Move intellipay to server side processing.

2024-04-25 16:43:49 -07:00
parent 1620b94a7b
commit a6b825ffdf
9 changed files with 536 additions and 179 deletions
--- a/server/graphql-client/queries.js
+++ b/server/graphql-client/queries.js
@@ -2175,4 +2175,12 @@ exports.COMPLETE_SURVEY = `mutation COMPLETE_SURVEY($surveyId: uuid!, $survey: c
    update_csi(where: { id: { _eq: $surveyId } }, _set: $survey) {
      affected_rows
    }
-  }`;
+  }`;
+
+exports.GET_JOBS_BY_PKS = `query GET_JOBS_BY_PKS($ids: [uuid!]!) {
+  jobs(where: {id: {_in: $ids}}) {
+    id
+    shopid
+  }
+}
+`;
--- a/server/intellipay/intellipay.js
+++ b/server/intellipay/intellipay.js
@@ -8,21 +8,15 @@ const moment = require("moment");
 const logger = require("../utils/logger");

 require("dotenv").config({
-  path: path.resolve(
-    process.cwd(),
-    `.env.${process.env.NODE_ENV || "development"}`
-  ),
+  path: path.resolve(process.cwd(), `.env.${process.env.NODE_ENV || "development"}`)
 });

 const domain = process.env.NODE_ENV ? "secure" : "test";

-const {
-  SecretsManagerClient,
-  GetSecretValueCommand,
-} = require("@aws-sdk/client-secrets-manager");
+const { SecretsManagerClient, GetSecretValueCommand } = require("@aws-sdk/client-secrets-manager");

 const client = new SecretsManagerClient({
-  region: "ca-central-1",
+  region: "ca-central-1" //TODO-AIO: instance manager required when merged to master-AIO
 });

 const gqlClient = require("../graphql-client/graphql-client").client;
@@ -32,7 +26,7 @@ const getShopCredentials = async (bodyshop) => {
  if (process.env.NODE_ENV === undefined) {
    return {
      merchantkey: process.env.INTELLIPAY_MERCHANTKEY,
-      apikey: process.env.INTELLIPAY_APIKEY,
+      apikey: process.env.INTELLIPAY_APIKEY
    };
  }

@@ -42,26 +36,20 @@ const getShopCredentials = async (bodyshop) => {
      const secret = await client.send(
        new GetSecretValueCommand({
          SecretId: `intellipay-credentials-${bodyshop.imexshopid}`,
-          VersionStage: "AWSCURRENT", // VersionStage defaults to AWSCURRENT if unspecified
+          VersionStage: "AWSCURRENT" // VersionStage defaults to AWSCURRENT if unspecified
        })
      );
      return JSON.parse(secret.SecretString);
    } catch (error) {
      return {
-        error: error.message,
+        error: error.message
      };
    }
  }
 };

 exports.lightbox_credentials = async (req, res) => {
-  logger.log(
-    "intellipay-lightbox-credentials",
-    "DEBUG",
-    req.user?.email,
-    null,
-    null
-  );
+  logger.log("intellipay-lightbox-credentials", "DEBUG", req.user?.email, null, null);

  const shopCredentials = await getShopCredentials(req.body.bodyshop);

@@ -75,11 +63,9 @@ exports.lightbox_credentials = async (req, res) => {
      headers: { "content-type": "application/x-www-form-urlencoded" },
      data: qs.stringify({
        ...shopCredentials,
-        operatingenv: "businessattended",
+        operatingenv: "businessattended"
      }),
-      url: `https://${domain}.cpteller.com/api/custapi.cfc?method=autoterminal${
-        req.body.refresh ? "_refresh" : ""
-      }`, //autoterminal_refresh
+      url: `https://${domain}.cpteller.com/api/custapi.cfc?method=autoterminal${req.body.refresh ? "_refresh" : ""}` //autoterminal_refresh
    };

    const response = await axios(options);
@@ -87,13 +73,9 @@ exports.lightbox_credentials = async (req, res) => {
    res.send(response.data);
  } catch (error) {
    console.log(error);
-    logger.log(
-      "intellipay-lightbox-credentials-error",
-      "ERROR",
-      req.user?.email,
-      null,
-      { error: JSON.stringify(error) }
-    );
+    logger.log("intellipay-lightbox-credentials-error", "ERROR", req.user?.email, null, {
+      error: JSON.stringify(error)
+    });
    res.json({ error });
  }
 };
@@ -112,9 +94,9 @@ exports.payment_refund = async (req, res) => {
        method: "payment_refund",
        ...shopCredentials,
        paymentid: req.body.paymentid,
-        amount: req.body.amount,
+        amount: req.body.amount
      }),
-      url: `https://${domain}.cpteller.com/api/26/webapi.cfc?method=payment_refund`,
+      url: `https://${domain}.cpteller.com/api/26/webapi.cfc?method=payment_refund`
    };

    const response = await axios(options);
@@ -123,7 +105,7 @@ exports.payment_refund = async (req, res) => {
  } catch (error) {
    console.log(error);
    logger.log("intellipay-refund-error", "ERROR", req.user?.email, null, {
-      error: JSON.stringify(error),
+      error: JSON.stringify(error)
    });
    res.json({ error });
  }
@@ -141,15 +123,13 @@ exports.generate_payment_url = async (req, res) => {
      data: qs.stringify({
        ...shopCredentials,
        //...req.body,
-        amount: Dinero({ amount: Math.round(req.body.amount * 100) }).toFormat(
-          "0.00"
-        ),
+        amount: Dinero({ amount: Math.round(req.body.amount * 100) }).toFormat("0.00"),
        account: req.body.account,
        invoice: req.body.invoice,
-        createshorturl: true,
+        createshorturl: true
        //The postback URL is set at the CP teller global terminal settings page.
      }),
-      url: `https://${domain}.cpteller.com/api/custapi.cfc?method=generate_lightbox_url`,
+      url: `https://${domain}.cpteller.com/api/custapi.cfc?method=generate_lightbox_url`
    };

    const response = await axios(options);
@@ -158,56 +138,100 @@ exports.generate_payment_url = async (req, res) => {
  } catch (error) {
    console.log(error);
    logger.log("intellipay-payment-url-error", "ERROR", req.user?.email, null, {
-      error: JSON.stringify(error),
+      error: JSON.stringify(error)
    });
    res.json({ error });
  }
 };

 exports.postback = async (req, res) => {
-  logger.log("intellipay-postback", "ERROR", req.user?.email, null, req.body);
+  logger.log("intellipay-postback", "DEBUG", req.user?.email, null, req.body);
  const { body: values } = req;

-  if (!values.invoice) {
+  const comment = Buffer.from(values?.comment, "base64").toString();
+
+  if ((!values.invoice || values.invoice === "") && !comment) {
+    //invoice is specified through the pay link. Comment by IO.
+    logger.log("intellipay-postback-ignored", "DEBUG", req.user?.email, null, req.body);
    res.sendStatus(200);
    return;
  }
-  // TODO query job by account name
-  const job = await gqlClient.request(queries.GET_JOB_BY_PK, {
-    id: values.invoice,
-  });
-  // TODO add mutation to database

  try {
-    const paymentResult = await gqlClient.request(queries.INSERT_NEW_PAYMENT, {
-      paymentInput: {
-        amount: values.total,
-        transactionid: `C00 ${values.authcode}`,
-        payer: "Customer",
-        type: values.cardtype,
-        jobid: values.invoice,
-        date: moment(Date.now()),
-      },
-    });
+    if (values.invoice) {
+      //This is a link email that's been sent out.
+      const job = await gqlClient.request(queries.GET_JOB_BY_PK, {
+        id: values.invoice
+      });

-    await gqlClient.request(queries.INSERT_PAYMENT_RESPONSE, {
-      paymentResponse: {
-        amount: values.total,
-        bodyshopid: job.jobs_by_pk.shopid,
-        paymentid: paymentResult.id,
-        jobid: values.invoice,
-        declinereason: "Approved",
-        ext_paymentid: values.paymentid,
-        successful: true,
-        response: values,
-      },
-    });
+      const paymentResult = await gqlClient.request(queries.INSERT_NEW_PAYMENT, {
+        paymentInput: {
+          amount: values.total,
+          transactionid: values.authcode,
+          payer: "Customer",
+          type: values.cardtype,
+          jobid: values.invoice,
+          date: moment(Date.now())
+        }
+      });

-    res.send({ message: "Postback Successful" });
+      const responseResults = await gqlClient.request(queries.INSERT_PAYMENT_RESPONSE, {
+        paymentResponse: {
+          amount: values.total,
+          bodyshopid: job.jobs_by_pk.shopid,
+          paymentid: paymentResult.id,
+          jobid: values.invoice,
+          declinereason: "Approved",
+          ext_paymentid: values.paymentid,
+          successful: true,
+          response: values
+        }
+      });
+
+      logger.log("intellipay-postback-link-success", "DEBUG", req.user?.email, null, {
+        iprequest: values,
+        responseResults,
+        paymentResult
+      });
+      res.sendStatus(200);
+    } else if (comment) {
+      //This has been triggered by IO and may have multiple jobs.
+      const partialPayments = JSON.parse(comment);
+      const jobs = await gqlClient.request(queries.GET_JOBS_BY_PKS, {
+        ids: partialPayments.map((p) => p.jobid)
+      });
+
+      const paymentResult = await gqlClient.request(queries.INSERT_NEW_PAYMENT, {
+        paymentInput: partialPayments.map((p) => ({
+          amount: p.amount,
+          transactionid: values.authcode,
+          payer: "Customer",
+          type: values.cardtype,
+          jobid: p.jobid,
+          date: moment(Date.now()),
+          payment_responses: {
+            data: {
+              amount: values.total,
+              bodyshopid: jobs.jobs[0].shopid,
+              jobid: p.jobid,
+              declinereason: "Approved",
+              ext_paymentid: values.paymentid,
+              successful: true,
+              response: values
+            }
+          }
+        }))
+      });
+      logger.log("intellipay-postback-app-success", "DEBUG", req.user?.email, null, {
+        iprequest: values,
+        paymentResult
+      });
+      res.sendStatus(200);
+    }
  } catch (error) {
    logger.log("intellipay-postback-error", "ERROR", req.user?.email, null, {
      error: JSON.stringify(error),
-      body: req.body,
+      body: req.body
    });
    res.status(400).json({ succesful: false, error: error.message });
  }