jonathantron-paypal 3.0.0pre

data/lib/paypal/helpers/rails.rb

@@ -0,0 +1,19 @@
+module Paypal
+  module Helpers
+    module Rails
+      # Convenience helper. Can replace <%= form_tag Paypal::Notification.ipn_url %>
+      # takes optional url parameter, default is Paypal::Notification.ipn_url
+      def paypal_form_tag(url = Paypal::Config.ipn_url, options = {})
+        form_tag(url, options)
+      end
+
+      def paypal_form_tag(url = Paypal::Config.ipn_url, options = {}, &block)
+        if block
+          concat(form_tag(url, options)+capture(&block)+"</form>", block.binding)
+        else
+          form_tag(url, options)
+        end
+      end
+    end
+  end
+end

data/lib/paypal/notification.rb

@@ -0,0 +1,188 @@
+require 'rack'
+require 'net/http'
+
+module Paypal
+  class NoDataError < StandardError; end
+  
+  # Parser and handler for incoming Instant payment notifications from paypal. 
+  # The Example shows a typical handler in a rails application. Note that this
+  # is an example, please read the Paypal API documentation for all the details
+  # on creating a safe payment controller.
+  #
+  # Example (Sinatra)
+  #   def raw_post
+  #     request.env["rack.input"].read
+  #   end
+  #
+  #   post "/paypal_ipn" do
+  #     notify = Paypal::Notification.new(raw_post)
+  #
+  #     order = Order.find(notify.item_id)
+  #
+  #     if notify.acknowledge
+  #       begin
+  #         if notify.complete? and order.total == notify.amount and notify.business == 'sales@myshop.com'
+  #             order.status = 'success'
+  #
+  #             shop.ship(order)
+  #           else
+  #             logger.error("Failed to verify Paypal's notification, please investigate")
+  #           end
+  #
+  #         rescue => e
+  #           order.status        = 'failed'
+  #           raise
+  #         ensure
+  #           order.save
+  #         end
+  #       end
+  #
+  #       nil
+  #     end
+  #   end
+  #
+  # Example (Rails)
+  #  
+  #   class BackendController < ApplicationController
+  #   
+  #     def paypal_ipn
+  #       notify = Paypal::Notification.new(request.raw_post)
+  #   
+  #       order = Order.find(notify.item_id)
+  #     
+  #       if notify.acknowledge 
+  #         begin
+  #           
+  #           if notify.complete? and order.total == notify.amount and notify.business == 'sales@myshop.com'
+  #             order.status = 'success' 
+  #             
+  #             shop.ship(order)
+  #           else
+  #             logger.error("Failed to verify Paypal's notification, please investigate")
+  #           end
+  #   
+  #         rescue => e
+  #           order.status        = 'failed'      
+  #           raise
+  #         ensure
+  #           order.save
+  #         end
+  #       end
+  #   
+  #       render :nothing
+  #     end
+  #   end
+  class Notification
+    attr_accessor :params
+    attr_accessor :raw
+
+    # Creates a new paypal object. Pass the raw html you got from paypal in. 
+    # In a rails application this looks something like this
+    # 
+    #   def paypal_ipn
+    #     paypal = Paypal::Notification.new(request.raw_post)
+    #     ...
+    #   end
+    def initialize(post)
+      raise NoDataError if post.to_s.empty?
+
+      @params  = {}
+      @raw     = ""
+
+      parse(post)
+    end
+
+    # Transaction statuses
+    def canceled_reversal?
+      status == :Canceled_Reversal
+    end
+
+    def completed?
+      status == :Completed
+    end
+
+    def denied?
+      status == :Denied
+    end
+
+    def expired?
+      status == :Expired
+    end
+
+    def failed?
+      status == :Failed
+    end
+
+    def pending?
+      status == :Pending
+    end
+
+    def processed?
+      status == :Processed
+    end
+
+    def refunded?
+      status == :Refunded
+    end
+
+    def reversed?
+      status == :Reversed
+    end
+
+    def voided?
+      status == :Voided
+    end
+
+    # Acknowledge the transaction to paypal. This method has to be called after a new 
+    # ipn arrives. Paypal will verify that all the information we received are correct and will return a 
+    # ok or a fail. 
+    # 
+    # Example:
+    # 
+    #   def paypal_ipn
+    #     notify = PaypalNotification.new(request.raw_post)
+    #
+    #     if notify.acknowledge 
+    #       ... process order ... if notify.complete?
+    #     else
+    #       ... log possible hacking attempt ...
+    #     end
+    def acknowledge
+      payload = raw
+      
+      uri = URI.parse(Paypal::Config.ipn_url)
+      request = Net::HTTP::Post.new(Paypal::Config.ipn_validation_path)
+      request['Content-Length'] = "#{payload.size}"
+      request['User-Agent']     = "paypal ruby -- http://github.com/JonathanTron/paypal"
+      
+      http = Net::HTTP.new(uri.host, uri.port)
+
+      http.verify_mode    = OpenSSL::SSL::VERIFY_NONE unless @ssl_strict
+      http.use_ssl        = true
+
+      request = http.request(request, payload)
+        
+      raise StandardError.new("Faulty paypal result: #{request.body}") unless ["VERIFIED", "INVALID"].include?(request.body)
+      
+      request.body == "VERIFIED"
+    end
+    
+    def method_missing(method, *args)
+      params[method.to_s] || super
+    end
+    
+    private
+
+    def status
+      @status ||= (params['payment_status'] ? params['payment_status'].to_sym : nil)
+    end
+    
+    # Take the posted data and move the relevant data into a hash
+    def parse(post)
+      @raw = post
+      self.params = Rack::Utils.parse_query(post)
+      # Rack allows duplicate keys in queries, we need to use only the last value here
+      self.params.each{|k,v| self.params[k] = v.last if v.respond_to?(:last)}
+    end
+  end
+end

data/lib/paypal/rails.rb

@@ -0,0 +1,5 @@
+require 'active_support'
+require File.join(File.dirname(__FILE__),'helpers', '/rails')
+
+ActionView::Base.send(:include, Paypal::Helpers::Common)
+ActionView::Base.send(:include, Paypal::Helpers::Rails)

data/lib/paypal/version.rb

@@ -0,0 +1,3 @@
+module Paypal
+  VERSION = "3.0.0pre"
+end

data/lib/paypal.rb

@@ -0,0 +1,8 @@
+require 'cgi'
+require 'net/http'
+require 'net/https'
+
+require "paypal/version"
+require "paypal/config"
+require "paypal/notification"
+require "paypal/helpers/common"

data/misc/multiruby.sh

@@ -0,0 +1,7 @@
+#!/bin/bash
+
+RUBYOPT=""
+
+for i in 1.9.1 ree 1.8.6; do
+  rvm $i && echo `ruby -v` && bundle install > /dev/null && bundle exec rake spec && bundle show
+done

data/spec/config_spec.rb

@@ -0,0 +1,154 @@
+require "spec_helper"
+
+describe Paypal::Config do
+  after do
+    Paypal.class_eval do
+      remove_const :Config if const_defined?(:Config)
+    end
+    load "paypal/config.rb"
+  end
+  
+  describe "mode" do
+    it "should be :sandbox by default" do
+      Paypal::Config.mode.should eql(:sandbox)
+    end
+    
+    it "should accept :sandbox" do
+      lambda {
+        Paypal::Config.mode = :sandbox
+      }.should_not raise_error
+    end
+
+    it "should accept :production" do
+      lambda {
+        Paypal::Config.mode = :production
+      }.should_not raise_error
+    end
+
+    it "should not accept something different than :production or :sandbox" do
+      lambda {
+        Paypal::Config.mode = :demo
+      }.should raise_error(ArgumentError)
+    end
+  end
+  
+  describe "when setting mode to sandbox" do
+    before do
+      Paypal::Config.mode = :sandbox
+    end
+    
+    it "should be in :sandbox mode" do
+      Paypal::Config.mode.should eql(:sandbox)
+    end
+
+    it "should have ipn url for sandbox" do
+      Paypal::Config.ipn_url.should eql("https://www.sandbox.paypal.com/cgi-bin/webscr")
+    end
+    
+    it "should have the ipn validation path for sandbox" do
+      Paypal::Config.ipn_validation_path.should eql("/cgi-bin/webscr?cmd=_notify-validate")
+    end
+
+    it "should have the ipn validation url for sandbox" do
+      Paypal::Config.ipn_validation_url.should eql("https://www.sandbox.paypal.com/cgi-bin/webscr?cmd=_notify-validate")
+    end
+    
+    it "should have paypal cert for sandbox" do
+      Paypal::Config.paypal_cert.should eql(
+"-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----")
+    end
+    
+    it "should allow setting a new sandbox cert" do
+      lambda {
+        Paypal::Config.paypal_sandbox_cert = "TEST"
+      }.should_not raise_error
+      Paypal::Config.paypal_cert.should eql("TEST")
+    end
+  end
+  
+  describe "when setting mode to :production" do
+    before do
+      Paypal::Config.mode = :production
+    end
+    
+    it "should be in :production mode" do
+      Paypal::Config.mode.should eql(:production)
+    end
+
+    it "should have ipn url for production" do
+      Paypal::Config.ipn_url.should eql("https://www.paypal.com/cgi-bin/webscr")
+    end
+    
+    it "should have the ipn validation path for production" do
+      Paypal::Config.ipn_validation_path.should eql("/cgi-bin/webscr?cmd=_notify-validate")
+    end
+
+    it "should have the ipn validation url for production" do
+      Paypal::Config.ipn_validation_url.should eql("https://www.paypal.com/cgi-bin/webscr?cmd=_notify-validate")
+    end
+
+    describe "when paypal_production_cert was not set" do
+      before do
+        @old_cert, Paypal::Config.paypal_production_cert = Paypal::Config.paypal_production_cert, nil
+      end
+      
+      after do
+        Paypal::Config.paypal_production_cert = @old_cert
+      end
+      
+      it "should raise an error" do
+        lambda {
+          Paypal::Config.paypal_cert
+        }.should raise_error(StandardError)
+      end
+    end
+
+    describe "when paypal_production_cert was set" do
+      before do
+        @old_cert, Paypal::Config.paypal_production_cert = Paypal::Config.paypal_production_cert, "TEST"
+      end
+      
+      after do
+        Paypal::Config.paypal_production_cert = @old_cert
+      end
+      
+      it "should not raise an error" do
+        lambda {
+          Paypal::Config.paypal_cert
+        }.should_not raise_error(StandardError)
+      end
+
+      it "should use the paypal production certificate" do
+        Paypal::Config.paypal_cert.should eql("TEST")
+      end
+    end
+
+    it "should allow setting a new production cert" do
+      lambda {
+        Paypal::Config.paypal_production_cert = "TEST"
+      }.should_not raise_error
+      Paypal::Config.paypal_cert.should eql("TEST")
+    end
+  end
+end

data/spec/fixtures/business_cert.pem

@@ -0,0 +1,19 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/spec/fixtures/business_key.pem

@@ -0,0 +1,15 @@
+-----BEGIN RSA PRIVATE KEY-----
+MIICXgIBAAKBgQDGh5R2Ro3HDe6dsVeq6Pk1nN+BJ0VoV0XtYPc/2MMYSgNyLvXr
+a1PJvAW3YRKQUE7/yDqexBu5IlFnHcmaeYBEJ+r1//lSMryCRAyIslm8ZNkwa+qH
+29DfHcHm4TNU+Ge0b6akgEFo26hZzd9iFkfEs5p2eR5f6JnzrCCNeK1pgwIDAQAB
+AoGBAKI289K0kXHc62TEG/rVQ5NP67vPB8Ja1RNB0KTFi5uUFj69KklCuAK09ALD
+eXSbegE7bNJ/MJvT86mKyEjFEEyvpupEy7uzqZtWJUWHkDZTN2nyiz+kyRvhzldi
+DlMOA0S3sNF6il94Chjb+F6/b+8d6cd8zi86tN5NJ0RLBiJ5AkEA6RrJxclKjPIb
+GEtQ7W/hvhne2fx+F/mXdUg4TXBzupk9G5fgFpB05NDrLVs8gIJisBf7h/9OQ69B
+Qvps9V4GxwJBANoHbtGQDBZDka1RSOsRubSqRMDWOYiE0KJcGmEdwoOz/zH0YcWI
+iYQRv0k/sGITDAUQW+cqMEd82zME/XR0W2UCQQCgc98FdNwLDq+V1mn7NfMGPpqG
+I+XLrPMTOMYAj/IpNEe60ZzfC0pbIm9vRgjsUFOL8MYjw5nkvyLF7sjHUJSLAkEA
+k0IB7zjDcSYh9lW4UkyeiQ+XcEdAhJxv7bkXeBCJmDqyWiMdBjW566Gw+OAzWYpT
+y/fImtE72ozR4Bu2tDkCoQJAHWVaDrzDANnUP8/xGoPxbWI8lYE+kKpyZtyTOgWm
+mXbXCGjqKRA5HcDMoNmd0+pY/3pXx5VjHOiL2UsKrSnTaQ==
+-----END RSA PRIVATE KEY-----

data/spec/helpers/common_spec.rb

@@ -0,0 +1,56 @@
+require "spec_helper"
+
+describe Paypal::Helpers::Common do
+  include Paypal::Helpers::Common
+
+  describe ".paypal_setup(item_number, amount, business, options = {})" do
+    describe "with default options" do
+      before do
+        @result = paypal_setup(1, "10.00", "trash@openhood.com")
+      end
+
+      {
+        "item_number" => "1",
+        "amount" => "10.00",
+        "currency_code" => "USD",
+        "business" => "trash@openhood.com",
+        "cmd" => "_xclick",
+        "quantity" => "1",
+        "item_number" => "1",
+        "item_name" => "Store purchase",
+        "no_shipping" => "1",
+        "no_note" => "1",
+        "charset" => "utf-8"
+      }.each do |key, value|
+        it "should include #{key} with #{value}" do
+          @result.should have_css("input[type=hidden][name=\"#{key}\"][value=\"#{value}\"]")
+        end
+      end
+    end
+
+    describe "with :business_key, :business_cert and :business_certid params filled" do
+      before do
+        @result = paypal_setup(1, "10.00", "trash@openhood.com", {
+         :business_key => File.read(File.join(File.dirname(__FILE__), "../fixtures/business_key.pem")),
+         :business_cert => File.read(File.join(File.dirname(__FILE__), "../fixtures/business_cert.pem")),
+         :business_certid => "CERTID"
+        })
+      end
+
+      it "should include cmd with _s-xclick" do
+        @result.should have_css("input[type=hidden][name=cmd][value=_s-xclick]")
+      end
+      it "should include cmd with encrypted datas" do
+        @result.should have_css("input[type=hidden][name=cmd][value*=PKCS7]")
+      end
+    end
+
+    describe "with unknown options" do
+      it "should raise an error" do
+        lambda do
+          paypal_setup(1, "10.00", "trash@openhood.com", :unknown_option => "unknown")
+        end.should raise_error(ArgumentError, "Unknown option #{[:unknown_option].inspect}")
+      end
+    end
+  end
+end

data/spec/notification_spec.rb

@@ -0,0 +1,148 @@
+require File.expand_path(File.dirname(__FILE__) + '/spec_helper')
+
+describe Paypal::Notification do
+  before do
+    Paypal::Config.mode = :sandbox
+  end
+  
+  def valid_http_raw_data
+    "mc_gross=500.00&address_status=confirmed&payer_id=EVMXCLDZJV77Q&tax=0.00&address_street=164+Waverley+Street&payment_date=15%3A23%3A54+Apr+15%2C+2005+PDT&payment_status=Completed&address_zip=K2P0V6&first_name=Tobias&mc_fee=15.05&address_country_code=CA&address_name=Tobias+Luetke&notify_version=1.7&custom=cusdata&payer_status=unverified&business=tobi%40leetsoft.com&address_country=Canada&address_city=Ottawa&quantity=1&payer_email=tobi%40snowdevil.ca&verify_sign=AEt48rmhLYtkZ9VzOGAtwL7rTGxUAoLNsuf7UewmX7UGvcyC3wfUmzJP&txn_id=6G996328CK404320L&payment_type=instant&last_name=Luetke&address_state=Ontario&receiver_email=tobi%40leetsoft.com&payment_fee=&receiver_id=UQ8PDYXJZQD9Y&txn_type=web_accept&item_name=Store+Purchase&mc_currency=CAD&item_number=&test_ipn=1&payment_gross=&shipping=0.00&invoice=myinvoice&pending_reason=mypending_reason&reason_code=myreason_code&memo=mymemo&payment_type=mypayment_type&exchange_rate=myexchange_rate"
+  end
+
+  def self.valid_parsed_raw_data
+    {"payment_gross"=>"", "receiver_id"=>"UQ8PDYXJZQD9Y", "payer_email"=>"tobi@snowdevil.ca", "address_city"=>"Ottawa", "address_country"=>"Canada", "business"=>"tobi@leetsoft.com", "address_name"=>"Tobias Luetke", "payment_status"=>"Completed", "tax"=>"0.00", "reason_code"=>"myreason_code", "receiver_email"=>"tobi@leetsoft.com", "invoice"=>"myinvoice", "verify_sign"=>"AEt48rmhLYtkZ9VzOGAtwL7rTGxUAoLNsuf7UewmX7UGvcyC3wfUmzJP", "address_street"=>"164 Waverley Street", "memo"=>"mymemo", "mc_currency"=>"CAD", "txn_type"=>"web_accept", "quantity"=>"1", "address_zip"=>"K2P0V6", "pending_reason"=>"mypending_reason", "item_name"=>"Store Purchase", "txn_id"=>"6G996328CK404320L", "address_country_code"=>"CA", "payment_fee"=>"", "address_state"=>"Ontario", "payer_status"=>"unverified", "notify_version"=>"1.7", "shipping"=>"0.00", "mc_fee"=>"15.05", "payment_date"=>"15:23:54 Apr 15, 2005 PDT", "address_status"=>"confirmed", "test_ipn"=>"1", "payment_type"=>"mypayment_type", "first_name"=>"Tobias", "last_name"=>"Luetke", "payer_id"=>"EVMXCLDZJV77Q", "mc_gross"=>"500.00", "exchange_rate"=>"myexchange_rate", "item_number"=>"", "custom"=>"cusdata"}
+  end
+  
+  describe "without data" do
+    it "should raise Paypal::NoDataError" do
+      lambda {
+        Paypal::Notification.new(nil)
+      }.should raise_error(Paypal::NoDataError)
+    end
+  end
+  
+  describe "with valid raw data" do
+    before do
+      @notification = Paypal::Notification.new(valid_http_raw_data)
+    end
+
+    it "should store raw data" do
+      @notification.raw.should eql(valid_http_raw_data)
+    end
+
+    describe "#params" do
+      it "should not be empty" do
+        @notification.params.should_not be_empty
+      end
+
+      valid_parsed_raw_data.each do |key, value|
+        it "should have #{key}=#{value}" do
+          @notification.params[key].should eql(value)
+        end
+      end
+
+      it "should have unescaped values" do
+        @notification.params["payment_date"].should eql("15:23:54 Apr 15, 2005 PDT")
+      end
+      
+      it "should include only the last value for duplicate key" do
+        @notification.params["payment_type"].should eql("mypayment_type")
+      end
+    end
+
+    it "should define method to access each query params" do
+      self.class.valid_parsed_raw_data.each do |key, _|
+        lambda {
+          @notification.send(key.to_sym)
+        }.should_not raise_error
+      end
+    end
+
+    ["Canceled_Reversal",
+    "Completed",
+    "Denied",
+    "Expired",
+    "Failed",
+    "Pending",
+    "Processed",
+    "Refunded",
+    "Reversed",
+    "Voided"].each do |status|
+      describe "when transaction payment_status = '#{status}'" do
+        it "should be #{status.downcase}" do
+          old_status, @notification.params["payment_status"] = @notification.params["payment_status"], status
+        
+          @notification.send(:"#{status.downcase}?").should be_true
+        
+          @notification.params["payment_status"] = old_status
+        end
+      end
+    end
+
+    describe "#acknowledge" do
+      before do
+        @paypal_validation_url = "https://www.sandbox.paypal.com/cgi-bin/webscr?cmd=_notify-validate"
+      end
+      
+      it "should send a post request to Paypal at #{@paypal_validation_url}" do
+        FakeWeb.register_uri(:post, @paypal_validation_url, :body => 'VERIFIED')
+        
+        lambda { @notification.acknowledge }.should_not raise_error(FakeWeb::NetConnectNotAllowedError)
+
+        FakeWeb.clean_registry
+      end
+      
+      describe "when Paypal response is VERIFIED" do
+        before do
+          FakeWeb.register_uri(:post, @paypal_validation_url, :body => 'VERIFIED')
+        end
+
+        it "should return true" do
+          @notification.acknowledge.should be(true)
+        end
+
+        after do
+          FakeWeb.clean_registry
+        end
+      end
+
+      describe "when Paypal response is INVALID" do
+        before do
+          FakeWeb.register_uri(:post, @paypal_validation_url, :body => 'INVALID')
+        end
+
+        it "should return false" do
+          @notification.acknowledge.should be(false)
+        end
+
+        after do
+          FakeWeb.clean_registry
+        end
+      end
+
+      describe "when Paypal response is not a recognize value" do
+        before do
+          FakeWeb.register_uri(:post, @paypal_validation_url, :body => 'BAD_VALUE')
+        end
+
+        it "should raise StandardError" do
+          lambda {
+            @notification.acknowledge
+          }.should raise_error(StandardError)
+        end
+        
+        it "should include body response in StandardError" do
+          begin
+            @notification.acknowledge
+          rescue StandardError => e
+            e.message.should =~ /BAD_VALUE/
+          end
+        end
+
+        after do
+          FakeWeb.clean_registry
+        end
+      end
+    end
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,40 @@
+begin
+  # Try to require the preresolved locked set of gems.
+  require ::File.expand_path('../.bundle/environment', __FILE__)
+rescue LoadError
+  # Fall back on doing an unlocked resolve at runtime.
+  require "rubygems"
+  require "bundler"
+  Bundler.setup
+end
+
+Bundler.require :default
+
+require "paypal"
+
+# Do not allow connection to non registered URLs, so we can catch if specifics were called
+FakeWeb.allow_net_connect = false
+
+Rspec::Matchers.define :have_css do |css|
+  match do |text|
+    html = Nokogiri::HTML(text)
+    !html.css(css).empty?
+  end
+ 
+  failure_message_for_should do |text|
+    "expected to find css expression #{css} in:\n#{text}"
+  end
+ 
+  failure_message_for_should_not do |text|
+    "expected not to find css expression #{css} in:\n#{text}"
+  end
+
+  description do
+    "have css in #{expected}"
+  end
+end
+
+Rspec.configure do |c|
+  c.mock_framework = :rspec
+  c.color_enabled = true
+end