PayPal IPN听众回发失败

Question

第一次在这里，我试图解决问题后的几天完全难倒。这是这个问题的背景...

我有一个贝宝IPN监听器脚本。事实上，我有两个版本，因为第一个版本没有工作，所以我尝试了另一个版本，但是这也不起作用。无论我来自PayPal获得的IPN监听器的脚本...

paypal_notifyA.php

从... 开发商。贝宝。 COM /文档/经典/ IPN/gs_IPN/

脚本将停止在...

的fputs（$ FP，$头$ REQ。）;

<?php require_once("../lib/PHPMailer/PHPMailerAutoload.php"); ?> 

<?php 
// Paypal IPN 

// Send an empty HTTP 200 OK response to acknowledge receipt of the notification 
header('HTTP/1.1 200 OK'); 

// Assign payment notification values to local variables 
$invoiceID   = $_POST['invoice']; 
$paymentStatus  = $_POST['payment_status']; 
$productID   = $_POST['item_number']; 
$paymentAmount  = $_POST['mc_gross']; 
$paymentCurrency = $_POST['mc_currency']; 
$txnID    = $_POST['txn_id']; 
$receiverEmail  = $_POST['receiver_email']; 
$payerEmail   = $_POST['payer_email']; 
$response   = $_POST['response']; 

// Build the required acknowledgement message out of the notification just received 
$req = 'cmd=_notify-validate';     // Add 'cmd=_notify-validate' to beginning of the acknowledgement 
foreach ($_POST as $key => $value) {   // Loop through the notification NV pairs 
    $value = urlencode(stripslashes($value)); // Encode these values 
    $req .= "&$key=$value";     // Add the NV pairs to the acknowledgement 
} 

// Set up the acknowledgement request headers 
$header = "POST /cgi-bin/webscr HTTP/1.1\r\n";     // HTTP POST request 
$header .= "Content-Type: application/x-www-form-urlencoded\r\n"; 
$header .= "Content-Length: " . strlen($req) . "\r\n\r\n"; 

// The PayPal IPN Simulator fails on the line below... 
// Open a socket for the acknowledgement request 
$fp = fsockopen('tls://www.sandbox.paypal.com', 443, $errno, $errstr, 30); // paypal.com (LIVE) - sandbox.paypal.com (TEST) 

// Send the HTTP POST request back to PayPal for validation 
fputs($fp, $header . $req); 

while (!feof($fp)) {      // While not EOF 
    $res = fgets($fp, 1024);    // Get the acknowledgement response 
    if (strcmp ($res, "VERIFIED") == 0) { // Response contains VERIFIED - process notification 

     $testStage = "Got past Verified!"; 
     require_once("../emails/ipn_test.php"); 

     // DO MY OWN VERIFIED STUFF HERE 

// ***** INVALID RESPONSE ***** 
} else if (strcmp ($res, "INVALID") == 0) { // Response contains INVALID - reject notification 

    // DO MY OWN INVALID STUFF HERE 
} 

} 
fclose($fp); // Close the file 
?> 

paypal_notifyB.php

从... github上。 COM /paypal/ipn-code-samples/blob/master/paypal_ipn.php

脚本将停止在...

$水库= curl_exec（$ CH）;

，并报告在错误日志中的...

无法连接到PayPal，以验证IPN消息：错误：14077410：SSL例程：SSL23_GET_SERVER_HELLO：SSLV3警报握手失败

<?php require_once("../lib/PHPMailer/PHPMailerAutoload.php"); ?> 

<?php 
// Paypal Notify 

// Start session 
session_start(); 

// CONFIG: Enable debug mode. This means we'll log requests into 'ipn.log' in the same directory. 
// Especially useful if you encounter network errors or other intermittent problems with IPN (validation). 
// Set this to 0 once you go live or don't require logging. 
define("DEBUG", 1); 

// Set to 0 once you're ready to go live 
define("USE_SANDBOX", 1); 

define("LOG_FILE", "./ipn.log"); 


// Read POST data 
// reading posted data directly from $_POST causes serialization 
// issues with array data in POST. Reading raw POST data from input stream instead. 
$raw_post_data = file_get_contents('php://input'); 
$raw_post_array = explode('&', $raw_post_data); 
$myPost = array(); 
foreach ($raw_post_array as $keyval) { 
    $keyval = explode ('=', $keyval); 
    if (count($keyval) == 2) 
     $myPost[$keyval[0]] = urldecode($keyval[1]); 
} 

// read the post from PayPal system and add 'cmd' 
$req = 'cmd=_notify-validate'; 
if(function_exists('get_magic_quotes_gpc')) { 
    $get_magic_quotes_exists = true; 
} 

foreach ($myPost as $key => $value) { 
    if($get_magic_quotes_exists == true && get_magic_quotes_gpc() == 1) { 
     $value = urlencode(stripslashes($value)); 
    } else { 
     $value = urlencode($value); 
    } 
    $req .= "&$key=$value"; 
} 

// Post IPN data back to PayPal to validate the IPN data is genuine 
// Without this step anyone can fake IPN data 
if(USE_SANDBOX == true) { 
    $paypal_url = "https://www.sandbox.paypal.com/cgi-bin/webscr"; 
    $livetestEmail = "info-facilitator@flysoftware.com"; 
} else { 
    $paypal_url = "https://www.paypal.com/cgi-bin/webscr"; 
    $livetestEmail = "info@flysoftware.com"; 
} 

$ch = curl_init($paypal_url); 
if ($ch == FALSE) { 
    return FALSE; 
} 

curl_setopt($ch, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_1); 
curl_setopt($ch, CURLOPT_POST, 1); 
curl_setopt($ch, CURLOPT_RETURNTRANSFER,1); 
curl_setopt($ch, CURLOPT_POSTFIELDS, $req); 
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 1); 
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2); 
curl_setopt($ch, CURLOPT_FORBID_REUSE, 1); 

if(DEBUG == true) { 
    curl_setopt($ch, CURLOPT_HEADER, 1); 
    curl_setopt($ch, CURLINFO_HEADER_OUT, 1); 
} 

// Set TCP timeout to 30 seconds 
curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 30); 
curl_setopt($ch, CURLOPT_HTTPHEADER, array('Connection: Close')); 

// CONFIG: Please download 'cacert.pem' from "http://curl.haxx.se/docs/caextract.html" and set the directory path 
// of the certificate as shown below. Ensure the file is readable by the webserver. 
// This is mandatory for some environments. 

$cert = __DIR__ . "./cacert.pem"; 
curl_setopt($ch, CURLOPT_CAINFO, $cert); 

// PayPal IPN Simulator fails on the line below and reports following error... 
// Can't connect to PayPal to validate IPN message: error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure 
$res = curl_exec($ch); 

if (curl_errno($ch) != 0) { // cURL error 

    if(DEBUG == true) { 
     error_log(date('[Y-m-d H:i e] '). "Can't connect to PayPal to validate IPN message: " . curl_error($ch) . PHP_EOL, 3, LOG_FILE); 
    } 
    curl_close($ch); 
    exit; 
} else { 
     // Log the entire HTTP response if debug is switched on. 
     if(DEBUG == true) { 
      error_log(date('[Y-m-d H:i e] '). "HTTP request of validation request:". curl_getinfo($ch, CURLINFO_HEADER_OUT) ." for IPN payload: $req" . PHP_EOL, 3, LOG_FILE); 
      error_log(date('[Y-m-d H:i e] '). "HTTP response of validation request: $res" . PHP_EOL, 3, LOG_FILE); 
     } 
     curl_close($ch); 
} 

// Inspect IPN validation result and act accordingly 
// Split response headers and payload, a better way for strcmp 

$tokens = explode("\r\n\r\n", trim($res)); 
$res = trim(end($tokens)); 

if (strcmp ($res, "VERIFIED") == 0) { // Response is verified 

    $testStage = "Got past Verified!"; 
    require_once("../emails/ipn_test.php"); 

    // DO MY OWN VERIFIED STUFF HERE 

// ***** INVALID RESPONSE ***** 
} else if (strcmp ($res, "INVALID") == 0) { // Response contains INVALID - reject notification 

    // DO MY OWN INVALID STUFF HERE 

    if(DEBUG == true) { 
     error_log(date('[Y-m-d H:i e] '). "Invalid IPN: $req" . PHP_EOL, 3, LOG_FILE); 
    } 

} 
?> 

当我在PayPal IPN模拟器中尝试使用这两个脚本时，两者都报告...

IPN已发送且握手已得到验证。

但是，这两个脚本都不会与PayPal进行通信，并且永远不会到达“If VERIFIED”条件。因此，在这种情况之后还没有后端代码是无关紧要的 - 只是想让听众现在能够工作！

我已经和我的虚拟主机谈过了，他们表示他们禁用了SSLv3，希望导致这个问题。它没有任何区别，两个脚本在返回PayPal的地方仍然失败。我的主机声称这不是“他们”的错，而且这是PayPal的问题。尽管将主持人指向相关SO线程的方向（我不能发布，因为没有声望）。

stackoverflow。 com/questions/35030756/paypal-ipn-openssl-error14077410ssl-routinesssl23-get-server-hellosslv3-aler

stackoverflow。 COM /问题/ 34955346 /贝宝IPN-握手问题

而来自PayPal此页......

贝宝知识。 com/infocenter/index？页面=内容& ID = FAQ1766 &扩大=真&区域= EN_US

我希望有人能帮助我解决这个，至少可以确认这是“我的”脚本在故障或服务器有过错，因为我一无所获！！

P.S.我对PHP很陌生。

Answer 1

面对同样的问题，但在这里使用Java servlet来捕获IPN通知。收到大量参数后，回复状态200 OK。然后，形成一个新的HTTP请求，保持第一步收到的所有参数，并添加一个额外的命令'cmd' - 事情看起来非常类似于您的php代码。

正如我所看到的，fsockopen试图连接到'tls：//www.sandbox.paypal.com'，而我正在使用'https://www.sandbox.paypal.com/cgi-bin/webscr'。你可以按照这个教程，这是很有帮助http://www.geekality.net/2011/05/28/php-tutorial-paypal-instant-payment-notification-ipn

VERIFIED最终收到。有一件事要注意，由于https，有一个证书过期警告，我必须禁用Apache HTTP客户端中的忽略cookie。

希望这篇文章能够减轻你的一些痛苦。