JekyllEWP 1.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 12964c4531c2345816914ddd5597571207bf80bc0b89ad8f30bcec4c5f1f39e3
+  data.tar.gz: 17635e0f34f63be74e297cd1e6a13a1a362dbfb31e4e1c58c25664f38be1593e
+SHA512:
+  metadata.gz: 9465bcf7f3fcd95bc3b868c7ce90e7f823394200914d2994d7858f9bd0f17317318e04da473bd2c2a34bd183ca9d7396a670c17b91dd89118398aa46b9f151a9
+  data.tar.gz: e144ba1cc3f0e415800cf05e9870987c56d0da1b54905519d04c26d2b6366e7cba081a644c78dbd692a5758ed34a32044d69dd895884b838d140d4c4772c9fc8

data/lib/jekyllEWP.rb

@@ -0,0 +1,238 @@
+require 'openssl'
+require 'base64' 
+
+
+def wrapInForm(encryptedValue, use_sandbox=false, separate_submit=false, button_image = "", identifier="")
+
+    if identifier.nil?
+        identifier = ""
+    end
+
+    if button_image.nil?
+        button_image = ""
+    end
+
+    if getBool(use_sandbox) == true
+        stage = "sandbox."
+    else
+        stage=""
+    end
+
+    unless getBool(separate_submit) == true
+        submit = '<input type="image" src="' + button_image + '" border="0" name="submit" alt="Make payments with PayPal - it\'s fast, free and secure!">'
+        id=''
+    else
+        submit = ""
+        id=' id="' + identifier + '"'
+    end
+
+
+    return_str = '<form' + id +' action="https://www.' + stage + 'paypal.com/cgi-bin/webscr" method="post">' + '<input type="hidden" name="cmd" value="_s-xclick">' + submit + '<input type="hidden" name="encrypted" value="' + encryptedValue + '"></form>';
+
+    return return_str
+
+end
+
+
+ 
+def getButtonEncryptionValue(data, privateKeyData, certData, payPalCertData, keyPass = nil)
+    #puts data
+    #get keys and certs
+
+    #https://stackoverflow.com/a/11136771
+    paypal_pub_cert = OpenSSL::X509::Certificate.new(payPalCertData.gsub('\n', "\n"))
+
+    my_pub_cert = OpenSSL::X509::Certificate.new(certData.gsub('\n', "\n"))
+
+    my_private_key = ''
+    if keyPass
+        #https://stackoverflow.com/a/862090S
+        #https://docs.ruby-lang.org/en/2.1.0/OpenSSL/PKey/RSA.html#method-c-new
+        my_private_key = OpenSSL::PKey::RSA.new(privateKeyData.gsub('\n', "\n"), keyPass)
+    else
+        my_private_key = OpenSSL::PKey::RSA.new(privateKeyData.gsub('\n', "\n")) 
+    end
+       
+
+
+    #modified from http://railscasts.com/episodes/143-paypal-security
+    #https://docs.ruby-lang.org/en/2.1.0/OpenSSL/PKCS7.html#method-c-sign
+    signed = OpenSSL::PKCS7::sign(OpenSSL::X509::Certificate.new(my_pub_cert), my_private_key, data, [], OpenSSL::PKCS7::BINARY)
+    
+    OpenSSL::PKCS7::encrypt([OpenSSL::X509::Certificate.new(paypal_pub_cert)], signed.to_der, OpenSSL::Cipher.new("des-ede3-cbc"), OpenSSL::PKCS7::BINARY).to_s.gsub("\n", "")
+
+    # puts signed.class
+    return signed.to_pem()
+        
+end
+
+
+def getButtonOptionsString(certID, cmd, paypal_business_email, item_name, item_price, item_number = "0000", currency_code = "USD", tax = nil, shipping = nil )
+    options = ""
+
+    options.concat("cert_id=" + certID + "\n")
+    options.concat("cmd=" + cmd + "\n")
+
+    # if cmd == "_cart"
+        # case cart_options
+        # when "add"
+        # when "display"
+        #     options.concat(cart_options + "=1\n")
+        # when "upload"
+        #     puts "unsupported value 'upload' used in paypal EWP plugin. the form probably isnt going to work"
+        # end
+    # end
+
+    options.concat("business=" + paypal_business_email + "\n")
+    options.concat("item_name=" + item_name + "\n")
+    #options.concat("item_number=" + item_number + "\n")
+    options.concat("amount=" + item_price + "\n")
+    options.concat("currency_code=" + currency_code + "\n")
+    
+
+
+    unless tax.nil? || tax == "0"
+        options.concat("tax=" + tax + "\n")
+    end
+
+    unless shipping.nil? || shipping == "0"
+        options.concat("shipping=" + shipping + "\n")
+    end
+
+
+
+=begin
+Below is the full list of supported key/vaue pairs from the paypal docs (https://developer.paypal.com/docs/classic/paypal-payments-standard/integration-guide/encryptedwebpayments/#id08A3I0PD04Y) the ones beginning with a hash (#) are not implemented here.
+
+some of these are also passthrough variables that arent used by paypal: https://developer.paypal.com/docs/classic/paypal-payments-standard/integration-guide/formbasics/#variations-on-basic-variables
+
+
+    cert_id=Z24MFU6DSHBXQ
+    cmd=_xclick
+    business=sales@company.com
+    item_name=Handheld Computer
+    #item_number=1234
+    #custom=sc-id-789
+    amount=500.00
+    currency_code=USD
+    tax=41.25
+    shipping=20.00
+    #address_override=1
+    #address1=123 Main St
+    #city=Austin
+    #state=TX
+    #zip=94085
+    #country=USA
+    #cancel_return=https://example.com/cancel
+=end
+    return options
+
+end
+
+#determines the button command from the string input.
+#possible commands listed at https://developer.paypal.com/docs/classic/paypal-payments-standard/integration-guide/formbasics/#specifying-button-type--cmd
+
+def getButtonCmd(purpose)
+     
+    case purpose
+    when "addtocart"
+        return "_cart\nadd=1" #this is a dirty hack to insert the correct parameter for the cart buttons. better solutions welcome
+    when "viewcart"
+        return "_cart\ndisplay=1" #this is a dirty hack to insert the correct parameter for the cart buttons. better solutions welcome
+    when "buynow"
+        return "_xclick"
+    when "donate"
+        return "_donations"
+    when "autobilling"
+        return "_xclick-auto-billing"
+    when "paymentplan"
+        return "_xclick-payment-plan"
+    else
+        return "_xclick"
+    end
+
+end
+
+def getBool(val)
+    val.to_s.downcase == 'true'
+end 
+
+
+
+
+module Jekyll
+    class PayPalEWP < Liquid::Tag
+
+               
+  
+        def initialize(tag_name, variables, tokens)
+            super
+            @variables = variables.split(" ")
+
+            @buttonpurpose = @variables[0]
+
+            unless @variables[1].nil?
+                @separatesubmitbutton = getBool(@variables[1])
+            else
+                @separatesubmitbutton = false
+            end
+
+            
+            unless @variables[2].nil?
+
+                if @separatesubmitbutton == true
+                    #is an id
+                    @formid = @variables[2]
+                else
+                    #is an image
+                    @buttonimage = @variables[2]
+                end
+
+            else
+                #no value provided
+                if @separatesubmitbutton == true
+                    #is an id
+                    @formid = 0
+                else
+                    #is an image
+                    @buttonimage = "https://www.paypalobjects.com/en_US/i/btn/btn_cart_LG.gif" #some arbitrary thing
+                end
+                
+            end
+
+            
+        end
+
+        # Lookup allows access to the page/post variables through the tag context
+        #https://blog.sverrirs.com/2016/04/custom-jekyll-tags.html
+        def lookup(context, name)
+            lookup = context
+            name.split(".").each { |value| lookup = lookup[value] }
+            lookup
+        end
+  
+      def render(context)
+
+        wrapInForm(
+            getButtonEncryptionValue(
+                getButtonOptionsString(
+                    "#{lookup(context, 'site.paypal_cert_id')}",
+                    getButtonCmd(@buttonpurpose),
+                    "#{lookup(context, 'site.paypal_email_address')}",
+                    "#{lookup(context, 'page.name')}", #product name
+                    "#{lookup(context, 'page.price')}"), #product price
+                    #"#{lookup(context, 'page.sku')}" #product identifier
+                ENV['EWP_PRIVKEY'],
+                ENV['EWP_PUBCERT'],
+                ENV['EWP_PAYPAL_PUBCERT'],
+                ENV['EWP_PRIVKEY_PASS']),
+            "#{lookup(context, 'site.paypal_sandbox_mode')}",
+            @separatesubmitbutton,
+            @buttonimage,
+            @formid)
+      end
+    end
+  end
+  
+  Liquid::Template.register_tag('EWPform', Jekyll::PayPalEWP)
+  

metadata

@@ -0,0 +1,45 @@
+--- !ruby/object:Gem::Specification
+name: JekyllEWP
+version: !ruby/object:Gem::Version
+  version: 1.0.1
+platform: ruby
+authors:
+- Adrian Edwards
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2020-01-14 00:00:00.000000000 Z
+dependencies: []
+description: This Jekyll plugin creates paypal Encrypted Web Payments buttons and
+  encrypts them at build time so items in your store cannot have their prices or other
+  attributes changed in Inspect Element
+email: adrian@adriancedwards.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/jekyllEWP.rb
+homepage: https://github.com/MoralCode/Jekyll-EWP
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.1.2
+signing_key: 
+specification_version: 4
+summary: A Jekyll plugin to generate and encrypt PayPal buttons on the fly.
+test_files: []