/ var / www / html / temppayment / pg / [ HOME SHELL ]

Name	Size	Permission	Action
fees	[ DIR ]	drwxr-xr-x
fees-old	[ DIR ]	drwxr-xr-x
ldaplogin	[ DIR ]	drwxr-xr-x
studentsfee	[ DIR ]	drwxr-xr-x
FailedTRAN.php	4.52 KB	-rw-r--r--
ForgetPassword.php	3.09 KB	-rw-r--r--
GetHandleRES.php	11.12 KB	-rw-r--r--
StatusTRAN.php	4.89 KB	-rw-r--r--
donationmail.php	5.71 KB	-rw-r--r--
giveback.php	10.15 KB	-rw-r--r--
index.html	773 B	-rwxrwxrwx
info.php	33 B	-rw-r--r--
libraryfaq.html	16.56 KB	-rw-r--r--
misp.html	14.15 KB	-rw-r--r--
misptest.html	14.15 KB	-rw-r--r--
pay.php	2.46 KB	-rw-r--r--
paybilldesk.php	2.51 KB	-rw-r--r--
payhdfc.php	11.8 KB	-rw-r--r--
payhdfctest.php	8.42 KB	-rw-r--r--
pma.zip	6.17 MB	-rw-r--r--
policyterms.html	6.67 KB	-rw-r--r--
recounsiliation.php	5.52 KB	-rw-r--r--
studentsfee.tar	15.22 MB	-rw-r--r--
test.php	131 B	-rw-r--r--
vendor.php	10.63 KB	-rw-r--r--

Code Editor : payhdfctest.php

<?php 
/*include "fees/database.php";
$TranTrackid=isset($_POST['MTrackid']) ? $_POST['MTrackid'] : '';
$TranAmount=isset($_POST['tamount']) ? $_POST['tamount'] : '0.00';
$remark=isset($_POST['remark']) ? $_POST['remark'] : 'No Remarks';
$sqluser = "INSERT INTO user(Name 			 ,Email				 ,Password			  ,Mobile			   ,UType,ENo,RNo				  				   ,CName					  ,Course			    ,Adress) 
VALUES ('".$_POST[FName]." ".$_POST[LName]."','".$_POST[Email]."','".$_POST[Mobile]."','".$_POST[Mobile]."',4,'MSIP','".$_POST[memberid].$_POST[PaperID]."','".$_POST[organization]."','".$_POST[regtype]."','".$_POST[organization]." ".$_POST[fulladress].", ".$_POST[city].", ".$_POST[state].", ".$_POST[pincode]."')";
echo "Inserting User details.."."'".$_POST[FName]." ".$_POST[LName]."','".$_POST[Email]."','".$_POST[Mobile]."','".$_POST[Mobile]."',4,'MSIP','".$_POST[memberid].",'".$_POST[organization]."','".$_POST[regtype]."','".$_POST[organization]." ".$_POST[fulladress].", ".$_POST[city].", ".$_POST[state].", ".$_POST[pincode]."'";
if (!mysql_query($sqluser,$db_connection))
  {
  die('Error: ' . mysql_error());
  echo "error";
  }
$sql = "INSERT INTO payment(email,Tution,Campus,Hostel,Mess,Caution,Hostelseq,Fine,Other,Amount,Status,remark) VALUES
('".$_POST['Email']."','0.00','0.00','0.00','0.00','0.00','0.00','0.00','0.00','".$TranAmount."','Initiated','".$remark." Id :".$_POST[memberid]."Accomondation : ".$_POST[accomodation]."-via HDFC')";
echo "Inserting User payment details..";
if (!mysql_query($sql,$db_connection))
  {
  die('Error: ' . mysql_error());
  echo "error";
  }
else
{
$TranTrackid= mysql_insert_id($db_connection);
echo "Posting values to payment gateway";
$_SESSION['trackid'] = $TranTrackid;
}*/
/* to pass Tranportal ID provided by the bank to merchant. Tranportal ID is sensitive information
of merchant from the bank, merchant MUST ensure that Tranportal ID is never passed to customer 
browser by any means. Merchant MUST ensure that Tranportal ID is stored in secure environment & 
securely at merchant end. Tranportal Id is referred as id. Tranportal ID for test and production will be 
different, please contact bank for test and production Tranportal ID=70004487/70005964*/
$id="id=70004487";

/* to pass Tranportal password provided by the bank to merchant. Tranportal password is sensitive 
information of merchant from the bank, merchant MUST ensure that Tranportal password is never passed 
to customer browser by any means. Merchant MUST ensure that Tranportal password is stored in secure 
environment & securely at merchant end. Tranportal password is referred as password. Tranportal 
password for test and production will be different, please contact bank for test and production
Tranportal password */
$password="password=70004487";

/* Action Code of the transaction, this refers to type of transaction. Action Code 1 stands of 
Purchase transaction and action code 4 stands for Authorization (pre-auth). Merchant should 
confirm from Bank action code enabled for the merchant by the bank*/ 
$action="action=1";

/* Transaction language, THIS MUST BE ALWAYS USA. */
$langid="langid=USA";

/* Currency code of the transaction. By default INR i.e. 356 is configured. If merchant wishes 
to do multiple currency code transaction, merchant needs to check with bank team on the available 
currency code */
$currencycode="currencycode=356";

/* Transaction Amount that will be send to payment gateway by merchant for processing
NOTE - Merchant MUST ensure amount is sent from merchant back-end system like database
and not from customer browser. In below sample AMT is hard-coded, merchant to pass 
trasnaction amount here. */
$amt="amt=".$TranAmount;
/* Response URL where Payment gateway will send response once transaction processing is completed 
Merchant MUST esure that below points in Response URL
1- Response URL must start with http://
2- the Response URL SHOULD NOT have any additional paramteres or query string */ 
$responseURL="responseURL=http://payments.iiitd.edu.in/pg/fees/GetHandleRES.php";
/* Error URL where Payment gateway will send response in case any issues while processing the transaction 
Merchant MUST esure that below points in ErrorURL 
1- error url must start with http://
2- the error url SHOULD NOT have any additional paramteres or query string
*/ 
$errorURL="errorURL=http://payments.iiitd.edu.in/pg/fees/StatusTRAN.php";

/* To pass the merchant track id, in below sample merchant track id is hard-coded. Merchant
MUST pass his transaction ID (track ID) in this parameter. Track Id passed here should be 
from merchant backend system like database and not from customer browser*/
//$trackid="trackid=".$TranTrackid;
$trackid="trackid=8888";
/* User Defined Fileds as per Merchant or bank requirment. Merchant MUST ensure merchant 
merchant is not passing junk values OR CRLF in any of the UDF. In below sample UDF values 
are not utilized */
If(isset($_POST['regtype'])){$udf1="udf1=".$_POST['regtype'];}else{$udf1="udf1=Not Set";}
If(isset($_POST['Email'])){$udf2="udf2=".$_POST['Email'];}else{$udf2="udf2=Not Set";}
If(isset($_POST['Mobile'])){$udf3="udf3=".$_POST['Mobile'];}else{$udf3="udf3=Not Set";}
If(isset($_POST['FName'])){$udf4="udf4=".$_POST['FName']." ". $_POST['LName'];}else{$udf4="udf4=Not Set";}
if($_POST['organization']){$udf5="udf5=".$_POST['organization'];}else {$udf5="udf5=IIITD";}
/*
ME should now do the validations on the amount value set like - 
a) Transaction Amount should not be blank and should be only numeric
b) Language should always be USA
c) Action Code should not be blank
d) UDF values should not have junk values and CRLF (line terminating parameters)
*/
/* Now merchant sets all the inputs in one string for passing to the Payment Gateway URL */		
$param=$id."&".$password."&".$action."&".$langid."&".$currencycode."&".$amt."&".$responseURL."&".$errorURL."&".$trackid."&".$udf1."&".$udf2."&".$udf3."&".$udf4."&".$udf5;
/* This is Payment Gateway Test URL where merchant sends request. This is test enviornment URL, 
production URL will be different and will be shared by Bank during production movement */
$url = "https://securepg.fssnet.co.in/pgway/servlet/PaymentInitHTTPServlet";
/* 
Log the complete request in the log file for future reference */

/*
Now creating a connection and sending request
Note - In PHP CURL function is used for sending TCPIP request
*/
echo $param.$url;
$ch = curl_init() or die(curl_error());
curl_setopt($ch, CURLOPT_POST,1);
curl_setopt($ch, CURLOPT_POSTFIELDS,$param); 
curl_setopt($ch, CURLOPT_PORT, 443);// port 443
curl_setopt($ch, CURLOPT_URL,$url);// here the request is sent to payment gateway 
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); 
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST,0); //create a SSL connection object server-to-server
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER,0); 
$data1=curl_exec($ch) or die(curl_error());
curl_close($ch); 
$response = $data1;
            try
			{
				$index=strpos($response,"!-");
				$ErrorCheck=substr($response, 1, $index-1);//This line will find Error Keyword in response
				if($ErrorCheck == 'ERROR')//This block will check for Error in response
				{
				$failedurl = 'http://payments.iiitd.edu.in/pg/fees/FailedTRAN.php?message=PAYMENT FAILED ('.$response.' )&ME_TX_ID='.$TranTrackid;
					//$failedurl = 'http://payments.iiitd.edu.in/pg/fees/FailedTRAN.php';
					echo $failedurl;
					$sql ="Update payment set Status='".$response."', Logs = 'Param = ".$param."' Where id=".$TranTrackid;
					mysql_query($sql,$db_connection);
					header("location:". $failedurl."&".$udf1."&".$udf2."&".$udf3."&".$udf4."&".$udf5 );
				}
				else
				{	//echo $response;
					// If Payment Gateway response has Payment ID & Pay page URL		
					$i =  strpos($response,":");
					// Merchant MUST map (update) the Payment ID received with the merchant Track Id in his database at this place.
					$paymentId = substr($response, 0, $i);
					$paymentPage = substr( $response, $i + 1);
					$sql ="Update payment set Status='".$response."', Logs = 'Param = ".$param."' Where id=".$TranTrackid;
					mysql_query($sql,$db_connection);
					// here redirecting the customer browser from ME site to Payment Gateway Page with the Payment ID
					$redirecthere = $paymentPage . "?PaymentID=" . $paymentId;
					//$r = $paymentPage;
					header("location:". $redirecthere."&".$udf1."&".$udf2."&".$udf3."&".$udf4."&".$udf5 );
				}
			}
			catch(Exception $e)
			{
				var_dump($e->getMessage());
			}

?>

Urban Research Lab

Urban Research Lab

The Urban Research Lab (URL) at IIIT-Delhi was established in 2020, during a time when the pandemic brought the complexities of urban life more visible than ever. What started as an initiative by faculty and students has grown into a collaborative space for critically exploring and reimagining the urban questions through research, dialogue, and interdisciplinary engagement.