payu 0.7.0

checksums.yaml

@@ -0,0 +1,15 @@
+---
+!binary "U0hBMQ==":
+  metadata.gz: !binary |-
+    YTM2OGIzMTZhY2FlZjM5OGZiZjNlODAwYjYyNjYyZWU3Y2JmOTYzMQ==
+  data.tar.gz: !binary |-
+    MWQzMGE4YjdhY2E3YjY2NDNkOTkwMzdmNDZhOGU3MDJjZDNlMmU0Zg==
+!binary "U0hBNTEy":
+  metadata.gz: !binary |-
+    YTUzYzBmNGQ4NmE2YTg5NTFlNzU1OWYwMjMxN2VkNmQxNjNmZjJjNjQ3YjI2
+    NmYyMzBmMjRlMjQ4MTY5NmJjYjA3ZmExNmMwMmE5YWFiZDBiNDBiMzZmODM5
+    MmRmZDM3NmJmOGNlMmRlN2FiZTFjMzEyMGEwOTVjNTA2MTkzYWE=
+  data.tar.gz: !binary |-
+    MGY4ZGVkNWY1MWEwN2EzYzcwNmZjNGM3N2UwN2MwN2MxOWEwODhiZDg2YmNi
+    OWFkMzcwZWMyNjA3ZmUxYzRhMTEyYWE0NzI4MmU3YjNkYjRkOGVkMGQ0MjE4
+    NTJjMTc1YzgzNzU1YzgyZmRiYjIzMDIyN2VhMDUyMGJiOTFmMDI=

data/.gitignore

@@ -0,0 +1,5 @@
+*.gem
+.bundle
+.rvmrc
+Gemfile.lock
+pkg/*

data/.rspec

@@ -0,0 +1 @@
+--color

data/Gemfile

@@ -0,0 +1,8 @@
+source "http://rubygems.org"
+
+# Specify your gem's dependencies in payu.gemspec
+gemspec
+
+group :test do
+  gem 'rspec'
+end

data/LICENSE

@@ -0,0 +1,20 @@
+Copyright (c) 2013 Michał Młoźniak
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,171 @@
+# payu
+
+Simple library for accepting payments via PayU.
+
+By [Visuality](http://www.visuality.pl).
+
+## Features
+
+* No dependencies on ActiveSupport or any similar libraries, so it should work in any Ruby application or framework
+* Simple configuration (multiple points of sale)
+* Automatic signature generation and verification
+* View helpers for generating payment form and verifying signatures
+
+## Installation
+
+In your Gemfile:
+
+```ruby
+gem 'payu'
+````
+
+Or, from the command line:
+
+```ruby
+gem install payu
+```
+
+## Usage
+
+This gem implements only core functionality for integrating with PayU gateway. It is designed to work with any ruby framework or plain ruby application. To integrate it in your app you need to do some work, but it is really simple.
+
+### Create Pos
+
+Your app will interact with PayU via point of sale (Pos). You can create it on PayU website and get its credentials. With these credentials you can create Pos instance:
+
+```ruby
+pos = Payu::Pos.new :pos_id => '12345', :pos_auth_key => 'abcdefghijk', :key1 => 'xxxxxxxx', :key2 => 'xxxxxxxx'
+```
+
+You can also load Pos configuration from yaml file. For example config/payu.yml:
+
+```yaml
+bank:
+  pos_id: 12345
+  pos_auth_key: XXX
+  key1: XXX
+  key2: XXX
+  type: default
+
+sms:
+  pos_id: 56789
+  pos_auth_key: XXX
+  key1: XXX
+  key2: XXX
+  type: sms_premium
+```
+
+Then add new initializer config/initializers/payu.rb:
+
+```ruby
+Payu.load_pos_from_yaml(Rails.root.join('config', 'payu.yml'))
+```
+
+Now you can access them by name or pos_id:
+
+```ruby
+Payu['bank']
+Payu[:bank]
+Payu[12345]
+Payu['56789']
+```
+
+### Create new payment
+
+To create new payment:
+
+```ruby
+@transaction = pos.new_transaction(:first_name => 'John', :last_name => 'Doe', :email => 'john.doe@example.org', :client_ip => '1.2.3.4', :amount => 10000)
+```
+
+Now you need to build form with this transaction object:
+
+```
+<%= form_tag(@transaction.new_url) do %>
+  <%= payu_hidden_fields(@transaction) %>
+  <%= submit_tag 'Pay' %>
+<% end %>
+```
+
+### Read payment status
+
+You can check status of any payment:
+
+```ruby
+response = pos.get(123456789)
+
+if response.status == 'OK'
+  if response.completed?
+    # payment completed
+  end
+end
+```
+
+123456789 is a payment session id. It is automatically generated when you create new transaction.
+
+### Confirm payment
+
+By default when somebody sends a payment it is automatically accepted. You can turn it off and confirm every payment:
+
+```ruby
+response = pos.confirm(123456789)
+```
+
+### Cancel payment
+
+You can cancel payment:
+
+```ruby
+response = pos.cancel(123456789)
+```
+
+### Handle Payu callbacks
+
+When payment status changes, Payu will send report to your application. You need controller to handle these reports:
+
+```ruby
+
+class PayuController < ApplicationController
+  include Payu::Helpers
+  skip_before_filter :verify_authenticity_token
+
+  def ok
+    # successful redirect
+  end
+
+  def error
+    # failed redirect
+  end
+
+  def report
+    payu_verify_params(params)
+
+    response = Payu['main'].get params[:session_id]
+
+    if response.status == 'OK'
+      order = Order.find(response.trans_order_id)
+
+      if response.completed? && order.present?
+        # mark order as paid
+      else
+        # payment not completed
+      end
+    end
+
+    render :text => 'OK'
+  end
+```
+
+And routes:
+
+```ruby
+  match '/payu/ok' => 'payu#ok'
+  match '/payu/error' => 'payu#error'
+  match '/payu/report' => 'payu#report'
+```
+
+Actions ok and error are pages where user is redirected after payment. You need to enter these url on Payu website.
+
+## Copyright
+
+Copyright (c) 2013 Michał Młoźniak. See LICENSE for details.

data/Rakefile

@@ -0,0 +1 @@
+require "bundler/gem_tasks"

data/init.rb

@@ -0,0 +1,2 @@
+$:.unshift "#{File.dirname(__FILE__)}/lib"
+require 'payu'

data/lib/payu.rb

@@ -0,0 +1,87 @@
+# encoding: utf-8
+
+require 'yaml'
+
+require 'payu/version'
+require 'payu/pos'
+require 'payu/transaction'
+require 'payu/response'
+require 'payu/signature'
+require 'payu/errors'
+
+module Payu
+  ENCODINGS = ['ISO', 'WIN', 'UTF']
+
+  @@pos_table = {}
+
+  class SignatureInvalid < StandardError; end
+  class PosNotFound < StandardError; end
+  class RequestFailed < StandardError; end
+  class PosInvalid < StandardError; end
+  class TransactionInvalid < StandardError; end
+
+  class << self
+
+    # Loads payments.yml file and creates specified Pos objects
+    def load_pos_from_yaml(filename)
+      if File.exist?(filename)
+        config = YAML.load_file(filename)
+        config.each do |name, config|
+          pos = Pos.new(
+            :pos_id => config['pos_id'],
+            :pos_auth_key => config['pos_auth_key'],
+            :key1 => config['key1'],
+            :key2 => config['key2'],
+            :variant => config['variant'],
+            :add_signature => config['add_signature'],
+            :test_payment => config['test_payment']
+          )
+          @@pos_table[name] = pos
+        end
+
+        true
+      else
+        false
+      end
+    end
+
+    def add_pos(name, pos)
+      @@pos_table[name.to_s] = pos
+    end
+
+    # Combined accessor, returns Pos object with given pos_id or name
+    #
+    # @param [String, Integer] name_or_id name or pos_id of Pos
+    # @return [Object] the Pos object
+    def [](name_or_id)
+      get_pos_by_name(name_or_id) || get_pos_by_id(name_or_id) || raise(PosNotFound)
+    end
+
+    # Returns Pos object with given name, the same as in payments.yml file
+    #
+    # @param [String] name name of Pos
+    # @return [Object] the Pos object
+    def get_pos_by_name(name)
+      @@pos_table[name.to_s]
+    end
+
+    # Returns Pos object with given pos_id, the same as in payments.yml file
+    #
+    # @param [Integer] id pos_id of Pos
+    # @return [Object] the Pos object
+    def get_pos_by_id(pos_id)
+      pos_id = pos_id.to_i rescue 0
+      @@pos_table.each do |k, v|
+        return v if v.pos_id == pos_id
+      end
+      nil
+    end
+  end
+end
+
+if defined?(Rails)
+  require "payu/helpers"
+
+  ActionView::Base.send(:include, Payu::Helpers)
+  ActionController::Base.send(:include, Payu::Helpers)
+end

data/lib/payu/errors.rb

@@ -0,0 +1,47 @@
+# encoding: utf-8
+
+module Payu
+  ERRORS = {
+    100 => 'Missing parameter pos_id',
+    101 => 'Missing parameter session_id',
+    102 => 'Missing parameter ts',
+    103 => 'Missing parameter sig',
+    104 => 'Missing parameter desc',
+    105 => 'Missing parameter client_ip',
+    106 => 'Missing parameter first_name',
+    107 => 'Missing parameter last_name',
+    108 => 'Missing parameter street',
+    109 => 'Missing parameter city',
+    110 => 'Missing parameter post_code',
+    111 => 'Missing parameter amount',
+    112 => 'Invalid bank account number',
+    113 => 'Missing parameter email',
+    114 => 'Missing parameter phone',
+    200 => 'Temporary error',
+    201 => 'Temporary database error',
+    202 => 'POS blocked',
+    203 => 'Invalid pay_type value for provided pos_id',
+    204 => 'Selected payment method (pay_type value) is temporary unavailable for provided pos_id',
+    205 => 'Provided amount is smaller than minimal amount',
+    206 => 'Provided amount is larger than maximal amount',
+    207 => 'Transaction limit exceeded',
+    208 => 'ExpressPayment has not been activated',
+    209 => 'Invalid pos_id or pos_auth_key',
+    500 => 'Transaction does not exist',
+    501 => 'Unauthorized for this transaction',
+    502 => 'Transaction already started',
+    503 => 'Transaction already authorized',
+    504 => 'Transaction already canceled',
+    505 => 'Confirm order already sent',
+    506 => 'Transaction already confirmed',
+    507 => 'Error while returning funds to client',
+    599 => 'Invalid transaction status. Please contact PayU support',
+    999 => 'Critical error'
+  }
+
+  class << self
+    def get_error_description(code)
+      return ERRORS[code.to_i]
+    end
+  end
+end

data/lib/payu/gateway.rb

@@ -0,0 +1,76 @@
+# encoding: utf-8
+
+require 'net/http'
+require 'pp'
+
+module Payu
+  class Gateway
+    attr_reader :encoding, :key1, :key2, :pos_id
+
+    def initialize(options = {})
+      @encoding = options[:encoding]
+      @key1     = options[:key1]
+      @key2     = options[:key2]
+      @pos_id   = options[:pos_id]
+    end
+
+    def get(session_id)
+      send_request("/paygw/#{encoding}/Payment/get/txt", session_id)
+    end
+
+    def confirm(session_id)
+      send_request("/paygw/#{encoding}/Payment/confirm/txt", session_id)
+    end
+
+    def cancel(session_id)
+      send_request("/paygw/#{encoding}/Payment/cancel/txt", session_id)
+    end
+
+    private
+    def send_request(url, session_id)
+      data = prepare_data(session_id)
+      connection = Net::HTTP.new('www.platnosci.pl', 443)
+      connection.use_ssl = true
+
+      http_response = connection.start do |http|
+        post = Net::HTTP::Post.new(url)
+        post.set_form_data(data)
+        http.request(post)
+      end
+
+      if http_response.code == '200'
+        response = Response.parse(http_response.body)
+        verify!(response) if response.status == 'OK'
+
+        return response
+      else
+        raise RequestFailed
+      end
+    end
+
+    def prepare_data(session_id)
+      ts  = (Time.now.to_f * 1000).to_i
+      sig = Signature.generate(pos_id, session_id, ts, key1)
+
+      {
+        'pos_id' => pos_id,
+        'session_id' => session_id,
+        'ts' => ts,
+        'sig' => sig
+      }
+    end
+
+    def verify!(response)
+      Signature.verify!(response.trans_sig,
+        response.trans_pos_id,
+        response.trans_session_id,
+        response.trans_order_id,
+        response.trans_status,
+        response.trans_amount,
+        response.trans_desc,
+        response.trans_ts,
+        key2
+      )
+    end
+  end
+end

data/lib/payu/helpers.rb

@@ -0,0 +1,33 @@
+# encoding: utf-8
+
+module Payu
+  module Helpers
+    def payu_hidden_fields(transaction)
+      html = ""
+
+      %w(pos_id pos_auth_key pay_type session_id amount amount_netto desc
+      order_id desc2 trsDesc first_name last_name street street_hn
+      street_an city post_code country email phone language client_ip
+      js payback_login sig ts
+      ).each do |field|
+        value = transaction.send(field)
+        html << hidden_field_tag(field, value) unless value.blank?
+      end
+
+      html.html_safe
+    end
+
+    def payu_verify_params(params)
+      pos_id = params['pos_id']
+      pos = Payu[pos_id]
+
+      Signature.verify!(
+        params['sig'],
+        params['pos_id'],
+        params['session_id'],
+        params['ts'],
+        pos.key2
+      )
+    end
+  end
+end

data/lib/payu/pos.rb

@@ -0,0 +1,80 @@
+# encoding: utf-8
+
+require 'ostruct'
+require 'payu/gateway'
+
+module Payu
+  class Pos
+    TYPES = ['default', 'sms']
+
+    attr_reader :pos_id, :pos_auth_key, :key1, :key2, :type, :encoding, :variant
+
+    # Creates new Pos instance
+    # @param [Hash] options options hash
+    # @return [Object] Pos object
+    def initialize(options)
+      @pos_id        = options[:pos_id].to_i
+      @pos_auth_key  = options[:pos_auth_key]
+      @key1          = options[:key1]
+      @key2          = options[:key2]
+      @variant       = options[:variant] || 'default'
+      @encoding      = options[:encoding] || 'UTF'
+      @test_payment  = options[:test_payment] || false
+      @add_signature = options[:add_signature] || false
+
+      raise PosInvalid.new('Missing pos_id parameter') if pos_id.nil? || pos_id == 0
+      raise PosInvalid.new('Missing pos_auth_key parameter') if pos_auth_key.nil? || pos_auth_key == ''
+      raise PosInvalid.new('Missing key1 parameter') if key1.nil? || key1 == ''
+      raise PosInvalid.new('Missing key2 parameter') if key2.nil? || key2 == ''
+      raise PosInvalid.new("Invalid variant parameter, expected one of these: #{TYPES.join(', ')}") unless TYPES.include?(variant)
+      raise PosInvalid.new("Invalid encoding parameter, expected one of these: #{ENCODINGS.join(', ')}") unless ENCODINGS.include?(encoding)
+    end
+
+    # Creates new transaction
+    # @param [Hash] options options hash for new transaction
+    # @return [Object] Transaction object
+    def new_transaction(options = {})
+      options = options.dup
+
+      options.merge!({
+        :pos_id => @pos_id,
+        :pos_auth_key => @pos_auth_key,
+        :key1 => @key1,
+        :add_signature => add_signature?,
+        :encoding => encoding,
+        :variant => variant
+      })
+
+      if !options.has_key?(:pay_type)
+        options[:pay_type] = test_payment? ? 't' : nil
+      end
+
+      Transaction.new(options)
+    end
+
+    def get(session_id)
+      get_gateway.get(session_id)
+    end
+
+    def confirm(session_id)
+      get_gateway.confirm(session_id)
+    end
+
+    def cancel(session_id)
+      get_gateway.cancel(session_id)
+    end
+
+    def add_signature?
+      @add_signature
+    end
+
+    private
+    def get_gateway
+      Gateway.new(:encoding => encoding, :key1 => key1, :key2 => key2, :pos_id => pos_id)
+    end
+
+    def test_payment?
+      @test_payment && @variant == 'default'
+    end
+  end
+end

data/lib/payu/response.rb

@@ -0,0 +1,18 @@
+# encoding: utf-8
+
+module Payu
+  class Response < OpenStruct
+    PATTERN = /^(\w+):(?:[ ])?(.*)$/
+
+    def self.parse(body)
+      temp = body.gsub("\r", "")
+      data = temp.scan(PATTERN)
+
+      new(data)
+    end
+
+    def completed?
+      trans_status.to_i == 99
+    end
+  end
+end

data/lib/payu/signature.rb

@@ -0,0 +1,18 @@
+# encoding: utf-8
+
+require 'digest'
+
+module Payu
+  class SignatureInvalid < StandardError
+  end
+
+  class Signature
+    def self.generate(*params)
+      Digest::MD5.hexdigest(params.join)
+    end
+
+    def self.verify!(expected, *params)
+      raise SignatureInvalid if expected != generate(params)
+    end
+  end
+end

data/lib/payu/transaction.rb

@@ -0,0 +1,94 @@
+# encoding: utf-8
+
+module Payu
+  class Transaction
+    attr_accessor :pos_id, :pos_auth_key, :pay_type, :session_id, :amount, :amount_netto, :desc,
+      :order_id, :desc2, :trsDesc, :first_name, :last_name, :street, :street_hn,
+      :street_an, :city, :post_code, :country, :email, :phone, :language, :client_ip,
+      :js, :payback_login, :sig, :ts, :key1, :add_signature, :variant, :encoding
+
+    def initialize(options = {})
+      options[:session_id] ||= generate_timestamp
+
+      options.each do |name, value|
+        send("#{name.to_s}=", value)
+      end
+
+      validate!
+
+      if options[:add_signature]
+        self.ts = generate_timestamp
+        self.sig = generate_signature
+      end
+
+      if variant == 'sms'
+        self.amount_netto = amount
+        self.amount = nil
+      end
+    end
+
+    def new_url
+      if variant == 'sms'
+        return "https://www.platnosci.pl/paygw/#{encoding}/NewSMS"
+      else
+        return "https://www.platnosci.pl/paygw/#{encoding}/NewPayment"
+      end
+    end
+
+    private
+    def generate_timestamp
+      (Time.now.to_f * 100).to_i
+    end
+
+    def generate_signature
+      Signature.generate(
+        pos_id,
+        pay_type,
+        session_id,
+        pos_auth_key,
+        amount,
+        desc,
+        desc2,
+        trsDesc,
+        order_id,
+        first_name,
+        last_name,
+        payback_login,
+        street,
+        street_hn,
+        street_an,
+        city,
+        post_code,
+        country,
+        email,
+        phone,
+        language,
+        client_ip,
+        ts,
+        key1
+      )
+    end
+
+    private
+    def validate!
+      invalid_attributes = []
+
+      [:pos_id, :pos_auth_key, :session_id, :desc, :first_name, :last_name, :email, :client_ip, :amount].each do |name|
+        invalid_attributes << name if attribute_empty?(name)
+      end
+
+      if attribute_empty?(:amount)
+        invalid_attributes << :amount
+      end
+
+      if invalid_attributes.any?
+        raise TransactionInvalid.new("Attributes required: #{invalid_attributes.join(', ')}")
+      end
+    end
+
+    def attribute_empty?(name)
+      value = send(name)
+      value.nil? || value.respond_to?(:empty?) && value.empty?
+    end
+  end
+end

data/lib/payu/version.rb

@@ -0,0 +1,5 @@
+# encoding: utf-8
+
+module Payu
+  VERSION = "0.7.0"
+end

data/payu.gemspec

@@ -0,0 +1,21 @@
+# encoding: utf-8
+
+$:.push File.expand_path("../lib", __FILE__)
+require "payu/version"
+require "date"
+
+Gem::Specification.new do |s|
+  s.name          = "payu"
+  s.version       = Payu::VERSION
+  s.date          = Date.today
+  s.summary       = "Simple integration with PayU gateway"
+  s.description   = "Simple integration with PayU gateway"
+  s.author        = "Michał Młoźniak"
+  s.email         = "michal.mlozniak@visuality.pl"
+  s.files         = `git ls-files`.split("\n")
+  s.homepage      = "http://github.com/ronin/payu"
+
+  s.test_files    = `git ls-files -- {test,spec,features}/*`.split("\n")
+  s.executables   = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
+  s.require_paths = ["lib"]
+end

data/spec/response_spec.rb

@@ -0,0 +1,73 @@
+# encoding: utf-8
+
+require 'spec_helper'
+
+describe "Payu::Response" do
+  @key1 = '3d91f185cacad7c1d830d1472dfaacc5'
+  @key2 = 'a747e4b3e49e17459a8a402518d36022'
+
+  it "should parse payment/get response" do
+    body = <<-EOF
+status:OK
+trans_id:7
+trans_pos_id:1
+trans_session_id:417419
+trans_order_id:
+trans_amount:200
+trans_status:5
+trans_pay_type:t
+trans_pay_gw_name:pt
+trans_desc:Wpłata dla test@test.pl
+trans_desc2:
+trans_create:2004-08-2310:39:52
+trans_init:2004-08-3113:42:43
+trans_sent:2004-08-3113:48:13
+trans_recv:
+trans_cancel:
+trans_auth_fraud:0
+trans_ts:1094205761232
+trans_sig:b6d68525f724a6d69fb1260874924759
+EOF
+
+    response = Payu::Response.parse(body)
+
+    response.status.should == 'OK'
+    response.trans_id.should == '7'
+    response.trans_pos_id.should == '1'
+    response.trans_session_id.should == '417419'
+    response.trans_order_id.should == ''
+    response.trans_amount.should == '200'
+    response.trans_status.should == '5'
+    response.trans_pay_type.should == 't'
+    response.trans_pay_gw_name.should == 'pt'
+    response.trans_desc.should == 'Wpłata dla test@test.pl'
+    response.trans_desc2.should == ''
+    response.trans_create.should == '2004-08-2310:39:52'
+    response.trans_init.should == '2004-08-3113:42:43'
+    response.trans_sent.should == '2004-08-3113:48:13'
+    response.trans_recv.should == ''
+    response.trans_cancel.should == ''
+    response.trans_auth_fraud.should == '0'
+    response.trans_ts.should == '1094205761232'
+    response.trans_sig.should == 'b6d68525f724a6d69fb1260874924759'
+  end
+
+  it "should parse error response" do
+    body = <<-EOF
+status: ERROR
+error_nr: 103
+error_message: Kod błędu: 103
+EOF
+
+    response = Payu::Response.parse(body)
+
+    response.status.should == 'ERROR'
+    response.error_nr.should == '103'
+    response.error_message.should == 'Kod błędu: 103'
+  end
+
+  it "should respond to completed?" do
+    response = Payu::Response.new(:trans_status => '99')
+    response.should be_completed
+  end
+end

data/spec/signature_spec.rb

@@ -0,0 +1,41 @@
+# encoding: utf-8
+
+require 'spec_helper'
+
+describe 'Signature' do
+  before do
+    @expected_hash = 'e80b5017098950fc58aad83c8c14978e' # hash for 'abcdef'
+  end
+
+  it 'should generate MD5 hash for passed value' do
+    Payu::Signature.generate('abcdef').should == @expected_hash
+  end
+
+  it 'should concatenate multiple values' do
+    Payu::Signature.generate('abc', 'def').should == @expected_hash
+    Payu::Signature.generate('ab' ,'cd', 'ef').should == @expected_hash
+    Payu::Signature.generate(%w{a b c d e f}).should == @expected_hash
+
+    Payu::Signature.generate('def', 'abc').should_not == @expected_hash
+  end
+
+  it 'should skip empty strings' do
+    Payu::Signature.generate('abc', '', 'def').should == @expected_hash
+  end
+
+  it 'should skip nils' do
+    Payu::Signature.generate('abc', nil, 'def').should == @expected_hash
+  end
+
+  it 'should do verify signature' do
+    lambda do
+      Payu::Signature.verify!(@expected_hash, 'abc', 'def')
+    end.should_not raise_exception
+  end
+
+  it 'should raise exception when signature is not valid' do
+    lambda do
+      Payu::Signature.verify!(@expected_hash, 'def', 'abc')
+    end.should raise_exception(Payu::SignatureInvalid)
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,2 @@
+require 'bundler/setup'
+require 'payu'

data/spec/transaction_spec.rb

@@ -0,0 +1,136 @@
+# encoding: utf-8
+
+require 'spec_helper'
+
+describe 'Transaction' do
+  before do
+    @pos1 = Payu::Pos.new(
+      :pos_id => 1,
+      :pos_auth_key => 'abcde',
+      :key1 => '3d91f185cacad7c1d830d1472dfaacc5',
+      :key2 => 'a747e4b3e49e17459a8a402518d36022'
+    )
+
+    @pos2 = Payu::Pos.new(
+      :pos_id => 1,
+      :pos_auth_key => 'abcde',
+      :key1 => '3d91f185cacad7c1d830d1472dfaacc5',
+      :key2 => 'a747e4b3e49e17459a8a402518d36022',
+      :add_signature => true
+    )
+
+    @sms_pos = Payu::Pos.new(
+      :pos_id => 1,
+      :pos_auth_key => 'abcde',
+      :key1 => '3d91f185cacad7c1d830d1472dfaacc5',
+      :key2 => 'a747e4b3e49e17459a8a402518d36022',
+      :add_signature => true,
+      :variant => 'sms'
+    )
+  end
+
+  it "should raise exception when required attributes are empty" do
+    lambda do
+      @pos1.new_transaction
+    end.should raise_exception(Payu::TransactionInvalid)
+  end
+
+  it 'should generate session_id when empty' do
+    transaction = @pos1.new_transaction(
+      :amount => 100,
+      :desc => 'Description',
+      :first_name => 'John',
+      :last_name => 'Doe',
+      :email => 'john.doe@example.org',
+      :client_ip => '127.0.0.1'
+    )
+
+    transaction.session_id.should_not be_nil
+    transaction.session_id.class.should == Fixnum
+  end
+
+  it 'should not overwrite passed session_id' do
+    transaction = @pos1.new_transaction(
+      :session_id => 123,
+      :amount => 100,
+      :desc => 'Description',
+      :first_name => 'John',
+      :last_name => 'Doe',
+      :email => 'john.doe@example.org',
+      :client_ip => '127.0.0.1'
+    )
+
+    transaction.session_id.should == 123
+  end
+
+  it 'should generate signature' do
+    transaction = @pos2.new_transaction(
+      :session_id => '123',
+      :amount => 100,
+      :desc => 'Description',
+      :first_name => 'John',
+      :last_name => 'Doe',
+      :email => 'john.doe@example.org',
+      :client_ip => '127.0.0.1'
+    )
+
+    transaction.ts.should_not be_nil
+    transaction.ts.class.should == Fixnum
+
+    signature_keys = [1, '123', 'abcde', 100, 'Description', 'John', 'Doe', 'john.doe@example.org', '127.0.0.1', transaction.ts, '3d91f185cacad7c1d830d1472dfaacc5']
+    expected_signature = Digest::MD5.hexdigest(signature_keys.join)
+
+    transaction.sig.should == expected_signature
+  end
+
+  it 'should generate signature from all keys' do
+    transaction = @pos2.new_transaction(
+      :pos_auth_key => 'abcde',
+      :pay_type => 't',
+      :amount => 15000,
+      :desc => 'Testowa',
+      :desc2 => 'Szczegółowy opis',
+      :trsDesc => 'Dodatkowy opis dla banku',
+      :order_id => 69,
+      :first_name => 'Jan',
+      :last_name => 'Kowalski',
+      :payback_login => 'jankowalski',
+      :street => 'Warszawska',
+      :street_hn => '21',
+      :street_an => '18',
+      :city => 'Szczecin',
+      :post_code => '01-259',
+      :country => 'PL',
+      :email => 'jan.kowalski@example.org',
+      :phone => '505-606-100',
+      :language => 'pl',
+      :client_ip => '192.168.1.1'
+    )
+
+    signature_keys = [
+      1, 't', transaction.session_id, 'abcde', 15000, 'Testowa',
+      'Szczegółowy opis', 'Dodatkowy opis dla banku', 69, 'Jan', 'Kowalski',
+      'jankowalski', 'Warszawska', '21', '18', 'Szczecin', '01-259', 'PL',
+      'jan.kowalski@example.org', '505-606-100', 'pl', '192.168.1.1',
+      transaction.ts, '3d91f185cacad7c1d830d1472dfaacc5'
+    ]
+    expected_signature = Digest::MD5.hexdigest(signature_keys.join)
+
+    transaction.sig.should == expected_signature
+  end
+
+  it "should set amount_netto attribute for sms variant" do
+    transaction = @sms_pos.new_transaction(
+      :session_id => '123',
+      :amount => 100,
+      :desc => 'Description',
+      :first_name => 'John',
+      :last_name => 'Doe',
+      :email => 'john.doe@example.org',
+      :client_ip => '127.0.0.1'
+    )
+
+    transaction.amount_netto.should == 100
+    transaction.amount.should be_nil
+  end
+end

metadata

@@ -0,0 +1,67 @@
+--- !ruby/object:Gem::Specification
+name: payu
+version: !ruby/object:Gem::Version
+  version: 0.7.0
+platform: ruby
+authors:
+- Michał Młoźniak
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2013-06-15 00:00:00.000000000 Z
+dependencies: []
+description: Simple integration with PayU gateway
+email: michal.mlozniak@visuality.pl
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- .rspec
+- Gemfile
+- LICENSE
+- README.md
+- Rakefile
+- init.rb
+- lib/payu.rb
+- lib/payu/errors.rb
+- lib/payu/gateway.rb
+- lib/payu/helpers.rb
+- lib/payu/pos.rb
+- lib/payu/response.rb
+- lib/payu/signature.rb
+- lib/payu/transaction.rb
+- lib/payu/version.rb
+- payu.gemspec
+- spec/response_spec.rb
+- spec/signature_spec.rb
+- spec/spec_helper.rb
+- spec/transaction_spec.rb
+homepage: http://github.com/ronin/payu
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.0.3
+signing_key: 
+specification_version: 4
+summary: Simple integration with PayU gateway
+test_files:
+- spec/response_spec.rb
+- spec/signature_spec.rb
+- spec/spec_helper.rb
+- spec/transaction_spec.rb