From 09af08e5114c6167b107198152fda04b26fff6c4 Mon Sep 17 00:00:00 2001
From: behruz-dev <xoliqberdiyevbehruz12@gmail.com>
Date: Tue, 9 Sep 2025 13:22:37 +0500
Subject: [PATCH] change callback url

---
 core/apps/payment/views.py | 66 ++++++++++++++++++--------------------
 1 file changed, 32 insertions(+), 34 deletions(-)

diff --git a/core/apps/payment/views.py b/core/apps/payment/views.py
index 0489fd8..7f106d6 100644
--- a/core/apps/payment/views.py
+++ b/core/apps/payment/views.py
@@ -29,45 +29,43 @@ class AtmosCallbackApiView(APIView):
         client_ip = get_client_ip(request)
         # if client_ip not in settings.ALLOWED_ATMOS_IPS:
         #     return Response({"status": 0, "message": "IP ruxsat etilmagan"}, status=403)
-        # data = request.data
-        # print(data)
-        # if not data:
-        #     return Response(
-        #         {'success': 0, "message": "Request body required"},
-        #         status=status.HTTP_200_OK
-        #     )
+        data = request.data
+        if not data:
+            return Response(
+                {'success': 0, "message": "Request body required"},
+                status=status.HTTP_200_OK
+            )
 
-        # store_id = data.get("store_id")
-        # transaction_id = data.get("transaction_id")
-        # invoice = data.get("invoice")
-        # amount = data.get("amount")
-        # sign = data.get("sign")
+        store_id = data.get("store_id")
+        transaction_id = data.get("transaction_id")
+        invoice = data.get("invoice")
+        amount = data.get("amount")
+        sign = data.get("sign")
 
-        # check_string = f"{store_id}{transaction_id}{invoice}{amount}{settings.API_KEY}"
-        # generated_sign = hashlib.sha256(check_string.encode()).hexdigest()
-        # print(generated_sign, '----------------------------------------------------')
-        # if generated_sign != sign:
-        #     return Response(
-        #         {"status": 0, "message": f"Инвойс с номером {invoice} отсутствует в системе"},
-        #         status=status.HTTP_200_OK
-        #     )
+        check_string = f"{store_id}{transaction_id}{invoice}{amount}{settings.API_KEY}"
+        generated_sign = hashlib.sha256(check_string.encode()).hexdigest()
+        if generated_sign != sign:
+            return Response(
+                {"status": 0, "message": f"Инвойс с номером {invoice} отсутствует в системе"},
+                status=status.HTTP_200_OK
+            )
 
-        # try:
-        #     order = Order.objects.get(order_number=invoice)
-        # except Order.DoesNotExist:
-        #     return Response(
-        #         {"status": 0, "message": f"Инвойс с номером {invoice} отсутствует в системе"},
-        #         status=status.HTTP_200_OK
-        #     )
+        try:
+            order = Order.objects.get(order_number=invoice)
+        except Order.DoesNotExist:
+            return Response(
+                {"status": 0, "message": f"Инвойс с номером {invoice} отсутствует в системе"},
+                status=status.HTTP_200_OK
+            )
 
-        # if str(order.total_price) != str(amount):
-        #     return Response(
-        #         {"status": 0, "message": f"Инвойс с номером {invoice} отсутствует в системе"},
-        #         status=status.HTTP_200_OK
-        #     )
+        if str(order.total_price) != str(amount):
+            return Response(
+                {"status": 0, "message": f"Инвойс с номером {invoice} отсутствует в системе"},
+                status=status.HTTP_200_OK
+            )
 
-        # order.is_paid = True
-        # order.save()
+        order.is_paid = True
+        order.save()
 
         return Response(
             {"status": 1, "message": "Успешно"},