-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathchange-card-process.php
executable file
·68 lines (49 loc) · 1.57 KB
/
change-card-process.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
<?php
// [INCLUDE] //
include('./common/session.php');
include('connection.php');
// [REQUIRE] //
require_once('./api/stripe/index.php');
// [INIT] //
$card_number = '';
$card_exp_month = '';
$card_exp_year = '';
$card_cvv = '';
// [STRIPE] //
$StripeWrapper = new StripeWrapper();
// [REDIRECT] //
if ($_SESSION['loggedin'] != true) { header('Location: ./login.php'); }
// [POST-VALUES] //
if (isset($_POST['card_number'])) {
$card_number = strip_tags($_POST['card_number']);
}
else { $error = 'No card_number passed'; }
if (isset($_POST['card_exp_month'])) {
$card_exp_month = strip_tags($_POST['card_exp_month']);
}
else { $error = 'No card_exp_month passed'; }
if (isset($_POST['card_exp_year'])) {
$card_exp_year = strip_tags($_POST['card_exp_year']);
}
else { $error = 'No card_exp_year passed'; }
if (isset($_POST['card_cvv'])) {
$card_cvv = strip_tags($_POST['card_cvv']);
}
else { $error = 'No card_cvv passed'; }
// [SANITIZE] //
$card_number = filter_var($card_number, FILTER_SANITIZE_NUMBER_INT);
$card_number = preg_replace( '/\d[ *]\d/', '', $card_number);
$card_exp_month = filter_var($card_exp_month, FILTER_SANITIZE_NUMBER_INT);
$card_exp_year = filter_var($card_exp_year, FILTER_SANITIZE_NUMBER_INT);
$card_cvv = filter_var($card_cvv, FILTER_SANITIZE_NUMBER_INT);
echo 'sdfsdf'.$card_exp_year;
// [STRIPE] update payment method //
$updatedPmObj = $StripeWrapper->updateDefaultPaymentMethod(
$_SESSION['stripe_cus_id'],
$card_number,
$card_exp_month,
$card_exp_year,
$card_cvv
);
header('Location: ./dashboard.php');
?>