review items: change gem include messaging, set fraud_review flag, re…

…move void implementation, add http parameter safeguards for get/post methods, verify only authorizaes
bpekyavas · Jan 7, 2015 · 4b45520 · 4b45520
1 parent 4382fc3
commit 4b45520
Show file tree

Hide file tree

Showing 3 changed files with 34 additions and 111 deletions.
diff --git a/lib/active_merchant/billing/gateways/quickbooks.rb b/lib/active_merchant/billing/gateways/quickbooks.rb
@@ -1,7 +1,7 @@
 begin
   require "oauth"
 rescue LoadError
-  raise "OAuth is required to use QuickBooks Payments. Please run `gem install oauth`."
+  raise "You need to have the oauth gem installed in order to use the ActiveMerchant QuickbooksGateway adapter."
 end
 
 module ActiveMerchant #:nodoc:
@@ -29,8 +29,8 @@ class QuickbooksGateway < Gateway
       STANDARD_ERROR_CODE_MAPPING = {
         # Fraud Warnings
         'PMT-1000' => STANDARD_ERROR_CODE[:processing_error],   # payment was accepted, but refund was unsuccessful
-        'PMT-1001' => STANDARD_ERROR_CODE[:invalid_cvc],   # payment processed, but cvc was invalid
-        'PMT-1002' => STANDARD_ERROR_CODE[:incorrect_address],   # payment processed, incorrect address info
+        'PMT-1001' => STANDARD_ERROR_CODE[:invalid_cvc],        # payment processed, but cvc was invalid
+        'PMT-1002' => STANDARD_ERROR_CODE[:incorrect_address],  # payment processed, incorrect address info
         'PMT-1003' => STANDARD_ERROR_CODE[:processing_error],   # payment processed, address info couldn't be validated
 
         # Fraud Errors
@@ -58,11 +58,7 @@ class QuickbooksGateway < Gateway
 
       def initialize(options = {})
         requires!(options, :consumer_key, :consumer_secret, :access_token, :token_secret, :realm)
-        @consumer_key = options[:consumer_key]
-        @consumer_secret = options[:consumer_secret]
-        @access_token = options[:access_token]
-        @token_secret = options[:token_secret]
-        @realm = options[:realm]
+        @options = options
         super
       end
 
@@ -92,26 +88,13 @@ def capture(money, authorization, options = {})
 
       def refund(money, authorization, options = {})
         post = {}
-        post[:amount] = money.is_a?(String) ? money : amount(money)
         refund_uri = "#{ENDPOINT}/#{CGI.escape(authorization)}/refunds"
 
         commit(refund_uri, post)
       end
 
-      def void(authorization, options = {})
-        MultiResponse.run do |r|
-          r.process { auth_object_from(authorization) }
-          if amount = r.params['amount']
-            r.process { refund(amount, authorization, options) }
-          end
-        end.responses.last
-      end
-
       def verify(credit_card, options = {})
-        MultiResponse.run(:use_first_response) do |r|
-          r.process { authorize(1.00, credit_card, options) }
-          r.process(:ignore_result) { void(r.authorization, options) }
-        end
+        authorize(1.00, credit_card, options)
       end
 
       def supports_scrubbing?
@@ -134,7 +117,6 @@ def scrub(transcript)
       def add_charge_data(post, payment, options = {})
         add_payment(post, payment, options)
         add_address(post, options)
-        add_context(options[:context]) if options[:context]
       end
 
       def add_address(post, options)
@@ -173,46 +155,19 @@ def add_creditcard(post, creditcard, options = {})
         post[:card] = card
       end
 
-      def add_context(post, context)
-        payment_context = {}
-        payment_context[:tax] = context[:tax] if context[:tax]
-        payment_context[:recurring] = context[:recurring] if context[:recurring]
-
-        post[:context] = payment_context
-      end
-
-      def auth_object_from(authorization)
-        uri = "#{ENDPOINT}/#{authorization}"
-        commit(uri, {}, :get)
-      end
-
       def parse(body)
         JSON.parse(body)
       end
 
       def commit(uri, body = {}, method = :post)
         endpoint = gateway_url + uri
-        begin
-          response = case method
-          when :post
-            ssl_post(endpoint, post_data(body), headers(method: :post, uri: endpoint))
-          when :get
-            ssl_request(:get, endpoint, nil, headers(method: :get, uri: endpoint))
-          end
-        rescue ResponseError => e
-          if e.response.body.present?
-            response = e.response.body
-          else
-            return Response.new(
-              false,
-              "There was a problem connecting to QuickBooks",
-              {
-                code: e.response.code,
-                message: e.response.message
-              },
-              test: test?
-              )
-          end
+        response = case method
+        when :post
+          ssl_post(endpoint, post_data(body), headers(:post, endpoint))
+        when :get
+          ssl_request(:get, endpoint, nil, headers(:get, endpoint))
+        else
+          raise ArgumentError, "Invalid HTTP method: #{method}. Valid methods are :post and :get"
         end
 
         response_object(response)
@@ -228,7 +183,8 @@ def response_object(raw_response)
           authorization: authorization_from(parsed_response),
           test: test?,
           cvv_result: cvv_code_from(parsed_response),
-          error_code: errors_from(parsed_response)
+          error_code: errors_from(parsed_response),
+          fraud_review: fraud_review_status_from(parsed_response)
         )
       end
 
@@ -240,18 +196,16 @@ def post_data(data = {})
         data.to_json
       end
 
-      def headers(options)
-        return unless options[:method] && options[:uri]
-
-        method = options[:method]
-        uri = options[:uri]
+      def headers(method, uri)
         request_uri = URI.parse(uri)
 
         request_class = case method
-          when :post
-            Net::HTTP::Post
-          when :get
-           Net::HTTP::Get
+        when :post
+          Net::HTTP::Post
+        when :get
+          Net::HTTP::Get
+        else
+          raise ArgumentError, "Invalid HTTP method: #{method}. Valid methods are :post and :get"
         end
 
         # required for Ruby 1.9 backwards compatibilty
@@ -262,18 +216,18 @@ def headers(options)
         end
 
         consumer = OAuth::Consumer.new(
-          @consumer_key,
-          @consumer_secret,
+          @options[:consumer_key],
+          @options[:consumer_secret],
           OAUTH_ENDPOINTS)
         access_token = OAuth::AccessToken.new(
           consumer,
-          @access_token,
-          @token_secret)
+          @options[:access_token],
+          @options[:token_secret])
         client_helper = OAuth::Client::Helper.new(
           request_object,
           consumer: consumer,
           token: access_token,
-          realm: @realm,
+          realm: @options[:realm],
           request_uri: request_uri)
         oauth_header = client_helper.header
 
@@ -307,6 +261,10 @@ def errors_from(response)
       def authorization_from(response)
         response['id']
       end
+
+      def fraud_review_status_from(response)
+        response['errors'] && FRAUD_WARNING_CODES.include?(response['errors'].first['code'])
+      end
     end
   end
 end
diff --git a/test/remote/gateways/remote_quickbooks_test.rb b/test/remote/gateways/remote_quickbooks_test.rb
@@ -9,8 +9,8 @@ def setup
 
     @options = {
       order_id: '1',
-      billing_address: address({ zip: 90210, 
-                                 country: 'US', 
+      billing_address: address({ zip: 90210,
+                                 country: 'US',
                                  state: 'CA'}),
       description: 'Store Purchase'
     }
@@ -75,17 +75,6 @@ def test_failed_refund
     assert_failure response
   end
 
-  def test_successful_void
-    auth = @gateway.authorize(@amount, @credit_card, @options)
-    assert_success auth
-    assert void = @gateway.void(auth.authorization)
-    assert_success void
-  end
-
-  def test_failed_void
-    response = @gateway.void('some_bad_thing')
-    assert_failure response
-  end
 
   def test_successful_verify
     response = @gateway.verify(@credit_card, @options)

diff --git a/test/unit/gateways/quickbooks_test.rb b/test/unit/gateways/quickbooks_test.rb
@@ -86,42 +86,18 @@ def test_failed_refund
     assert_failure response
   end
 
-  def test_successful_void
-    @gateway.expects(:ssl_request).returns(successful_authorize_response)
-    @gateway.expects(:ssl_post).returns(successful_void_response)
-
-    response = @gateway.void(@authorization)
-    assert_success response
-  end
-
-  def test_failed_void
-    response = stub_comms do
-      @gateway.void(@authorization)
-    end.respond_with(failed_void_response)
-
-    assert_failure response
-  end
-
   def test_successful_verify
     response = stub_comms do
       @gateway.verify(@credit_card)
-    end.respond_with(successful_authorize_response, successful_void_response)
-
-    assert_success response
-  end
-
-  def test_successful_verify_with_failed_void
-    response = stub_comms do
-      @gateway.verify(@credit_card, @options)
-    end.respond_with(successful_authorize_response, failed_void_response)
+    end.respond_with(successful_authorize_response)
 
     assert_success response
   end
 
   def test_failed_verify
     response = stub_comms do
       @gateway.verify(@credit_card, @options)
-    end.respond_with(failed_authorize_response, successful_void_response)
+    end.respond_with(failed_authorize_response)
 
     assert_failure response
     assert_not_nil response.message