https://github.com/vtex/php-connector

Attempt to set up a REST API that passes the PPP tests
https://github.com/vtex/php-connector

Last synced: about 1 month ago
JSON representation

Attempt to set up a REST API that passes the PPP tests

• Host: GitHub
• URL: https://github.com/vtex/php-connector
• Owner: vtex
• Created: 2021-12-22T21:00:25.000Z (about 3 years ago)
• Default Branch: master
• Last Pushed: 2023-02-27T20:05:21.000Z (almost 2 years ago)
• Last Synced: 2024-04-14T22:51:56.623Z (9 months ago)
• Language: PHP
• Size: 74.2 KB
• Stars: 2
• Watchers: 2
• Forks: 2
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# Payment Connector

## Disclaimer

This project implements the [VTEX Payment Provider Protocol](https://help.vtex.com/en/tutorial/payment-provider-protocol) using the PHP language.

For the moment, the Credit Card payment flow and a redirect flow are defined.

The goal of the project is to verify that the [documentation](https://developers.vtex.com/vtex-developer-docs/reference/payment-flow) is providing clear information and to create code examples for the partners to use.

The [Test Suite](https://help.vtex.com/en/tutorial/payment-provider-protocol#3-payment-provider-homologation) is being used to verify the endpoints, and

for the moment, the **Authorize**, **Denied**, **Cancel**, **AsyncApproved** and **AsyncDenied** tests are passing.

## How to use the project

You can clone the project and serve it locally with the PHP built-in web server by running the following command on the project folder:

`php -S localhost:8000 index.php`

and to test locally, you can use your favorite API client such as Insomnia or Postman.

If you want to test it with the Test Suite, then you should set up the project in a serve so that if follows the [endpoint requirements](https://developers.vtex.com/vtex-rest-api/reference/payment-provider-protocol-api-overview#endpoint-requirements):

- Must use a standard subdomain/domain name, and not a IP address.

- Must be served over HTTPS on port 443 with TLS 1.2 support.

- Must respond in less than 5 seconds when running the tests.

- Must respond in less than 20 seconds when in production.

For that I used Heroku, as the setup was almost out-of-the-box.

## Endpoints defined

Here is a snippet of the response for the endpoints defined:

### Payment Methods endpoint

```json

{

	"paymentMethods": [

		"Visa",

		"Mastercard",

		"American Express",

		"myRedirectPaymentMethod"

	]

}

```

### Manifest endpoint

```json

{

	"paymentMethods": [

		{

			"name": "Visa",

			"allowsSplit": "onAuthorize"

		},

		{

			"name": "Mastercard",

			"allowsSplit": "onCapture"

		},

		{

			"name": "American Express",

			"allowsSplit": "disabled"

		}

	],

	"customFields": [

		{

			"name": "Country of operation",

			"type": "select",

			"options": [

				{

					"text": "Brazil",

					"value": "1"

				},

				{

					"text": "Chile",

					"value": "2"

				},

				{

					"text": "Argentina",

					"value": "3"

				},

				{

					"text": "Colombia",

					"value": "4"

				},

				{

					"text": "Peru",

					"value": "5"

				}

			]

		},

		{

			"name": "Type of refund",

			"type": "select",

			"options": [

				{

					"text": "Automatic Whenever Possible",

					"value": "1"

				},

				{

					"text": "Manual",

					"value": "2"

				}

			]

		}

	],

    "autoSettleDelay" : {

        "minimum": "0",

        "maximum": "360"

    }

}

```

### Create Payment endpoint

```json

{

	"paymentId": "88ca7cd5-c9d4-47a8-8237-90dc26ecb550",

	"status": "approved",

	"authorizationId": "38c01875956f18d6ea9d",

	"tid": "f23b1b4b1258da499720",

	"nsu": "7148a83359c730a4a2f0",

	"acquirer": "TestPay",

	"code": "OperationDeniedCode",

	"message": "Credit card payment denied",

	"delayToAutoSettle": 21600,

	"delayToAutoSettleAfterAntifraud": 1800,

	"delayToCancel": 21600,

	"maxValue": 1000

}

```

### Cancel Payment endpoint

```json

{

	"paymentId": "B2F246B3CE46469FBDD23039868E95D0",

	"cancellationId": null,

	"requestId": "007B7D9B3BB4440982D8B6BA04126B01",

	"code": "cancel-manually",

	"message": "This payment needs to be manually cancelled"

}

```

### Capture Payment endpoint

```json

{

	"paymentId": "73269832-b471-44f0-b437-4d4304dea378",

	"settleId": "1fbc07a384eba708f8c0",

	"value": 159.89,

	"requestId": null,

	"message": "Successfully settled"

}

```

### Refund Payment endpoint

```json

{

	"paymentId": "F5C1A4E20D3B4E07B7E871F5B5BC9F91",

	"refundId": "0cd98c33e5593f3332cf",

	"requestId": "LA4E20D3B4E07B7E871F5B5BC9F91",

	"value": 101,

	"message": "Successfully refunded"

}

```

## Redirect Flow

The Redirect purchase flow is used when customers confirm the payment option in the store and are then redirected to a different page to fill in payment information and complete the purchase.

In our example, we set up a simple form in which the customer can select a custom number of installments for the payment. The installments options are dynamic, based on the payment amount.

Dynamic installments is not a feature available in the SmartCheckout template, so it needs to be done externally, redirecting the customer to a different page in order to get extra information before authorizing the purchase payment.

To implement this flow, we created a new payment method called "myRedirectPaymentMethod". The initial authorization response for this method sends the status "undefined" along with a `paymentUrl`.

This paymentUrl should reference the payment somehow, here we went simply with setting the query string `paymentId= {{paymentId}}`.

The gateway will call this paymentUrl, and after the interaction is finished in this page, we should redirect the customer to the `returnUrl`, back to the checkout.

The gateway also expects to receive the final authorization response on the `callbackUrl`.

### Create payment response for redirect method

```json

{

	"paymentId": "5291d5e5-5d0d-4f5c-9677-034138956a08",

	"status": "undefined",

	"tid": "8c8a742d691b571fe639",

	"paymentUrl": "http://php-connector.herokuapp.com/installments.php?paymentId=5291d5e5-5d0d-4f5c-9677-034138956a08"

}

```

## Custom Auto Capture Feature

By setting the interval for `autoSettleDelay`, along with the option `useAutoSettleOptions` to be set on the connector configuration (in the publication process), we allow the merchants to configure different behaviors for the Payment Capture. If the option "Scheduled" is chosen, a value between 0 and 360 (as limited by our manifest) can be set for the capture. This field has precedence over the delayToAutoSettle value sent on the authorization response.