expressCart/routes/payments/paypal.js

const express = require('express');
const common = require('../../lib/common');
const { indexOrders } = require('../../lib/indexing');
const paypal = require('paypal-rest-sdk');
const router = express.Router();

router.get('/checkout_cancel', (req, res, next) => {
    // return to checkout for adjustment or repayment
    res.redirect('/checkout');
});

router.get('/checkout_return', (req, res, next) => {
    const db = req.app.db;
    const config = req.app.config;
    const paymentId = req.session.paymentId;
    const payerId = req.query.PayerID;

    const details = { payer_id: payerId };
    paypal.payment.execute(paymentId, details, (error, payment) => {
        let paymentApproved = false;
        let paymentMessage = '';
        let paymentDetails = '';
        if(error){
            paymentApproved = false;

            if(error.response.name === 'PAYMENT_ALREADY_DONE'){
                paymentApproved = false;
                paymentMessage = error.response.message;
            }else{
                paymentApproved = false;
                paymentDetails = error.response.error_description;
            }

            // set the error
            req.session.messageType = 'danger';
            req.session.message = error.response.error_description;
            req.session.paymentApproved = paymentApproved;
            req.session.paymentDetails = paymentDetails;

            res.redirect('/payment/' + req.session.orderId);
            return;
        }

        const paymentOrderId = req.session.orderId;
        let paymentStatus = 'Approved';

        // fully approved
        if(payment.state === 'approved'){
            paymentApproved = true;
            paymentStatus = 'Paid';
            paymentMessage = 'Your payment was successfully completed';
            paymentDetails = '<p><strong>Order ID: </strong>' + paymentOrderId + '</p><p><strong>Transaction ID: </strong>' + payment.id + '</p>';

            // clear the cart
            if(req.session.cart){
                req.session.cart = null;
                req.session.orderId = null;
                req.session.totalCartAmount = 0;
            }
        }

        // failed
        if(payment.failureReason){
            paymentApproved = false;
            paymentMessage = 'Your payment failed - ' + payment.failureReason;
            paymentStatus = 'Declined';
        }

        // update the order status
        db.orders.updateOne({ _id: common.getId(paymentOrderId) }, { $set: { orderStatus: paymentStatus } }, { multi: false }, (err, numReplaced) => {
            if(err){
                console.info(err.stack);
            }
            db.orders.findOne({ _id: common.getId(paymentOrderId) }, (err, order) => {
                if(err){
                    console.info(err.stack);
                }

                // add to lunr index
                indexOrders(req.app)
                .then(() => {
                    // set the results
                    req.session.messageType = 'success';
                    req.session.message = paymentMessage;
                    req.session.paymentEmailAddr = order.orderEmail;
                    req.session.paymentApproved = paymentApproved;
                    req.session.paymentDetails = paymentDetails;

                    const paymentResults = {
                        message: req.session.message,
                        messageType: req.session.messageType,
                        paymentEmailAddr: req.session.paymentEmailAddr,
                        paymentApproved: req.session.paymentApproved,
                        paymentDetails: req.session.paymentDetails
                    };

                    // send the email with the response
                    // TODO: Should fix this to properly handle result
                    common.sendEmail(req.session.paymentEmailAddr, 'Your payment with ' + config.cartTitle, common.getEmailTemplate(paymentResults));

                    res.redirect('/payment/' + order._id);
                });
            });
        });
    });
});

// The homepage of the site
router.post('/checkout_action', (req, res, next) => {
    const db = req.app.db;
    const config = req.app.config;
    const paypalConfig = common.getPaymentConfig();

    // setup the payment object
    const payment = {
        intent: 'sale',
        payer: {
            payment_method: 'paypal'
        },
        redirect_urls: {
            return_url: config.baseUrl + '/paypal/checkout_return',
            cancel_url: config.baseUrl + '/paypal/checkout_cancel'
        },
        transactions: [{
            amount: {
                total: req.session.totalCartAmount,
                currency: paypalConfig.paypalCurrency
            },
            description: paypalConfig.paypalCartDescription
        }]
    };

    // set the config
    paypal.configure(paypalConfig);

    // create payment
    paypal.payment.create(payment, (error, payment) => {
        if(error){
            req.session.message = 'There was an error processing your payment. You have not been changed and can try again.';
            req.session.messageType = 'danger';
            res.redirect('/pay');
            return;
        }
        if(payment.payer.payment_method === 'paypal'){
            req.session.paymentId = payment.id;
            let redirectUrl;
            for(let i = 0; i < payment.links.length; i++){
                const link = payment.links[i];
                if(link.method === 'REDIRECT'){
                    redirectUrl = link.href;
                }
            }

            // if there is no items in the cart then render a failure
            if(!req.session.cart){
                req.session.message = 'The are no items in your cart. Please add some items before checking out';
                req.session.messageType = 'danger';
                res.redirect('/');
                return;
            }

            // new order doc
            const orderDoc = {
                orderPaymentId: payment.id,
                orderPaymentGateway: 'Paypal',
                orderTotal: req.session.totalCartAmount,
                orderEmail: req.body.shipEmail,
                orderFirstname: req.body.shipFirstname,
                orderLastname: req.body.shipLastname,
                orderAddr1: req.body.shipAddr1,
                orderAddr2: req.body.shipAddr2,
                orderCountry: req.body.shipCountry,
                orderState: req.body.shipState,
                orderPostcode: req.body.shipPostcode,
                orderPhoneNumber: req.body.shipPhoneNumber,
                orderComment: req.body.orderComment,
                orderStatus: payment.state,
                orderDate: new Date(),
                orderProducts: req.session.cart
            };

            if(req.session.orderId){
                // we have an order ID (probably from a failed/cancelled payment previosuly) so lets use that.

                // send the order to Paypal
                res.redirect(redirectUrl);
            }else{
                // no order ID so we create a new one
                db.orders.insertOne(orderDoc, (err, newDoc) => {
                    if(err){
                        console.info(err.stack);
                    }

                    // get the new ID
                    const newId = newDoc.insertedIds['0'];

                    // set the order ID in the session
                    req.session.orderId = newId;

                    // send the order to Paypal
                    res.redirect(redirectUrl);
                });
            }
        }
    });
});

module.exports = router;
Linting 2019-07-12 18:06:34 +10:00			`const express = require('express');`
			`const common = require('../../lib/common');`
Fixed invalid path 2019-06-15 15:58:19 +10:00			`const { indexOrders } = require('../../lib/indexing');`
Linting 2019-07-12 18:06:34 +10:00			`const paypal = require('paypal-rest-sdk');`
			`const router = express.Router();`
initial commit 2018-01-07 04:55:48 +10:00
			`router.get('/checkout_cancel', (req, res, next) => {`
			`// return to checkout for adjustment or repayment`
			`res.redirect('/checkout');`
			`});`

			`router.get('/checkout_return', (req, res, next) => {`
Linting 2019-07-12 18:06:34 +10:00			`const db = req.app.db;`
			`const config = req.app.config;`
			`const paymentId = req.session.paymentId;`
Linting 2019-11-03 09:18:34 +10:00			`const payerId = req.query.PayerID;`
initial commit 2018-01-07 04:55:48 +10:00
Linting 2019-07-12 18:06:34 +10:00			`const details = { payer_id: payerId };`
initial commit 2018-01-07 04:55:48 +10:00			`paypal.payment.execute(paymentId, details, (error, payment) => {`
			`let paymentApproved = false;`
			`let paymentMessage = '';`
			`let paymentDetails = '';`
			`if(error){`
			`paymentApproved = false;`

			`if(error.response.name === 'PAYMENT_ALREADY_DONE'){`
			`paymentApproved = false;`
			`paymentMessage = error.response.message;`
			`}else{`
			`paymentApproved = false;`
			`paymentDetails = error.response.error_description;`
			`}`

			`// set the error`
			`req.session.messageType = 'danger';`
			`req.session.message = error.response.error_description;`
			`req.session.paymentApproved = paymentApproved;`
			`req.session.paymentDetails = paymentDetails;`

			`res.redirect('/payment/' + req.session.orderId);`
			`return;`
			`}`

Linting 2019-07-12 18:06:34 +10:00			`const paymentOrderId = req.session.orderId;`
initial commit 2018-01-07 04:55:48 +10:00			`let paymentStatus = 'Approved';`

			`// fully approved`
			`if(payment.state === 'approved'){`
			`paymentApproved = true;`
			`paymentStatus = 'Paid';`
			`paymentMessage = 'Your payment was successfully completed';`
			`paymentDetails = '<p><strong>Order ID: </strong>' + paymentOrderId + '</p><p><strong>Transaction ID: </strong>' + payment.id + '</p>';`

			`// clear the cart`
			`if(req.session.cart){`
			`req.session.cart = null;`
			`req.session.orderId = null;`
			`req.session.totalCartAmount = 0;`
			`}`
			`}`

			`// failed`
			`if(payment.failureReason){`
			`paymentApproved = false;`
			`paymentMessage = 'Your payment failed - ' + payment.failureReason;`
			`paymentStatus = 'Declined';`
			`}`

			`// update the order status`
Fixing deprecated DB calls 2019-10-29 18:26:30 +10:00			`db.orders.updateOne({ _id: common.getId(paymentOrderId) }, { $set: { orderStatus: paymentStatus } }, { multi: false }, (err, numReplaced) => {`
initial commit 2018-01-07 04:55:48 +10:00			`if(err){`
			`console.info(err.stack);`
			`}`
Linting and refactoring 2019-06-15 14:46:08 +10:00			`db.orders.findOne({ _id: common.getId(paymentOrderId) }, (err, order) => {`
initial commit 2018-01-07 04:55:48 +10:00			`if(err){`
			`console.info(err.stack);`
			`}`

			`// add to lunr index`
Incorrect reference to indexing 2019-06-15 15:56:51 +10:00			`indexOrders(req.app)`
Cleaned up old code and updated readme 2018-01-07 22:14:17 +10:00			`.then(() => {`
			`// set the results`
			`req.session.messageType = 'success';`
			`req.session.message = paymentMessage;`
			`req.session.paymentEmailAddr = order.orderEmail;`
			`req.session.paymentApproved = paymentApproved;`
			`req.session.paymentDetails = paymentDetails;`

Linting 2019-07-12 18:06:34 +10:00			`const paymentResults = {`
Cleaned up old code and updated readme 2018-01-07 22:14:17 +10:00			`message: req.session.message,`
			`messageType: req.session.messageType,`
			`paymentEmailAddr: req.session.paymentEmailAddr,`
			`paymentApproved: req.session.paymentApproved,`
			`paymentDetails: req.session.paymentDetails`
			`};`

			`// send the email with the response`
Some TODOs 2018-01-22 07:20:46 +10:00			`// TODO: Should fix this to properly handle result`
Cleaned up old code and updated readme 2018-01-07 22:14:17 +10:00			`common.sendEmail(req.session.paymentEmailAddr, 'Your payment with ' + config.cartTitle, common.getEmailTemplate(paymentResults));`

			`res.redirect('/payment/' + order._id);`
			`});`
initial commit 2018-01-07 04:55:48 +10:00			`});`
			`});`
			`});`
			`});`

			`// The homepage of the site`
			`router.post('/checkout_action', (req, res, next) => {`
Linting 2019-07-12 18:06:34 +10:00			`const db = req.app.db;`
			`const config = req.app.config;`
			`const paypalConfig = common.getPaymentConfig();`
initial commit 2018-01-07 04:55:48 +10:00
			`// setup the payment object`
Linting 2019-07-12 18:06:34 +10:00			`const payment = {`
			`intent: 'sale',`
			`payer: {`
			`payment_method: 'paypal'`
initial commit 2018-01-07 04:55:48 +10:00			`},`
Linting 2019-07-12 18:06:34 +10:00			`redirect_urls: {`
			`return_url: config.baseUrl + '/paypal/checkout_return',`
			`cancel_url: config.baseUrl + '/paypal/checkout_cancel'`
initial commit 2018-01-07 04:55:48 +10:00			`},`
Linting 2019-07-12 18:06:34 +10:00			`transactions: [{`
			`amount: {`
			`total: req.session.totalCartAmount,`
			`currency: paypalConfig.paypalCurrency`
initial commit 2018-01-07 04:55:48 +10:00			`},`
Linting 2019-07-12 18:06:34 +10:00			`description: paypalConfig.paypalCartDescription`
initial commit 2018-01-07 04:55:48 +10:00			`}]`
			`};`

			`// set the config`
			`paypal.configure(paypalConfig);`

			`// create payment`
			`paypal.payment.create(payment, (error, payment) => {`
			`if(error){`
			`req.session.message = 'There was an error processing your payment. You have not been changed and can try again.';`
			`req.session.messageType = 'danger';`
			`res.redirect('/pay');`
			`return;`
			`}`
			`if(payment.payer.payment_method === 'paypal'){`
			`req.session.paymentId = payment.id;`
			`let redirectUrl;`
			`for(let i = 0; i < payment.links.length; i++){`
Linting 2019-07-12 18:06:34 +10:00			`const link = payment.links[i];`
initial commit 2018-01-07 04:55:48 +10:00			`if(link.method === 'REDIRECT'){`
			`redirectUrl = link.href;`
			`}`
			`}`

			`// if there is no items in the cart then render a failure`
			`if(!req.session.cart){`
			`req.session.message = 'The are no items in your cart. Please add some items before checking out';`
			`req.session.messageType = 'danger';`
			`res.redirect('/');`
			`return;`
			`}`

			`// new order doc`
Linting 2019-07-12 18:06:34 +10:00			`const orderDoc = {`
initial commit 2018-01-07 04:55:48 +10:00			`orderPaymentId: payment.id,`
			`orderPaymentGateway: 'Paypal',`
			`orderTotal: req.session.totalCartAmount,`
			`orderEmail: req.body.shipEmail,`
			`orderFirstname: req.body.shipFirstname,`
			`orderLastname: req.body.shipLastname,`
			`orderAddr1: req.body.shipAddr1,`
			`orderAddr2: req.body.shipAddr2,`
			`orderCountry: req.body.shipCountry,`
			`orderState: req.body.shipState,`
			`orderPostcode: req.body.shipPostcode,`
			`orderPhoneNumber: req.body.shipPhoneNumber,`
Allow for order wide comments on payment 2018-10-05 23:15:12 +10:00			`orderComment: req.body.orderComment,`
initial commit 2018-01-07 04:55:48 +10:00			`orderStatus: payment.state,`
			`orderDate: new Date(),`
			`orderProducts: req.session.cart`
			`};`

			`if(req.session.orderId){`
			`// we have an order ID (probably from a failed/cancelled payment previosuly) so lets use that.`

			`// send the order to Paypal`
			`res.redirect(redirectUrl);`
			`}else{`
			`// no order ID so we create a new one`
Fixing deprecated DB calls 2019-10-29 18:26:30 +10:00			`db.orders.insertOne(orderDoc, (err, newDoc) => {`
initial commit 2018-01-07 04:55:48 +10:00			`if(err){`
			`console.info(err.stack);`
			`}`

			`// get the new ID`
Linting 2019-07-12 18:06:34 +10:00			`const newId = newDoc.insertedIds['0'];`
initial commit 2018-01-07 04:55:48 +10:00
			`// set the order ID in the session`
			`req.session.orderId = newId;`

			`// send the order to Paypal`
			`res.redirect(redirectUrl);`
			`});`
			`}`
			`}`
			`});`
			`});`

			`module.exports = router;`