veritrans 1.2.6 → 2.0.0beta

data/bin/veritrans

@@ -1,57 +1,68 @@
-require File.expand_path(
-        File.join(File.dirname(__FILE__),%w[.. lib veritrans]))
-wpath=  File.dirname(__FILE__).gsub(/bin$/,'')
+#!/usr/bin/env ruby
 
-def howto_veritrans
-puts <<END
+$:.push(File.expand_path("../../lib", __FILE__))
 
-How to Veritrans:
-~~~~~~~~~~~~~~~~~~~~~~~
-syntax:
-veritrans -irb
+require 'optparse'
+require "veritrans/version"
 
-example:
-  veritrans -irb              #=> Start IRB 
+OPERATIONS = %w(testhook)
 
-Enjoy... 
-END
+CONFIG = {}
+option_parser = OptionParser.new do |opts|
+  opts.banner = "Veritrans #{Veritrans::VERSION}"
+                "Usage: veritrans testhook [options] {url}\n" +
+                "  -o specify order id"
 
-end
+  opts.on("-h", "--help", "Show help") do
+    puts option_parser.help
+    exit
+  end
+
+  opts.on("-o [ORDER_ID]", "--order [ORDER_ID]", "Select order") do |order|
+    CONFIG[:order] = order
+  end
+
+  opts.on("-c [PATH]", "--config [PATH]", "Path to config (defualt .)") do |config|
+    CONFIG[:config_path] = config
+  end
+
+  opts.separator <<-EOS
+
+Supported commands:
+
+ testhook [url]          Send testing webhook to specified url
+
+Example:
+ veritrans testhook http://localhost:3000/vt_events
+ veritrans testhook -o my-order-1 -c ~/path/to/veritrans.yml http://localhost:3000/vt_events
+
+EOS
 
-arg = ARGV 
-if arg.size==0
-	howto_veritrans
-	exit
 end
 
-if arg.select{|x|x=='-irb'} != []
-  ARGV.reject!{|x|x=='-irb'}
-  
-  require 'irb'
-  puts <<EOF
-example:
-require 'veritrans'
-
-client = Veritrans::Client.new
-client.order_id   = "#{(0...4).map{65.+(rand(25))}.join}"
-client.session_id = "#{(0...4).map{65.+(rand(25))}.join}"
-client.gross_amount = "10"
-client.commodity    = [
-  {"COMMODITY_ID" => "IDxx1", "COMMODITY_UNIT" => "10", "COMMODITY_NUM" => "1", "COMMODITY_NAME1" => "Waterbotle", "COMMODITY_NAME2" => "Waterbottle in Indonesian"}
-]
-client.shipping_flag         = "1"
-client.shipping_first_name   = "Sam"
-client.shipping_last_name    = "Anthony"
-client.shipping_address1     = "Buaran I" 
-client.shipping_address2     = "Pulogadung"
-client.shipping_city         = "Jakarta"
-client.shipping_country_code = "IDN"
-client.shipping_postal_code  = "16954"
-client.shipping_phone        = "0123456789123"
-client.shipping_method       = "N"
-client.get_keys
-client
-EOF
-
-  IRB.start 
+option_parser.parse!
+
+op = ARGV.shift
+
+if OPERATIONS.include?(op)
+  require 'veritrans'
+  require 'veritrans/cli'
+
+  begin
+    case op
+      when "testhook" then
+        Veritrans::CLI.test_webhook(ARGV)
+    end
+
+  rescue Veritrans::CLI::OrderNotFound, Veritrans::CLI::AuthenticationError => ex
+    puts ex.message
+  rescue ArgumentError => ex
+    puts ex.message
+  rescue Exception => e
+    puts "Uh oh, I didn't expect this:"
+    puts e.message
+    puts e.backtrace.join("\n")
+  end
+else
+  puts option_parser.help
 end

data/example/index.erb

@@ -0,0 +1,118 @@
+<link rel="stylesheet" href="/style.css">
+
+<header>
+  <h3>Veritrans sinatra app</h3>
+</header>
+
+<section>
+  <p>
+    Charge request VT-Web <a href="/charge_vtweb">click to see payment page</a>
+  </p>
+</section>
+
+<section>
+  <p>
+    Charge request VT-Direct
+  </p>
+
+  <form action="/charge_vtdirect" method="post" id="card_form">
+    <input type="hidden" name="token_id" id="card_token">
+    <fieldset>
+      <legend>Credit card</legend>
+      <p>
+        <label for="gross_amount">Amount, Rp.</label>
+        <input type="text" name="gross_amount" id="gross_amount" value="30000">
+      </p>
+      <p>
+        <label for="card_number">Card number</label>
+        <input type="text" id="card_number" style="width: 150px" value="4811 1111 1111 1114">
+        <br>
+        <small style="margin-left: 100px" class="card-numbers">
+          <a onclick="$('#card_number').val('4811 1111 1111 1114')">success Visa</a>
+          <a onclick="$('#card_number').val('5810 1111 1111 1112')">success MasterCard</a>
+          <a onclick="$('#card_number').val('4511 1111 1111 1117')">challenge</a>
+          <a onclick="$('#card_number').val('4611 1111 1111 1116')">Deny by FDS</a>
+          <a onclick="$('#card_number').val('4911 1111 1111 1113')">Deny by bank</a>
+          <a href="http://docs.veritrans.co.id/sandbox/card_list.html" target="_blank">documentation</a>
+        </small>
+      </p>
+      <p>
+        <label for="card_cvc">Security Code</label>
+        <input type="text" id="card_cvc" style="width: 30px" placeholder="cvc" value="123">
+      </p>
+      <p>
+        <label for="card_exp">Expiration date</label>
+        <input type="text" id="card_exp" placeholder="MM / YY" value="12 / 16">
+      </p>
+
+      <p>
+        <label for="card_secure">3D-secure</label>
+        <input type="checkbox" id="card_secure">
+      </p>
+
+    </fieldset>
+
+    <input id="submit_btn" type="submit">
+  </form>
+</section>
+
+<script src="//api.sandbox.veritrans.co.id/v2/assets/veritrans.js"></script>
+<script src="//ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js"></script>
+<script src="//cdnjs.cloudflare.com/ajax/libs/jquery.payment/1.0.2/jquery.payment.js"></script>
+<script src="//cdnjs.cloudflare.com/ajax/libs/magnific-popup.js/0.9.9/jquery.magnific-popup.min.js"></script>
+<link rel="stylesheet" href="//cdnjs.cloudflare.com/ajax/libs/magnific-popup.js/0.9.9/magnific-popup.css">
+
+<script type="text/javascript">
+  // set Veritrans settings
+  Veritrans.url = "<%= Veritrans.config.api_host %>/v2/token";
+  Veritrans.client_key = "<%= Veritrans.config.client_key %>";
+
+  function createTokenData() {
+    return {
+      // Optional params:
+      // secure: true
+      // bank: 'MANDIRI'
+
+      card_number: $('#card_number').val(),
+      card_cvv: $('#card_cvc').val(),
+      card_exp_month: $('#card_exp').val().match(/(\d+) \//)[1],
+      card_exp_year: '20' + $('#card_exp').val().match(/\/ (\d+)/)[1],
+      gross_amount: $('#gross_amount').val(),
+      secure: $('#card_secure')[0].checked
+    };
+  }
+
+  $(document).ready(function () {
+    $('#card_number').payment('formatCardNumber');
+    $('#card_cvc').payment('formatCardCVC');
+    $('#card_exp').payment('formatCardExpiry');
+
+    $('#card_form').on('submit', function (event) {
+      var form = this;
+      $('#submit_btn').attr('disabled', true).val("Processing ...");
+      event.preventDefault();
+
+      Veritrans.token(createTokenData, function (data) {
+        console.log('Token data:', data);
+        // if we get url then it's 3d-secure transaction
+        // so we need to open that page
+        // this callback function will be called again after user confirm 3d-secure
+        // you can also redirect on server side
+        if (data.redirect_url) {
+          $.magnificPopup.open({
+            items: { type: 'iframe', src: data.redirect_url }
+          });
+          $.magnificPopup.instance.content.find('iframe').height(590);
+        // if no redirect_url and we have token_id then just make charge request
+        } else if (data.token_id) {
+          $('#card_token').val(data.token_id);
+          form.submit();
+        // if no redirect_url and no token_id, then it should be error
+        } else {
+          alert(data.validation_messages ? data.validation_messages.join("\n") : data.status_message);
+          $('#submit_btn').removeAttr('disabled').removeAttr("value");
+        }
+      });
+    });
+  });
+</script>

data/example/response.erb

@@ -0,0 +1,28 @@
+<link rel="stylesheet" href="/style.css">
+
+<header>
+  <h3>Veritrans sinatra app</h3>
+</header>
+
+<% if @result.redirect_url %>
+  <section>
+    <p>Here's redirect url <a href='<%= @result.redirect_url %>'><%= @result.redirect_url %></a> </p>
+  </section>
+<% end %>
+
+<section>
+  <strong>
+    Veritrans response:
+    <% if @result.success? %>
+      <span style="color: green">success</span>
+    <% end %>
+  </strong>
+
+  <code>
+    <pre>
+<%= @result.response.body %>
+    </pre>
+  </code>
+
+  <a href="/">Go back</a>
+</section>

data/example/sinatra.rb

@@ -0,0 +1,76 @@
+$:.push(File.expand_path("../../lib", __FILE__))
+
+require 'json'
+
+require 'veritrans'
+require 'sinatra'
+
+Veritrans.setup do
+  config.load_yml "./veritrans.yml#development"
+
+  # config.server_key = "..."
+  # config.client_key = "..."
+  # config.api_host = "https://api.sandbox.veritrans.co.id" (default)
+end
+
+# Veritrans.config.server_key
+# Veritrans.config.client_key
+# Veritrans.config.api_host
+
+set :public_folder, "."
+set :views,         "."
+
+def generate_order_id
+  "testing-#{rand.round(4)}-#{Time.now.to_i}"
+end
+
+get "/" do
+  erb :index
+end
+
+post "/charge_vtdirect" do
+  @result = Veritrans.charge(
+    payment_type: "credit_card",
+    credit_card: { token_id: params[:token_id] },
+    transaction_details: {
+      order_id: generate_order_id,
+      gross_amount: params[:gross_amount]
+    }
+  )
+
+  erb :response
+end
+
+get "/charge_vtweb" do
+  @result = Veritrans.charge(
+    payment_type: "VTWEB",
+    transaction_details: {
+      order_id: generate_order_id,
+      gross_amount: 100_000
+    }
+  )
+
+  erb :response
+end
+
+post "/webhook" do
+  post_body = request.body.read
+  request_data = Veritrans.decode_notification_json(post_body)
+
+  #puts "Recieved #{post_body.size} bytes"
+  #p request_data
+
+  verified_data = Veritrans.status(request_data['transaction_id'])
+
+  if verified_data.status_code != 404
+    puts "--- Transaction callback ---"
+    puts "Payment:        #{verified_data.data[:order_id]}"
+    puts "Payment type:   #{verified_data.data[:payment_type]}"
+    puts "Payment status: #{verified_data.data[:transaction_status]}"
+    puts "Fraud status:   #{verified_data.data[:fraud_status]}" if verified_data.data[:fraud_status]
+    puts "Payment amount: #{verified_data.data[:gross_amount]}"
+    puts "--- Transaction callback ---"
+  end
+
+  return "ok"
+end

data/example/style.css

@@ -0,0 +1,45 @@
+body {
+  max-width: 900px;
+  margin: 0 auto;
+}
+a {
+  color: #00E;
+}
+a:hover, a:focus {
+  color: #00E;
+}
+
+header {
+  background: #F5FAFC;
+  padding: 3px 5px;
+  border-bottom: 1px solid #ccc;
+}
+
+section {
+  padding: 1em 0;
+}
+
+section + section {
+  border-top: 1px solid #ccc;
+}
+
+label {
+  display: inline-block; min-width: 100px;
+}
+.card-numbers {
+  margin-left: 100px;
+}
+.card-numbers a {
+  text-decoration: none;
+  border-bottom: 1px dotted #88f;
+  margin-right: 10px;
+  cursor: pointer;
+}
+.card-numbers a[href] {
+  text-decoration: underline;
+  border: none;
+}
+
+fieldset {
+  margin: 25px 0 12px;
+}

data/example/veritrans.yml

@@ -0,0 +1,12 @@
+development:
+  # merchant_id: M000937
+
+  client_key: VT-client-NArmatJZqzsmTmzR
+  server_key: VT-server-9Htb-RxXkg7-7hznSCCjxvoY
+
+  # api_host: http://papi.vt-stage.info:8080
+  # For production use
+  # api_host: https://api.veritrans.co.id
+
+  # For sandbox use
+  # api_host: https://api.sandbox.veritrans.co.id

data/lib/generators/templates/assets/credit_card_form.js

@@ -0,0 +1,50 @@
+$(document).ready(function () {
+
+  function VT_createTokenData() {
+    return {
+      // Optional params:
+      // secure: true
+      // bank: 'MANDIRI'
+      // gross_amount: 1000
+
+      card_number: $('#credit_card_number').val(),
+      card_cvv: $('#credit_card_cvv').val(),
+      card_exp_month: $('#credit_card_expire').val().match(/(\d+) \//)[1],
+      card_exp_year: '20' + $('#credit_card_expire').val().match(/\/ (\d+)/)[1],
+      gross_amount: $('#payment_amount').val(),
+      secure: $('#payment_credit_card_secure')[0].checked
+    };
+  }
+
+  $('.veritrans-payment-form').on('submit', function (event) {
+    event.preventDefault();
+
+    var form = this;
+    var button = $(form).find('input[type=submit]:last');
+    var buttonValBefore = button.val();
+    button.val("Processing ...");
+
+    Veritrans.token(VT_createTokenData, function (data) {
+      console.log('Get token response:');
+      console.log(data);
+
+      // if we get redirect_url then it's 3d-secure transaction
+      // so we need to open that page
+      // this callback function will be called again after user confirm 3d-secure
+      // you can also redirect on server side
+
+      if (data.redirect_url) {
+        // it works nice with lightbox js libraries
+        $('#3d-secure-iframe').attr('src', data.redirect_url).show();
+      // if no redirect_url and we have token_id then just make charge request
+      } else if (data.token_id) {
+        $('#payment_token_id').val(data.token_id);
+        form.submit();
+      // if no redirect_url and no token_id, then it should be error
+      } else {
+        alert(data.validation_messages ? data.validation_messages.join("\n") : data.status_message);
+        button.removeAttr('disabled').val(buttonValBefore);
+      }
+    });
+  });
+});

data/lib/generators/templates/payments_controller.rb

@@ -0,0 +1,81 @@
+class PaymentsController < ApplicationController
+  skip_before_filter :verify_authenticity_token, only: [:receive_webhook]
+
+  def new
+    @payment = make_payment
+  end
+
+  def create
+    @payment = make_payment
+
+    if params[:type] == "vtweb"
+      @result = Veritrans.charge(
+        payment_type: "VTWEB",
+        transaction_details: {
+          order_id: @payment.order_id,
+          gross_amount: @payment.amount
+        }
+      )
+      redirect_to @result.redirect_url
+      return
+    end
+
+    @result = Veritrans.charge(
+      payment_type: "credit_card",
+      credit_card: { token_id: params[:payment][:token_id] },
+      transaction_details: {
+        order_id: @payment.order_id,
+        gross_amount: params[:payment][:amount].presence || @payment.amount
+      }
+    )
+  end
+
+  def receive_webhook
+    post_body = request.body.read
+    callback_params = Veritrans.decode_notification_json(post_body)
+
+    Veritrans.file_logger.info("Callback for order: " +
+      "#{callback_params[:order_id]} #{callback_params[:transaction_status]}\n" +
+      post_body + "\n"
+    )
+
+    verified_data = Veritrans.status(callback_params["transaction_id"])
+
+    if verified_data.status_code != 404
+      puts "--- Transaction callback ---"
+      puts "Payment:        #{verified_data.data[:order_id]}"
+      puts "Payment type:   #{verified_data.data[:payment_type]}"
+      puts "Payment status: #{verified_data.data[:transaction_status]}"
+      puts "Fraud status:   #{verified_data.data[:fraud_status]}" if verified_data.data[:fraud_status]
+      puts "Payment amount: #{verified_data.data[:gross_amount]}"
+      puts "--- Transaction callback ---"
+
+      render text: "ok"
+    else
+      Veritrans.file_logger.info("Callback verification failed for order: " +
+        "#{callback_params[:order_id]} #{callback_params[:transaction_status]}}\n" +
+        verified_data.body + "\n"
+      )
+
+      render text: "ok", :status => :not_found
+    end
+
+  end
+
+  private
+  def make_payment
+    @paymentKlass = Struct.new("Payment", :amount, :token_id, :order_id, :credit_card_secure) do
+      extend ActiveModel::Naming
+      include ActiveModel::Conversion
+
+      def persisted?; false; end
+
+      def self.name
+        "Payment"
+      end
+    end
+
+    @paymentKlass.new(100_000, '', "testing-#{rand.round(4)}-#{Time.now.to_i}", false)
+  end
+
+end

data/lib/generators/templates/veritrans.rb

@@ -0,0 +1,43 @@
+Veritrans.setup do
+  config.load_config Rails.root.join("config/veritrans.yml")
+
+  # Or set it manually...
+  # config.server_key = ""
+  # config.client_key = ""
+  # config.api_host = ""
+
+  # Veritrans::Events is rack application to handle http notifications from Veritrans
+  # To enable it, add in config/routes.rb
+  # mount Veritrans::Events.new => '/vt_events'
+
+  # All possible events:
+  #
+  # * payment.success     == ['authorize', 'capture', 'settlement']
+  # * payment.failed      == ['deny', 'canel', 'expire']
+  # * payment.challenge   # when payment.froud_status == 'challenge'
+  #
+  # * payment.authorize
+  # * payment.capture
+  # * payment.settlement
+  # * payment.deny
+  # * payment.canel
+  # * payment.expire
+
+  # events.subscribe 'payment.success' do |payment|
+  #   payment.mark_paid!
+  # end
+  # 
+  # events.subscribe 'payment.failed' do |payment|
+  #   payment.mark_failed!
+  # end
+  # 
+  # events.subscribe 'payment.challenge' do |payment|
+  #   payment.mark_challenge!
+  # end
+  # 
+  # events.subscribe /.+/ do |payment, event_name|
+  #   p "Event: #{event_name}"
+  #   p payment
+  # end
+
+end

data/lib/generators/templates/veritrans.yml

@@ -0,0 +1,13 @@
+development:
+  # Register in sandbox veritrans and get your keys here:
+  # https://my.sandbox.veritrans.co.id/settings/config_info
+  client_key: ""
+  server_key: ""
+  api_host: https://api.sandbox.veritrans.co.id
+
+production:
+  # Register and get your keys here:
+  # https://my.veritrans.co.id/settings/config_info
+  client_key: ""
+  server_key: ""
+  api_host: https://api.veritrans.co.id

data/lib/generators/templates/views/_credit_card_form.erb

@@ -0,0 +1,42 @@
+<%= form_for @payment, html: {class: "veritrans-payment-form"} do |f| %>
+  <%= f.hidden_field :token_id %>
+  <input type="submit" style="display: none">
+  <p>
+    <%= f.label :amount %>
+    <%= f.number_field :amount %>
+  </p>
+
+  <p>
+    <%= label_tag :credit_card_number %>
+    <%= text_field_tag :credit_card_number, '4811 1111 1111 1114', name: nil, size: 25 %>
+  </p>
+  <p>
+    <button onclick="$('#credit_card_number').val('5810 1111 1111 1112'); return false">success MasterCard</button>
+    <button onclick="$('#credit_card_number').val('4811 1111 1111 1114'); return false">success Visa</button>
+    <button onclick="$('#credit_card_number').val('4511 1111 1111 1117'); return false">challenge</button>
+    <button onclick="$('#credit_card_number').val('4611 1111 1111 1116'); return false">Deny by FDS</button>
+    <button onclick="$('#credit_card_number').val('4911 1111 1111 1113'); return false">Deny by bank</button>
+    <a href="http://docs.veritrans.co.id/sandbox/card_list.html" target="_blank">documentation</a>
+  </p>
+
+  <p>
+    <%= label_tag :credit_card_cvv %>
+    <%= text_field_tag :credit_card_cvv, '123', name: nil %>
+  </p>
+
+  <p>
+    <%= label_tag :credit_card_expire %>
+    <%= text_field_tag :credit_card_expire, '12 / 16', placeholder: "MM / YY", name: nil %>
+  </p>
+
+  <p>
+    <%= f.label :credit_card_secure, "3D-secure" %>
+    <%= f.check_box :credit_card_secure %>
+  </p>
+
+  <p>
+    <%= f.submit "Pay via VT-Direct" %>
+  </p>
+<% end %>
+
+<iframe id="3d-secure-iframe" style="display: none; width: 500px; height: 600px"></iframe>

data/lib/generators/templates/views/_veritrans_include.erb

@@ -0,0 +1,10 @@
+<%= javascript_include_tag "#{Veritrans.config.api_host}/v2/assets/veritrans.js" %>
+
+<script type="text/javascript">
+  Veritrans.url = "<%= Veritrans.config.api_host %>/v2/token";
+  Veritrans.client_key = "<%= Veritrans.config.client_key %>";
+</script>
+
+<% unless Veritrans.config.client_key.present? %>
+  <h4 style="color: red">Please add client_key in config/veritrans.yml</h4>
+<% end %>

data/lib/generators/templates/views/payments/create.erb

@@ -0,0 +1,15 @@
+<strong>
+  <% if @result.success? %><span style="color: green"><% end %>
+    <%= @result.status_message %>
+  </span>
+</strong>
+
+<br>
+
+<code>
+  <pre>
+<%= @result.response.body %>
+  </pre>
+</code>
+
+<%= link_to "Go back", :new_payment %>

data/lib/generators/templates/views/payments/new.erb

@@ -0,0 +1,6 @@
+<h3>New payment</h3>
+
+<%= link_to "Pay via VT-Web", payments_path(type: 'vtweb'), data: {method: 'post'} %>
+
+<%= render "shared/credit_card_form" %>
+<%= render "shared/veritrans_include" %>