stripe 2.0.3 → 5.55.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +5 -5
- data/CHANGELOG.md +1036 -0
- data/CODE_OF_CONDUCT.md +77 -0
- data/Gemfile +24 -23
- data/History.txt +1 -593
- data/Makefile +7 -0
- data/README.md +252 -53
- data/Rakefile +18 -24
- data/VERSION +1 -1
- data/bin/stripe-console +5 -3
- data/lib/stripe/api_operations/create.rb +4 -2
- data/lib/stripe/api_operations/delete.rb +31 -3
- data/lib/stripe/api_operations/list.rb +4 -13
- data/lib/stripe/api_operations/nested_resource.rb +73 -0
- data/lib/stripe/api_operations/request.rb +92 -10
- data/lib/stripe/api_operations/save.rb +25 -13
- data/lib/stripe/api_operations/search.rb +19 -0
- data/lib/stripe/api_resource.rb +55 -11
- data/lib/stripe/api_resource_test_helpers.rb +47 -0
- data/lib/stripe/connection_manager.rb +200 -0
- data/lib/stripe/error_object.rb +93 -0
- data/lib/stripe/errors.rb +98 -13
- data/lib/stripe/instrumentation.rb +84 -0
- data/lib/stripe/list_object.rb +55 -21
- data/lib/stripe/multipart_encoder.rb +131 -0
- data/lib/stripe/oauth.rb +65 -0
- data/lib/stripe/object_types.rb +119 -0
- data/lib/stripe/{account.rb → resources/account.rb} +75 -38
- data/lib/stripe/resources/account_link.rb +10 -0
- data/lib/stripe/resources/alipay_account.rb +34 -0
- data/lib/stripe/{apple_pay_domain.rb → resources/apple_pay_domain.rb} +6 -1
- data/lib/stripe/resources/application_fee.rb +14 -0
- data/lib/stripe/resources/application_fee_refund.rb +31 -0
- data/lib/stripe/resources/balance.rb +8 -0
- data/lib/stripe/resources/balance_transaction.rb +10 -0
- data/lib/stripe/resources/bank_account.rb +43 -0
- data/lib/stripe/resources/billing_portal/configuration.rb +14 -0
- data/lib/stripe/resources/billing_portal/session.rb +12 -0
- data/lib/stripe/{bitcoin_receiver.rb → resources/bitcoin_receiver.rb} +8 -4
- data/lib/stripe/resources/bitcoin_transaction.rb +16 -0
- data/lib/stripe/resources/capability.rb +34 -0
- data/lib/stripe/resources/card.rb +38 -0
- data/lib/stripe/resources/cash_balance.rb +22 -0
- data/lib/stripe/resources/charge.rb +32 -0
- data/lib/stripe/resources/checkout/session.rb +27 -0
- data/lib/stripe/resources/country_spec.rb +10 -0
- data/lib/stripe/{coupon.rb → resources/coupon.rb} +6 -1
- data/lib/stripe/resources/credit_note.rb +33 -0
- data/lib/stripe/resources/credit_note_line_item.rb +8 -0
- data/lib/stripe/resources/customer.rb +74 -0
- data/lib/stripe/resources/customer_balance_transaction.rb +31 -0
- data/lib/stripe/resources/discount.rb +8 -0
- data/lib/stripe/resources/dispute.rb +22 -0
- data/lib/stripe/resources/ephemeral_key.rb +20 -0
- data/lib/stripe/resources/event.rb +10 -0
- data/lib/stripe/resources/exchange_rate.rb +10 -0
- data/lib/stripe/resources/file.rb +36 -0
- data/lib/stripe/resources/file_link.rb +12 -0
- data/lib/stripe/resources/financial_connections/account.rb +31 -0
- data/lib/stripe/resources/financial_connections/account_owner.rb +10 -0
- data/lib/stripe/resources/financial_connections/account_ownership.rb +10 -0
- data/lib/stripe/resources/financial_connections/session.rb +12 -0
- data/lib/stripe/resources/funding_instructions.rb +16 -0
- data/lib/stripe/resources/identity/verification_report.rb +12 -0
- data/lib/stripe/resources/identity/verification_session.rb +35 -0
- data/lib/stripe/resources/invoice.rb +83 -0
- data/lib/stripe/{invoice_item.rb → resources/invoice_item.rb} +6 -1
- data/lib/stripe/resources/invoice_line_item.rb +8 -0
- data/lib/stripe/resources/issuing/authorization.rb +34 -0
- data/lib/stripe/resources/issuing/card.rb +25 -0
- data/lib/stripe/resources/issuing/card_details.rb +10 -0
- data/lib/stripe/resources/issuing/cardholder.rb +14 -0
- data/lib/stripe/resources/issuing/dispute.rb +25 -0
- data/lib/stripe/resources/issuing/transaction.rb +13 -0
- data/lib/stripe/resources/line_item.rb +8 -0
- data/lib/stripe/resources/login_link.rb +15 -0
- data/lib/stripe/resources/mandate.rb +8 -0
- data/lib/stripe/resources/order.rb +33 -0
- data/lib/stripe/resources/order_return.rb +10 -0
- data/lib/stripe/resources/payment_intent.rb +82 -0
- data/lib/stripe/resources/payment_link.rb +23 -0
- data/lib/stripe/resources/payment_method.rb +33 -0
- data/lib/stripe/resources/payout.rb +33 -0
- data/lib/stripe/resources/person.rb +32 -0
- data/lib/stripe/{plan.rb → resources/plan.rb} +5 -0
- data/lib/stripe/resources/price.rb +21 -0
- data/lib/stripe/resources/product.rb +22 -0
- data/lib/stripe/resources/promotion_code.rb +12 -0
- data/lib/stripe/resources/quote.rb +105 -0
- data/lib/stripe/resources/radar/early_fraud_warning.rb +12 -0
- data/lib/stripe/resources/radar/value_list.rb +15 -0
- data/lib/stripe/resources/radar/value_list_item.rb +14 -0
- data/lib/stripe/resources/recipient.rb +14 -0
- data/lib/stripe/resources/recipient_transfer.rb +7 -0
- data/lib/stripe/resources/refund.rb +42 -0
- data/lib/stripe/resources/reporting/report_run.rb +13 -0
- data/lib/stripe/resources/reporting/report_type.rb +13 -0
- data/lib/stripe/resources/reversal.rb +30 -0
- data/lib/stripe/resources/review.rb +21 -0
- data/lib/stripe/resources/setup_attempt.rb +10 -0
- data/lib/stripe/resources/setup_intent.rb +43 -0
- data/lib/stripe/resources/shipping_rate.rb +12 -0
- data/lib/stripe/resources/sigma/scheduled_query_run.rb +16 -0
- data/lib/stripe/{sku.rb → resources/sku.rb} +7 -2
- data/lib/stripe/resources/source.rb +47 -0
- data/lib/stripe/resources/source_transaction.rb +8 -0
- data/lib/stripe/resources/subscription.rb +35 -0
- data/lib/stripe/resources/subscription_item.rb +26 -0
- data/lib/stripe/resources/subscription_schedule.rb +33 -0
- data/lib/stripe/resources/tax_code.rb +10 -0
- data/lib/stripe/resources/tax_id.rb +27 -0
- data/lib/stripe/{product.rb → resources/tax_rate.rb} +7 -3
- data/lib/stripe/resources/terminal/configuration.rb +15 -0
- data/lib/stripe/resources/terminal/connection_token.rb +12 -0
- data/lib/stripe/resources/terminal/location.rb +15 -0
- data/lib/stripe/resources/terminal/reader.rb +75 -0
- data/lib/stripe/resources/test_helpers/test_clock.rb +25 -0
- data/lib/stripe/{three_d_secure.rb → resources/three_d_secure.rb} +5 -0
- data/lib/stripe/resources/token.rb +10 -0
- data/lib/stripe/resources/topup.rb +23 -0
- data/lib/stripe/resources/transfer.rb +27 -0
- data/lib/stripe/resources/usage_record.rb +8 -0
- data/lib/stripe/resources/usage_record_summary.rb +8 -0
- data/lib/stripe/{recipient.rb → resources/webhook_endpoint.rb} +6 -5
- data/lib/stripe/resources.rb +100 -0
- data/lib/stripe/search_result_object.rb +86 -0
- data/lib/stripe/singleton_api_resource.rb +10 -4
- data/lib/stripe/stripe_client.rb +886 -223
- data/lib/stripe/stripe_configuration.rb +194 -0
- data/lib/stripe/stripe_object.rb +301 -132
- data/lib/stripe/stripe_response.rb +89 -27
- data/lib/stripe/util.rb +272 -122
- data/lib/stripe/version.rb +3 -1
- data/lib/stripe/webhook.rb +121 -0
- data/lib/stripe.rb +94 -116
- data/stripe.gemspec +35 -16
- metadata +127 -156
- data/.gitattributes +0 -4
- data/.github/ISSUE_TEMPLATE.md +0 -5
- data/.gitignore +0 -5
- data/.travis.yml +0 -15
- data/lib/stripe/alipay_account.rb +0 -20
- data/lib/stripe/application_fee.rb +0 -20
- data/lib/stripe/application_fee_refund.rb +0 -18
- data/lib/stripe/balance.rb +0 -4
- data/lib/stripe/balance_transaction.rb +0 -9
- data/lib/stripe/bank_account.rb +0 -28
- data/lib/stripe/bitcoin_transaction.rb +0 -9
- data/lib/stripe/card.rb +0 -25
- data/lib/stripe/charge.rb +0 -80
- data/lib/stripe/country_spec.rb +0 -9
- data/lib/stripe/customer.rb +0 -77
- data/lib/stripe/dispute.rb +0 -15
- data/lib/stripe/event.rb +0 -5
- data/lib/stripe/file_upload.rb +0 -31
- data/lib/stripe/invoice.rb +0 -27
- data/lib/stripe/order.rb +0 -27
- data/lib/stripe/order_return.rb +0 -9
- data/lib/stripe/refund.rb +0 -7
- data/lib/stripe/reversal.rb +0 -18
- data/lib/stripe/source.rb +0 -11
- data/lib/stripe/subscription.rb +0 -31
- data/lib/stripe/subscription_item.rb +0 -12
- data/lib/stripe/token.rb +0 -5
- data/lib/stripe/transfer.rb +0 -16
- data/openapi/fixtures.json +0 -1383
- data/openapi/fixtures.yaml +0 -1130
- data/openapi/spec.json +0 -19749
- data/openapi/spec.yaml +0 -15359
- data/test/api_fixtures.rb +0 -29
- data/test/api_stub_helpers.rb +0 -125
- data/test/stripe/account_test.rb +0 -204
- data/test/stripe/alipay_account_test.rb +0 -19
- data/test/stripe/api_operations_test.rb +0 -31
- data/test/stripe/api_resource_test.rb +0 -496
- data/test/stripe/apple_pay_domain_test.rb +0 -33
- data/test/stripe/application_fee_refund_test.rb +0 -38
- data/test/stripe/application_fee_test.rb +0 -14
- data/test/stripe/balance_test.rb +0 -11
- data/test/stripe/bank_account_test.rb +0 -41
- data/test/stripe/bitcoin_receiver_test.rb +0 -70
- data/test/stripe/bitcoin_transaction_test.rb +0 -21
- data/test/stripe/charge_test.rb +0 -59
- data/test/stripe/country_spec_test.rb +0 -20
- data/test/stripe/coupon_test.rb +0 -44
- data/test/stripe/customer_card_test.rb +0 -42
- data/test/stripe/customer_test.rb +0 -116
- data/test/stripe/dispute_test.rb +0 -42
- data/test/stripe/errors_test.rb +0 -18
- data/test/stripe/file_upload_test.rb +0 -66
- data/test/stripe/invoice_item_test.rb +0 -55
- data/test/stripe/invoice_test.rb +0 -66
- data/test/stripe/list_object_test.rb +0 -170
- data/test/stripe/order_return_test.rb +0 -21
- data/test/stripe/order_test.rb +0 -59
- data/test/stripe/plan_test.rb +0 -52
- data/test/stripe/product_test.rb +0 -47
- data/test/stripe/recipient_card_test.rb +0 -40
- data/test/stripe/recipient_test.rb +0 -50
- data/test/stripe/refund_test.rb +0 -39
- data/test/stripe/reversal_test.rb +0 -43
- data/test/stripe/sku_test.rb +0 -50
- data/test/stripe/source_test.rb +0 -43
- data/test/stripe/stripe_client_test.rb +0 -440
- data/test/stripe/stripe_object_test.rb +0 -361
- data/test/stripe/stripe_response_test.rb +0 -46
- data/test/stripe/subscription_item_test.rb +0 -54
- data/test/stripe/subscription_test.rb +0 -60
- data/test/stripe/three_d_secure_test.rb +0 -23
- data/test/stripe/transfer_test.rb +0 -50
- data/test/stripe/util_test.rb +0 -149
- data/test/stripe_test.rb +0 -41
- data/test/test_data.rb +0 -59
- data/test/test_helper.rb +0 -41
data/lib/stripe/stripe_client.rb
CHANGED
@@ -1,206 +1,635 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
require "stripe/instrumentation"
|
4
|
+
|
1
5
|
module Stripe
|
2
6
|
# StripeClient executes requests against the Stripe API and allows a user to
|
3
7
|
# recover both a resource a call returns as well as a response object that
|
4
8
|
# contains information on the HTTP call.
|
5
9
|
class StripeClient
|
6
|
-
|
10
|
+
# A set of all known thread contexts across all threads and a mutex to
|
11
|
+
# synchronize global access to them.
|
12
|
+
@thread_contexts_with_connection_managers = Set.new
|
13
|
+
@thread_contexts_with_connection_managers_mutex = Mutex.new
|
14
|
+
@last_connection_manager_gc = Util.monotonic_time
|
7
15
|
|
8
|
-
# Initializes a new StripeClient
|
9
|
-
|
10
|
-
def initialize(conn = nil)
|
11
|
-
self.conn = conn || self.class.default_conn
|
16
|
+
# Initializes a new StripeClient
|
17
|
+
def initialize(config_arg = {})
|
12
18
|
@system_profiler = SystemProfiler.new
|
19
|
+
@last_request_metrics = nil
|
20
|
+
|
21
|
+
@config = case config_arg
|
22
|
+
when Hash
|
23
|
+
Stripe.config.reverse_duplicate_merge(config_arg)
|
24
|
+
when Stripe::ConnectionManager
|
25
|
+
# Supports accepting a connection manager object for backwards
|
26
|
+
# compatibility only, and that use is DEPRECATED.
|
27
|
+
Stripe.config.dup
|
28
|
+
when Stripe::StripeConfiguration
|
29
|
+
config_arg
|
30
|
+
when String
|
31
|
+
Stripe.config.reverse_duplicate_merge(
|
32
|
+
{ api_key: config_arg }
|
33
|
+
)
|
34
|
+
else
|
35
|
+
raise ArgumentError, "Can't handle argument: #{config_arg}"
|
36
|
+
end
|
13
37
|
end
|
14
38
|
|
39
|
+
attr_reader :config
|
40
|
+
attr_reader :options
|
41
|
+
|
42
|
+
# Gets a currently active `StripeClient`. Set for the current thread when
|
43
|
+
# `StripeClient#request` is being run so that API operations being executed
|
44
|
+
# inside of that block can find the currently active client. It's reset to
|
45
|
+
# the original value (hopefully `nil`) after the block ends.
|
46
|
+
#
|
47
|
+
# For internal use only. Does not provide a stable API and may be broken
|
48
|
+
# with future non-major changes.
|
15
49
|
def self.active_client
|
16
|
-
|
50
|
+
current_thread_context.active_client || default_client
|
17
51
|
end
|
18
52
|
|
19
|
-
|
20
|
-
|
21
|
-
|
22
|
-
|
23
|
-
#
|
24
|
-
#
|
25
|
-
#
|
26
|
-
|
27
|
-
|
28
|
-
|
29
|
-
#
|
30
|
-
|
31
|
-
|
32
|
-
|
33
|
-
c.use Faraday::Request::UrlEncoded
|
34
|
-
c.use Faraday::Response::RaiseError
|
35
|
-
c.adapter Faraday.default_adapter
|
36
|
-
end
|
53
|
+
# Finishes any active connections by closing their TCP connection and
|
54
|
+
# clears them from internal tracking in all connection managers across all
|
55
|
+
# threads.
|
56
|
+
#
|
57
|
+
# If passed a `config` object, only clear connection managers for that
|
58
|
+
# particular configuration.
|
59
|
+
#
|
60
|
+
# For internal use only. Does not provide a stable API and may be broken
|
61
|
+
# with future non-major changes.
|
62
|
+
def self.clear_all_connection_managers(config: nil)
|
63
|
+
# Just a quick path for when configuration is being set for the first
|
64
|
+
# time before any connections have been opened. There is technically some
|
65
|
+
# potential for thread raciness here, but not in a practical sense.
|
66
|
+
return if @thread_contexts_with_connection_managers.empty?
|
37
67
|
|
38
|
-
|
39
|
-
|
40
|
-
conn.ssl.cert_store = Stripe.ca_store
|
41
|
-
else
|
42
|
-
conn.ssl.verify = false
|
68
|
+
@thread_contexts_with_connection_managers_mutex.synchronize do
|
69
|
+
pruned_contexts = Set.new
|
43
70
|
|
44
|
-
|
45
|
-
|
46
|
-
|
47
|
-
|
48
|
-
|
71
|
+
@thread_contexts_with_connection_managers.each do |thread_context|
|
72
|
+
# Note that the thread context itself is not destroyed, but we clear
|
73
|
+
# its connection manager and remove our reference to it. If it ever
|
74
|
+
# makes a new request we'll give it a new connection manager and
|
75
|
+
# it'll go back into `@thread_contexts_with_connection_managers`.
|
76
|
+
thread_context.default_connection_managers.reject! do |cm_config, cm|
|
77
|
+
if config.nil? || config.key == cm_config
|
78
|
+
cm.clear
|
79
|
+
true
|
80
|
+
end
|
81
|
+
end
|
82
|
+
|
83
|
+
if thread_context.default_connection_managers.empty?
|
84
|
+
pruned_contexts << thread_context
|
49
85
|
end
|
50
86
|
end
|
51
87
|
|
52
|
-
|
88
|
+
@thread_contexts_with_connection_managers.subtract(pruned_contexts)
|
53
89
|
end
|
54
90
|
end
|
55
91
|
|
56
|
-
#
|
57
|
-
|
58
|
-
|
59
|
-
|
60
|
-
return false if retry_count >= Stripe.max_network_retries
|
92
|
+
# A default client for the current thread.
|
93
|
+
def self.default_client
|
94
|
+
current_thread_context.default_client ||= StripeClient.new(Stripe.config)
|
95
|
+
end
|
61
96
|
|
62
|
-
|
63
|
-
|
97
|
+
# A default connection manager for the current thread scoped to the
|
98
|
+
# configuration object that may be provided.
|
99
|
+
def self.default_connection_manager(config = Stripe.config)
|
100
|
+
current_thread_context.default_connection_managers[config.key] ||= begin
|
101
|
+
connection_manager = ConnectionManager.new(config)
|
64
102
|
|
65
|
-
|
66
|
-
|
67
|
-
|
68
|
-
|
103
|
+
@thread_contexts_with_connection_managers_mutex.synchronize do
|
104
|
+
maybe_gc_connection_managers
|
105
|
+
@thread_contexts_with_connection_managers << current_thread_context
|
106
|
+
end
|
69
107
|
|
70
|
-
|
71
|
-
# 409 conflict
|
72
|
-
return true if e.response[:status] == 409
|
108
|
+
connection_manager
|
73
109
|
end
|
110
|
+
end
|
111
|
+
|
112
|
+
# Checks if an error is a problem that we should retry on. This includes
|
113
|
+
# both socket errors that may represent an intermittent problem and some
|
114
|
+
# special HTTP statuses.
|
115
|
+
def self.should_retry?(error,
|
116
|
+
method:, num_retries:, config: Stripe.config)
|
117
|
+
return false if num_retries >= config.max_network_retries
|
118
|
+
|
119
|
+
case error
|
120
|
+
when Net::OpenTimeout, Net::ReadTimeout
|
121
|
+
# Retry on timeout-related problems (either on open or read).
|
122
|
+
true
|
123
|
+
when EOFError, Errno::ECONNREFUSED, Errno::ECONNRESET,
|
124
|
+
Errno::EHOSTUNREACH, Errno::ETIMEDOUT, SocketError
|
125
|
+
# Destination refused the connection, the connection was reset, or a
|
126
|
+
# variety of other connection failures. This could occur from a single
|
127
|
+
# saturated server, so retry in case it's intermittent.
|
128
|
+
true
|
129
|
+
when Stripe::StripeError
|
130
|
+
# The API may ask us not to retry (e.g. if doing so would be a no-op),
|
131
|
+
# or advise us to retry (e.g. in cases of lock timeouts). Defer to
|
132
|
+
# those instructions if given.
|
133
|
+
return false if error.http_headers["stripe-should-retry"] == "false"
|
134
|
+
return true if error.http_headers["stripe-should-retry"] == "true"
|
135
|
+
|
136
|
+
# 409 Conflict
|
137
|
+
return true if error.http_status == 409
|
74
138
|
|
75
|
-
|
139
|
+
# 429 Too Many Requests
|
140
|
+
#
|
141
|
+
# There are a few different problems that can lead to a 429. The most
|
142
|
+
# common is rate limiting, on which we *don't* want to retry because
|
143
|
+
# that'd likely contribute to more contention problems. However, some
|
144
|
+
# 429s are lock timeouts, which is when a request conflicted with
|
145
|
+
# another request or an internal process on some particular object.
|
146
|
+
# These 429s are safe to retry.
|
147
|
+
return true if error.http_status == 429 && error.code == "lock_timeout"
|
148
|
+
|
149
|
+
# 500 Internal Server Error
|
150
|
+
#
|
151
|
+
# We only bother retrying these for non-POST requests. POSTs end up
|
152
|
+
# being cached by the idempotency layer so there's no purpose in
|
153
|
+
# retrying them.
|
154
|
+
return true if error.http_status == 500 && method != :post
|
155
|
+
|
156
|
+
# 503 Service Unavailable
|
157
|
+
error.http_status == 503
|
158
|
+
else
|
159
|
+
false
|
160
|
+
end
|
76
161
|
end
|
77
162
|
|
78
|
-
def self.sleep_time(
|
163
|
+
def self.sleep_time(num_retries, config: Stripe.config)
|
79
164
|
# Apply exponential backoff with initial_network_retry_delay on the
|
80
|
-
# number of
|
81
|
-
# max_network_retry_delay.
|
82
|
-
sleep_seconds = [
|
165
|
+
# number of num_retries so far as inputs. Do not allow the number to
|
166
|
+
# exceed max_network_retry_delay.
|
167
|
+
sleep_seconds = [
|
168
|
+
config.initial_network_retry_delay * (2**(num_retries - 1)),
|
169
|
+
config.max_network_retry_delay,
|
170
|
+
].min
|
83
171
|
|
84
|
-
# Apply some jitter by randomizing the value in the range of
|
85
|
-
# / 2) to (sleep_seconds).
|
86
|
-
sleep_seconds
|
172
|
+
# Apply some jitter by randomizing the value in the range of
|
173
|
+
# (sleep_seconds / 2) to (sleep_seconds).
|
174
|
+
sleep_seconds *= (0.5 * (1 + rand))
|
87
175
|
|
88
176
|
# But never sleep less than the base sleep seconds.
|
89
|
-
|
177
|
+
[config.initial_network_retry_delay, sleep_seconds].max
|
178
|
+
end
|
90
179
|
|
91
|
-
|
180
|
+
# Gets the connection manager in use for the current `StripeClient`.
|
181
|
+
#
|
182
|
+
# This method is DEPRECATED and for backwards compatibility only.
|
183
|
+
def connection_manager
|
184
|
+
self.class.default_connection_manager
|
92
185
|
end
|
186
|
+
extend Gem::Deprecate
|
187
|
+
deprecate :connection_manager, :none, 2020, 9
|
93
188
|
|
94
189
|
# Executes the API call within the given block. Usage looks like:
|
95
190
|
#
|
96
191
|
# client = StripeClient.new
|
97
192
|
# charge, resp = client.request { Charge.create }
|
98
193
|
#
|
99
|
-
def request
|
100
|
-
|
101
|
-
|
102
|
-
|
194
|
+
def request
|
195
|
+
old_stripe_client = self.class.current_thread_context.active_client
|
196
|
+
self.class.current_thread_context.active_client = self
|
197
|
+
|
198
|
+
if self.class.current_thread_context.last_responses&.key?(object_id)
|
199
|
+
raise "calls to StripeClient#request cannot be nested within a thread"
|
200
|
+
end
|
201
|
+
|
202
|
+
self.class.current_thread_context.last_responses ||= {}
|
203
|
+
self.class.current_thread_context.last_responses[object_id] = nil
|
103
204
|
|
104
205
|
begin
|
105
|
-
res =
|
106
|
-
[res,
|
206
|
+
res = yield
|
207
|
+
[res, self.class.current_thread_context.last_responses[object_id]]
|
107
208
|
ensure
|
108
|
-
|
209
|
+
self.class.current_thread_context.active_client = old_stripe_client
|
210
|
+
self.class.current_thread_context.last_responses.delete(object_id)
|
109
211
|
end
|
110
212
|
end
|
111
213
|
|
112
|
-
def execute_request(method,
|
113
|
-
|
214
|
+
def execute_request(method, path,
|
215
|
+
api_base: nil, api_key: nil, headers: {}, params: {})
|
216
|
+
http_resp, api_key = execute_request_internal(
|
217
|
+
method, path, api_base, api_key, headers, params
|
218
|
+
)
|
114
219
|
|
115
|
-
|
116
|
-
|
220
|
+
begin
|
221
|
+
resp = StripeResponse.from_net_http(http_resp)
|
222
|
+
rescue JSON::ParserError
|
223
|
+
raise general_api_error(http_resp.code.to_i, http_resp.body)
|
224
|
+
end
|
117
225
|
|
118
|
-
|
226
|
+
# If being called from `StripeClient#request`, put the last response in
|
227
|
+
# thread-local memory so that it can be returned to the user. Don't store
|
228
|
+
# anything otherwise so that we don't leak memory.
|
229
|
+
store_last_response(object_id, resp)
|
230
|
+
|
231
|
+
[resp, api_key]
|
232
|
+
end
|
233
|
+
|
234
|
+
# Executes a request and returns the body as a stream instead of converting
|
235
|
+
# it to a StripeObject. This should be used for any request where we expect
|
236
|
+
# an arbitrary binary response.
|
237
|
+
#
|
238
|
+
# A `read_body_chunk` block can be passed, which will be called repeatedly
|
239
|
+
# with the body chunks read from the socket.
|
240
|
+
#
|
241
|
+
# If a block is passed, a StripeHeadersOnlyResponse is returned as the
|
242
|
+
# block is expected to do all the necessary body processing. If no block is
|
243
|
+
# passed, then a StripeStreamResponse is returned containing an IO stream
|
244
|
+
# with the response body.
|
245
|
+
def execute_request_stream(method, path,
|
246
|
+
api_base: nil, api_key: nil,
|
247
|
+
headers: {}, params: {},
|
248
|
+
&read_body_chunk_block)
|
249
|
+
unless block_given?
|
250
|
+
raise ArgumentError,
|
251
|
+
"execute_request_stream requires a read_body_chunk_block"
|
252
|
+
end
|
253
|
+
|
254
|
+
http_resp, api_key = execute_request_internal(
|
255
|
+
method, path, api_base, api_key, headers, params, &read_body_chunk_block
|
256
|
+
)
|
257
|
+
|
258
|
+
# When the read_body_chunk_block is given, we no longer have access to the
|
259
|
+
# response body at this point and so return a response object containing
|
260
|
+
# only the headers. This is because the body was consumed by the block.
|
261
|
+
resp = StripeHeadersOnlyResponse.from_net_http(http_resp)
|
262
|
+
|
263
|
+
[resp, api_key]
|
264
|
+
end
|
265
|
+
|
266
|
+
def store_last_response(object_id, resp)
|
267
|
+
return unless last_response_has_key?(object_id)
|
268
|
+
|
269
|
+
self.class.current_thread_context.last_responses[object_id] = resp
|
270
|
+
end
|
271
|
+
|
272
|
+
def last_response_has_key?(object_id)
|
273
|
+
self.class.current_thread_context.last_responses&.key?(object_id)
|
274
|
+
end
|
275
|
+
|
276
|
+
#
|
277
|
+
# private
|
278
|
+
#
|
279
|
+
|
280
|
+
# Time (in seconds) that a connection manager has not been used before it's
|
281
|
+
# eligible for garbage collection.
|
282
|
+
CONNECTION_MANAGER_GC_LAST_USED_EXPIRY = 120
|
283
|
+
|
284
|
+
# How often to check (in seconds) for connection managers that haven't been
|
285
|
+
# used in a long time and which should be garbage collected.
|
286
|
+
CONNECTION_MANAGER_GC_PERIOD = 60
|
287
|
+
|
288
|
+
ERROR_MESSAGE_CONNECTION =
|
289
|
+
"Unexpected error communicating when trying to connect to " \
|
290
|
+
"Stripe (%s). You may be seeing this message because your DNS is not " \
|
291
|
+
"working or you don't have an internet connection. To check, try " \
|
292
|
+
"running `host stripe.com` from the command line."
|
293
|
+
ERROR_MESSAGE_SSL =
|
294
|
+
"Could not establish a secure connection to Stripe (%s), you " \
|
295
|
+
"may need to upgrade your OpenSSL version. To check, try running " \
|
296
|
+
"`openssl s_client -connect api.stripe.com:443` from the command " \
|
297
|
+
"line."
|
298
|
+
|
299
|
+
# Common error suffix sared by both connect and read timeout messages.
|
300
|
+
ERROR_MESSAGE_TIMEOUT_SUFFIX =
|
301
|
+
"Please check your internet connection and try again. " \
|
302
|
+
"If this problem persists, you should check Stripe's service " \
|
303
|
+
"status at https://status.stripe.com, or let us know at " \
|
304
|
+
"support@stripe.com."
|
305
|
+
|
306
|
+
ERROR_MESSAGE_TIMEOUT_CONNECT = (
|
307
|
+
"Timed out connecting to Stripe (%s). " +
|
308
|
+
ERROR_MESSAGE_TIMEOUT_SUFFIX
|
309
|
+
).freeze
|
310
|
+
|
311
|
+
ERROR_MESSAGE_TIMEOUT_READ = (
|
312
|
+
"Timed out communicating with Stripe (%s). " +
|
313
|
+
ERROR_MESSAGE_TIMEOUT_SUFFIX
|
314
|
+
).freeze
|
315
|
+
|
316
|
+
# Maps types of exceptions that we're likely to see during a network
|
317
|
+
# request to more user-friendly messages that we put in front of people.
|
318
|
+
# The original error message is also appended onto the final exception for
|
319
|
+
# full transparency.
|
320
|
+
NETWORK_ERROR_MESSAGES_MAP = {
|
321
|
+
EOFError => ERROR_MESSAGE_CONNECTION,
|
322
|
+
Errno::ECONNREFUSED => ERROR_MESSAGE_CONNECTION,
|
323
|
+
Errno::ECONNRESET => ERROR_MESSAGE_CONNECTION,
|
324
|
+
Errno::EHOSTUNREACH => ERROR_MESSAGE_CONNECTION,
|
325
|
+
Errno::ETIMEDOUT => ERROR_MESSAGE_TIMEOUT_CONNECT,
|
326
|
+
SocketError => ERROR_MESSAGE_CONNECTION,
|
327
|
+
|
328
|
+
Net::OpenTimeout => ERROR_MESSAGE_TIMEOUT_CONNECT,
|
329
|
+
Net::ReadTimeout => ERROR_MESSAGE_TIMEOUT_READ,
|
330
|
+
|
331
|
+
OpenSSL::SSL::SSLError => ERROR_MESSAGE_SSL,
|
332
|
+
}.freeze
|
333
|
+
private_constant :NETWORK_ERROR_MESSAGES_MAP
|
334
|
+
|
335
|
+
# A record representing any data that `StripeClient` puts into
|
336
|
+
# `Thread.current`. Making it a class likes this gives us a little extra
|
337
|
+
# type safety and lets us document what each field does.
|
338
|
+
#
|
339
|
+
# For internal use only. Does not provide a stable API and may be broken
|
340
|
+
# with future non-major changes.
|
341
|
+
class ThreadContext
|
342
|
+
# A `StripeClient` that's been flagged as currently active within a
|
343
|
+
# thread by `StripeClient#request`. A client stays active until the
|
344
|
+
# completion of the request block.
|
345
|
+
attr_accessor :active_client
|
346
|
+
|
347
|
+
# A default `StripeClient` object for the thread. Used in all cases where
|
348
|
+
# the user hasn't specified their own.
|
349
|
+
attr_accessor :default_client
|
350
|
+
|
351
|
+
# A temporary map of object IDs to responses from last executed API
|
352
|
+
# calls. Used to return a responses from calls to `StripeClient#request`.
|
353
|
+
#
|
354
|
+
# Stored in the thread data to make the use of a single `StripeClient`
|
355
|
+
# object safe across multiple threads. Stored as a map so that multiple
|
356
|
+
# `StripeClient` objects can run concurrently on the same thread.
|
357
|
+
#
|
358
|
+
# Responses are only left in as long as they're needed, which means
|
359
|
+
# they're removed as soon as a call leaves `StripeClient#request`, and
|
360
|
+
# because that's wrapped in an `ensure` block, they should never leave
|
361
|
+
# garbage in `Thread.current`.
|
362
|
+
attr_accessor :last_responses
|
363
|
+
|
364
|
+
# A map of connection mangers for the thread. Normally shared between
|
365
|
+
# all `StripeClient` objects on a particular thread, and created so as to
|
366
|
+
# minimize the number of open connections that an application needs.
|
367
|
+
def default_connection_managers
|
368
|
+
@default_connection_managers ||= {}
|
369
|
+
end
|
370
|
+
|
371
|
+
def reset_connection_managers
|
372
|
+
@default_connection_managers = {}
|
373
|
+
end
|
374
|
+
end
|
375
|
+
|
376
|
+
# Access data stored for `StripeClient` within the thread's current
|
377
|
+
# context. Returns `ThreadContext`.
|
378
|
+
#
|
379
|
+
# For internal use only. Does not provide a stable API and may be broken
|
380
|
+
# with future non-major changes.
|
381
|
+
def self.current_thread_context
|
382
|
+
Thread.current[:stripe_client__internal_use_only] ||= ThreadContext.new
|
383
|
+
end
|
384
|
+
|
385
|
+
# Garbage collects connection managers that haven't been used in some time,
|
386
|
+
# with the idea being that we want to remove old connection managers that
|
387
|
+
# belong to dead threads and the like.
|
388
|
+
#
|
389
|
+
# Prefixed with `maybe_` because garbage collection will only run
|
390
|
+
# periodically so that we're not constantly engaged in busy work. If
|
391
|
+
# connection managers live a little passed their useful age it's not
|
392
|
+
# harmful, so it's not necessary to get them right away.
|
393
|
+
#
|
394
|
+
# For testability, returns `nil` if it didn't run and the number of
|
395
|
+
# connection managers that were garbage collected otherwise.
|
396
|
+
#
|
397
|
+
# IMPORTANT: This method is not thread-safe and expects to be called inside
|
398
|
+
# a lock on `@thread_contexts_with_connection_managers_mutex`.
|
399
|
+
#
|
400
|
+
# For internal use only. Does not provide a stable API and may be broken
|
401
|
+
# with future non-major changes.
|
402
|
+
def self.maybe_gc_connection_managers
|
403
|
+
next_gc_time = @last_connection_manager_gc + CONNECTION_MANAGER_GC_PERIOD
|
404
|
+
return nil if next_gc_time > Util.monotonic_time
|
405
|
+
|
406
|
+
last_used_threshold =
|
407
|
+
Util.monotonic_time - CONNECTION_MANAGER_GC_LAST_USED_EXPIRY
|
119
408
|
|
409
|
+
pruned_contexts = []
|
410
|
+
@thread_contexts_with_connection_managers.each do |thread_context|
|
411
|
+
thread_context
|
412
|
+
.default_connection_managers
|
413
|
+
.each do |config_key, connection_manager|
|
414
|
+
next if connection_manager.last_used > last_used_threshold
|
415
|
+
|
416
|
+
connection_manager.clear
|
417
|
+
thread_context.default_connection_managers.delete(config_key)
|
418
|
+
end
|
419
|
+
end
|
420
|
+
|
421
|
+
@thread_contexts_with_connection_managers.each do |thread_context|
|
422
|
+
next unless thread_context.default_connection_managers.empty?
|
423
|
+
|
424
|
+
pruned_contexts << thread_context
|
425
|
+
end
|
426
|
+
|
427
|
+
@thread_contexts_with_connection_managers -= pruned_contexts
|
428
|
+
@last_connection_manager_gc = Util.monotonic_time
|
429
|
+
|
430
|
+
pruned_contexts.count
|
431
|
+
end
|
432
|
+
|
433
|
+
private def execute_request_internal(method, path,
|
434
|
+
api_base, api_key, headers, params,
|
435
|
+
&read_body_chunk_block)
|
436
|
+
raise ArgumentError, "method should be a symbol" \
|
437
|
+
unless method.is_a?(Symbol)
|
438
|
+
raise ArgumentError, "path should be a string" \
|
439
|
+
unless path.is_a?(String)
|
440
|
+
|
441
|
+
api_base ||= config.api_base
|
442
|
+
api_key ||= config.api_key
|
120
443
|
params = Util.objects_to_ids(params)
|
121
|
-
url = api_url(url, api_base)
|
122
444
|
|
123
|
-
|
445
|
+
check_api_key!(api_key)
|
446
|
+
|
447
|
+
body_params = nil
|
448
|
+
query_params = nil
|
449
|
+
case method
|
124
450
|
when :get, :head, :delete
|
125
|
-
|
126
|
-
url += "#{URI.parse(url).query ? '&' : '?'}#{Util.encode_parameters(params)}" if params && params.any?
|
127
|
-
payload = nil
|
451
|
+
query_params = params
|
128
452
|
else
|
129
|
-
|
130
|
-
payload = params
|
131
|
-
else
|
132
|
-
payload = Util.encode_parameters(params)
|
133
|
-
end
|
453
|
+
body_params = params
|
134
454
|
end
|
135
455
|
|
136
|
-
|
137
|
-
|
138
|
-
|
139
|
-
|
140
|
-
|
141
|
-
|
142
|
-
|
143
|
-
|
144
|
-
|
145
|
-
|
456
|
+
query_params, path = merge_query_params(query_params, path)
|
457
|
+
|
458
|
+
headers = request_headers(api_key, method)
|
459
|
+
.update(Util.normalize_headers(headers))
|
460
|
+
url = api_url(path, api_base)
|
461
|
+
|
462
|
+
# Merge given query parameters with any already encoded in the path.
|
463
|
+
query = query_params ? Util.encode_parameters(query_params) : nil
|
464
|
+
|
465
|
+
# Encoding body parameters is a little more complex because we may have
|
466
|
+
# to send a multipart-encoded body. `body_log` is produced separately as
|
467
|
+
# a log-friendly variant of the encoded form. File objects are displayed
|
468
|
+
# as such instead of as their file contents.
|
469
|
+
body, body_log =
|
470
|
+
body_params ? encode_body(body_params, headers) : [nil, nil]
|
471
|
+
|
472
|
+
# stores information on the request we're about to make so that we don't
|
473
|
+
# have to pass as many parameters around for logging.
|
474
|
+
context = RequestLogContext.new
|
475
|
+
context.account = headers["Stripe-Account"]
|
476
|
+
context.api_key = api_key
|
477
|
+
context.api_version = headers["Stripe-Version"]
|
478
|
+
context.body = body_log
|
479
|
+
context.idempotency_key = headers["Idempotency-Key"]
|
480
|
+
context.method = method
|
481
|
+
context.path = path
|
482
|
+
context.query = query
|
483
|
+
|
484
|
+
# A block can be passed in to read the content directly from the response.
|
485
|
+
# We want to execute this block only when the response was actually
|
486
|
+
# successful. When it wasn't, we defer to the standard error handling as
|
487
|
+
# we have to read the body and parse the error JSON.
|
488
|
+
response_block =
|
489
|
+
if block_given?
|
490
|
+
lambda do |response|
|
491
|
+
unless should_handle_as_error(response.code.to_i)
|
492
|
+
response.read_body(&read_body_chunk_block)
|
493
|
+
end
|
494
|
+
end
|
146
495
|
end
|
147
|
-
end
|
148
496
|
|
149
|
-
|
150
|
-
|
151
|
-
|
152
|
-
|
497
|
+
http_resp = execute_request_with_rescues(method, api_base, context) do
|
498
|
+
self.class
|
499
|
+
.default_connection_manager(config)
|
500
|
+
.execute_request(method, url,
|
501
|
+
body: body,
|
502
|
+
headers: headers,
|
503
|
+
query: query,
|
504
|
+
&response_block)
|
153
505
|
end
|
154
506
|
|
155
|
-
|
156
|
-
@last_response = resp
|
157
|
-
[resp, api_key]
|
507
|
+
[http_resp, api_key]
|
158
508
|
end
|
159
509
|
|
160
|
-
private
|
161
|
-
|
162
|
-
def api_url(url='', api_base=nil)
|
163
|
-
(api_base || Stripe.api_base) + url
|
510
|
+
private def api_url(url = "", api_base = nil)
|
511
|
+
(api_base || config.api_base) + url
|
164
512
|
end
|
165
513
|
|
166
|
-
def check_api_key!(api_key)
|
514
|
+
private def check_api_key!(api_key)
|
167
515
|
unless api_key
|
168
|
-
raise AuthenticationError
|
516
|
+
raise AuthenticationError, "No API key provided. " \
|
169
517
|
'Set your API key using "Stripe.api_key = <API-KEY>". ' \
|
170
|
-
|
171
|
-
|
172
|
-
|
518
|
+
"You can generate API keys from the Stripe web interface. " \
|
519
|
+
"See https://stripe.com/api for details, or email " \
|
520
|
+
"support@stripe.com if you have any questions."
|
173
521
|
end
|
174
522
|
|
175
|
-
|
176
|
-
|
177
|
-
|
178
|
-
|
179
|
-
|
523
|
+
return unless api_key =~ /\s/
|
524
|
+
|
525
|
+
raise AuthenticationError, "Your API key is invalid, as it contains " \
|
526
|
+
"whitespace. (HINT: You can double-check your API key from the " \
|
527
|
+
"Stripe web interface. See https://stripe.com/api for details, or " \
|
528
|
+
"email support@stripe.com if you have any questions.)"
|
529
|
+
end
|
530
|
+
|
531
|
+
# Encodes a set of body parameters using multipart if `Content-Type` is set
|
532
|
+
# for that, or standard form-encoding otherwise. Returns the encoded body
|
533
|
+
# and a version of the encoded body that's safe to be logged.
|
534
|
+
private def encode_body(body_params, headers)
|
535
|
+
body = nil
|
536
|
+
flattened_params = Util.flatten_params(body_params)
|
537
|
+
|
538
|
+
if headers["Content-Type"] == MultipartEncoder::MULTIPART_FORM_DATA
|
539
|
+
body, content_type = MultipartEncoder.encode(flattened_params)
|
540
|
+
|
541
|
+
# Set a new content type that also includes the multipart boundary.
|
542
|
+
# See `MultipartEncoder` for details.
|
543
|
+
headers["Content-Type"] = content_type
|
544
|
+
|
545
|
+
# `#to_s` any complex objects like files and the like to build output
|
546
|
+
# that's more condusive to logging.
|
547
|
+
flattened_params =
|
548
|
+
flattened_params.map { |k, v| [k, v.is_a?(String) ? v : v.to_s] }.to_h
|
549
|
+
|
550
|
+
else
|
551
|
+
body = Util.encode_parameters(body_params)
|
180
552
|
end
|
553
|
+
|
554
|
+
# We don't use `Util.encode_parameters` partly as an optimization (to not
|
555
|
+
# redo work we've already done), and partly because the encoded forms of
|
556
|
+
# certain characters introduce a lot of visual noise and it's nice to
|
557
|
+
# have a clearer format for logs.
|
558
|
+
body_log = flattened_params.map { |k, v| "#{k}=#{v}" }.join("&")
|
559
|
+
|
560
|
+
[body, body_log]
|
561
|
+
end
|
562
|
+
|
563
|
+
private def should_handle_as_error(http_status)
|
564
|
+
http_status >= 400
|
181
565
|
end
|
182
566
|
|
183
|
-
def execute_request_with_rescues(
|
567
|
+
private def execute_request_with_rescues(method, api_base, context)
|
568
|
+
num_retries = 0
|
569
|
+
|
184
570
|
begin
|
185
|
-
|
571
|
+
request_start = nil
|
572
|
+
user_data = nil
|
573
|
+
|
574
|
+
log_request(context, num_retries)
|
575
|
+
user_data = notify_request_begin(context)
|
576
|
+
|
577
|
+
request_start = Util.monotonic_time
|
578
|
+
resp = yield
|
579
|
+
request_duration = Util.monotonic_time - request_start
|
580
|
+
|
581
|
+
http_status = resp.code.to_i
|
582
|
+
context = context.dup_from_response_headers(resp)
|
583
|
+
|
584
|
+
if should_handle_as_error(http_status)
|
585
|
+
handle_error_response(resp, context)
|
586
|
+
end
|
587
|
+
|
588
|
+
log_response(context, request_start, http_status, resp.body, resp)
|
589
|
+
notify_request_end(context, request_duration, http_status,
|
590
|
+
num_retries, user_data)
|
591
|
+
|
592
|
+
if config.enable_telemetry? && context.request_id
|
593
|
+
request_duration_ms = (request_duration * 1000).to_i
|
594
|
+
@last_request_metrics =
|
595
|
+
StripeRequestMetrics.new(context.request_id, request_duration_ms)
|
596
|
+
end
|
186
597
|
|
187
598
|
# We rescue all exceptions from a request so that we have an easy spot to
|
188
|
-
# implement our retry logic across the board. We'll re-raise if it's a
|
189
|
-
# of exception that we didn't expect to handle.
|
190
|
-
rescue => e
|
191
|
-
|
192
|
-
|
193
|
-
|
599
|
+
# implement our retry logic across the board. We'll re-raise if it's a
|
600
|
+
# type of exception that we didn't expect to handle.
|
601
|
+
rescue StandardError => e
|
602
|
+
# If we modify context we copy it into a new variable so as not to
|
603
|
+
# taint the original on a retry.
|
604
|
+
error_context = context
|
605
|
+
http_status = nil
|
606
|
+
request_duration = Util.monotonic_time - request_start if request_start
|
607
|
+
|
608
|
+
if e.is_a?(Stripe::StripeError)
|
609
|
+
error_context = context.dup_from_response_headers(e.http_headers)
|
610
|
+
http_status = resp.code.to_i
|
611
|
+
log_response(error_context, request_start,
|
612
|
+
e.http_status, e.http_body, resp)
|
613
|
+
else
|
614
|
+
log_response_error(error_context, request_start, e)
|
615
|
+
end
|
616
|
+
notify_request_end(context, request_duration, http_status, num_retries,
|
617
|
+
user_data)
|
618
|
+
|
619
|
+
if self.class.should_retry?(e,
|
620
|
+
method: method,
|
621
|
+
num_retries: num_retries,
|
622
|
+
config: config)
|
623
|
+
num_retries += 1
|
624
|
+
sleep self.class.sleep_time(num_retries, config: config)
|
194
625
|
retry
|
195
626
|
end
|
196
627
|
|
197
628
|
case e
|
198
|
-
when
|
199
|
-
|
200
|
-
|
201
|
-
|
202
|
-
handle_network_error(e, retry_count, api_base)
|
203
|
-
end
|
629
|
+
when Stripe::StripeError
|
630
|
+
raise
|
631
|
+
when *NETWORK_ERROR_MESSAGES_MAP.keys
|
632
|
+
handle_network_error(e, error_context, num_retries, api_base)
|
204
633
|
|
205
634
|
# Only handle errors when we know we can do so, and re-raise otherwise.
|
206
635
|
# This should be pretty infrequent.
|
@@ -212,126 +641,248 @@ module Stripe
|
|
212
641
|
resp
|
213
642
|
end
|
214
643
|
|
215
|
-
def
|
216
|
-
|
644
|
+
private def notify_request_begin(context)
|
645
|
+
return unless Instrumentation.any_subscribers?(:request_begin)
|
646
|
+
|
647
|
+
event = Instrumentation::RequestBeginEvent.new(
|
648
|
+
method: context.method,
|
649
|
+
path: context.path,
|
650
|
+
user_data: {}
|
651
|
+
)
|
652
|
+
Stripe::Instrumentation.notify(:request_begin, event)
|
653
|
+
|
654
|
+
# This field may be set in the `request_begin` callback. If so, we'll
|
655
|
+
# forward it onto `request_end`.
|
656
|
+
event.user_data
|
657
|
+
end
|
658
|
+
|
659
|
+
private def notify_request_end(context, duration, http_status, num_retries,
|
660
|
+
user_data)
|
661
|
+
return if !Instrumentation.any_subscribers?(:request_end) &&
|
662
|
+
!Instrumentation.any_subscribers?(:request)
|
663
|
+
|
664
|
+
event = Instrumentation::RequestEndEvent.new(
|
665
|
+
duration: duration,
|
666
|
+
http_status: http_status,
|
667
|
+
method: context.method,
|
668
|
+
num_retries: num_retries,
|
669
|
+
path: context.path,
|
670
|
+
request_id: context.request_id,
|
671
|
+
user_data: user_data || {}
|
672
|
+
)
|
673
|
+
Stripe::Instrumentation.notify(:request_end, event)
|
674
|
+
|
675
|
+
# The name before `request_begin` was also added. Provided for backwards
|
676
|
+
# compatibility.
|
677
|
+
Stripe::Instrumentation.notify(:request, event)
|
678
|
+
end
|
679
|
+
|
680
|
+
private def general_api_error(status, body)
|
681
|
+
APIError.new("Invalid response object from API: #{body.inspect} " \
|
217
682
|
"(HTTP response code was #{status})",
|
218
683
|
http_status: status, http_body: body)
|
219
684
|
end
|
220
685
|
|
686
|
+
# Formats a plugin "app info" hash into a string that we can tack onto the
|
687
|
+
# end of a User-Agent string where it'll be fairly prominent in places like
|
688
|
+
# the Dashboard. Note that this formatting has been implemented to match
|
689
|
+
# other libraries, and shouldn't be changed without universal consensus.
|
690
|
+
private def format_app_info(info)
|
691
|
+
str = info[:name]
|
692
|
+
str = "#{str}/#{info[:version]}" unless info[:version].nil?
|
693
|
+
str = "#{str} (#{info[:url]})" unless info[:url].nil?
|
694
|
+
str
|
695
|
+
end
|
221
696
|
|
222
|
-
def
|
697
|
+
private def handle_error_response(http_resp, context)
|
223
698
|
begin
|
224
|
-
resp = StripeResponse.
|
225
|
-
|
226
|
-
|
227
|
-
unless error && error.is_a?(Hash)
|
228
|
-
raise StripeError.new("Indeterminate error")
|
229
|
-
end
|
699
|
+
resp = StripeResponse.from_net_http(http_resp)
|
700
|
+
error_data = resp.data[:error]
|
230
701
|
|
702
|
+
raise StripeError, "Indeterminate error" unless error_data
|
231
703
|
rescue JSON::ParserError, StripeError
|
232
|
-
raise general_api_error(http_resp
|
704
|
+
raise general_api_error(http_resp.code.to_i, http_resp.body)
|
233
705
|
end
|
234
706
|
|
707
|
+
error = if error_data.is_a?(String)
|
708
|
+
specific_oauth_error(resp, error_data, context)
|
709
|
+
else
|
710
|
+
specific_api_error(resp, error_data, context)
|
711
|
+
end
|
712
|
+
|
713
|
+
error.response = resp
|
714
|
+
raise(error)
|
715
|
+
end
|
716
|
+
|
717
|
+
# Works around an edge case where we end up with both query parameters from
|
718
|
+
# parameteers and query parameters that were appended onto the end of the
|
719
|
+
# given path.
|
720
|
+
#
|
721
|
+
# Decode any parameters that were added onto the end of a path and add them
|
722
|
+
# to a unified query parameter hash so that all parameters end up in one
|
723
|
+
# place and all of them are correctly included in the final request.
|
724
|
+
private def merge_query_params(query_params, path)
|
725
|
+
u = URI.parse(path)
|
726
|
+
|
727
|
+
# Return original results if there was nothing to be found.
|
728
|
+
return query_params, path if u.query.nil?
|
729
|
+
|
730
|
+
query_params ||= {}
|
731
|
+
query_params = Hash[URI.decode_www_form(u.query)].merge(query_params)
|
732
|
+
|
733
|
+
# Reset the path minus any query parameters that were specified.
|
734
|
+
path = u.path
|
735
|
+
|
736
|
+
[query_params, path]
|
737
|
+
end
|
738
|
+
|
739
|
+
private def specific_api_error(resp, error_data, context)
|
740
|
+
Util.log_error("Stripe API error",
|
741
|
+
status: resp.http_status,
|
742
|
+
error_code: error_data[:code],
|
743
|
+
error_message: error_data[:message],
|
744
|
+
error_param: error_data[:param],
|
745
|
+
error_type: error_data[:type],
|
746
|
+
idempotency_key: context.idempotency_key,
|
747
|
+
request_id: context.request_id,
|
748
|
+
config: config)
|
749
|
+
|
750
|
+
# The standard set of arguments that can be used to initialize most of
|
751
|
+
# the exceptions.
|
752
|
+
opts = {
|
753
|
+
http_body: resp.http_body,
|
754
|
+
http_headers: resp.http_headers,
|
755
|
+
http_status: resp.http_status,
|
756
|
+
json_body: resp.data,
|
757
|
+
code: error_data[:code],
|
758
|
+
}
|
759
|
+
|
235
760
|
case resp.http_status
|
236
761
|
when 400, 404
|
237
|
-
|
238
|
-
|
239
|
-
|
240
|
-
|
241
|
-
|
762
|
+
case error_data[:type]
|
763
|
+
when "idempotency_error"
|
764
|
+
IdempotencyError.new(error_data[:message], **opts)
|
765
|
+
else
|
766
|
+
InvalidRequestError.new(
|
767
|
+
error_data[:message], error_data[:param],
|
768
|
+
**opts
|
769
|
+
)
|
770
|
+
end
|
242
771
|
when 401
|
243
|
-
|
244
|
-
error[:message],
|
245
|
-
http_status: resp.http_status, http_body: resp.http_body,
|
246
|
-
json_body: resp.data, http_headers: resp.http_headers
|
247
|
-
)
|
772
|
+
AuthenticationError.new(error_data[:message], **opts)
|
248
773
|
when 402
|
249
|
-
|
250
|
-
|
251
|
-
|
252
|
-
json_body: resp.data, http_headers: resp.http_headers
|
774
|
+
CardError.new(
|
775
|
+
error_data[:message], error_data[:param],
|
776
|
+
**opts
|
253
777
|
)
|
254
778
|
when 403
|
255
|
-
|
256
|
-
error[:message],
|
257
|
-
http_status: resp.http_status, http_body: resp.http_body,
|
258
|
-
json_body: resp.data, http_headers: resp.http_headers
|
259
|
-
)
|
779
|
+
PermissionError.new(error_data[:message], **opts)
|
260
780
|
when 429
|
261
|
-
|
262
|
-
error[:message],
|
263
|
-
http_status: resp.http_status, http_body: resp.http_body,
|
264
|
-
json_body: resp.data, http_headers: resp.http_headers
|
265
|
-
)
|
781
|
+
RateLimitError.new(error_data[:message], **opts)
|
266
782
|
else
|
267
|
-
|
268
|
-
error[:message],
|
269
|
-
http_status: resp.http_status, http_body: resp.http_body,
|
270
|
-
json_body: resp.data, http_headers: resp.http_headers
|
271
|
-
)
|
783
|
+
APIError.new(error_data[:message], **opts)
|
272
784
|
end
|
273
|
-
|
274
|
-
error.response = resp
|
275
|
-
raise(error)
|
276
785
|
end
|
277
786
|
|
278
|
-
|
279
|
-
|
280
|
-
|
281
|
-
|
282
|
-
"You may be seeing this message because your DNS is not working. " \
|
283
|
-
"To check, try running 'host stripe.com' from the command line."
|
787
|
+
# Attempts to look at a response's error code and return an OAuth error if
|
788
|
+
# one matches. Will return `nil` if the code isn't recognized.
|
789
|
+
private def specific_oauth_error(resp, error_code, context)
|
790
|
+
description = resp.data[:error_description] || error_code
|
284
791
|
|
285
|
-
|
286
|
-
|
287
|
-
|
288
|
-
|
289
|
-
|
792
|
+
Util.log_error("Stripe OAuth error",
|
793
|
+
status: resp.http_status,
|
794
|
+
error_code: error_code,
|
795
|
+
error_description: description,
|
796
|
+
idempotency_key: context.idempotency_key,
|
797
|
+
request_id: context.request_id,
|
798
|
+
config: config)
|
290
799
|
|
291
|
-
|
292
|
-
|
293
|
-
|
294
|
-
|
295
|
-
"If this problem persists, you should check Stripe's service status at " \
|
296
|
-
"https://twitter.com/stripestatus, or let us know at support@stripe.com."
|
800
|
+
args = {
|
801
|
+
http_status: resp.http_status, http_body: resp.http_body,
|
802
|
+
json_body: resp.data, http_headers: resp.http_headers,
|
803
|
+
}
|
297
804
|
|
805
|
+
case error_code
|
806
|
+
when "invalid_client"
|
807
|
+
OAuth::InvalidClientError.new(error_code, description, **args)
|
808
|
+
when "invalid_grant"
|
809
|
+
OAuth::InvalidGrantError.new(error_code, description, **args)
|
810
|
+
when "invalid_request"
|
811
|
+
OAuth::InvalidRequestError.new(error_code, description, **args)
|
812
|
+
when "invalid_scope"
|
813
|
+
OAuth::InvalidScopeError.new(error_code, description, **args)
|
814
|
+
when "unsupported_grant_type"
|
815
|
+
OAuth::UnsupportedGrantTypeError.new(error_code, description, **args)
|
816
|
+
when "unsupported_response_type"
|
817
|
+
OAuth::UnsupportedResponseTypeError.new(error_code, description, **args)
|
298
818
|
else
|
299
|
-
|
300
|
-
|
819
|
+
# We'd prefer that all errors are typed, but we create a generic
|
820
|
+
# OAuthError in case we run into a code that we don't recognize.
|
821
|
+
OAuth::OAuthError.new(error_code, description, **args)
|
822
|
+
end
|
823
|
+
end
|
301
824
|
|
825
|
+
private def handle_network_error(error, context, num_retries,
|
826
|
+
api_base = nil)
|
827
|
+
Util.log_error("Stripe network error",
|
828
|
+
error_message: error.message,
|
829
|
+
idempotency_key: context.idempotency_key,
|
830
|
+
request_id: context.request_id,
|
831
|
+
config: config)
|
832
|
+
|
833
|
+
errors, message = NETWORK_ERROR_MESSAGES_MAP.detect do |(e, _)|
|
834
|
+
error.is_a?(e)
|
302
835
|
end
|
303
836
|
|
304
|
-
if
|
305
|
-
message
|
837
|
+
if errors.nil?
|
838
|
+
message = "Unexpected error #{error.class.name} communicating " \
|
839
|
+
"with Stripe. Please let us know at support@stripe.com."
|
306
840
|
end
|
307
841
|
|
308
|
-
|
842
|
+
api_base ||= config.api_base
|
843
|
+
message = message % api_base
|
844
|
+
|
845
|
+
message += " Request was retried #{num_retries} times." if num_retries > 0
|
846
|
+
|
847
|
+
raise APIConnectionError,
|
848
|
+
message + "\n\n(Network error: #{error.message})"
|
309
849
|
end
|
310
850
|
|
311
|
-
def request_headers(api_key, method)
|
851
|
+
private def request_headers(api_key, method)
|
852
|
+
user_agent = "Stripe/v1 RubyBindings/#{Stripe::VERSION}"
|
853
|
+
unless Stripe.app_info.nil?
|
854
|
+
user_agent += " " + format_app_info(Stripe.app_info)
|
855
|
+
end
|
856
|
+
|
312
857
|
headers = {
|
313
|
-
|
314
|
-
|
315
|
-
|
858
|
+
"User-Agent" => user_agent,
|
859
|
+
"Authorization" => "Bearer #{api_key}",
|
860
|
+
"Content-Type" => "application/x-www-form-urlencoded",
|
316
861
|
}
|
317
862
|
|
863
|
+
if config.enable_telemetry? && !@last_request_metrics.nil?
|
864
|
+
headers["X-Stripe-Client-Telemetry"] = JSON.generate(
|
865
|
+
last_request_metrics: @last_request_metrics.payload
|
866
|
+
)
|
867
|
+
end
|
868
|
+
|
318
869
|
# It is only safe to retry network failures on post and delete
|
319
870
|
# requests if we add an Idempotency-Key header
|
320
|
-
if [
|
321
|
-
headers[
|
871
|
+
if %i[post delete].include?(method) && config.max_network_retries > 0
|
872
|
+
headers["Idempotency-Key"] ||= SecureRandom.uuid
|
322
873
|
end
|
323
874
|
|
324
|
-
headers[
|
325
|
-
headers[
|
875
|
+
headers["Stripe-Version"] = config.api_version if config.api_version
|
876
|
+
headers["Stripe-Account"] = config.stripe_account if config.stripe_account
|
326
877
|
|
327
878
|
user_agent = @system_profiler.user_agent
|
328
879
|
begin
|
329
880
|
headers.update(
|
330
|
-
|
881
|
+
"X-Stripe-Client-User-Agent" => JSON.generate(user_agent)
|
331
882
|
)
|
332
|
-
rescue => e
|
883
|
+
rescue StandardError => e
|
333
884
|
headers.update(
|
334
|
-
|
885
|
+
"X-Stripe-Client-Raw-User-Agent" => user_agent.inspect,
|
335
886
|
:error => "#{e} (#{e.class})"
|
336
887
|
)
|
337
888
|
end
|
@@ -339,35 +890,126 @@ module Stripe
|
|
339
890
|
headers
|
340
891
|
end
|
341
892
|
|
893
|
+
private def log_request(context, num_retries)
|
894
|
+
Util.log_info("Request to Stripe API",
|
895
|
+
account: context.account,
|
896
|
+
api_version: context.api_version,
|
897
|
+
idempotency_key: context.idempotency_key,
|
898
|
+
method: context.method,
|
899
|
+
num_retries: num_retries,
|
900
|
+
path: context.path,
|
901
|
+
config: config)
|
902
|
+
Util.log_debug("Request details",
|
903
|
+
body: context.body,
|
904
|
+
idempotency_key: context.idempotency_key,
|
905
|
+
query: context.query,
|
906
|
+
config: config,
|
907
|
+
process_id: Process.pid,
|
908
|
+
thread_object_id: Thread.current.object_id,
|
909
|
+
log_timestamp: Util.monotonic_time)
|
910
|
+
end
|
911
|
+
|
912
|
+
private def log_response(context, request_start, status, body, resp)
|
913
|
+
Util.log_info("Response from Stripe API",
|
914
|
+
account: context.account,
|
915
|
+
api_version: context.api_version,
|
916
|
+
elapsed: Util.monotonic_time - request_start,
|
917
|
+
idempotency_key: context.idempotency_key,
|
918
|
+
method: context.method,
|
919
|
+
path: context.path,
|
920
|
+
request_id: context.request_id,
|
921
|
+
status: status,
|
922
|
+
config: config)
|
923
|
+
Util.log_debug("Response details",
|
924
|
+
body: body,
|
925
|
+
idempotency_key: context.idempotency_key,
|
926
|
+
request_id: context.request_id,
|
927
|
+
config: config,
|
928
|
+
process_id: Process.pid,
|
929
|
+
thread_object_id: Thread.current.object_id,
|
930
|
+
response_object_id: resp.object_id,
|
931
|
+
log_timestamp: Util.monotonic_time)
|
932
|
+
|
933
|
+
return unless context.request_id
|
934
|
+
|
935
|
+
Util.log_debug("Dashboard link for request",
|
936
|
+
idempotency_key: context.idempotency_key,
|
937
|
+
request_id: context.request_id,
|
938
|
+
url: Util.request_id_dashboard_url(context.request_id,
|
939
|
+
context.api_key),
|
940
|
+
config: config)
|
941
|
+
end
|
942
|
+
|
943
|
+
private def log_response_error(context, request_start, error)
|
944
|
+
elapsed = request_start ? Util.monotonic_time - request_start : nil
|
945
|
+
Util.log_error("Request error",
|
946
|
+
elapsed: elapsed,
|
947
|
+
error_message: error.message,
|
948
|
+
idempotency_key: context.idempotency_key,
|
949
|
+
method: context.method,
|
950
|
+
path: context.path,
|
951
|
+
config: config)
|
952
|
+
end
|
953
|
+
|
954
|
+
# RequestLogContext stores information about a request that's begin made so
|
955
|
+
# that we can log certain information. It's useful because it means that we
|
956
|
+
# don't have to pass around as many parameters.
|
957
|
+
class RequestLogContext
|
958
|
+
attr_accessor :body
|
959
|
+
attr_accessor :account
|
960
|
+
attr_accessor :api_key
|
961
|
+
attr_accessor :api_version
|
962
|
+
attr_accessor :idempotency_key
|
963
|
+
attr_accessor :method
|
964
|
+
attr_accessor :path
|
965
|
+
attr_accessor :query
|
966
|
+
attr_accessor :request_id
|
967
|
+
|
968
|
+
# The idea with this method is that we might want to update some of
|
969
|
+
# context information because a response that we've received from the API
|
970
|
+
# contains information that's more authoritative than what we started
|
971
|
+
# with for a request. For example, we should trust whatever came back in
|
972
|
+
# a `Stripe-Version` header beyond what configuration information that we
|
973
|
+
# might have had available.
|
974
|
+
def dup_from_response_headers(headers)
|
975
|
+
context = dup
|
976
|
+
context.account = headers["Stripe-Account"]
|
977
|
+
context.api_version = headers["Stripe-Version"]
|
978
|
+
context.idempotency_key = headers["Idempotency-Key"]
|
979
|
+
context.request_id = headers["Request-Id"]
|
980
|
+
context
|
981
|
+
end
|
982
|
+
end
|
983
|
+
|
342
984
|
# SystemProfiler extracts information about the system that we're running
|
343
985
|
# in so that we can generate a rich user agent header to help debug
|
344
986
|
# integrations.
|
345
987
|
class SystemProfiler
|
346
|
-
def self.
|
347
|
-
if File.exist?(
|
348
|
-
File.read(
|
988
|
+
def self.uname
|
989
|
+
if ::File.exist?("/proc/version")
|
990
|
+
::File.read("/proc/version").strip
|
349
991
|
else
|
350
|
-
case RbConfig::CONFIG[
|
992
|
+
case RbConfig::CONFIG["host_os"]
|
351
993
|
when /linux|darwin|bsd|sunos|solaris|cygwin/i
|
352
|
-
|
994
|
+
uname_from_system
|
353
995
|
when /mswin|mingw/i
|
354
|
-
|
996
|
+
uname_from_system_ver
|
355
997
|
else
|
356
998
|
"unknown platform"
|
357
999
|
end
|
358
1000
|
end
|
359
1001
|
end
|
360
1002
|
|
361
|
-
def self.
|
362
|
-
(`uname -a 2>/dev/null` ||
|
1003
|
+
def self.uname_from_system
|
1004
|
+
(`uname -a 2>/dev/null` || "").strip
|
363
1005
|
rescue Errno::ENOENT
|
364
1006
|
"uname executable not found"
|
365
1007
|
rescue Errno::ENOMEM # couldn't create subprocess
|
366
1008
|
"uname lookup failed"
|
367
1009
|
end
|
368
1010
|
|
369
|
-
def self.
|
370
|
-
(`ver` ||
|
1011
|
+
def self.uname_from_system_ver
|
1012
|
+
(`ver` || "").strip
|
371
1013
|
rescue Errno::ENOENT
|
372
1014
|
"ver executable not found"
|
373
1015
|
rescue Errno::ENOMEM # couldn't create subprocess
|
@@ -375,22 +1017,43 @@ module Stripe
|
|
375
1017
|
end
|
376
1018
|
|
377
1019
|
def initialize
|
378
|
-
@uname = self.class.
|
1020
|
+
@uname = self.class.uname
|
379
1021
|
end
|
380
1022
|
|
381
1023
|
def user_agent
|
382
|
-
lang_version = "#{RUBY_VERSION} p#{RUBY_PATCHLEVEL}
|
1024
|
+
lang_version = "#{RUBY_VERSION} p#{RUBY_PATCHLEVEL} " \
|
1025
|
+
"(#{RUBY_RELEASE_DATE})"
|
383
1026
|
|
384
1027
|
{
|
385
|
-
:
|
386
|
-
:
|
387
|
-
:
|
388
|
-
:
|
389
|
-
:
|
390
|
-
:
|
391
|
-
:
|
392
|
-
:
|
393
|
-
|
1028
|
+
application: Stripe.app_info,
|
1029
|
+
bindings_version: Stripe::VERSION,
|
1030
|
+
lang: "ruby",
|
1031
|
+
lang_version: lang_version,
|
1032
|
+
platform: RUBY_PLATFORM,
|
1033
|
+
engine: defined?(RUBY_ENGINE) ? RUBY_ENGINE : "",
|
1034
|
+
publisher: "stripe",
|
1035
|
+
uname: @uname,
|
1036
|
+
hostname: Socket.gethostname,
|
1037
|
+
}.delete_if { |_k, v| v.nil? }
|
1038
|
+
end
|
1039
|
+
end
|
1040
|
+
|
1041
|
+
# StripeRequestMetrics tracks metadata to be reported to stripe for metrics
|
1042
|
+
# collection
|
1043
|
+
class StripeRequestMetrics
|
1044
|
+
# The Stripe request ID of the response.
|
1045
|
+
attr_accessor :request_id
|
1046
|
+
|
1047
|
+
# Request duration in milliseconds
|
1048
|
+
attr_accessor :request_duration_ms
|
1049
|
+
|
1050
|
+
def initialize(request_id, request_duration_ms)
|
1051
|
+
self.request_id = request_id
|
1052
|
+
self.request_duration_ms = request_duration_ms
|
1053
|
+
end
|
1054
|
+
|
1055
|
+
def payload
|
1056
|
+
{ request_id: request_id, request_duration_ms: request_duration_ms }
|
394
1057
|
end
|
395
1058
|
end
|
396
1059
|
end
|