Updated Guest pay and Client Add Delete Payments, adjustedsetting saved payment per recurring invoice

2026-02-28 10:54:52 +00:00 · 2025-07-09 01:45:56 -04:00
parent 307d9892b2
commit 9bc705bfa1
14 changed files with 562 additions and 545 deletions
--- a/client/saved_payment_methods.php
+++ b/client/saved_payment_methods.php
@@ -0,0 +1,138 @@
+<?php
+/*
+ * Client Portal - AutoPay Configuration (multi-provider)
+ */
+
+require_once "includes/inc_all.php";
+
+if ($session_contact_primary == 0 && !$session_contact_is_billing_contact) {
+    header("Location: post.php?logout");
+    exit();
+}
+
+// Initialize Stripe
+require_once '../plugins/stripe-php/init.php';
+
+// Get Stripe provider info
+$stripe_provider_query = mysqli_query($mysqli, "
+    SELECT * FROM payment_providers WHERE payment_provider_name = 'Stripe' LIMIT 1
+");
+$stripe_provider = mysqli_fetch_array($stripe_provider_query);
+
+if (!$stripe_provider) {
+    echo "Stripe payment error - Stripe provider is not configured.";
+    include_once 'includes/footer.php';
+    exit();
+}
+
+$stripe_provider_id = intval($stripe_provider['payment_provider_id']);
+$stripe_public_key = nullable_htmlentities($stripe_provider['payment_provider_public_key']);
+$stripe_secret_key = nullable_htmlentities($stripe_provider['payment_provider_private_key']);
+
+// Get client's Stripe customer ID
+$stripe_customer_query = mysqli_query($mysqli, "
+    SELECT * FROM client_payment_provider
+    WHERE client_id = $session_client_id AND payment_provider_id = $stripe_provider_id
+    LIMIT 1
+");
+$stripe_customer = mysqli_fetch_array($stripe_customer_query);
+$stripe_customer_id = $stripe_customer ? sanitizeInput($stripe_customer['payment_provider_client']) : null;
+
+// Get saved payment methods
+$saved_methods_query = mysqli_query($mysqli, "
+    SELECT * FROM client_saved_payment_methods
+    WHERE saved_payment_client_id = $session_client_id
+    AND saved_payment_provider_id = $stripe_provider_id
+");
+
+$saved_methods = [];
+while ($row = mysqli_fetch_array($saved_methods_query)) {
+    $saved_methods[] = $row;
+}
+
+// Stripe not properly configured
+if (!$stripe_public_key || !$stripe_secret_key) {
+    echo "Stripe payment error - Stripe credentials missing. Please contact support.";
+    include_once 'includes/footer.php';
+    exit();
+}
+?>
+
+<h3>Saved Payment Methods</h3>
+<div class="row">
+    <div class="col-md-10">
+
+        <?php if (!$stripe_customer_id) { ?>
+            <b>Save card details</b><br>
+            In order to set up automatic payments, you must create a customer record in Stripe.<br>
+            First, you must authorize Stripe to store your card details for the purpose of automatic payment.
+            <br><br>
+
+            <div class="col-5">
+                <form action="post.php" method="POST">
+                    <div class="form-group">
+                        <div class="custom-control custom-checkbox">
+                            <input class="custom-control-input" type="checkbox" id="consent" name="consent" value="1" required>
+                            <label for="consent" class="custom-control-label">
+                                I grant consent for automatic payments
+                            </label>
+                        </div>
+                    </div>
+
+                    <div class="form-group">
+                        <button type="submit" class="form-control btn-success" name="create_stripe_customer">Create Stripe Customer Record</button>
+                    </div>
+                </form>
+            </div>
+
+        <?php } else { ?>
+
+            <b>Manage saved payment methods</b><br><br>
+
+            <?php if (empty($saved_methods)) { ?>
+                <p>You currently have no saved payment methods. Please add one below.</p>
+            <?php } else { ?>
+                <ul>
+                    <?php
+                    try {
+                        $stripe = new \Stripe\StripeClient($stripe_secret_key);
+
+                        foreach ($saved_methods as $method) {
+                            $stripe_pm_id = $method['saved_payment_provider_method'];
+                            $description = nullable_htmlentities($method['saved_payment_description']);
+
+                            $pm = $stripe->paymentMethods->retrieve($stripe_pm_id, []);
+                            $brand = nullable_htmlentities($pm->card->brand);
+                            $last4 = nullable_htmlentities($pm->card->last4);
+                            $exp_month = nullable_htmlentities($pm->card->exp_month);
+                            $exp_year = nullable_htmlentities($pm->card->exp_year);
+
+                            echo "<li>$brand card ending in $last4, expires $exp_month/$exp_year";
+                            echo " – <a href='post.php?delete_saved_payment={$method['saved_payment_id']}&csrf_token={$_SESSION['csrf_token']}'>Remove</a></li>";
+                        }
+                    } catch (Exception $e) {
+                        $error = $e->getMessage();
+                        error_log("Stripe payment error: $error");
+                        logApp("Stripe", "error", "Exception retrieving payment methods: $error");
+                        echo "<p class='text-danger'>Unable to retrieve payment methods from Stripe.</p>";
+                    }
+                    ?>
+                </ul>
+            <?php } ?>
+
+            <hr>
+            <b>Add a new payment method</b><br><br>
+
+            <input type="hidden" id="stripe_publishable_key" value="<?php echo $stripe_public_key ?>">
+            <script src="https://js.stripe.com/v3/"></script>
+            <script src="../js/autopay_setup_stripe.js"></script>
+            <div id="checkout">
+                <!-- Checkout form dynamically loaded -->
+            </div>
+
+        <?php } ?>
+
+    </div>
+</div>
+
+<?php require_once "includes/footer.php"; ?>