1 package Business::OnlinePayment::HTTPS;
4 use vars qw($VERSION @ISA $DEBUG $ssl_module $skip_NetSSLeay);
10 @ISA = qw( Business::OnlinePayment );
21 die if defined($skip_NetSSLeay) && $skip_NetSSLeay;
24 # qw(get_https post_https make_form make_headers);
25 $ssl_module = 'Net::SSLeay';
30 require LWP::UserAgent;
31 require HTTP::Request::Common;
32 require Crypt::SSLeay;
33 #import HTTP::Request::Common qw(GET POST);
34 $ssl_module = 'Crypt::SSLeay';
38 unless ( $ssl_module ) {
39 die "Net::SSLeay or Crypt::SSLeay (+LWP) is required";
46 Business::OnlinePayment::HTTPS - Base class for HTTPS payment APIs
50 package Business::OnlinePayment::MyProcessor
51 @ISA = qw( Business::OnlinePayment::HTTPS );
58 # pass a list (order is preserved, if your gateway needs that)
59 ($page, $response, %reply_headers)
60 = $self->https_get( field => 'value', ... );
63 my %hash = ( field => 'value', ... );
64 ($page, $response_code, %reply_headers)
65 = $self->https_get( $hashref );
72 This is a base class for HTTPS based gateways, providing useful code for
73 implementors of HTTPS payment APIs.
75 It depends on Net::SSLeay _or_ ( Crypt::SSLeay and LWP::UserAgent ).
81 =item https_get HASHREF | FIELD => VALUE, ...
83 Accepts parameters as either a hashref or a list of fields and values. In the
84 latter case, ordering is preserved (see L<Tie::IxHash> to do so when passing a
87 Returns a list consisting of the page content as a string, the HTTP response
88 code, and a list of key/value pairs representing the HTTP response headers.
95 #accept a hashref or a list (keep it ordered)
100 tie my %hash, 'Tie::IxHash', @_;
104 my $path = $self->path;
105 if ( keys %$post_data ) {
107 #my $u = URI->new("", "https");
108 #$u->query_param(%$post_data);
109 #$path .= '?'. $u->query;
111 $path .= '?'. join('&',
112 map { uri_escape($_).'='. uri_escape($post_data->{$_}) }
119 my $referer = ''; ### XXX referer!!!
121 $headers{'Referer'} = $referer if length($referer);
123 if ( $ssl_module eq 'Net::SSLeay' ) {
125 import Net::SSLeay qw(get_https make_headers);
126 my $headers = make_headers(%headers);
127 get_https( $self->server, $self->port, $path, $referer, $headers );
129 } elsif ( $ssl_module eq 'Crypt::SSLeay' ) {
131 import HTTP::Request::Common qw(GET);
133 my $url = 'https://'. $self->server;
134 $url .= ':'. $self->port
135 unless $self->port == 443;
138 my $ua = new LWP::UserAgent;
139 my $res = $ua->request( GET( $url ) );
141 #( $res->as_string, # wtf?
144 map { $_ => $res->header($_) } $res->header_field_names
149 die "unknown SSL module $ssl_module";
155 =item https_post HASHREF | FIELD => VALUE, ...
157 Accepts parameters as either a hashref or a list of fields and values. In the
158 latter case, ordering is preserved (see L<Tie::IxHash> to do so when passing a
161 Returns a list consisting of the page content as a string, the HTTP response
162 code, and a list of key/value pairs representing the HTTP response headers.
169 #accept a hashref or a list (keep it ordered)
174 tie my %hash, 'Tie::IxHash', @_;
178 my $referer = ''; ### XXX referer!!!
180 $headers{'Referer'} = $referer if length($referer);
181 $headers{'Host'} = $self->server;
184 warn join('', map { " $_ => ". $post_data->{$_}. "\n" } keys %$post_data );
187 if ( $ssl_module eq 'Net::SSLeay' ) {
189 #import Net::SSLeay qw(post_https make_headers make_form);
190 import Net::SSLeay qw(make_headers make_form);
191 my $headers = make_headers(%headers);
194 warn $self->server. ':'. $self->port. $self->path. "\n";
195 $Net::SSLeay::trace = 2;
197 #post_https( $self->server, $self->port, $self->path,
198 # $headers, make_form(%$post_data) );
199 _my_post_https( $self->server, $self->port, $self->path,
200 $headers, make_form(%$post_data) );
202 } elsif ( $ssl_module eq 'Crypt::SSLeay' ) {
204 import HTTP::Request::Common qw(POST);
206 my $url = 'https://'. $self->server;
207 $url .= ':'. $self->port
208 unless $self->port == 443;
215 my $ua = new LWP::UserAgent;
216 my $res = $ua->request( POST( $url, [ %$post_data ] ) );
218 #( $res->as_string, # wtf?
221 map { $_ => $res->header($_) } $res->header_field_names
226 die "unknown SSL module $ssl_module";
232 # SecureHostingUPG (and presumably other IIS-based gateways?) doesn't like the
233 # Host: $site:$port header auto-added by Net::SSLeay, which it adds regardless
234 # if you supply one or not
236 sub _my_post_https ($$$;***) { _my_do_httpx2(POST => 1, @_) }
239 my ($page, $response, $headers, $server_cert) = &_my_do_httpx3;
240 Net::SSLeay::X509_free($server_cert) if defined $server_cert;
242 return ($page, $response,
243 map( { ($h,$v)=/^(\S+)\:\s*(.*)$/; (uc($h),$v); }
244 split(/\s?\n/, $headers)
250 my ($method, $usessl, $site, $port, $path, $headers,
251 $content, $mime_type, $crt_path, $key_path) = @_;
252 my ($response, $page, $h,$v);
254 my $CRLF = $Net::SSLeay::CRLF;
257 $mime_type = "application/x-www-form-urlencoded" unless $mime_type;
258 my $len = Net::SSLeay::blength($content);
259 $content = "Content-Type: $mime_type$CRLF"
260 . "Content-Length: $len$CRLF$CRLF$content";
262 $content = "$CRLF$CRLF";
265 my $req = "$method $path HTTP/1.0$CRLF";
266 unless ( defined $headers && $headers =~ /^Host:/m ) {
267 $req .= "Host: $site";
268 unless ( ( $port==80 && !$usessl ) || ( $port==443 && $usessl ) ) {
273 $req .= (defined $headers ? $headers : '') . "Accept: */*$CRLF$content";
275 warn "do_httpx3($method,$usessl,$site:$port)" if $Net::SSLeay::trace;
276 my ($http, $errs, $server_cert)
277 = Net::SSLeay::httpx_cat($usessl, $site, $port, $req, $crt_path, $key_path);
278 return (undef, "HTTP/1.0 900 NET OR SSL ERROR$CRLF$CRLF$errs") if $errs;
280 $http = '' if !defined $http;
281 ($headers, $page) = split /\s?\n\s?\n/, $http, 2;
282 warn "headers >$headers< page >>$page<< http >>>$http<<<" if $Net::SSLeay::trace>1;
283 ($response, $headers) = split /\s?\n/, $headers, 2;
284 return ($page, $response, $headers, $server_cert);
291 L<Business::OnlinePayment>