activemerchant 1.45.0 → 1.126.0

data/lib/active_merchant/billing/gateways/wirecard.rb

@@ -13,9 +13,9 @@ module ActiveMerchant #:nodoc:
         'xsi:noNamespaceSchemaLocation' => 'wirecard.xsd'
       }
 
-      PERMITTED_TRANSACTIONS = %w[ PREAUTHORIZATION CAPTURE PURCHASE ]
+      PERMITTED_TRANSACTIONS = %w[PREAUTHORIZATION CAPTURE PURCHASE]
 
-      RETURN_CODES = %w[ ACK NOK ]
+      RETURN_CODES = %w[ACK NOK]
 
       # Wirecard only allows phone numbers with a format like this: +xxx(yyy)zzz-zzzz-ppp, where:
       #   xxx = Country code
@@ -26,7 +26,7 @@ module ActiveMerchant #:nodoc:
       # number 5551234 within area code 202 (country code 1).
       VALID_PHONE_FORMAT = /\+\d{1,3}(\(?\d{3}\)?)?\d{3}-\d{4}-\d{3}/
 
-      self.supported_cardtypes = [ :visa, :master, :american_express, :diners_club, :jcb, :switch ]
+      self.supported_cardtypes = %i[visa master american_express diners_club jcb]
       self.supported_countries = %w(AD CY GI IM MT RO CH AT DK GR IT MC SM TR BE EE HU LV NL SK GB BG FI IS LI NO SI VA FR IL LT PL ES CZ DE IE LU PT SE)
       self.homepage_url = 'http://www.wirecard.com'
       self.display_name = 'Wirecard'
@@ -126,9 +126,21 @@ module ActiveMerchant #:nodoc:
         end
       end
 
+      def supports_scrubbing
+        true
+      end
+
+      def scrub(transcript)
+        transcript.
+          gsub(%r((Authorization: Basic )\w+), '\1[FILTERED]').
+          gsub(%r((<CreditCardNumber>)\d+(</CreditCardNumber>)), '\1[FILTERED]\2').
+          gsub(%r((<CVC2>)[^<]+(</CVC2>)), '\1[FILTERED]\2')
+      end
+
       private
+
       def clean_description(description)
-        description.to_s.slice(0,32).encode("US-ASCII", invalid: :replace, undef: :replace, replace: '?')
+        description.to_s.slice(0, 32).encode('US-ASCII', invalid: :replace, undef: :replace, replace: '?')
       end
 
       def prepare_options_hash(options)
@@ -163,19 +175,18 @@ module ActiveMerchant #:nodoc:
 
         response = parse(ssl_post(test? ? self.test_url : self.live_url, request, headers))
         # Pending Status also means Acknowledged (as stated in their specification)
-        success = response[:FunctionResult] == "ACK" || response[:FunctionResult] == "PENDING"
+        success = response[:FunctionResult] == 'ACK' || response[:FunctionResult] == 'PENDING'
         message = response[:Message]
         authorization = response[:GuWID]
 
         Response.new(success, message, response,
-          :test => test?,
-          :authorization => authorization,
-          :avs_result => { :code => avs_code(response, options) },
-          :cvv_result => response[:CVCResponseCode]
-        )
+          test: test?,
+          authorization: authorization,
+          avs_result: { code: avs_code(response, options) },
+          cvv_result: response[:CVCResponseCode])
       rescue ResponseError => e
-        if e.response.code == "401"
-          return Response.new(false, "Invalid Login")
+        if e.response.code == '401'
+          return Response.new(false, 'Invalid Login')
         else
           raise
         end
@@ -185,11 +196,11 @@ module ActiveMerchant #:nodoc:
       def build_request(action, money, options)
         options = prepare_options_hash(options)
         options[:action] = action
-        xml = Builder::XmlMarkup.new :indent => 2
+        xml = Builder::XmlMarkup.new indent: 2
         xml.instruct!
         xml.tag! 'WIRECARD_BXML' do
           xml.tag! 'W_REQUEST' do
-          xml.tag! 'W_JOB' do
+            xml.tag! 'W_JOB' do
               xml.tag! 'JobID', ''
               # UserID for this transaction
               xml.tag! 'BusinessCaseSignature', options[:signature] || options[:login]
@@ -224,17 +235,18 @@ module ActiveMerchant #:nodoc:
               add_address(xml, options[:billing_address])
             when :capture, :bookback
               xml.tag! 'GuWID', options[:preauthorization]
-              add_amount(xml, money)
+              add_amount(xml, money, options)
             when :reversal
               xml.tag! 'GuWID', options[:preauthorization]
             end
+            add_customer_data(xml, options)
           end
         end
       end
 
       # Includes the payment (amount, currency, country) to the transaction-xml
       def add_invoice(xml, money, options)
-        add_amount(xml, money)
+        add_amount(xml, money, options)
         xml.tag! 'Currency', options[:currency] || currency(money)
         xml.tag! 'CountryCode', options[:billing_address][:country]
         xml.tag! 'RECURRING_TRANSACTION' do
@@ -243,13 +255,14 @@ module ActiveMerchant #:nodoc:
       end
 
       # Include the amount in the transaction-xml
-      def add_amount(xml, money)
-        xml.tag! 'Amount', amount(money)
+      def add_amount(xml, money, options)
+        xml.tag! 'Amount', localized_amount(money, options[:currency] || currency(money))
       end
 
       # Includes the credit-card data to the transaction-xml
       def add_creditcard(xml, creditcard)
-        raise "Creditcard must be supplied!" if creditcard.nil?
+        raise 'Creditcard must be supplied!' if creditcard.nil?
+
         xml.tag! 'CREDIT_CARD_DATA' do
           xml.tag! 'CreditCardNumber', creditcard.number
           xml.tag! 'CVC2', creditcard.verification_value
@@ -262,6 +275,7 @@ module ActiveMerchant #:nodoc:
       # Includes the IP address of the customer to the transaction-xml
       def add_customer_data(xml, options)
         return unless options[:ip]
+
         xml.tag! 'CONTACT_DATA' do
           xml.tag! 'IPAddress', options[:ip]
         end
@@ -270,6 +284,7 @@ module ActiveMerchant #:nodoc:
       # Includes the address to the transaction-xml
       def add_address(xml, address)
         return if address.nil?
+
         xml.tag! 'CORPTRUSTCENTER_DATA' do
           xml.tag! 'ADDRESS' do
             xml.tag! 'Address1', address[:address1]
@@ -277,9 +292,7 @@ module ActiveMerchant #:nodoc:
             xml.tag! 'City', address[:city]
             xml.tag! 'ZipCode', address[:zip]
 
-            if address[:state] =~ /[A-Za-z]{2}/ && address[:country] =~ /^(us|ca)$/i
-              xml.tag! 'State', address[:state].upcase
-            end
+            xml.tag! 'State', address[:state].upcase if address[:state] =~ /[A-Za-z]{2}/ && address[:country] =~ /^(us|ca)$/i
 
             xml.tag! 'Country', address[:country]
             xml.tag! 'Phone', address[:phone] if address[:phone] =~ VALID_PHONE_FORMAT
@@ -297,7 +310,7 @@ module ActiveMerchant #:nodoc:
         xml = REXML::Document.new(xml)
         if root = REXML::XPath.first(xml, "#{basepath}/W_JOB")
           parse_response(response, root)
-        elsif root = REXML::XPath.first(xml, "//ERROR")
+        elsif root = REXML::XPath.first(xml, '//ERROR')
           parse_error_only_response(response, root)
         else
           response[:Message] = "No valid XML response message received. \
@@ -308,7 +321,7 @@ module ActiveMerchant #:nodoc:
       end
 
       def parse_error_only_response(response, root)
-        error_code = REXML::XPath.first(root, "Number")
+        error_code = REXML::XPath.first(root, 'Number')
         response[:ErrorCode] = error_code.text if error_code
         response[:Message] = parse_error(root)
       end
@@ -318,19 +331,17 @@ module ActiveMerchant #:nodoc:
         status = nil
 
         root.elements.to_a.each do |node|
-          if node.name =~ /FNC_CC_/
-            status = REXML::XPath.first(node, "CC_TRANSACTION/PROCESSING_STATUS")
-          end
+          status = REXML::XPath.first(node, 'CC_TRANSACTION/PROCESSING_STATUS') if node.name =~ /FNC_CC_/
         end
 
-        message = ""
+        message = ''
         if status
           if info = status.elements['Info']
             message << info.text
           end
 
           status.elements.to_a.each do |node|
-            if (node.elements.size == 0)
+            if node.elements.size == 0
               response[node.name.to_sym] = (node.text || '').strip
             else
               node.elements.each do |childnode|
@@ -340,7 +351,7 @@ module ActiveMerchant #:nodoc:
             end
           end
 
-          error_code = REXML::XPath.first(status, "ERROR/Number")
+          error_code = REXML::XPath.first(status, 'ERROR/Number')
           response['ErrorCode'] = error_code.text if error_code
         end
 
@@ -349,7 +360,7 @@ module ActiveMerchant #:nodoc:
       end
 
       # Parse a generic error response from the gateway
-      def parse_error(root, message = "")
+      def parse_error(root, message = '')
         # Get errors if available and append them to the message
         errors = errors_to_string(root)
         unless errors.strip.blank?
@@ -364,7 +375,7 @@ module ActiveMerchant #:nodoc:
       def errors_to_string(root)
         # Get context error messages (can be 0..*)
         errors = []
-        REXML::XPath.each(root, "//ERROR") do |error_elem|
+        REXML::XPath.each(root, '//ERROR') do |error_elem|
           error = {}
           error[:Advice] = []
           error[:Message] = error_elem.elements['Message'].text
@@ -379,7 +390,7 @@ module ActiveMerchant #:nodoc:
           string << error[:Message] if error[:Message]
           error[:Advice].each_with_index do |advice, index|
             string << ' (' if index == 0
-            string << "#{index+1}. #{advice}"
+            string << "#{index + 1}. #{advice}"
             string << ' and ' if index < error[:Advice].size - 1
             string << ')' if index == error[:Advice].size - 1
           end
@@ -389,19 +400,18 @@ module ActiveMerchant #:nodoc:
 
       # Amex have different AVS response codes
       AMEX_TRANSLATED_AVS_CODES = {
-        "A" => "B", # CSC and Address Matched
-        "F" => "D", # All Data Matched
-        "N" => "I", # CSC Match
-        "U" => "U", # Data Not Checked
-        "Y" => "D", # All Data Matched
-        "Z" => "P", # CSC and Postcode Matched
-        "F" => "D"  # Street address and zip code match
+        'A' => 'B', # CSC and Address Matched
+        'F' => 'D', # All Data Matched
+        'N' => 'I', # CSC Match
+        'U' => 'U', # Data Not Checked
+        'Y' => 'D', # All Data Matched
+        'Z' => 'P', # CSC and Postcode Matched
       }
 
       # Amex have different AVS response codes to visa etc
       def avs_code(response, options)
         if response.has_key?(:AVS_ProviderResultCode)
-          if options[:credit_card].present? && ActiveMerchant::Billing::CreditCard.brand?(options[:credit_card].number) == "american_express"
+          if options[:credit_card].present? && ActiveMerchant::Billing::CreditCard.brand?(options[:credit_card].number) == 'american_express'
             AMEX_TRANSLATED_AVS_CODES[response[:AVS_ProviderResultCode]]
           else
             response[:AVS_ProviderResultCode]
@@ -413,9 +423,8 @@ module ActiveMerchant #:nodoc:
       # (for http basic authentication)
       def encoded_credentials
         credentials = [@options[:login], @options[:password]].join(':')
-        "Basic " << Base64.encode64(credentials).strip
+        'Basic ' << Base64.encode64(credentials).strip
       end
     end
   end
 end
-

data/lib/active_merchant/billing/gateways/wompi.rb

@@ -0,0 +1,193 @@
+module ActiveMerchant #:nodoc:
+  module Billing #:nodoc:
+    class WompiGateway < Gateway
+      self.test_url = 'https://sync.sandbox.wompi.co/v1'
+      self.live_url = 'https://sync.production.wompi.co/v1'
+
+      self.supported_countries = ['CO']
+      self.default_currency = 'COP'
+      self.supported_cardtypes = %i[visa master american_express]
+
+      self.homepage_url = 'https://wompi.co/'
+      self.display_name = 'Wompi'
+
+      self.money_format = :cents
+
+      def initialize(options = {})
+        ## Sandbox keys have prefix pub_test_ and prv_test_
+        ## Production keys have prefix pub_prod_ and prv_prod_
+        begin
+          requires!(options, :prod_private_key, :prod_public_key)
+        rescue ArgumentError
+          begin
+            requires!(options, :test_private_key, :test_public_key)
+          rescue ArgumentError
+            raise ArgumentError, 'Gateway requires both test_private_key and test_public_key, or both prod_private_key and prod_public_key'
+          end
+        end
+        super
+      end
+
+      def purchase(money, payment, options = {})
+        post = {
+          reference: options[:reference] || generate_reference,
+          public_key: public_key
+        }
+        add_invoice(post, money, options)
+        add_card(post, payment, options)
+
+        commit('sale', post, '/transactions_sync')
+      end
+
+      def authorize(money, payment, options = {})
+        post = {
+          public_key: public_key,
+          type: 'CARD',
+          financial_operation: 'PREAUTHORIZATION'
+        }
+        add_auth_params(post, money, payment, options)
+
+        commit('authorize', post, '/payment_sources_sync')
+      end
+
+      def capture(money, authorization, options = {})
+        post = {
+          reference: options[:reference] || generate_reference,
+          public_key: public_key,
+          payment_source_id: authorization.to_i
+        }
+        add_invoice(post, money, options)
+        commit('capture', post, '/transactions_sync')
+      end
+
+      def refund(money, authorization, options = {})
+        post = { amount_in_cents: amount(money).to_i, transaction_id: authorization.to_s }
+        commit('refund', post, '/refunds_sync')
+      end
+
+      def void(authorization, options = {})
+        commit('void', {}, "/transactions/#{authorization}/void_sync")
+      end
+
+      def supports_scrubbing?
+        true
+      end
+
+      def scrub(transcript)
+        transcript.gsub(/(Bearer )\w+/, '\1[REDACTED]').
+          gsub(/(\\\"number\\\":\\\")\d+/, '\1[REDACTED]').
+          gsub(/(\\\"cvc\\\":\\\")\d+/, '\1[REDACTED]').
+          gsub(/(\\\"phone_number\\\":\\\")\+?\d+/, '\1[REDACTED]').
+          gsub(/(\\\"email\\\":\\\")\S+\\\",/, '\1[REDACTED]\",').
+          gsub(/(\\\"legal_id\\\":\\\")\d+/, '\1[REDACTED]')
+      end
+
+      private
+
+      def headers
+        {
+          'Authorization' => "Bearer #{private_key}",
+          'Content-Type' => 'application/json'
+        }
+      end
+
+      def generate_reference
+        SecureRandom.alphanumeric(12)
+      end
+
+      def private_key
+        test? ? options[:test_private_key] : options[:prod_private_key]
+      end
+
+      def public_key
+        test? ? options[:test_public_key] : options[:prod_public_key]
+      end
+
+      def add_invoice(post, money, options)
+        post[:amount_in_cents] = amount(money).to_i
+        post[:currency] = (options[:currency] || currency(money))
+      end
+
+      def add_card(post, card, options)
+        payment_method = {
+          type: 'CARD'
+        }
+        add_basic_card_info(payment_method, card, options)
+        post[:payment_method] = payment_method
+      end
+
+      def add_auth_params(post, money, card, options)
+        data = {
+          amount_in_cents: amount(money).to_i,
+          currency: (options[:currency] || currency(money))
+        }
+        add_basic_card_info(data, card, options)
+        post[:data] = data
+      end
+
+      def add_basic_card_info(post, card, options)
+        installments = options[:installments] ? options[:installments].to_i : 1
+        cvc = card.verification_value || nil
+
+        post[:number] = card.number
+        post[:exp_month] = card.month.to_s.rjust(2, '0')
+        post[:exp_year] = card.year.to_s[2..3]
+        post[:installments] = installments
+        post[:card_holder] = card.name
+        post[:cvc] = cvc if cvc && !cvc.empty?
+      end
+
+      def parse(body)
+        JSON.parse(body)
+      end
+
+      def commit(action, parameters, endpoint)
+        url = (test? ? test_url : live_url) + endpoint
+        response = parse(ssl_post(url, post_data(action, parameters), headers))
+        Response.new(
+          success_from(response),
+          message_from(response),
+          response,
+          authorization: authorization_from(response),
+          avs_result: nil,
+          cvv_result: nil,
+          test: test?,
+          error_code: error_code_from(response)
+        )
+      end
+
+      def handle_response(response)
+        case response.code.to_i
+        when 200...300, 401, 404, 422
+          response.body
+        else
+          raise ResponseError.new(response)
+        end
+      end
+
+      def success_from(response)
+        success_statuses.include? response.dig('data', 'status')
+      end
+
+      def success_statuses
+        %w(APPROVED AVAILABLE)
+      end
+
+      def message_from(response)
+        response.dig('data', 'status_message') || response.dig('error', 'reason') || response.dig('error', 'messages').to_json
+      end
+
+      def authorization_from(response)
+        response.dig('data', 'transaction_id') || response.dig('data', 'id') || response.dig('data', 'transaction', 'id')
+      end
+
+      def post_data(action, parameters = {})
+        parameters.to_json
+      end
+
+      def error_code_from(response)
+        response.dig('error', 'type') unless success_from(response)
+      end
+    end
+  end
+end