solidus_paypal_braintree 0.4.0 → 1.0.0

data/spec/controllers/solidus_paypal_braintree/configurations_controller_spec.rb

@@ -0,0 +1,73 @@
+require 'spec_helper'
+
+describe SolidusPaypalBraintree::ConfigurationsController, type: :controller do
+  routes { SolidusPaypalBraintree::Engine.routes }
+
+  let!(:store_1) { create :store }
+  let!(:store_2) { create :store }
+
+  stub_authorization!
+
+  describe "GET #list" do
+    subject { get :list }
+
+    it "assigns all store's configurations as @configurations" do
+      subject
+      expect(assigns(:configurations)).
+        to eq [store_1.braintree_configuration, store_2.braintree_configuration]
+    end
+
+    it "renders the correct view" do
+      expect(subject).to render_template :list
+    end
+  end
+
+  describe "POST #update" do
+    subject { post :update, params: configurations_params }
+
+    let(:paypal_button_color) { 'blue' }
+    let(:configurations_params) do
+      {
+        configurations: {
+          configuration_fields: {
+            store_1.braintree_configuration.id.to_s => { paypal: true, apple_pay: true },
+            store_2.braintree_configuration.id.to_s => {
+              paypal: true,
+              apple_pay: false,
+              preferred_paypal_button_color: paypal_button_color
+            }
+          }
+        }
+      }
+    end
+
+    context "with valid parameters" do
+      it "updates the configuration" do
+        expect { subject }.to change { store_1.braintree_configuration.reload.paypal }.
+          from(false).to(true)
+      end
+
+      it "displays a success message to the user" do
+        subject
+        expect(flash[:success]).to eq "Successfully updated Braintree configurations."
+      end
+
+      it "displays all configurations" do
+        expect(subject).to redirect_to action: :list
+      end
+    end
+
+    context "with invalid parameters" do
+      let(:paypal_button_color) { 'invalid-color' }
+
+      it "displays an error message to the user" do
+        subject
+        expect(flash[:error]).to eq "An error occurred while updating Braintree configurations."
+      end
+
+      it "returns the user to the edit page" do
+        expect(subject).to redirect_to action: :list
+      end
+    end
+  end
+end

data/spec/controllers/solidus_paypal_braintree/transactions_controller_spec.rb

@@ -0,0 +1,183 @@
+require 'spec_helper'
+
+RSpec.describe SolidusPaypalBraintree::TransactionsController, type: :controller do
+  routes { SolidusPaypalBraintree::Engine.routes }
+
+  let!(:country) { create :country }
+  let(:line_item) { create :line_item, price: 50 }
+  let(:order) do
+    Spree::Order.create!(
+      line_items: [line_item],
+      email: 'test@example.com',
+      bill_address: create(:address, country: country),
+      ship_address: create(:address, country: country),
+      user: create(:user)
+    )
+  end
+
+  let(:payment_method) { create_gateway }
+
+  before do
+    allow(controller).to receive(:spree_current_user) { order.user }
+    allow(controller).to receive(:current_order) { order }
+    create :shipping_method, cost: 5
+    create :state, abbr: "WA", country: country
+  end
+
+  cassette_options = {
+    cassette_name: "transactions_controller/create",
+    match_requests_on: [:braintree_uri]
+  }
+  describe "POST create", vcr: cassette_options do
+    subject(:post_create) { post :create, params: params }
+
+    let!(:country) { create :country, iso: 'US' }
+
+    let(:params) do
+      {
+        transaction: {
+          nonce: "fake-valid-nonce",
+          payment_type: SolidusPaypalBraintree::Source::PAYPAL,
+          phone: "1112223333",
+          email: "batman@example.com",
+          address_attributes: {
+            name: "Wade Wilson",
+            address_line_1: "123 Fake Street",
+            city: "Seattle",
+            zip: "98101",
+            state_code: "WA",
+            country_code: "US"
+          }
+        },
+        payment_method_id: payment_method.id
+      }
+    end
+
+    before do
+      create :state, abbr: "WA", country: country
+    end
+
+    context "when import has invalid address" do
+      before { params[:transaction][:address_attributes][:city] = nil }
+
+      it "raises a validation error" do
+        expect { post_create }.to raise_error(
+          SolidusPaypalBraintree::TransactionsController::InvalidImportError,
+          "Import invalid: " \
+          "Address is invalid, " \
+          "Address city can't be blank"
+        )
+      end
+    end
+
+    context "when the transaction is valid", vcr: {
+      cassette_name: 'transaction/import/valid',
+      match_requests_on: [:braintree_uri]
+    } do
+      it "imports the payment" do
+        expect { post_create }.to change { order.payments.count }.by(1)
+        expect(order.payments.first.amount).to eq 55
+      end
+
+      context "when no end state is provided" do
+        it "advances the order to confirm" do
+          post_create
+          expect(order).to be_confirm
+        end
+      end
+
+      context "when end state provided is delivery" do
+        let(:params) { super().merge(state: 'delivery') }
+
+        it "advances the order to delivery" do
+          post_create
+          expect(order).to be_delivery
+        end
+      end
+
+      context "with provided address" do
+        it "creates a new address" do
+          # Creating the order also creates 3 addresses, we want to make sure
+          # the transaction import only creates 1 new one
+          order
+          expect { post_create }.to change { Spree::Address.count }.by(1)
+          expect(Spree::Address.last.full_name).to eq "Wade Wilson"
+        end
+      end
+
+      context "without country ISO" do
+        before do
+          params[:transaction][:address_attributes][:country_code] = ""
+          params[:transaction][:address_attributes][:country_name] = "United States"
+        end
+
+        it "creates a new address, looking up the ISO by country name" do
+          order
+          expect { post_create }.to change { Spree::Address.count }.by(1)
+          expect(Spree::Address.last.country.iso).to eq "US"
+        end
+      end
+
+      context "without transaction address" do
+        before { params[:transaction].delete(:address_attributes) }
+
+        it "does not create a new address" do
+          order
+          expect { post_create }.not_to(change { Spree::Address.count })
+        end
+      end
+
+      context "when format is HTML" do
+        context "when import! leaves the order in confirm" do
+          it "redirects the user to the confirm page" do
+            expect(post_create).to redirect_to spree.checkout_state_path("confirm")
+          end
+        end
+
+        context "when import! completes the order" do
+          before { allow(order).to receive(:complete?).and_return(true) }
+
+          it "displays the order to the user" do
+            expect(post_create).to redirect_to spree.order_path(order)
+          end
+        end
+      end
+
+      context "when format is JSON" do
+        before { params[:format] = :json }
+
+        it "has a successful response" do
+          post_create
+          expect(response).to be_successful
+        end
+      end
+    end
+
+    context "when the transaction is invalid" do
+      before { params[:transaction][:email] = nil }
+
+      context "when format is HTML" do
+        it "raises an error including the validation messages" do
+          expect { post_create }.to raise_error(
+            SolidusPaypalBraintree::TransactionsController::InvalidImportError,
+            "Import invalid: Email can't be blank"
+          )
+        end
+      end
+
+      context "when format is JSON" do
+        before { params[:format] = :json }
+
+        it "has a failed status" do
+          post_create
+          expect(response.status).to eq 422
+        end
+
+        it "returns the errors as JSON" do
+          post_create
+          expect(JSON.parse(response.body)["errors"]["email"]).to eq ["can't be blank"]
+        end
+      end
+    end
+  end
+end

data/spec/features/backend/configuration_spec.rb

@@ -0,0 +1,23 @@
+require 'spec_helper'
+
+RSpec.describe "viewing the configuration interface" do
+  stub_authorization!
+
+  # Regression to ensure this page still renders on old versions of solidus
+  it "doesn't raise any errors due to unavailable route helpers" do
+    visit "/solidus_paypal_braintree/configurations/list"
+    expect(page).to have_content("Braintree Configurations")
+  end
+
+  # Regression to ensure this page renders on Solidus 2.4
+  it "doesn't raise any errors due to unavailable preference field partial" do
+    Rails.application.config.spree.payment_methods << SolidusPaypalBraintree::Gateway
+    Spree::PaymentMethod.create!(
+      type: 'SolidusPaypalBraintree::Gateway',
+      name: 'Braintree Payments'
+    )
+    visit '/admin/payment_methods'
+    page.find('a[title="Edit"]').click
+    expect(page).to have_field 'Name', with: 'Braintree Payments'
+  end
+end

data/spec/features/backend/new_payment_spec.rb

@@ -0,0 +1,137 @@
+require 'spec_helper'
+require 'spree/testing_support/order_walkthrough'
+
+shared_context "with backend checkout setup" do
+  let(:braintree) { new_gateway(active: true) }
+  let!(:gateway) { create :payment_method }
+  let(:order) { create(:completed_order_with_totals, number: 'R9999999') }
+  let(:pending_case_insensitive) { /pending/i }
+  let(:expiration) { "02/#{Date.current.year.next}" }
+
+  before do
+    braintree.save!
+    create(:store, payment_methods: [gateway, braintree]).tap do |store|
+      store.braintree_configuration.update!(credit_card: true)
+    end
+
+    allow_any_instance_of(SolidusPaypalBraintree::Source).to receive(:nonce).and_return("fake-valid-nonce")
+
+    # Order and payment numbers must be identical between runs to re-use the VCR
+    # cassette
+    allow_any_instance_of(Spree::Payment).to receive(:number).and_return("123ABC")
+  end
+
+  around do |example|
+    Capybara.using_wait_time(20) { example.run }
+  end
+end
+
+describe 'creating a new payment', type: :feature, js: true do
+  stub_authorization!
+
+  context "with valid credit card data", vcr: {
+    cassette_name: 'admin/valid_credit_card',
+    match_requests_on: [:braintree_uri]
+  } do
+    include_context "with backend checkout setup"
+
+    it "checks out successfully" do
+      visit "/admin/orders/#{order.number}/payments/new"
+      choose('Braintree')
+      expect(page).to have_selector("#payment_method_#{braintree.id}", visible: :visible)
+      expect(page).to have_selector("iframe#braintree-hosted-field-number")
+
+      within_frame("braintree-hosted-field-number") do
+        fill_in("credit-card-number", with: "4111111111111111")
+      end
+      within_frame("braintree-hosted-field-expirationDate") do
+        fill_in("expiration", with: expiration)
+      end
+      within_frame("braintree-hosted-field-cvv") do
+        fill_in("cvv", with: "123")
+      end
+
+      click_button("Update")
+
+      within('table#payments') do
+        expect(page).to have_content('Braintree')
+        expect(page).to have_content(pending_case_insensitive)
+      end
+
+      click_icon(:capture)
+
+      expect(page).not_to have_content('Cannot perform requested operation')
+      expect(page).to have_content('Payment Updated')
+    end
+  end
+
+  context "with invalid credit card data" do
+    include_context "with backend checkout setup"
+
+    # Attempt to submit an invalid form once
+    before do
+      visit "/admin/orders/#{order.number}/payments/new"
+      choose('Braintree')
+
+      within_frame("braintree-hosted-field-number") do
+        fill_in("credit-card-number", with: "1111111111111111")
+      end
+      within_frame("braintree-hosted-field-expirationDate") do
+        fill_in("expiration", with: expiration)
+      end
+      within_frame("braintree-hosted-field-cvv") do
+        fill_in("cvv", with: "123")
+      end
+
+      click_button "Update"
+    end
+
+    it "displays a meaningful error message" do
+      expect(page).to have_text(
+        "BraintreeError: Some payment input fields are invalid. Cannot tokenize invalid card fields."
+      )
+    end
+
+    # Same error should be produced when submitting an empty form again
+    context "when user tries to resubmit another invalid form", vcr: {
+      cassette_name: "admin/invalid_credit_card",
+      match_requests_on: [:braintree_uri]
+    } do
+      it "displays a meaningful error message" do
+        click_button "Update"
+        expect(page).to have_text(
+          "BraintreeError: Some payment input fields are invalid. Cannot tokenize invalid card fields."
+        )
+      end
+    end
+
+    # User should be able to checkout after submit fails once
+    context "when user enters valid data", vcr: {
+      cassette_name: "admin/resubmit_credit_card",
+      match_requests_on: [:braintree_uri]
+    } do
+      it "creates the payment successfully" do
+        within_frame("braintree-hosted-field-number") do
+          fill_in("credit-card-number", with: "4111111111111111")
+        end
+        within_frame("braintree-hosted-field-expirationDate") do
+          fill_in("expiration", with: expiration)
+        end
+        within_frame("braintree-hosted-field-cvv") do
+          fill_in("cvv", with: "123")
+        end
+        click_button("Update")
+
+        within('table#payments') do
+          expect(page).to have_content('Braintree')
+          expect(page).to have_content(pending_case_insensitive)
+        end
+
+        click_icon(:capture)
+
+        expect(page).not_to have_content('Cannot perform requested operation')
+        expect(page).to have_content('Payment Updated')
+      end
+    end
+  end
+end

data/spec/features/frontend/braintree_credit_card_checkout_spec.rb

@@ -0,0 +1,187 @@
+require 'spec_helper'
+require 'spree/testing_support/order_walkthrough'
+
+shared_context "with frontend checkout setup" do
+  let(:braintree) { new_gateway(active: true) }
+  let!(:gateway) { create :payment_method }
+  let(:three_d_secure_enabled) { false }
+  let(:card_number) { "4111111111111111" }
+  let(:card_expiration) { "01/#{Time.now.utc.year + 2}" }
+
+  before do
+    braintree.save!
+
+    create(:store, payment_methods: [gateway, braintree]).tap do |store|
+      store.braintree_configuration.update!(
+        credit_card: true,
+        three_d_secure: three_d_secure_enabled
+      )
+
+      braintree.update(
+        preferred_credit_card_fields_style: { input: { 'font-size': '30px' } },
+        preferred_placeholder_text: { number: "Enter Your Card Number" }
+      )
+    end
+
+    order = if Spree.solidus_gem_version >= Gem::Version.new('2.6.0')
+              Spree::TestingSupport::OrderWalkthrough.up_to(:delivery)
+            else
+              OrderWalkthrough.up_to(:delivery)
+            end
+
+    user = create(:user)
+    order.user = user
+    order.number = "R9999999"
+    order.recalculate
+
+    allow_any_instance_of(Spree::CheckoutController).to receive_messages(current_order: order)
+    allow_any_instance_of(Spree::CheckoutController).to receive_messages(try_spree_current_user: user)
+    allow_any_instance_of(Spree::Payment).to receive(:number).and_return("123ABC")
+    allow_any_instance_of(SolidusPaypalBraintree::Source).to receive(:nonce).and_return("fake-valid-nonce")
+
+    visit spree.checkout_state_path(:delivery)
+    click_button "Save and Continue"
+    choose("Braintree")
+  end
+
+  around do |example|
+    Capybara.using_wait_time(20) { example.run }
+  end
+end
+
+describe 'entering credit card details', type: :feature, js: true do
+  context 'when page loads' do
+    include_context "with frontend checkout setup"
+
+    it "selectors display correctly" do
+      expect(page).to have_selector("#payment_method_#{braintree.id}", visible: :visible)
+      expect(page).to have_selector("iframe#braintree-hosted-field-number")
+      expect(page).to have_selector("iframe[type='number']")
+    end
+
+    it "credit card field style variable is set" do
+      within_frame("braintree-hosted-field-number") do
+        expect(find("#credit-card-number").style("font-size")).to eq({ "font-size" => "30px" })
+      end
+    end
+
+    it "sets the placeholder text correctly" do
+      within_frame("braintree-hosted-field-number") do
+        expect(find("#credit-card-number")['placeholder']).to eq("Enter Your Card Number")
+      end
+    end
+  end
+
+  context "with valid credit card data", vcr: {
+    cassette_name: 'checkout/valid_credit_card',
+    match_requests_on: [:braintree_uri]
+  } do
+    include_context "with frontend checkout setup"
+
+    before do
+      within_frame("braintree-hosted-field-number") do
+        fill_in("credit-card-number", with: card_number)
+      end
+      within_frame("braintree-hosted-field-expirationDate") do
+        fill_in("expiration", with: card_expiration)
+      end
+      within_frame("braintree-hosted-field-cvv") do
+        fill_in("cvv", with: "123")
+      end
+
+      click_button("Save and Continue")
+    end
+
+    it "checks out successfully" do
+      within("#order_details") do
+        expect(page).to have_content("CONFIRM")
+      end
+      click_button("Place Order")
+      expect(page).to have_content("Your order has been processed successfully")
+    end
+
+    context 'with 3D secure enabled' do
+      let(:three_d_secure_enabled) { true }
+      let(:card_number) { "4000000000000002" }
+
+      it 'checks out successfully' do
+        authenticate_3ds
+
+        within("#order_details") do
+          expect(page).to have_content("CONFIRM")
+        end
+
+        click_button("Place Order")
+        expect(page).to have_content("Your order has been processed successfully")
+      end
+
+      context 'with 3ds authentication error' do
+        let(:card_number) { "4000000000000028" }
+
+        it 'shows a 3ds authentication error' do
+          authenticate_3ds
+          expect(page).to have_content(
+            "3D Secure authentication failed. Please try again using a different payment method."
+          )
+        end
+      end
+    end
+  end
+
+  context "with invalid credit card data" do
+    include_context "with frontend checkout setup"
+
+    # Attempt to submit an empty form once
+    before do
+      click_button "Save and Continue"
+    end
+
+    it "displays an alert with a meaningful error message" do
+      expect(page).to have_text I18n.t("solidus_paypal_braintree.errors.empty_fields")
+      expect(page).to have_selector("input[type='submit']:enabled")
+    end
+
+    # Same error should be produced when submitting an empty form again
+    context "when user tries to resubmit an empty form", vcr: { cassette_name: "checkout/invalid_credit_card" } do
+      it "displays an alert with a meaningful error message" do
+        expect(page).to have_selector("input[type='submit']:enabled")
+
+        click_button "Save and Continue"
+        expect(page).to have_text I18n.t("solidus_paypal_braintree.errors.empty_fields")
+      end
+    end
+
+    # User should be able to checkout after submit fails once
+    context "when user enters valid data", vcr: {
+      cassette_name: "checkout/resubmit_credit_card",
+      match_requests_on: [:braintree_uri]
+    } do
+      it "allows them to resubmit and complete the purchase" do
+        within_frame("braintree-hosted-field-number") do
+          fill_in("credit-card-number", with: "4111111111111111")
+        end
+        within_frame("braintree-hosted-field-expirationDate") do
+          fill_in("expiration", with: card_expiration)
+        end
+        within_frame("braintree-hosted-field-cvv") do
+          fill_in("cvv", with: "123")
+        end
+        click_button("Save and Continue")
+        within("#order_details") do
+          expect(page).to have_content("CONFIRM")
+        end
+        click_button("Place Order")
+        expect(page).to have_content("Your order has been processed successfully")
+      end
+    end
+  end
+
+  def authenticate_3ds
+    within_frame("Cardinal-CCA-IFrame") do
+      within_frame("authWindow") do
+        fill_in("password", with: "1234")
+        click_button("Submit")
+      end
+    end
+  end
+end