activemerchant 1.78.0 → 1.79.0

data/lib/active_merchant/billing/gateways/merchant_e_solutions.rb

@@ -94,6 +94,17 @@ module ActiveMerchant #:nodoc:
         commit('V', nil, options.merge(post))
       end
 
+      def supports_scrubbing?
+        true
+      end
+
+      def scrub(transcript)
+        transcript.
+          gsub(%r((&?profile_key=)\w*(&?)), '\1[FILTERED]\2').
+          gsub(%r((&?card_number=)\d*(&?)), '\1[FILTERED]\2').
+          gsub(%r((&?cvv2=)\d*(&?)), '\1[FILTERED]\2')
+      end
+
       private
 
       def add_address(post, options)

data/lib/active_merchant/billing/gateways/merchant_warrior.rb

@@ -68,6 +68,18 @@ module ActiveMerchant #:nodoc:
         commit('addCard', post)
       end
 
+      def supports_scrubbing?
+        true
+      end
+
+      def scrub(transcript)
+        transcript.
+          gsub(%r((&?paymentCardNumber=)[^&]*)i, '\1[FILTERED]').
+          gsub(%r((CardNumber=)[^&]*)i, '\1[FILTERED]').
+          gsub(%r((&?paymentCardCSC=)[^&]*)i, '\1[FILTERED]').
+          gsub(%r((&?apiKey=)[^&]*)i, '\1[FILTERED]')
+      end
+
       private
 
       def add_transaction(post, identification)

data/lib/active_merchant/billing/gateways/migs.rb

@@ -1,7 +1,5 @@
 require 'active_merchant/billing/gateways/migs/migs_codes'
 
-require 'openssl' # Used in add_secure_hash
-
 module ActiveMerchant #:nodoc:
   module Billing #:nodoc:
     class MigsGateway < Gateway

data/lib/active_merchant/billing/gateways/mundipagg.rb

@@ -0,0 +1,291 @@
+module ActiveMerchant #:nodoc:
+  module Billing #:nodoc:
+    class MundipaggGateway < Gateway
+      self.live_url = 'https://api.mundipagg.com/core/v1'
+
+      self.supported_countries = ['US']
+      self.default_currency = 'USD'
+      self.supported_cardtypes = [:visa, :master, :american_express, :discover]
+
+      self.homepage_url = 'https://www.mundipagg.com/'
+      self.display_name = 'Mundipagg'
+
+      STANDARD_ERROR_CODE_MAPPING = {
+        '400' => STANDARD_ERROR_CODE[:processing_error],
+        '401' => STANDARD_ERROR_CODE[:config_error],
+        '404' => STANDARD_ERROR_CODE[:processing_error],
+        '412' => STANDARD_ERROR_CODE[:processing_error],
+        '422' => STANDARD_ERROR_CODE[:processing_error],
+        '500' => STANDARD_ERROR_CODE[:processing_error]
+      }
+
+      STANDARD_ERROR_MESSAGE_MAPPING = {
+        '400' => 'Invalid request;',
+        '401' => 'Invalid API key;',
+        '404' => 'The requested resource does not exist;',
+        '412' => 'Valid parameters but request failed;',
+        '422' => 'Invalid parameters;',
+        '500' => 'An internal error occurred;'
+      }
+
+      def initialize(options={})
+        requires!(options, :api_key)
+        super
+      end
+
+      def purchase(money, payment, options={})
+        post = {}
+        add_invoice(post, money, options)
+        add_customer_data(post, options) unless payment.is_a?(String)
+        add_shipping_address(post, options)
+        add_payment(post, payment, options)
+
+        commit('sale', post)
+      end
+
+      def authorize(money, payment, options={})
+        post = {}
+        add_invoice(post, money, options)
+        add_customer_data(post, options) unless payment.is_a?(String)
+        add_shipping_address(post, options)
+        add_payment(post, payment, options)
+        add_capture_flag(post, payment)
+        commit('authonly', post)
+      end
+
+      def capture(money, authorization, options={})
+        post = {}
+        post[:code] = authorization
+        add_invoice(post, money, options)
+        commit('capture', post, authorization)
+      end
+
+      def refund(money, authorization, options={})
+        add_invoice(post={}, money, options)
+        commit('refund', post, authorization)
+      end
+
+      def void(authorization, options={})
+        commit('void', post=nil, authorization)
+      end
+
+      def store(payment, options={})
+        post = {}
+        options.update(name: payment.name)
+        options = add_customer(options) unless options[:customer_id]
+        add_payment(post, payment, options)
+        commit('store', post, options[:customer_id])
+      end
+
+      def verify(credit_card, options={})
+        MultiResponse.run(:use_first_response) do |r|
+          r.process { authorize(100, credit_card, options) }
+          r.process(:ignore_result) { void(r.authorization, options) }
+        end
+      end
+
+      def supports_scrubbing?
+        true
+      end
+
+      def scrub(transcript)
+        transcript
+          .gsub(%r((Authorization: Basic )\w+), '\1[FILTERED]')
+          .gsub(%r(("cvv\\":\\")\d*), '\1[FILTERED]')
+          .gsub(%r((card\\":{\\"number\\":\\")\d*), '\1[FILTERED]')
+      end
+
+      private
+
+      def add_customer(options)
+        post = {}
+        post[:name] = options[:name]
+        customer = commit('customer', post)
+        options.update(customer_id: customer.authorization)
+      end
+
+      def add_customer_data(post, options)
+        post[:customer] = {}
+        post[:customer][:email] = options[:email]
+      end
+
+      def add_billing_address(post, type, options)
+        if address = (options[:billing_address] || options[:address])
+          billing = {}
+          address = options[:billing_address] || options[:address]
+          billing[:street] = address[:address1].match(/\D+/)[0].strip if address[:address1]
+          billing[:number] = address[:address1].match(/\d+/)[0] if address[:address1]
+          billing[:compliment] = address[:address2] if address[:address2]
+          billing[:city] = address[:city] if address[:city]
+          billing[:state] = address[:state] if address[:state]
+          billing[:country] = address[:country] if address[:country]
+          billing[:zip_code] = address[:zip] if address[:zip]
+          billing[:neighborhood] = address[:neighborhood]
+          post[:payment][type.to_sym][:card][:billing_address] = billing
+        end
+      end
+
+      def add_shipping_address(post, options)
+        if address = options[:shipping_address]
+          post[:address] = {}
+          post[:address][:street] = address[:address1].match(/\D+/)[0].strip if address[:address1]
+          post[:address][:number] = address[:address1].match(/\d+/)[0] if address[:address1]
+          post[:address][:compliment] = address[:address2] if address[:address2]
+          post[:address][:city] = address[:city] if address[:city]
+          post[:address][:state] = address[:state] if address[:state]
+          post[:address][:country] = address[:country] if address[:country]
+          post[:address][:zip_code] = address[:zip] if address[:zip]
+        end
+      end
+
+      def add_invoice(post, money, options)
+        post[:amount] = money
+        post[:currency] = (options[:currency] || currency(money))
+      end
+
+      def add_capture_flag(post, payment)
+        if voucher?(payment)
+          post[:payment][:voucher][:capture] = false
+        else
+          post[:payment][:credit_card][:capture] = false
+        end
+      end
+
+      def add_payment(post, payment, options)
+        post[:customer][:name] = payment.name if post[:customer]
+        post[:customer_id] = parse_auth(payment)[0] if payment.is_a?(String)
+        post[:payment] = {}
+        post[:payment][:gateway_affiliation_id] = @options[:gateway_id] if @options[:gateway_id]
+        post[:payment][:metadata] = { mundipagg_payment_method_code: '1' } if test?
+        if voucher?(payment)
+          add_voucher(post, payment, options)
+        else
+          add_credit_card(post, payment, options)
+        end
+      end
+
+      def add_credit_card(post, payment, options)
+        post[:payment][:payment_method] = 'credit_card'
+        post[:payment][:credit_card] = {}
+        if payment.is_a?(String)
+          post[:payment][:credit_card][:card_id] = parse_auth(payment)[1]
+        else
+          post[:payment][:credit_card][:card] = {}
+          post[:payment][:credit_card][:card][:number] = payment.number
+          post[:payment][:credit_card][:card][:holder_name] = payment.name
+          post[:payment][:credit_card][:card][:exp_month] = payment.month
+          post[:payment][:credit_card][:card][:exp_year] = payment.year
+          post[:payment][:credit_card][:card][:cvv] = payment.verification_value
+          add_billing_address(post,'credit_card', options)
+        end
+      end
+
+      def add_voucher(post, payment, options)
+        post[:currency] = 'BRL'
+        post[:payment][:payment_method] = 'voucher'
+        post[:payment][:voucher] = {}
+        post[:payment][:voucher][:card] = {}
+        post[:payment][:voucher][:card][:number] = payment.number
+        post[:payment][:voucher][:card][:holder_name] = payment.name
+        post[:payment][:voucher][:card][:holder_document] = options[:holder_document]
+        post[:payment][:voucher][:card][:exp_month] = payment.month
+        post[:payment][:voucher][:card][:exp_year] = payment.year
+        post[:payment][:voucher][:card][:cvv] = payment.verification_value
+        add_billing_address(post, 'voucher', options)
+      end
+
+      def voucher?(payment)
+        return false if payment.is_a?(String)
+        %w[sodexo vr].include? card_brand(payment)
+      end
+
+      def headers
+        {
+          'Authorization' => 'Basic ' + Base64.strict_encode64("#{@options[:api_key]}:"),
+          'Content-Type' => 'application/json',
+          'Accept' => 'application/json'
+        }
+      end
+
+      def parse(body)
+        JSON.parse(body)
+      end
+
+      def url_for(action, auth = nil)
+        url = live_url
+        case action
+        when 'store'
+          "#{url}/customers/#{auth}/cards/"
+        when 'customer'
+          "#{url}/customers/"
+        when 'refund', 'void'
+          "#{url}/charges/#{auth}/"
+        when 'capture'
+          "#{url}/charges/#{auth}/capture/"
+        else
+         "#{url}/charges/"
+        end
+      end
+
+      def commit(action, parameters, auth = nil)
+        url = url_for(action, auth)
+        parameters.merge!(parameters[:payment][:credit_card].delete(:card)).delete(:payment) if action == 'store'
+        response = if %w[refund void].include? action
+                     parse(ssl_request(:delete, url, post_data(parameters), headers))
+                   else
+                     parse(ssl_post(url, post_data(parameters), headers))
+                   end
+
+        Response.new(
+          success_from(response),
+          message_from(response),
+          response,
+          authorization: authorization_from(response, action),
+          avs_result: AVSResult.new(code: response['some_avs_response_key']),
+          cvv_result: CVVResult.new(response['some_cvv_response_key']),
+          test: test?,
+          error_code: error_code_from(response)
+        )
+        rescue ResponseError => e
+          message = get_error_message(e)
+          return Response.new(
+                   false,
+                   "#{STANDARD_ERROR_MESSAGE_MAPPING[e.response.code]} #{message}",
+                   parse(e.response.body),
+                   test: test?,
+                   error_code: STANDARD_ERROR_CODE_MAPPING[e.response.code],
+                 )
+      end
+
+      def success_from(response)
+        %w[pending paid processing canceled active].include? response['status']
+      end
+
+      def get_error_message(error)
+        JSON.parse(error.response.body)['message']
+      end
+
+      def message_from(response)
+        return response['message'] if response['message']
+        return response['last_transaction']['acquirer_message'] if response['last_transaction']
+      end
+
+      def authorization_from(response, action)
+        return "#{response['customer']['id']}|#{response['id']}" if action == 'store'
+        response['id']
+      end
+
+      def parse_auth(auth)
+        auth.split('|')
+      end
+
+      def post_data(parameters = {})
+        parameters.to_json
+      end
+
+      def error_code_from(response)
+        STANDARD_ERROR_CODE[:processing_error] unless success_from(response)
+      end
+    end
+  end
+end

data/lib/active_merchant/billing/gateways/nab_transact.rb

@@ -10,7 +10,7 @@ module ActiveMerchant #:nodoc:
 
       class_attribute :test_periodic_url, :live_periodic_url
 
-      self.test_url = 'https://transact.nab.com.au/test/xmlapi/payment'
+      self.test_url = 'https://demo.transact.nab.com.au/xmlapi/payment'
       self.live_url = 'https://transact.nab.com.au/live/xmlapi/payment'
       self.test_periodic_url = 'https://transact.nab.com.au/xmlapidemo/periodic'
       self.live_periodic_url = 'https://transact.nab.com.au/xmlapi/periodic'
@@ -104,7 +104,7 @@ module ActiveMerchant #:nodoc:
 
       def build_purchase_request(money, credit_card, options)
         xml = Builder::XmlMarkup.new
-        xml.tag! 'amount', amount(money)
+        xml.tag! 'amount', localized_amount(money, options[:currency] || currency(money))
         xml.tag! 'currency', options[:currency] || currency(money)
         xml.tag! 'purchaseOrderNo', options[:order_id].to_s.gsub(/[ ']/, '')
 
@@ -124,7 +124,7 @@ module ActiveMerchant #:nodoc:
 
         transaction_id, order_id, preauth_id, original_amount = reference.split('*')
 
-        xml.tag! 'amount', (money ? amount(money) : original_amount)
+        xml.tag! 'amount', (money ? localized_amount(money, options[:currency] || currency(money)) : original_amount)
         xml.tag! 'currency', options[:currency] || currency(money)
         xml.tag! 'txnID', transaction_id
         xml.tag! 'purchaseOrderNo', order_id
@@ -205,7 +205,7 @@ module ActiveMerchant #:nodoc:
 
         xml.tag! 'crn', identification
         xml.tag! 'currency', options[:currency] || currency(money)
-        xml.tag! 'amount', amount(money)
+        xml.tag! 'amount', localized_amount(money, options[:currency] || currency(money))
 
         xml.target!
       end

data/lib/active_merchant/billing/gateways/paymentez.rb

@@ -61,18 +61,10 @@ module ActiveMerchant #:nodoc:
         post = {}
 
         add_invoice(post, money, options)
+        add_payment(post, payment)
         add_customer_data(post, options)
 
-        if payment.is_a?(String)
-          post[:card] = { token: payment }
-          commit_transaction('authorize', post)
-        else
-          MultiResponse.run do |r|
-            r.process { store(payment, options) }
-            post[:card] = { token: r.authorization }
-            r.process { commit_transaction('authorize', post) }
-          end
-        end
+        commit_transaction('authorize', post)
       end
 
       def capture(_money, authorization, _options = {})
@@ -150,6 +142,7 @@ module ActiveMerchant #:nodoc:
         post[:order][:installments] = options[:installments] if options[:installments]
         post[:order][:installments_type] = options[:installments_type] if options[:installments_type]
         post[:order][:taxable_amount] = options[:taxable_amount] if options[:taxable_amount]
+        post[:order][:tax_percentage] = options[:tax_percentage] if options[:tax_percentage]
       end
 
       def add_payment(post, payment)
@@ -223,10 +216,10 @@ module ActiveMerchant #:nodoc:
       end
 
       def message_from(response)
-        if success_from(response)
-          response['transaction'] && response['transaction']['message']
-        else
+        if !success_from(response) && response['error']
           response['error'] && response['error']['type']
+        else
+          response['transaction'] && response['transaction']['message']
         end
       end
 

data/lib/active_merchant/billing/gateways/paypal.rb

@@ -38,18 +38,6 @@ module ActiveMerchant #:nodoc:
         @express ||= PaypalExpressGateway.new(@options)
       end
 
-      def supports_scrubbing?
-        true
-      end
-
-      def scrub(transcript)
-        transcript.
-          gsub(%r((<n1:Password>).+(</n1:Password>)), '\1[FILTERED]\2').
-          gsub(%r((<n1:Username>).+(</n1:Username>)), '\1[FILTERED]\2').
-          gsub(%r((<n2:CreditCardNumber>).+(</n2:CreditCardNumber)), '\1[FILTERED]\2').
-          gsub(%r((<n2:CVV2>)\d+(</n2:CVV2)), '\1[FILTERED]\2')
-      end
-
       private
 
       def define_transaction_type(transaction_arg)

data/lib/active_merchant/billing/gateways/paypal/paypal_common_api.rb

@@ -269,7 +269,21 @@ module ActiveMerchant #:nodoc:
         commit 'ManagePendingTransactionStatus', build_manage_pending_transaction_status(transaction_id, action)
       end
 
+      def supports_scrubbing?
+        true
+      end
+
+      def scrub(transcript)
+        transcript.
+          gsub(%r((<n1:Password>).+(</n1:Password>)), '\1[FILTERED]\2').
+          gsub(%r((<n1:Username>).+(</n1:Username>)), '\1[FILTERED]\2').
+          gsub(%r((<n1:Signature>).+(</n1:Signature>)), '\1[FILTERED]\2').
+          gsub(%r((<n2:CreditCardNumber>).+(</n2:CreditCardNumber)), '\1[FILTERED]\2').
+          gsub(%r((<n2:CVV2>)\d+(</n2:CVV2)), '\1[FILTERED]\2')
+      end
+
       private
+
       def build_request_wrapper(action, options = {})
         xml = Builder::XmlMarkup.new :indent => 2
         xml.tag! action + 'Req', 'xmlns' => PAYPAL_NAMESPACE do