feat(affiliate): add core module, controllers, and route registration
This commit is contained in:
Dwindi Ramadhana
273
includes/Api/Controllers/AffiliateCustomerController.php
Normal file
273
includes/Api/Controllers/AffiliateCustomerController.php
Normal file
@@ -0,0 +1,273 @@
|
||||
<?php
|
||||
|
||||
namespace WooNooW\Api\Controllers;
|
||||
|
||||
use WP_REST_Request;
|
||||
use WP_REST_Response;
|
||||
use WP_REST_Server;
|
||||
|
||||
class AffiliateCustomerController
|
||||
{
|
||||
private $namespace = 'woonoow/v1';
|
||||
|
||||
public function register_routes()
|
||||
{
|
||||
register_rest_route($this->namespace, '/account/affiliate', [
|
||||
'methods' => WP_REST_Server::READABLE,
|
||||
'callback' => [$this, 'get_dashboard'],
|
||||
'permission_callback' => [$this, 'check_permission'],
|
||||
]);
|
||||
|
||||
register_rest_route($this->namespace, '/account/affiliate/apply', [
|
||||
'methods' => WP_REST_Server::CREATABLE,
|
||||
'callback' => [$this, 'apply_affiliate'],
|
||||
'permission_callback' => [$this, 'check_permission'],
|
||||
]);
|
||||
|
||||
register_rest_route($this->namespace, '/account/affiliate/referrals', [
|
||||
'methods' => WP_REST_Server::READABLE,
|
||||
'callback' => [$this, 'get_referrals'],
|
||||
'permission_callback' => [$this, 'check_permission'],
|
||||
]);
|
||||
|
||||
register_rest_route($this->namespace, '/account/affiliate/payouts', [
|
||||
'methods' => WP_REST_Server::READABLE,
|
||||
'callback' => [$this, 'get_payouts'],
|
||||
'permission_callback' => [$this, 'check_permission'],
|
||||
]);
|
||||
|
||||
register_rest_route($this->namespace, '/account/affiliate/payment-details', [
|
||||
'methods' => WP_REST_Server::READABLE,
|
||||
'callback' => [$this, 'get_payment_details'],
|
||||
'permission_callback' => [$this, 'check_permission'],
|
||||
]);
|
||||
|
||||
register_rest_route($this->namespace, '/account/affiliate/payment-details', [
|
||||
'methods' => WP_REST_Server::CREATABLE,
|
||||
'callback' => [$this, 'update_payment_details'],
|
||||
'permission_callback' => [$this, 'check_permission'],
|
||||
]);
|
||||
}
|
||||
|
||||
public function check_permission()
|
||||
{
|
||||
return is_user_logged_in();
|
||||
}
|
||||
|
||||
public function get_dashboard(WP_REST_Request $request)
|
||||
{
|
||||
global $wpdb;
|
||||
$user_id = get_current_user_id();
|
||||
$table = $wpdb->prefix . 'woonoow_affiliates';
|
||||
|
||||
$affiliate = $wpdb->get_row($wpdb->prepare("SELECT * FROM $table WHERE user_id = %d", $user_id), ARRAY_A);
|
||||
|
||||
if (!$affiliate) {
|
||||
return new \WP_Error('not_found', 'Affiliate profile not found', ['status' => 404]);
|
||||
}
|
||||
|
||||
// Get global default rate
|
||||
$global_rate = (float) get_option('woonoow_affiliate_default_rate', 10);
|
||||
|
||||
// Use custom rate if set, otherwise global
|
||||
$effective_rate = !empty($affiliate['custom_commission_rate'])
|
||||
? (float) $affiliate['custom_commission_rate']
|
||||
: $global_rate;
|
||||
|
||||
$affiliate['global_commission_rate'] = $global_rate;
|
||||
$affiliate['commission_rate'] = $effective_rate;
|
||||
|
||||
return rest_ensure_response($affiliate);
|
||||
}
|
||||
|
||||
public function apply_affiliate(WP_REST_Request $request)
|
||||
{
|
||||
global $wpdb;
|
||||
$user_id = get_current_user_id();
|
||||
$table = $wpdb->prefix . 'woonoow_affiliates';
|
||||
|
||||
// Check if already applied
|
||||
$exists = $wpdb->get_var($wpdb->prepare("SELECT id FROM $table WHERE user_id = %d", $user_id));
|
||||
if ($exists) {
|
||||
return new \WP_Error('exists', 'You have already applied.', ['status' => 400]);
|
||||
}
|
||||
|
||||
// Generate simple code
|
||||
$user = wp_get_current_user();
|
||||
$referral_code = strtolower(preg_replace('/[^a-zA-Z0-9]/', '', $user->user_login)) . wp_generate_password(4, false);
|
||||
|
||||
$auto_approve = get_option('woonoow_affiliate_auto_approve', false);
|
||||
$status = $auto_approve ? 'active' : 'pending';
|
||||
|
||||
$wpdb->insert($table, [
|
||||
'user_id' => $user_id,
|
||||
'referral_code' => $referral_code,
|
||||
'commission_rate' => get_option('woonoow_affiliate_default_rate', 10), // 10% default
|
||||
'status' => $status
|
||||
]);
|
||||
|
||||
// Trigger email notification for admin
|
||||
$admin_email = get_option('admin_email');
|
||||
do_action('woonoow/email/trigger', 'affiliate_application_received', $admin_email, [
|
||||
'affiliate_name' => $user->display_name,
|
||||
'customer_email' => $user->user_email
|
||||
]);
|
||||
|
||||
if ($auto_approve) {
|
||||
do_action('woonoow/email/trigger', 'affiliate_application_approved', $user->user_email, [
|
||||
'affiliate_name' => $user->display_name,
|
||||
'customer_email' => $user->user_email,
|
||||
'referral_code' => $referral_code
|
||||
]);
|
||||
}
|
||||
|
||||
return rest_ensure_response(['success' => true, 'status' => $status, 'referral_code' => $referral_code]);
|
||||
}
|
||||
|
||||
public function get_referrals(WP_REST_Request $request)
|
||||
{
|
||||
global $wpdb;
|
||||
$user_id = get_current_user_id();
|
||||
$affiliates_table = $wpdb->prefix . 'woonoow_affiliates';
|
||||
$referrals_table = $wpdb->prefix . 'woonoow_referrals';
|
||||
|
||||
$affiliate = $wpdb->get_row($wpdb->prepare("SELECT id FROM $affiliates_table WHERE user_id = %d", $user_id));
|
||||
if (!$affiliate) {
|
||||
return rest_ensure_response([]);
|
||||
}
|
||||
|
||||
$referrals = $wpdb->get_results($wpdb->prepare(
|
||||
"SELECT r.*,
|
||||
COALESCE(NULLIF(r.cancelled_reason, ''), NULL) as cancelled_reason,
|
||||
COALESCE(r.approved_at, r.created_at) as approved_at
|
||||
FROM $referrals_table r
|
||||
WHERE r.affiliate_id = %d
|
||||
ORDER BY r.created_at DESC",
|
||||
$affiliate->id
|
||||
), ARRAY_A);
|
||||
return rest_ensure_response($referrals);
|
||||
}
|
||||
|
||||
public function get_payouts(WP_REST_Request $request)
|
||||
{
|
||||
global $wpdb;
|
||||
$user_id = get_current_user_id();
|
||||
$affiliates_table = $wpdb->prefix . 'woonoow_affiliates';
|
||||
$payouts_table = $wpdb->prefix . 'woonoow_affiliate_payouts';
|
||||
|
||||
$affiliate = $wpdb->get_row($wpdb->prepare("SELECT id FROM $affiliates_table WHERE user_id = %d", $user_id));
|
||||
if (!$affiliate) {
|
||||
return rest_ensure_response([]);
|
||||
}
|
||||
|
||||
$payouts = $wpdb->get_results($wpdb->prepare(
|
||||
"SELECT id, amount, currency, method, status, notes, created_at, completed_at
|
||||
FROM $payouts_table
|
||||
WHERE affiliate_id = %d
|
||||
ORDER BY created_at DESC",
|
||||
$affiliate->id
|
||||
), ARRAY_A);
|
||||
|
||||
return rest_ensure_response($payouts);
|
||||
}
|
||||
|
||||
public function get_payment_details(WP_REST_Request $request)
|
||||
{
|
||||
global $wpdb;
|
||||
$user_id = get_current_user_id();
|
||||
$table = $wpdb->prefix . 'woonoow_affiliates';
|
||||
|
||||
$affiliate = $wpdb->get_row($wpdb->prepare(
|
||||
"SELECT payment_method, payment_details FROM $table WHERE user_id = %d",
|
||||
$user_id
|
||||
));
|
||||
|
||||
if (!$affiliate) {
|
||||
return new \WP_Error('not_found', 'Affiliate not found', ['status' => 404]);
|
||||
}
|
||||
|
||||
$payment_details = $affiliate->payment_details ? json_decode($affiliate->payment_details, true) : [];
|
||||
|
||||
return rest_ensure_response([
|
||||
'payment_method' => $affiliate->payment_method ?: '',
|
||||
'payment_details' => $payment_details ?: new \stdClass()
|
||||
]);
|
||||
}
|
||||
|
||||
public function update_payment_details(WP_REST_Request $request)
|
||||
{
|
||||
global $wpdb;
|
||||
$user_id = get_current_user_id();
|
||||
$table = $wpdb->prefix . 'woonoow_affiliates';
|
||||
|
||||
// Get allowed payment methods from settings
|
||||
$settings = get_option('woonoow_module_affiliate_settings', []);
|
||||
$allowed_methods = $settings['woonoow_affiliate_payment_methods'] ?? ['bank_transfer'];
|
||||
|
||||
$payment_method = sanitize_text_field($request->get_param('payment_method') ?: '');
|
||||
$payment_details_raw = $request->get_param('payment_details') ?: [];
|
||||
|
||||
// Validate payment method is allowed
|
||||
if (!in_array($payment_method, $allowed_methods)) {
|
||||
return new \WP_Error(
|
||||
'invalid_payment_method',
|
||||
'This payment method is not available. Please contact admin.',
|
||||
['status' => 400]
|
||||
);
|
||||
}
|
||||
|
||||
// Sanitize payment details based on method
|
||||
$sanitized_details = self::sanitize_payment_details($payment_method, $payment_details_raw);
|
||||
|
||||
$result = $wpdb->update(
|
||||
$table,
|
||||
[
|
||||
'payment_method' => $payment_method,
|
||||
'payment_details' => json_encode($sanitized_details)
|
||||
],
|
||||
['user_id' => $user_id]
|
||||
);
|
||||
|
||||
if ($result === false) {
|
||||
return new \WP_Error('update_failed', 'Failed to update payment details', ['status' => 500]);
|
||||
}
|
||||
|
||||
return rest_ensure_response([
|
||||
'success' => true,
|
||||
'payment_method' => $payment_method,
|
||||
'payment_details' => $sanitized_details
|
||||
]);
|
||||
}
|
||||
|
||||
/**
|
||||
* Sanitize payment details based on payment method
|
||||
*/
|
||||
private static function sanitize_payment_details($method, $details)
|
||||
{
|
||||
$sanitized = [];
|
||||
|
||||
switch ($method) {
|
||||
case 'bank_transfer':
|
||||
$sanitized['bank_name'] = sanitize_text_field($details['bank_name'] ?? '');
|
||||
$sanitized['account_number'] = sanitize_text_field($details['account_number'] ?? '');
|
||||
$sanitized['account_holder'] = sanitize_text_field($details['account_holder'] ?? '');
|
||||
$sanitized['swift_code'] = sanitize_text_field($details['swift_code'] ?? '');
|
||||
$sanitized['bank_address'] = sanitize_text_field($details['bank_address'] ?? '');
|
||||
break;
|
||||
|
||||
case 'paypal':
|
||||
case 'wise':
|
||||
case 'skrill':
|
||||
case 'payoneer':
|
||||
$sanitized['email'] = sanitize_email($details['email'] ?? '');
|
||||
$sanitized['name'] = sanitize_text_field($details['name'] ?? '');
|
||||
break;
|
||||
|
||||
case 'custom':
|
||||
$sanitized['notes'] = sanitize_textarea_field($details['notes'] ?? '');
|
||||
break;
|
||||
}
|
||||
|
||||
return $sanitized;
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user