fintoc 0.1.0 → 1.1.0

data/lib/fintoc/v2/resources/account.rb

@@ -0,0 +1,106 @@
+require 'money'
+
+module Fintoc
+  module V2
+    class Account
+      attr_reader :id, :object, :mode, :description, :available_balance, :currency,
+                  :is_root, :root_account_number_id, :root_account_number, :status, :entity
+
+      def initialize(
+        id:,
+        object:,
+        mode:,
+        description:,
+        available_balance:,
+        currency:,
+        is_root:,
+        root_account_number_id:,
+        root_account_number:,
+        status:,
+        entity:,
+        client: nil,
+        **
+      )
+        @id = id
+        @object = object
+        @mode = mode
+        @description = description
+        @available_balance = available_balance
+        @currency = currency
+        @is_root = is_root
+        @root_account_number_id = root_account_number_id
+        @root_account_number = root_account_number
+        @status = status
+        @entity = entity
+        @client = client
+      end
+
+      def to_s
+        "💰 #{@description} (#{@id}) - #{Money.from_cents(@available_balance, @currency).format}"
+      end
+
+      def refresh
+        fresh_account = @client.accounts.get(@id)
+        refresh_from_account(fresh_account)
+      end
+
+      def update(description: nil, idempotency_key: nil)
+        params = {}
+        params[:description] = description if description
+
+        updated_account = @client.accounts.update(@id, idempotency_key:, **params)
+        refresh_from_account(updated_account)
+      end
+
+      def active?
+        @status == 'active'
+      end
+
+      def blocked?
+        @status == 'blocked'
+      end
+
+      def closed?
+        @status == 'closed'
+      end
+
+      def test_mode?
+        @mode == 'test'
+      end
+
+      def simulate_receive_transfer(amount:, idempotency_key: nil)
+        unless test_mode?
+          raise Fintoc::Errors::InvalidRequestError, 'Simulation is only available in test mode'
+        end
+
+        @client.simulate.receive_transfer(
+          account_number_id: @root_account_number_id,
+          amount:,
+          currency: @currency,
+          idempotency_key:
+        )
+      end
+
+      private
+
+      def refresh_from_account(account)
+        unless account.id == @id
+          raise ArgumentError, 'Account must be the same instance'
+        end
+
+        @object = account.object
+        @mode = account.mode
+        @description = account.description
+        @available_balance = account.available_balance
+        @currency = account.currency
+        @is_root = account.is_root
+        @root_account_number_id = account.root_account_number_id
+        @root_account_number = account.root_account_number
+        @status = account.status
+        @entity = account.entity
+
+        self
+      end
+    end
+  end
+end

data/lib/fintoc/v2/resources/account_number.rb

@@ -0,0 +1,106 @@
+module Fintoc
+  module V2
+    class AccountNumber
+      attr_reader :id, :object, :description, :number, :created_at, :updated_at,
+                  :mode, :status, :is_root, :account_id, :metadata
+
+      def initialize(
+        id:,
+        object:,
+        description:,
+        number:,
+        created_at:,
+        updated_at:,
+        mode:,
+        status:,
+        is_root:,
+        account_id:,
+        metadata:,
+        client: nil,
+        **
+      )
+        @id = id
+        @object = object
+        @description = description
+        @number = number
+        @created_at = created_at
+        @updated_at = updated_at
+        @mode = mode
+        @status = status
+        @is_root = is_root
+        @account_id = account_id
+        @metadata = metadata
+        @client = client
+      end
+
+      def to_s
+        "🔢 #{@number} (#{@id}) - #{@description}"
+      end
+
+      def refresh
+        fresh_account_number = @client.account_numbers.get(@id)
+        refresh_from_account_number(fresh_account_number)
+      end
+
+      def update(description: nil, status: nil, metadata: nil, idempotency_key: nil)
+        params = {}
+        params[:description] = description if description
+        params[:status] = status if status
+        params[:metadata] = metadata if metadata
+
+        updated_account_number = @client.account_numbers.update(@id, idempotency_key:, **params)
+        refresh_from_account_number(updated_account_number)
+      end
+
+      def enabled?
+        @status == 'enabled'
+      end
+
+      def disabled?
+        @status == 'disabled'
+      end
+
+      def root?
+        @is_root
+      end
+
+      def test_mode?
+        @mode == 'test'
+      end
+
+      def simulate_receive_transfer(amount:, currency: 'MXN', idempotency_key: nil)
+        unless test_mode?
+          raise Fintoc::Errors::InvalidRequestError, 'Simulation is only available in test mode'
+        end
+
+        @client.simulate.receive_transfer(
+          account_number_id: @id,
+          amount:,
+          currency:,
+          idempotency_key:
+        )
+      end
+
+      private
+
+      def refresh_from_account_number(account_number)
+        unless account_number.id == @id
+          raise ArgumentError, 'AccountNumber must be the same instance'
+        end
+
+        @object = account_number.object
+        @description = account_number.description
+        @number = account_number.number
+        @created_at = account_number.created_at
+        @updated_at = account_number.updated_at
+        @mode = account_number.mode
+        @status = account_number.status
+        @is_root = account_number.is_root
+        @account_id = account_number.account_id
+        @metadata = account_number.metadata
+
+        self
+      end
+    end
+  end
+end

data/lib/fintoc/v2/resources/account_verification.rb

@@ -0,0 +1,73 @@
+module Fintoc
+  module V2
+    class AccountVerification
+      attr_reader :id, :object, :status, :reason, :transfer_id, :counterparty, :mode, :receipt_url,
+                  :transaction_date
+
+      def initialize(
+        id:,
+        object:,
+        status:,
+        reason:,
+        transfer_id:,
+        counterparty:,
+        mode:,
+        receipt_url:,
+        transaction_date:,
+        client: nil,
+        **
+      )
+        @id = id
+        @object = object
+        @status = status
+        @reason = reason
+        @transfer_id = transfer_id
+        @counterparty = counterparty
+        @mode = mode
+        @receipt_url = receipt_url
+        @transaction_date = transaction_date
+        @client = client
+      end
+
+      def to_s
+        "🔍 Account Verification (#{@id}) - #{@status}"
+      end
+
+      def refresh
+        fresh_verification = @client.account_verifications.get(@id)
+        refresh_from_verification(fresh_verification)
+      end
+
+      def pending?
+        @status == 'pending'
+      end
+
+      def succeeded?
+        @status == 'succeeded'
+      end
+
+      def failed?
+        @status == 'failed'
+      end
+
+      private
+
+      def refresh_from_verification(verification)
+        unless verification.id == @id
+          raise ArgumentError, 'Account verification must be the same instance'
+        end
+
+        @object = verification.object
+        @status = verification.status
+        @reason = verification.reason
+        @transfer_id = verification.transfer_id
+        @counterparty = verification.counterparty
+        @mode = verification.mode
+        @receipt_url = verification.receipt_url
+        @transaction_date = verification.transaction_date
+
+        self
+      end
+    end
+  end
+end

data/lib/fintoc/v2/resources/entity.rb

@@ -0,0 +1,51 @@
+module Fintoc
+  module V2
+    class Entity
+      attr_reader :object, :mode, :id, :holder_name, :holder_id, :is_root
+
+      def initialize(
+        object:,
+        mode:,
+        id:,
+        holder_name:,
+        holder_id:,
+        is_root:,
+        client: nil,
+        **
+      )
+        @object = object
+        @mode = mode
+        @id = id
+        @holder_name = holder_name
+        @holder_id = holder_id
+        @is_root = is_root
+        @client = client
+      end
+
+      def to_s
+        "🏢 #{@holder_name} (#{@id})"
+      end
+
+      def refresh
+        fresh_entity = @client.entities.get(@id)
+        refresh_from_entity(fresh_entity)
+      end
+
+      private
+
+      def refresh_from_entity(entity)
+        unless entity.id == @id
+          raise ArgumentError, 'Entity must be the same instance'
+        end
+
+        @object = entity.object
+        @mode = entity.mode
+        @holder_name = entity.holder_name
+        @holder_id = entity.holder_id
+        @is_root = entity.is_root
+
+        self
+      end
+    end
+  end
+end

data/lib/fintoc/v2/resources/transfer.rb

@@ -0,0 +1,131 @@
+require 'money'
+
+module Fintoc
+  module V2
+    class Transfer
+      attr_reader :id, :object, :amount, :currency, :direction, :status, :mode,
+                  :post_date, :transaction_date, :comment, :reference_id, :receipt_url,
+                  :tracking_key, :return_reason, :counterparty, :account_number,
+                  :metadata, :created_at
+
+      def initialize( # rubocop:disable Metrics/MethodLength
+        id:,
+        object:,
+        amount:,
+        currency:,
+        status:,
+        mode:,
+        counterparty:,
+        direction: nil,
+        post_date: nil,
+        transaction_date: nil,
+        comment: nil,
+        reference_id: nil,
+        receipt_url: nil,
+        tracking_key: nil,
+        return_reason: nil,
+        account_number: nil,
+        metadata: {},
+        created_at: nil,
+        client: nil,
+        **
+      )
+        @id = id
+        @object = object
+        @amount = amount
+        @currency = currency
+        @direction = direction
+        @status = status
+        @mode = mode
+        @post_date = post_date
+        @transaction_date = transaction_date
+        @comment = comment
+        @reference_id = reference_id
+        @receipt_url = receipt_url
+        @tracking_key = tracking_key
+        @return_reason = return_reason
+        @counterparty = counterparty
+        @account_number = account_number
+        @metadata = metadata || {}
+        @created_at = created_at
+        @client = client
+      end
+
+      def to_s
+        amount_str = Money.from_cents(@amount, @currency).format
+        direction_icon = inbound? ? '⬇️' : '⬆️'
+        "#{direction_icon} #{amount_str} (#{@id}) - #{@status}"
+      end
+
+      def refresh
+        fresh_transfer = @client.transfers.get(@id)
+        refresh_from_transfer(fresh_transfer)
+      end
+
+      def return_transfer(idempotency_key: nil)
+        returned_transfer = @client.transfers.return(@id, idempotency_key:)
+        refresh_from_transfer(returned_transfer)
+      end
+
+      def pending?
+        @status == 'pending'
+      end
+
+      def succeeded?
+        @status == 'succeeded'
+      end
+
+      def failed?
+        @status == 'failed'
+      end
+
+      def returned?
+        @status == 'returned'
+      end
+
+      def return_pending?
+        @status == 'return_pending'
+      end
+
+      def rejected?
+        @status == 'rejected'
+      end
+
+      def inbound?
+        @direction == 'inbound'
+      end
+
+      def outbound?
+        @direction == 'outbound'
+      end
+
+      private
+
+      def refresh_from_transfer(transfer) # rubocop:disable Metrics/AbcSize, Metrics/MethodLength
+        unless transfer.id == @id
+          raise ArgumentError, 'Transfer must be the same instance'
+        end
+
+        @object = transfer.object
+        @amount = transfer.amount
+        @currency = transfer.currency
+        @direction = transfer.direction
+        @status = transfer.status
+        @mode = transfer.mode
+        @post_date = transfer.post_date
+        @transaction_date = transfer.transaction_date
+        @comment = transfer.comment
+        @reference_id = transfer.reference_id
+        @receipt_url = transfer.receipt_url
+        @tracking_key = transfer.tracking_key
+        @return_reason = transfer.return_reason
+        @counterparty = transfer.counterparty
+        @account_number = transfer.account_number
+        @metadata = transfer.metadata
+        @created_at = transfer.created_at
+
+        self
+      end
+    end
+  end
+end

data/lib/fintoc/version.rb

@@ -1,3 +1,3 @@
 module Fintoc
-  VERSION = "0.1.0"
+  VERSION = '1.1.0'
 end

data/lib/fintoc/webhook_signature.rb

@@ -0,0 +1,73 @@
+# frozen_string_literal: true
+
+require 'openssl'
+require 'time'
+require 'fintoc/errors'
+
+module Fintoc
+  class WebhookSignature
+    EXPECTED_SCHEME = 'v1'
+    DEFAULT_TOLERANCE = 300 # 5 minutes
+
+    class << self
+      def verify_header(payload, header, secret, tolerance = DEFAULT_TOLERANCE) # rubocop:disable Naming/PredicateMethod
+        timestamp, signatures = parse_header(header)
+
+        verify_timestamp(timestamp, tolerance) if tolerance
+
+        expected_signature = compute_signature(payload, timestamp, secret)
+        signature = signatures[EXPECTED_SCHEME]
+
+        if signature.nil? || signature.empty? # rubocop:disable Rails/Blank
+          raise Fintoc::Errors::WebhookSignatureError.new("No #{EXPECTED_SCHEME} signature found")
+        end
+
+        unless same_signatures?(signature, expected_signature)
+          raise Fintoc::Errors::WebhookSignatureError.new('Signature mismatch')
+        end
+
+        true
+      end
+
+      def compute_signature(payload, timestamp, secret)
+        signed_payload = "#{timestamp}.#{payload}"
+        OpenSSL::HMAC.hexdigest(OpenSSL::Digest.new('sha256'), secret, signed_payload)
+      end
+
+      private
+
+      def parse_header(header)
+        elements = header.split(',').map(&:strip)
+        pairs = elements.map { |element| element.split('=', 2).map(&:strip) }
+        pairs = pairs.to_h
+
+        if pairs['t'].nil? || pairs['t'].empty? # rubocop:disable Rails/Blank
+          raise Fintoc::Errors::WebhookSignatureError.new('Missing timestamp in header')
+        end
+
+        timestamp = pairs['t'].to_i
+        signatures = pairs.except('t')
+
+        [timestamp, signatures]
+      rescue StandardError => e
+        raise Fintoc::Errors::WebhookSignatureError.new(
+          'Unable to extract timestamp and signatures from header'
+        ), cause: e
+      end
+
+      def verify_timestamp(timestamp, tolerance)
+        now = Time.now.to_i
+
+        if timestamp < (now - tolerance)
+          raise Fintoc::Errors::WebhookSignatureError.new(
+            "Timestamp outside the tolerance zone (#{timestamp})"
+          )
+        end
+      end
+
+      def same_signatures?(signature, expected_signature)
+        OpenSSL.secure_compare(expected_signature, signature)
+      end
+    end
+  end
+end

data/lib/fintoc.rb

@@ -1,6 +1,9 @@
 require 'fintoc/version'
 require 'fintoc/errors'
 require 'fintoc/client'
+require 'fintoc/webhook_signature'
+
+require 'config/initializers/money'
 
 module Fintoc
 end

data/lib/tasks/simplecov_config.rb

@@ -0,0 +1,19 @@
+if ENV['COVERAGE'] == 'true'
+  require 'simplecov'
+  require 'simplecov_text_formatter'
+  require 'simplecov_linter_formatter'
+
+  SimpleCov.start do
+    formatter SimpleCov::Formatter::MultiFormatter.new([SimpleCov::Formatter::HTMLFormatter])
+
+    add_filter '/vendor/'
+    add_filter '/lib/fintoc.rb'
+    add_filter '/lib/fintoc/version.rb'
+    add_filter '/lib/tasks/simplecov_config.rb'
+
+    track_files 'lib/**/*.rb'
+
+    minimum_coverage 100
+    minimum_coverage_by_file 100
+  end
+end