prepare("SELECT * FROM students WHERE id = ?");
$student_stmt->execute([$student_id]);
$student = $student_stmt->fetch(PDO::FETCH_ASSOC);
if (!$student) {
die(__('error_student_not_found'));
}
// 2. العمليات الحسابية المتقدمة
$total_price_stmt = $conn->prepare("
SELECT SUM(c.price)
FROM enrollments e
JOIN courses c ON e.course_id = c.id
WHERE e.student_id = ?
");
$total_price_stmt->execute([$student_id]);
$total_fees = $total_price_stmt->fetchColumn() ?? 0;
$total_paid_stmt = $conn->prepare("SELECT SUM(amount_paid) FROM payments WHERE student_id = ?");
$total_paid_stmt->execute([$student_id]);
$pure_paid = $total_paid_stmt->fetchColumn() ?? 0;
$total_discount_stmt = $conn->prepare("SELECT SUM(discount) FROM payments WHERE student_id = ?");
$total_discount_stmt->execute([$student_id]);
$total_discount = $total_discount_stmt->fetchColumn() ?? 0;
$remaining = $total_fees - ($pure_paid + $total_discount);
if ($remaining < 0) $remaining = 0;
$error = '';
// 3. معالجة طلب الدفع (POST)
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$amount_to_pay = floatval($_POST['amount']);
if ($amount_to_pay <= 0) {
$error = __('error_invalid_payment_amount');
} elseif ($amount_to_pay > $remaining) {
$error = __('error_amount_exceeds_remaining') . " ($remaining " . __('currency_symbol') . ")";
} else {
// API efawateercom logic
$invoice_data = [
"customer" => [
"name" => $student['full_name'],
"phone" => $student['phone'],
"email" => $student['email'] ?? 'info@academy.com'
],
"order" => [
"amount" => $amount_to_pay,
"currency" => "JOD",
"description" => __('payment_description_prefix') . " - " . $student['full_name'],
"reference" => "PAY-" . time() . "-" . $student_id
],
"callback_url" => "https://yourdomain.com/payments/callback.php",
"cancel_url" => "https://yourdomain.com/payments/pay.php?student_id=" . $student_id
];
$ch = curl_init("https://api.efawateer.com/v1/invoices");
curl_setopt($ch, CURLOPT_HTTPHEADER, [
"Authorization: Bearer YOUR_API_KEY_HERE",
"Content-Type: application/json"
]);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, json_encode($invoice_data));
$response = curl_exec($ch);
$http_status = curl_getinfo($ch, CURLINFO_HTTP_CODE);
curl_close($ch);
$result = json_decode($response, true);
if ($http_status == 200 && isset($result['payment_url'])) {
$log_stmt = $conn->prepare("
INSERT INTO efawateer_invoices (student_id, invoice_id, amount, status, created_at)
VALUES (?, ?, ?, 'pending', NOW())
");
$log_stmt->execute([$student_id, $result['invoice_id'], $amount_to_pay]);
header("Location: " . $result['payment_url']);
exit;
} else {
$error = __('error_payment_gateway_connection') . ": " . ($result['message'] ?? __('technical_error'));
}
}
}
?>