Merge pull request #21 from PaymentHighway/psd2

Psd2

Author: Kostersson

.travis.yml

@@ -1,8 +1,19 @@
 language: php
+dist: xenial
+
 php:
-  - '5.5'
   - '5.6'
   - '7.0'
+  - '7.1'
+  - '7.2'
   - nightly
+
+matrix:
+  include:
+    - php: '5.5'
+      dist: trusty
+  allow_failures:
+    - php: nightly
+
 install: composer install
 script: composer test

README.md

@@ -13,7 +13,7 @@ add following to composer
 ```json
     "require" : 
     {
-        "solinor/paymenthighwayio" : "1.6.0"
+        "solinor/paymenthighwayio" : "1.7.0"
     }
 ```
 
@@ -205,14 +205,59 @@ $response = $paymentApi->initTransaction();
 ```
 
 ### Example Debit with Token
+NOTE: The `debitTransaction` method will be deprecated starting from Sep 14th 2019 in favor of the new `chargeCustomerInitiatedTransaction` and `chargeMerchantInitiatedTransaction` in order to comply with the EU's PSD2 directive.
+
 ```php
 $token = new \Solinor\PaymentHighway\Model\Token( $tokenId );
 
-$transaction = new \Solinor\PaymentHighway\Model\Request\Transaction( $amount, $currency, $token );
+$transaction = new \Solinor\PaymentHighway\Model\Request\Transaction( $token, $amount, $currency );
 
 $response = $paymentApi->debitTransaction( $transactionId, $transaction);
 ```
 
+### Charging a card
+
+After the introduction of the European PSD2 directive the electronic payment transactions are categorised in so called customer initiated transactions (CIT) and merchant initiated transactions (MIT). 
+
+Customer initiated transactions are scenarios where the customer takes actively part in the payment process either by providing their card information or selecting a previously stored payment method. Also so-called "one-click" purchases where the transaction uses a previously saved default payment method are CITs.
+
+Merchant initated transactions are transactions which are initated by the merchant without customer's participation. Merchant initated transactions require a prior agreement between the customer and merchant also called the "mandate". Merchant initiated transactions can be used for example in scenarios where the final price is not known at the time of the purchase or the customer is not present when the charge is made.
+
+#### Charging a customer initiated transaction (CIT)
+
+When charging a customer initiated transaction there is always a possibility that the card issuer requires strong customer authentication. In case the issuer requests SCA then the response will contain "soft decline" code 400 and an URL where the customer needs to be redirected to perform authentication. The URLs where the customer will be redirected after completing authentication need to be defined in the [`ReturnUrls`](/src/Model/Sca/ReturnUrls.php) object.
+
+In addition to the return urls the [`StrongCustomerAuthentication`](/src/Model/Sca/StrongCustomerAuthentication.php) object has many optional fields for information about the customer and the transaction. This information is used in transaction risk analysis (TRA) and can increase the likelihood that the transaction is considered low risk so that strong customer authentication is not needed.
+
+```php
+$token = new \Solinor\PaymentHighway\Model\Token( $tokenId );
+
+$strongCustomerAuthentication = new \Solinor\PaymentHighway\Model\Sca\StrongCustomerAuthentication(
+	new \Solinor\PaymentHighway\Model\Sca\ReturnUrls(
+		"https://example.com/success", // URL the user is redirected after succesful 3D-Secure authentication if strong customer authentication is required
+		"https://example.com/cancel", // URL the user is redirected after cancelled 3D-Secure authentication if strong customer authentication is required
+		"https://example.com/failure" // URL the user is redirected after failed 3D-Secure authentication if strong customer authentication is required
+	)
+	// Optinally other information about the customer and purchase to help in transaction risk analysis (TRA)
+);
+
+$transaction = new \Solinor\PaymentHighway\Model\Request\CustomerInitiatedTransaction( $token, $amount, $currency, $strongCustomerAuthentication );
+
+$response = $paymentApi->chargeCustomerInitiatedTransaction( $transactionId, $transaction);
+```
+
+#### Charging a merchant initiated transaction (MIT)
+
+When charging the customer's card in context where the customer is not actively participating in the transaction you should use the `chargeMerchantInitiatedTransaction` method. The MIT transactions are exempt from the strong customer authentication requirements of PSD2 so the request cannot be answered with "soft-decline" response (code 400) unlike customer initated transactions.
+
+```php
+$token = new \Solinor\PaymentHighway\Model\Token( $tokenId );
+
+$transaction = new \Solinor\PaymentHighway\Model\Request\Transaction( $token, $amount, $currency );
+
+$response = $paymentApi->chargeMerchantInitiatedTransaction( $transactionId, $transaction);
+```
+
 ### Example Revert
 ```php
 $response = $paymentApi->revertTransaction("transactionId", "amount");

src/Model/Request/CustomerInitiatedTransaction.php

@@ -0,0 +1,58 @@
+<?php namespace Solinor\PaymentHighway\Model\Request;
+
+use Solinor\PaymentHighway\Model\Token;
+use Solinor\PaymentHighway\Model\Card;
+
+/**
+ * Class CustomerInitiatedTransaction
+ * @package Solinor\PaymentHighway\Model\Request
+ */
+
+class CustomerInitiatedTransaction extends \Solinor\PaymentHighway\Model\JsonSerializable
+{
+    public $amount = null;
+    public $currency = null;
+    public $order = null;
+    public $blocking = true;
+
+    public $token = null;
+    public $card = null;
+    public $splitting = null;
+
+    public $strong_customer_authentication = null;
+
+    /**
+     * @param Card|Token|null $request
+     * @param int $amount
+     * @param string $currency
+     * @param \Solinor\PaymentHighway\Model\Sca\StrongCustomerAuthentication $strong_customer_authentication
+     * @param bool $blocking
+     * @param string $orderId
+     * @param \Solinor\PaymentHighway\Model\Splitting $splitting
+     * @throws \Exception
+     */
+    public function __construct( $request, $amount, $currency, $strong_customer_authentication, $blocking = true, $orderId = null, $splitting = null )
+    {
+        $this->amount = $amount;
+        $this->currency = $currency;
+        $this->order = $orderId;
+        $this->blocking = $blocking;
+        $this->splitting = $splitting;
+        $this->strong_customer_authentication = $strong_customer_authentication;
+
+        $this->setRequestByType($request);
+    }
+
+    /**
+     * @param $request
+     */
+    private function setRequestByType( $request )
+    {
+        if( $request instanceof Token ){
+            $this->token = $request;
+        }
+        elseif( $request instanceof Card ){
+            $this->card = $request;
+        }
+    }
+}

src/Model/Request/Transaction.php

@@ -25,8 +25,8 @@ class Transaction extends \Solinor\PaymentHighway\Model\JsonSerializable
      * @param Card|Token|null $request
      * @param bool $blocking
      * @param string $orderId
-     * @param Splitting $splitting
-     * @throws Exception
+     * @param \Solinor\PaymentHighway\Model\Splitting $splitting
+     * @throws \Exception
      */
     public function __construct( $request, $amount, $currency, $blocking = true, $orderId = null, $splitting = null )
     {

src/Model/Sca/Address.php

@@ -0,0 +1,45 @@
+<?php namespace Solinor\PaymentHighway\Model\Sca;
+
+/**
+ * Class Address
+ *
+ * @package Solinor\PaymentHighway\Model\Sca
+ */
+
+class Address extends \Solinor\PaymentHighway\Model\JsonSerializable
+{
+    public $city = null;
+    public $country = null;
+    public $address_line_1 = null;
+    public $address_line_2 = null;
+    public $address_line_3 = null;
+    public $post_code = null;
+    public $state = null;
+    
+    /**
+     * @param string $city max length 50, City name
+     * @param string $country 3 digits country code, 3166-1 numeric (eg. "246")
+     * @param string $address_line_1 max length 50, Address line 1
+     * @param string $address_line_2 max length 50, Address line 2
+     * @param string $address_line_3 max length 50, Address line 3
+     * @param string $post_code max length 16, Zip code
+     * @param string $state String length 2, ISO 3166-2 country subdivision code (eg. "18")
+     */
+    public function __construct(
+        $city = null,
+        $country = null,
+        $address_line_1 = null,
+        $address_line_2 = null,
+        $address_line_3 = null,
+        $post_code = null,
+        $state = null
+    ){
+        $this->city = $city;
+        $this->country = $country;
+        $this->address_line_1 = $address_line_1;
+        $this->address_line_2 = $address_line_2;
+        $this->address_line_3 = $address_line_3;
+        $this->post_code = $post_code;
+        $this->state = $state;
+    }
+}

src/Model/Sca/CustomerAccount.php

@@ -0,0 +1,139 @@
+<?php namespace Solinor\PaymentHighway\Model\Sca;
+
+/**
+ * Class CustomerAccount
+ *
+ * @package Solinor\PaymentHighway\Model\Sca
+ */
+
+class CustomerAccount extends \Solinor\PaymentHighway\Model\JsonSerializable
+{
+    public $account_age_indicator = null;
+    public $account_date = null;
+    public $change_indicator = null;
+    public $change_date = null;
+    public $password_change_indicator = null;
+    public $password_change_date = null;
+    public $number_of_recent_purchases = null;
+    public $number_of_add_card_attempts_day = null;
+    public $number_of_transaction_activity_day = null;
+    public $number_of_transaction_activity_year = null;
+    public $shipping_address_indicator = null;
+    public $shipping_address_usage_date = null;
+    public $suspicious_activity = null;
+
+    /**
+     * @param string $account_age_indicator Length of time that the cardholder has had the account.
+     * @param string $account_date Date, when the cardholder opened the account at merchant (eg. "2019-07-05")
+     * @param string $change_indicator Length of time since the cardholder’s account information was last changed.
+     * @param string $change_date Date, when the cardholder’s account was last changed. Including Billing or Shipping address (eg. "2019-07-05")
+     * @param string $password_change_indicator Length of time since the cardholder’s account had a password change or account reset.
+     * @param string $password_change_date Date, when cardholder’s account with the 3DS Requestor had a password change or account reset. (eg. "2019-07-05")
+     * @param int $number_of_recent_purchases Max value: 9999, Number of purchases with this cardholder account during the previous six months.
+     * @param int $number_of_add_card_attempts_day Max value: 999, Number of Add Card attempts in the last 24 hours.
+     * @param int $number_of_transaction_activity_day Max value: 999, Number of transactions (successful and abandoned) for this cardholder account across all payment accounts in the previous 24 hours.
+     * @param int $number_of_transaction_activity_year Max value: 999, Number of transactions (successful and abandoned) for this cardholder account with the 3DS Requestor across all payment accounts in the previous year.
+     * @param string $shipping_address_indicator Indicates when the shipping address used for this transaction was first used.
+     * @param string $shipping_address_usage_date Date, when the shipping address used for this transaction was first used. (eg. "2019-07-05")
+     * @param string $suspicious_activity Indicates whether suspicious activity has been experienced (including previous fraud) on the cardholder account.
+     */
+    public function __construct(
+        $account_age_indicator = null,
+        $account_date = null,
+        $change_indicator = null,
+        $change_date = null,
+        $password_change_indicator = null,
+        $password_change_date = null,
+        $number_of_recent_purchases = null,
+        $number_of_add_card_attempts_day = null,
+        $number_of_transaction_activity_day = null,
+        $number_of_transaction_activity_year = null,
+        $shipping_address_indicator = null,
+        $shipping_address_usage_date = null,
+        $suspicious_activity = null
+    ){
+        $this->account_age_indicator = $account_age_indicator;
+        $this->account_date = $account_date;
+        $this->change_indicator = $change_indicator;
+        $this->change_date = $change_date;
+        $this->password_change_indicator = $password_change_indicator;
+        $this->password_change_date = $password_change_date;
+        $this->number_of_recent_purchases = $number_of_recent_purchases;
+        $this->number_of_add_card_attempts_day = $number_of_add_card_attempts_day;
+        $this->number_of_transaction_activity_day = $number_of_transaction_activity_day;
+        $this->number_of_transaction_activity_year = $number_of_transaction_activity_year;
+        $this->shipping_address_indicator = $shipping_address_indicator;
+        $this->shipping_address_usage_date = $shipping_address_usage_date;
+        $this->suspicious_activity = $suspicious_activity;
+    }
+}
+
+/**
+ * Length of time that the cardholder has had the account.
+ * 01 = No account (guest check-out)
+ * 02 = Created during this transaction
+ * 03 = Less than 30 days
+ * 04 = 30−60 days
+ * 05 = More than 60 days
+ */
+abstract class AccountAgeIndicator {
+    const NoAccount = "01";
+    const CreatedDuringTransaction = "02";
+    const LessThan30Days = "03";
+    const Between30And60Days = "04";
+    const MoreThan60Days = "05";
+}
+
+/**
+ * Length of time since the cardholder’s account information was last changed. Including Billing or Shipping address, new payment account, or new user(s) added.
+ * 01 = Changed during this transaction
+ * 02 = Less than 30 days
+ * 03 = 30−60 days
+ * 04 = More than 60 days
+ */
+abstract class AccountInformationChangeIndicator {
+    const ChangedDuringTransaction = "01";
+    const LessThan30Days = "02";
+    const Between30And60Days = "03";
+    const MoreThan60Days = "04";
+}
+
+/**
+ * Length of time since the cardholder’s account had a password change or account reset.
+ * 01 = No change
+ * 02 = Changed during this transaction
+ * 03 = Less than 30 days
+ * 04 = 30−60 days
+ * 05 = More than 60 days
+ */
+abstract class AccountPasswordChangeIndicator {
+    const NoChange = "01";
+    const ChangedDuringTransaction = "02";
+    const LessThan30Days = "03";
+    const Between30And60Days = "04";
+    const MoreThan60Days = "05";
+}
+
+/**
+ * Indicates when the shipping address used for this transaction was first used.
+ * 01 = This transaction
+ * 02 = Less than 30 days
+ * 03 = 30−60 days
+ * 04 = More than 60 days
+ */
+abstract class ShippingAddressFirstUsedIndicator {
+    const ThisTransaction = "01";
+    const LessThan30Days = "02";
+    const Between30And60Days = "03";
+    const MoreThan60Days = "04";
+}
+
+/**
+ * Indicates whether suspicious activity has been experienced (including previous fraud) on the cardholder account.
+ * 01 = No suspicious activity has been observed
+ * 02 = Suspicious activity has been observed
+ */
+abstract class SuspiciousActivityIndicator {
+    const NoSuspiciousActivity = "01";
+    const SuspiciousActivityObserved = "02";
+}

src/Model/Sca/CustomerDetails.php

@@ -0,0 +1,41 @@
+<?php namespace Solinor\PaymentHighway\Model\Sca;
+
+/**
+ * Class CustomerDetails
+ *
+ * @package Solinor\PaymentHighway\Model\Sca
+ */
+
+class CustomerDetails extends \Solinor\PaymentHighway\Model\JsonSerializable
+{
+    public $shipping_address_matches_billing_address = null;
+    public $name = null;
+    public $email = null;
+    public $home_phone = null;
+    public $mobile_phone = null;
+    public $work_phone = null;
+
+    /**
+     * @param boolean $shipping_address_matches_billing_address Does the shipping address matches the billing address
+     * @param string $name Customer name. max length 45
+     * @param string $email Customer email. max length 254
+     * @param PhoneNumber $home_phone
+     * @param PhoneNumber $mobile_phone
+     * @param PhoneNumber $work_phone
+     */
+    public function __construct(
+        $shipping_address_matches_billing_address = null,
+        $name = null,
+        $email = null,
+        $home_phone = null,
+        $mobile_phone = null,
+        $work_phone = null
+    ){
+        $this->shipping_address_matches_billing_address = $shipping_address_matches_billing_address;
+        $this->name = $name;
+        $this->email = $email;
+        $this->home_phone = $home_phone;
+        $this->mobile_phone = $mobile_phone;
+        $this->work_phone = $work_phone;
+    }
+}