WebSVN – PEEPS – Diff – /trunk/site/confirmation.pl

 use strict;
 use PEEPS;
 use CGI qw/param header start_html url/;
+use CGI::Cookie;
-use CGI::Cookie;
+use tableViewer qw/ notInArray /;
 our $h = HTML::Tiny->new( mode => 'html' );
 my $dbh = getRCDBH ();
 $ENV{HTTPS} = 'ON' if $ENV{SERVER_NAME} =~ /^peeps/;
 $dbh->{PrintError} = 1;
 my $cookie_string = authenticate (1) || die;
 my ($EML, $PWD, $LVL) = split /&/, $cookie_string;
-my $user = $ORCUSER;
-#my $activated = $ORCUSER->{access};
+my $user = $ORCUSER;
 #my $activated = $ORCUSER->{access};
 print header (-cookie=>CGI::Cookie->new(-name=>'PEEPSAUTH',-value=>"$cookie_string"));
 use DateTime;
 #use DateTime::Format::Strptime;
 my $dt = DateTime->today;
-$dt =~ s/T00\:00\:00$//;
+$dt =~ s/T00\:00\:00$//;
-$user->{policy} = isPersonCovered ($user->{id});
-if ($user->{policy}) {
+#$user->{policy} = isPersonCovered ($user->{id});
-  my $daysremaining = remainingPolicyDays ($user->{id}, $user->{policy});
-  printRCHeader("Atttestation");
-  print $h->close ("table");
+#if ($user->{policy}) {
-  print $h->h2 ("Not Eligible for Renewal");
-  print $h->div ({ style=>"max-width:450px;" }, "You're currently covered by policy $user->{policy}, which has $daysremaining days remaining. You can only renew within the last 90 days of your current policy.", "&nbsp;");
+#  my $daysremaining = remainingPolicyDays ($user->{id}, $user->{policy});
   print $h->button ({onclick => "window.location.href='/';"}, "Home");
+#  ERROR ("Not Eligible for Renewal",
+#         "You're currently covered by policy $user->{policy}, which has $daysremaining days remaining. You can only renew within the last 90 days of your current policy.",
-  print $h->close ("BODY", "HTML");
+#         "Viewed Purchase Confirmation page but wasn't eligible to renew.");
+#}
   logit ($user->{id}, "Viewed Purchase Confirmation page but wasn't eligible to renew.");
-  exit;
+## Check for DRAFT payments for the user, get the last one...
-}
+my $order_id = WebDB::trim scalar param ("order_id") // ERROR ("No OrderID Provided", "No OrderID provided to confirmation page.", "No OrderID provided to confirmation page.");
-## Check for DRAFT payments for the user, get the last one...
+#my $checkout = $dbh->selectrow_hashref ("SELECT * FROM wftdi_peeps.square_order where status = ? and person_id = ? order by created desc limit 1", undef, "DRAFT", $user->{id});
+my $checkout = $dbh->selectrow_hashref ("SELECT * FROM wftdi_peeps.square_order where status = ? and order_id = ? order by created desc limit 1", undef, "DRAFT", $order_id);
+if (!$checkout->{square_id}) {
+  ERROR ("Open Order Not Found",
+         "There are no open orders or pending payments found with OrderID: $order_id",
+         "Viewed Purchase Confirmation page with OrderID [$order_id] but didn't have any open payments.");
+}
-my $checkout = $dbh->selectrow_hashref ("SELECT * FROM wftdi_peeps.square_order where status = ? and person_id = ? order by created desc limit 1", undef, "DRAFT", $user->{id});
+# Once we're here, we've found an order_id in DRAFT status. We should make sure it belongs to the user (or their league)
-if (!$checkout->{square_id}) {
+if ($checkout->{person_id} ne $user->{person_id} and notInArray ($checkout->{organization_id}, isLeagueAdmin ($user->{person_id}))) {
 my $response = from_json($client->responseContent());
 #warn Dumper($response);
 if ($response->{order}->{state} eq "DRAFT") {
-  # Checkout hasn't complete yet...
+  # Checkout isn't complete yet...
-  printRCHeader("Atttestation");
+  ERROR ("Open Payment",
-  print $h->div ("It looks like you haven't completed check out at Square yet. ".$h->a ({href=>$checkout->{url}}, "Here's a link to complete your payment."));
+         "It looks like you haven't completed check out at Square yet. ".$h->a ({href=>$checkout->{url}}, "[Click Here]")." to complete your payment.",
-  logit ($user->{id}, "Viewed Confirmation page with an open payment.");
+         "Viewed Confirmation page with an open payment.");
 } elsif ($response->{order}->{state} eq "OPEN") {
   # Checkout completed...
   # create start and end dates based on the user's timezone
     $response->{order}->{tenders}->[0]->{id},
     $response->{order}->{tenders}->[0]->{created_at},
     $checkout->{square_id}
   );
+  # Here's where it gets complicated.  We have to figure out what kind of policy it is to know how to update the coverage records...
+  if ($checkout->{policy_id} eq "1") { # Personal Accident Medical
+    my $policy_id = isPersonCovered ($user->{id});
+    if ($policy_id) {
+      # extend existing coverage
+      $dbh->do ("update coverage set end = date_add(end, INTERVAL 1 YEAR) where id = ?", undef, $policy_id);
+    } else {
+      # insert new coverage
+      my ($new_policy_id) = $dbh->selectrow_array ("select max(id)+1 from coverage");
+      $dbh->do ("insert into coverage (id, person_id, policy_id, policy_name, fee, created, start, end, active) values (?, ?, ?, ?, ?, ?, date(?), date_add(date(?), INTERVAL 1 YEAR), ?)", undef,
+        $new_policy_id,
+        $user->{id},
+        $checkout->{policy_id},
+        $response->{order}->{line_items}->[0]->{name},
+        $response->{order}->{tenders}->[0]->{amount_money}->{amount} / 100,
+        $response->{order}->{tenders}->[0]->{created_at},
+        $adjusted_created_at,
+        $adjusted_created_at,
+      );
-  # Update the users coverage record
+      $dbh->do ("replace into full_person select * from v_person where id = ?", undef, $user->{id});
+      $policy_id = isPersonCovered ($user->{id});
+    }
+    if ($policy_id) {
+      my $daysremaining = remainingPolicyDays ($user->{id}, $policy_id);
+      communicateConfirmation ({ to => $user->{email},
+                                 policy => $response->{order}->{line_items}->[0]->{name},
+                                 message => "You're currently covered by policy $policy_id, which has $daysremaining days remaining." });
+    } else {
+      ERROR ("Unknown Error Confirming Purchase",
+             "It seemed like you successfully purchased insurance, but then there was an issue updating our records. You should probably email peeps\@wftdi.com and tell them to investigate.",
+             "ERROR: Checkout complete, but PEEPS coverage failed to update.");
+    }
+  } elsif ($checkout->{policy_id} eq "2") { # League General Liability
-  my $policy_id = isPersonCovered ($user->{id});
+    my $policy_id = isLeagueCovered ($checkout->{organization_id});
-  if ($policy_id) {
+    if ($policy_id) {
+      # extend existing coverage
+      $dbh->do ("update org_coverage set end = date_add(end, INTERVAL 1 YEAR) where id = ?", undef, $policy_id);
+    } else {
+      # insert new coverage
+      my ($new_policy_id) = $dbh->selectrow_array ("select max(id)+1 from org_coverage");
+      $dbh->do ("insert into org_coverage (id, organization_id, policy_id, policy_name, fee, created, start, end, active) values (?, ?, ?, ?, ?, ?, date(?), date_add(date(?), INTERVAL 1 YEAR), ?)", undef,
+        $new_policy_id,
+        $checkout->{organization_id},
+        $checkout->{policy_id},
+        $response->{order}->{line_items}->[0]->{name},
+        $response->{order}->{tenders}->[0]->{amount_money}->{amount} / 100,
+        $response->{order}->{tenders}->[0]->{created_at},
+        $adjusted_created_at,
+        $adjusted_created_at,
+      );
+      $policy_id = isLeagueCovered ($user->{id});
+    }
+    if ($policy_id) {
+      my $daysremaining = remainingOrgPolicyDays ($checkout->{organization_id}, $policy_id);
+      communicateConfirmation ({ to => $user->{email},
+                                 policy => $response->{order}->{line_items}->[0]->{name},
+                                 message => "Your league is currently covered by policy $policy_id, which has $daysremaining days remaining.",
+                                 orgid => $checkout->{organization_id} });
+    } else {
+      ERROR ("Unknown Error Confirming Purchase",
+             "It seemed like you successfully purchased insurance, but then there was an issue updating our records. You should probably email peeps\@wftdi.com and tell them to investigate.",
+             "ERROR: Checkout complete, but PEEPS coverage failed to update.");
+    }
+  } elsif ($checkout->{policy_id} eq "3") { # League Alcohol Liability
+    my $policy_id = isLeagueCovered ($checkout->{organization_id}, undef, "WFTDA League Alcohol Liability");
+    if ($policy_id) {
-    # extend existing coverage
+      # extend existing coverage
+      $dbh->do ("update org_coverage set end = date_add(end, INTERVAL 1 YEAR) where id = ?", undef, $policy_id);
+    } else {
+      # insert new coverage
+      my ($new_policy_id) = $dbh->selectrow_array ("select max(id)+1 from org_coverage");
+      $dbh->do ("insert into org_coverage (id, organization_id, policy_id, policy_name, fee, created, start, end, active) values (?, ?, ?, ?, ?, ?, date(?), MAKEDATE(YEAR(CURDATE()), 365), ?)", undef,
+        $new_policy_id,
+        $checkout->{organization_id},
+        $checkout->{policy_id},
+        $response->{order}->{line_items}->[0]->{name},
+        $response->{order}->{tenders}->[0]->{amount_money}->{amount} / 100,
+        $response->{order}->{tenders}->[0]->{created_at},
+        $adjusted_created_at,
+      );
+      $policy_id = isLeagueCovered ($user->{id});
+    }
+    if ($policy_id) {
+      my $daysremaining = remainingOrgPolicyDays ($checkout->{organization_id}, $policy_id);
+      communicateConfirmation ({ to => $user->{email},
+                                 policy => $response->{order}->{line_items}->[0]->{name},
+                                 message => "Your league is currently covered by policy $policy_id, which has $daysremaining days remaining.",
-    $dbh->do ("update coverage set end = date_add(end, INTERVAL 1 YEAR) where id = ?", undef, $policy_id);
+                                 orgid => $checkout->{organization_id} });
+    } else {
+      ERROR ("Unknown Error Confirming Purchase",
+             "It seemed like you successfully purchased insurance, but then there was an issue updating our records. You should probably email peeps\@wftdi.com and tell them to investigate.",
+             "ERROR: Checkout complete, but PEEPS coverage failed to update.");
+    }
-  } else {
+  } elsif ($checkout->{policy_id} eq "4") { # RollerCon
     # insert new coverage
     my ($new_policy_id) = $dbh->selectrow_array ("select max(id)+1 from coverage");
+    $dbh->do ("insert into coverage (id, person_id, policy_id, policy_name, fee, created, start, end, active) values (?, ?, ?, ?, ?, ?, ?, ?, ?)", undef,
-    $dbh->do ("insert into coverage (id, person_id, policy_name, fee, created, start, end, active) values ($new_policy_id, ?, ?, ?, ?, date(?), date_add(date(?), INTERVAL 1 YEAR), ?)", undef,
+      $new_policy_id,
+      $user->{id},
-      $user->{id},
+      $checkout->{policy_id},
       $response->{order}->{line_items}->[0]->{name},
       $response->{order}->{tenders}->[0]->{amount_money}->{amount} / 100,
       $response->{order}->{tenders}->[0]->{created_at},
-      $adjusted_created_at,
+      "2026-07-09",
-      $adjusted_created_at,
+      "2026-07-11",
     );
-    $policy_id = isPersonCovered ($user->{id});
+    my $policy_id = $new_policy_id;
-    printRCHeader("Purchase Confirmation");
     print $h->close ("table");
     if ($policy_id) {
-      my $daysremaining = remainingPolicyDays ($user->{id}, $policy_id);
+      communicateConfirmation ({ to => $user->{email},
-      print $h->h2 ("Congratulations!");
+                                 policy => $response->{order}->{line_items}->[0]->{name},
-      print $h->div ({ style=>"max-width:450px;" }, "You've successfully purchased insurance.", "You're currently covered by policy $policy_id, which has $daysremaining days remaining.", "&nbsp;");
-      print $h->button ({onclick => "window.location.href='/';"}, "Home");
-      print $h->close ("BODY", "HTML");
-      logit ($user->{id}, "Successfully renewed insurance.");
-      emailConfirmation ($user->{email});
-      exit;
+                                 message => "You are covered for RollerCon on-site event skating activities by policy $policy_id, July 9-11, 2026." });
     } else {
-      print $h->h2 ("That's weird!");
+      ERROR ("Unknown Error Confirming Purchase",
-      print $h->div ({ style=>"max-width:450px;" }, "It seemed like you successfully purchased insurance, but then there was an issue updating your records. You should probably email peeps\@wftdi.com and tell them to investigate.", "&nbsp;");
-      print $h->button ({onclick => "window.location.href='/';"}, "Home");
-      print $h->close ("BODY", "HTML");
+             "It seemed like you successfully purchased insurance, but then there was an issue updating our records. You should probably email peeps\@wftdi.com and tell them to investigate.",
-      logit ($user->{id}, "ERROR: Checkout complete, but PEEPS coverage failed to update.");
-      exit;
+             "ERROR: Checkout complete, but PEEPS coverage failed to update.");
-    }
+    }
-  }
+  }
 } else {
-  # Something weird has happened.
-  printRCHeader("Purchase Confirmation");
+  # Something weird happened.
-  print $h->h2 ("Whoa, ERROR!");
-  print $h->div ("Something weird has happened. You should probably email peeps\@wftdi.com and tell them to investigate.", "&nbsp;");
-  print $h->button ({onclick => "window.location.href='/';"}, "Home");
-  logit ($user->{id}, "ERROR: Something really weird happend during checkout confirmation.");
+  ERROR ();
+}
                          "WFTDA Insurance",
                          $h->br ()
                        );
   use PEEPSMailer;
+  EmailUser ($target, $subject, $message);
+}
+sub communicateConfirmation {
+  my $parameter = shift // return;
+  my $target = $parameter->{to};
+  my $policy = $parameter->{policy};
+  my $message = $parameter->{message};
+  my $orgid = $parameter->{orgid} // "";
+  my @league_admins = $orgid ? map { $_->[0] } @{ $dbh->selectall_arrayref ("select distinct email from person left join role on person.id = role.person_id where role = ? and member_org_id = ? and person.id <> ?", undef, "League Admin", $orgid, $user->{person_id}) } : ();
+  my $subject = $policy." Coverage Confirmation";
+  print header (-cookie=>CGI::Cookie->new(-name=>'PEEPSAUTH',-value=>"$cookie_string"));
+  printRCHeader("Insurance Purchase Confirmation");
+  print $h->close ("table");
+  print $h->h2 ($subject);
+  print $h->div ({ style=>"max-width:450px;" }, "You have successfully purchased $policy coverage.", $message, "&nbsp;");
+  print $h->button ({onclick => "window.location.href='/';"}, "Home");
+  print $h->close ("BODY", "HTML");
+  my $message = $h->p ($h->br ()).
+                $h->p ({ style => "text-align: center;" }, $h->img ({ alt => "", src => "https://peeps.gadell.org/images/wftda-insurance-logo.svg", style => "width: 300px; height: 97px;"})).
+                $h->p (
+                         $h->br (),
+                         ["Greetings", $h->br (), $h->br ()],
+                         ["You have successfully purchased $policy coverage.", $message, $h->br (), $h->br ()],
+                         "Thank you for enrolling in WFTDA Insurance! This email confirms your coverage is in effect, please retain it for your records. For additional resources, forms and information, please visit ".$h->a ({ href => "https://wftdi.com" }, "wftdi.com").'. &nbsp;',
+                         $h->br (),
+                         "WFTDA Insurance",
+                         $h->br ()
+                       );
+  if ($orgid) {
+    orglogit ($user->{id}, $orgid, "Successfully purchased $policy coverage");
+    logit ($user->{id}, "Successfully purchased $policy coverage for ".getLeagueName ($orgid).".");
+  } else {
+    logit ($user->{id}, "Successfully purchased $policy coverage.")
+  }
+  use PEEPSMailer;
+  if (scalar @league_admins) {
+    EmailMultipleUsers ({ to => [$target], cc => \@league_admins, subject => $subject, body => $message });
+  } else {
+    EmailUser ($target, $subject, $message);
+  }
+  exit;
+}
+sub ERROR {
+  my $header = shift // "Unknown Error";
+  my $text   = shift // "Something unexpectedly bad happened.";
+  my $logmsg = shift // "Unknown Error happened while viewing the Confirmation page";
+  print header (-cookie=>CGI::Cookie->new(-name=>'PEEPSAUTH',-value=>"$cookie_string"));
+  printRCHeader("Confirmation");
+  print $h->close ("table");
+  print $h->h2 ($header);
+  print $h->div ({ style=>"max-width:450px;" }, $text, "&nbsp;");
+  print $h->button ({onclick => "window.location.href='/';"}, "Home");
+  print $h->close ("BODY", "HTML");
-  EmailUser ($target, $subject, $message);
+  logit ($user->{id}, $logmsg);

Subversion Repositories PEEPS

(root)/trunk/site/confirmation.pl – Rev 19 → 22