Trouble sending post request with to laravel end point for razorpay order ceration

Kernal · September 11, 2024, 11:11am

when i send a get request here every thing works perfectly fine but post request gives me errors react method for sending to payment.razorpay route

`const handlePayment = ()=>{ localStorage.setItem(‘selectedSeats’, selectedSeats);

axios.post(route('seats.checkAvailability'), { selectedSeats })
.then(response => {
  console.log('Success:', response.data);
  try{
      axios.post(route('payment.razorpay'), {
        selectedSeats,
        totalAmount: total,
        user: auth.user
      },
      {headers:{"Content-Type" : "application/json"}}
    );
  } catch (error) {
    console.error(error.response.data);
  }
})
.catch(error => {
  console.log('in catch');
  setErr(error.response.data.error);
});

};`

here is the route Route::post('/razorpay', [PaymentController::class, 'processPayment'])->middleware(['auth'])->name('payment.razorpay');

function in PaymentController ` public function processPayment( Request $request) {

    dd('here');

    $request->validate([
        'selectedSeats' => 'required|array',
        'total' => 'required|numeric|min:0',
        '$user' => 'required'
    ]);

    $selectedSeats = $request->input('selectedSeats');
    $totalAmount = $request->input('total'); 
    $user = $request->user();

    $api_key = config('services.razorpay.razorpay_key');
    $api_secret = config('services.razorpay.razorpay_secret');
    $api = new Api($api_key, $api_secret);
    
    try {
    $order = $api->order->create([
        'amount' => $totalAmount * 100,
        'currency' => 'INR',
        'receipt' => 'order_receipt_id_123',
        'payment_capture' => 1 // Auto capture payment
    ]);
    } catch (\Exception $e) {
        return response()->json(['status' => 'error', 'message' => 'Failed to create Razorpay order'], 500);
    }

    $data = [
        "key"  => $api_key, 
        "amount" => $order['amount'], // In paise
        "currency" => $order['currency'],
        "name" => $user->name,
        "description" => "Ticket Purchase",
        "image" => "https://cdn.razorpay.com/logos/GhRQcyean79PqE_medium.png",
        "prefill" => [
            "name" => $user->name,
            "email" => $user->email
        ],
        "theme" => [
            "color"  => "#3399cc"
        ],
        "order_id" => $order['id'], // Pass the order ID from Razorpay
    ];

    return Inertia::render('Checkout', [
        'data' => $data, // No need to json_encode here, Inertia will handle it
        'selectedSeats' => $selectedSeats, // Pass selected seats to the view
        'totalAmount' => $totalAmount, // Pass the total amount
    ]);
}`

list of routes

GET|HEAD  / ........................................................................................................................................ event.index  
  GET|HEAD  confirm-password .......................................................................... password.confirm › Auth\ConfirmablePasswordController@show  
  POST      confirm-password ............................................................................................ Auth\ConfirmablePasswordController@store  
  GET|HEAD  dashboard .................................................................................................................................. dashboard  
  POST      email/verification-notification ............................................... verification.send › Auth\EmailVerificationNotificationController@store  
  GET|HEAD  events/{event} ........................................................................................................................... events.show  
  GET|HEAD  forgot-password ........................................................................... password.request › Auth\PasswordResetLinkController@create  
  POST      forgot-password .............................................................................. password.email › Auth\PasswordResetLinkController@store  
  GET|HEAD  login ............................................................................................. login › Auth\AuthenticatedSessionController@create  
  POST      login ...................................................................................................... Auth\AuthenticatedSessionController@store  
  POST      logout .......................................................................................... logout › Auth\AuthenticatedSessionController@destroy  
  PUT       password ............................................................................................ password.update › Auth\PasswordController@update  
  POST      payment-verify ............................................................................................. payment.verify › PaymentController@verify  
  GET|HEAD  profile ........................................................................................................ profile.edit › ProfileController@edit  
  PATCH     profile .................................................................................................... profile.update › ProfileController@update  
  DELETE    profile .................................................................................................. profile.destroy › ProfileController@destroy  
  POST      razorpay ......................................................................................... payment.razorpay › PaymentController@processPayment  
  GET|HEAD  register ............................................................................................. register › Auth\RegisteredUserController@create  
  POST      register ......................................................................................................... Auth\RegisteredUserController@store  
  POST      reset-password ..................................................................................... password.store › Auth\NewPasswordController@store  
  GET|HEAD  reset-password/{token} ............................................................................ password.reset › Auth\NewPasswordController@create  
  GET|HEAD  sanctum/csrf-cookie ................................................................ sanctum.csrf-cookie › Laravel\Sanctum › CsrfCookieController@show  
  POST      seats/check-availability .................................................................. seats.checkAvailability › SeatController@checkAvailability  
  GET|HEAD  tickets ................................................................................................................................ tickets.index  
  GET|HEAD  up ...................................................................................................................................................  
  GET|HEAD  verify-email ............................................................................ verification.notice › Auth\EmailVerificationPromptController  
  GET|HEAD  verify-email/{id}/{hash} ............................................................................ verification.verify › Auth\VerifyEmailController  

                                                                                                                                               Showing [27] routes

i tried adding a dd() at the start of the function but the request wont even reach there i also tried using Inertia.post

should i keep this as a get route cause it works perfectly fine, if yes where should i pass the data ?

Cody · September 11, 2024, 11:48am

The issue you are facing likely stems from the POST request handling in Laravel, particularly related to CSRF protection, or an issue with how the request is being sent and processed. Since the GET request works fine, and the POST request fails, here are some troubleshooting steps and recommendations.

1. CSRF Token Issue:

Laravel automatically includes CSRF protection for POST requests. If you are using Axios for the POST request, ensure that the CSRF token is being sent along with it. Laravel requires a valid CSRF token for any non-GET request.

In your blade.php file (if applicable), include the CSRF token in the <head> section:

php

Copy code

<meta name="csrf-token" content="{{ csrf_token() }}">

Then, include the token in your Axios configuration:

js

Copy code

import axios from 'axios';

// Set Axios to include CSRF token
axios.defaults.headers.common['X-CSRF-TOKEN'] = document.querySelector('meta[name="csrf-token"]').getAttribute('content');

2. Validation Mismatch:

In your controller, you’re validating total, but you’re passing totalAmount from your frontend:

php

Copy code

$request->validate([
    'selectedSeats' => 'required|array',
    'total' => 'required|numeric|min:0',
    'user' => 'required'
]);

Change 'total' => 'totalAmount' in the validation if the variable you’re passing is totalAmount in the request:

php

Copy code

$request->validate([
    'selectedSeats' => 'required|array',
    'totalAmount' => 'required|numeric|min:0', // Change to match frontend
    'user' => 'required'
]);

3. Error Handling in Axios:

Check if your Axios POST request has any error responses from the backend that may give you hints. Modify the error handler to get more details:

js

Copy code

axios.post(route('payment.razorpay'), {
    selectedSeats,
    totalAmount: total,
    user: auth.user
}, {
    headers: { "Content-Type": "application/json" }
})
.then(response => {
    console.log(response.data);
})
.catch(error => {
    // Capture error response for better debugging
    console.error(error.response ? error.response.data : error);
});

4. Testing with Insomnia/Postman:

You can debug by sending a POST request directly to your Laravel route (/razorpay) using a tool like Postman or Insomnia. This will allow you to manually send the payload and check if there are any server-side errors unrelated to your frontend code.

If the request works in Postman but fails in your app, it’s likely a frontend issue (e.g., missing CSRF token).
If it fails in Postman, there might be an issue with the backend route or the controller validation.

5. Logging and Debugging:

If the request is not reaching the dd('here'), try logging the request or debugging by adding a Log::info() statement before the dd():

php

Copy code

use Illuminate\Support\Facades\Log;

public function processPayment(Request $request)
{
    Log::info('Request received at processPayment', $request->all());

    dd('here');

    // Rest of your code
}

This will ensure the request data is logged in storage/logs/laravel.log and help you confirm whether the request is being received by the server.

6. Try Inertia Post:

If you’re using Inertia.js, you could try using Inertia.post() instead of Axios, which handles some of the CSRF token logic and request processing automatically:

js

Copy code

Inertia.post(route('payment.razorpay'), {
    selectedSeats,
    totalAmount: total,
    user: auth.user
});

7. GET as a Fallback:

If you’re considering using a GET request because it works fine, it’s not ideal for sensitive data (like payment details), as GET requests expose data in the URL. You can pass data via query parameters, but it’s recommended to use POST for actions like payment processing for better security.

If you decide to use GET, you can pass data as query parameters:

js

Copy code

const url = route('payment.razorpay') + `?selectedSeats=${JSON.stringify(selectedSeats)}&totalAmount=${total}&user=${auth.user}`;
axios.get(url)
    .then(response => console.log(response.data))
    .catch(error => console.error(error));

However, it’s much better to fix the POST request issue instead.

Conclusion:

Ensure you’re passing the CSRF token in your Axios request.
Correct validation fields in the controller to match what you’re sending from the frontend.
Test the POST request with Postman/Insomnia to isolate whether it’s a frontend or backend issue.
Log incoming requests to debug further.

With these steps, you should be able to resolve the POST request issue and process Razorpay payments correctly.