Implement netaxept gateway

Author: nwolff

.gitignore

@@ -17,3 +17,5 @@ test.db
 .idea
 *.iml
 
+# Code
+.vscode/

README.md

@@ -54,6 +54,13 @@ This module provides implementations for the following payment-gateways:
 
 [More Stripe information](docs/stripe.md)
 
+### Netaxept
+Implemented features:
+- Authorization
+- Capture
+- Refund
+
+[More Netaxept information](docs/netaxept.md)
 
 ## The example project
 The source distribution includes an example project that lets one exercise 
@@ -75,7 +82,7 @@ Install the django-payment dependencies (the example project has identical depen
 
 Then point your browser to:
 
-    http://127.0.0.1:8000/admin
+    http://127.0.0.1:8000/admin/
 
 Create a new payment (make sure the captured amount currency is the same as the total currency)
 
@@ -94,7 +101,8 @@ To run unit tests:
     pip install pytest-django
     pytest
 
-To lint, typecheck, test, and verify you didn't forget to create a migration:
+To lint, typecheck, test on all supported versions of python and django.
+Also to verify you didn't forget to create a migration:
 
     pip install tox
     tox

devel-requirements.txt

@@ -0,0 +1,5 @@
+pytest-django
+flake8
+mypy
+python-language-server
+

docs/design.md

@@ -23,7 +23,7 @@ is impossible to abstract over the myriad ways the different payment gateways do
 
 Here is a diagram of how the different parts interact:
 
-![payment with stripe sequence diagram](payment-with-stripe.png)
+![payment with stripe sequence diagram](stripe-authorization.png)
 
 
 Our changes

docs/netaxept.md

@@ -0,0 +1,27 @@
+# Netaxept
+
+## Configuration
+
+In the PAYMENT_GATEWAYS setting, configure the netaxept connection params:
+
+`merchant_id`, `secret`, `base_url`, and `after_terminal_url`.
+
+The production base_url is:
+
+`https://epayment.nets.eu/`
+
+
+## Design
+
+Netaxept works by taking the user to a hosted page and then redirecting the user to the merchant in order to finish 
+processing the payment.
+We chose not to provide such a view in the payment application (we do provide an example view in the example_project),
+This means a project that uses netaxept payment will have to implement its own after_terminal view.
+
+- The first reason is that it's not possible to design a simple, generic response that we can show to users of the 
+application (because we don't know anything about the application)
+- The second reason is that after a successful payment something more than just acknowledging the payment 
+usually needs to happen in the application (for instance setting the status of an order, sending an email, etc).
+
+It's not impossible to solve those two problems with configuration, application-provided functions, and signals
+but it doesn't seem like all this complexity is worth it, compared to reimplementing a simple, straightforward webhook.

example_project/settings.py

@@ -59,6 +59,8 @@ def abspath(*args):
 
 ROOT_URLCONF = 'urls'
 
+DATETIME_FORMAT = "Y-m-d @ H:i:s e"
+
 TEMPLATES = [
     {
         'BACKEND': 'django.template.backends.django.DjangoTemplates',
@@ -80,14 +82,16 @@ def abspath(*args):
 DATETIME_FORMAT = 'Y-m-d @ H:i:s e'
 
 # Enable specific currencies (djmoney)
-CURRENCIES = ['USD', 'EUR', 'JPY', 'GBP', 'CAD', 'CHF']
+CURRENCIES = ['USD', 'EUR', 'JPY', 'GBP', 'CAD', 'CHF', 'NOK']
 
 DUMMY = 'dummy'
 STRIPE = 'stripe'
+NETAXEPT = 'netaxept'
 
 CHECKOUT_PAYMENT_GATEWAYS = {
     DUMMY: 'Dummy gateway',
     STRIPE: 'Stripe',
+    NETAXEPT: 'Netaxept',
 }
 
 PAYMENT_GATEWAYS = {
@@ -117,4 +121,17 @@ def abspath(*args):
             },
         },
     },
+    NETAXEPT: {
+        'module': 'payment.gateways.netaxept',
+        'config': {
+            'auto_capture': True,
+            'template_path': 'payment/netaxept.html',
+            'connection_params': {
+                'base_url': os.environ.get('NETAXEPT_BASE_URL') or 'https://test.epayment.nets.eu',
+                'after_terminal_url': 'http://localhost:8000/example/netaxept/after_terminal',
+                'merchant_id': os.environ.get('NETAXEPT_MERCHANT_ID'),
+                'secret': os.environ.get('NETAXEPT_SECRET'),
+            }
+        }
+    },
 }

example_project/templates/netaxept/query_result.html

@@ -0,0 +1,15 @@
+<html>
+<body>
+
+<p>Annulled: {{ query_response.annulled }}</p>
+
+<p>Authorized: {{ query_response.authorized }}</p>
+
+<p>Status code: {{ query_response.raw_response.status_code }}</p>
+
+<p>Raw response:
+<pre> {{ query_response.raw_response.text }} </pre>
+</p>
+
+</body>
+</html>

example_project/templates/payment_list.html

@@ -0,0 +1,12 @@
+<html>
+
+<body>
+
+<H3>Payments</H3>
+
+{% for payment in payments %}
+<div><a href="{%url 'view_payment' payment.id %}">Payment {{payment.id}} - {{payment.total}} ({{payment.gateway}}) </a></div>
+{% endfor %}
+
+</body>
+</html>

example_project/templates/operation_list.html renamed to example_project/templates/view_payment.html

@@ -12,17 +12,20 @@ <H3>Payment</H3>
     <li>captured amount: {{ payment.captured_amount }}</li>
 </ul>
 
-<a href="{%url 'admin:payment_payment_change' payment.id %}">See payment in admin </a>
 
 <H3>Operations</H3>
 <ul>
 {% if payment.gateway == 'stripe' %}
     <li><a href="{% url 'stripe_elements_token' payment.id %}">Authorize - Elements token</a></li>
     <li><a href="{% url 'stripe_checkout' payment.id %}">Authorize - Checkout</a></li>
     <li><a href="{% url 'stripe_payment_intents_manual_flow' payment.id %}">Authorize - Payment intents manual flow</a>
+{% elif payment.gateway == 'netaxept' %}
+    <li><a href="{% url 'netaxept_register_and_goto_terminal' payment.id %}">Register and Goto Terminal</a></li>
+    {% if payment.token %}
+        <li><a href="{% url 'netaxept_query' payment.token %}">Query</a></li>
+    {% endif %}
 {% endif %}
-
-    <li><a href="{% url 'capture' payment.id %}">Capture</a></li>
+    <li><a href="{%url 'admin:payment_payment_change' payment.id %}">See payment in admin</a></li>
 </ul>
 
 </body>

example_project/urls.py

@@ -2,12 +2,14 @@
 from django.urls import path, include
 
 import views
+from views import netaxept
 from views import stripe
 
 example_urlpatterns = [
+    path('', views.list_payments, name='list_payments'),
     path('<payment_id>', views.view_payment, name='view_payment'),
-    path('<payment_id>/capture', views.capture, name='capture'),
     path('stripe/', include(stripe.urls)),
+    path('netaxept/', include(netaxept.urls)),
 ]
 
 urlpatterns = [

example_project/views/__init__.py

@@ -1,21 +1,18 @@
 from django.http import HttpRequest, HttpResponse
-from django.shortcuts import get_object_or_404, redirect
+from django.shortcuts import get_object_or_404
 from django.template.response import TemplateResponse
 from structlog import get_logger
 
 from payment.models import Payment
-from payment.utils import gateway_capture
 
 logger = get_logger()
 
 
-def view_payment(request: HttpRequest, payment_id: int) -> HttpResponse:
-    payment = get_object_or_404(Payment, id=payment_id)
-    return TemplateResponse(request, 'operation_list.html', {'payment': payment})
+def list_payments(request: HttpRequest) -> HttpResponse:
+    payments = Payment.objects.all()
+    return TemplateResponse(request, 'payment_list.html', {'payments': payments})
 
 
-def capture(request: HttpRequest, payment_id: int) -> HttpResponse:
+def view_payment(request: HttpRequest, payment_id: int) -> HttpResponse:
     payment = get_object_or_404(Payment, id=payment_id)
-    capture_result = gateway_capture(payment=payment)
-    logger.info('capture', payment=payment, capture_result=capture_result)
-    return redirect('view_payment', payment_id=payment_id)
+    return TemplateResponse(request, 'view_payment.html', {'payment': payment})

example_project/views/netaxept.py

@@ -0,0 +1,80 @@
+"""
+Example views for interactive testing of payment with netaxept.
+"""
+
+from django.http import HttpRequest
+from django.http import HttpResponse
+from django.shortcuts import redirect, get_object_or_404
+from django.template.response import TemplateResponse
+from django.urls import path
+from django.views.decorators.http import require_GET
+from structlog import get_logger
+
+from payment import get_payment_gateway
+from payment.gateways.netaxept import actions
+from payment.gateways.netaxept import gateway_to_netaxept_config
+from payment.gateways.netaxept import netaxept_protocol
+from payment.models import Payment
+from payment.utils import gateway_authorize
+
+logger = get_logger()
+
+
+@require_GET
+def register_and_goto_terminal(request: HttpRequest, payment_id: int) -> HttpResponse:
+    """
+    Register the payment with netaxept, and take the user to the terminal page for payment authorization
+    """
+    logger.info('netaxept-register-and-goto-terminal', payment_id=payment_id)
+
+    transaction_id = actions.register_payment(payment_id)
+
+    payment = get_object_or_404(Payment, id=payment_id)
+    payment_gateway, gateway_config = get_payment_gateway(payment.gateway)
+    netaxept_config = gateway_to_netaxept_config(gateway_config)
+    return redirect(netaxept_protocol.get_payment_terminal_url(config=netaxept_config, transaction_id=transaction_id))
+
+
+@require_GET
+def after_terminal(request):
+    """
+    The browser gets redirected here when the user finishes interacting with the netaxept terminal pages.
+    We expect query-string parameters: transactionId and responseCode.
+
+    We opened the terminal with AutoAuth set to True, so we know that the payment was not merely verified but rather
+    authorized (we check the veracity of that fact below)
+    """
+    transaction_id = request.GET['transactionId']
+    response_code = request.GET['responseCode']
+    logger.info('netaxept-after-terminal', transaction_id=transaction_id, response_code=response_code)
+
+    payment = Payment.objects.get(token=transaction_id)
+
+    try:
+        # Here we query netaxept to verify if the payment was indeed authorized: because this endpoint is not secured
+        # this notification cannot be trusted.
+        gateway_authorize(payment=payment, payment_token=payment.token)
+    except Exception as exc:
+        logger.error('netaxept-after-terminal-error', exc_info=exc)
+        return HttpResponse('Error authorizing {}: {}'.format(payment.id, exc))
+    else:
+        return redirect('view_payment', payment_id=payment.id)
+
+
+def query(request: HttpRequest, transaction_id: str) -> HttpResponse:
+    """
+    Retries the status of the given transaction from netaxept.
+    """
+    logger.info('netaxept-query', transaction_id=transaction_id)
+    payment_gateway, gateway_config = get_payment_gateway('netaxept')
+    netaxept_config = gateway_to_netaxept_config(gateway_config)
+    query_response = netaxept_protocol.query(config=netaxept_config, transaction_id=transaction_id)
+    return TemplateResponse(request, 'netaxept/query_result.html', {'query_response': query_response})
+
+
+urls = [
+    path('register_and_goto_terminal/<payment_id>', register_and_goto_terminal,
+         name='netaxept_register_and_goto_terminal'),
+    path('after_terminal', after_terminal, name='netaxept_after_terminal'),
+    path('query/<transaction_id>', query, name='netaxept_query'),
+]

payment/__init__.py

@@ -51,6 +51,7 @@ class TransactionKind:
     """Represents the type of a transaction.
 
     The following transactions types are possible:
+    - REGISTER - Some gateways require an initial register transaction, before authorizing.
     - AUTH - an amount reserved against the customer's funding source. Money
     does not change hands until the authorization is captured.
     - VOID - a cancellation of a pending authorization or capture.
@@ -59,6 +60,7 @@ class TransactionKind:
     - REFUND - full or partial return of captured funds to the customer.
     """
 
+    REGISTER = "register"
     AUTH = "auth"
     CAPTURE = "capture"
     VOID = "void"
@@ -67,6 +69,7 @@ class TransactionKind:
     # Which were authorized, but needs to be confirmed manually by staff
     # eg. Braintree with "submit_for_settlement" enabled
     CHOICES = [
+        (REGISTER, pgettext_lazy("transaction kind", "Registration")),
         (AUTH, pgettext_lazy("transaction kind", "Authorization")),
         (REFUND, pgettext_lazy("transaction kind", "Refund")),
         (CAPTURE, pgettext_lazy("transaction kind", "Capture")),