JFIFxxC      C  " }!1AQa"q2#BR$3br %&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz w!1AQaq"2B #3RbrdefaultOptions = $defaultOptions; $this->randomGenerator = $randomGenerator ?: new Util\RandomGenerator(); $this->initUserAgentInfo(); } public function initUserAgentInfo() { $curlVersion = curl_version(); $this->userAgentInfo = [ 'httplib' => 'curl ' . $curlVersion['version'], 'ssllib' => $curlVersion['ssl_version'], ]; } public function getDefaultOptions() { return $this->defaultOptions; } public function getUserAgentInfo() { return $this->userAgentInfo; } // USER DEFINED TIMEOUTS const DEFAULT_TIMEOUT = 80; const DEFAULT_CONNECT_TIMEOUT = 30; private $timeout = self::DEFAULT_TIMEOUT; private $connectTimeout = self::DEFAULT_CONNECT_TIMEOUT; public function setTimeout($seconds) { $this->timeout = (int) max($seconds, 0); return $this; } public function setConnectTimeout($seconds) { $this->connectTimeout = (int) max($seconds, 0); return $this; } public function getTimeout() { return $this->timeout; } public function getConnectTimeout() { return $this->connectTimeout; } // END OF USER DEFINED TIMEOUTS public function request($method, $absUrl, $params, $headers) { $method = strtolower($method); $opts = []; if (is_callable($this->defaultOptions)) { // call defaultOptions callback, set options to return value $opts = call_user_func_array($this->defaultOptions, func_get_args()); if (!is_array($opts)) { throw new Error\ApiConnection("Non-array value returned by defaultOptions CurlClient callback"); } } elseif (is_array($this->defaultOptions)) { // set default curlopts from array $opts = $this->defaultOptions; } switch ($method) { case 'post': $opts[CURLOPT_POST] = 1; $opts[CURLOPT_POSTFIELDS] = Util\Util::encodeParameters($params); break; case 'put': $opts[CURLOPT_CUSTOMREQUEST] = 'PUT'; $opts[CURLOPT_POSTFIELDS] = Util\Util::encodeParameters($params); break; case 'get': $opts[CURLOPT_HTTPGET] = 1; if (count($params) > 0) { $encoded = Util\Util::encodeParameters($params); $absUrl = "$absUrl?$encoded"; } break; case 'delete': $opts[CURLOPT_CUSTOMREQUEST] = 'DELETE'; if (count($params) > 0) { $encoded = Util\Util::encodeParameters($params); $absUrl = "$absUrl?$encoded"; } break; default: throw new Error\InvalidRequest("Unrecognized method $method"); } // It is only safe to retry network failures on POST requests if we // add an Idempotency-Key header if (($method == 'post') && (FedaPay::$maxNetworkRetries > 0)) { if (!isset($headers['Idempotency-Key'])) { array_push($headers, 'Idempotency-Key: ' . $this->randomGenerator->uuid()); } } // Create a callback to capture HTTP headers for the response $rheaders = []; $headerCallback = function ($curl, $header_line) use (&$rheaders) { // Ignore the HTTP request line (HTTP/1.1 200 OK) if (strpos($header_line, ":") === false) { return strlen($header_line); } list($key, $value) = explode(":", trim($header_line), 2); $rheaders[trim($key)] = trim($value); return strlen($header_line); }; // By default for large request body sizes (> 1024 bytes), cURL will // send a request without a body and with a `Expect: 100-continue` // header, which gives the server a chance to respond with an error // status code in cases where one can be determined right away (say // on an authentication problem for example), and saves the "large" // request body from being ever sent. // // Unfortunately, the bindings don't currently correctly handle the // success case (in which the server sends back a 100 CONTINUE), so // we'll error under that condition. To compensate for that problem // for the time being, override cURL's behavior by simply always // sending an empty `Expect:` header. array_push($headers, 'Expect: '); $opts[CURLOPT_URL] = $absUrl; $opts[CURLOPT_RETURNTRANSFER] = true; $opts[CURLOPT_CONNECTTIMEOUT] = $this->connectTimeout; $opts[CURLOPT_TIMEOUT] = $this->timeout; $opts[CURLOPT_HEADERFUNCTION] = $headerCallback; $opts[CURLOPT_HTTPHEADER] = $headers; $opts[CURLOPT_CAINFO] = FedaPay::getCABundlePath(); if (!FedaPay::getVerifySslCerts()) { $opts[CURLOPT_SSL_VERIFYPEER] = false; } // For HTTPS requests, enable HTTP/2, if supported $opts[CURLOPT_HTTP_VERSION] = CURL_HTTP_VERSION_2TLS; list($rbody, $rcode) = $this->executeRequestWithRetries($opts, $absUrl); return [$rbody, $rcode, $rheaders]; } /** * @param array $opts cURL options */ private function executeRequestWithRetries($opts, $absUrl) { $numRetries = 0; while (true) { $rcode = 0; $errno = 0; $curl = curl_init(); curl_setopt_array($curl, $opts); $rbody = curl_exec($curl); if ($rbody === false) { $errno = curl_errno($curl); $message = curl_error($curl); } else { $rcode = curl_getinfo($curl, CURLINFO_HTTP_CODE); } curl_close($curl); if ($this->shouldRetry($errno, $rcode, $numRetries)) { $numRetries += 1; $sleepSeconds = $this->sleepTime($numRetries); usleep(intval($sleepSeconds * 1000000)); } else { break; } } if ($rbody === false) { $this->handleCurlError($absUrl, $errno, $message, $numRetries); } return [$rbody, $rcode]; } /** * @param string $url * @param int $errno * @param string $message * @param int $numRetries * @throws Error\ApiConnection */ private function handleCurlError($url, $errno, $message, $numRetries) { switch ($errno) { case CURLE_COULDNT_CONNECT: case CURLE_COULDNT_RESOLVE_HOST: case CURLE_OPERATION_TIMEOUTED: $msg = "Could not connect to FedaPay ($url). Please check your " . "internet connection and try again. If this problem persists"; break; case CURLE_SSL_CACERT: case CURLE_SSL_PEER_CERTIFICATE: $msg = "Could not verify FedaPay's SSL certificate. Please make sure " . "that your network is not intercepting certificates. " . "(Try going to $url in your browser.) " . "If this problem persists,"; break; default: $msg = "Unexpected error communicating with FedaPay. " . "If this problem persists,"; } $msg .= " let us know at support@fedapay.com."; $msg .= "\n\n(Network error [errno $errno]: $message)"; if ($numRetries > 0) { $msg .= "\n\nRequest was retried $numRetries times."; } throw new Error\ApiConnection($msg); } /** * Checks if an error is a problem that we should retry on. This includes both * socket errors that may represent an intermittent problem and some special * HTTP statuses. * @param int $errno * @param int $rcode * @param int $numRetries * @return bool */ private function shouldRetry($errno, $rcode, $numRetries) { if ($numRetries >= FedaPay::getMaxNetworkRetries()) { return false; } // Retry on timeout-related problems (either on open or read). if ($errno === CURLE_OPERATION_TIMEOUTED) { return true; } // Destination refused the connection, the connection was reset, or a // variety of other connection failures. This could occur from a single // saturated server, so retry in case it's intermittent. if ($errno === CURLE_COULDNT_CONNECT) { return true; } // 409 conflict if ($rcode === 409) { return true; } return false; } private function sleepTime($numRetries) { // Apply exponential backoff with $initialNetworkRetryDelay on the // number of $numRetries so far as inputs. Do not allow the number to exceed // $maxNetworkRetryDelay. $sleepSeconds = min( FedaPay::getInitialNetworkRetryDelay() * 1.0 * pow(2, $numRetries - 1), FedaPay::getMaxNetworkRetryDelay() ); // Apply some jitter by randomizing the value in the range of // ($sleepSeconds / 2) to ($sleepSeconds). $sleepSeconds *= 0.5 * (1 + $this->randomGenerator->randFloat()); // But never sleep less than the base sleep seconds. $sleepSeconds = max(FedaPay::getInitialNetworkRetryDelay(), $sleepSeconds); return $sleepSeconds; } }