solidus_mercado_pago 1.0.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 2176d57becc66dfbc62cabcb7d0b63104972ebad
+  data.tar.gz: a0a527c78f3633ff7bb81616fe6c34a92398e2ae
+SHA512:
+  metadata.gz: 279d07393c455c6279a3ef25eefb6e1ae5bf2b3dbbcdcadefcc9932c87360746390cc21b39db3116a44de1561934134ac9d031cf178e86af05331b6b4c85c276
+  data.tar.gz: 69452afdba14d5f37c79a239a85f180ff507ef37f2128e1922c39862a90ec71f8101096ce3d60751171a07e9b6e5347838d777d2e98600e66036d5e5a30c1c37

data/app/assets/javascripts/spree/frontend/solidus_mercado_pago.js

@@ -0,0 +1,25 @@
+//= require spree/frontend
+
+MercadoPago = {
+  hidePaymentSaveAndContinueButton: function(paymentMethod) {
+    if (MercadoPago.paymentMethodID && paymentMethod.val() == MercadoPago.paymentMethodID) {
+      $('.continue').hide();
+      $('[data-hook=coupon_code]').hide();
+    } else {
+      $('.continue').show();
+      $('[data-hook=coupon_code]').show();
+    }
+  }
+};
+
+$(document).ready(function() {
+  checkedPaymentMethod = $('div[data-hook="checkout_payment_step"] input[type="radio"]:checked');
+  MercadoPago.hidePaymentSaveAndContinueButton(checkedPaymentMethod);
+  paymentMethods = $('div[data-hook="checkout_payment_step"] input[type="radio"]').click(function (e) {
+    MercadoPago.hidePaymentSaveAndContinueButton($(e.target));
+  });
+
+  $('button.mercado_pago_button').click(function(event){
+    $(event.target).prop("disabled",true);
+  });
+});

data/app/assets/stylesheets/spree/backend/solidus_mercado_pago.css

@@ -0,0 +1 @@
+/* Custom backend assets */

data/app/assets/stylesheets/spree/frontend/solidus_mercado_pago.css

@@ -0,0 +1 @@
+/* Custom frontend assets */

data/app/controllers/spree/mercado_pago_controller.rb

@@ -0,0 +1,68 @@
+module Spree
+  class MercadoPagoController < StoreController
+    protect_from_forgery except: :ipn
+    # skip_before_action :set_current_order, only: :ipn
+
+    def checkout
+      current_order.state_name == :payment || raise(ActiveRecord::RecordNotFound)
+      payment_method = PaymentMethod::MercadoPago.find(params[:payment_method_id])
+      payment = current_order.payments
+                             .create!(amount: current_order.total, payment_method: payment_method)
+      payment.started_processing!
+
+      preferences = ::MercadoPago::OrderPreferencesBuilder
+                    .new(current_order, payment, callback_urls)
+                    .preferences_hash
+
+      provider = payment_method.provider
+      provider.create_preferences(preferences)
+
+      redirect_to provider.redirect_url
+    end
+
+    # Success/pending callbacks are currently aliases, this may change
+    # if required.
+    def success
+      payment.order.next
+      flash.notice = Spree.t(:order_processed_successfully)
+      flash['order_completed'] = true
+      redirect_to spree.order_path(payment.order)
+    end
+
+    def failure
+      payment.failure!
+      flash.notice = Spree.t(:payment_processing_failed)
+      flash['order_completed'] = true
+      redirect_to spree.checkout_state_path(state: :payment)
+    end
+
+    def ipn
+      notification = MercadoPago::Notification
+                     .new(operation_id: params[:id], topic: params[:topic])
+
+      if notification.save
+        MercadoPago::HandleReceivedNotification.new(notification).process!
+        status = :ok
+      else
+        status = :bad_request
+      end
+
+      render json: :empty, status: status
+    end
+
+    private
+
+    def payment
+      @payment ||= Spree::Payment.where(number: params[:external_reference])
+                                 .first
+    end
+
+    def callback_urls
+      @callback_urls ||= {
+        success: mercado_pago_success_url,
+        pending: mercado_pago_success_url,
+        failure: mercado_pago_failure_url
+      }
+    end
+  end
+end

data/app/models/mercado_pago/client.rb

@@ -0,0 +1,62 @@
+require 'rest_client'
+require 'mercado_pago/client/authentication'
+require 'mercado_pago/client/preferences'
+require 'mercado_pago/client/api'
+
+module MercadoPago
+  class Client
+    # These three includes are because of the user of line_item_description from
+    # ProductsHelper
+    include Authentication
+    include Preferences
+    include API
+
+    attr_reader :errors
+    attr_reader :auth_response
+    attr_reader :preferences_response
+
+    def initialize(payment_method, options = {})
+      @payment_method = payment_method
+      @api_options    = options.clone
+      @errors         = []
+    end
+
+    def get_operation_info(operation_id)
+      url = create_url(notifications_url(operation_id), access_token: access_token)
+      options = { content_type: 'application/x-www-form-urlencoded', accept: 'application/json' }
+      get(url, options, quiet: true)
+    end
+
+    # def get_external_reference(operation_id)
+    #   response = send_notification_request(operation_id)
+    #   if response
+    #     response['collection']['external_reference']
+    #   end
+    # end
+
+    def get_payment_status(external_reference)
+      response = send_search_request(external_reference: external_reference, access_token: access_token)
+
+      if response['results'].empty?
+        'pending'
+      else
+        response['results'][0]['collection']['status']
+      end
+    end
+
+    private
+
+    def log_error(msg, response, request, result)
+      Rails.logger.info msg
+      Rails.logger.info "response: #{response}."
+      Rails.logger.info "request args: #{request.args}."
+      Rails.logger.info "result #{result}."
+    end
+
+    def send_search_request(params, _options = {})
+      url = create_url(search_url, params)
+      options = { content_type: 'application/x-www-form-urlencoded', accept: 'application/json' }
+      get(url, options)
+    end
+  end
+end

data/app/models/mercado_pago/client/api.rb

@@ -0,0 +1,44 @@
+require 'json'
+
+class MercadoPago::Client
+  module API
+    def redirect_url
+      point_key = sandbox ? 'sandbox_init_point' : 'init_point'
+      @preferences_response[point_key]
+    end
+
+    private
+
+    def notifications_url(operation_id)
+      sandbox_part = sandbox ? 'sandbox/' : ''
+      "https://api.mercadolibre.com/#{sandbox_part}collections/notifications/#{operation_id}"
+    end
+
+    def search_url
+      sandbox_part = sandbox ? 'sandbox/' : ''
+      "https://api.mercadolibre.com/#{sandbox_part}collections/search"
+    end
+
+    def create_url(url, params = {})
+      uri = URI(url)
+      uri.query = URI.encode_www_form(params)
+      uri.to_s
+    end
+
+    def preferences_url(token)
+      create_url('https://api.mercadolibre.com/checkout/preferences', access_token: token)
+    end
+
+    def sandbox
+      Rails.application.try(:secrets).try(:[], :mercadopago).try(:[], :sandbox)
+    end
+
+    def get(url, request_options = {}, options = {})
+      response = RestClient.get(url, request_options)
+      JSON.parse(response)
+    # TODO: add class to rescue
+    rescue => e
+      raise e unless options[:quiet]
+    end
+  end
+end

data/app/models/mercado_pago/client/authentication.rb

@@ -0,0 +1,36 @@
+require 'json'
+
+class MercadoPago::Client
+  module Authentication
+    def authenticate
+      response = send_authentication_request
+      @auth_response = JSON.parse(response)
+    rescue RestClient::Exception => e
+      @errors << I18n.t(:authentication_error, scope: :mercado_pago)
+      raise e.message
+    end
+
+    private
+
+    def send_authentication_request
+      RestClient.post(
+        'https://api.mercadolibre.com/oauth/token',
+        { grant_type: 'client_credentials', client_id: client_id, client_secret: client_secret },
+        content_type: 'application/x-www-form-urlencoded', accept: 'application/json'
+      )
+    end
+
+    def client_id
+      Rails.application.try(:secrets).try(:[], :mercadopago).try(:[], :client_id)
+    end
+
+    def client_secret
+      Rails.application.try(:secrets).try(:[], :mercadopago).try(:[], :client_secret)
+    end
+
+    def access_token
+      authenticate unless @auth_response
+      @auth_response['access_token']
+    end
+  end
+end

data/app/models/mercado_pago/client/preferences.rb

@@ -0,0 +1,20 @@
+require 'json'
+
+class MercadoPago::Client
+  module Preferences
+    def create_preferences(preferences)
+      response = send_preferences_request(preferences)
+      @preferences_response = JSON.parse(response)
+    rescue RestClient::Exception => e
+      @errors << I18n.t(:authentication_error, scope: :mercado_pago)
+      raise e.message
+    end
+
+    private
+
+    def send_preferences_request(preferences)
+      RestClient.post(preferences_url(access_token), preferences.to_json,
+                      content_type: 'application/json', accept: 'application/json')
+    end
+  end
+end

data/app/models/mercado_pago/notification.rb

@@ -0,0 +1,8 @@
+module MercadoPago
+  class Notification < ActiveRecord::Base
+    self.table_name = 'mercado_pago_notifications'
+
+    validates :topic, presence: true, inclusion: { in: %w[payment preapproval authorized_payment merchant_order] }
+    validates :operation_id, presence: true
+  end
+end

data/app/models/mercado_pago/order_preferences_builder.rb

@@ -0,0 +1,65 @@
+module MercadoPago
+  class OrderPreferencesBuilder
+    include ActionView::Helpers::TextHelper
+    include ActionView::Helpers::SanitizeHelper
+    include Spree::ProductsHelper
+
+    def initialize(order, payment, callback_urls, payer_data = nil)
+      @order         = order
+      @payment       = payment
+      @callback_urls = callback_urls
+      @payer_data    = payer_data
+    end
+
+    def preferences_hash
+      {
+        external_reference: @payment.number,
+        back_urls: @callback_urls,
+        payer: @payer_data,
+        items: generate_items
+      }
+    end
+
+    private
+
+    def generate_items
+      items = []
+
+      items += generate_items_from_line_items
+      items += generate_items_from_adjustments
+      items += generate_items_from_shipments
+
+      items
+    end
+
+    def generate_items_from_shipments
+      @order.shipments.collect do |shipment|
+        {
+          title: shipment.shipping_method.name,
+          unit_price: shipment.cost.to_f + shipment.adjustment_total.to_f,
+          quantity: 1
+        }
+      end
+    end
+
+    def generate_items_from_line_items
+      @order.line_items.collect do |line_item|
+        {
+          title: line_item_description_text(line_item.variant.product.name),
+          unit_price: line_item.price.to_f,
+          quantity: line_item.quantity
+        }
+      end
+    end
+
+    def generate_items_from_adjustments
+      @order.adjustments.eligible.collect do |adjustment|
+        {
+          title: line_item_description_text(adjustment.label),
+          unit_price: adjustment.amount.to_f,
+          quantity: 1
+        }
+      end
+    end
+  end
+end

data/app/models/spree/payment_method/mercado_pago.rb

@@ -0,0 +1,46 @@
+module Spree
+  class PaymentMethod::MercadoPago < PaymentMethod
+    def payment_profiles_supported?
+      false
+    end
+
+    def provider_class
+      ::MercadoPago::Client
+    end
+
+    def provider(additional_options = {})
+      @provider ||= begin
+                      options = { sandbox: preferred_sandbox }
+                      client = provider_class.new(self, options.merge(additional_options))
+                      client.authenticate
+                      client
+                    end
+    end
+
+    def source_required?
+      false
+    end
+
+    def auto_capture?
+      false
+    end
+
+    def preferred_sandbox
+      Rails.application.try(:secrets).try(:[], :mercadopago).try(:[], :sandbox)
+    end
+
+    ## Admin options
+
+    def can_void?(payment)
+      payment.state != 'void'
+    end
+
+    def actions
+      %w[void]
+    end
+
+    def void(*_args)
+      ActiveMerchant::Billing::Response.new(true, '', {}, {})
+    end
+  end
+end

data/app/services/mercado_pago/handle_received_notification.rb

@@ -0,0 +1,18 @@
+module MercadoPago
+  class HandleReceivedNotification
+    def initialize(notification)
+      @notification = notification
+    end
+
+    # The purpose of this method is to enable async/sync processing
+    # of Mercado Pago IPNs. For simplicity processing is synchronous but
+    # if you would like to enqueue the processing via Resque/Ost/etc you
+    # will be able to do it.
+    def process!
+      # Sync
+      ProcessNotification.new(@notification).process!
+      # Async Will be configurable via block for example:
+      # Resque.enqueue(ProcessNotificationWorker, {id: @notification.id})
+    end
+  end
+end

data/app/services/mercado_pago/process_notification.rb

@@ -0,0 +1,56 @@
+# Process notification:
+# ---------------------
+# Fetch collection information
+# Find payment by external reference
+# If found
+#   Update payment status
+#   Notify user
+# If not found
+#   Ignore notification (maybe payment from outside Spree)
+module MercadoPago
+  class ProcessNotification
+    # Equivalent payment states
+    # MP state => Spree state
+    # =======================
+    #
+    # approved     => complete
+    # pending      => pend
+    # in_process   => pend
+    # rejected     => failed
+    # refunded     => void
+    # cancelled    => void
+    # in_mediation => pend
+    # charged_back => void
+    STATES = {
+      complete: %w[approved],
+      failure: %w[rejected],
+      void:    %w[refunded cancelled charged_back]
+    }.freeze
+
+    attr_reader :notification
+
+    def initialize(notification)
+      @notification = notification
+    end
+
+    def process!
+      # Fix: Payment method is an instance of Spree::PaymentMethod::MercadoPago not THE class
+      client = ::Spree::PaymentMethod::MercadoPago.first.provider
+      raw_op_info = client.get_operation_info(notification.operation_id)
+      op_info = raw_op_info['collection'] if raw_op_info.present?
+      # TODO: rewrite this.
+      if op_info && (payment = Spree::Payment.where(number: op_info['external_reference']).first)
+        if STATES[:complete].include?(op_info['status'])
+          payment.complete
+        elsif STATES[:failure].include?(op_info['status'])
+          payment.failure
+        elsif STATES[:void].include?(op_info['status'])
+          payment.void
+        end
+
+        # When Spree issue #5246 is fixed we can remove this line
+        payment.order.updater.update
+      end
+    end
+  end
+end