zenphp/obsidian

Obsidian provides expressive, fluent subscription billing for Laravel applications using CCBill and SegPay payment processors.

Maintainers

Details

github.com/zenphporg/obsidian

Source

Issues

Installs: 1

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 0

Forks: 0

Open Issues: 0

pkg:composer/zenphp/obsidian

v1.0.1 2025-11-21 22:13 UTC

Requires

Requires (Dev)

MIT de7847133ab7f01f449aeeef52e39220a36b4b7c

billingsubscriptionsobsidianzenphpccbillsegpay

This package is auto-updated.

Last update: 2025-11-22 23:42:31 UTC

README

Obsidian

Coverage Build Status Total Downloads Latest Stable Version License

About Obsidian

Obsidian provides expressive, fluent subscription billing for Laravel applications using CCBill and SegPay payment processors. Built specifically for adult content platforms and high-risk merchants who need reliable, compliant payment processing.

Features

  • Multiple Payment Gateways - Support for CCBill and SegPay with automatic failover
  • Subscription Management - Create, cancel, and manage recurring subscriptions
  • Trial Periods - Built-in support for trial subscriptions
  • Webhook Handling - Automatic webhook processing with signature validation
  • One-Time Charges - Process single payments alongside subscriptions
  • Fake Gateway - Test your billing logic without hitting real APIs
  • 100% Test Coverage - Fully tested with comprehensive mocked responses
  • Type Safe - Full PHP 8.4 type coverage with PHPStan level max

Requirements

  • PHP 8.4 or higher
  • Laravel 12.0 or higher
  • A CCBill and/or SegPay merchant account

Installation

Install the package via Composer:

composer require zenphp/obsidian

Publish Configuration

Publish the configuration file and migrations:

php artisan vendor:publish --tag=obsidian-config
php artisan vendor:publish --tag=obsidian-migrations

Run the migrations:

php artisan migrate

Environment Configuration

Add your payment gateway credentials to your .env file:

# Default Gateway
OBSIDIAN_GATEWAY=ccbill
OBSIDIAN_FALLBACK_GATEWAY=segpay

# CCBill Configuration
CCBILL_MERCHANT_ID=your_merchant_id
CCBILL_SUBACCOUNT_ID=your_subaccount_id
CCBILL_API_KEY=your_api_key
CCBILL_API_SECRET=your_api_secret
CCBILL_SALT=your_salt
CCBILL_WEBHOOK_SECRET=your_webhook_secret

# SegPay Configuration
SEGPAY_MERCHANT_ID=your_merchant_id
SEGPAY_PACKAGE_ID=your_package_id
SEGPAY_USER_ID=your_user_id
SEGPAY_API_KEY=your_api_key
SEGPAY_WEBHOOK_SECRET=your_webhook_secret

# Currency Settings
OBSIDIAN_CURRENCY=usd
OBSIDIAN_CURRENCY_LOCALE=en

Setup

Add the Billable Trait

Add the Billable trait to your User model (or any model that should have subscriptions):

<?php

namespace App\Models;

use Illuminate\Foundation\Auth\User as Authenticatable;
use Zen\Obsidian\Billable;

class User extends Authenticatable
{
    use Billable;

    // ... rest of your model
}

Database Columns

The migrations will add the following columns to your users table:

  • trial_ends_at - For generic trial periods (optional)

And create the following tables:

  • subscriptions - Stores subscription records
  • subscription_items - Stores subscription line items (for future use)

Usage

Creating Subscriptions

Create a new subscription for a user:

use Illuminate\Http\Request;

Route::post('/subscribe', function (Request $request) {
    $user = $request->user();

    $subscription = $user->newSubscription('default', 'plan_monthly')
        ->create($request->payment_token);

    return redirect('/dashboard');
});

With Trial Period

Add a trial period to a subscription:

$subscription = $user->newSubscription('default', 'plan_monthly')
    ->trialDays(14)
    ->create($request->payment_token);

Specify Gateway

Choose a specific payment gateway:

$subscription = $user->newSubscription('default', 'plan_monthly')
    ->gateway('segpay')
    ->create($request->payment_token);

With Metadata

Attach custom metadata to a subscription:

$subscription = $user->newSubscription('default', 'plan_monthly')
    ->withMetadata([
        'user_ip' => $request->ip(),
        'referral_code' => 'SUMMER2024',
    ])
    ->create($request->payment_token);

Checking Subscription Status

Check if a user has an active subscription:

if ($user->subscribed('default')) {
    // User has an active subscription
}

// Check for a specific subscription name
if ($user->subscribed('premium')) {
    // User has an active premium subscription
}

Check Trial Status

if ($user->onTrial('default')) {
    // User is on trial
}

Get Subscription

Retrieve a user's subscription:

$subscription = $user->subscription('default');

if ($subscription && $subscription->active()) {
    // Subscription is active
}

Cancelling Subscriptions

Cancel a subscription at the end of the billing period:

$subscription = $user->subscription('default');
$subscription->cancel();

Cancel immediately:

$subscription->cancelNow();

One-Time Charges

Process a one-time payment:

$result = $user->charge(2999, $paymentToken, [
    'description' => 'Premium content purchase',
]);

// Result contains:
// - transaction_id
// - amount
// - status

Webhooks

Obsidian automatically handles webhooks from CCBill and SegPay to keep your subscription status in sync.

Webhook URLs

Configure these webhook URLs in your payment processor dashboards:

  • CCBill: https://yourdomain.com/webhooks/ccbill
  • SegPay: https://yourdomain.com/webhooks/segpay

Webhook Events

Obsidian dispatches the following events that you can listen to:

  • Zen\Obsidian\Events\SubscriptionCreated - New subscription activated
  • Zen\Obsidian\Events\PaymentSucceeded - Successful payment processed
  • Zen\Obsidian\Events\PaymentFailed - Payment failed
  • Zen\Obsidian\Events\SubscriptionCancelled - Subscription cancelled

Listening to Events

Create an event listener:

<?php

namespace App\Listeners;

use Zen\Obsidian\Events\PaymentSucceeded;

class SendPaymentReceipt
{
    public function handle(PaymentSucceeded $event): void
    {
        $subscription = $event->subscription;
        $amount = $event->amount;

        // Send receipt email to user
        $subscription->user->notify(new PaymentReceiptNotification($amount));
    }
}

Register in EventServiceProvider:

protected $listen = [
    \Zen\Obsidian\Events\PaymentSucceeded::class => [
        \App\Listeners\SendPaymentReceipt::class,
    ],
];

Testing

Obsidian includes a FakeGateway for testing your billing logic without hitting real payment APIs.

Using the Fake Gateway

In your tests or local environment:

// In your .env or test configuration
OBSIDIAN_GATEWAY=fake

// In your test
$subscription = $user->newSubscription('default', 'plan_monthly')
    ->gateway('fake')
    ->create('fake_token_123');

expect($subscription->active())->toBeTrue();

Mocking HTTP Responses

For testing with real gateways, use Laravel's HTTP fake:

use Illuminate\Support\Facades\Http;

Http::fake([
    'api.ccbill.com/*' => Http::response([
        'subscriptionId' => 'sub_123',
        'status' => 'active',
    ], 200),
]);

$subscription = $user->newSubscription('default', 'plan_monthly')
    ->gateway('ccbill')
    ->create('test_token');

Running Tests

# Run all tests
composer test

# Run tests with coverage
composer test:coverage

# Run type coverage
composer test:types

# Run static analysis
composer test:static

API Reference

Billable Trait Methods

The Billable trait provides the following methods:

subscriptions()

Get all subscriptions for the user.

$subscriptions = $user->subscriptions;

subscription(string $name = 'default')

Get a specific subscription by name.

$subscription = $user->subscription('premium');

subscribed(string $name = 'default')

Check if the user has an active subscription.

if ($user->subscribed()) {
    // User is subscribed
}

onTrial(string $name = 'default')

Check if the user is on a trial period.

if ($user->onTrial()) {
    // User is on trial
}

onGenericTrial()

Check if the user is on a generic trial (not tied to a subscription).

if ($user->onGenericTrial()) {
    // User has a generic trial
}

newSubscription(string $name, string $plan)

Start building a new subscription.

$builder = $user->newSubscription('default', 'plan_monthly');

charge(int $amount, string $token, array $options = [])

Process a one-time charge.

$result = $user->charge(2999, 'payment_token');

Subscription Methods

active()

Check if the subscription is active.

if ($subscription->active()) {
    // Subscription is active
}

cancelled()

Check if the subscription has been cancelled.

if ($subscription->cancelled()) {
    // Subscription is cancelled
}

expired()

Check if the subscription has expired.

if ($subscription->expired()) {
    // Subscription has expired
}

onTrial()

Check if the subscription is on a trial period.

if ($subscription->onTrial()) {
    // Subscription is on trial
}

cancel()

Cancel the subscription at the end of the billing period.

$subscription->cancel();

cancelNow()

Cancel the subscription immediately.

$subscription->cancelNow();

Gateway Configuration

CCBill

CCBill uses OAuth 2.0 for API authentication and supports:

  • Payment token upgrades for subscriptions
  • One-time charges
  • Webhook events with HMAC SHA256 signature validation

Webhook Events Supported:

  • NewSaleSuccess - New subscription created
  • RenewalSuccess - Subscription renewed
  • RenewalFailure - Renewal payment failed
  • Cancellation - Subscription cancelled
  • Chargeback - Chargeback received
  • Refund - Refund processed

SegPay

SegPay uses X-Authentication header for API calls and supports:

  • Purchase API for subscriptions
  • Direct cancellation API
  • Postback events with HMAC SHA256 signature validation

Postback Actions Supported:

  • initial - Initial purchase
  • rebill - Recurring billing
  • decline - Payment declined
  • cancel - Subscription cancelled
  • chargeback - Chargeback received

Fake Gateway

The FakeGateway is perfect for testing and development:

  • No external API calls
  • Instant responses
  • Predictable behavior
  • Access to internal state for assertions
use Zen\Obsidian\Gateways\FakeGateway;

$gateway = new FakeGateway;
$subscriptions = $gateway->getSubscriptions();
$charges = $gateway->getCharges();

Security

Webhook Signature Validation

All webhooks are validated using HMAC SHA256 signatures to ensure they come from your payment processor.

Configure your webhook secrets in .env:

CCBILL_WEBHOOK_SECRET=your_secret_here
SEGPAY_WEBHOOK_SECRET=your_secret_here

Redirect URL Validation

The VerifyRedirectUrl middleware prevents open redirect vulnerabilities by ensuring redirect URLs match your application's host.

Troubleshooting

Webhooks Not Working

  1. Verify webhook URLs are configured correctly in your payment processor dashboard
  2. Check webhook secrets match between your .env and processor settings
  3. Review logs for signature validation errors
  4. Ensure your application is accessible from the internet (use ngrok for local testing)

Subscription Not Activating

  1. Check that the subscription exists in your database
  2. Verify the gateway_subscription_id matches the processor's ID
  3. Review webhook logs to ensure events are being received
  4. Check that the subscription status is being updated correctly

Payment Failures

  1. Verify API credentials are correct in .env
  2. Check that payment tokens are valid and not expired
  3. Review gateway-specific error messages in logs
  4. Ensure your merchant account is active and in good standing

Contributing

Please see CONTRIBUTING.md for details.

Security Vulnerabilities

Please review our security policy on how to report security vulnerabilities.

License

The MIT License (MIT). Please see License File for more information.

Credits

  • Built by Jetstream Labs
  • Inspired by Laravel Cashier
  • Designed for adult content platforms and high-risk merchants

Support