gmo 0.5.7 → 0.5.9

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 777d9df05c7ce84b2a312a791db6eb4d9185f98d9091a6d1e8c1a6b2a910e805
-  data.tar.gz: 49c6446f6c5ae13f9a329c2f8a260eebf3a13f99af0114f7e553aa0c4229081d
+  metadata.gz: af1dd3f7ad4b9e6ac9d6ca3031f4667297e6f031aba145d50665d01fc32025e5
+  data.tar.gz: 616883c20b27bb5d94a0c4b11abfb3396247abe6da1e592d30282cba9dccb0ac
 SHA512:
-  metadata.gz: 93dd5945e58cbcfee6a5546b8be9bdd092ebbd3a5038c197dd317dc78a3b19d34d1328cf30994e19329ca68ec588c3d93ba7533072a219dd1c0daaf4b1b2cd37
-  data.tar.gz: edc8f3b52dc18c6fffda4255262189a2e48bb5bc79700ac5e72fe7861461dbe7d6c925de21a8c856275d10bbb3543aee8a1d03fd8666d103a37adc3b5f497baa
+  metadata.gz: d570dc713d1281eebb404d022f2fdb07eca419f770bdd685d217b2ac7798474e5f03c292b606c59d3beb30f24996152e6b812e05849a636b694edf4658c1bfb4
+  data.tar.gz: 121ec172132e99240b194da859e997140758d0a822e49bd55ad36ea114efb38442b462ac8126cc99a99826627bc72d582819d35e4d202f7877031e75f1582522

data/.github/workflows/ruby.yml

@@ -26,7 +26,7 @@ jobs:
     timeout-minutes: 10
     strategy:
       matrix:
-        ruby-version: ['2.6', '2.7', '3.0', '3.1', '3.2', '3.3']
+        ruby-version: ['2.6', '2.7', '3.0', '3.1', '3.2', '3.3', '3.4']
 
     steps:
     - uses: actions/checkout@v3

data/CHANGELOG.md

@@ -1,4 +1,15 @@
 # CHANGELOG
+## 0.5.9
+- net-http 0.7.0+でcontent typeを明示的に設定する必要がある問題を修正 [#79](https://github.com/t-k/gmo-payment-ruby/pull/79) (Thanks [@johnnyshields](https://github.com/johnnyshields))
+
+## 0.5.8
+- クレジットカード決済の3Dセキュア2.0に対応 [#76](https://github.com/t-k/gmo-payment-ruby/pull/76)
+  - 3DS2.0認証実行 (`tds2_auth`)
+  - 3DS2.0認証結果取得 (`tds2_result`)
+  - 認証後決済実行 (`secure_tran_2`)
+- Ruby 3.4のサポートを追加 [#74](https://github.com/t-k/gmo-payment-ruby/pull/74) (Thanks [@y-yagi](https://github.com/y-yagi))
+- `ostruct`を明示的な依存関係として追加 [#74](https://github.com/t-k/gmo-payment-ruby/pull/74) (Thanks [@y-yagi](https://github.com/y-yagi))
+
 ## 0.5.7
 - Added `nkf` as a dependency. This fixes the warning that appears with Ruby 3.3.0 and later versions. [#67](https://github.com/t-k/gmo-payment-ruby/pull/69)
 

data/fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_exec_tran_with_3DS2_0_returns_3DS2_0_challenge_flow_response.yml

@@ -0,0 +1,33 @@
+---
+http_interactions:
+- request:
+    method: post
+    uri: https://<HOST>/payment/ExecTran.idPass
+    body:
+      encoding: UTF-8
+      string: AccessID=<ACCESS_ID>&AccessPass=<ACCESS_PASS>&OrderID=<ORDER_ID>&Method=1&PayTimes=&MemberID=<MEMBER_ID>&CardSeq=0&TdsType=2&Tds2Type=2&CallBackUrl=https%3A%2F%2Fexample.com%2Fcallback&Tds2RetUrl=https%3A%2F%2Fexample.com%2F3ds%2Freturn
+    headers:
+      Accept:
+      - "*/*"
+      Accept-Encoding:
+      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
+      Content-Type:
+      - application/x-www-form-urlencoded
+      User-Agent:
+      - Ruby
+  response:
+    status:
+      code: 200
+      message: OK
+    headers:
+      Content-Type:
+      - text/plain; charset=shift_jis
+      Date:
+      - Thu, 24 Jul 2025 23:15:18 GMT
+      Server:
+      - Apache
+    body:
+      encoding: UTF-8
+      string: OrderID=<ORDER_ID>&Forward=<FORWARD>&Method=1&PayTimes=&Approve=&TranID=<TRAN_ID>&TranDate=<TRAN_DATE>&CheckString=<CHECK_STRING>&Tds2TransResult=C&Tds2TransResultReason=01&Tds2ChallengeUrl=https://<HOST>/payment/Tds2Challenge?tds2TransID=<TDS2_TRANS_ID>&Tds2TransID=<TDS2_TRANS_ID>
+  recorded_at: Thu, 24 Jul 2025 23:15:18 GMT
+recorded_with: VCR 6.3.1

data/fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_secure_tran_2_completes_payment_after_3DS2_0_challenge_verification.yml

@@ -0,0 +1,33 @@
+---
+http_interactions:
+- request:
+    method: post
+    uri: https://<HOST>/payment/SecureTran2.idPass
+    body:
+      encoding: UTF-8
+      string: AccessID=<ACCESS_ID>&AccessPass=<ACCESS_PASS>
+    headers:
+      Accept:
+      - "*/*"
+      Accept-Encoding:
+      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
+      Content-Type:
+      - application/x-www-form-urlencoded
+      User-Agent:
+      - Ruby
+  response:
+    status:
+      code: 200
+      message: OK
+    headers:
+      Content-Type:
+      - text/plain; charset=shift_jis
+      Date:
+      - Thu, 24 Jul 2025 23:15:18 GMT
+      Server:
+      - Apache
+    body:
+      encoding: UTF-8
+      string: OrderID=<ORDER_ID>&Forward=<FORWARD>&Method=1&PayTimes=&Approve=<APPROVE>&TranID=<TRAN_ID>&TranDate=<TRAN_DATE>&CheckString=<CHECK_STRING>
+  recorded_at: Thu, 24 Jul 2025 23:15:18 GMT
+recorded_with: VCR 6.3.1

data/fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_tds2_auth_executes_3DS2_0_authentication.yml

@@ -0,0 +1,33 @@
+---
+http_interactions:
+- request:
+    method: post
+    uri: https://<HOST>/payment/Tds2Auth.idPass
+    body:
+      encoding: UTF-8
+      string: AccessID=<ACCESS_ID>&AccessPass=<ACCESS_PASS>&Tds2Param=<TDS2_PARAM>&ShopID=<SHOP_ID>&ShopPass=<SHOP_PASS>
+    headers:
+      Accept:
+      - "*/*"
+      Accept-Encoding:
+      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
+      Content-Type:
+      - application/x-www-form-urlencoded
+      User-Agent:
+      - Ruby
+  response:
+    status:
+      code: 200
+      message: OK
+    headers:
+      Content-Type:
+      - text/plain; charset=shift_jis
+      Date:
+      - Thu, 24 Jul 2025 23:15:18 GMT
+      Server:
+      - Apache
+    body:
+      encoding: UTF-8
+      string: OrderID=<ORDER_ID>&Forward=<FORWARD>&Method=1&PayTimes=&Approve=&TranID=<TRAN_ID>&TranDate=<TRAN_DATE>&CheckString=<CHECK_STRING>&Tds2TransResult=Y&Tds2TransResultReason=&Tds2ChallengeUrl=https://<HOST>/payment/Tds2Challenge?tds2TransID=<TDS2_TRANS_ID>
+  recorded_at: Thu, 24 Jul 2025 23:15:18 GMT
+recorded_with: VCR 6.3.1

data/fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_tds2_result_gets_3DS2_0_authentication_result.yml

@@ -0,0 +1,33 @@
+---
+http_interactions:
+- request:
+    method: post
+    uri: https://<HOST>/payment/Tds2Result.idPass
+    body:
+      encoding: UTF-8
+      string: AccessID=<ACCESS_ID>&AccessPass=<ACCESS_PASS>&ShopID=<SHOP_ID>&ShopPass=<SHOP_PASS>
+    headers:
+      Accept:
+      - "*/*"
+      Accept-Encoding:
+      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
+      Content-Type:
+      - application/x-www-form-urlencoded
+      User-Agent:
+      - Ruby
+  response:
+    status:
+      code: 200
+      message: OK
+    headers:
+      Content-Type:
+      - text/plain; charset=shift_jis
+      Date:
+      - Thu, 24 Jul 2025 23:15:18 GMT
+      Server:
+      - Apache
+    body:
+      encoding: UTF-8
+      string: OrderID=<ORDER_ID>&Forward=<FORWARD>&Method=1&PayTimes=&Approve=&TranID=<TRAN_ID>&TranDate=<TRAN_DATE>&CheckString=<CHECK_STRING>&Tds2TransResult=Y&Tds2TransResultReason=
+  recorded_at: Thu, 24 Jul 2025 23:15:18 GMT
+recorded_with: VCR 6.3.1

data/gmo.gemspec

@@ -28,4 +28,5 @@ Gem::Specification.new do |gem|
   gem.add_development_dependency "rake"
   gem.add_development_dependency "vcr"
   gem.add_development_dependency "webmock"
+  gem.add_development_dependency "ostruct"
 end

data/lib/gmo/const.rb

@@ -20,7 +20,7 @@ module GMO
       order_id:    '3'
     }
 
-    INPUT_PARAMS = {
+    BASE_INPUT_PARAMS = {
       :access_id             => "AccessID",
       :access_pass           => "AccessPass",
       :account_name          => "Account_Name",
@@ -37,11 +37,13 @@ module GMO
       :auth_code_2           => "Auth_Code2",
       :auth_code_3           => "Auth_Code3",
       :amount                => "Amount",
+      :app_mode              => "AppMode",
       :bank_code             => "Bank_Code",
       :bank_id               => "Bank_ID",
       :branch_code           => "Branch_Code",
       :branch_code_jp        => "Branch_Code_Jpbank",
       :call_back_url         => "Call_Back_Url",
+      :callback_type         => "CallbackType",
       :cancel_amount         => "CancelAmount",
       :cancel_tax            => "CancelTax",
       :card_name             => "CardName",
@@ -156,7 +158,55 @@ module GMO
       :suica_add_info_4      => "SuicaAddInfo4",
       :tax                   => "Tax",
       :td_flag               => "TdFlag",
+      :tds2_type             => "Tds2Type",
+      :td_required           => "TdRequired",
       :td_tenant_name        => "TdTenantName",
+      :tds2_ch_acc_change    => "Tds2ChAccChange",
+      :tds2_ch_acc_date      => "Tds2ChAccDate",
+      :tds2_ch_acc_pw_change => "Tds2ChAccPwChange",
+      :tds2_nb_purchase_account => "Tds2NbPurchaseAccount",
+      :tds2_param            => "Tds2Param",
+      :tds2_payment_acc_age  => "Tds2PaymentAccAge",
+      :tds2_provision_attempts_day => "Tds2ProvisionAttemptsDay",
+      :tds2_ship_address_usage => "Tds2ShipAddressUsage",
+      :tds2_ship_name_ind    => "Tds2ShipNameInd",
+      :tds2_suspicious_acc_activity => "Tds2SuspiciousAccActivity",
+      :tds2_txn_activity_day => "Tds2TxnActivityDay",
+      :tds2_txn_activity_year => "Tds2TxnActivityYear",
+      :tds2_3ds_req_auth_data => "Tds2ThreeDSReqAuthData",
+      :tds2_3ds_req_auth_method => "Tds2ThreeDSReqAuthMethod",
+      :tds2_3ds_req_auth_timestamp => "Tds2ThreeDSReqAuthTimestamp",
+      :tds2_addr_match       => "Tds2AddrMatch",
+      :tds2_bill_addr_city   => "Tds2BillAddrCity",
+      :tds2_bill_addr_country => "Tds2BillAddrCountry",
+      :tds2_bill_addr_line1  => "Tds2BillAddrLine1",
+      :tds2_bill_addr_line2  => "Tds2BillAddrLine2",
+      :tds2_bill_addr_line3  => "Tds2BillAddrLine3",
+      :tds2_bill_addr_post_code => "Tds2BillAddrPostCode",
+      :tds2_bill_addr_state  => "Tds2BillAddrState",
+      :tds2_email            => "Tds2Email",
+      :tds2_home_phone_cc    => "Tds2HomePhoneCC",
+      :tds2_home_phone_subscriber => "Tds2HomePhoneSubscriber",
+      :tds2_mobile_phone_cc  => "Tds2MobilePhoneCC",
+      :tds2_mobile_phone_subscriber => "Tds2MobilePhoneSubscriber",
+      :tds2_work_phone_cc    => "Tds2WorkPhoneCC",
+      :tds2_work_phone_subscriber => "Tds2WorkPhoneSubscriber",
+      :tds2_ship_addr_city   => "Tds2ShipAddrCity",
+      :tds2_ship_addr_country => "Tds2ShipAddrCountry",
+      :tds2_ship_addr_line1  => "Tds2ShipAddrLine1",
+      :tds2_ship_addr_line2  => "Tds2ShipAddrLine2",
+      :tds2_ship_addr_line3  => "Tds2ShipAddrLine3",
+      :tds2_ship_addr_post_code => "Tds2ShipAddrPostCode",
+      :tds2_ship_addr_state  => "Tds2ShipAddrState",
+      :tds2_delivery_email_address => "Tds2DeliveryEmailAddress",
+      :tds2_delivery_time_frame => "Tds2DeliveryTimeframe",
+      :tds2_gift_card_amount => "Tds2GiftCardAmount",
+      :tds2_gift_card_count  => "Tds2GiftCardCount",
+      :tds2_gift_card_curr   => "Tds2GiftCardCurr",
+      :tds2_pre_order_date   => "Tds2PreOrderDate",
+      :tds2_pre_order_purchase_ind => "Tds2PreOrderPurchaseInd",
+      :tds2_reorder_items_ind => "Tds2ReorderItemsInd",
+      :tds2_ship_ind         => "Tds2ShipInd",
       :tel_no                => "TelNo",
       :token                 => "Token",
       :token_seq             => "TokenSeq",
@@ -176,6 +226,21 @@ module GMO
       :trade_client_mail_address => "TradeClientMailAddress"
     }.freeze
 
+    # NOTE: 決済方法によってはcaseに揺らぎがあるのでここで上書きする
+    PAYMENT_SPECIFIC_PARAMS = {
+      "ExecTran.idPass" => {
+        ret_url: "RetUrl" # NOTE: 3Dセキュア認証後にお戻しする加盟店様側のURLになります。
+      },
+    }.freeze
+
+    def self.input_params(api_method_name)
+      if PAYMENT_SPECIFIC_PARAMS.key?(api_method_name)
+        BASE_INPUT_PARAMS.dup.merge!(PAYMENT_SPECIFIC_PARAMS[api_method_name])
+      else
+        BASE_INPUT_PARAMS
+      end
+    end
+
     API_ERROR_MESSAGES_EN = {
       '000' => 'Token acquisition completed normally',
       '100' => 'Card number Required check error',

data/lib/gmo/http_services.rb

@@ -44,7 +44,8 @@ module GMO
                 headers = { "Content-Type" => "application/json" }
                 h.post(path, args.to_json, headers)
               else
-                h.post(path, encode_params(args))
+                headers = { "Content-Type" => "application/x-www-form-urlencoded" }
+                h.post(path, encode_params(args), headers)
               end
             else
               h.get("#{path}?#{encode_params(args)}")

data/lib/gmo/shop_api.rb

@@ -691,6 +691,39 @@ module GMO
         post_request name, options
       end
 
+      ###################################################
+      # 3DS2.0 対応
+      ###################################################
+
+      # 4.3.1.7 3DS2.0認証実行(Tds2Auth)
+      # DS2.0認証を実行します。
+      # 3DS2.0認証初期化URL(RedirectUrl)のコールバックを受けたタイミングで本処理を実行してください。
+      def tds2_auth(options = {})
+        name = "Tds2Auth.idPass"
+        required = [:access_id, :access_pass, :tds2_param]
+        assert_required_options(required, options)
+        post_request name, options
+      end
+
+      # 4.3.1.8 3DS2.0認証結果取得(Tds2Result)
+      # 3DS2.0認証の最終的な認証結果を取得します。
+      # 3DS2.0認証チャレンジURL(ChallengeUrl)のコールバックを受けたタイミングで本処理を実行してください。
+      def tds2_result(options = {})
+        name = "Tds2Result.idPass"
+        required = [:access_id, :access_pass]
+        assert_required_options(required, options)
+        post_request name, options
+      end
+
+      # 4.3.1.12 3DS2.0認証後決済実行(SecureTran2)
+      # 3DS2.0サービスの結果を解析し、その情報を使用してカード会社と通信を行い決済を実施して結果を返します。
+      def secure_tran_2(options = {})
+        name = "SecureTran2.idPass"
+        required = [:access_id, :access_pass]
+        assert_required_options(required, options)
+        post_request name, options
+      end
+
       private
 
         def api_call(name, args = {}, verb = "post", options = {})

data/lib/gmo/version.rb

@@ -1,3 +1,3 @@
 module GMO
-  VERSION = "0.5.7"
+  VERSION = "0.5.9"
 end

data/lib/gmo.rb

@@ -48,6 +48,13 @@ module GMO
           key_values = result.body.to_s.split('&').map { |str| str.split('=', 2) }.flatten
           response = Hash[*key_values]
         end
+        # Transform the redirect_url
+        # "ACS=2&RedirectUrl=https://manage.tds2gw.gmopg.jp/api/v2/brw/callback?transId=6e48e31f-2940-48e1-a702-ebba2f3373ee&t=dccc8a7ed85372c9accff576bff59b3a"
+        # => { "ACS" => "2", RedirectUrl => "https://manage.tds2gw.gmopg.jp/api/v2/brw/callback?transId=6e48e31f-2940-48e1-a702- ebba2f3373ee&t=dccc8a7ed85372c9accff576bff59b3a" }
+        if response['RedirectUrl'] && response['RedirectUrl'] != '' && response['t'] && response['t'] != '' && response.keys.index('RedirectUrl') + 1 == response.keys.index('t')
+          response['RedirectUrl'] = response['RedirectUrl'] + '&t=' + response['t']
+          response.delete('t')
+        end
         # converting to UTF-8
         body = response = Hash[response.map { |k,v| [k, NKF.nkf('-S -w',v)] }]
         # Check for errors if provided a error_checking_block
@@ -70,7 +77,7 @@ module GMO
       # gmo.post_request("EntryTran.idPass", {:foo => "bar"})
       # POST /EntryTran.idPass with params foo=bar
       def post_request(name, args = {}, options = {})
-        args = associate_options_to_gmo_params args
+        args = associate_options_to_gmo_params(name, args)
         api_call(name, args, "post", options)
       end
       alias :post! :post_request
@@ -82,8 +89,9 @@ module GMO
           raise ArgumentError, "Required #{missing.join(', ')} were not provided." unless missing.empty?
         end
 
-        def associate_options_to_gmo_params(options)
-          Hash[options.map { |k, v| [GMO::Const::INPUT_PARAMS[k], v] }]
+        def associate_options_to_gmo_params(api_method_name, options)
+          params = GMO::Const.input_params(api_method_name)
+          Hash[options.map { |k, v| [params[k], v] }]
         end
 
         def api_call(*args)

data/spec/gmo/api_spec.rb

@@ -29,4 +29,32 @@ describe "GMO::Payment::API" do
     end
   end
 
+  describe "#associate_options_to_gmo_params" do
+    let(:service) { GMO::Payment::API.new() }
+
+    context "with ExecTran.idPass" do
+      it "converts access_id and access_pass normally" do
+        options = {
+          access_id: "test_access_id",
+          access_pass: "test_access_pass",
+          ret_url: "https://example.com/callback"
+        }
+        result = service.send(:associate_options_to_gmo_params, "ExecTran.idPass", options)
+        expect(result).to eq({
+          "AccessID" => "test_access_id",
+          "AccessPass" => "test_access_pass",
+          "RetUrl" => "https://example.com/callback"
+        })
+      end
+    end
+
+    context "with other API methods" do
+      it "converts ret_url to RetURL for standard cases" do
+        options = { ret_url: "https://example.com/callback" }
+        result = service.send(:associate_options_to_gmo_params, "AnotherAPI", options)
+        expect(result).to eq({ "RetURL" => "https://example.com/callback" })
+      end
+    end
+  end
+
 end

data/spec/gmo/net_http_service_spec.rb

@@ -0,0 +1,88 @@
+require 'spec_helper'
+
+class FakeNetHTTPService
+  include GMO::NetHTTPService
+end
+
+describe "GMO::NetHTTPService" do
+
+  describe "#make_request" do
+    let(:mock_http) { double("Net::HTTP") }
+    let(:mock_http_session) { double("Net::HTTP session") }
+    let(:mock_response) { double("Net::HTTPResponse", code: "200", body: "AccessID=test123") }
+
+    before do
+      allow(Net::HTTP).to receive(:new).and_return(mock_http)
+      allow(mock_http).to receive(:use_ssl=)
+      allow(mock_http).to receive(:start).and_yield(mock_http_session)
+    end
+
+    describe "Content-Type header for form-encoded POST requests" do
+      it "sets Content-Type to application/x-www-form-urlencoded" do
+        expect(mock_http_session).to receive(:post) do |path, body, headers|
+          expect(path).to eq("/payment/EntryTran.idPass")
+          expect(headers["Content-Type"]).to eq("application/x-www-form-urlencoded")
+          mock_response
+        end
+
+        FakeNetHTTPService.make_request(
+          "/payment/EntryTran.idPass",
+          { "ShopID" => "shop123", "OrderID" => "order456" },
+          "post",
+          { :host => "example.com" }
+        )
+      end
+
+      it "properly encodes form parameters" do
+        expect(mock_http_session).to receive(:post) do |path, body, headers|
+          expect(path).to eq("/payment/EntryTran.idPass")
+          expect(body).to include("ShopID=")
+          expect(body).to include("OrderID=")
+          expect(headers["Content-Type"]).to eq("application/x-www-form-urlencoded")
+          mock_response
+        end
+
+        FakeNetHTTPService.make_request(
+          "/payment/EntryTran.idPass",
+          { "ShopID" => "shop123", "OrderID" => "order456" },
+          "post",
+          { :host => "example.com" }
+        )
+      end
+    end
+
+    describe "Content-Type header for JSON POST requests" do
+      it "sets Content-Type to application/json for .json paths" do
+        expect(mock_http_session).to receive(:post) do |path, body, headers|
+          expect(path).to eq("/payment/EntryTran.json")
+          expect(headers["Content-Type"]).to eq("application/json")
+          mock_response
+        end
+
+        FakeNetHTTPService.make_request(
+          "/payment/EntryTran.json",
+          { "ShopID" => "shop123" },
+          "post",
+          { :host => "example.com" }
+        )
+      end
+    end
+
+    describe "GET requests" do
+      it "appends parameters to query string without Content-Type header" do
+        expect(mock_http_session).to receive(:get) do |path_with_query|
+          expect(path_with_query).to include("/payment/SearchTrade.idPass?")
+          expect(path_with_query).to include("ShopID=")
+          mock_response
+        end
+
+        FakeNetHTTPService.make_request(
+          "/payment/SearchTrade.idPass",
+          { "ShopID" => "shop123" },
+          "get",
+          { :host => "example.com" }
+        )
+      end
+    end
+  end
+end

data/spec/gmo/remittance_api_spec.rb

@@ -1,6 +1,7 @@
 # Encoding: UTF-8
 
 require "spec_helper"
+require "ostruct"
 
 describe "GMO::Payment::RemittanceAPI" do
 

data/spec/gmo/shop_api_spec.rb

@@ -328,6 +328,28 @@ describe "GMO::Payment::ShopAPI" do
       }.should_not raise_error("Required card_no, expire were not provided.")
     end
 
+    it "converts ret_url to RetUrl for ExecTran.idPass" do
+      # Test that ret_url is converted to RetUrl by associate_options_to_gmo_params
+      actual_params = nil
+      allow(@service).to receive(:api_call) do |name, args, method, options|
+        actual_params = args
+        {}
+      end
+
+      @service.exec_tran({
+        :order_id      => "test_order",
+        :access_id     => "test_access",
+        :access_pass   => "test_pass",
+        :method        => 1,
+        :pay_times     => 1,
+        :card_no       => "4111111111111111",
+        :expire        => "1405",
+        :ret_url       => "https://example.com/3d-secure-callback"
+      })
+
+      expect(actual_params).to include("RetUrl" => "https://example.com/3d-secure-callback")
+    end
+
     context "parameter contains Japanese characters" do
       before { require "kconv" unless defined?(Kconv) }
 
@@ -1170,4 +1192,94 @@ describe "GMO::Payment::ShopAPI" do
     end
   end
 
+  describe "#exec_tran with 3DS2.0" do
+    it "returns 3DS2.0 challenge flow response", :vcr do
+      result = @service.exec_tran({
+        :access_id => "test_access_7ed782e0e10604b31258e0d69ee3e887",
+        :access_pass => "test_pass_7be5e8786e2e959d7b48ad708634dc7e",
+        :order_id => "TEST_3DS_20250724231518",
+        :method => 1,
+        :pay_times => "",
+        :card_no => "4111111111111111",
+        :expire => "2512",
+        :member_id => "TEST_MEMBER_5df458bc",
+        :card_seq => 0,
+        :tds_type => 2,
+        :tds2_type => 2,
+        :call_back_url => "https://example.com/callback",
+        :tds2_ret_url => "https://example.com/3ds/return"
+      })
+
+      result["OrderID"].should == "<ORDER_ID>"
+      result["Forward"].should == "<FORWARD>"
+      result["Method"].should == "1"
+      result["TranID"].should == "<TRAN_ID>"
+      result["TranDate"].should == "<TRAN_DATE>"
+      result["Tds2TransResult"].should == "C"
+      result["Tds2TransResultReason"].should == "01"
+      result["Tds2ChallengeUrl"].should include("/payment/Tds2Challenge")
+      result["Tds2TransID"].should == "<TDS2_TRANS_ID>"
+    end
+  end
+
+  describe "#tds2_auth" do
+    it "executes 3DS2.0 authentication", :vcr do
+      result = @service.tds2_auth({
+        :access_id => "test_access_7ed782e0e10604b31258e0d69ee3e887",
+        :access_pass => "test_pass_7be5e8786e2e959d7b48ad708634dc7e",
+        :tds2_param => "dummy_tds2_param"
+      })
+
+      result["OrderID"].should == "<ORDER_ID>"
+      result["Forward"].should == "<FORWARD>"
+      result["Method"].should == "1"
+      result["PayTimes"].should == ""
+      result["Approve"].should == ""
+      result["TranID"].should == "<TRAN_ID>"
+      result["TranDate"].should == "<TRAN_DATE>"
+      result["CheckString"].should == "<CHECK_STRING>"
+      result["Tds2TransResult"].should == "Y"  # Authentication successful
+      result["Tds2TransResultReason"].should == ""
+      result["Tds2ChallengeUrl"].should_not be_nil
+      result["Tds2ChallengeUrl"].should include("/payment/Tds2Challenge")
+    end
+  end
+
+  describe "#tds2_result" do
+    it "gets 3DS2.0 authentication result", :vcr do
+      result = @service.tds2_result({
+        :access_id => "test_access_7ed782e0e10604b31258e0d69ee3e887",
+        :access_pass => "test_pass_7be5e8786e2e959d7b48ad708634dc7e"
+      })
+
+      result["OrderID"].should == "<ORDER_ID>"
+      result["Forward"].should == "<FORWARD>"
+      result["Method"].should == "1"
+      result["PayTimes"].should == ""
+      result["Approve"].should == ""
+      result["TranID"].should == "<TRAN_ID>"
+      result["TranDate"].should == "<TRAN_DATE>"
+      result["CheckString"].should == "<CHECK_STRING>"
+      result["Tds2TransResult"].should == "Y"  # Authentication successful
+      result["Tds2TransResultReason"].should == ""
+    end
+  end
+
+  describe "#secure_tran_2" do
+    it "completes payment after 3DS2.0 challenge verification", :vcr do
+      result = @service.secure_tran_2({
+        :access_id => "test_access_7ed782e0e10604b31258e0d69ee3e887",
+        :access_pass => "test_pass_7be5e8786e2e959d7b48ad708634dc7e"
+      })
+
+      result["OrderID"].should == "<ORDER_ID>"
+      result["Forward"].should == "<FORWARD>"
+      result["Method"].should == "1"
+      result["PayTimes"].should == ""
+      result["Approve"].should == "<APPROVE>"
+      result["TranID"].should == "<TRAN_ID>"
+      result["TranDate"].should == "<TRAN_DATE>"
+      result["CheckString"].should == "<CHECK_STRING>"
+    end
+  end
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: gmo
 version: !ruby/object:Gem::Version
-  version: 0.5.7
+  version: 0.5.9
 platform: ruby
 authors:
 - Tatsuo Kaniwa
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-06-14 00:00:00.000000000 Z
+date: 2026-02-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rack
@@ -108,6 +108,20 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: ostruct
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 description: Ruby client library for the GMO Payment Platform.
 email:
 - tatsuo@kaniwa.biz
@@ -177,13 +191,17 @@ files:
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_exec_tran_rakuten_id_gets_data_about_a_transaction.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_exec_tran_suica_gets_data_about_a_transaction.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_exec_tran_virtualaccount_gets_data_about_a_transaction.yml
+- fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_exec_tran_with_3DS2_0_returns_3DS2_0_challenge_flow_response.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_refund_tran_brandtoken_gets_data_about_a_transaction.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_sales_tran_brandtoken_gets_data_about_a_transaction.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_search_trade_gets_data_about_order.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_search_trade_got_error_if_missing_options.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_search_trade_multi_gets_data_about_order.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_search_trade_multi_got_error_if_missing_options.yml
+- fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_secure_tran_2_completes_payment_after_3DS2_0_challenge_verification.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_secure_tran_gets_data_about_a_transaction.yml
+- fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_tds2_auth_executes_3DS2_0_authentication.yml
+- fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_tds2_result_gets_3DS2_0_authentication_result.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/_void_tran_brandtoken_gets_data_about_order.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAPI/secure_tran_request_params.yml
 - fixtures/vcr_cassettes/GMO_Payment_ShopAndSiteAPI/_exec_tran_brandtoken_got_data.yml
@@ -218,6 +236,7 @@ files:
 - spec/gmo/errors_spec.rb
 - spec/gmo/http_service_spec.rb
 - spec/gmo/json_spec.rb
+- spec/gmo/net_http_service_spec.rb
 - spec/gmo/remittance_api_spec.rb
 - spec/gmo/shop_and_site_api_spec.rb
 - spec/gmo/shop_api_spec.rb
@@ -251,7 +270,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.4.1
+rubygems_version: 3.4.10
 signing_key:
 specification_version: 4
 summary: 'GMO Payment API client: Ruby client library for the GMO Payment Platform.'