activemerchant 1.79.2 → 1.129.0

data/lib/active_merchant/billing/gateways/paymentez.rb

@@ -7,9 +7,9 @@ module ActiveMerchant #:nodoc:
       self.test_url = 'https://ccapi-stg.paymentez.com/v2/'
       self.live_url = 'https://ccapi.paymentez.com/v2/'
 
-      self.supported_countries = %w[MX EC VE CO BR CL]
+      self.supported_countries = %w[MX EC CO BR CL PE]
       self.default_currency = 'USD'
-      self.supported_cardtypes = %i[visa master american_express diners_club]
+      self.supported_cardtypes = %i[visa master american_express diners_club elo alia olimpica discover maestro sodexo carnet unionpay jcb]
 
       self.homepage_url = 'https://secure.paymentez.com/'
       self.display_name = 'Paymentez'
@@ -34,11 +34,21 @@ module ActiveMerchant #:nodoc:
         28 => :card_declined
       }.freeze
 
+      SUCCESS_STATUS = ['success', 'pending', 1, 0]
+
       CARD_MAPPING = {
         'visa' => 'vi',
         'master' => 'mc',
         'american_express' => 'ax',
-        'diners_club' => 'di'
+        'diners_club' => 'di',
+        'elo' => 'el',
+        'discover' => 'dc',
+        'maestro' => 'ms',
+        'sodexo' => 'sx',
+        'olimpica' => 'ol',
+        'carnet' => 'ct',
+        'unionpay' => 'up',
+        'jcb' => 'jc'
       }.freeze
 
       def initialize(options = {})
@@ -52,29 +62,48 @@ module ActiveMerchant #:nodoc:
         add_invoice(post, money, options)
         add_payment(post, payment)
         add_customer_data(post, options)
+        add_extra_params(post, options)
         action = payment.is_a?(String) ? 'debit' : 'debit_cc'
 
         commit_transaction(action, post)
       end
 
       def authorize(money, payment, options = {})
+        return purchase(money, payment, options) if options[:otp_flow]
+
         post = {}
 
         add_invoice(post, money, options)
         add_payment(post, payment)
         add_customer_data(post, options)
+        add_extra_params(post, options)
 
         commit_transaction('authorize', post)
       end
 
-      def capture(_money, authorization, _options = {})
-        post = { transaction: { id: authorization } }
+      def capture(money, authorization, options = {})
+        post = {
+          transaction: { id: authorization }
+        }
+        verify_flow = options[:type] && options[:value]
 
-        commit_transaction('capture', post)
+        if verify_flow
+          add_customer_data(post, options)
+          add_verify_value(post, options)
+        elsif money
+          post[:order] = { amount: amount(money).to_f }
+        end
+
+        action = verify_flow ? 'verify' : 'capture'
+        commit_transaction(action, post)
       end
 
-      def refund(_money, authorization, options = {})
-        void(authorization, options)
+      def refund(money, authorization, options = {})
+        post = { transaction: { id: authorization } }
+        post[:order] = { amount: amount(money).to_f } if money
+        add_more_info(post, options)
+
+        commit_transaction('refund', post)
       end
 
       def void(authorization, _options = {})
@@ -104,30 +133,37 @@ module ActiveMerchant #:nodoc:
       end
 
       def unstore(identification, options = {})
-        post = { card: { token: identification }, user: { id: options[:user_id] }}
+        post = { card: { token: identification }, user: { id: options[:user_id] } }
         commit_card('delete', post)
       end
 
+      def inquire(authorization, options = {})
+        commit_transaction('inquire', authorization)
+      end
+
       def supports_scrubbing?
         true
       end
 
       def scrub(transcript)
-        transcript
-          .gsub(%r{(\\?"number\\?":)(\\?"[^"]+\\?")}, '\1[FILTERED]')
-          .gsub(%r{(\\?"cvc\\?":)(\\?"[^"]+\\?")}, '\1[FILTERED]')
-          .gsub(%r{(Auth-Token: )([A-Za-z0-9=]+)}, '\1[FILTERED]')
+        transcript.
+          gsub(%r{(\\?"number\\?":)(\\?"[^"]+\\?")}, '\1[FILTERED]').
+          gsub(%r{(\\?"cvc\\?":)(\\?"[^"]+\\?")}, '\1[FILTERED]').
+          gsub(%r{(Auth-Token: )([A-Za-z0-9=]+)}, '\1[FILTERED]')
       end
 
       private
 
       def add_customer_data(post, options)
-        requires!(options, :user_id, :email)
+        requires!(options, :user_id)
         post[:user] ||= {}
         post[:user][:id] = options[:user_id]
-        post[:user][:email] = options[:email]
+        post[:user][:email] = options[:email] if options[:email]
         post[:user][:ip_address] = options[:ip] if options[:ip]
         post[:user][:fiscal_number] = options[:fiscal_number] if options[:fiscal_number]
+        if phone = options[:phone] || options.dig(:billing_address, :phone)
+          post[:user][:phone] = phone
+        end
       end
 
       def add_invoice(post, money, options)
@@ -159,19 +195,68 @@ module ActiveMerchant #:nodoc:
         end
       end
 
+      def add_verify_value(post, options)
+        post[:type] = options[:type] if options[:type]
+        post[:value] = options[:value] if options[:value]
+      end
+
+      def add_extra_params(post, options)
+        extra_params = {}
+        extra_params.merge!(options[:extra_params]) if options[:extra_params]
+
+        add_external_mpi_fields(extra_params, options)
+
+        post['extra_params'] = extra_params unless extra_params.empty?
+      end
+
+      def add_external_mpi_fields(extra_params, options)
+        three_d_secure_options = options[:three_d_secure]
+        return unless three_d_secure_options
+
+        auth_data = {
+          cavv: three_d_secure_options[:cavv],
+          xid: three_d_secure_options[:xid],
+          eci: three_d_secure_options[:eci],
+          version: three_d_secure_options[:version],
+          reference_id: three_d_secure_options[:three_ds_server_trans_id],
+          status: three_d_secure_options[:authentication_response_status] || three_d_secure_options[:directory_response_status]
+        }.compact
+
+        return if auth_data.empty?
+
+        extra_params[:auth_data] = auth_data
+      end
+
+      def add_more_info(post, options)
+        post[:more_info] = options[:more_info] if options[:more_info]
+      end
+
       def parse(body)
         JSON.parse(body)
       end
 
       def commit_raw(object, action, parameters)
-        url = "#{(test? ? test_url : live_url)}#{object}/#{action}"
+        if action == 'inquire'
+          url = "#{(test? ? test_url : live_url)}#{object}/#{parameters}"
+          begin
+            raw_response = ssl_get(url, headers)
+          rescue ResponseError => e
+            raw_response = e.response.body
+          end
+        else
+          url = "#{(test? ? test_url : live_url)}#{object}/#{action}"
+          begin
+            raw_response = ssl_post(url, post_data(parameters), headers)
+          rescue ResponseError => e
+            raw_response = e.response.body
+          end
+        end
 
         begin
-          raw_response = ssl_post(url, post_data(parameters), headers)
-        rescue ResponseError => e
-          raw_response = e.response.body
+          parse(raw_response)
+        rescue JSON::ParserError
+          { 'status' => 'Internal server error' }
         end
-        parse(raw_response)
       end
 
       def commit_transaction(action, parameters)
@@ -206,20 +291,25 @@ module ActiveMerchant #:nodoc:
       end
 
       def success_from(response)
-        !response.include?('error') && (response['status'] || response['transaction']['status']) == 'success'
+        return false if response.include?('error')
+
+        SUCCESS_STATUS.include?(response['status'] || response['transaction']['status'])
       end
 
       def card_success_from(response)
         return false if response.include?('error')
         return true if response['message'] == 'card deleted'
+
         response['card']['status'] == 'valid'
       end
 
       def message_from(response)
+        return response['detail'] if response['detail'].present?
+
         if !success_from(response) && response['error']
           response['error'] && response['error']['type']
         else
-          response['transaction'] && response['transaction']['message']
+          (response['transaction'] && response['transaction']['message']) || (response['message'])
         end
       end
 
@@ -250,11 +340,10 @@ module ActiveMerchant #:nodoc:
 
       def error_code_from(response)
         return if success_from(response)
+
         if response['transaction']
           detail = response['transaction']['status_detail']
-          if STANDARD_ERROR_CODE_MAPPING.include?(detail)
-            return STANDARD_ERROR_CODE[STANDARD_ERROR_CODE_MAPPING[detail]]
-          end
+          return STANDARD_ERROR_CODE[STANDARD_ERROR_CODE_MAPPING[detail]] if STANDARD_ERROR_CODE_MAPPING.include?(detail)
         elsif response['error']
           return STANDARD_ERROR_CODE[:config_error]
         end

data/lib/active_merchant/billing/gateways/paymill.rb

@@ -5,19 +5,19 @@ module ActiveMerchant #:nodoc:
                                     GI GR HR HU IE IL IM IS IT LI LT LU LV MC MT
                                     NL NO PL PT RO SE SI SK TR VA)
 
-      self.supported_cardtypes = [:visa, :master, :american_express, :diners_club, :discover, :union_pay, :jcb]
+      self.supported_cardtypes = %i[visa master american_express diners_club discover union_pay jcb]
       self.homepage_url = 'https://paymill.com'
       self.display_name = 'PAYMILL'
       self.money_format = :cents
       self.default_currency = 'EUR'
-      self.live_url = "https://api.paymill.com/v2/"
+      self.live_url = 'https://api.paymill.com/v2/'
 
       def initialize(options = {})
         requires!(options, :public_key, :private_key)
         super
       end
 
-      def purchase(money, payment_method, options={})
+      def purchase(money, payment_method, options = {})
         action_with_token(:purchase, money, payment_method, options)
       end
 
@@ -35,7 +35,7 @@ module ActiveMerchant #:nodoc:
         commit(:post, 'transactions', post)
       end
 
-      def refund(money, authorization, options={})
+      def refund(money, authorization, options = {})
         post = {}
 
         post[:amount] = amount(money)
@@ -43,11 +43,16 @@ module ActiveMerchant #:nodoc:
         commit(:post, "refunds/#{transaction_id(authorization)}", post)
       end
 
-      def void(authorization, options={})
+      def void(authorization, options = {})
         commit(:delete, "preauthorizations/#{preauth(authorization)}")
       end
 
-      def store(credit_card, options={})
+      def store(credit_card, options = {})
+        # The store request requires a currency and amount of at least $1 USD.
+        # This is used for an authorization that is handled internally by Paymill.
+        options[:currency] = 'USD'
+        options[:money] = 100
+
         save_card(credit_card, options)
       end
 
@@ -64,7 +69,7 @@ module ActiveMerchant #:nodoc:
 
       def verify_credentials
         begin
-          ssl_get(live_url + "transactions/nonexistent", headers)
+          ssl_get(live_url + 'transactions/nonexistent', headers)
         rescue ResponseError => e
           return false if e.response.code.to_i == 401
         end
@@ -75,21 +80,21 @@ module ActiveMerchant #:nodoc:
       private
 
       def add_credit_card(post, credit_card, options)
-        post['account.holder'] = (credit_card.try(:name) || "")
+        post['account.holder'] = (credit_card.try(:name) || '')
         post['account.number'] = credit_card.number
-        post['account.expiry.month'] = sprintf("%.2i", credit_card.month)
-        post['account.expiry.year'] = sprintf("%.4i", credit_card.year)
+        post['account.expiry.month'] = sprintf('%.2i', credit_card.month)
+        post['account.expiry.year'] = sprintf('%.4i', credit_card.year)
         post['account.verification'] = credit_card.verification_value
         post['account.email'] = (options[:email] || nil)
-        post['presentation.amount3D'] =  (options[:money] || nil)
-        post['presentation.currency3D'] = (options[:currency] || currency( options[:money]))
+        post['presentation.amount3D'] = (options[:money] || nil)
+        post['presentation.currency3D'] = (options[:currency] || currency(options[:money]))
       end
 
       def headers
         { 'Authorization' => ('Basic ' + Base64.strict_encode64("#{@options[:private_key]}:X").chomp) }
       end
 
-      def commit(method, action, parameters=nil)
+      def commit(method, action, parameters = nil)
         begin
           raw_response = ssl_request(method, live_url + action, post_data(parameters), headers)
         rescue ResponseError => e
@@ -107,8 +112,8 @@ module ActiveMerchant #:nodoc:
       def response_from(raw_response)
         parsed = JSON.parse(raw_response)
         options = {
-          :authorization => authorization_from(parsed),
-          :test => (parsed['mode'] == 'test'),
+          authorization: authorization_from(parsed),
+          test: (parsed['mode'] == 'test')
         }
 
         succeeded = (parsed['data'] == []) || (parsed['data']['response_code'].to_i == 20000)
@@ -122,16 +127,16 @@ module ActiveMerchant #:nodoc:
         [
           parsed_data['id'],
           parsed_data['preauthorization'].try(:[], 'id')
-        ].join(";")
+        ].join(';')
       end
 
       def action_with_token(action, money, payment_method, options)
         options[:money] = money
         case payment_method
-          when String
-            self.send("#{action}_with_token", money, payment_method, options)
-          else
-            MultiResponse.run do |r|
+        when String
+          self.send("#{action}_with_token", money, payment_method, options)
+        else
+          MultiResponse.run do |r|
             r.process { save_card(payment_method, options) }
             r.process { self.send("#{action}_with_token", money, r.authorization, options) }
           end
@@ -176,7 +181,7 @@ module ActiveMerchant #:nodoc:
       end
 
       def response_for_save_from(raw_response)
-        options = { :test => test? }
+        options = { test: test? }
 
         parser = ResponseParser.new(raw_response, options)
         parser.generate_response
@@ -193,8 +198,8 @@ module ActiveMerchant #:nodoc:
       def post_data(params)
         return nil unless params
 
-        no_blanks = params.reject { |key, value| value.blank? }
-        no_blanks.map { |key, value| "#{key}=#{CGI.escape(value.to_s)}" }.join("&")
+        no_blanks = params.reject { |_key, value| value.blank? }
+        no_blanks.map { |key, value| "#{key}=#{CGI.escape(value.to_s)}" }.join('&')
       end
 
       def add_amount(post, money, options)
@@ -203,7 +208,7 @@ module ActiveMerchant #:nodoc:
       end
 
       def preauth(authorization)
-        authorization.split(";").last
+        authorization.split(';').last
       end
 
       def transaction_id(authorization)
@@ -211,121 +216,119 @@ module ActiveMerchant #:nodoc:
       end
 
       RESPONSE_CODES = {
-        10001 => "Undefined response",
-        10002 => "Waiting for something",
-        11000 => "Retry request at a later time",
-
-        20000 => "Operation successful",
-        20100 => "Funds held by acquirer",
-        20101 => "Funds held by acquirer because merchant is new",
-        20200 => "Transaction reversed",
-        20201 => "Reversed due to chargeback",
-        20202 => "Reversed due to money-back guarantee",
-        20203 => "Reversed due to complaint by buyer",
-        20204 => "Payment has been refunded",
-        20300 => "Reversal has been canceled",
-        22000 => "Initiation of transaction successful",
-
-        30000 => "Transaction still in progress",
-        30100 => "Transaction has been accepted",
-        31000 => "Transaction pending",
-        31100 => "Pending due to address",
-        31101 => "Pending due to uncleared eCheck",
-        31102 => "Pending due to risk review",
-        31103 => "Pending due regulatory review",
-        31104 => "Pending due to unregistered/unconfirmed receiver",
-        31200 => "Pending due to unverified account",
-        31201 => "Pending due to non-captured funds",
-        31202 => "Pending due to international account (accept manually)",
-        31203 => "Pending due to currency conflict (accept manually)",
-        31204 => "Pending due to fraud filters (accept manually)",
-
-
-        40000 => "Problem with transaction data",
-        40001 => "Problem with payment data",
-        40002 => "Invalid checksum",
-        40100 => "Problem with credit card data",
-        40101 => "Problem with CVV",
-        40102 => "Card expired or not yet valid",
-        40103 => "Card limit exceeded",
-        40104 => "Card is not valid",
-        40105 => "Expiry date not valid",
-        40106 => "Credit card brand required",
-        40200 => "Problem with bank account data",
-        40201 => "Bank account data combination mismatch",
-        40202 => "User authentication failed",
-        40300 => "Problem with 3-D Secure data",
-        40301 => "Currency/amount mismatch",
-        40400 => "Problem with input data",
-        40401 => "Amount too low or zero",
-        40402 => "Usage field too long",
-        40403 => "Currency not allowed",
-        40410 => "Problem with shopping cart data",
-        40420 => "Problem with address data",
-        40500 => "Permission error with acquirer API",
-        40510 => "Rate limit reached for acquirer API",
-        42000 => "Initiation of transaction failed",
-        42410 => "Initiation of transaction expired",
-
-        50000 => "Problem with back end",
-        50001 => "Country blacklisted",
-        50002 => "IP address blacklisted",
-        50004 => "Live mode not allowed",
-        50005 => "Insufficient permissions (API key)",
-        50100 => "Technical error with credit card",
-        50101 => "Error limit exceeded",
-        50102 => "Card declined",
-        50103 => "Manipulation or stolen card",
-        50104 => "Card restricted",
-        50105 => "Invalid configuration data",
-        50200 => "Technical error with bank account",
-        50201 => "Account blacklisted",
-        50300 => "Technical error with 3-D Secure",
-        50400 => "Declined because of risk issues",
-        50401 => "Checksum was wrong",
-        50402 => "Bank account number was invalid (formal check)",
-        50403 => "Technical error with risk check",
-        50404 => "Unknown error with risk check",
-        50405 => "Unknown bank code",
-        50406 => "Open chargeback",
-        50407 => "Historical chargeback",
-        50408 => "Institution / public bank account (NCA)",
-        50409 => "KUNO/Fraud",
-        50410 => "Personal Account Protection (PAP)",
-        50420 => "Rejected due to acquirer fraud settings",
-        50430 => "Rejected due to acquirer risk settings",
-        50440 => "Failed due to restrictions with acquirer account",
-        50450 => "Failed due to restrictions with user account",
-        50500 => "General timeout",
-        50501 => "Timeout on side of the acquirer",
-        50502 => "Risk management transaction timeout",
-        50600 => "Duplicate operation",
-        50700 => "Cancelled by user",
-        50710 => "Failed due to funding source",
-        50711 => "Payment method not usable, use other payment method",
-        50712 => "Limit of funding source was exceeded",
-        50713 => "Means of payment not reusable (canceled by user)",
-        50714 => "Means of payment not reusable (expired)",
-        50720 => "Rejected by acquirer",
-        50730 => "Transaction denied by merchant",
-        50800 => "Preauthorisation failed",
-        50810 => "Authorisation has been voided",
-        50820 => "Authorisation period expired"
+        10001 => 'Undefined response',
+        10002 => 'Waiting for something',
+        11000 => 'Retry request at a later time',
+
+        20000 => 'Operation successful',
+        20100 => 'Funds held by acquirer',
+        20101 => 'Funds held by acquirer because merchant is new',
+        20200 => 'Transaction reversed',
+        20201 => 'Reversed due to chargeback',
+        20202 => 'Reversed due to money-back guarantee',
+        20203 => 'Reversed due to complaint by buyer',
+        20204 => 'Payment has been refunded',
+        20300 => 'Reversal has been canceled',
+        22000 => 'Initiation of transaction successful',
+
+        30000 => 'Transaction still in progress',
+        30100 => 'Transaction has been accepted',
+        31000 => 'Transaction pending',
+        31100 => 'Pending due to address',
+        31101 => 'Pending due to uncleared eCheck',
+        31102 => 'Pending due to risk review',
+        31103 => 'Pending due regulatory review',
+        31104 => 'Pending due to unregistered/unconfirmed receiver',
+        31200 => 'Pending due to unverified account',
+        31201 => 'Pending due to non-captured funds',
+        31202 => 'Pending due to international account (accept manually)',
+        31203 => 'Pending due to currency conflict (accept manually)',
+        31204 => 'Pending due to fraud filters (accept manually)',
+
+        40000 => 'Problem with transaction data',
+        40001 => 'Problem with payment data',
+        40002 => 'Invalid checksum',
+        40100 => 'Problem with credit card data',
+        40101 => 'Problem with CVV',
+        40102 => 'Card expired or not yet valid',
+        40103 => 'Card limit exceeded',
+        40104 => 'Card is not valid',
+        40105 => 'Expiry date not valid',
+        40106 => 'Credit card brand required',
+        40200 => 'Problem with bank account data',
+        40201 => 'Bank account data combination mismatch',
+        40202 => 'User authentication failed',
+        40300 => 'Problem with 3-D Secure data',
+        40301 => 'Currency/amount mismatch',
+        40400 => 'Problem with input data',
+        40401 => 'Amount too low or zero',
+        40402 => 'Usage field too long',
+        40403 => 'Currency not allowed',
+        40410 => 'Problem with shopping cart data',
+        40420 => 'Problem with address data',
+        40500 => 'Permission error with acquirer API',
+        40510 => 'Rate limit reached for acquirer API',
+        42000 => 'Initiation of transaction failed',
+        42410 => 'Initiation of transaction expired',
+
+        50000 => 'Problem with back end',
+        50001 => 'Country blacklisted',
+        50002 => 'IP address blacklisted',
+        50004 => 'Live mode not allowed',
+        50005 => 'Insufficient permissions (API key)',
+        50100 => 'Technical error with credit card',
+        50101 => 'Error limit exceeded',
+        50102 => 'Card declined',
+        50103 => 'Manipulation or stolen card',
+        50104 => 'Card restricted',
+        50105 => 'Invalid configuration data',
+        50200 => 'Technical error with bank account',
+        50201 => 'Account blacklisted',
+        50300 => 'Technical error with 3-D Secure',
+        50400 => 'Declined because of risk issues',
+        50401 => 'Checksum was wrong',
+        50402 => 'Bank account number was invalid (formal check)',
+        50403 => 'Technical error with risk check',
+        50404 => 'Unknown error with risk check',
+        50405 => 'Unknown bank code',
+        50406 => 'Open chargeback',
+        50407 => 'Historical chargeback',
+        50408 => 'Institution / public bank account (NCA)',
+        50409 => 'KUNO/Fraud',
+        50410 => 'Personal Account Protection (PAP)',
+        50420 => 'Rejected due to acquirer fraud settings',
+        50430 => 'Rejected due to acquirer risk settings',
+        50440 => 'Failed due to restrictions with acquirer account',
+        50450 => 'Failed due to restrictions with user account',
+        50500 => 'General timeout',
+        50501 => 'Timeout on side of the acquirer',
+        50502 => 'Risk management transaction timeout',
+        50600 => 'Duplicate operation',
+        50700 => 'Cancelled by user',
+        50710 => 'Failed due to funding source',
+        50711 => 'Payment method not usable, use other payment method',
+        50712 => 'Limit of funding source was exceeded',
+        50713 => 'Means of payment not reusable (canceled by user)',
+        50714 => 'Means of payment not reusable (expired)',
+        50720 => 'Rejected by acquirer',
+        50730 => 'Transaction denied by merchant',
+        50800 => 'Preauthorisation failed',
+        50810 => 'Authorisation has been voided',
+        50820 => 'Authorisation period expired'
       }
 
       def response_message(parsed_response)
-        return parsed_response["error"] if parsed_response["error"]
-        return "Transaction approved." if (parsed_response['data'] == [])
+        return parsed_response['error'] if parsed_response['error']
+        return 'Transaction approved.' if parsed_response['data'] == []
 
-        code = parsed_response["data"]["response_code"].to_i
+        code = parsed_response['data']['response_code'].to_i
         RESPONSE_CODES[code] || code.to_s
       end
 
-
       class ResponseParser
         attr_reader :raw_response, :parsed, :succeeded, :message, :options
 
-        def initialize(raw_response="", options={})
+        def initialize(raw_response = '', options = {})
           @raw_response = raw_response
           @options = options
         end
@@ -354,12 +357,10 @@ module ActiveMerchant #:nodoc:
 
         def handle_response_correct_parsing
           @message = parsed['transaction']['processing']['return']['message']
-          if @succeeded = is_ack?
-            @options[:authorization] = parsed['transaction']['identification']['uniqueId']
-          end
+          @options[:authorization] = parsed['transaction']['identification']['uniqueId'] if @succeeded = ack?
         end
 
-        def is_ack?
+        def ack?
           parsed['transaction']['processing']['result'] == 'ACK'
         end
       end