activemerchant 1.0.0

data/lib/active_merchant/billing/gateways/payflow.rb

@@ -0,0 +1,84 @@
+require File.dirname(__FILE__) + '/payflow/payflow_common_api'
+
+module ActiveMerchant #:nodoc:
+  module Billing #:nodoc:
+    class PayflowGateway < Gateway
+      include PayflowCommonAPI
+      
+      def authorize(money, credit_card, options = {})
+        if result = test_result_from_cc_number(credit_card.number)
+          return result
+        end
+  
+        request = build_sale_or_authorization_request('Authorization', money, credit_card, options)
+        commit(request)
+      end
+      
+      def purchase(money, credit_card, options = {})
+        if result = test_result_from_cc_number(credit_card.number)
+          return result
+        end
+        
+        request = build_sale_or_authorization_request('Sale', money, credit_card, options)
+        commit(request)
+      end                       
+      
+      def express
+        @express ||= PayflowExpressGateway.new(@options)
+      end
+      
+      def self.supported_cardtypes
+        [:visa, :master, :american_express, :jcb, :discover, :diners_club]
+      end
+      
+      private      
+      def build_sale_or_authorization_request(action, money, credit_card, options)
+        xml = Builder::XmlMarkup.new :indent => 2
+        xml.tag! action do
+          xml.tag! 'PayData' do
+            xml.tag! 'Invoice' do
+              xml.tag! 'CustIP', options[:ip] unless options[:ip].blank?
+              xml.tag! 'InvNum', options[:order_id] unless options[:order_id].blank?
+              xml.tag! 'Description', options[:description] unless options[:description].blank?
+
+              billing_address = options[:billing_address] || options[:address]
+              shipping_address = options[:shipping_address] || billing_address
+
+              add_address(xml, 'BillTo', billing_address, options)
+              add_address(xml, 'ShipTo', shipping_address, options)
+              
+              xml.tag! 'TotalAmt', amount(money), 'Currency' => currency(money)
+            end
+            
+            xml.tag! 'Tender' do
+              add_credit_card(xml, credit_card)
+            end
+          end 
+        end
+        xml.target!
+      end
+      
+      def add_credit_card(xml, credit_card)
+        xml.tag! 'Card' do
+          xml.tag! 'CardType', CARD_MAPPING[credit_card.type.to_sym]
+          xml.tag! 'CardNum', credit_card.number
+          xml.tag! 'ExpDate', expdate(credit_card)
+          xml.tag! 'NameOnCard', credit_card.name
+          xml.tag! 'CVNum', credit_card.verification_value if credit_card.verification_value?
+        end
+      end
+      
+      def expdate(creditcard)
+        year  = sprintf("%.4i", creditcard.year)
+        month = sprintf("%.2i", creditcard.month)
+
+        "#{year}#{month}"
+      end
+      
+      def build_response(success, message, response, options = {})
+        Response.new(success, message, response, options)
+      end
+    end
+  end
+end
+

data/lib/active_merchant/billing/gateways/payflow/f73e89fd.0

@@ -0,0 +1,17 @@
+subject=/C=US/O=RSA Data Security, Inc./OU=Secure Server Certification Authority
+notBefore=Nov  9 00:00:00 1994 GMT
+notAfter=Jan  7 23:59:59 2010 GMT
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/lib/active_merchant/billing/gateways/payflow/payflow_common_api.rb

@@ -0,0 +1,190 @@
+require 'digest/sha1'
+
+module ActiveMerchant #:nodoc:
+  module Billing #:nodoc:
+    module PayflowCommonAPI
+      def self.included(base)
+        base.class_inheritable_accessor :default_currency
+        base.default_currency = 'USD'
+          
+        # The certification_id is required by PayPal to make direct HTTPS posts to their servers.
+        # You can obtain a certification id by emailing: payflowintegrator@paypal.com
+        base.class_inheritable_accessor :certification_id
+        base.class_inheritable_accessor :partner
+        
+        # Set the default partner to PayPal
+        base.partner = 'PayPal'
+      end
+      
+      XMLNS = 'http://www.paypal.com/XMLPay'
+      TEST_URL = 'https://pilot-payflowpro.verisign.com/transaction'
+      LIVE_URL = 'https://payflowpro.verisign.com/transaction'
+      
+      CARD_MAPPING = {
+        :visa => 'Visa',
+        :master => 'MasterCard',
+        :discover => 'Discover',
+        :american_express => 'Amex',
+        :jcb => 'JCB',
+        :diners_club => 'DinersClub',
+        :switch => 'Switch',
+        :solo => 'Solo'
+      }
+          
+      def initialize(options = {})
+        requires!(options, :login, :password)
+        @options = {
+          :certification_id => self.class.certification_id,
+          :partner => self.class.partner
+        }.update(options)
+        
+        super
+      end  
+      
+      def test?
+        @options[:test] || Base.gateway_mode == :test
+      end
+      
+      def capture(money, authorization, options = {})
+        request = build_void_or_capture_request('Capture', authorization)
+        commit(request)
+      end
+      
+      def void(authorization, options = {})
+        request = build_void_or_capture_request('Void', authorization)
+        commit(request)
+      end
+         
+      private      
+      def build_request(body)
+        xml = Builder::XmlMarkup.new :indent => 2
+        xml.instruct!
+        xml.tag! 'XMLPayRequest', 'Timeout' => 30, 'version' => "2.1", "xmlns" => XMLNS do
+          xml.tag! 'RequestData' do
+            xml.tag! 'Vendor', @options[:login]
+            xml.tag! 'Partner', @options[:partner]
+            xml.tag! 'Transactions' do
+              xml.tag! 'Transaction' do
+                xml.tag! 'Verbosity', 'MEDIUM'
+                xml << body
+              end
+            end
+          end
+          xml.tag! 'RequestAuth' do
+            xml.tag! 'UserPass' do
+              xml.tag! 'User', @options[:login]
+              xml.tag! 'Password', @options[:password]
+            end
+          end
+        end
+        xml.target!
+      end
+      
+      def build_void_or_capture_request(action, authorization)
+        xml = Builder::XmlMarkup.new :indent => 2
+        xml.tag! action do
+          xml.tag! 'PNRef', authorization
+        end
+        xml.target!
+      end
+            
+      def add_paypal_details(xml, options)
+        xml.tag! 'PayPal' do
+          xml.tag! 'EMail', options[:email]
+          xml.tag! 'ReturnURL', options[:return_url]
+          xml.tag! 'CancelURL', options[:cancel_return_url]
+        end
+      end
+
+      def add_address(xml, tag, address, options)  
+        return if address.nil?
+        xml.tag! tag do
+          xml.tag! 'Name', address[:name] unless options[:name].blank?
+          xml.tag! 'Email', options[:email] unless options[:email].blank?
+          xml.tag! 'Phone', address[:phone] unless address[:phone].blank?
+          xml.tag! 'Address' do
+            xml.tag! 'Street', address[:address1] unless address[:address1].blank?
+            xml.tag! 'City', address[:city] unless address[:city].blank?
+            xml.tag! 'State', address[:state] unless address[:state].blank?
+            xml.tag! 'Country', address[:country] unless address[:country].blank?
+            xml.tag! 'Zip', address[:zip] unless address[:zip].blank?
+          end
+        end
+      end
+    
+      def ssl_post(url, data, headers)
+        uri = URI.parse(url)
+
+        http = Net::HTTP.new(uri.host, uri.port)
+
+        http.verify_mode    = OpenSSL::SSL::VERIFY_PEER
+        http.verify_depth   = 5
+        http.use_ssl        = true
+        http.ca_file        = File.dirname(__FILE__) + '/f73e89fd.0'
+
+        http.post(uri.path, data, headers).body
+      end
+            
+      def parse(data)
+        response = {}
+        xml = REXML::Document.new(data)
+        root = REXML::XPath.first(xml, "//ResponseData")
+        
+        if REXML::XPath.first(root, "//TransactionResult/attribute::Duplicate")
+          response[:duplicate] = true 
+        end
+        
+        root.elements.to_a.each do |node|
+          parse_element(response, node)
+        end
+
+        response
+      end
+      
+      def parse_element(response, node)
+        if node.has_elements?
+          node.elements.each{|e| parse_element(response, e) }
+        else
+          response[node.name.underscore.to_sym] = node.text
+        end
+      end
+      
+      def generate_request_token
+        Digest::SHA1.hexdigest(rand.to_s).slice(0,32)
+      end
+      
+      def currency(money)
+        money.respond_to?(:currency) ? money.currency : self.default_currency
+      end
+      
+      def build_headers(content_length)
+        {
+          "Content-Type" => "text/xml",
+          "Content-Length" => content_length.to_s,
+      	  "X-VPS-Timeout" => "30",
+      	  "X-VPS-VIT-Client-Certification-Id" => @options[:certification_id].to_s,
+      	  "X-VPS-VIT-Integration-Product" => "ActiveMerchant",
+      	  "X-VPS-VIT-Runtime-Version" => RUBY_VERSION,
+      	  "X-VPS-Request-ID" => generate_request_token
+    	  }
+    	end
+    	
+    	def commit(request_body)
+        request = build_request(request_body)
+        headers = build_headers(request_body.size)
+    	  
+    	  url = test? ? TEST_URL : LIVE_URL
+    	  data = ssl_post(url, request, headers)
+    	  @response = parse(data)
+    	  
+    	  success = @response[:result] == "0"
+    	  message = @response[:message]
+    	  
+    	  build_response(success, message, @response,
+    	    :test => test?,
+    	    :authorization => @response[:pn_ref]
+        )
+      end
+    end
+  end
+end

data/lib/active_merchant/billing/gateways/payflow/payflow_express_response.rb

@@ -0,0 +1,30 @@
+module ActiveMerchant #:nodoc:
+  module Billing #:nodoc:
+    class PayflowExpressResponse < Response
+      def email
+        @params['e_mail']
+      end
+      
+      def token
+        @params['token']
+      end
+      
+      def payer_id
+        @params['payer_id']
+      end
+      
+      def address
+        {  'name'       => @params['name'],
+           'company'    => nil,
+           'address1'   => @params['street'],
+           'address2'   => nil,
+           'city'       => @params['city'],
+           'state'      => @params['state'],
+           'country'    => @params['country'],
+           'zip'        => @params['zip'],
+           'phone'      => nil
+        }
+      end
+    end
+  end
+end

data/lib/active_merchant/billing/gateways/payflow_express.rb

@@ -0,0 +1,123 @@
+require File.dirname(__FILE__) + '/payflow/payflow_common_api'
+require File.dirname(__FILE__) + '/payflow/payflow_express_response'
+
+module ActiveMerchant #:nodoc:
+  module Billing #:nodoc:
+    class PayflowExpressGateway < Gateway
+      include PayflowCommonAPI
+      
+      LIVE_REDIRECT_URL = 'https://www.paypal.com/cgibin/webscr?cmd=_express-checkout&token='
+      TEST_REDIRECT_URL = 'https://test-expresscheckout.paypal.com/cgi-bin/webscr?cmd=_express-checkout&token='
+      
+      def redirect_url
+        test? ? TEST_REDIRECT_URL : LIVE_REDIRECT_URL
+      end
+      
+      def redirect_url_for(token)
+        "#{redirect_url}#{token}"
+      end
+      
+      def authorize(money, options = {})
+        requires!(options, :token, :payer_id)
+        request = build_sale_or_authorization_request('Authorization', money, options)
+        commit(request)
+      end
+      
+      def purchase(money, options = {})        
+        requires!(options, :token, :payer_id)
+        request = build_sale_or_authorization_request('Sale', money, options)
+        commit(request)
+      end                       
+    
+      def setup_authorization(money, options = {})
+        requires!(options, :return_url, :cancel_return_url)
+        
+        request = build_setup_express_sale_or_authorization_request('Authorization', money, options)
+        commit(request)
+      end
+      
+      def setup_purchase(money, options = {})
+        requires!(options, :return_url, :cancel_return_url)
+        
+        request = build_setup_express_sale_or_authorization_request('Sale', money, options)
+        commit(request)
+      end
+      
+      def details_for(token)
+        request = build_get_express_details_request(token)
+        commit(request)
+      end         
+      
+      private
+      def build_get_express_details_request(token)
+        xml = Builder::XmlMarkup.new :indent => 2  
+        xml.tag! 'GetExpressCheckout' do
+          xml.tag! 'Authorization' do
+            xml.tag! 'PayData' do  
+              xml.tag! 'Tender' do
+                xml.tag! 'PayPal' do
+                  xml.tag! 'Token', token
+                end
+              end
+            end
+          end
+        end
+        xml.target!
+      end
+      
+      def build_setup_express_sale_or_authorization_request(action, money, options = {})
+        xml = Builder::XmlMarkup.new :indent => 2
+        xml.tag! 'SetExpressCheckout' do
+          xml.tag! action do
+            xml.tag! 'PayData' do
+              xml.tag! 'Invoice' do
+                xml.tag! 'CustIP', options[:ip] unless options[:ip].blank?
+                xml.tag! 'InvNum', options[:order_id] unless options[:order_id].blank?
+                xml.tag! 'Description', options[:description] unless options[:description].blank?
+            
+                billing_address = options[:billing_address] || options[:address]
+                shipping_address = options[:shipping_address] || billing_address
+            
+                add_address(xml, 'BillTo', billing_address, options)
+                add_address(xml, 'ShipTo', shipping_address, options)
+                
+                xml.tag! 'TotalAmt', amount(money), 'Currency' => currency(money)
+              end
+              
+              xml.tag! 'Tender' do
+                add_paypal_details(xml, options)
+              end
+            end
+          end
+        end
+        xml.target!
+      end
+      
+      def build_sale_or_authorization_request(action, money, options) 
+        xml = Builder::XmlMarkup.new :indent => 2
+        xml.tag! 'DoExpressCheckout' do
+          xml.tag! action do
+            xml.tag! 'PayData' do
+              xml.tag! 'Invoice' do 
+                xml.tag! 'TotalAmt', amount(money), 'Currency' => currency(money)
+              end
+              xml.tag! 'Tender' do
+                xml.tag! 'PayPal' do
+                  xml.tag! 'Token', options[:token]
+                  xml.tag! 'PayerID', options[:payer_id]
+                  xml.tag! 'NotifyURL', options[:notify_url]
+                end
+              end
+            end
+          end
+        end
+        xml.target!
+      end
+      
+      def build_response(success, message, response, options = {})
+        PayflowExpressResponse.new(success, message, response, options)
+      end
+    end
+  end
+end
+

data/lib/active_merchant/billing/gateways/payflow_express_uk.rb

@@ -0,0 +1,9 @@
+module ActiveMerchant #:nodoc:
+  module Billing #:nodoc:
+    class PayflowExpressUkGateway < PayflowExpressGateway
+      self.default_currency = 'GBP'
+      self.partner = 'PayPalUk'
+    end
+  end
+end
+