# frozen_string_literal: true module Stripe # Configurable options: # # =ca_bundle_path= # The location of a file containing a bundle of CA certificates. By default # the library will use an included bundle that can successfully validate # Stripe certificates. # # =log_level= # When set prompts the library to log some extra information to $stdout and # $stderr about what it's doing. For example, it'll produce information about # requests, responses, and errors that are received. Valid log levels are # `debug` and `info`, with `debug` being a little more verbose in places. # # Use of this configuration is only useful when `.logger` is _not_ set. When # it is, the decision what levels to print is entirely deferred to the logger. # # =logger= # The logger should support the same interface as the `Logger` class that's # part of Ruby's standard library (hint, anything in `Rails.logger` will # likely be suitable). # # If `.logger` is set, the value of `.log_level` is ignored. The decision on # what levels to print is entirely deferred to the logger. class StripeConfiguration attr_accessor :api_key attr_accessor :api_version attr_accessor :client_id attr_accessor :enable_telemetry attr_accessor :logger attr_accessor :stripe_account attr_reader :api_base attr_reader :uploads_base attr_reader :connect_base attr_reader :ca_bundle_path attr_reader :log_level attr_reader :initial_network_retry_delay attr_reader :max_network_retries attr_reader :max_network_retry_delay attr_reader :open_timeout attr_reader :read_timeout attr_reader :proxy attr_reader :verify_ssl_certs def self.setup new.tap do |instance| yield(instance) if block_given? end end # Create a new config based off an existing one. This is useful when the # caller wants to override the global configuration def reverse_duplicate_merge(hash) dup.tap do |instance| hash.each do |option, value| instance.public_send("#{option}=", value) end end end def initialize @ca_bundle_path = Stripe::DEFAULT_CA_BUNDLE_PATH @enable_telemetry = true @verify_ssl_certs = true @max_network_retries = 0 @initial_network_retry_delay = 0.5 @max_network_retry_delay = 2 @open_timeout = 30 @read_timeout = 80 @api_base = "https://api.stripe.com" @connect_base = "https://connect.stripe.com" @uploads_base = "https://files.stripe.com" end def log_level=(val) # Backwards compatibility for values that we briefly allowed if val == "debug" val = Stripe::LEVEL_DEBUG elsif val == "info" val = Stripe::LEVEL_INFO end levels = [Stripe::LEVEL_INFO, Stripe::LEVEL_DEBUG, Stripe::LEVEL_ERROR] if !val.nil? && !levels.include?(val) raise ArgumentError, "log_level should only be set to `nil`, `debug` or `info`" end @log_level = val end def max_network_retries=(val) @max_network_retries = val.to_i end def open_timeout=(open_timeout) @open_timeout = open_timeout StripeClient.clear_all_connection_managers end def read_timeout=(read_timeout) @read_timeout = read_timeout StripeClient.clear_all_connection_managers end def proxy=(proxy) @proxy = proxy StripeClient.clear_all_connection_managers end def verify_ssl_certs=(verify_ssl_certs) @verify_ssl_certs = verify_ssl_certs StripeClient.clear_all_connection_managers end def uploads_base=(uploads_base) @uploads_base = uploads_base StripeClient.clear_all_connection_managers end def connect_base=(connect_base) @connect_base = connect_base StripeClient.clear_all_connection_managers end def api_base=(api_base) @api_base = api_base StripeClient.clear_all_connection_managers end def ca_bundle_path=(path) @ca_bundle_path = path # empty this field so a new store is initialized @ca_store = nil StripeClient.clear_all_connection_managers end # A certificate store initialized from the the bundle in #ca_bundle_path and # which is used to validate TLS on every request. # # This was added to the give the gem "pseudo thread safety" in that it seems # when initiating many parallel requests marshaling the certificate store is # the most likely point of failure (see issue #382). Any program attempting # to leverage this pseudo safety should make a call to this method (i.e. # `Stripe.ca_store`) in their initialization code because it marshals lazily # and is itself not thread safe. def ca_store @ca_store ||= begin store = OpenSSL::X509::Store.new store.add_file(ca_bundle_path) store end end def enable_telemetry? enable_telemetry end end end