module ActiveMerchant #:nodoc: module Billing #:nodoc: class FirstdataE4Gateway < Gateway # TransArmor support requires v11 or lower self.test_url = "https://api.demo.globalgatewaye4.firstdata.com/transaction/v11" self.live_url = "https://api.globalgatewaye4.firstdata.com/transaction/v11" TRANSACTIONS = { :sale => "00", :authorization => "01", :capture => "32", :void => "33", :credit => "34", :store => "05" } POST_HEADERS = { "Accepts" => "application/xml", "Content-Type" => "application/xml" } SUCCESS = "true" SENSITIVE_FIELDS = [:verification_str2, :expiry_date, :card_number] self.supported_cardtypes = [:visa, :master, :american_express, :jcb, :discover] self.supported_countries = ["CA", "US"] self.default_currency = "USD" self.homepage_url = "http://www.firstdata.com" self.display_name = "FirstData Global Gateway e4" # Create a new FirstdataE4Gateway # # The gateway requires that a valid login and password be passed # in the +options+ hash. # # ==== Options # # * :login -- The EXACT ID. Also known as the Gateway ID. # (Found in your administration terminal settings) # * :password -- The terminal password (not your account password) def initialize(options = {}) requires!(options, :login, :password) @options = options super end def authorize(money, credit_card_or_store_authorization, options = {}) commit(:authorization, build_sale_or_authorization_request(money, credit_card_or_store_authorization, options)) end def purchase(money, credit_card_or_store_authorization, options = {}) commit(:sale, build_sale_or_authorization_request(money, credit_card_or_store_authorization, options)) end def capture(money, authorization, options = {}) commit(:capture, build_capture_or_credit_request(money, authorization, options)) end def void(authorization, options = {}) commit(:void, build_capture_or_credit_request(money_from_authorization(authorization), authorization, options)) end def refund(money, authorization, options = {}) commit(:credit, build_capture_or_credit_request(money, authorization, options)) end # Tokenize a credit card with TransArmor # # The TransArmor token and other card data necessary for subsequent # transactions is stored in the response's +authorization+ attribute. # The authorization string may be passed to +authorize+ and +purchase+ # instead of a +ActiveMerchant::Billing::CreditCard+ instance. # # TransArmor support must be explicitly activated on your gateway # account by FirstData. If your authorization string is empty, contact # FirstData support for account setup assistance. # # === Example # # # Generate token # result = gateway.store(credit_card) # if result.success? # my_record.update_attributes(:authorization => result.authorization) # end # # # Use token # result = gateway.purchase(1000, my_record.authorization) # # https://firstdata.zendesk.com/entries/21303361-transarmor-tokenization def store(credit_card, options = {}) commit(:store, build_store_request(credit_card, options), credit_card) end private def build_request(action, body) xml = Builder::XmlMarkup.new xml.instruct! xml.tag! "Transaction" do add_credentials(xml) add_transaction_type(xml, action) xml << body end xml.target! end def build_sale_or_authorization_request(money, credit_card_or_store_authorization, options) xml = Builder::XmlMarkup.new add_amount(xml, money) if credit_card_or_store_authorization.is_a? String add_credit_card_token(xml, credit_card_or_store_authorization) else add_credit_card(xml, credit_card_or_store_authorization) end add_customer_data(xml, options) add_invoice(xml, options) xml.target! end def build_capture_or_credit_request(money, identification, options) xml = Builder::XmlMarkup.new add_identification(xml, identification) add_amount(xml, money) add_customer_data(xml, options) xml.target! end def build_store_request(credit_card, options) xml = Builder::XmlMarkup.new add_credit_card(xml, credit_card) add_customer_data(xml, options) xml.target! end def add_credentials(xml) xml.tag! "ExactID", @options[:login] xml.tag! "Password", @options[:password] end def add_transaction_type(xml, action) xml.tag! "Transaction_Type", TRANSACTIONS[action] end def add_identification(xml, identification) authorization_num, transaction_tag, _ = identification.split(";") xml.tag! "Authorization_Num", authorization_num xml.tag! "Transaction_Tag", transaction_tag end def add_amount(xml, money) xml.tag! "DollarAmount", amount(money) end def add_credit_card(xml, credit_card) xml.tag! "Card_Number", credit_card.number xml.tag! "Expiry_Date", expdate(credit_card) xml.tag! "CardHoldersName", credit_card.name xml.tag! "CardType", credit_card.brand if credit_card.verification_value? xml.tag! "CVD_Presence_Ind", "1" xml.tag! "VerificationStr2", credit_card.verification_value end end def add_credit_card_token(xml, store_authorization) params = store_authorization.split(";") credit_card = CreditCard.new( :brand => params[1], :first_name => params[2], :last_name => params[3], :month => params[4], :year => params[5]) xml.tag! "TransarmorToken", params[0] xml.tag! "Expiry_Date", expdate(credit_card) xml.tag! "CardHoldersName", credit_card.name xml.tag! "CardType", credit_card.brand end def add_customer_data(xml, options) xml.tag! "Customer_Ref", options[:customer] if options[:customer] xml.tag! "Client_IP", options[:ip] if options[:ip] xml.tag! "Client_Email", options[:email] if options[:email] end def add_address(xml, options) if address = (options[:billing_address] || options[:address]) xml.tag! "ZipCode", address[:zip] end end def add_invoice(xml, options) xml.tag! "Reference_No", options[:order_id] xml.tag! "Reference_3", options[:description] if options[:description] end def expdate(credit_card) "#{format(credit_card.month, :two_digits)}#{format(credit_card.year, :two_digits)}" end def commit(action, request, credit_card = nil) url = (test? ? self.test_url : self.live_url) begin response = parse(ssl_post(url, build_request(action, request), POST_HEADERS)) rescue ResponseError => e response = parse_error(e.response) end Response.new(successful?(response), message_from(response), response, :test => test?, :authorization => response_authorization(action, response, credit_card), :avs_result => {:code => response[:avs]}, :cvv_result => response[:cvv2] ) end def successful?(response) response[:transaction_approved] == SUCCESS end def response_authorization(action, response, credit_card) if action == :store store_authorization_from(response, credit_card) else authorization_from(response) end end def authorization_from(response) if response[:authorization_num] && response[:transaction_tag] [ response[:authorization_num], response[:transaction_tag], (response[:dollar_amount].to_f * 100).to_i ].join(";") else "" end end def store_authorization_from(response, credit_card) if response[:transarmor_token].present? [ response[:transarmor_token], credit_card.brand, credit_card.first_name, credit_card.last_name, credit_card.month, credit_card.year ].map { |value| value.to_s.gsub(/;/, "") }.join(";") else raise StandardError, "TransArmor support is not enabled on your #{display_name} account" end end def money_from_authorization(auth) _, _, amount = auth.split(/;/, 3) amount.to_i # return the # of cents, no need to divide end def message_from(response) if(response[:faultcode] && response[:faultstring]) response[:faultstring] elsif(response[:error_number] && response[:error_number] != "0") response[:error_description] else result = (response[:exact_message] || "") result << " - #{response[:bank_message]}" if response[:bank_message].present? result end end def parse_error(error) { :transaction_approved => "false", :error_number => error.code, :error_description => error.body } end def parse(xml) response = {} xml = REXML::Document.new(xml) if root = REXML::XPath.first(xml, "//TransactionResult") parse_elements(response, root) end response.delete_if{ |k,v| SENSITIVE_FIELDS.include?(k) } end def parse_elements(response, root) root.elements.to_a.each do |node| response[node.name.gsub(/EXact/, "Exact").underscore.to_sym] = (node.text || "").strip end end end end end