activemerchant 1.1.0 → 1.2.0

data/lib/active_merchant/billing/gateways/bogus.rb

@@ -3,6 +3,11 @@ module ActiveMerchant #:nodoc:
     # Bogus Gateway
     class BogusGateway < Gateway
       
+      self.supported_countries = ['US']
+      self.supported_cardtypes = [:bogus]
+      self.homepage_url = 'http://example.com'
+      self.display_name = 'Bogus'
+      
       def authorize(money, creditcard, options = {})
         case creditcard.number
         when '1'
@@ -68,12 +73,7 @@ module ActiveMerchant #:nodoc:
           raise Error, 'Bogus Gateway: Use trans_id 1 for success, 2 for exception and anything else for error'
         end
       end
- 
-      # We support visa and master card
-      def self.supported_cardtypes
-        [:bogus]
-      end
-    
+
       private 
     
       def deal_with_cc(creditcard)

data/lib/active_merchant/billing/gateways/brain_tree.rb

@@ -0,0 +1,191 @@
+module ActiveMerchant #:nodoc:
+  module Billing #:nodoc:
+    class BrainTreeGateway < Gateway
+      URL = 'https://secure.braintreepaymentgateway.com/api/transact.php'
+      attr_reader :url 
+      attr_reader :response
+      attr_reader :options
+
+      self.supported_countries = ['US']
+      self.supported_cardtypes = [:visa, :master, :american_express]
+      self.homepage_url = 'http://www.braintreepaymentsolutions.com'
+      self.display_name = 'Braintree'
+
+      AVS_MESSAGES = {
+        "X" => "Exact match, 9-character numeric ZIP",
+        "Y" => "Exact match, 5-character numeric ZIP",
+        "D" => "Exact match, 5-character numeric ZIP",
+        "M" => "Exact match, 5-character numeric ZIP",
+        "A" => "Address match only",
+        "B" => "Address match only",
+        "W" => "9-character numeric ZIP match only",
+        "Z" => "5-character Zip match only",
+        "P" => "5-character Zip match only",        
+        "L" => "5-character Zip match only",
+        "N" => "No address or ZIP match",
+        "C" => "No address or ZIP match",
+        "U" => "Address unavailable",
+        "G" => "Non-U.S. Issuer does not participate",
+        "I" => "Non-U.S. Issuer does not participate",
+        "R" => "Issuer system unavailable",
+        "E" => "Not a mail/phone order",
+        "S" => "Service not supported",
+        "0" => "AVS Not Available",
+        "O" => "AVS Not Available",
+        "B" => "AVS Not Available"
+      }
+      
+      CARD_CODE_MESSAGES = {
+        "M" => "CVV2/CVC2 Match",
+        "N" => "CVV2/CVC2 No Match",
+        "P" => "Not Processed",
+        "S" => "Merchant has indicated that CVV2/CVC2 is not present on card",
+        "U" => "Issuer is not certified and/or has not provided Visa encryption keys"
+      }
+
+      def initialize(options = {})
+        requires!(options, :login, :password)
+        @options = options
+        super
+      end  
+      
+      def authorize(money, creditcard, options = {})
+        post = {}
+        add_invoice(post, options)
+        add_payment_source(post, creditcard,options)        
+        add_address(post, creditcard, options)        
+        add_customer_data(post, options)
+        
+        commit('auth', money, post)
+      end
+      
+      def purchase(money, creditcard, options = {})
+        post = {}
+        add_invoice(post, options)
+        add_payment_source(post, creditcard,options)        
+        add_address(post, creditcard, options)   
+        add_customer_data(post, options)
+             
+        commit('sale', money, post)
+      end                       
+    
+      def capture(money, authorization, options = {})
+        post ={}
+        post[:transactionid] = authorization
+        commit('capture', money, post)
+      end
+    
+      private                             
+      def add_customer_data(post, options)
+        if options.has_key? :email
+          post[:email] = options[:email]
+        end
+
+        if options.has_key? :ip
+          post[:ipaddress] = options[:ip]
+        end        
+      end
+
+      def add_address(post, creditcard, options)     
+        if address = options[:billing_address] || options[:address]
+          post[:address1]    = address[:address1].to_s
+          post[:address2]    = address[:address2].to_s unless address[:address2].blank?
+          post[:company]    = address[:company].to_s
+          post[:phone]      = address[:phone].to_s
+          post[:zip]        = address[:zip].to_s       
+          post[:city]       = address[:city].to_s
+          post[:country]    = address[:country].to_s
+          post[:state]      = address[:state].blank?  ? 'n/a' : address[:state]
+        end         
+      end
+
+      def add_invoice(post, options)
+        post[:orderid] = options[:order_id].to_s.gsub(/[^\w.]/, '')
+      end
+      
+      def add_payment_source(params, source,options)
+        if source.is_a?(String)
+          add_customer_vault_id(params, source)
+        else
+          add_creditcard(params, source,options)
+        end
+      end
+      
+      def add_customer_vault_id(params,vault_id)
+        params[:customer_vault_id] = vault_id
+      end
+      
+      def add_creditcard(post, creditcard,options)   
+        post[:customer_vault] = "add_customer" if options[:store]
+        
+        post[:ccnumber]  = creditcard.number
+        post[:cvv] = creditcard.verification_value if creditcard.verification_value?
+        post[:ccexp]  = expdate(creditcard)
+        post[:firstname] = creditcard.first_name
+        post[:lastname]  = creditcard.last_name   
+      end
+      
+      def parse(body)
+        results = {}
+        body.split(/&/).each do |pair|
+          key,val = pair.split(/=/)
+          results[key] = val
+        end
+        results[:card_code_message] = CARD_CODE_MESSAGES[results[:cvvresponse]] if results[:cvvresponse]
+        results[:avs_message]       = AVS_MESSAGES[results["avsresponse"]] if results["avsresponse"]
+        results
+        
+      end     
+      
+      def commit(action, money, parameters)
+        parameters[:amount]  = amount(money) if money
+        
+        if result = test_result_from_cc_number(parameters[:ccnumber])
+          return result
+        end
+        
+        data = ssl_post URL, post_data(action,parameters)
+
+        @response = parse(data)
+
+        Response.new(@response["response"]=="1", message_from(@response), @response, 
+            :authorization => @response["transactionid"],
+            :test => test?
+        )
+        
+      end
+      
+      def expdate(creditcard)
+        year  = sprintf("%.4i", creditcard.year)
+        month = sprintf("%.2i", creditcard.month)
+
+        "#{month}#{year[-2..-1]}"
+      end
+      
+
+      def message_from(response)
+         r=response["responsetext"]
+         case r
+         when "SUCCESS","Approved"
+           "This transaction has been approved"
+         when "DECLINE"
+           "This transaction has been declined"
+          else
+            r
+          end
+      end
+      
+      def post_data(action, parameters = {})
+        post = {}
+        post[:username]      = @options[:login]
+        post[:password]   = @options[:password]
+        post[:type]       = action
+
+        request = post.merge(parameters).map {|key,value| "#{key}=#{CGI.escape(value.to_s)}"}.join("&")
+        request        
+      end
+      
+    end
+  end
+end
+

data/lib/active_merchant/billing/gateways/card_stream.rb

@@ -0,0 +1,207 @@
+module ActiveMerchant #:nodoc:
+  module Billing #:nodoc:
+    #
+    # CardStream supports the following credit cards, which are auto-detected by
+    # the gateway based on the card number used: 
+    # * AM American Express 
+    # * Diners Club 
+    # * Electron 
+    # * JCB 
+    # * UK Maestro 
+    # * Maestro International 
+    # * Mastercard 
+    # * Solo 
+    # * Style 
+    # * Switch 
+    # * Visa Credit 
+    # * Visa Debit 
+    # * Visa Purchasing 
+    #
+    class CardStreamGateway < Gateway
+      TEST_URL = 'https://www.cardstream.com/merchantsecure/Cardstream/VPDirect.cfm'
+      LIVE_URL = 'https://www.cardstream.com/merchantsecure/Cardstream/VPDirect.cfm'
+      
+      self.money_format = :cents
+      self.default_currency = 'GBP'
+      self.supported_countries = ['GB']
+      self.supported_cardtypes = [:visa, :master, :american_express, :discover, :jcb, :maestro, :solo, :switch]
+      self.homepage_url = 'http://www.cardstream.com/'
+      self.display_name = 'CardStream'
+
+      APPROVED = '00'
+
+      CURRENCY_CODES = { 
+        "AUD"=> '036',
+        "CAD"=> '124',
+        "CZK"=> '203',
+        "DKK"=> '208',
+        "HKD"=> '344',
+        "ICK"=> '352',
+        "JPY"=> '392',
+        "NOK"=> '578',
+        "SGD"=> '702',
+        "SEK"=> '752',
+        "CHF"=> '756',
+        "GBP"=> '826',
+        "USD"=> '840',
+        "EUR"=> '978'
+      }
+      
+      TRANSACTIONS = {
+        :purchase => 'ESALE_KEYED',
+        :refund => 'EREFUND_KEYED',
+        :authorization => 'ESALE_KEYED'
+      }
+      
+      POST_HEADERS = { 'Content-Type' => 'application/x-www-form-urlencoded' }
+
+      attr_reader :url
+      attr_reader :response
+      attr_reader :options
+
+      def initialize(options = {})
+        requires!(options, :login, :password)
+        @options = options
+        super
+      end
+
+      def purchase(money, credit_card, options = {})
+        requires!(options, :order_id)
+        
+        post = {}
+        
+        add_amount(post, money, options)
+        add_invoice(post, money, credit_card, options)
+        add_credit_card(post, credit_card)
+        add_address(post, options)
+        add_customer_data(post, options)
+
+        commit(:purchase, post)
+      end
+  
+      private
+      
+      def add_amount(post, money, options)
+        add_pair(post, :Amount, amount(money), :required => true)
+        add_pair(post, :CurrencyCode, currency_code(options[:currency] || currency(money)), :required => true)
+      end
+
+      def add_customer_data(post, options)
+        add_pair(post, :BillingEmail, options[:email])
+        add_pair(post, :BillingPhoneNumber, options[:phone])
+      end
+
+      def add_address(post, options)
+        address = options[:billing_address] || options[:address]
+        
+        return if address.nil?
+
+        add_pair(post, :BillingStreet, address[:address1])
+        add_pair(post, :BillingHouseNumber, address[:address2])
+        add_pair(post, :BillingCity, address[:city])
+        add_pair(post, :BillingState, address[:state])
+        add_pair(post, :BillingPostCode, address[:zip])
+      end
+
+      def add_invoice(post, money, credit_card, options)
+        add_pair(post, :TransactionUnique, options[:order_id], :required => true)
+        add_pair(post, :OrderDesc, options[:description] || options[:order_id], :required => true)
+        
+        if [ 'american_express', 'diners_club' ].include?(credit_card.type.to_s)
+          add_pair(post, :AEIT1Quantity,  1) 
+          add_pair(post, :AEIT1Description,  options[:description] || options[:order_id]) 
+          add_pair(post, :AEIT1GrossValue, amount(money))
+        end
+      end
+
+      def add_credit_card(post, credit_card)
+        add_pair(post, :CardName, credit_card.name, :required => true)
+        add_pair(post, :CardNumber, credit_card.number, :required => true)
+         
+        add_pair(post, :ExpiryDateMM, format(credit_card.month, :two_digits), :required => true)
+        add_pair(post, :ExpiryDateYY, format(credit_card.year, :two_digits), :required => true)
+         
+        if requires_start_date_or_issue_number?(credit_card)
+          add_pair(post, :StartDateMM, format(credit_card.start_month, :two_digits))
+          add_pair(post, :StartDateYY, format(credit_card.start_year, :two_digits))
+          
+          add_pair(post, :IssueNumber, format_issue_number(credit_card))
+        end
+        
+        add_pair(post, :CV2, credit_card.verification_value)
+      end
+      
+      def format_issue_number(credit_card)
+        credit_card.type.to_s == 'solo' ? format(credit_card.issue_number, :two_digits) : credit_card.issue_number
+      end
+
+      def commit(action, parameters)
+        data = ssl_post(test? ? TEST_URL : LIVE_URL, post_data(action, parameters), POST_HEADERS)
+        @response = parse(data)
+
+        success = @response[:response_code] == APPROVED
+        message = message_from(@response)
+
+        Response.new(success, message, @response,
+          :test => test?,
+          :authorization => @response[:cross_reference]
+        )
+      end
+
+      def message_from(results)
+        results[:response_code] == APPROVED ? "APPROVED" : results[:message]
+      end
+
+      def post_data(action, parameters = {})
+        parameters.update(
+          :MerchantPassword => @options[:password],
+          :MerchantID => @options[:login],
+          :MessageType => TRANSACTIONS[action],
+          :CallBack => "disable",
+          :DuplicateDelay => "0",
+          :EchoCardType => "YES",
+          :EchoAmount => "YES",
+          :EchoAVSCV2ResponseCode => "YES",
+          :ReturnAVSCV2Message => "YES",
+          :CountryCode => '826' # 826 for UK based merchant
+        )
+        
+        add_pair(parameters, :Dispatch, action == :authorization ? "LATER" : "NOW")
+    
+        parameters.collect { |key, value| "VP#{key}=#{CGI.escape(value.to_s)}" }.join("&")
+      end
+      
+      # VPCrossReference 
+      # The value in VPCrossReference on a success transaction will contain 
+      # a unique reference that you may use to run future transactions. 
+      # Please note that cross reference transactions must come a static IP 
+      # addressed that has been pre-registered with Cardstream. To 
+      # register an IP address please send it to support@cardstream.com 
+      # with your Cardstream issued merchant ID and it will be added to 
+      # your account.
+      def parse(body)
+        result = {}
+        pairs = body.split("&")
+        pairs.each do |pair|
+          a = pair.split("=")
+          result[a[0].gsub(/^VP/,'').underscore.to_sym] = a[1]
+        end
+        
+        result
+      end
+
+      def test?
+        @options[:test] || Base.gateway_mode == :test
+      end
+      
+      def currency_code(currency)
+        CURRENCY_CODES[currency]
+      end
+
+      def add_pair(post, key, value, options = {})
+        post[key] = value if !value.blank? || options[:required]
+      end
+    end
+  end
+end
+

data/lib/active_merchant/billing/gateways/cyber_source.rb

@@ -0,0 +1,402 @@
+module ActiveMerchant #:nodoc:
+  module Billing #:nodoc:
+    # See the remote and mocked unit test files for example usage.  Pay special attention to the contents of the options hash.
+    #
+    # Initial setup instructions can be found in http://cybersource.com/support_center/implementation/downloads/soap_api/SOAP_toolkits.pdf
+    # 
+    # Debugging 
+    # If you experience an issue with this gateway be sure to examine the transaction information from a general transaction search inside the CyberSource Business
+    # Center for the full error messages including field names.   
+    #
+    # Important Notes
+    # * AVS and CVV only work against the production server.  You will always get back X for AVS and no response for CVV against the test server. 
+    # * Nexus is the list of states or provinces where you have a physical presence.  Nexus is used to calculate tax.  Leave blank to tax everyone.  
+    # * If you want to calculate VAT for overseas customers you must supply a registration number in the options hash as vat_reg_number. 
+    # * productCode is a value in the line_items hash that is used to tell CyberSource what kind of item you are selling.  It is used when calculating tax/VAT.
+    # * All transactions use dollar values.
+    class CyberSourceGateway < Gateway
+
+      attr_reader :url 
+      attr_reader :response
+      attr_accessor :options
+
+      TEST_URL = 'https://ics2wstest.ic3.com/commerce/1.x/transactionProcessor'
+      LIVE_URL = 'https://ics2ws.ic3.com/commerce/1.x/transactionProcessor'
+          
+      # visa, master, american_express, discover
+      self.supported_cardtypes = [:visa, :master, :american_express, :discover]
+      self.supported_countries = ['US']
+      self.default_currency = 'USD'
+      self.homepage_url = 'http://www.cybersource.com'
+      self.display_name = 'CyberSource'
+  
+      # map credit card to the CyberSource expected representation
+      @@credit_card_codes = {
+        :visa  => '001',
+        :master => '002',
+        :american_express => '003',
+        :discover => '004'
+      } 
+
+      # map response codes to something humans can read
+      @@response_codes = {
+        :r100 => "Successful transaction",
+        :r101 => "Request is missing one or more required fields" ,
+        :r102 => "One or more fields contains invalid data",
+        :r150 => "General failure",
+        :r151 => "The request was received but a server time-out occurred",
+        :r152 => "The request was received, but a service timed out",
+        :r200 => "The authorization request was approved by the issuing bank but declined by CyberSource because it did not pass the AVS check",
+        :r201 => "The issuing bank has questions about the request",
+        :r202 => "Expired card", 
+        :r203 => "General decline of the card", 
+        :r204 => "Insufficient funds in the account", 
+        :r205 => "Stolen or lost card", 
+        :r207 => "Issuing bank unavailable", 
+        :r208 => "Inactive card or card not authorized for card-not-present transactions", 
+        :r209 => "American Express Card Identifiction Digits (CID) did not match", 
+        :r210 => "The card has reached the credit limit", 
+        :r211 => "Invalid card verification number", 
+        :r221 => "The customer matched an entry on the processor's negative file", 
+        :r230 => "The authorization request was approved by the issuing bank but declined by CyberSource because it did not pass the card verification check", 
+        :r231 => "Invalid account number",
+        :r232 => "The card type is not accepted by the payment processor",
+        :r233 => "General decline by the processor",
+        :r234 => "A problem exists with your CyberSource merchant configuration",
+        :r235 => "The requested amount exceeds the originally authorized amount",
+        :r236 => "Processor failure",
+        :r237 => "The authorization has already been reversed",
+        :r238 => "The authorization has already been captured",
+        :r239 => "The requested transaction amount must match the previous transaction amount",
+        :r240 => "The card type sent is invalid or does not correlate with the credit card number",
+        :r241 => "The request ID is invalid",
+        :r242 => "You requested a capture, but there is no corresponding, unused authorization record.",
+        :r243 => "The transaction has already been settled or reversed",
+        :r244 => "The bank account number failed the validation check",
+        :r246 => "The capture or credit is not voidable because the capture or credit information has already been submitted to your processor",
+        :r247 => "You requested a credit for a capture that was previously voided",
+        :r250 => "The request was received, but a time-out occurred with the payment processor",
+        :r254 => "Your CyberSource account is prohibited from processing stand-alone refunds",
+        :r255 => "Your CyberSource account is not configured to process the service in the country you specified" 
+      }
+
+      # These are the options that can be used when creating a new CyberSource Gateway object.
+      # 
+      # :login =>  your username 
+      #
+      # :password =>  the transaction key you generated in the Business Center       
+      #
+      # :test => true   sets the gateway to test mode
+      #
+      # :vat_reg_number => your VAT registration number  
+      #
+      # :nexus => "WI CA QC" sets the states/provinces where you have a physical presense for tax purposes
+      #
+      # :ignore_avs => true   don't want to use AVS so continue processing even if AVS would have failed 
+      #
+      # :ignore_cvv => true   don't want to use CVV so continue processing even if CVV would have failed 
+      def initialize(options = {})
+        requires!(options, :login, :password)
+        @options = options
+        super
+      end  
+
+      # Should run against the test servers or not?
+      def test?
+        @options[:test] || Base.gateway_mode == :test
+      end
+      
+      # Request an authorization for an amount from CyberSource 
+      #
+      # You must supply an :order_id in the options hash 
+      def authorize(money, creditcard, options = {})
+        requires!(options,  :order_id, :email)
+        setup_address_hash(options)
+        commit(build_auth_request(money, creditcard, options), options )
+      end
+
+      # Capture an authorization that has previously been requested
+      def capture(money, authorization, options = {})
+        setup_address_hash(options)
+        commit(build_capture_request(money, authorization, options), options)
+      end
+
+      # Purchase is an auth followed by a capture
+      # You must supply an order_id in the options hash  
+      def purchase(money, creditcard, options = {})
+        requires!(options, :order_id, :email)
+        setup_address_hash(options)
+        commit(build_purchase_request(money, creditcard, options), options)
+      end
+      
+      def void(identification, options = {})
+        commit(build_void_request(identification, options), options)
+      end                       
+
+      # CyberSource requires that you provide line item information for tax calculations
+      # If you do not have prices for each item or want to simplify the situation then pass in one fake line item that costs the subtotal of the order
+      #
+      # The line_item hash goes in the options hash and should look like 
+      # 
+      #         :line_items => [
+      #           {
+      #             :declared_value => '1',
+      #             :quantity => '2',
+      #             :code => 'default',
+      #             :description => 'Giant Walrus',
+      #             :sku => 'WA323232323232323'
+      #           },
+      #           {
+      #             :declared_value => '6',
+      #             :quantity => '1',
+      #             :code => 'default',
+      #             :description => 'Marble Snowcone',
+      #             :sku => 'FAKE1232132113123'
+      #           }
+      #         ]
+      #
+      # This functionality is only supported by this particular gateway may
+      # be changed at any time
+      def calculate_tax(creditcard, options)
+        requires!(options,  :line_items)
+        setup_address_hash(options)
+        commit(build_tax_calculation_request(creditcard, options), options)	  
+      end
+      
+      private                       
+      # Create all address hash key value pairs so that we still function if we were only provided with one or two of them 
+      def setup_address_hash(options)
+        options[:billing_address] = options[:billing_address] || options[:address] || {}
+        options[:shipping_address] = options[:shipping_address] || options[:billing_address]
+      end
+      
+      def build_auth_request(money, creditcard, options)
+        xml = Builder::XmlMarkup.new :indent => 2
+        add_address(xml, creditcard, options[:billing_address], options)
+        add_purchase_data(xml, money, true, options)
+        add_creditcard(xml, creditcard)
+        add_auth_service(xml)
+        add_business_rules_data(xml)
+        xml.target!
+      end
+
+      def build_tax_calculation_request(creditcard, options)
+        xml = Builder::XmlMarkup.new :indent => 2
+        add_address(xml, creditcard, options[:billing_address], options, false)
+        add_address(xml, creditcard, options[:shipping_address], options, true)
+        add_line_item_data(xml, options)
+        add_purchase_data(xml, 0, false, options)
+        add_tax_service(xml)
+        add_business_rules_data(xml)
+        xml.target!
+      end
+ 
+      def build_capture_request(money, authorization, options)
+        order_id, request_id, request_token = authorization.split(";")
+        options[:order_id] = order_id
+
+        xml = Builder::XmlMarkup.new :indent => 2
+        add_purchase_data(xml, money, true, options)
+        add_capture_service(xml, request_id, request_token)
+        add_business_rules_data(xml)
+        xml.target!
+      end 
+
+      def build_purchase_request(money, creditcard, options)
+        xml = Builder::XmlMarkup.new :indent => 2
+        add_address(xml, creditcard, options[:billing_address], options)
+        add_purchase_data(xml, money, true, options)
+        add_creditcard(xml, creditcard)
+        add_purchase_service(xml, options)
+        add_business_rules_data(xml)
+        xml.target!
+      end
+      
+      def build_void_request(identification, options)
+        order_id, request_id, request_token = identification.split(";")
+        options[:order_id] = order_id
+        
+        xml = Builder::XmlMarkup.new :indent => 2
+        add_void_service(xml, request_id, request_token)
+        xml.target!
+      end
+
+      def add_business_rules_data(xml)
+        xml.tag! 'businessRules' do
+          xml.tag!('ignoreAVSResult', 'true') if @options[:ignore_avs]
+          xml.tag!('ignoreCVResult', 'true') if @options[:ignore_cvv]
+        end 
+      end
+      
+      def add_line_item_data(xml, options)
+        options[:line_items].each_with_index do |value, index|
+          xml.tag! 'item', {'id' => index} do
+            xml.tag! 'unitPrice', amount(value[:declared_value])  
+            xml.tag! 'quantity', value[:quantity]
+            xml.tag! 'productCode', value[:code] || 'shipping_only'
+            xml.tag! 'productName', value[:description]
+            xml.tag! 'productSKU', value[:sku]
+          end
+        end
+      end
+      
+      def add_merchant_data(xml, options)
+        xml.tag! 'merchantID', @options[:login]
+        xml.tag! 'merchantReferenceCode', options[:order_id]
+        xml.tag! 'clientLibrary' ,'Ruby Active Merchant'
+        xml.tag! 'clientLibraryVersion',  '1.0'
+        xml.tag! 'clientEnvironment' , 'Linux'
+      end
+
+      def add_purchase_data(xml, money = 0, include_grand_total = false, options={})
+        xml.tag! 'purchaseTotals' do
+          xml.tag! 'currency', options[:currency] || currency(money)
+          xml.tag!('grandTotalAmount', amount(money))  if include_grand_total 
+        end
+      end
+
+      def add_address(xml, creditcard, address, options, shipTo = false)      
+        xml.tag! shipTo ? 'shipTo' : 'billTo' do
+          xml.tag! 'firstName', creditcard.first_name
+          xml.tag! 'lastName', creditcard.last_name 
+          xml.tag! 'street1', address[:address1]
+          xml.tag! 'street2', address[:address2]
+          xml.tag! 'city', address[:city]
+          xml.tag! 'state', address[:state]
+          xml.tag! 'postalCode', address[:zip]
+          xml.tag! 'country', address[:country]
+          xml.tag! 'email', options[:email]
+        end 
+      end
+
+      def add_creditcard(xml, creditcard)      
+        xml.tag! 'card' do
+          xml.tag! 'accountNumber', creditcard.number
+          xml.tag! 'expirationMonth', format(creditcard.month, :two_digits)
+          xml.tag! 'expirationYear', format(creditcard.year, :four_digits)
+          xml.tag!('cvNumber', creditcard.verification_value) unless (@options[:ignore_cvv] || creditcard.verification_value.blank? )
+          xml.tag! 'cardType', @@credit_card_codes[creditcard.type.to_sym]
+        end
+      end
+
+      def add_tax_service(xml)
+        xml.tag! 'taxService', {'run' => 'true'} do
+          xml.tag!('nexus', @options[:nexus]) unless @options[:nexus].blank?
+          xml.tag!('sellerRegistration', @options[:vat_reg_number]) unless @options[:vat_reg_number].blank?
+        end
+      end
+
+      def add_auth_service(xml)
+        xml.tag! 'ccAuthService', {'run' => 'true'} 
+      end
+
+      def add_capture_service(xml, request_id, request_token)
+        xml.tag! 'ccCaptureService', {'run' => 'true'} do
+          xml.tag! 'authRequestID', request_id
+          xml.tag! 'authRequestToken', request_token
+        end
+      end
+
+      def add_purchase_service(xml, options)
+        xml.tag! 'ccAuthService', {'run' => 'true'}
+        xml.tag! 'ccCaptureService', {'run' => 'true'}
+      end
+      
+      def add_void_service(xml, request_id, request_token)
+        xml.tag! 'voidService', {'run' => 'true'} do
+          xml.tag! 'voidRequestID', request_id
+          xml.tag! 'voidRequestToken', request_token
+        end
+      end
+      
+      # Where we actually build the full SOAP request using builder
+      def build_request(body, options)
+        xml = Builder::XmlMarkup.new :indent => 2
+          xml.instruct!
+          xml.tag! 's:Envelope', {'xmlns:s' => 'http://schemas.xmlsoap.org/soap/envelope/'} do
+            xml.tag! 's:Header' do
+              xml.tag! 'wsse:Security', {'s:mustUnderstand' => '1', 'xmlns:wsse' => 'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd'} do
+                xml.tag! 'wsse:UsernameToken' do
+                  xml.tag! 'wsse:Username', @options[:login]
+                  xml.tag! 'wsse:Password', @options[:password], 'Type' => 'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText'
+                end
+              end
+            end
+            xml.tag! 's:Body', {'xmlns:xsi' => 'http://www.w3.org/2001/XMLSchema-instance', 'xmlns:xsd' => 'http://www.w3.org/2001/XMLSchema'} do
+              xml.tag! 'requestMessage', {'xmlns' => 'urn:schemas-cybersource-com:transaction-data-1.26'} do
+                add_merchant_data(xml, options)
+                xml << body
+              end
+            end
+          end
+        xml.target! 
+      end
+      
+      # Contact CyberSource, make the SOAP request, and parse the reply into a Response object
+      def commit(request, options)
+        request_body = build_request(request, options)
+        
+        if test?
+          card_number = parse_credit_card_number(request_body)
+          if result = test? && test_result_from_cc_number(card_number)
+            return result
+          end
+        end
+        
+	      url = test? ? TEST_URL : LIVE_URL
+	      data = ssl_post(url, request_body)
+	      reply = parse(data)
+        
+	      success = reply[:decision] == "ACCEPT"
+	      message = @@response_codes[('r' + reply[:reasonCode]).to_sym] rescue reply[:message] 
+        authorization = success ? [ options[:order_id], reply[:requestID], reply[:requestToken] ].compact.join(";") : nil
+        
+        Response.new(success, message, reply, 
+          :test => test?, 
+          :authorization => authorization
+        )
+      end
+      
+      def parse_credit_card_number(xml)
+        doc = REXML::Document.new(xml)
+        node = REXML::XPath.first(doc, '//card/accountNumber')
+        node && node.text
+      end
+
+      # Parse the SOAP response
+      # Technique inspired by the Paypal Gateway
+      def parse(xml)
+        reply = {}
+        xml = REXML::Document.new(xml)
+        if root = REXML::XPath.first(xml, "//c:replyMessage")
+          root.elements.to_a.each do |node|
+            case node.name  
+            when 'c:reasonCode'
+              reply[:message] = reply(node.text)
+            else
+              parse_element(reply, node)
+            end
+          end
+        elsif root = REXML::XPath.first(xml, "//soap:Fault") 
+          parse_element(reply, root)
+          reply[:message] = "#{reply[:faultcode]}: #{reply[:faultstring]}"
+        end
+        return reply
+      end     
+
+      def parse_element(reply, node)
+        if node.has_elements?
+          node.elements.each{|e| parse_element(reply, e) }
+        else
+          if node.parent.name =~ /item/
+            parent = node.parent.name + (node.parent.attributes["id"] ? "_" + node.parent.attributes["id"] : '')
+            reply[(parent + '_' + node.name).to_sym] = node.text
+          else  
+            reply[node.name.to_sym] = node.text
+          end
+        end
+        return reply
+      end
+    end 
+  end 
+end