require 'base64'
require 'json'
module Fintecture
class Connect
class << self
SIGNATURE_TYPE = 'rsa-sha256'.freeze
def connect_url_pis(payment_attrs = nil)
connect_url(payment_attrs: payment_attrs, type: 'pis')
end
def connect_url(payment_attrs: nil, type: 'pis')
@payment_attrs = as_json payment_attrs
@type = type
validate_payment_integrity
@payment_attrs['end_to_end_id'] ||= Fintecture::Utils::Crypto.generate_uuid
payload = build_payload
state = build_state(payload).to_json.to_s
"#{base_url}/#{type}?state=#{Base64.strict_encode64(state)}"
end
def verify_url_parameters(parameters = nil)
@post_payment_attrs = as_json parameters
validate_post_payment_integrity
decrypted = Fintecture::Utils::Crypto.decrypt_private @post_payment_attrs['s']
local_digest = build_local_digest @post_payment_attrs
decrypted == local_digest
end
private
def raise_if_klass_mismatch(target, klass, param_name = nil)
return if target.is_a? klass
raise "invalid #{param_name ? param_name : 'parameter'} format, the parameter should be a #{klass} instead a #{target.class.name}"
end
def validate_payment_integrity
raise_if_klass_mismatch @payment_attrs, Hash, 'payment_attrs'
error_msg = 'invalid payment payload parameter'
raise "#{error_msg} type" unless %w[pis ais].include? @type
raise 'end_to_end_id must be an alphanumeric string' if(@payment_attrs['end_to_end_id'] && !@payment_attrs['end_to_end_id'].match(/^[0-9a-zA-Z]*$/))
%w[amount currency customer_full_name customer_email customer_ip redirect_uri].each do |param|
raise "#{param} is a mandatory field" if @payment_attrs[param].nil?
end
# Check if string
%w[communication redirect_uri].each do |param|
raise_if_klass_mismatch(@payment_attrs[param], String, param) if(@payment_attrs[param])
end
end
def validate_post_payment_integrity
raise_if_klass_mismatch @post_payment_attrs, Hash, 'post_payment_attrs'
%w[s state status session_id customer_id provider].each do |param|
raise "invalid post payment parameter #{param}" if @post_payment_attrs[param].nil?
end
end
def build_payload
attributes = {
amount: @payment_attrs['amount'],
currency: @payment_attrs['currency'],
communication: @payment_attrs['communication'],
end_to_end_id: @payment_attrs['end_to_end_id']
}
meta = {
psu_name: @payment_attrs['customer_full_name'],
psu_email: @payment_attrs['customer_email'],
psu_ip: @payment_attrs['customer_ip']
}
data = {
type: 'PAYMENT',
attributes: attributes,
}
{
data: data,
meta: meta
}
end
def build_signature(payload)
Fintecture::Utils::Crypto.sign_payload payload
end
def build_state(payload)
access_token_response = Fintecture::Authentication.access_token
access_token = JSON.parse(access_token_response.body)['access_token']
{
app_id: Fintecture.app_id,
access_token: access_token,
signature_type: SIGNATURE_TYPE,
signature: build_signature(payload),
redirect_uri: @payment_attrs['redirect_uri'] || '',
origin_uri: @payment_attrs['origin_uri'] || '',
state: @payment_attrs['state'],
payload: payload,
version: Fintecture::VERSION,
}
end
def build_local_digest(parameters)
test_string = {
app_id: Fintecture.app_id,
app_secret: Fintecture.app_secret,
session_id: parameters['session_id'],
status: parameters['status'],
customer_id: parameters['customer_id'],
provider: parameters['provider'],
state: parameters['state']
}.map{|key, value| "#{key}=#{value}"}.join('&')
Fintecture::Utils::Crypto.hash_base64 test_string
end
def base_url
Fintecture::Api::BaseUrl::FINTECTURE_CONNECT_URL[Fintecture.environment.to_sym]
end
def as_json(element)
return JSON(element.to_json) if element.is_a? Hash
begin
element.as_json
rescue NoMethodError
raise "invalid parameter format, the parameter should be a Hash or an Object Model instead a #{element.class.name}"
end
end
end
end
end