use strict;
use Business::CreditCard;
use FS::payby;
+use FS::Record qw(qsearch);
+
+use vars qw($ignore_masked_payinfo);
=head1 NAME
This is a mixin class for records that contain payinfo.
-This class handles the following functions for payinfo...
-
-Payment Mask (Generation and Storage)
-Data Validation (parent checks need to be sure to call this)
-Encryption - In the Future (Pull from Record.pm)
-Bad Card Stuff - In the Future (Integrate Banned Pay)
-Currency - In the Future
-
=head1 FIELDS
=over 4
For Payments (cust_pay):
'CARD' (credit cards), 'CHEK' (electronic check/ACH),
'LECB' (phone bill billing), 'BILL' (billing), 'PREP' (prepaid card),
-'CASH' (cash), 'WEST' (Western Union), or 'MCRD' (Manual credit card)
+'CASH' (cash), 'WEST' (Western Union), 'MCRD' (Manual credit card),
+'PPAL' (PayPal)
'COMP' (free) is depricated as a payment type in cust_pay
=cut
-# was this supposed to do something?
-
-#sub payby {
-# my($self,$payby) = @_;
-# if ( defined($payby) ) {
-# $self->setfield('payby', $payby);
-# }
-# return $self->getfield('payby')
-#}
-
=item payinfo
Payment information (payinfo) can be one of the following types:
-Card Number, P.O., comp issuer (4-8 lowercase alphanumerics; think username) or prepayment identifier (see L<FS::prepay_credit>)
+Card Number, P.O., comp issuer (4-8 lowercase alphanumerics; think username)
+prepayment identifier (see L<FS::prepay_credit>), PayPal transaction ID
=cut
sub payinfo {
my($self,$payinfo) = @_;
+
if ( defined($payinfo) ) {
- $self->setfield('payinfo', $payinfo); # This is okay since we are the 'setter'
- $self->paymask($self->mask_payinfo());
+ $self->setfield('payinfo', $payinfo);
+ $self->paymask($self->mask_payinfo) unless $payinfo =~ /^99\d{14}$/; #token
} else {
- $payinfo = $self->getfield('payinfo'); # This is okay since we are the 'getter'
- return $payinfo;
+ $self->getfield('payinfo');
}
}
=cut
+#this prevents encrypting empty values on insert?
sub paycvv {
my($self,$paycvv) = @_;
- # This is only allowed in cust_main... Even then it really shouldn't be stored...
- if ($self->table eq 'cust_main') {
- if ( defined($paycvv) ) {
- $self->setfield('paycvv', $paycvv); # This is okay since we are the 'setter'
- } else {
- $paycvv = $self->getfield('paycvv'); # This is okay since we are the 'getter'
- return $paycvv;
- }
+ # This is only allowed in cust_payby (formerly cust_main)
+ # It shouldn't be stored longer than necessary to run the first transaction
+ if ( defined($paycvv) ) {
+ $self->setfield('paycvv', $paycvv);
} else {
-# warn "This doesn't work for other tables besides cust_main
- '';
- }
+ $self->getfield('paycvv');
+ }
}
=item paymask
sub paymask {
my($self, $paymask) = @_;
- if ( defined($paymask) && $paymask ne '' ) {
- # I hate this little bit of magic... I don't expect it to cause a problem,
- # but who knows... If the payinfo is passed in masked then ignore it and
- # set it based on the payinfo. The only guy that should call this in this
- # way is... $self->payinfo
- $self->setfield('paymask', $self->mask_payinfo());
-
+ if ( defined($paymask) ) {
+ $self->setfield('paymask', $paymask);
} else {
-
- $paymask=$self->getfield('paymask');
- if (!defined($paymask) || $paymask eq '') {
- # Generate it if it's blank - Note that we're not going to set it - just
- # generate
- $paymask = $self->mask_payinfo();
- }
-
+ $self->getfield('paymask') || $self->mask_payinfo;
}
-
- return $paymask;
}
=back
my $payinfo = scalar(@_) ? shift : $self->payinfo;
# Check to see if it's encrypted...
- my $paymask;
- if ( $self->is_encrypted($payinfo) ) {
- $paymask = 'N/A';
- } else {
- # if not, mask it...
+ if ( ref($self) && $self->is_encrypted($payinfo) ) {
+ return 'N/A';
+ } elsif ( $payinfo =~ /^99\d{14}$/ || $payinfo eq 'N/A' ) { #token
+ return 'N/A (tokenized)'; #?
+ } else { # if not, mask it...
+
if ($payby eq 'CARD' || $payby eq 'DCRD' || $payby eq 'MCRD') {
- # Credit Cards (Show first and last four)
- $paymask = substr($payinfo,0,6).
- 'x'x(length($payinfo)-10).
- substr($payinfo,(length($payinfo)-4));
+
+ # Credit Cards
+
+ # special handling for Local Isracards: always show last 4
+ if ( $payinfo =~ /^(\d{8,9})$/ ) {
+
+ return 'x'x(length($payinfo)-4).
+ substr($payinfo,(length($payinfo)-4));
+
+ }
+
+ my $conf = new FS::Conf;
+ my $mask_method = $conf->config('card_masking_method') || 'first6last4';
+ $mask_method =~ /^first(\d+)last(\d+)$/
+ or die "can't parse card_masking_method $mask_method";
+ my($first, $last) = ($1, $2);
+
+ return substr($payinfo,0,$first).
+ 'x'x(length($payinfo)-$first-$last).
+ substr($payinfo,(length($payinfo)-$last));
+
} elsif ($payby eq 'CHEK' || $payby eq 'DCHK' ) {
+
# Checks (Show last 2 @ bank)
my( $account, $aba ) = split('@', $payinfo );
- $paymask = 'x'x(length($account)-2).
- substr($account,(length($account)-2))."@".$aba;
+ return 'x'x(length($account)-2).
+ substr($account,(length($account)-2)).
+ ( length($aba) ? "@".$aba : '');
+
+ } elsif ($payby eq 'EDI') {
+ # EDI.
+ # These numbers have been seen anywhere from 8 to 30 digits, and
+ # possibly more. Lacking any better idea I'm going to mask all but
+ # the last 4 digits.
+ return 'x' x (length($payinfo) - 4) . substr($payinfo, -4);
+
} else { # Tie up loose ends
- $paymask = $payinfo;
+ return $payinfo;
}
}
- return $paymask;
+ #die "shouldn't be reached";
}
-=cut
-
-sub _mask_payinfo {
- my $self = shift;
-
=item payinfo_check
Checks payby and payinfo.
FS::payby->can_payby($self->table, $self->payby)
or return "Illegal payby: ". $self->payby;
- if ( $self->payby eq 'CARD' ) {
+ if ( $self->payby eq 'CARD' && ! $self->is_encrypted($self->payinfo) ) {
my $payinfo = $self->payinfo;
- $payinfo =~ s/\D//g;
- $self->payinfo($payinfo);
- if ( $self->payinfo ) {
- $self->payinfo =~ /^(\d{13,16})$/
- or return "Illegal (mistyped?) credit card number (payinfo)";
- $self->payinfo($1);
- validate($self->payinfo) or return "Illegal credit card number";
- return "Unknown card type" if cardtype($self->payinfo) eq "Unknown";
+ if ( $ignore_masked_payinfo and $self->mask_payinfo eq $self->payinfo ) {
+ # allow it
} else {
- $self->payinfo('N/A');
+ $payinfo =~ s/\D//g;
+ $self->payinfo($payinfo);
+ if ( $self->payinfo ) {
+ $self->payinfo =~ /^(\d{13,16}|\d{8,9})$/
+ or return "Illegal (mistyped?) credit card number (payinfo)";
+ $self->payinfo($1);
+ validate($self->payinfo) or return "Illegal credit card number";
+ return "Unknown card type" if $self->payinfo !~ /^99\d{14}$/ #token
+ && cardtype($self->payinfo) eq "Unknown";
+ } else {
+ $self->payinfo('N/A'); #???
+ }
}
} else {
- my $error = $self->ut_textn('payinfo');
- return $error if $error;
+ if ( $self->is_encrypted($self->payinfo) ) {
+ #something better? all it would cause is a decryption error anyway?
+ my $error = $self->ut_anything('payinfo');
+ return $error if $error;
+ } else {
+ my $error = $self->ut_textn('payinfo');
+ return $error if $error;
+ }
}
+
}
-=head1 BUGS
+=item payby_payinfo_pretty [ LOCALE ]
+
+Returns payment method and information (suitably masked, if applicable) as
+a human-readable string, such as:
-Have to add the future items...
+ Card #54xxxxxxxxxxxx32
+
+or
+
+ Check #119006
+
+=cut
+
+sub payby_payinfo_pretty {
+ my $self = shift;
+ my $locale = shift;
+ my $lh = FS::L10N->get_handle($locale);
+ if ( $self->payby eq 'CARD' ) {
+ $lh->maketext('Card #') . $self->paymask;
+ } elsif ( $self->payby eq 'CHEK' ) {
+
+ #false laziness w/view/cust_main/payment_history.html::translate_payinfo
+ my( $account, $aba ) = split('@', $self->paymask );
+
+ if ( $aba =~ /^(\d{5})\.(\d{3})$/ ) { #blame canada
+ my($branch, $routing) = ($1, $2);
+ $lh->maketext("Routing [_1], Branch [_2], Acct [_3]",
+ $routing, $branch, $account);
+ } else {
+ $lh->maketext("Routing [_1], Acct [_2]", $aba, $account);
+ }
+
+ } elsif ( $self->payby eq 'BILL' ) {
+ $lh->maketext('Check #') . $self->payinfo;
+ } elsif ( $self->payby eq 'PREP' ) {
+ $lh->maketext('Prepaid card #') . $self->payinfo;
+ } elsif ( $self->payby eq 'CASH' ) {
+ $lh->maketext('Cash') . ' ' . $self->payinfo;
+ } elsif ( $self->payby eq 'WEST' ) {
+ # does Western Union localize their name?
+ $lh->maketext('Western Union');
+ } elsif ( $self->payby eq 'MCRD' ) {
+ $lh->maketext('Manual credit card');
+ } elsif ( $self->payby eq 'EDI' ) {
+ $lh->maketext('EDI') . ' ' . $self->paymask;
+ } elsif ( $self->payby eq 'PPAL' ) {
+ $lh->maketext('PayPal transaction#') . $self->order_number;
+ } else {
+ $self->payby. ' '. $self->payinfo;
+ }
+}
+
+=item payinfo_used [ PAYINFO ]
+
+Returns 1 if there's an existing payment using this payinfo. This can be
+used to set the 'recurring payment' flag required by some processors.
+
+=cut
+
+sub payinfo_used {
+ my $self = shift;
+ my $payinfo = shift || $self->payinfo;
+ my %hash = (
+ 'custnum' => $self->custnum,
+ 'payby' => 'CARD',
+ );
+
+ return 1
+ if qsearch('cust_pay', { %hash, 'payinfo' => $payinfo } )
+ || qsearch('cust_pay',
+ { %hash, 'paymask' => $self->mask_payinfo('CARD', $payinfo) } )
+ ;
+
+ return 0;
+}
+
+=item display_status
+
+For transactions that have both 'status' and 'failure_status', shows the
+status in a single, display-friendly string.
+
+=cut
+
+sub display_status {
+ my $self = shift;
+ my %status = (
+ 'done' => 'Approved',
+ 'expired' => 'Card Expired',
+ 'stolen' => 'Lost/Stolen',
+ 'pickup' => 'Pick Up Card',
+ 'nsf' => 'Insufficient Funds',
+ 'inactive' => 'Inactive Account',
+ 'blacklisted' => 'Blacklisted',
+ 'declined' => 'Declined',
+ 'approved' => 'Approved',
+ );
+ if ( $self->failure_status ) {
+ return $status{$self->failure_status};
+ } else {
+ return $status{$self->status};
+ }
+}
+
+=back
+
+=head1 BUGS
=head1 SEE ALSO