autepos / ai-payment
AiPayment is a uniform payment interface for Laravel.
Requires
- php: ^7.3||^8.0
- illuminate/config: ^7.0||^8.0||^9.0||^10.0
- illuminate/contracts: ^7.0||^8.0||^9.0||^10.0
- illuminate/database: ^7.0||^8.0||^9.0||^10.0
- illuminate/events: ^7.0||^8.0||^9.0||^10.0
- illuminate/log: ^7.0||^8.0||^9.0||^10.0
- illuminate/routing: ^7.0||^8.0||^9.0||^10.0
- illuminate/support: ^7.0||^8.0||^9.0||^10.0
- moneyphp/money: ^3.2|^4.0
Requires (Dev)
- mockery/mockery: ^1.5
- orchestra/testbench: ^8.0
Suggests
- autepos/stripe-intent: For the default payment provider for Stripe intent
This package is auto-updated.
Last update: 2024-04-18 18:11:43 UTC
README
AiPayment is a uniform payment interface for Laravel that simplifies payment mechanisms that allow you to implement embeddable UI components that delegate the handling of sensitive payment data to your payment provider for security purposes. You can keep customers on your application during payment transaction without handling their sensitive payment details.
In the ideal process for AiPayment, a payment initialisation is started on the server side which produces an output required to complete the payment transaction in the frontend. The server is then notified of the completion either through a webhook from the provider or directly by the frontend. Since the notification from the frontend cannot be trusted, the provider is contacted by the server for official confirmation of the payment status. Stripe Intent is fully implemented as a provider to demonstrated all of these.
The following are the standout features of payment provision in AiPayment:
- Delegation of the handling of sensitive data to a provider
- Splitting a payment into multiple payments
- Payments using multiple providers for a single order (e.g. Offline/Cash + Stripe + etc.)
- Refund all or only part of a transaction
- Save payment methods for reuse
- Ping provider to verify an integration status
- Dynamically change payment provider configurations
- Dynamically switch between live and test modes
- Multi-tenancy support
- Custom payment providers.
Installation
composer require autepos/ai-payment
php artisan migrate
Usage
For safe interaction with payment providers, use the payment service. To obtain payment service, build it through the container so its dependencies are auto resolved:
$paymentService=app(\Autepos\AiPayment\PaymentService::class)
Init
Initialise a full order payment operation:
/** * @var \Autepos\AiPayment\Providers\Contracts\Orderable */ $order=new Order; // $config=[ 'test_publishable_key'=>'...', 'test_secret_key'=>'...' 'webhook_secret'=>'...', ] $livemode=false; $paymentResponse = $paymentService->provider('stripe_intent') ->config($config,$livemode) ->order($order) ->init();
The payment response object has the details required, in this case, to complete the payment in the frontend. So $paymentResponse can be serialised and returned to the frontend. The initialisation operation is recorded in a transaction model which can be accessed from the response object,
$transaction=$paymentResponse->getTransaction();
That is all. Alternatively, you can initialise part/split order payment operation:
$paymentResponse = $paymentService->provider('stripe_intent') ->config($config) ->order($order) ->init(100);
Also a cashier can initialise payment on behalf of a customer,
/** * @var \Illuminate\Contracts\Auth\Authenticatable */ $cashier=\App\Models\Admin::find(1); // $paymentResponse = $paymentService->provider('stripe_intent') ->config($config) ->order($order) ->cashierInit($cashier);
Charge
After the payment is initialised, the next thing is to create a charge,
$paymentResponse = $paymentService->config($config) ->charge($transaction);//$transaction may be returned during init above
A cashier can also create the charge on behalf of a customer,
$paymentResponse = $paymentService->config($config) ->cashierCharge($cashier,$transaction);
Refund
A successful charge can be refunded,
$paymentResponse = $paymentService->config($config) ->refund($cashier,$transaction);
Sync transaction
The local charge data, a.k.a transaction can be syncronised with the corresponding data held by the provider,
$paymentResponse = $paymentService->config($config) ->syncTransaction($transaction);
General operations
Run setup scripts
$simpleResponse = $paymentService->provider('stripe_intent') ->config($config) ->up();
Run reverse of setup scripts
$simpleResponse = $paymentService->provider('stripe_intent') ->config($config) ->down();
Ping the provider
$simpleResponse = $paymentService->provider('stripe_intent') ->config($config) ->ping();
Listening to transactions events
Transactions are recorded in an Eloquent model: \Autepos\AiPayment\Models\Transaction. Therefore you can listen to the events normally. Additionally whenever a Transaction is saved \Autepos\AiPayment\Events\OrderableTransactionsTotaled event is dispatched. This event has information for the related orderable and the current total amount summed from all applicable transactions. You can Listen to these events to update the corresponding orderable:
class OnOrderableTransactionsTotaled { use \App\Models\Order; /** * Handle the event. */ public function handle(OrderableTransactionsTotaled $event) { $order=Order::find($event->orderable_id); $order->total_paid=$event->total_paid; $order->save(); } }
Provider customer
A payment provider can implement a customer which can be retrieved as follows:
/** * @var \Autepos\AiPayment\Providers\Contracts\ProviderCustomer */ $providerCustomer=$paymentService->provider('stripe_intent') ->config($config) ->customer();
The methods exposed by the provider customer allows for creating a customer with the payment provider to link the local account details. For example, to create a Stripe customer for a local user, you can do the following:
use \Autepos\AiPayment\Contracts\CustomerData; $customerData=new CustomerData([ 'user_id'=>1, 'user_type'=>'customer' ]); $customerResponse=$providerCustomer->create($customerData); $paymentProviderCustomer=$customerResponse->getPaymentProviderCustomer();
That's it. This will create a local record linked with a newly created Stripe customer object. The object $paymentProviderCustomer is your new local record of the customer. It is an Eloquent model introduced later. You can delete the customer by thus:
$customerResponse=$providerCustomer->delete($paymentProviderCustomer); if($customerResponse->success){ // both local and Stripe records have been removed }
Provider payment method
A payment provider can implement a payment method which can be retrieved as follows:
use \Autepos\AiPayment\Contracts\CustomerData; $customerData=new CustomerData([ 'user_id'=>null, 'user_type'=>'guest' ]) /** * @var \Autepos\AiPayment\Providers\Contracts\ProviderPaymentMethod */ $providerPaymentMethod=$paymentService->provider('stripe_intent') ->config($config) ->paymentMethod($customerData);
The method exposed by the provider payment method allow you to save a payment method for a customer for reuse in a future payment. To save a payment method, you will need to provided any data required by the payment method implementation. For Stripe intent, the required data is the payment method id.
$data=['payment_method_id'=>'pm_1LFRDP2eZvKYlo2C6NTvKmDS']; $paymentMethodResponse=$providerPaymentMethod->save($data); $paymentProviderCustomerPaymentMethod=$paymentMethodResponse->getPaymentProviderCustomerPaymentMethod();
Note that the API saves rather create a new payment method. The creation of the payment can be handled elsewhere or in the frontend. The creation process should acquire the $data input required to save the payment method against the customer. If the creation processing requires a server-side initialisation, this can be performed using the init() method of the $providerPaymentMethod which should return the required initialisation data as part of a response object. For Stripe intent, a customer will be created for the underlying $customerData if one does not exists.
The object, $paymentProviderCustomerPaymentMethod is an Eloquent model introduced later. It stores the local record of the provider payment. The host app can directly access the model to use it for a payment in the future. As an example, for Stripe intent, you could do the following to reuse a saved payment method for a new payment:
$data=[ 'payment_provider_payment_method_id'=>$paymentProviderCustomerPaymentMethod->payment_provider_payment_method_id ]; $paymentResponse = $paymentService->provider('stripe_intent') ->config($config,$livemode) ->order($order) ->init(null,$data); $paymentResponse = $paymentService->charge($transaction); if($paymentResponse->success){ // payment was successful. }
To remove the payment method you can use the remove method,
$paymentMethodResponse=$payment$providerPaymentMethod->remove($paymentProviderCustomerPaymentMethod); if($paymentMethodResponse->success){ // the record has been removed locally and at Stripe. }
Adding an additional payment provider
Define payment provider class e.g for Bitcoin payment:
use Autepos\AiPayment\Providers\Contracts\PaymentProvider; class BitcoinPaymentProvider extends PaymentProvider{ ... }
In a service provider, register the payment provider
$paymentManager=$this->app->make(\Autepos\AiPayment\Contracts\PaymentProviderFactory::class); $paymentManager->extend('bitcoin', function($app){ return $app->make(BitcoinPaymentProvider::class); });
That is it, but if you are using the provider in Autepos, you should add a record for it:
$pm= new \Autepos\Models\PaymentMethod; $pm->provider='bitcoin';// unique_provider_tag $pm->provider_name='Name of provider'; $pm->name='Bitcoin';// What Customers will see $pm->... e.g. delivery types etc $provider->save();
Testing
You should properly test your additional payment providers. Basic general tests are provided under the namespace, \Autepos\AiPayment\Tests\ContractTests. You may copy the tests and modify them or use the traits in your own tests. You do not have to use these tests. If you prefer to use the traits, you need to add createContract() method which returns the class under test. Here is an example to test a payment provider implementation:
use Autepos\AiPayment\Tests\ContractTests\PaymentProviderContractTest; class BitcoinPaymentProviderTest extends PHPUnit_TestCase { use PaymentProviderContractTest; /** * Hook for PaymentProviderContractTest * * @return void */ public function createContract():PaymentProvider{ return new BitcoinPaymentProvider; } }
This will run all the tests defined in PaymentProviderContractTest. You can also override any of the tests in PaymentProviderContractTest to modify it, and add additional tests:
use Autepos\AiPayment\Providers\Contracts\PaymentProvider; use Autepos\AiPayment\Tests\ContractTests\PaymentProviderContractTest; class BitcoinPaymentProviderTest extends PHPUnit_TestCase { use PaymentProviderContractTest; /** * Hook for PaymentProviderContractTest * * @return void */ public function createContract():PaymentProvider{ return new BitcoinPaymentProvider; } /** * Additional test */ public function test_can_resolve_provider(){ // test code } /** * Override the test_can_ping() from PaymentProviderContractTest. */ public function test_can_ping(){ // test code } }
Eloquent Models
Since the following are pure Eloquent models, you are free to use them as so.
- Transaction: Payment providers should manage transactions using this model. The host app should use this model to determine all payments made for an orderable.
- PaymentProviderCustomer:Payment providers should sync their remotely held customers with this model. Host app can use the model to manage a customer's saved details for a payment provider e.g $paymentProviderCustomer->paymentMethods which provides relationship for a saved payment methods;
- PaymentProviderCustomerPaymentMethod : Payment providers should sync their remotely held customer payment methods with this model. The host app can access this model to interact with registered customers' saved payment methods when related with
PaymentProviderCustomer.
Default providers
Offline
This is Offline payment. It should be used when payment is to be made outside of the system.
// Retrieve instance with payment service $paymentProvider=$paymentService->provider('offline');
Cash
Cash specific offline payment.
// Retrieve instance with payment service $paymentProvider=$paymentService->provider('cash');
Pay Later
This is a really simple implementation of payment provider to be used to give a customer an option to pay later.
// Retrieve instance with payment service $paymentProvider=$paymentService->provider('pay_later');
Stripe intent
This provides Stripe intent payment services.
// Retrieve instance with payment service $paymentProvider=$paymentService->provider('stripe_intent');
For installation of this payment provider see Stripe intent.
Tenancy
Tenancy is supported but it is disabled by default. You can enable tenancy by setting a 'ai-payment.tenancy' config thus:
.... /** * Payment provider */ 'ai_payment'=>[ 'tenancy'=>[ 'enable_multi_tenant'=>true, 'column_name'=>'tenant_id', 'is_column_type_integer'=>true, 'default'=>1,// Should be neural ID that does not belong to any client when tenancy is in use. If tenancy is not in use then all data is stored with this value. 'global_scope_name'=>'simple_tenancy_tenant_id',// Eloquent global scope name for scoping related queries ] ], ...
Even with tenancy enabled, a given implementation of payment provider may not support it. The default payment providers support tenancy.
You should always as the first thing before interacting with Payment provider or Models of payment provider( eg. model Transaction, etc) call:
\Autepos\AiPayment\Tenancy\Tenant::set('current_tenant_id');
Alternatively you can set tenant through the payment Service, thus
\Autepos\AiPayment\PaymentService::tenant('current_tenant_id');
Vue component of the payment provider for Autepos
Every payment provider should provider two view components. The components may be registered globally so that they can be loaded by Payment.vue/Refund.vue (or if exists, PaymentService.vue/PaymentServiceRefund.vue), the vue components of payment service. One of the required components is for processing payment while the other is for refund. Find examples of these in Autepos vue components.
The registered name of the Payment processing component is suggested to follow the following convention:
{provider}PaymentProvider where {provider} replaced with the unique provider tag/driver in Pascal case. Example, the Stripe intent with the unique tag/driver of stripe_intent should have its component registered as StripeIntentPaymentProvider.
The registered name of the Refund component should follow a similar convention with the only different being that the word Refund appears at the end. So for the Stripe intent we will have, StripeIntentPaymentProviderRefund
Testing
Run the tests from the command line
php vendor/phpunit/phpunit/phpunit
or
composer test