newebpay-rails 2.0.0

data/lib/newebpay/engine.rb

@@ -0,0 +1,9 @@
+module Newebpay
+  class Engine < ::Rails::Engine
+    isolate_namespace Newebpay
+
+    config.to_prepare do
+      ::ApplicationController.helper(Newebpay::Engine.helpers)
+    end
+  end
+end

data/lib/newebpay/error_codes.rb

@@ -0,0 +1,131 @@
+module Newebpay
+	
+	class ErrorCodes
+		@@error_codes = {
+			DON10001: "商店代號不可空白",
+			DON10002: "串接商店代號與後台設定不符",
+			DON10003: "捐款編號不可空白",
+			DON10004: "捐款編號格式錯誤! 格式為:英數及底線",
+			DON10005: "捐款編號不可重複",
+			DON10006: "金額檢查錯誤",
+			DON10007: "NotifyURL 不可空白",
+			DON10008: "時間戳記不可空白",
+			DON10009: "商品說明不可空白",
+			DON10010: "CheckValue 檢查錯誤",
+			DON10011: "電話號碼格式有錯誤，請檢查",
+			DON10012: "E-Mail 信箱格式有錯誤，請檢查",
+			DON10013: "統一編號格式錯誤",
+			DON10014: "統一編號輸入有誤，請檢查",
+			DON10015: "身份證字號有錯誤，請檢查",
+			DON10016: "藍新金流商店金流尚未設定開啟",
+			DON10017: "CheckValue 檢查失敗",
+			MEM40008: "資料空白",
+			MEM40012: "資料傳遞錯誤PostData_ 空白",
+			MEM40013: "資料不齊全",
+			MEM40014: "傳送時間有誤",
+			MPG01001: "會員參數 不可空白/設定錯誤",
+			MPG01002: "時間戳記不可空白",
+			MPG01005: "TokenTerm 不可空白/設定錯誤",
+			MPG01008: "分期參數設定錯誤",
+			MPG01009: "商店代號不可空白",
+			MPG01010: "程式版本設定錯誤",
+			MPG01011: "回傳規格設定錯誤",
+			MPG01012: "商店訂單編號不可空白/設定錯誤",
+			MPG01013: "付款人電子信箱設定錯誤",
+			MPG01014: "網址設定錯誤",
+			MPG01015: "訂單金額不可空白/設定錯誤",
+			MPG01017: "商品資訊不可空白",
+			MPG01018: "繳費有效期限設定錯誤",
+			MPG01023: "交易加密資料不可空白",
+			MPG01024: "交易加密 SHA 資料不可空白",
+			MPG02002: "查無商店開啟任何金流服務",
+			MPG02003: "支付方式未啟用，請洽客服中心",
+			MPG02004: "送出後檢查，超過交易限制秒數",
+			MPG02005: "送出後檢查，驗證資料錯誤",
+			MPG02006: "系統發生異常，請洽客服中心",
+			MPG03001: "FormPost 加密失敗",
+			MPG03002: "拒絕交易 IP",
+			MPG03003: "IP 交易次數限制",
+			MPG03004: "商店狀態已被暫停或是關閉，無法進行交易",
+			MPG03007: "查無此商店代號",
+			MPG03008: "已存在相同的商店訂單編號",
+			MPG03009: "交易失敗",
+			PER10001: "商店資料取得失敗",
+			PER10002: "資料解密錯誤",
+			PER10003: "POST 資料傳遞錯誤",
+			PER10004: "資料不齊全",
+			PER10005: "資料不可空白",
+			PER10006: "商品名稱不得含有 JavaScript 語法、CSS 語法",
+			PER10007: "委託金額格式不對，金額必須為數字",
+			PER10008: "委託金額不能為零",
+			PER10009: "週期設定錯誤! (W=週,M=月,Y=年)",
+			PER10010: "商店訂單編號錯誤，只允許英數與底線",
+			PER10011: "商店訂單編號長度限制為 20 字",
+			PER10012: "回傳格式格式錯誤，只接受 JSON 或 String",
+			PER10013: "週期授權時間資料不正確，日期格式為 1 到 7",
+			PER10014: "週期授權時間資料不正確，日期格式為 1 到 7(長度不符)",
+			PER10015: "定期授權時間資料不正確，日期格式為 01 到 31",
+			PER10016: "定期授權時間資料不正確，日期格式為 01 到 31(長度不符)",
+			PER10017: "定期授權時間資料不正確，日期格式為 01 到 31",
+			PER10018: "定期授權時間資料不正確，日期格式為 01 到 31",
+			PER10019: "定期授權時間資料不正確，長度不符",
+			PER10020: "首期授權模式設定錯誤(1-3)，請檢查",
+			PER10021: "備註說明不得含有 JavaScript 語法、CSS 語法",
+			PER10022: "授權期數格式不對，必須為數字",
+			PER10023: "授權期數不能為零",
+			PER10024: "授權期數不能多於 999 次",
+			PER10025: "返回商店網址格式錯誤",
+			PER10026: "每期授權通知網址格式錯誤",
+			PER10027: "是否開啟付款人資訊設定錯誤",
+			PER10028: "付款人電子信箱格式錯誤",
+			PER10029: "商店代號停用",
+			PER10030: "商店信用卡資格停用",
+			PER10031: "商店定期定額資格停用",
+			PER10032: "該訂單編號已重覆",
+			PER10033: "寫入委託單失敗",
+			PER10034: "授權失敗，委託單建立失敗",
+			PER10035: "委託單更新授權結果失敗",
+			PER10036: "驗證資料錯誤(來源不合法)",
+			PER10037: "付款頁參數不足",
+			TRA10001: "商店代號錯誤",
+			TRA10003: "金額必須為數字且大於 0 元",
+			TRA10008: "資料加密錯誤",
+			TRA10009: "商店代號空白",
+ 			TRA10012: "商店代號停用",
+ 			TRA10013: "商店信用卡資格停用",
+ 			TRA10015: "網路連線失敗",
+ 			TRA10021: "查無該筆交易資訊",
+ 			TRA10032: "單號類別錯誤",
+ 			TRA10033: "商店訂單編號空白或藍新金流交易序號空白",
+ 			TRA10036: "RespondType 欄位資料格式錯誤",
+ 			TRA10037: "商店訂單編號錯誤",
+ 			TRA10038: "藍新金流交易序號格式錯誤",
+ 			TRA10041: "NotifyURL 網址格式錯誤",
+ 			TRA10045: "該筆交易今日已退款",
+ 			TRA10047: "交易非授權成功狀態",
+ 			TRA10048: "該交易正在請款狀態",
+ 			TRA10049: "該交易正在退款狀態",
+ 			TRA10050: "金額不符",
+ 			TRA10051: "取消授權失敗",
+ 			TRA10054: "檢查碼 CheckValue 有錯誤",
+ 			TRA10058: "分期交易非全額請款或退款",
+ 			TRA10094: "取消請款或退款時查無該筆資料，或該筆資料已不可取消請款或退款",
+ 			TRA10095: "此筆交易已過關帳時間，不可取消",
+ 			TRA20001: "金融機構取消授權批次處理中",
+ 			TRA20004: "商店訂單編號重覆",
+ 			TRA20011: "該筆交易已請款",
+ 			TRA40008: "資料不可空白",
+ 			TRA40012: "資料傳遞錯誤",
+ 			TRA40013: "資料不齊全",
+ 			TRA40014: "TimeStamp 欄位錯誤"
+		}
+
+		def self.error_codes
+			@@error_codes
+		end
+
+		# def self.get_error_message code
+		# 	@error_code[code]
+		# end
+	end
+end

data/lib/newebpay/mpg/form.rb

@@ -0,0 +1,92 @@
+# frozen_string_literal: true
+
+module Newebpay::MPG
+  class Form
+    attr_accessor :attrs, :merchant_id
+    REQUIRED_ATTRS = %i[order_number description price email payment_methods].freeze
+    PAYMENT_METHODS = %i[credit credit_red unionpay webatm vacc cvs barcode android_pay samsung_pay p2g].freeze
+    def initialize(options)
+      check_valid(options)
+      @attrs = {}
+      @merchant_id = options[:merchant_id] || Newebpay.config.merchant_id
+      parse_attr(options)
+
+      @attrs['Version'] = version
+      @attrs['TimeStamp'] = Time.now.to_i
+      @attrs['RespondType'] = 'JSON'
+    end
+
+    def form_attrs
+      @form_attrs ||= {
+        MerchantID: merchant_id,
+        TradeInfo: trade_info,
+        TradeSha: trade_sha,
+        Version: version
+      }
+    end
+
+    def trade_info
+      @trade_info ||= Newebpay::NewebpayHelper.encrypt_data(encode_url_params)
+    end
+
+    def trade_sha
+      @trade_sha ||= Newebpay::NewebpayHelper.sha256_encode_trade_info(trade_info)
+    end
+
+    def encode_url_params
+      URI.encode_www_form(attrs)
+    end
+
+    def version
+      '1.5'
+    end
+
+    private
+
+    def parse_attr(options)
+      attrs[:MerchantID] = merchant_id
+      attrs[:MerchantOrderNo] = options[:order_number]
+      attrs[:ItemDesc] = options[:description]
+      attrs[:Amt] = options[:price]
+      attrs[:Email] = options[:email]
+      attrs[:CVSCOM] = options[:cvscom]
+      attrs[:LoginType] = options[:login_required] ? '1' : '0'
+      attrs[:LangType] = options[:locale] || 'zh-tw'
+      attrs[:TradeLimit] = options[:trade_limit]
+      attrs[:ExpireDate] = options[:expire_date]
+      attrs[:ClientBackURL] = options[:cancel_url]
+      attrs[:OrderComment] = options[:comment]
+      attrs[:EmailModify] = options[:email_editable] ? '1' : '0'
+      attrs[:InstFlag] = options[:inst_flag]
+      attrs[:ReturnURL] = Newebpay::Engine.routes.url_helpers.mpg_callbacks_url(host: Newebpay.host)
+      attrs[:CustomerURL] = Newebpay::Engine.routes.url_helpers.payment_code_callbacks_url(host: Newebpay.host) if Newebpay.config.payment_code_callback
+      attrs[:NotifyURL] = Newebpay::Engine.routes.url_helpers.notify_callbacks_url(host: Newebpay.host) if Newebpay.config.notify_callback
+
+      options[:payment_methods].each do |payment_method|
+        if payment_method == :credit_red
+          attrs[:CreditRed] = '1'
+        else
+          attrs[payment_method.upcase] = '1'
+        end
+      end
+    end
+
+    def check_valid(options)
+      unless options.is_a? Hash
+        raise ArgumentError, "When initializing #{self.class.name}, you must pass a hash."
+      end
+
+      REQUIRED_ATTRS.each do |argument|
+        raise ArgumentError, "Missing required argument: #{argument}." unless options[argument]
+      end
+
+      unless options[:payment_methods].is_a? Array
+        raise ArgumentError, 'payment_methods must be an Array'
+      end
+
+      if (options[:payment_methods] - PAYMENT_METHODS).any?
+        raise ArgumentError, 'Invalid payment method'
+      end
+    end
+  end
+end

data/lib/newebpay/mpg/response.rb

@@ -0,0 +1,27 @@
+# frozen_string_literal: true
+
+module Newebpay::MPG
+  class Response
+    attr_reader :status, :message, :trade_info, :trade_sha
+    def initialize(response_params)
+      raw_params = Newebpay::NewebpayHelper.decrypt_data(response_params)
+
+      response_data = JSON.parse(raw_params)
+      @status = response_data['Status']
+      @message = response_data['Message']
+      @trade_info = response_data['TradeInfo']
+      @trade_sha = response_data['TradeSha']
+      @result = response_data['Result']
+
+      @result.each do |key, values|
+        define_singleton_method(key.underscore) do
+          values
+        end
+      end
+    end
+
+    def success?
+      status == 'SUCCESS'
+    end
+  end
+end

data/lib/newebpay/newebpay_helper.rb

@@ -0,0 +1,98 @@
+# frozen_string_literal: true
+
+require 'openssl'
+require 'base64'
+require 'digest'
+
+module Newebpay
+  module NewebpayHelper
+    # for mpg
+    def self.encrypt_data(data)
+      config = Newebpay.config
+      encrypt config.hash_key, config.hash_iv, data
+    end
+
+    def self.encrypt_merchant_data(data)
+      config = Newebpay.merchant_config
+      encrypt config.hash_key, config.hash_iv, data
+    end
+
+    def self.encrypt(key, iv, data)
+      cipher = OpenSSL::Cipher::AES256.new(:CBC)
+      cipher.encrypt
+      cipher.padding = 0
+      cipher.key = key
+      cipher.iv = iv
+      padding_data = add_padding(data)
+      encrypted = cipher.update(padding_data) + cipher.final
+      encrypted.unpack('H*').first
+    end
+
+    def self.add_padding(data, block_size = 32)
+      pad = block_size - (data.length % block_size)
+      data + (pad.chr * pad)
+    end
+
+    def self.decrypt_merchant_data(encrypted_data)
+      config = Newebpay.merchant_config
+      decrypt config.hash_key, config.hash_iv, encrypted_data
+    end
+
+    def self.decrypt_data(encrypted_data)
+      config = Newebpay.config
+      decrypt config.hash_key, config.hash_iv, encrypted_data
+    end
+
+    def self.decrypt(key, iv, encrypted_data)
+      encrypted_data = [encrypted_data].pack('H*')
+      decipher = OpenSSL::Cipher::AES256.new(:CBC)
+      decipher.decrypt
+      decipher.padding = 0
+      decipher.key = key
+      decipher.iv = iv
+      data = decipher.update(encrypted_data) + decipher.final
+      strippadding data
+    end
+
+    # for mpg
+    def self.sha256_encode_trade_info(trade_info)
+      config = Newebpay.config
+      sha256_encode config.hash_key, config.hash_iv, trade_info
+    end
+
+    # to do 加密方式混亂，待整合與重新命名
+    def self.create_check_value(check_string)
+      # query_trade
+      config = Newebpay.config
+      encode_string = "IV=#{config.hash_iv}&#{check_string}&Key=#{config.hash_key}"
+      Digest::SHA256.hexdigest(encode_string).upcase
+    end
+
+    def self.create_check_code(check_string)
+      # query_trade
+      config = Newebpay.config
+      encode_string = "HashIV=#{config.hash_iv}&#{check_string}&HashKey=#{config.hash_key}"
+      Digest::SHA256.hexdigest(encode_string).upcase
+    end
+
+    def self.sha256_encode(key, iv, trade_info, hash_iv_first = false)
+      encode_string = if hash_iv_first
+                        "HashIV=#{iv}&#{trade_info}&HashKey=#{key}"
+                      else
+                        "HashKey=#{key}&#{trade_info}&HashIV=#{iv}"
+                      end
+      Digest::SHA256.hexdigest(encode_string).upcase
+    end
+
+    def self.strippadding(data)
+      slast = data[-1].ord
+      slastc = slast.chr
+      padding_index = /#{slastc}{#{slast}}/ =~ data
+      if !padding_index.nil?
+        data[0, padding_index]
+      else
+        false
+      end
+    end
+  end
+end

data/lib/newebpay/periodical/form.rb

@@ -0,0 +1,83 @@
+# frozen_string_literal: true
+
+require 'newebpay/attr_key_helper'
+
+module Newebpay::Periodical
+  class Form
+    REQUIRED_ATTRS = %i[order_number description price email].freeze
+    attr_accessor :attrs, :merchant_id
+    def initialize(options)
+      check_valid(options)
+      @attrs = {}
+      @merchant_id = options[:merchant_id] || Newebpay.config.merchant_id
+      parse_attr(options)
+
+      @attrs['Version'] = version
+      @attrs['TimeStamp'] = Time.now.to_i
+      @attrs['RespondType'] = 'JSON'
+    end
+
+    def form_attrs
+      @form_attrs ||= {
+        MerchantID_: merchant_id,
+        PostData_: trade_info
+      }
+    end
+
+    def trade_info
+      @trade_info ||= Newebpay::NewebpayHelper.encrypt_data(encode_url_params)
+    end
+
+    def encode_url_params
+      URI.encode_www_form(attrs)
+    end
+
+    def version
+      '1.0'
+    end
+
+    private
+
+    def parse_attr(options)
+      attrs[:MerOrderNo] = options[:order_number]
+      attrs[:ProdDesc] = options[:description]
+      attrs[:PeriodAmt] = options[:price]
+      attrs[:PayerEmail] = options[:email]
+      attrs[:PeriodPoint] = options[:period_point] || '01'
+      attrs[:PeriodTimes] = options[:period_times] || '99'
+      attrs[:PeriodStartType] = options[:check_type] || '1'
+      attrs[:MerchantID] = merchant_id
+      attrs[:PeriodMemo] = options[:comment]
+      attrs[:PaymentInfo] = options[:payment_info] || 'N'
+      attrs[:OrderInfo] = options[:order_info] || 'N'
+      attrs[:EmailModify] = options[:email_editable] || '0'
+      attrs[:BackURL] = options[:cancel_url]
+      attrs[:ReturnURL] = Newebpay::Engine.routes.url_helpers.periodical_callbacks_url(host: Newebpay.host) if  Newebpay.config.periodical_callback
+      attrs[:NotifyURL] = Newebpay::Engine.routes.url_helpers.periodical_notify_callbacks_url(host: Newebpay.host) if  Newebpay.config.periodical_notify_callback
+
+      options[:period_type] ||= :monthly
+      case options[:period_type]
+      when :daily
+        attrs[:PeriodType] = 'D'
+      when :weekly
+        attrs[:PeriodType] = 'W'
+      when :monthly
+        attrs[:PeriodType] = 'M'
+      when :yearly
+        attrs[:PeriodType] = 'Y'
+      else
+        raise ArgumentError, "Invalid period_type: #{options[:period_type]}"
+      end
+    end
+
+    def check_valid(options)
+      unless options.is_a? Hash
+        raise ArgumentError, "When initializing #{self.class.name}, you must pass a hash."
+      end
+
+      REQUIRED_ATTRS.each do |argument|
+        raise ArgumentError, "Missing required argument: #{argument}." unless options[argument]
+      end
+    end
+  end
+end

data/lib/newebpay/periodical/response.rb

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+
+module Newebpay::Periodical
+  class Response
+    attr_reader :status, :message
+    def initialize(response_params)
+      raw_params = Newebpay::NewebpayHelper.decrypt_data(response_params)
+
+      response_data = JSON.parse(raw_params)
+      @status = response_data['Status']
+      @message = response_data['Message']
+      @result = response_data['Result']
+
+      @result.each do |key, values|
+        define_singleton_method(key.underscore) do
+          values
+        end
+      end
+    end
+
+    def success?
+      status == 'SUCCESS'
+    end
+  end
+end