I have a conditional action set up to apply a discount to a specific product for people with the appropriate role. It seems to work properly in the checkout process, and charges them the correct amount, but when I am viewing orders through the order administration, the orders seem to be showing pricing and discounts based on the roles that I have assigned to myself as an administrator. For instance, if an anonymous user purchases a product that is set up to be discounted for users with role A, they do not receive the discount. But because my admin account is assigned role A, when I look back at their order, I am seeing that they received the discounted price on every line but the actual transaction line. Conversely, if someone with role A purchases the product, they receive the discount, but I will show that they did not if I do not have role A assigned to myself.

CommentFileSizeAuthor
#14 1015054-14.uc_discount.apply-for-correct-account.patch2.31 KBjoachim
#10 uc_discount.patch2.21 KBmcarrera
Support from Acquia helps fund testing for Drupal Acquia logo

Comments

joachim’s picture

joachim CreditAttribution: joachim commented

Interesting. Sounds like a bug I've seen, but I hadn't spotted that the current user's roles were being used.

There's probably a place in the code where the global $user object is being used, and shouldn't be.

davident’s picture

davident CreditAttribution: davident commented

I can also confirm this behavior.
A user with a specified role discount is shown the discount at checkout, but the admin page shows no discounts.

mcarrera’s picture

mcarrera CreditAttribution: mcarrera commented

I confirm the same. I am giving discount on each product, based on user role. As admin I see orders have a different total, based on the role the admin user. I am going to look for global $user as suggested in #1

mcarrera’s picture

mcarrera CreditAttribution: mcarrera commented

The culprit should be the function uc_discount_price_handler_alter which contains a global $user.

I guess a workable solution is adding those lines to the function

if($user->uid != $context['subject']['order']->uid)
$my_user = user_load($context['subject']['order']->uid); // somebody is watching somebody else's order
else
$my_user = $user;

replacing any occurrence (there is actually 1 in my version) of $user in such function with $my_user .

davident’s picture

davident CreditAttribution: davident commented

I can confirm that this code will fix the issue. Replace uc_discount_price_handler_alter() with the following code in uc_discount.module. Clear caches and you're on your way.

function uc_discount_price_handler_alter(&$price_info, &$context, &$options) {
  
  global $user;
  static $prices = array();
  
  if($user->uid != $context['subject']['order']->uid)
  $account = user_load($context['subject']['order']->uid); // somebody is watching somebody else's order
  else
  $account = $user;

  switch ($context['type']) {
    case 'product':
      if (isset($context['field']) && $context['field'] != 'sell_price') {
        // Don't discount list_price or cost.
        return;
      }
      $node = clone $context['subject']['node'];
      $cache = 'node:'. $node->nid .':'. $price_info['price'];
      break;
    case 'cart_item':
           if (isset($context['subject']['node']) && is_object($context['subject']['node'])){
                  $node = clone $context['subject']['node'];
                  $item = $context['subject']['cart_item'];
                  $cache = 'cart_item:'. $node->nid .':'. $price_info['price'] .':'. serialize($item->data);
           }
        break;
    case 'order_product':
      if (isset($context['subject']['node'])){
        $node = clone $context['subject']['node'];
        $item = $context['subject']['product'];
        $cache = 'order_product:'. $node->nid .':'. $price_info['price'] .':'. serialize($item->data);
      }
      else if (isset($context['subject']['order_product'])){
        $order_product = clone $context['subject']['order_product'];
        $cache = 'order_product:'. $order_product->nid .':'. $price_info['price'] .':'. serialize($order_product->data);
      }
      break;
    default:
      // Nothing to do.
      return;
  }

  if (!isset($prices[$cache])) {
    // The discount action modifies the node's sell_price field.
    $node->sell_price = $price_info['price'];
    ca_pull_trigger('calculate_product_discounts', $node, $account);
    $prices[$cache] = $node->sell_price;
  }
  else {
    $node->sell_price = $prices[$cache];
  }

  // Alter the price given in place.
  $price_info['price'] = $node->sell_price;
}
joachim’s picture

joachim CreditAttribution: joachim commented

Nice work finding the bug, mcarrera!

Does anyone have time to make a patch of that change so it's easier to test it out?

Also, usual practice for a user account that might not be the current user is to call it $account.

joachim’s picture

joachim CreditAttribution: joachim commented

@davident: thanks! This needs to be posted as a patch so that it can be reviewed though -- also note Drupal coding standards to do with things like always bracketing if and else blocks, spacing, and indentation.

mcarrera’s picture

mcarrera CreditAttribution: mcarrera commented

Hello, the following piece of code is bogus, as it doesn't work for product discounts (compared to order discounts for which it should be fine)

if($user->uid != $context['subject']['order']->uid)
  $account = user_load($context['subject']['order']->uid); // somebody is watching somebody else's order
  else
  $account = $user;

problem is $context['subject']['order'] doesn't exist when you are just watching a product. So, if like in my case, you are giving a discount on products based on user role, no discount will be applied.
A workaround I found is 

if($context['subject']['order']->uid)  { // we have an order
        if($context['subject']['order']->uid != $user->uid)  {
	    $account = user_load($context['subject']['order']->uid); // somebody is watching somebody else's order
	  }
	  else  {
 	   $account = user_load($user->uid);
 	  }
   } 
   else {// there is no order
     
      if($context['account']->uid != $user->uid) { 
       
        $account = user_load($context['account']->uid);
      }
      else  {
        $account = user_load($user->uid);
      }
   }
joachim’s picture

joachim CreditAttribution: joachim commented

Interesting stuff, and thanks for looking at it.

But could people please post patches too?

mcarrera’s picture

mcarrera CreditAttribution: mcarrera commented
FileSize
uc_discount.patch2.21 KB

Ok, here is a patch for the changes as at #8

mcarrera’s picture

mcarrera CreditAttribution: mcarrera commented
Status: Active » Needs review
mcarrera’s picture

mcarrera CreditAttribution: mcarrera commented

Did anybody had a chance to test the above patch? I applied it in a pilot project which never went on production

ar-jan’s picture

ar-jan CreditAttribution: ar-jan commented
Status: Needs review » Reviewed & tested by the community

I tested the patch and it works as advertised.

joachim’s picture

joachim CreditAttribution: joachim commented
Status: Reviewed & tested by the community » Needs work
FileSize
1015054-14.uc_discount.apply-for-correct-account.patch2.31 KB 
+++ uc_discount.module	2011-02-09 15:15:19.136546001 +0100
@@ -124,10 +144,12 @@ function uc_discount_price_handler_alter
-      $node = clone $context['subject']['node'];
-      $item = $context['subject']['cart_item'];
-      $cache = 'cart_item:'. $node->nid .':'. $price_info['price'] .':'. serialize($item->data);
-      break;
+           if (isset($context['subject']['node']) && is_object($context['subject']['node'])){
+                  $node = clone $context['subject']['node'];
+                  $item = $context['subject']['cart_item'];
+                  $cache = 'cart_item:'. $node->nid .':'. $price_info['price'] .':'. serialize($item->data);
+           }
+        break;

Is this bit actually related to this bug, or is it a fix for something else? Could someone confirm?

In the meantime, here's a reroll for code style and comments.