stripe 4.10.0 → 5.55.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +316 -1
- data/CODE_OF_CONDUCT.md +77 -0
- data/Gemfile +10 -14
- data/Makefile +7 -0
- data/README.md +186 -62
- data/Rakefile +8 -7
- data/VERSION +1 -1
- data/lib/stripe/api_operations/create.rb +1 -1
- data/lib/stripe/api_operations/delete.rb +28 -2
- data/lib/stripe/api_operations/list.rb +1 -12
- data/lib/stripe/api_operations/nested_resource.rb +38 -28
- data/lib/stripe/api_operations/request.rb +81 -9
- data/lib/stripe/api_operations/save.rb +8 -7
- data/lib/stripe/api_operations/search.rb +19 -0
- data/lib/stripe/api_resource.rb +45 -3
- data/lib/stripe/api_resource_test_helpers.rb +47 -0
- data/lib/stripe/connection_manager.rb +200 -0
- data/lib/stripe/error_object.rb +93 -0
- data/lib/stripe/errors.rb +31 -10
- data/lib/stripe/instrumentation.rb +84 -0
- data/lib/stripe/list_object.rb +41 -7
- data/lib/stripe/multipart_encoder.rb +131 -0
- data/lib/stripe/oauth.rb +8 -6
- data/lib/stripe/object_types.rb +119 -0
- data/lib/stripe/{account.rb → resources/account.rb} +48 -30
- data/lib/stripe/{account_link.rb → resources/account_link.rb} +2 -1
- data/lib/stripe/resources/alipay_account.rb +34 -0
- data/lib/stripe/{apple_pay_domain.rb → resources/apple_pay_domain.rb} +2 -1
- data/lib/stripe/resources/application_fee.rb +14 -0
- data/lib/stripe/resources/application_fee_refund.rb +31 -0
- data/lib/stripe/{balance.rb → resources/balance.rb} +2 -1
- data/lib/stripe/{balance_transaction.rb → resources/balance_transaction.rb} +2 -5
- data/lib/stripe/resources/bank_account.rb +43 -0
- data/lib/stripe/{issuing/dispute.rb → resources/billing_portal/configuration.rb} +4 -3
- data/lib/stripe/resources/billing_portal/session.rb +12 -0
- data/lib/stripe/{bitcoin_receiver.rb → resources/bitcoin_receiver.rb} +4 -3
- data/lib/stripe/resources/bitcoin_transaction.rb +16 -0
- data/lib/stripe/resources/capability.rb +34 -0
- data/lib/stripe/{card.rb → resources/card.rb} +13 -4
- data/lib/stripe/resources/cash_balance.rb +22 -0
- data/lib/stripe/resources/charge.rb +32 -0
- data/lib/stripe/resources/checkout/session.rb +27 -0
- data/lib/stripe/{country_spec.rb → resources/country_spec.rb} +2 -1
- data/lib/stripe/{coupon.rb → resources/coupon.rb} +3 -2
- data/lib/stripe/resources/credit_note.rb +33 -0
- data/lib/stripe/resources/credit_note_line_item.rb +8 -0
- data/lib/stripe/resources/customer.rb +74 -0
- data/lib/stripe/resources/customer_balance_transaction.rb +31 -0
- data/lib/stripe/resources/discount.rb +8 -0
- data/lib/stripe/resources/dispute.rb +22 -0
- data/lib/stripe/{ephemeral_key.rb → resources/ephemeral_key.rb} +6 -2
- data/lib/stripe/{event.rb → resources/event.rb} +2 -1
- data/lib/stripe/{exchange_rate.rb → resources/exchange_rate.rb} +2 -1
- data/lib/stripe/resources/file.rb +36 -0
- data/lib/stripe/{file_link.rb → resources/file_link.rb} +3 -2
- data/lib/stripe/resources/financial_connections/account.rb +31 -0
- data/lib/stripe/resources/financial_connections/account_owner.rb +10 -0
- data/lib/stripe/resources/financial_connections/account_ownership.rb +10 -0
- data/lib/stripe/resources/financial_connections/session.rb +12 -0
- data/lib/stripe/resources/funding_instructions.rb +16 -0
- data/lib/stripe/resources/identity/verification_report.rb +12 -0
- data/lib/stripe/resources/identity/verification_session.rb +35 -0
- data/lib/stripe/resources/invoice.rb +83 -0
- data/lib/stripe/{invoice_item.rb → resources/invoice_item.rb} +3 -2
- data/lib/stripe/{invoice_line_item.rb → resources/invoice_line_item.rb} +2 -1
- data/lib/stripe/resources/issuing/authorization.rb +34 -0
- data/lib/stripe/resources/issuing/card.rb +25 -0
- data/lib/stripe/resources/issuing/card_details.rb +10 -0
- data/lib/stripe/{issuing → resources/issuing}/cardholder.rb +3 -2
- data/lib/stripe/resources/issuing/dispute.rb +25 -0
- data/lib/stripe/{issuing → resources/issuing}/transaction.rb +3 -2
- data/lib/stripe/resources/line_item.rb +8 -0
- data/lib/stripe/resources/login_link.rb +15 -0
- data/lib/stripe/resources/mandate.rb +8 -0
- data/lib/stripe/resources/order.rb +33 -0
- data/lib/stripe/{order_return.rb → resources/order_return.rb} +2 -1
- data/lib/stripe/resources/payment_intent.rb +82 -0
- data/lib/stripe/resources/payment_link.rb +23 -0
- data/lib/stripe/resources/payment_method.rb +33 -0
- data/lib/stripe/resources/payout.rb +33 -0
- data/lib/stripe/{person.rb → resources/person.rb} +9 -3
- data/lib/stripe/{plan.rb → resources/plan.rb} +2 -1
- data/lib/stripe/resources/price.rb +21 -0
- data/lib/stripe/resources/product.rb +22 -0
- data/lib/stripe/resources/promotion_code.rb +12 -0
- data/lib/stripe/resources/quote.rb +105 -0
- data/lib/stripe/resources/radar/early_fraud_warning.rb +12 -0
- data/lib/stripe/{radar → resources/radar}/value_list.rb +3 -2
- data/lib/stripe/{radar → resources/radar}/value_list_item.rb +3 -2
- data/lib/stripe/{recipient.rb → resources/recipient.rb} +3 -6
- data/lib/stripe/{recipient_transfer.rb → resources/recipient_transfer.rb} +1 -1
- data/lib/stripe/resources/refund.rb +42 -0
- data/lib/stripe/{reporting → resources/reporting}/report_run.rb +3 -2
- data/lib/stripe/{reporting → resources/reporting}/report_type.rb +3 -2
- data/lib/stripe/resources/reversal.rb +30 -0
- data/lib/stripe/resources/review.rb +21 -0
- data/lib/stripe/resources/setup_attempt.rb +10 -0
- data/lib/stripe/resources/setup_intent.rb +43 -0
- data/lib/stripe/{product.rb → resources/shipping_rate.rb} +4 -4
- data/lib/stripe/{sigma → resources/sigma}/scheduled_query_run.rb +3 -2
- data/lib/stripe/{sku.rb → resources/sku.rb} +4 -3
- data/lib/stripe/resources/source.rb +47 -0
- data/lib/stripe/{source_transaction.rb → resources/source_transaction.rb} +2 -1
- data/lib/stripe/resources/subscription.rb +35 -0
- data/lib/stripe/resources/subscription_item.rb +26 -0
- data/lib/stripe/resources/subscription_schedule.rb +33 -0
- data/lib/stripe/resources/tax_code.rb +10 -0
- data/lib/stripe/resources/tax_id.rb +27 -0
- data/lib/stripe/{refund.rb → resources/tax_rate.rb} +3 -2
- data/lib/stripe/{terminal/reader.rb → resources/terminal/configuration.rb} +3 -2
- data/lib/stripe/resources/terminal/connection_token.rb +12 -0
- data/lib/stripe/{terminal → resources/terminal}/location.rb +3 -2
- data/lib/stripe/resources/terminal/reader.rb +75 -0
- data/lib/stripe/resources/test_helpers/test_clock.rb +25 -0
- data/lib/stripe/{three_d_secure.rb → resources/three_d_secure.rb} +2 -1
- data/lib/stripe/{token.rb → resources/token.rb} +2 -1
- data/lib/stripe/resources/topup.rb +23 -0
- data/lib/stripe/resources/transfer.rb +27 -0
- data/lib/stripe/resources/usage_record.rb +8 -0
- data/lib/stripe/{usage_record_summary.rb → resources/usage_record_summary.rb} +2 -1
- data/lib/stripe/{webhook_endpoint.rb → resources/webhook_endpoint.rb} +3 -2
- data/lib/stripe/resources.rb +100 -0
- data/lib/stripe/search_result_object.rb +86 -0
- data/lib/stripe/singleton_api_resource.rb +3 -1
- data/lib/stripe/stripe_client.rb +661 -266
- data/lib/stripe/stripe_configuration.rb +194 -0
- data/lib/stripe/stripe_object.rb +80 -61
- data/lib/stripe/stripe_response.rb +87 -27
- data/lib/stripe/util.rb +128 -117
- data/lib/stripe/version.rb +1 -1
- data/lib/stripe/webhook.rb +43 -10
- data/lib/stripe.rb +46 -197
- data/stripe.gemspec +24 -8
- metadata +123 -283
- data/.gitattributes +0 -4
- data/.github/ISSUE_TEMPLATE.md +0 -5
- data/.gitignore +0 -8
- data/.rubocop.yml +0 -32
- data/.rubocop_todo.yml +0 -50
- data/.travis.yml +0 -42
- data/lib/stripe/alipay_account.rb +0 -27
- data/lib/stripe/application_fee.rb +0 -23
- data/lib/stripe/application_fee_refund.rb +0 -22
- data/lib/stripe/bank_account.rb +0 -32
- data/lib/stripe/bitcoin_transaction.rb +0 -15
- data/lib/stripe/charge.rb +0 -84
- data/lib/stripe/checkout/session.rb +0 -11
- data/lib/stripe/customer.rb +0 -90
- data/lib/stripe/dispute.rb +0 -19
- data/lib/stripe/file.rb +0 -37
- data/lib/stripe/invoice.rb +0 -48
- data/lib/stripe/issuer_fraud_record.rb +0 -9
- data/lib/stripe/issuing/authorization.rb +0 -22
- data/lib/stripe/issuing/card.rb +0 -18
- data/lib/stripe/issuing/card_details.rb +0 -9
- data/lib/stripe/login_link.rb +0 -11
- data/lib/stripe/order.rb +0 -31
- data/lib/stripe/payment_intent.rb +0 -26
- data/lib/stripe/payment_method.rb +0 -23
- data/lib/stripe/payout.rb +0 -20
- data/lib/stripe/reversal.rb +0 -22
- data/lib/stripe/review.rb +0 -14
- data/lib/stripe/source.rb +0 -38
- data/lib/stripe/subscription.rb +0 -25
- data/lib/stripe/subscription_item.rb +0 -17
- data/lib/stripe/subscription_schedule.rb +0 -32
- data/lib/stripe/subscription_schedule_revision.rb +0 -25
- data/lib/stripe/terminal/connection_token.rb +0 -11
- data/lib/stripe/topup.rb +0 -16
- data/lib/stripe/transfer.rb +0 -23
- data/lib/stripe/usage_record.rb +0 -14
- data/test/api_stub_helpers.rb +0 -1
- data/test/openapi/README.md +0 -9
- data/test/stripe/account_external_accounts_operations_test.rb +0 -69
- data/test/stripe/account_link_test.rb +0 -18
- data/test/stripe/account_login_links_operations_test.rb +0 -21
- data/test/stripe/account_persons_operations_test.rb +0 -70
- data/test/stripe/account_test.rb +0 -256
- data/test/stripe/alipay_account_test.rb +0 -37
- data/test/stripe/api_operations_test.rb +0 -81
- data/test/stripe/api_resource_test.rb +0 -526
- data/test/stripe/apple_pay_domain_test.rb +0 -33
- data/test/stripe/application_fee_refund_test.rb +0 -37
- data/test/stripe/application_fee_refunds_operations_test.rb +0 -56
- data/test/stripe/application_fee_test.rb +0 -14
- data/test/stripe/balance_test.rb +0 -13
- data/test/stripe/bank_account_test.rb +0 -36
- data/test/stripe/charge_test.rb +0 -59
- data/test/stripe/checkout/session_test.rb +0 -41
- data/test/stripe/country_spec_test.rb +0 -20
- data/test/stripe/coupon_test.rb +0 -51
- data/test/stripe/customer_card_test.rb +0 -42
- data/test/stripe/customer_sources_operations_test.rb +0 -64
- data/test/stripe/customer_test.rb +0 -115
- data/test/stripe/dispute_test.rb +0 -42
- data/test/stripe/ephemeral_key_test.rb +0 -86
- data/test/stripe/errors_test.rb +0 -20
- data/test/stripe/exchange_rate_test.rb +0 -20
- data/test/stripe/file_link_test.rb +0 -41
- data/test/stripe/file_test.rb +0 -73
- data/test/stripe/file_upload_test.rb +0 -76
- data/test/stripe/invoice_item_test.rb +0 -55
- data/test/stripe/invoice_line_item_test.rb +0 -8
- data/test/stripe/invoice_test.rb +0 -161
- data/test/stripe/issuer_fraud_record_test.rb +0 -20
- data/test/stripe/issuing/authorization_test.rb +0 -50
- data/test/stripe/issuing/card_test.rb +0 -53
- data/test/stripe/issuing/cardholder_test.rb +0 -53
- data/test/stripe/issuing/dispute_test.rb +0 -45
- data/test/stripe/issuing/transaction_test.rb +0 -48
- data/test/stripe/list_object_test.rb +0 -156
- data/test/stripe/login_link_test.rb +0 -37
- data/test/stripe/oauth_test.rb +0 -88
- data/test/stripe/order_return_test.rb +0 -21
- data/test/stripe/order_test.rb +0 -57
- data/test/stripe/payment_intent_test.rb +0 -80
- data/test/stripe/payment_method_test.rb +0 -66
- data/test/stripe/payout_test.rb +0 -50
- data/test/stripe/person_test.rb +0 -46
- data/test/stripe/plan_test.rb +0 -92
- data/test/stripe/product_test.rb +0 -49
- data/test/stripe/radar/value_list_item_test.rb +0 -38
- data/test/stripe/radar/value_list_test.rb +0 -51
- data/test/stripe/recipient_test.rb +0 -49
- data/test/stripe/refund_test.rb +0 -39
- data/test/stripe/reporting/report_run_test.rb +0 -33
- data/test/stripe/reporting/report_type_test.rb +0 -22
- data/test/stripe/reversal_test.rb +0 -43
- data/test/stripe/review_test.rb +0 -27
- data/test/stripe/sigma/scheduled_query_run_test.rb +0 -22
- data/test/stripe/sku_test.rb +0 -50
- data/test/stripe/source_test.rb +0 -86
- data/test/stripe/source_transaction_test.rb +0 -19
- data/test/stripe/stripe_client_test.rb +0 -823
- data/test/stripe/stripe_object_test.rb +0 -525
- data/test/stripe/stripe_response_test.rb +0 -49
- data/test/stripe/subscription_item_test.rb +0 -53
- data/test/stripe/subscription_schedule_revision_test.rb +0 -37
- data/test/stripe/subscription_schedule_revisions_operations_test.rb +0 -35
- data/test/stripe/subscription_schedule_test.rb +0 -64
- data/test/stripe/subscription_test.rb +0 -60
- data/test/stripe/terminal/connection_token_test.rb +0 -16
- data/test/stripe/terminal/location_test.rb +0 -58
- data/test/stripe/terminal/reader_test.rb +0 -52
- data/test/stripe/three_d_secure_test.rb +0 -23
- data/test/stripe/topup_test.rb +0 -54
- data/test/stripe/transfer_reversals_operations_test.rb +0 -57
- data/test/stripe/transfer_test.rb +0 -43
- data/test/stripe/usage_record_summary_test.rb +0 -19
- data/test/stripe/usage_record_test.rb +0 -28
- data/test/stripe/util_test.rb +0 -402
- data/test/stripe/webhook_endpoint_test.rb +0 -42
- data/test/stripe/webhook_test.rb +0 -96
- data/test/stripe_mock.rb +0 -77
- data/test/stripe_test.rb +0 -63
- data/test/test_data.rb +0 -61
- data/test/test_helper.rb +0 -73
data/lib/stripe/util.rb
CHANGED
|
@@ -24,98 +24,74 @@ module Stripe
|
|
|
24
24
|
OPTS_USER_SPECIFIED + Set[:client] - Set[:idempotency_key]
|
|
25
25
|
).freeze
|
|
26
26
|
|
|
27
|
-
def self.objects_to_ids(
|
|
28
|
-
case
|
|
27
|
+
def self.objects_to_ids(obj)
|
|
28
|
+
case obj
|
|
29
29
|
when APIResource
|
|
30
|
-
|
|
30
|
+
obj.id
|
|
31
31
|
when Hash
|
|
32
32
|
res = {}
|
|
33
|
-
|
|
33
|
+
obj.each { |k, v| res[k] = objects_to_ids(v) unless v.nil? }
|
|
34
34
|
res
|
|
35
35
|
when Array
|
|
36
|
-
|
|
36
|
+
obj.map { |v| objects_to_ids(v) }
|
|
37
37
|
else
|
|
38
|
-
|
|
38
|
+
obj
|
|
39
39
|
end
|
|
40
40
|
end
|
|
41
41
|
|
|
42
|
-
def self.object_classes
|
|
43
|
-
@object_classes ||=
|
|
44
|
-
|
|
45
|
-
|
|
46
|
-
|
|
47
|
-
|
|
48
|
-
|
|
49
|
-
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
|
|
58
|
-
|
|
59
|
-
|
|
60
|
-
|
|
61
|
-
|
|
62
|
-
|
|
63
|
-
|
|
64
|
-
|
|
65
|
-
|
|
66
|
-
|
|
67
|
-
|
|
68
|
-
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
|
|
73
|
-
|
|
74
|
-
|
|
75
|
-
|
|
76
|
-
|
|
77
|
-
|
|
78
|
-
|
|
79
|
-
|
|
80
|
-
|
|
81
|
-
|
|
82
|
-
|
|
83
|
-
|
|
84
|
-
|
|
85
|
-
|
|
86
|
-
|
|
87
|
-
|
|
88
|
-
|
|
89
|
-
|
|
90
|
-
|
|
91
|
-
|
|
92
|
-
|
|
93
|
-
|
|
94
|
-
|
|
95
|
-
Refund::OBJECT_NAME => Refund,
|
|
96
|
-
Reporting::ReportRun::OBJECT_NAME => Reporting::ReportRun,
|
|
97
|
-
Reporting::ReportType::OBJECT_NAME => Reporting::ReportType,
|
|
98
|
-
Reversal::OBJECT_NAME => Reversal,
|
|
99
|
-
Review::OBJECT_NAME => Review,
|
|
100
|
-
SKU::OBJECT_NAME => SKU,
|
|
101
|
-
Sigma::ScheduledQueryRun::OBJECT_NAME => Sigma::ScheduledQueryRun,
|
|
102
|
-
Source::OBJECT_NAME => Source,
|
|
103
|
-
SourceTransaction::OBJECT_NAME => SourceTransaction,
|
|
104
|
-
Subscription::OBJECT_NAME => Subscription,
|
|
105
|
-
SubscriptionItem::OBJECT_NAME => SubscriptionItem,
|
|
106
|
-
SubscriptionSchedule::OBJECT_NAME => SubscriptionSchedule,
|
|
107
|
-
SubscriptionScheduleRevision::OBJECT_NAME => SubscriptionScheduleRevision,
|
|
108
|
-
Terminal::ConnectionToken::OBJECT_NAME => Terminal::ConnectionToken,
|
|
109
|
-
Terminal::Location::OBJECT_NAME => Terminal::Location,
|
|
110
|
-
Terminal::Reader::OBJECT_NAME => Terminal::Reader,
|
|
111
|
-
ThreeDSecure::OBJECT_NAME => ThreeDSecure,
|
|
112
|
-
Token::OBJECT_NAME => Token,
|
|
113
|
-
Topup::OBJECT_NAME => Topup,
|
|
114
|
-
Transfer::OBJECT_NAME => Transfer,
|
|
115
|
-
UsageRecord::OBJECT_NAME => UsageRecord,
|
|
116
|
-
UsageRecordSummary::OBJECT_NAME => UsageRecordSummary,
|
|
117
|
-
WebhookEndpoint::OBJECT_NAME => WebhookEndpoint,
|
|
118
|
-
}
|
|
42
|
+
def self.object_classes
|
|
43
|
+
@object_classes ||= Stripe::ObjectTypes.object_names_to_classes
|
|
44
|
+
end
|
|
45
|
+
|
|
46
|
+
def self.object_name_matches_class?(object_name, klass)
|
|
47
|
+
Util.object_classes[object_name] == klass
|
|
48
|
+
end
|
|
49
|
+
|
|
50
|
+
# Adds a custom method to a resource class. This is used to add support for
|
|
51
|
+
# non-CRUDL API requests, e.g. capturing charges. custom_method takes the
|
|
52
|
+
# following parameters:
|
|
53
|
+
# - name: the name of the custom method to create (as a symbol)
|
|
54
|
+
# - http_verb: the HTTP verb for the API request (:get, :post, or :delete)
|
|
55
|
+
# - http_path: the path to append to the resource's URL. If not provided,
|
|
56
|
+
# the name is used as the path
|
|
57
|
+
# - resource: the resource implementation class
|
|
58
|
+
# - target: the class that custom static method will be added to
|
|
59
|
+
#
|
|
60
|
+
# For example, this call:
|
|
61
|
+
# custom_method :capture, http_verb: post
|
|
62
|
+
# adds a `capture` class method to the resource class that, when called,
|
|
63
|
+
# will send a POST request to `/v1/<object_name>/capture`.
|
|
64
|
+
def self.custom_method(resource, target, name, http_verb, http_path)
|
|
65
|
+
unless %i[get post delete].include?(http_verb)
|
|
66
|
+
raise ArgumentError,
|
|
67
|
+
"Invalid http_verb value: #{http_verb.inspect}. Should be one " \
|
|
68
|
+
"of :get, :post or :delete."
|
|
69
|
+
end
|
|
70
|
+
unless target.respond_to?(:resource_url)
|
|
71
|
+
raise ArgumentError,
|
|
72
|
+
"Invalid target value: #{target}. Target class should have a " \
|
|
73
|
+
"`resource_url` method."
|
|
74
|
+
end
|
|
75
|
+
http_path ||= name.to_s
|
|
76
|
+
target.define_singleton_method(name) do |id, params = {}, opts = {}|
|
|
77
|
+
unless id.is_a?(String)
|
|
78
|
+
raise ArgumentError,
|
|
79
|
+
"id should be a string representing the ID of an API resource"
|
|
80
|
+
end
|
|
81
|
+
|
|
82
|
+
url = "#{target.resource_url}/"\
|
|
83
|
+
"#{CGI.escape(id)}/"\
|
|
84
|
+
"#{CGI.escape(http_path)}"
|
|
85
|
+
|
|
86
|
+
resp, opts = resource.execute_resource_request(
|
|
87
|
+
http_verb,
|
|
88
|
+
url,
|
|
89
|
+
params,
|
|
90
|
+
opts
|
|
91
|
+
)
|
|
92
|
+
|
|
93
|
+
Util.convert_to_stripe_object(resp.data, opts)
|
|
94
|
+
end
|
|
119
95
|
end
|
|
120
96
|
|
|
121
97
|
# Converts a hash of fields or an array of hashes into a +StripeObject+ or
|
|
@@ -131,38 +107,48 @@ module Stripe
|
|
|
131
107
|
# * +opts+ - Options for +StripeObject+ like an API key that will be reused
|
|
132
108
|
# on subsequent API calls.
|
|
133
109
|
def self.convert_to_stripe_object(data, opts = {})
|
|
110
|
+
opts = normalize_opts(opts)
|
|
111
|
+
|
|
134
112
|
case data
|
|
135
113
|
when Array
|
|
136
114
|
data.map { |i| convert_to_stripe_object(i, opts) }
|
|
137
115
|
when Hash
|
|
138
|
-
# Try converting to a known object class. If none available, fall back
|
|
139
|
-
|
|
116
|
+
# Try converting to a known object class. If none available, fall back
|
|
117
|
+
# to generic StripeObject
|
|
118
|
+
object_classes.fetch(data[:object], StripeObject)
|
|
119
|
+
.construct_from(data, opts)
|
|
140
120
|
else
|
|
141
121
|
data
|
|
142
122
|
end
|
|
143
123
|
end
|
|
144
124
|
|
|
145
125
|
def self.log_error(message, data = {})
|
|
146
|
-
|
|
147
|
-
|
|
148
|
-
|
|
149
|
-
|
|
126
|
+
config = data.delete(:config) || Stripe.config
|
|
127
|
+
logger = config.logger || Stripe.logger
|
|
128
|
+
if !logger.nil? ||
|
|
129
|
+
!config.log_level.nil? && config.log_level <= Stripe::LEVEL_ERROR
|
|
130
|
+
log_internal(message, data, color: :cyan, level: Stripe::LEVEL_ERROR,
|
|
131
|
+
logger: Stripe.logger, out: $stderr)
|
|
150
132
|
end
|
|
151
133
|
end
|
|
152
134
|
|
|
153
135
|
def self.log_info(message, data = {})
|
|
154
|
-
|
|
155
|
-
|
|
156
|
-
|
|
157
|
-
|
|
136
|
+
config = data.delete(:config) || Stripe.config
|
|
137
|
+
logger = config.logger || Stripe.logger
|
|
138
|
+
if !logger.nil? ||
|
|
139
|
+
!config.log_level.nil? && config.log_level <= Stripe::LEVEL_INFO
|
|
140
|
+
log_internal(message, data, color: :cyan, level: Stripe::LEVEL_INFO,
|
|
141
|
+
logger: Stripe.logger, out: $stdout)
|
|
158
142
|
end
|
|
159
143
|
end
|
|
160
144
|
|
|
161
145
|
def self.log_debug(message, data = {})
|
|
162
|
-
|
|
163
|
-
|
|
164
|
-
|
|
165
|
-
|
|
146
|
+
config = data.delete(:config) || Stripe.config
|
|
147
|
+
logger = config.logger || Stripe.logger
|
|
148
|
+
if !logger.nil? ||
|
|
149
|
+
!config.log_level.nil? && config.log_level <= Stripe::LEVEL_DEBUG
|
|
150
|
+
log_internal(message, data, color: :blue, level: Stripe::LEVEL_DEBUG,
|
|
151
|
+
logger: Stripe.logger, out: $stdout)
|
|
166
152
|
end
|
|
167
153
|
end
|
|
168
154
|
|
|
@@ -239,6 +225,18 @@ module Stripe
|
|
|
239
225
|
result
|
|
240
226
|
end
|
|
241
227
|
|
|
228
|
+
# `Time.now` can be unstable in cases like an administrator manually
|
|
229
|
+
# updating its value or a reconcilation via NTP. For this reason, prefer
|
|
230
|
+
# the use of the system's monotonic clock especially where comparing times
|
|
231
|
+
# to calculate an elapsed duration.
|
|
232
|
+
#
|
|
233
|
+
# Shortcut for getting monotonic time, mostly for purposes of line length
|
|
234
|
+
# and test stubbing. Returns time in seconds since the event used for
|
|
235
|
+
# monotonic reference purposes by the platform (e.g. system boot time).
|
|
236
|
+
def self.monotonic_time
|
|
237
|
+
Process.clock_gettime(Process::CLOCK_MONOTONIC)
|
|
238
|
+
end
|
|
239
|
+
|
|
242
240
|
def self.normalize_id(id)
|
|
243
241
|
if id.is_a?(Hash) # overloaded id
|
|
244
242
|
params_hash = id.dup
|
|
@@ -257,7 +255,9 @@ module Stripe
|
|
|
257
255
|
{ api_key: opts }
|
|
258
256
|
when Hash
|
|
259
257
|
check_api_key!(opts.fetch(:api_key)) if opts.key?(:api_key)
|
|
260
|
-
|
|
258
|
+
# Explicitly use dup here instead of clone to avoid preserving freeze
|
|
259
|
+
# state on input params.
|
|
260
|
+
opts.dup
|
|
261
261
|
else
|
|
262
262
|
raise TypeError, "normalize_opts expects a string or a hash"
|
|
263
263
|
end
|
|
@@ -265,11 +265,13 @@ module Stripe
|
|
|
265
265
|
|
|
266
266
|
def self.check_string_argument!(key)
|
|
267
267
|
raise TypeError, "argument must be a string" unless key.is_a?(String)
|
|
268
|
+
|
|
268
269
|
key
|
|
269
270
|
end
|
|
270
271
|
|
|
271
272
|
def self.check_api_key!(key)
|
|
272
273
|
raise TypeError, "api_key must be a string" unless key.is_a?(String)
|
|
274
|
+
|
|
273
275
|
key
|
|
274
276
|
end
|
|
275
277
|
|
|
@@ -297,13 +299,13 @@ module Stripe
|
|
|
297
299
|
|
|
298
300
|
# Constant time string comparison to prevent timing attacks
|
|
299
301
|
# Code borrowed from ActiveSupport
|
|
300
|
-
def self.secure_compare(
|
|
301
|
-
return false unless
|
|
302
|
+
def self.secure_compare(str_a, str_b)
|
|
303
|
+
return false unless str_a.bytesize == str_b.bytesize
|
|
302
304
|
|
|
303
|
-
l =
|
|
305
|
+
l = str_a.unpack "C#{str_a.bytesize}"
|
|
304
306
|
|
|
305
307
|
res = 0
|
|
306
|
-
|
|
308
|
+
str_b.each_byte { |byte| res |= byte ^ l.shift }
|
|
307
309
|
res.zero?
|
|
308
310
|
end
|
|
309
311
|
|
|
@@ -312,14 +314,14 @@ module Stripe
|
|
|
312
314
|
#
|
|
313
315
|
|
|
314
316
|
COLOR_CODES = {
|
|
315
|
-
black:
|
|
316
|
-
red:
|
|
317
|
-
green:
|
|
318
|
-
yellow:
|
|
319
|
-
blue:
|
|
317
|
+
black: 0, light_black: 60,
|
|
318
|
+
red: 1, light_red: 61,
|
|
319
|
+
green: 2, light_green: 62,
|
|
320
|
+
yellow: 3, light_yellow: 63,
|
|
321
|
+
blue: 4, light_blue: 64,
|
|
320
322
|
magenta: 5, light_magenta: 65,
|
|
321
|
-
cyan:
|
|
322
|
-
white:
|
|
323
|
+
cyan: 6, light_cyan: 66,
|
|
324
|
+
white: 7, light_white: 67,
|
|
323
325
|
default: 9,
|
|
324
326
|
}.freeze
|
|
325
327
|
private_constant :COLOR_CODES
|
|
@@ -348,23 +350,32 @@ module Stripe
|
|
|
348
350
|
end
|
|
349
351
|
private_class_method :level_name
|
|
350
352
|
|
|
351
|
-
|
|
352
|
-
# 2.0.
|
|
353
|
-
def self.log_internal(message, data = {}, color: nil, level: nil, logger: nil, out: nil)
|
|
353
|
+
def self.log_internal(message, data = {}, color:, level:, logger:, out:)
|
|
354
354
|
data_str = data.reject { |_k, v| v.nil? }
|
|
355
355
|
.map do |(k, v)|
|
|
356
|
-
format("
|
|
356
|
+
format("%<key>s=%<value>s",
|
|
357
|
+
key: colorize(k, color, logger.nil? && !out.nil? && out.isatty),
|
|
358
|
+
value: wrap_logfmt_value(v))
|
|
357
359
|
end.join(" ")
|
|
358
360
|
|
|
359
361
|
if !logger.nil?
|
|
360
362
|
# the library's log levels are mapped to the same values as the
|
|
361
363
|
# standard library's logger
|
|
362
364
|
logger.log(level,
|
|
363
|
-
format("message
|
|
365
|
+
format("message=%<message>s %<data_str>s",
|
|
366
|
+
message: wrap_logfmt_value(message),
|
|
367
|
+
data_str: data_str))
|
|
364
368
|
elsif out.isatty
|
|
365
|
-
out.puts format("
|
|
369
|
+
out.puts format("%<level>s %<message>s %<data_str>s",
|
|
370
|
+
level: colorize(level_name(level)[0, 4].upcase,
|
|
371
|
+
color, out.isatty),
|
|
372
|
+
message: message,
|
|
373
|
+
data_str: data_str)
|
|
366
374
|
else
|
|
367
|
-
out.puts format("message
|
|
375
|
+
out.puts format("message=%<message>s level=%<level>s %<data_str>s",
|
|
376
|
+
message: wrap_logfmt_value(message),
|
|
377
|
+
level: level_name(level),
|
|
378
|
+
data_str: data_str)
|
|
368
379
|
end
|
|
369
380
|
end
|
|
370
381
|
private_class_method :log_internal
|
|
@@ -382,7 +393,7 @@ module Stripe
|
|
|
382
393
|
if %r{[^\w\-/]} =~ val
|
|
383
394
|
# If the string contains any special characters, escape any double
|
|
384
395
|
# quotes it has, remove newlines, and wrap the whole thing in quotes.
|
|
385
|
-
format(%("
|
|
396
|
+
format(%("%<value>s"), value: val.gsub('"', '\"').delete("\n"))
|
|
386
397
|
else
|
|
387
398
|
# Otherwise use the basic value if it looks like a standard set of
|
|
388
399
|
# characters (and allow a few special characters like hyphens, and
|
data/lib/stripe/version.rb
CHANGED
data/lib/stripe/webhook.rb
CHANGED
|
@@ -8,7 +8,8 @@ module Stripe
|
|
|
8
8
|
#
|
|
9
9
|
# This may raise JSON::ParserError if the payload is not valid JSON, or
|
|
10
10
|
# SignatureVerificationError if the signature verification fails.
|
|
11
|
-
def self.construct_event(payload, sig_header, secret,
|
|
11
|
+
def self.construct_event(payload, sig_header, secret,
|
|
12
|
+
tolerance: DEFAULT_TOLERANCE)
|
|
12
13
|
Signature.verify_header(payload, sig_header, secret, tolerance: tolerance)
|
|
13
14
|
|
|
14
15
|
# It's a good idea to parse the payload only after verifying it. We use
|
|
@@ -21,12 +22,39 @@ module Stripe
|
|
|
21
22
|
end
|
|
22
23
|
|
|
23
24
|
module Signature
|
|
24
|
-
EXPECTED_SCHEME = "v1"
|
|
25
|
+
EXPECTED_SCHEME = "v1"
|
|
25
26
|
|
|
26
|
-
|
|
27
|
-
|
|
27
|
+
# Computes a webhook signature given a time (probably the current time),
|
|
28
|
+
# a payload, and a signing secret.
|
|
29
|
+
def self.compute_signature(timestamp, payload, secret)
|
|
30
|
+
raise ArgumentError, "timestamp should be an instance of Time" \
|
|
31
|
+
unless timestamp.is_a?(Time)
|
|
32
|
+
raise ArgumentError, "payload should be a string" \
|
|
33
|
+
unless payload.is_a?(String)
|
|
34
|
+
raise ArgumentError, "secret should be a string" \
|
|
35
|
+
unless secret.is_a?(String)
|
|
36
|
+
|
|
37
|
+
timestamped_payload = "#{timestamp.to_i}.#{payload}"
|
|
38
|
+
OpenSSL::HMAC.hexdigest(OpenSSL::Digest.new("sha256"), secret,
|
|
39
|
+
timestamped_payload)
|
|
40
|
+
end
|
|
41
|
+
|
|
42
|
+
# Generates a value that would be added to a `Stripe-Signature` for a
|
|
43
|
+
# given webhook payload.
|
|
44
|
+
#
|
|
45
|
+
# Note that this isn't needed to verify webhooks in any way, and is
|
|
46
|
+
# mainly here for use in test cases (those that are both within this
|
|
47
|
+
# project and without).
|
|
48
|
+
def self.generate_header(timestamp, signature, scheme: EXPECTED_SCHEME)
|
|
49
|
+
raise ArgumentError, "timestamp should be an instance of Time" \
|
|
50
|
+
unless timestamp.is_a?(Time)
|
|
51
|
+
raise ArgumentError, "signature should be a string" \
|
|
52
|
+
unless signature.is_a?(String)
|
|
53
|
+
raise ArgumentError, "scheme should be a string" \
|
|
54
|
+
unless scheme.is_a?(String)
|
|
55
|
+
|
|
56
|
+
"t=#{timestamp.to_i},#{scheme}=#{signature}"
|
|
28
57
|
end
|
|
29
|
-
private_class_method :compute_signature
|
|
30
58
|
|
|
31
59
|
# Extracts the timestamp and the signature(s) with the desired scheme
|
|
32
60
|
# from the header
|
|
@@ -34,7 +62,7 @@ module Stripe
|
|
|
34
62
|
list_items = header.split(/,\s*/).map { |i| i.split("=", 2) }
|
|
35
63
|
timestamp = Integer(list_items.select { |i| i[0] == "t" }[0][1])
|
|
36
64
|
signatures = list_items.select { |i| i[0] == scheme }.map { |i| i[1] }
|
|
37
|
-
[timestamp, signatures]
|
|
65
|
+
[Time.at(timestamp), signatures]
|
|
38
66
|
end
|
|
39
67
|
private_class_method :get_timestamp_and_signatures
|
|
40
68
|
|
|
@@ -50,7 +78,13 @@ module Stripe
|
|
|
50
78
|
# Returns true otherwise
|
|
51
79
|
def self.verify_header(payload, header, secret, tolerance: nil)
|
|
52
80
|
begin
|
|
53
|
-
timestamp, signatures =
|
|
81
|
+
timestamp, signatures =
|
|
82
|
+
get_timestamp_and_signatures(header, EXPECTED_SCHEME)
|
|
83
|
+
|
|
84
|
+
# TODO: Try to knock over this blanket rescue as it can unintentionally
|
|
85
|
+
# swallow many valid errors. Instead, try to validate an incoming
|
|
86
|
+
# header one piece at a time, and error with a known exception class if
|
|
87
|
+
# any part is found to be invalid. Rescue that class here.
|
|
54
88
|
rescue StandardError
|
|
55
89
|
raise SignatureVerificationError.new(
|
|
56
90
|
"Unable to extract timestamp and signatures from header",
|
|
@@ -65,8 +99,7 @@ module Stripe
|
|
|
65
99
|
)
|
|
66
100
|
end
|
|
67
101
|
|
|
68
|
-
|
|
69
|
-
expected_sig = compute_signature(signed_payload, secret)
|
|
102
|
+
expected_sig = compute_signature(timestamp, payload, secret)
|
|
70
103
|
unless signatures.any? { |s| Util.secure_compare(expected_sig, s) }
|
|
71
104
|
raise SignatureVerificationError.new(
|
|
72
105
|
"No signatures found matching the expected signature for payload",
|
|
@@ -74,7 +107,7 @@ module Stripe
|
|
|
74
107
|
)
|
|
75
108
|
end
|
|
76
109
|
|
|
77
|
-
if tolerance && timestamp < Time.now
|
|
110
|
+
if tolerance && timestamp < Time.now - tolerance
|
|
78
111
|
raise SignatureVerificationError.new(
|
|
79
112
|
"Timestamp outside the tolerance zone (#{Time.at(timestamp)})",
|
|
80
113
|
header, http_body: payload
|