1 package Business::OnlinePayment::CardFortress;
3 use base qw( Business::OnlinePayment::HTTPS );
7 #use vars qw( $DEBUG $me );
10 use Crypt::OpenSSL::RSA;
16 'info_compat' => '0.01',
17 'module_version' => $VERSION,
18 'supported_types' => [ 'CC' ],
19 'supported_actions' => { 'CC' => [
20 'Normal Authorization',
29 #need to figure out how to pass through for gateways that do... an option?
30 #'CC_void_requires_card' => 1,
38 $self->server('gw.cardfortress.com') unless $self->server;
40 $self->port('443') unless $self->port;
41 $self->path('/bop/index.html') unless $self->path;
43 $self->build_subs(qw( order_number avs_code cvv2_response
44 response_page response_code response_headers
45 card_token private_key
52 $self->server('test.cardfortress.com') if $self->test_transaction;
54 my %content = $self->content;
55 $content{$_} = $self->$_() for qw( gateway gateway_login gateway_password );
57 $content{$_} = $self->$_() for grep $self->can($_), qw( bop_options );
59 my ($page,$server_response,%headers) = $self->https_post(%content);
61 die "$server_response\n" unless $server_response =~ /^200/;
64 #this encoding good enough? wfm... if something's easier for other
65 #languages they can always use a different URL
66 foreach my $line ( grep /^\w+=/, split(/\n/, $page) ) {
67 $line =~ /^(\w+)=(.*)$/ or next;
71 foreach (qw( is_success error_message failure_status
72 authorization order_number
73 fraud_score fraud_transaction_id
74 result_code avs_code cvv2_response
77 $self->$_($response{$_});
80 #map these to gateway_response_code, etc?
85 #handle the challenge/response handshake
86 if ( $self->error_message eq '_challenge' ) { #XXX infinite loop protection?
88 my $private_key = $self->private_key
89 or die "no private key available";
91 $private_key = read_file($private_key)
92 if $private_key !~ /-----BEGIN/ && -r $private_key;
94 #decrypt the challenge with the private key
95 my $challenge = decode_base64($response{'card_challenge'});
97 #here is the hardest part to implement at each client side
98 my $rsa_priv = Crypt::OpenSSL::RSA->new_private_key($private_key);
99 my $response = $rsa_priv->decrypt($challenge);
101 #try the transaction again with the challenge response
102 # (B:OP could sure use a better way to alter one value)
103 my %content = $self->content;
104 $content{'card_response'} = encode_base64($response, '');
105 $self->content(%content);
117 Business::OnlinePayment::CardFortress - CardFortress backend for Business::OnlinePayment
121 use Business::OnlinePayment;
123 my $tx = new Business::OnlinePayment(
125 'gateway' => 'ProcessingGateway',
126 'gateway_login' => 'gwlogin',
127 'gateway_password' => 'gwpass',
128 #private_key not necessary
133 login => 'cardfortress_login',
134 password => 'cardfortress_pass',
135 action => 'Normal Authorization',
136 description => 'Business::OnlinePayment test',
138 customer_id => 'tfb',
139 name => 'Tofu Beast',
140 address => '123 Anystreet',
144 card_number => '4007000000027',
145 expiration => '09/02',
146 cvv2 => '1234', #optional (not stored)
150 if($tx->is_success()) {
151 print "Card processed successfully: ".$tx->authorization."\n";
152 $token = $tx->card_token;
153 print "Card token is: $token\n";
155 print "Card was rejected: ".$tx->error_message."\n";
158 # ... time slips by ...
160 my $rx = new Business::OnlinePayment(
162 'gateway' => 'ProcessingGateway',
163 'gateway_login' => 'gwlogin',
164 'gateway_password' => 'gwpass',
165 'private_key' => $private_key_string, #or filename
166 'bop_options' => join('/', map "$_=".$options{$_}, keys %options),
171 login => 'cardfortress_login',
172 password => 'cardfortress_pass',
173 action => 'Normal Authorization',
174 description => 'Business::OnlinePayment test',
176 card_token => $card_token
177 cvv2 => '1234', #optional, typically not necessary w/followup tx
183 This is a Business::OnlinePayment backend module for the gateway-independent
184 CardFortress storage service (http://cardfortress.com/).
186 =head1 SUPPORTED TRANSACTION TYPES
188 =head2 CC, Visa, MasterCard, American Express, Discover
190 Content required: type, login, action, amount, card_number, expiration.
192 =head1 METHODS AND FUNCTIONS
194 See L<Business::OnlinePayment> for the complete list. The following methods either override the methods in L<Business::OnlinePayment> or provide additional functions.
198 Returns the card token for any transaction. The card token can be used in
199 a subsequent transaction as a replacement for the card number and expiration
200 (as well as customer/AVS data).
204 Returns the response error code.
208 Returns the response error description text.
210 =head2 server_response
212 Returns the complete response from the server.
216 Ivan Kohler C<< <ivan-bop-cardfortress at freeside.biz> >>
218 =head1 COPYRIGHT & LICENSE
220 Copyright 2008-2010 Freeside Internet Services, Inc. (http://freeside.biz/)
223 This program is free software; you can redistribute it and/or modify it
224 under the same terms as Perl itself.