目前我正在开发paypal NVP API,
我们的客户有一个paypal帐户。每个客户都允许我退还这些命令。为此,他们添加了我的API paypal帐户的名称,并检查选项:为特定交易退款。
他们为我提供了每个订单的交易ID,我的申请应该退款。
以下是我的计划摘要:
url = 'https://api-3t.paypal.com/nvp'
params = {
'USER':'name of my api',
'PWD': 'pass word of my api',
'SIGNATURE':'my signature'
}
params['METHOD'] = 'RefundTransaction'
params['VERSION'] = 94
params['TRANSACTIONID'] = transaction_id
params['currencyCode'] = currency
params['REFUNDTYPE'] = 'Full'
http.post(url,params)
但在执行结束时它会返回我:
{'res': 'TIMESTAMP=2013%2d11%2d26T15%3a43%3a16Z&CORRELATIONID=848a8035cc65&ACK=Failure& VERSION=51%2e0&BUILD=8620107&L_ERRORCODE0=10007&L_SHORTMESSAGE0=Permission%20denied&L_LONGMESSAGE0=You%20do%20not%20have%20permission%20to%20refund%20this%20transaction&L_SEVERITYCODE0=Error', 'code': 200}
这意味着我没有透过这笔交易,而我们的客户已将我添加到他们的PayPal帐户。
我该如何解决这个问题?
答案 0 :(得分:1)
以下是使用NVP退款的最佳工作示例
class PayPalRefund
{
private $API_Username, $API_Password, $Signature, $API_Endpoint, $version;
function __construct($intializeData)
{
if($intializeData['mode'] == "live")
{
$this->API_Endpoint = "https://api-3t.paypal.com/nvp";
}else{
$this->API_Endpoint = "https://api-3t.sandbox.paypal.com/nvp";
}
$this->API_Username = $intializeData['username'];
$this->API_Password = $intializeData['password'];
$this->Signature = $intializeData['signature'];
$this->version = "51.0";
}
/**
* This function actually Sends the CURL Request for Refund
* @param string - $requestString
* @return array - returns the response
*/
function sendRefundRequest($requestString)
{
$this->API_UserName = urlencode($this->API_Username);
$this->API_Password = urlencode($this->API_Password);
$this->API_Signature = urlencode($this->Signature);
$this->version = urlencode($this->version);
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $this->API_Endpoint);
curl_setopt($ch, CURLOPT_VERBOSE, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, FALSE);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_POST, 1);
// Set the API operation, version, and API signature in the request.
$reqStr = "METHOD=RefundTransaction&VERSION={$this->version}&PWD={$this->API_Password}&USER={$this->API_UserName}&SIGNATURE={$this->API_Signature}$requestString";
// Set the request as a POST FIELD for curl.
curl_setopt($ch, CURLOPT_POSTFIELDS, $reqStr);
// Get response from the server.
$curlResponse = curl_exec($ch);
if(!$curlResponse)
return array("ERROR_MESSAGE"=>"RefundTransaction failed".curl_error($ch)."(".curl_errno($ch).")");
// Extract the response details.
$httpResponseAr = explode("&", $curlResponse);
$aryResponse = array();
foreach ($httpResponseAr as $i => $value)
{
$tmpAr = explode("=", $value);
if(sizeof($tmpAr) > 1)
{
$aryResponse[$tmpAr[0]] = urldecode($tmpAr[1]);
}
}
if((0 == sizeof($aryResponse)) || !array_key_exists('ACK', $aryResponse))
return array("ERROR_MESSAGE"=>"Invalid HTTP Response for POST request ($reqStr) to {$this->API_Endpoint}");
return $aryResponse;
}
/**
* @param array $aryData
* @return array
*/
function refundAmount($aryData)
{
if(trim(@$aryData['currencyCode'])=="")
return array("ERROR_MESSAGE"=>"Currency Code is Missing");
if(trim(@$aryData['refundType'])=="")
return array("ERROR_MESSAGE"=>"Refund Type is Missing");
if(trim(@$aryData['transactionID'])=="")
return array("ERROR_MESSAGE"=>"Transaction ID is Missing");
$requestString = "&TRANSACTIONID={$aryData['transactionID']}&REFUNDTYPE={$aryData['refundType']}&CURRENCYCODE={$aryData['currencyCode']}";
if(trim(@$aryData['invoiceID'])!="")
$requestString = "&INVOICEID={$aryData['invoiceID']}";
if(isset($aryData['memo']))
$requestString .= "&NOTE={$aryData['memo']}";
if(strcasecmp($aryData['refundType'], 'Partial') == 0)
{
if(!isset($aryData['amount']))
{
return array("ERROR_MESSAGE"=>"For Partial Refund - It is essential to mention Amount");
}
else
{
$requestString = $requestString."&AMT={$aryData['amount']}";
}
if(!isset($aryData['memo']))
{
return array("ERROR_MESSAGE"=>"For Partial Refund - It is essential to enter text for Memo");
}
}
$resCurl = $this->sendRefundRequest($requestString);
return $resCurl;
}
}
一旦Class准备就绪,您可以在业务逻辑中调用函数
require_once('PaypalRefund.php');
/* Refund Type ('Partial', 'Full')*/
$intializeData = array('email'=>$this->credentials->email,
'username'=>$this->credentials->username,
'password'=>$this->credentials->password,
'signature'=>$this->credentials->signature,
'mode'=>'sandbox', //'live'
);
$aryData['transactionID'] = $data['transaction_id'];
$aryData['refundType'] = "Full"; //Partial or Full
$aryData['currencyCode'] = $data['currency_code'];
$aryData['amount'] = $data['amount']; //$data['amount'];
$aryData['memo'] = $data['notes'];
// Paypal Refund API Call
$ref = new PaypalRefund($intializeData);
$aryRes = $ref->refundAmount($aryData);
echo "<pre>"; print_r($aryRes);echo "</pre>";die;
您将获得预先响应以及IPN URL(如果已设置)。
由于
答案 1 :(得分:0)
如果这是直播退款,请确保您使用的是正确的API endpoint。
如果这是对 Sandbox 测试环境的退款交易,请确保使用的凭据来自您的测试卖家帐户沙箱。
答案 2 :(得分:0)
当有人授予您第三方API权限时,他们授予您代表他们进行API调用的权限
由于您是代表某人调用RefundTransaction API,因此您需要指定SUBJECT参数并使用该人帐户的PayPal电子邮件地址填充该参数。
即。
params = {
'USER':'name of my api',
'PWD': 'pass word of my api',
'SIGNATURE':'my signature'
'SUBJECT':'email of PP account who granted you 3rd party permissions'
}
因为您现在没有指定此内容,所以您基本上是在尝试退还不属于您自己的PayPal帐户的交易ID。所以它正确地否认你这样做。