json(['error' => 'Stripe is not enabled'], 400); } $payload = $request->getContent(); $sigHeader = $request->header('Stripe-Signature'); $webhookSecret = config('services.stripe.webhook_secret'); try { // Verify webhook signature if ($webhookSecret) { $event = Webhook::constructEvent($payload, $sigHeader, $webhookSecret); } else { // If no webhook secret, parse the event directly (not recommended for production) $event = json_decode($payload); } } catch (\UnexpectedValueException $e) { Log::error('Stripe webhook invalid payload', ['error' => $e->getMessage()]); return response()->json(['error' => 'Invalid payload'], 400); } catch (SignatureVerificationException $e) { Log::error('Stripe webhook signature verification failed', ['error' => $e->getMessage()]); return response()->json(['error' => 'Invalid signature'], 400); } // Handle the event try { switch ($event->type) { case 'checkout.session.completed': $this->handleCheckoutSessionCompleted($event->data->object); break; case 'checkout.session.async_payment_succeeded': $this->handleCheckoutSessionCompleted($event->data->object); break; case 'checkout.session.async_payment_failed': $this->handleCheckoutSessionFailed($event->data->object); break; case 'charge.succeeded': $this->handleChargeSucceeded($event->data->object); break; case 'charge.failed': $this->handleChargeFailed($event->data->object); break; case 'payment_intent.succeeded': $this->handlePaymentIntentSucceeded($event->data->object); break; case 'payment_intent.payment_failed': $this->handlePaymentIntentFailed($event->data->object); break; default: Log::info('Stripe webhook unhandled event type', ['type' => $event->type]); } return response()->json(['success' => true]); } catch (\Exception $e) { Log::error('Stripe webhook handler failed', [ 'type' => $event->type, 'error' => $e->getMessage(), 'trace' => $e->getTraceAsString(), ]); return response()->json(['error' => 'Webhook handler failed'], 500); } } /** * Handle checkout.session.completed event */ protected function handleCheckoutSessionCompleted($session) { $cartId = $session->metadata->cart_id ?? $session->client_reference_id; if (!$cartId) { Log::warning('Stripe checkout session completed without cart ID', ['session_id' => $session->id]); return; } $cart = Cart::find($cartId); if (!$cart) { Log::warning('Stripe checkout session for non-existent cart', ['cart_id' => $cartId]); return; } // Only update if not already converted if ($cart->status !== CartStatus::CONVERTED) { $cart->update([ 'status' => CartStatus::CONVERTED, 'converted_at' => now(), ]); // Update associated purchases $this->updatePurchasesForSession($cart, $session); Log::info('Cart converted via Stripe checkout', [ 'cart_id' => $cart->id, 'session_id' => $session->id, ]); } } /** * Handle checkout.session failed event */ protected function handleCheckoutSessionFailed($session) { $cartId = $session->metadata->cart_id ?? $session->client_reference_id; if (!$cartId) { Log::warning('Stripe checkout session failed without cart ID', ['session_id' => $session->id]); return; } Log::info('Stripe checkout session failed', [ 'cart_id' => $cartId, 'session_id' => $session->id, ]); // Cart remains in active state for retry } /** * Handle charge.succeeded event */ protected function handleChargeSucceeded($charge) { Log::info('Stripe charge succeeded', [ 'charge_id' => $charge->id, 'amount' => $charge->amount, ]); // Update purchases with this charge ID if they exist $purchases = ProductPurchase::where('charge_id', $charge->id)->get(); foreach ($purchases as $purchase) { $updateData = [ 'status' => PurchaseStatus::COMPLETED, ]; if (in_array('amount_paid', $purchase->getFillable())) { $updateData['amount_paid'] = $charge->amount / 100; } $purchase->update($updateData); } } /** * Handle charge.failed event */ protected function handleChargeFailed($charge) { Log::warning('Stripe charge failed', [ 'charge_id' => $charge->id, 'failure_message' => $charge->failure_message ?? 'Unknown error', ]); // Update purchases with this charge ID $purchases = ProductPurchase::where('charge_id', $charge->id)->get(); foreach ($purchases as $purchase) { $purchase->update([ 'status' => PurchaseStatus::FAILED, ]); } } /** * Handle payment_intent.succeeded event */ protected function handlePaymentIntentSucceeded($paymentIntent) { Log::info('Stripe payment intent succeeded', [ 'payment_intent_id' => $paymentIntent->id, 'amount' => $paymentIntent->amount, ]); // Update purchases with this payment intent $purchases = ProductPurchase::where('charge_id', $paymentIntent->id)->get(); foreach ($purchases as $purchase) { $updateData = [ 'status' => PurchaseStatus::COMPLETED, ]; if (in_array('amount_paid', $purchase->getFillable())) { $updateData['amount_paid'] = $paymentIntent->amount / 100; } $purchase->update($updateData); } } /** * Handle payment_intent.payment_failed event */ protected function handlePaymentIntentFailed($paymentIntent) { Log::warning('Stripe payment intent failed', [ 'payment_intent_id' => $paymentIntent->id, 'last_payment_error' => $paymentIntent->last_payment_error->message ?? 'Unknown error', ]); $purchases = ProductPurchase::where('charge_id', $paymentIntent->id)->get(); foreach ($purchases as $purchase) { $purchase->update([ 'status' => PurchaseStatus::FAILED, ]); } } /** * Update product purchases for a checkout session */ protected function updatePurchasesForSession(Cart $cart, $session) { $purchases = $cart->items()->with('purchase')->get()->pluck('purchase')->filter(); foreach ($purchases as $purchase) { if (!$purchase) { continue; } $updateData = [ 'status' => PurchaseStatus::COMPLETED, ]; // Only update columns that exist in the model if (in_array('charge_id', $purchase->getFillable())) { $updateData['charge_id'] = $session->payment_intent; } if (in_array('amount_paid', $purchase->getFillable())) { $updateData['amount_paid'] = $session->amount_total / 100; // Convert from cents } $purchase->update($updateData); } } }