- Aug. 2, 2023NEWPostfixes v3 for WS.WebTV 60 available
- Jun. 6, 2023NEWWS.WebTV version 60 available!
- Mar. 30, 2023Postfixes v2 for WS.WebTV 59 available
API: Reference
store > list_orders
Rev. Sep. 30, 2017Description
Getting the list of orders placed (order history) by an User.Requirements
Store extensionWS.WebTV 2.3+
Required Credential Permission
GET [Signed Requests Only]
Print
Building the Request
Request URL and GET vars
GET vars specific to this request:
| Var | Value | Description |
| go | store | The API section |
| do | list_orders | The API action |
| iq | User ID | The User ID |
Resulting Request URL:
The resulting request URL would be similar to this (don't forget to append the required info: key, timestamp, salt and signature):
https://....../api.php?go=store&do=list_orders&iq={user_id}&{required information}
POST vars
None. No POST vars are required for this request.
Response Examples
If the request was successful, you'll receive a response containing:
• list: (array) An array with the order list (the array can be empty). Each one will inlude:
- date: (int) Unix timestamp of the order date.
- date_formatted: (string) The previous value, formatted.
- id: (int) Order ID.
- id_currency: (int) ID of the currency.
- invoice_url: (string) The URL of the invoice (in case there is any invoice attached to the order).
- order_number: (string) The order number.
- status: (int) The order status (0 current, 1 processed, 2 cancelled).
- status_payment: (int) The payment status (0 unpaid, 1 paid, 2 cancelled).
- status_payment_text: (string) The previous value, as text.
- total:(decimal) The order total amount.
- total_formatted: (string) The previous value, formatted.
- total_paid: (decimal) The total amount paid.
- total_paid_formatted: (string) The previous value, formatted.
Example:
{
"list": [{
"date": "1506765778",
"date_formatted": "30\/09\/2017",
"id": "322",
"id_currency": "5",
"invoice_url": "",
"order_number": "ORD00322",
"status": "1",
"status_payment": "1",
"status_payment_text": "Paid",
"total": "5.50",
"total_formatted": "5.50\u20ac",
"total_paid": "5.50",
"total_paid_formatted": "5.50\u20ac"
}, {
"date": "1502973305",
"date_formatted": "17\/08\/2017",
"id": "298",
"id_currency": "5",
"invoice_url": "",
"order_number": "ORD00298",
"status": "1",
"status_payment": "1",
"status_payment_text": "Paid",
"total": "5.50",
"total_formatted": "5.50\u20ac",
"total_paid": "5.50",
"total_paid_formatted": "5.50\u20ac"
}]
}
If the request failed (for example, if no signature was provided in the request), you'll receive a response like the following:
{
"error" : "REQUEST_ERROR",
"error_long" : "Missing signature"
}
Possible Error Messages
Besides the general errors, this request can return the following errors:
• REQUEST_ERROR | Invalid User ID:
User ID is not numeric or lower than 1.
PHP Example Code
Preparing GET and POST data.
// The GET vars $GET_VARS = array( "go" => "store", "do" => "list_orders", "iq" => "2" ); // The POST vars $POST_VARS = array();
Generating the salt, timestamp, signature and sending the request
*** The following code block is common to all signed requests ***
// Collect the API Base URL and Credential info
$API_URL = "https://www.mywebtvdomain.tv/api.php";
$API_KEY_ID = "1b323a1cb879fd4e66530fbad07a32ee";
$API_SHARED_SECRET = "MWIzMjNhMWNiODc5ZmQ0ZTY2NTMwZmJhZDA3YTMyZWViOTQ3MDJiOGM2ZTU2NjE3"; // keep this safe!!!
// Generating salt and timestamp
$salt = md5(mt_rand());
$timestamp = time();
$signature = base64_encode(hash_hmac('sha256', $salt.$timestamp, $API_SHARED_SECRET, true));
// Generating the validation signature
// - Default method: using base64_encode(hash_hmac(...))
$signature = base64_encode(hash_hmac('sha256', $salt.$timestamp, $API_SHARED_SECRET, true)); // comment this line if using the next method
// - Simplified method - available since v60: using md5().
// This method requires the variable $API_SIGNATURE_GENERATION_MODE = 1; in the config/Config.inc.php file.
// $signature = md5($salt."-".$timestamp."-".$API_SHARED_SECRET); // you must "uncomment" this line when using the simplified method
// Append the timestamp, salt, key and signature to the GET vars
$GET_VARS["timestamp"] = $timestamp; // UTC timestamp
$GET_VARS["salt"] = $salt;
$GET_VARS["key"] = $API_KEY_ID ; // The API Key ID: This is public and is used by the API to identify the application;
$GET_VARS["signature"] = $signature;
// Create the request URL. Please note that if you do not use PHP buit in function
// to create the HTTP query then don't forget to URL encode the values
$REQUEST_URL = $API_URL."?".http_build_query($GET_VARS);
// The previous will build an URL like .../api.php?go=api_subject&do=api_action&etc...
// Create a new cURL resource and set the appropriate options
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $REQUEST_URL);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_HEADER, false);
curl_setopt($ch, CURLOPT_POSTFIELDS, $POST_VARS);
// If your PHP host does not have a valid SSL certificate, you will need to turn off SSL
// Certificate Verification. This is dangerous (!), and should only be done temporarily
// until a valid certificate has been installed
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false); // Turns off verification of the SSL certificate.
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); // Turns off verification of the SSL certificate.
// Sending the request to the API
$response = curl_exec($ch);
// Processing the response
if (!$response) {
echo 'API call failed';
}
else
{
print_r(json_decode($response,true));
}
