress) {
  663.             throw new BadRequestHttpException('Delivery id required');
  664.         }
  666.         $deliveryInputData = [
  667.             'comment' => $data['comment'],
  668.             'line1' => $deliveryAddress->getLine1(),
  669.             'line2' => $deliveryAddress->getLine2(),
  670.             'city' => $deliveryAddress->getCity(),
  671.             'zip' => $deliveryAddress->getPostcode(),
  672.             'county' => $deliveryAddress->getCounty(),
  673.             'countryCode' => $deliveryAddress->getCountry(),
  674.             'phone' => $clinic->getPhone(),
  675.             'company' => $clinic->getDisplayName(),
  676.         ];
  678.         //commit delivery data step
  679.         $deliveryData = new \stdClass();
  680.         foreach ($deliveryInputData as $key => $value) {
  681.             $deliveryData->{$key} = $value;
  682.         }
  683.         $deliveryStep $checkoutManager->getCheckoutStep('deliveryaddress');
  684.         $checkoutManager->commitStep($deliveryStep$deliveryData);
  686.         $billingAddress DataObject::getById($data['billingAddress']);
  687.         if (!$billingAddress) {
  688.             throw new BadRequestHttpException('Billing id required');
  689.         }
  691.         $billingInputData = [
  692.             'line1' => $billingAddress->getLine1(),
  693.             'line2' => $billingAddress->getLine2(),
  694.             'city' => $billingAddress->getCity(),
  695.             'zip' => $billingAddress->getPostcode(),
  696.             'county' => $billingAddress->getCounty(),
  697.             'countryCode' => $billingAddress->getCountry(),
  698.             'company' => $clinic->getDisplayName(),
  699.         ];
  701.         //commit billing data step
  702.         $billingData = new \stdClass();
  703.         foreach ($billingInputData as $key => $value) {
  704.             $billingData->{$key} = $value;
  705.         }
  706.         $billingStep $checkoutManager->getCheckoutStep('billingaddress');
  707.         $checkoutManager->commitStep($billingStep$billingData);
  709.         $superuser $clinic->getSuperuser();
  711.         $userData = new \stdClass();
  712.         $customerData = [
  713.             'firstname' => $superuser->getFirstname(),
  714.             'lastname' => $superuser->getLastname(),
  715.             'email' => $clinic->getSuperuser()->getEmail(),
  716.             'company' => $clinic->getDisplayName(),
  717.             'orderedBy' => $loggedUser->getId(),
  718.             'gdcNumber' =>  $clinic->getSuperuser()->getGdcNumber(),
  719.         ];
  720.         foreach ($customerData as $key => $value) {
  721.             $userData->{$key} = $value;
  722.         }
  724.         // commit customer data step
  725.         $customerStep $checkoutManager->getCheckoutStep('collectInfo');
  726.         $checkoutManager->commitStep($customerStep$userData);
  728.         //TODO remove this - only needed, because one step only is not supported by the framework right now
  729.         $confirm $checkoutManager->getCheckoutStep('confirm');
  730.         $checkoutManager->commitStep($confirmtrue);
  732.         $order $checkoutManager->commitOrder();
  733.         
  734.         if ($order->getOrderState() == AbstractOrder::ORDER_STATE_ABORTED) {
  735.             throw new AccessDeniedHttpException('Order processing has failed.');
  736.         }
  738.         $response = new Response();
  740.         $response->headers->set('Content-Type''application/json');
  741.         $response->headers->set('Access-Control-Allow-Origin''*');
  743.         $response->setContent(json_encode(['order' => $order->getOrdernumber()]));
  745.         return $response;
  746.     }
  748.     /**
  749.      * @param Request $request
  750.      *
  751.      * @return Response
  752.      */
  753.     public function confirmationMailAction(Request $request)
  754.     {
  755.         $order $request->get('order');
  757.         if ($request->get('order-id')) {
  758.             $order OnlineShopOrder::getById($request->get('order-id'));
  759.         }
  761.         return $this->render('checkout/confirmation_mail.html.twig', [
  762.             'order' => $order,
  763.             'ordernumber' => $request->get('ordernumber')
  764.         ]);
  765.     }
  766. }