<%@LANGUAGE="VBScript"%> <% Dim Item_name, Item_number, Payment_status, Payment_amount Dim Txn_id, Receiver_email, Payer_email Dim objHttp, str ' read post from PayPal system and add 'cmd' str = Request.Form & "&cmd=_notify-validate" ' post back to PayPal system to validate set objHttp = Server.CreateObject("Msxml2.ServerXMLHTTP") ' set objHttp = Server.CreateObject("Msxml2.ServerXMLHTTP.4.0") ' set objHttp = Server.CreateObject("Microsoft.XMLHTTP") objHttp.open "POST", "https://www.sandbox.paypal.com/cgi-bin/webscr", false 'objHttp.open "POST", "https://www.paypal.com/cgi-bin/webscr", false objHttp.setRequestHeader "Content-type", "application/x-www-form-urlencoded" objHttp.Send str ' assign posted variables to local variables Item_name = Request.Form("item_name") Item_number = Request.Form("item_number") Payment_status = Request.Form("payment_status") Payment_amount = Request.Form("mc_gross") Payment_currency = Request.Form("mc_currency") Txn_id = Request.Form("txn_id") Receiver_email = Request.Form("receiver_email") Payer_email = Request.Form("payer_email") ' Check notification validation if (objHttp.status <> 200 ) then ' HTTP error handling elseif (objHttp.responseText = "VERIFIED") then ' check that Payment_status=Completed ' check that Txn_id has not been previously processed ' check that Receiver_email is your Primary PayPal email ' check that Payment_amount/Payment_currency are correct ' process payment 'paymentdate=FormatDateTime(date(),2) sqlquery = "update h_payment set status=true where bookinfo_id=" &Item_number 'response.write pyment_status 'response.flush() Conn.Execute (sqlquery) sqlquery1 = "update h_bookinfo set status=true where bookinfo_id=" &Item_number 'response.write(sqlquery) 'response.flush() Conn.Execute (sqlquery1) 'mail start############################################# set rs=server.createobject("adodb.recordset") sql="select * from h_bookinfo where bookinfo_id=" &Item_number rs.open sql,conn,1,3 mail_subj="PayPal Booking Notification: Confirmed" msg="You have a PayPal booking request
" msg=msg&"Booking No :"&rs("request_no") sendmail=mailsend(mail_subj, msg, admin_email) main_Subj=confirm_mail_subj mail_Body="Dear "&rs("full_name")&"
"&confirm_mail_body&"
Booking Number:"&rs("request_no")&"

Regards
"&site_name&"" sendmail=mailsend(main_Subj, mail_Body, rs("em")) 'mail end############################################### response.Redirect "booking_confirm.asp?vb=1&info="&Item_number&"" elseif (objHttp.responseText = "INVALID") then Response.write "An Error Occured" ' log for manual investigation else Response.write "An Error Occured1" end if set objHttp = nothing %>