-
Notifications
You must be signed in to change notification settings - Fork 48
/
Copy pathserver.js
190 lines (160 loc) · 6.35 KB
/
server.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
const express = require("express");
const path = require("path");
const dotenv = require("dotenv");
const morgan = require("morgan");
const { uuid } = require("uuidv4");
const { Client, Config, CheckoutAPI, hmacValidator } = require("@adyen/api-library");
// init app
const app = express();
// setup request logging
app.use(morgan("dev"));
// Parse JSON bodies
app.use(express.json());
// Parse URL-encoded bodies
app.use(express.urlencoded({ extended: true }));
// Serve client from build folder
app.use(express.static(path.join(__dirname, "build")));
// enables environment variables by
// parsing the .env file and assigning it to process.env
dotenv.config({
path: "./.env",
});
// Adyen Node.js API library boilerplate (configuration, etc.)
const config = new Config();
config.apiKey = process.env.ADYEN_API_KEY;
const client = new Client({ config });
client.setEnvironment("TEST");
const checkout = new CheckoutAPI(client);
const validator = new hmacValidator();
// in memory store for transaction
const paymentStore = {};
const determineHostUrl = (req) => {
let {
"x-forwarded-proto": forwardedProto,
"x-forwarded-host": forwardedHost,
} = req.headers
if (forwardedProto && forwardedHost) {
if (forwardedProto.includes(",")) {
[forwardedProto,] = forwardedProto.split(",")
}
return `${forwardedProto}://${forwardedHost}`
}
return "http://localhost:8080"
}
/* ################# API ENDPOINTS ###################### */
app.get("/api/getPaymentDataStore", async (req, res) => res.json(paymentStore));
// Submitting a payment
app.post("/api/sessions", async (req, res) => {
try {
// unique ref for the transaction
const orderRef = uuid();
console.log("Received payment request for orderRef: " + orderRef);
// Ideally the data passed here should be computed based on business logic
const response = await checkout.PaymentsApi.sessions({
countryCode: "NL",
amount: { currency: "EUR", value: 10000 }, // value is 100€ in minor units
reference: orderRef, // required
merchantAccount: process.env.ADYEN_MERCHANT_ACCOUNT, // required
returnUrl: `${determineHostUrl(req)}/redirect?orderRef=${orderRef}`, // required for 3ds2 redirect flow
// set lineItems required for some payment methods (ie Klarna)
lineItems: [
{quantity: 1, amountIncludingTax: 5000 , description: "Sunglasses"},
{quantity: 1, amountIncludingTax: 5000 , description: "Headphones"}
]
});
// save transaction in memory
// enable webhook to confirm the payment (change status to Authorized)
paymentStore[orderRef] = {
amount: { currency: "EUR", value: 1000 },
paymentRef: orderRef,
status: "Pending"
};
res.json([response, orderRef]); // sending a tuple with orderRef as well to inform about the unique order reference
} catch (err) {
console.error(`Error: ${err.message}, error code: ${err.errorCode}`);
res.status(err.statusCode).json(err.message);
}
});
// Cancel or Refund a payment
app.post("/api/cancelOrRefundPayment", async (req, res) => {
console.log("/api/cancelOrRefundPayment orderRef: " + req.query.orderRef);
// Create the payload for cancelling payment
const payload = {
merchantAccount: process.env.ADYEN_MERCHANT_ACCOUNT, // required
reference: uuid(),
};
try {
// Return the response back to client
const response = await checkout.reversals(paymentStore[req.query.orderRef].paymentRef, payload);
paymentStore[req.query.orderRef].status = "Refund Initiated";
paymentStore[req.query.orderRef].modificationRef = response.pspReference;
res.json(response);
console.info("Refund initiated for ", response);
} catch (err) {
console.error(`Error: ${err.message}, error code: ${err.errorCode}`);
res.status(err.statusCode).json(err.message);
}
});
// Receive webhook notifications
app.post("/api/webhooks/notifications", async (req, res) => {
// get notificationItems from body
const notificationRequestItems = req.body.notificationItems;
// fetch first (and only) NotificationRequestItem
const notificationRequestItem = notificationRequestItems[0].NotificationRequestItem;
console.log(notificationRequestItem);
if (!validator.validateHMAC(notificationRequestItem, process.env.ADYEN_HMAC_KEY)) {
// invalid hmac: webhook cannot be accepted
res.status(401).send('Invalid HMAC signature');
return;
}
// valid hmac: process event
if (notificationRequestItem.success === "true") {
// Process the webhook based on the eventCode
if (notificationRequestItem.eventCode === "AUTHORISATION") {
const payment = paymentStore[notificationRequestItem.merchantReference];
if(payment){
payment.status = "Authorised";
payment.paymentRef = notificationRequestItem.pspReference;
}
}
else if (notificationRequestItem.eventCode === "CANCEL_OR_REFUND") {
const payment = findPayment(notificationRequestItem.pspReference);
if(payment) {
console.log("Payment found: ", JSON.stringify(payment));
// update with additionalData.modification.action
if (
"modification.action" in notificationRequestItem.additionalData &&
"refund" === notificationRequestItem.additionalData["modification.action"]
) {
payment.status = "Refunded";
} else {
payment.status = "Cancelled";
}
}
}
else {
console.info("skipping non actionable webhook");
}
}
// acknowledge event has been consumed
res.status(202).send(); // Send a 202 response with an empty body
});
/* ################# end API ENDPOINTS ###################### */
/* ################# CLIENT ENDPOINTS ###################### */
// Handles any requests that doesn't match the above
app.get("*", (req, res) => {
res.sendFile(path.join(__dirname, "build", "index.html"));
});
/* ################# end CLIENT ENDPOINTS ###################### */
/* ################# UTILS ###################### */
function findPayment(pspReference) {
const payments = Object.values(paymentStore).filter((v) => v.modificationRef === pspReference);
if (payments.length < 0) {
console.error("No payment found with that PSP reference");
}
return payments[0];
}
/* ################# end UTILS ###################### */
// Start server
const PORT = process.env.PORT || 8080;
app.listen(PORT, () => console.log(`Server started on port ${PORT}`));