activemerchant 1.58.0 → 1.59.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: da3af9432d84476a6bb80c8c2ce551def7cb9aad
-  data.tar.gz: f0fca6c6c9aea70ec6fe8ba476aee0e0087bab14
+  metadata.gz: 1b699a9e799907880fbd2fb3c7cc68e8f1bdaead
+  data.tar.gz: aba5081dee95a33710e5ac97bed5edd577cb1e33
 SHA512:
-  metadata.gz: d2d71c5586712ab174a2aea4da55ce52e10e4df6d11207ee46d85e3ea337feb698137e5b9c80b9f764f33e7d157bd31f15e3f097e5aaa866c60df2c48960525e
-  data.tar.gz: 831bc61882f81730b31b6f46d29e45a4d41e239c15209ff40a20abca24fe89bee9a1b04e31df0a900ccab1edd0a12ad501b46c7ae818c19dadcde21930c00da9
+  metadata.gz: f1ca11be38d85bcea0dcca1cb3b036090d2f37535e0987159071e40345220c14b19f2b2c314e44c81bc1652c3195306bbed61badec33a17ccefca951a21b2182
+  data.tar.gz: 68eddb6d812f974fe3ad0d8569bdab2374acffd012fac3bfa95c422958e61666c7994a482da845cb04f9eef9a54fc573ddebd291b08242757115ad5614bc0406

data/CHANGELOG

@@ -1,5 +1,59 @@
 = ActiveMerchant CHANGELOG
 
+== Version 1.59.0 (May 18, 2016)
+* Orbital: Allow AVS parts to be sent sans country [duff]
+* SecureNet: Return the right error message for declines [duff]
+* Moneris: Add verify [anellis]
+* Moneris: Add verify [anellis]
+* Jetpay: Add support for origin field[anellis]
+* Jetpay: Don't default origin field [duff]
+* GlobalCollect: New gateway support [curiousepic]
+* Openpay: Use strict_encode64 [duff]
+* Sage: Always pass along the billing state [duff]
+* VisaNet Peru: New gateway support [shasum]
+* Worldpay: Allow installationId to be specified at transaction time [duff]
+* SecurionPay: Support store [shasum]
+* Barclaycard Smartpay: Proper AVS return codes [curiousepic]
+* VisaNetPeru: Pass through CVV [duff]
+* Barclaycard Smartpay: Use strict_encode64 [duff]
+* VisaNetPeru: Fix error when billing address empty [shasum]
+* Vanco: Update live_url [duff]
+* Cardstream: Reference purchase [curiousepic]
+* Paymill: Fix error handling [methodmissing]
+* Latitude19: New gateway support [shasum]
+* BraintreeBlue: remove invalid test assertions [prburke]
+* Merchant e-Solutions: Pass order_id with capture [curiousepic]
+* CyberSource: Add rescue for ResponseErrors [curiousepic]
+* AuthorizeNet: Always pass recurringBilling flag if present [curiousepic]
+* S5: Pass order_id to TransactionID [curiousepic]
+* NMI: Set ACH sec_code from options if present [curiousepic]
+* VisaNet Peru: Refactor merchant_id and purchase_number handling [shasum]
+* Braintree Blue: Pass descriptor_url field [curiousepic]
+* VisaNet Peru: Add merchant_define_data option [duff]
+* Merchant e-Solutions: pass optional 3Dsecure params [curiousepic]
+* NMI: Fix refunds and voids of echecks [duff]
+* VisaNet Peru: Pass dummy email when not present [curiousepic]
+* PayU India: Add Maestro as supported card [curiousepic]
+* Cashnet: Don't retry [duff]
+* CardStream: Make Void call Cancel instead of Refund [curiousepic]
+* Remove AN and KV country codes as they're not recognized by ISO-3166-1 [apdunston]
+* Worldpay: Pass unchanged amount with correct currency exponent [curiousepic]
+* Improve our handling of currencies sans fractions [duff]
+* Stripe: Added support for the contactless magstripe entry mode option [rbalsdon]
+* VisaNet Peru: Change money format to dollars [shasum]
+* BlueSnap: Add gateway [duff]
+* VisaNet Peru: Select the most meaningful gateway error message [shasum]
+* SecurionPay: Update country list [duff]
+* Support for BIN 2 MasterCard brand detection [rbalsdon]
+* CardStream: Fix signature calculation [duff]
+* CyberSource: Update test and live URL [marquisong]
+* AuthorizeNet: Truncate nameOnAccount field [duff]
+* Tns: Fix ipAddress field [duff]
+* WorldNet: New gateway support [varyonic]
+* BraintreeBlue: Allow channel override [duff]
+* MerchantWarrior: Use Truncated Order Id [ThereExistsX]
+
+
 == Version 1.58.0 (March 1, 2016)
 * Move Electron check out of CreditCard into CreditCardMethods [ThereExistsX]
 * CardStream: Add AED and NZD currencies [sdball]

data/README.md

@@ -96,7 +96,7 @@ The [ActiveMerchant Wiki](http://github.com/activemerchant/active_merchant/wikis
 * [Beanstream.com](http://www.beanstream.com/) - CA, US
 * [BluePay](http://www.bluepay.com/) - US
 * [Borgun](https://www.borgun.is/) - IS
-* [Braintree](http://www.braintreepaymentsolutions.com) - US, CA, AU, AD, AT, BE, BG, CY, CZ, DK, EE, FI, FR, GI, DE, GR, HU, IS, IM, IE, IT, LV, LI, LT, LU, MT, MC, NL, NO, PL, PT, RO, SM, SK, SI, ES, SE, CH, TR, GB
+* [Braintree](https://www.braintreepayments.com) - US, CA, AU, AD, AT, BE, BG, CY, CZ, DK, EE, FI, FR, GI, DE, GR, HU, IS, IM, IE, IT, LV, LI, LT, LU, MT, MC, NL, NO, PL, PT, RO, SM, SK, SI, ES, SE, CH, TR, GB
 * [BridgePay](http://www.bridgepaynetwork.com/) - CA, US
 * [Cardknox](https://www.cardknox.com/) - US, CA, GB
 * [CardSave](http://www.cardsave.net/) - GB
@@ -208,7 +208,7 @@ The [ActiveMerchant Wiki](http://github.com/activemerchant/active_merchant/wikis
 * [SecureNet](http://www.securenet.com/) - US
 * [SecurePay](http://www.securepay.com/) - US, CA, GB, AU
 * [SecurePayTech](http://www.securepaytech.com/) - NZ
-* [SecurionPay](https://securionpay.com/) - AD, AE, AF, AG, AI, AL, AM, AN, AO, AR, AS, AT, AU, AW, AX, AZ, BA, BB, BD, BE, BF, BG, BH, BI, BJ, BL, BM, BN, BO, BR, BS, BT, BV, BW, BY, BZ, CA, CC, CD, CF, CG, CH, CI, CK, CL, CM, CN, CO, CR, CU, CV, CW, CX, CY, CZ, DE, DJ, DK, DM, DO, DZ, EC, EE, EG, EH, ER, ES, ET, FI, FJ, FK, FM, FO, FR, GA, GB, GD, GE, GF, GG, GH, GI, GL, GM, GN, GP, GQ, GR, GS, GT, GU, GW, GY, HK, HM, HN, HR, HT, HU, ID, IE, IL, IM, IN, IO, IQ, IR, IS, IT, JE, JM, JO, JP, KE, KG, KH, KI, KM, KN, KP, KR, KV, KW, KY, KZ, LA, LB, LC, LI, LK, LR, LS, LT, LU, LV, LY, MA, MC, MD, ME, MF, MG, MH, MK, ML, MM, MN, MO, MP, MQ, MR, MS, MT, MU, MV, MW, MX, MY, MZ, NA, NC, NE, NF, NG, NI, NL, NO, NP, NR, NU, NZ, OM, PA, PE, PF, PG, PH, PK, PL, PM, PN, PR, PS, PT, PW, PY, QA, RE, RO, RS, RU, RW, SA, SB, SC, SD, SE, SG, SH, SI, SJ, SK, SL, SM, SN, SO, SR, ST, SV, SY, SZ, TC, TD, TF, TG, TH, TJ, TK, TL, TM, TN, TO, TR, TT, TV, TW, TZ, UA, UG, UM, US, UY, UZ, VA, VC, VE, VG, VI, VN, VU, WF, WS, YE, YT, ZA, ZM, ZW
+* [SecurionPay](https://securionpay.com/) - AD, AE, AF, AG, AI, AL, AM, AO, AR, AS, AT, AU, AW, AX, AZ, BA, BB, BD, BE, BF, BG, BH, BI, BJ, BL, BM, BN, BO, BR, BS, BT, BV, BW, BY, BZ, CA, CC, CD, CF, CG, CH, CI, CK, CL, CM, CN, CO, CR, CU, CV, CW, CX, CY, CZ, DE, DJ, DK, DM, DO, DZ, EC, EE, EG, EH, ER, ES, ET, FI, FJ, FK, FM, FO, FR, GA, GB, GD, GE, GF, GG, GH, GI, GL, GM, GN, GP, GQ, GR, GS, GT, GU, GW, GY, HK, HM, HN, HR, HT, HU, ID, IE, IL, IM, IN, IO, IQ, IR, IS, IT, JE, JM, JO, JP, KE, KG, KH, KI, KM, KN, KP, KR, KW, KY, KZ, LA, LB, LC, LI, LK, LR, LS, LT, LU, LV, LY, MA, MC, MD, ME, MF, MG, MH, MK, ML, MM, MN, MO, MP, MQ, MR, MS, MT, MU, MV, MW, MX, MY, MZ, NA, NC, NE, NF, NG, NI, NL, NO, NP, NR, NU, NZ, OM, PA, PE, PF, PG, PH, PK, PL, PM, PN, PR, PS, PT, PW, PY, QA, RE, RO, RS, RU, RW, SA, SB, SC, SD, SE, SG, SH, SI, SJ, SK, SL, SM, SN, SO, SR, ST, SV, SY, SZ, TC, TD, TF, TG, TH, TJ, TK, TL, TM, TN, TO, TR, TT, TV, TW, TZ, UA, UG, UM, US, UY, UZ, VA, VC, VE, VG, VI, VN, VU, WF, WS, YE, YT, ZA, ZM, ZW
 * [SkipJack](http://www.skipjack.com/) - US, CA
 * [SoEasyPay](http://www.soeasypay.com/) - US, CA, AT, BE, BG, HR, CY, CZ, DK, EE, FI, FR, DE, GR, HU, IE, IT, LV, LT, LU, MT, NL, PL, PT, RO, SK, SI, ES, SE, GB, IS, NO, CH
 * [Spreedly](https://spreedly.com) - AD, AE, AT, AU, BD, BE, BG, BN, CA, CH, CY, CZ, DE, DK, EE, EG, ES, FI, FR, GB, GI, GR, HK, HU, ID, IE, IL, IM, IN, IS, IT, JO, KW, LB, LI, LK, LT, LU, LV, MC, MT, MU, MV, MX, MY, NL, NO, NZ, OM, PH, PL, PT, QA, RO, SA, SE, SG, SI, SK, SM, TR, TT, UM, US, VA, VN, ZA
@@ -227,7 +227,7 @@ The [ActiveMerchant Wiki](http://github.com/activemerchant/active_merchant/wikis
 * [WePay](https://www.wepay.com/) - US
 * [Wirecard](http://www.wirecard.com) - AD, CY, GI, IM, MT, RO, CH, AT, DK, GR, IT, MC, SM, TR, BE, EE, HU, LV, NL, SK, GB, BG, FI, IS, LI, NO, SI, VA, FR, IL, LT, PL, ES, CZ, DE, IE, LU, PT, SE
 * [Worldpay Global](http://www.worldpay.com/) - HK, GB, AU, AD, BE, CH, CY, CZ, DE, DK, ES, FI, FR, GI, GR, HU, IE, IL, IT, LI, LU, MC, MT, NL, NO, NZ, PL, PT, SE, SG, SI, SM, TR, UM, VA
-* [Worlpay Online](http://www.worldpay.com/) - HK, US, GB, AU, AD, BE, CH, CY, CZ, DE, DK, ES, FI, FR, GI, GR, HU, IE, IL, IT, LI, LU, MC, MT, NL, NO, NZ, PL, PT, SE, SG, SI, SM, TR, UM, VA
+* [Worldpay Online](https://online.worldpay.com/) - HK, US, GB, AU, AD, BE, CH, CY, CZ, DE, DK, ES, FI, FR, GI, GR, HU, IE, IL, IT, LI, LU, MC, MT, NL, NO, NZ, PL, PT, SE, SG, SI, SM, TR, UM, VA
 * [Worldpay US](http://www.worldpay.com/us) - US
 
 ## API stability policy

data/lib/active_merchant/billing/check.rb

@@ -50,6 +50,9 @@ module ActiveMerchant #:nodoc:
         'check'
       end
 
+      def credit_card?
+        false
+      end
       # Routing numbers may be validated by calculating a checksum and dividing it by 10. The
       # formula is:
       #   (3(d1 + d4 + d7) + 7(d2 + d5 + d8) + 1(d3 + d6 + d9))mod 10 = 0

data/lib/active_merchant/billing/credit_card.rb

@@ -182,10 +182,15 @@ module ActiveMerchant #:nodoc:
       # @return [String]
       attr_accessor :fallback_reason
 
-      # Returns or sets whether card-present card data has been read contactlessly.
+      # Returns or sets whether card-present EMV data has been read contactlessly.
       #
       # @return [true, false]
-      attr_accessor :contactless
+      attr_accessor :contactless_emv
+
+      # Returns or sets whether card-present magstripe data has been read contactlessly.
+      #
+      # @return [true, false]
+      attr_accessor :contactless_magstripe
 
       # Returns the ciphertext of the card's encrypted PIN.
       #

data/lib/active_merchant/billing/credit_card_methods.rb

@@ -4,7 +4,7 @@ module ActiveMerchant #:nodoc:
     module CreditCardMethods
       CARD_COMPANIES = {
         'visa'               => /^4\d{12}(\d{3})?(\d{3})?$/,
-        'master'             => /^(5[1-5]\d{4}|677189)\d{10}$/,
+        'master'             => /^(5[1-5]\d{4}|677189|222[1-9]\d{2}|22[3-9]\d{3}|2[3-6]\d{4}|27[01]\d{3}|2720\d{2})\d{10}$/,
         'discover'           => /^(6011|65\d{2}|64[4-9]\d)\d{12}|(62\d{14})$/,
         'american_express'   => /^3[47]\d{13}$/,
         'diners_club'        => /^3(0[0-5]|[68]\d)\d{11}$/,
@@ -45,6 +45,10 @@ module ActiveMerchant #:nodoc:
         (1..12).include?(month.to_i)
       end
 
+      def credit_card?
+        true
+      end
+
       def valid_expiry_year?(year)
         (Time.now.year..Time.now.year + 20).include?(year.to_i)
       end

data/lib/active_merchant/billing/gateway.rb

@@ -57,7 +57,6 @@ module ActiveMerchant #:nodoc:
       include CreditCardFormatting
 
       DEBIT_CARDS = [ :switch, :solo ]
-      CURRENCIES_WITHOUT_FRACTIONS = %w(BIF BYR CLP CVE DJF GNF HUF ISK JPY KMF KRW PYG RWF UGX VND VUV XAF XOF XPF)
 
       CREDIT_DEPRECATION_MESSAGE = "Support for using credit to refund existing transactions is deprecated and will be removed from a future release of ActiveMerchant. Please use the refund method instead."
       RECURRING_DEPRECATION_MESSAGE = "Recurring functionality in ActiveMerchant is deprecated and will be removed in a future version. Please contact the ActiveMerchant maintainers if you have an interest in taking ownership of a separate gem that continues support for it."
@@ -120,6 +119,9 @@ module ActiveMerchant #:nodoc:
       class_attribute :supported_cardtypes
       self.supported_cardtypes = []
 
+      class_attribute :currencies_without_fractions
+      self.currencies_without_fractions = %w(BIF BYR CLP CVE DJF GNF HUF ISK JPY KMF KRW PYG RWF UGX VND VUV XAF XOF XPF)
+
       class_attribute :homepage_url
       class_attribute :display_name
 
@@ -132,7 +134,7 @@ module ActiveMerchant #:nodoc:
       # The application making the calls to the gateway
       # Useful for things like the PayPal build notation (BN) id fields
       class_attribute :application_id, instance_writer: false
-      self.application_id = 'ActiveMerchant'
+      self.application_id = nil
 
       attr_reader :options
 
@@ -252,7 +254,7 @@ module ActiveMerchant #:nodoc:
       end
 
       def non_fractional_currency?(currency)
-        CURRENCIES_WITHOUT_FRACTIONS.include?(currency.to_s)
+        self.currencies_without_fractions.include?(currency.to_s)
       end
 
       def localized_amount(money, currency)

data/lib/active_merchant/billing/gateways/authorize_net.rb

@@ -323,7 +323,7 @@ module ActiveMerchant #:nodoc:
 
       def add_settings(xml, source, options)
         xml.transactionSettings do
-          if !source.is_a?(String) && card_brand(source) == "check" && options[:recurring]
+          if options[:recurring]
             xml.setting do
               xml.settingName("recurringBilling")
               xml.settingValue("true")
@@ -359,7 +359,7 @@ module ActiveMerchant #:nodoc:
               xml.value(currency)
             end
           end
-          if application_id.present? && application_id != "ActiveMerchant"
+          if application_id.present?
             xml.userField do
               xml.name("x_solution_id")
               xml.value(application_id)
@@ -444,7 +444,7 @@ module ActiveMerchant #:nodoc:
           xml.bankAccount do
             xml.routingNumber(check.routing_number)
             xml.accountNumber(check.account_number)
-            xml.nameOnAccount(check.name)
+            xml.nameOnAccount(truncate(check.name, 22))
             xml.bankName(check.bank_name)
             xml.checkNumber(check.number)
           end

data/lib/active_merchant/billing/gateways/barclaycard_smartpay.rb

@@ -75,8 +75,6 @@ module ActiveMerchant #:nodoc:
       end
 
       def store(creditcard, options = {})
-        # ??? require :email and :customer, :order_id?
-
         post = store_request(options)
         post[:card] = credit_card_hash(creditcard)
         post[:recurring] = {:contract => 'RECURRING'}
@@ -97,6 +95,30 @@ module ActiveMerchant #:nodoc:
 
       private
 
+      # Smartpay may return AVS codes not covered by standard AVSResult codes.
+      # Smartpay's descriptions noted below.
+      AVS_MAPPING = {
+        '0'  => 'R',  # Unknown
+        '1'  => 'A',	# Address matches, postal code doesn't
+        '2'  => 'N',	# Neither postal code nor address match
+        '3'  => 'R',	# AVS unavailable
+        '4'  => 'E',	# AVS not supported for this card type
+        '5'  => 'U',	# No AVS data provided
+        '6'  => 'Z',	# Postal code matches, address doesn't match
+        '7'  => 'D',	# Both postal code and address match
+        '8'  => 'U',	# Address not checked, postal code unknown
+        '9'  => 'B',	# Address matches, postal code unknown
+        '10' => 'N',	# Address doesn't match, postal code unknown
+        '11' => 'U',	# Postal code not checked, address unknown
+        '12' => 'B',	# Address matches, postal code not checked
+        '13' => 'U',	# Address doesn't match, postal code not checked
+        '14' => 'P',	# Postal code matches, address unknown
+        '15' => 'P',	# Postal code matches, address not checked
+        '16' => 'N',	# Postal code doesn't match, address unknown
+        '17' => 'U',  # Postal code doesn't match, address not checked
+        '18' => 'I'	  # Neither postal code nor address were checked
+      }
+
       def commit(action, post)
         request = post_data(flatten_hash(post))
         raw_response = ssl_post(build_url(action), request, headers)
@@ -107,6 +129,7 @@ module ActiveMerchant #:nodoc:
           message_from(response),
           response,
           test: test?,
+          avs_result: AVSResult.new(:code => parse_avs_code(response)),
           authorization: response['recurringDetailReference'] || response['pspReference']
         )
 
@@ -124,6 +147,10 @@ module ActiveMerchant #:nodoc:
         raise
       end
 
+      def parse_avs_code(response)
+        AVS_MAPPING[response["avsResult"][0..1].strip] if response["avsResult"]
+      end
+
       def flatten_hash(hash, prefix = nil)
         flat_hash = {}
         hash.each_pair do |key, val|
@@ -140,7 +167,7 @@ module ActiveMerchant #:nodoc:
       def headers
         {
           'Content-Type' => 'application/x-www-form-urlencoded; charset=utf-8',
-          'Authorization' => 'Basic ' + Base64.encode64("ws@Company.#{@options[:company]}:#{@options[:password]}").strip
+          'Authorization' => 'Basic ' + Base64.strict_encode64("ws@Company.#{@options[:company]}:#{@options[:password]}").strip
         }
       end
 
@@ -186,11 +213,13 @@ module ActiveMerchant #:nodoc:
 
       def address_hash(address)
         full_address = "#{address[:address1]} #{address[:address2]}" if address
+        street = address[:street] if address[:street]
+        house = address[:houseNumberOrName] if address[:houseNumberOrName]
 
         hash = {}
         hash[:city]              = address[:city] if address[:city]
-        hash[:street]            = full_address.split(/\s+/).keep_if { |x| x !~ /\d/ }.join(' ')
-        hash[:houseNumberOrName] = full_address.split(/\s+/).keep_if { |x| x =~ /\d/ }.join(' ')
+        hash[:street]            = street || full_address.split(/\s+/).keep_if { |x| x !~ /\d/ }.join(' ')
+        hash[:houseNumberOrName] = house || full_address.split(/\s+/).keep_if { |x| x =~ /\d/ }.join(' ')
         hash[:postalCode]        = address[:zip] if address[:zip]
         hash[:stateOrProvince]   = address[:state] if address[:state]
         hash[:country]           = address[:country] if address[:country]

data/lib/active_merchant/billing/gateways/blue_pay.rb

@@ -472,7 +472,7 @@ module ActiveMerchant #:nodoc:
         post[:encap_char]     = "$"
         post[:card_num]       = '4111111111111111'
         post[:exp_date]       = '1212'
-        post[:solution_ID]    = application_id if(application_id && application_id != "ActiveMerchant")
+        post[:solution_ID]    = application_id if application_id
         post.merge(parameters).collect { |key, value| "#{key}=#{CGI.escape(value.to_s)}" }.join("&")
       end
 

data/lib/active_merchant/billing/gateways/blue_snap.rb

@@ -0,0 +1,348 @@
+require 'nokogiri'
+
+module ActiveMerchant
+  module Billing
+    class BlueSnapGateway < Gateway
+      self.test_url = "https://sandbox.bluesnap.com/services/2"
+      self.live_url = "https://ws.bluesnap.com/services/2"
+      self.supported_countries = %w(US GB)
+
+      self.default_currency = 'USD'
+      self.supported_cardtypes = [:visa, :master, :american_express, :discover, :jcb, :diners_club, :maestro]
+
+      self.homepage_url = 'https://home.bluesnap.com/'
+      self.display_name = 'BlueSnap'
+
+      TRANSACTIONS = {
+        purchase: "AUTH_CAPTURE",
+        authorize: "AUTH_ONLY",
+        capture: "CAPTURE",
+        void: "AUTH_REVERSAL",
+        refund: "REFUND"
+      }
+
+      CVC_CODE_TRANSLATOR = {
+        'MA' => 'M',
+        'NC' => 'U',
+        'ND' => 'P',
+        'NM' => 'N',
+        'NP' => 'S'
+      }
+
+      AVS_CODE_TRANSLATOR = {
+        'line1: U, zip: U, name: U' => 'I',
+        'line1: U, zip: U, name: M' => 'I',
+        'line1: U, zip: U, name: N' => 'I',
+        'line1: U, zip: M, name: U' => 'P',
+        'line1: U, zip: M, name: M' => 'P',
+        'line1: U, zip: M, name: N' => 'F',
+        'line1: U, zip: N, name: U' => 'O',
+        'line1: U, zip: N, name: M' => 'O',
+        'line1: U, zip: N, name: N' => 'O',
+        'line1: M, zip: U, name: U' => 'B',
+        'line1: M, zip: U, name: M' => 'B',
+        'line1: M, zip: U, name: N' => 'T',
+        'line1: M, zip: M, name: U' => 'M',
+        'line1: M, zip: M, name: M' => 'V',
+        'line1: M, zip: M, name: N' => 'H',
+        'line1: M, zip: N, name: U' => 'A',
+        'line1: M, zip: N, name: M' => 'O',
+        'line1: M, zip: N, name: N' => 'A',
+        'line1: N, zip: U, name: U' => 'C',
+        'line1: N, zip: U, name: M' => 'C',
+        'line1: N, zip: U, name: N' => 'C',
+        'line1: N, zip: M, name: U' => 'W',
+        'line1: N, zip: M, name: M' => 'L',
+        'line1: N, zip: M, name: N' => 'W',
+        'line1: N, zip: N, name: U' => 'N',
+        'line1: N, zip: N, name: M' => 'K',
+        'line1: N, zip: N, name: N' => 'N',
+      }
+
+      def initialize(options={})
+        requires!(options, :api_username, :api_password)
+        super
+      end
+
+      def purchase(money, payment_method, options={})
+        commit(:purchase) do |doc|
+          add_auth_purchase(doc, money, payment_method, options)
+        end
+      end
+
+      def authorize(money, payment_method, options={})
+        commit(:authorize) do |doc|
+          add_auth_purchase(doc, money, payment_method, options)
+        end
+      end
+
+      def capture(money, authorization, options={})
+        commit(:capture, :put) do |doc|
+          add_authorization(doc, authorization)
+          add_order(doc, options)
+        end
+      end
+
+      def refund(money, authorization, options={})
+        commit(:refund, :put) do |doc|
+          add_authorization(doc, authorization)
+          add_amount(doc, money)
+          add_order(doc, options)
+        end
+      end
+
+      def void(authorization, options={})
+        commit(:void, :put) do |doc|
+          add_authorization(doc, authorization)
+          add_order(doc, options)
+        end
+      end
+
+      def verify(payment_method, options={})
+        authorize(0, payment_method, options)
+      end
+
+      def store(credit_card, options = {})
+        commit(:store) do |doc|
+          add_personal_info(doc, credit_card, options)
+          doc.send("payment-sources") do
+            doc.send("credit-card-info") do
+              add_credit_card(doc, credit_card)
+            end
+          end
+          add_order(doc, options)
+        end
+      end
+
+      def verify_credentials
+        begin
+          ssl_get("#{url}/nonexistent", headers)
+        rescue ResponseError => e
+          return false if e.response.code.to_i == 401
+        end
+
+        true
+      end
+
+      def supports_scrubbing?
+        true
+      end
+
+      def scrub(transcript)
+        transcript.
+          gsub(%r((Authorization: Basic )\w+), '\1[FILTERED]').
+          gsub(%r((<card-number>).+(</card-number>)), '\1[FILTERED]\2').
+          gsub(%r((<security-code>).+(</security-code>)), '\1[FILTERED]\2')
+      end
+
+      private
+
+      def add_auth_purchase(doc, money, payment_method, options)
+        doc.send("recurring-transaction", options[:recurring] ? "RECURRING" : "ECOMMERCE")
+        add_order(doc, options)
+        add_amount(doc, money)
+        doc.send("transaction-fraud-info") do
+          doc.send("shopper-ip-address", options[:ip]) if options[:ip]
+        end
+
+        if payment_method.is_a?(String)
+          doc.send("vaulted-shopper-id", payment_method)
+        else
+          doc.send("card-holder-info") do
+            add_personal_info(doc, payment_method, options)
+          end
+          add_credit_card(doc, payment_method)
+        end
+      end
+
+      def add_amount(doc, money)
+        doc.amount(amount(money))
+        doc.currency(options[:currency] || currency(money))
+      end
+
+      def add_personal_info(doc, credit_card, options)
+        doc.send("first-name", credit_card.first_name)
+        doc.send("last-name", credit_card.last_name)
+        doc.email(options[:email]) if options[:email]
+        add_address(doc, options)
+      end
+
+      def add_credit_card(doc, card)
+        doc.send("credit-card") do
+          doc.send("card-number", card.number)
+          doc.send("security-code", card.verification_value)
+          doc.send("expiration-month", card.month)
+          doc.send("expiration-year", card.year)
+        end
+      end
+
+      def add_description(doc, description)
+        doc.send("transaction-meta-data") do
+          doc.send("meta-data") do
+            doc.send("meta-key", "description")
+            doc.send("meta-value", truncate(description, 500))
+            doc.send("meta-description", "Description")
+          end
+        end
+      end
+
+      def add_order(doc, options)
+        doc.send("merchant-transaction-id", truncate(options[:order_id], 50)) if options[:order_id]
+        doc.send("soft-descriptor", options[:soft_descriptor]) if options[:soft_descriptor]
+        add_description(doc, options[:description]) if options[:description]
+      end
+
+      def add_address(doc, options)
+        address = options[:billing_address]
+        return unless address
+
+        doc.country(address[:country]) if address[:country]
+        doc.state(address[:state]) if address[:state]
+        doc.address(address[:address]) if address[:address]
+        doc.city(address[:city]) if address[:city]
+        doc.zip(address[:zip]) if address[:zip]
+      end
+
+      def add_invoice(post, money, options)
+        post[:amount] = amount(money)
+        post[:currency] = (options[:currency] || currency(money))
+      end
+
+      def add_authorization(doc, authorization)
+        doc.send("transaction-id", authorization)
+      end
+
+      def parse(response)
+        return bad_authentication_response if response.code.to_i == 401
+
+        parsed = {}
+        doc = Nokogiri::XML(response.body)
+        doc.root.xpath('*').each do |node|
+          if (node.elements.empty?)
+            parsed[node.name.downcase] = node.text
+          else
+            node.elements.each do |childnode|
+              parse_element(parsed, childnode)
+            end
+          end
+        end
+
+        parsed["content-location-header"] = response['content-location']
+        parsed
+      end
+
+      def parse_element(parsed, node)
+        if !node.elements.empty?
+          node.elements.each {|e| parse_element(parsed, e) }
+        else
+          parsed[node.name.downcase] = node.text
+        end
+      end
+
+      def api_request(action, request, verb)
+        begin
+          ssl_request(verb, url(action), request, headers)
+        rescue ResponseError => e
+          e.response
+        end
+      end
+
+      def commit(action, verb = :post)
+        request = build_xml_request(action) { |doc| yield(doc) }
+        response = api_request(action, request, verb)
+        parsed = parse(response)
+
+        succeeded = success_from(action, response)
+        Response.new(
+          succeeded,
+          message_from(succeeded, parsed),
+          parsed,
+          authorization: authorization_from(action, parsed),
+          avs_result: avs_result(parsed),
+          cvv_result: cvv_result(parsed),
+          error_code: error_code_from(parsed),
+          test: test?,
+        )
+      end
+
+      def url(action = nil)
+        base = test? ? test_url : live_url
+        resource = (action == :store) ? "vaulted-shoppers" : "transactions"
+        "#{base}/#{resource}"
+      end
+
+      def cvv_result(parsed)
+        CVVResult.new(CVC_CODE_TRANSLATOR[parsed["cvv-response-code"]])
+      end
+
+      def avs_result(parsed)
+        AVSResult.new(code: AVS_CODE_TRANSLATOR[avs_lookup_key(parsed)])
+      end
+
+      def avs_lookup_key(p)
+        "line1: #{p['avs-response-code-address']}, zip: #{p['avs-response-code-zip']}, name: #{p['avs-response-code-name']}"
+      end
+
+      def success_from(action, response)
+        (200...300).include?(response.code.to_i)
+      end
+
+      def message_from(succeeded, parsed_response)
+        return "Success" if succeeded
+        parsed_response["description"]
+      end
+
+      def authorization_from(action, parsed_response)
+        (action == :store) ? vaulted_shopper_id(parsed_response) : parsed_response["transaction-id"]
+      end
+
+      def vaulted_shopper_id(parsed_response)
+        return nil unless parsed_response["content-location-header"]
+        parsed_response["content-location-header"].split("/").last
+      end
+
+      def error_code_from(parsed_response)
+        parsed_response["code"]
+      end
+
+      def root_attributes
+        {
+          xmlns: "http://ws.plimus.com"
+        }
+      end
+
+      def root_element(action)
+        (action == :store) ? "vaulted-shopper" : "card-transaction"
+      end
+
+      def headers
+        {
+          'Content-Type' => 'application/xml',
+          'Authorization' => ('Basic ' + Base64.strict_encode64("#{@options[:api_username]}:#{@options[:api_password]}").strip),
+        }
+      end
+
+      def build_xml_request(action)
+        builder = Nokogiri::XML::Builder.new
+        builder.__send__(root_element(action), root_attributes) do |doc|
+          doc.send("card-transaction-type", TRANSACTIONS[action]) if TRANSACTIONS[action]
+          yield(doc)
+        end
+        builder.doc.root.to_xml
+      end
+
+      def handle_response(response)
+        case response.code.to_i
+        when 200...300
+          response
+        else
+          raise ResponseError.new(response)
+        end
+      end
+
+      def bad_authentication_response
+        { "description" => "Unable to authenticate.  Please check your credentials." }
+      end
+    end
+  end
+end