integrace api, stripe, vytvoření commecre app

2025-10-05 23:41:14 +02:00
parent f5cf8bbaa7
commit 10796dcb31
26 changed files with 436 additions and 140 deletions
--- a/backend/thirdparty/stripe/views.py
+++ b/backend/thirdparty/stripe/views.py
@@ -1,71 +1,73 @@
-import stripe
-import os
-from rest_framework.views import APIView
-from rest_framework.permissions import IsAuthenticated
+from django.views.decorators.csrf import csrf_exempt
+from django.conf import settings
+from django.http import HttpResponse
+
+from rest_framework import generics
 from rest_framework.response import Response
+from rest_framework.views import APIView

-from drf_spectacular.utils import extend_schema, OpenApiResponse, OpenApiExample, OpenApiParameter
-from .serializers import (
-    StripeCheckoutRequestSerializer,
-    StripeCheckoutResponseSerializer,
-)
+from .models import Order
+from .serializers import OrderSerializer

-stripe.api_key = os.getenv("STRIPE_SECRET_KEY")
+import stripe
+stripe.api_key = settings.STRIPE_SECRET_KEY  # uložený v .env

-
-class StripeCheckoutCZKView(APIView):
-    permission_classes = [IsAuthenticated]
-
-    @extend_schema(
-        tags=["Stripe"],
-        summary="Create Stripe Checkout session in CZK",
-        description="Creates a Stripe Checkout session for payment in Czech Koruna (CZK). Requires authentication.",
-        request=StripeCheckoutRequestSerializer,
-        responses={
-            200: OpenApiResponse(response=StripeCheckoutResponseSerializer, description="Stripe Checkout session URL returned successfully."),
-            400: OpenApiResponse(description="Amount is required or invalid."),
-        },
-        examples=[
-            OpenApiExample(
-                "Success",
-                value={"url": "https://checkout.stripe.com/pay/cs_test_123456"},
-                response_only=True,
-                status_codes=["200"],
-            ),
-            OpenApiExample(
-                "Missing amount",
-                value={"error": "Amount is required"},
-                response_only=True,
-                status_codes=["400"],
-            ),
-        ]
-    )
+class CreateCheckoutSessionView(APIView):
    def post(self, request):
-        serializer = StripeCheckoutRequestSerializer(data=request.data)
-        if not serializer.is_valid():
-            return Response(serializer.errors, status=400)
+        serializer = OrderSerializer(data=request.data) #obecný serializer
+        serializer.is_valid(raise_exception=True)

-        amount = serializer.validated_data.get("amount")
-        product_name = serializer.validated_data.get("product_name", "Example Product")
-        success_url = serializer.validated_data.get("success_url", "https://yourfrontend.com/success")
-        cancel_url = serializer.validated_data.get("cancel_url", "https://yourfrontend.com/cancel")
-        # Stripe expects amount in the smallest currency unit (haléř = 1/100 CZK)
-        amount_in_haler = int(amount * 100)
-        session = stripe.checkout.Session.create(
-            payment_method_types=['card'],
-            line_items=[{
-                'price_data': {
-                    'currency': 'czk',
-                    'product_data': {
-                        'name': product_name,
-                    },
-                    'unit_amount': amount_in_haler,
-                },
-                'quantity': 1,
-            }],
-            mode='payment',
-            success_url=success_url,
-            cancel_url=cancel_url,
-            customer_email=getattr(request.user, 'email', None)
+        order = Order.objects.create(
+            amount=serializer.validated_data["amount"],
+            currency=serializer.validated_data.get("currency", "czk"),
        )
-        return Response({"url": session.url})
+
+        # Vytvoření Stripe Checkout Session
+        session = stripe.checkout.Session.create(
+            payment_method_types=["card"],
+            line_items=[{
+                "price_data": {
+                    "currency": order.currency,
+                    "product_data": {"name": f"Order {order.id}"},
+                    "unit_amount": int(order.amount * 100),  # v centech
+                },
+                "quantity": 1,
+            }],
+            mode="payment",
+            success_url=request.build_absolute_uri(f"/payment/success/{order.id}"),
+            cancel_url=request.build_absolute_uri(f"/payment/cancel/{order.id}"),
+        )
+
+        order.stripe_session_id = session.id
+        order.stripe_payment_intent = session.payment_intent
+        order.save()
+
+        data = OrderSerializer(order).data
+        data["checkout_url"] = session.url
+        return Response(data)
+    
+
+
+
+
+@csrf_exempt
+def stripe_webhook(request):
+    payload = request.body
+    sig_header = request.META.get("HTTP_STRIPE_SIGNATURE")
+    event = None
+
+    try:
+        event = stripe.Webhook.construct_event(
+            payload, sig_header, settings.STRIPE_WEBHOOK_SECRET
+        )
+    except stripe.error.SignatureVerificationError:
+        return HttpResponse(status=400)
+
+    if event["type"] == "checkout.session.completed":
+        session = event["data"]["object"]
+        order = Order.objects.filter(stripe_session_id=session.get("id")).first()
+        if order:
+            order.status = "paid"
+            order.save()
+
+    return HttpResponse(status=200)