feat: integration for redsys 3ds

Author: Abhishek Chorotiya

src/App.res

@@ -67,6 +67,7 @@ let make = () => {
       </div>
     | "qrData" => <QRCodeDisplay />
     | "3dsAuth" => <ThreeDSAuth />
+    | "redsys3ds" => <Redsys3ds />
     | "3ds" => <ThreeDSMethod />
     | "voucherData" => <VoucherDisplay />
     | "preMountLoader" => {

src/Redsys3ds.res

@@ -0,0 +1,123 @@
+open Utils
+
+@react.component
+let make = () => {
+  let logger = HyperLogger.make(~source=Elements(Payment))
+  let isConfirmCalled = React.useRef(false)
+  let eventsToSendToParent = ["confirmParams", "poll_status", "openurl_if_required"]
+  let completeAuthorize = PaymentHelpers.useRedsysCompleteAuthorize(Some(logger))
+  let handleConfirmCall = (threeDsMethodComp, paymentIntentId, publishableKey, headers) => {
+    Console.log2("state", threeDsMethodComp)
+    let body = [
+      ("client_secret", paymentIntentId->JSON.Encode.string),
+      ("threeds_method_comp_ind", threeDsMethodComp->JSON.Encode.string),
+    ]
+    completeAuthorize(
+      ~bodyArr=body,
+      ~confirmParam={
+        return_url: "http://localhost:9060",
+        publishableKey,
+      },
+      ~headers,
+      ~iframeId="redsys3ds",
+      ~clientSecret=Some(paymentIntentId),
+    )
+  }
+
+  eventsToSendToParent->UtilityHooks.useSendEventsToParent
+
+  React.useEffect0(() => {
+    messageParentWindow([("iframeMountedCallback", true->JSON.Encode.bool)])
+    let handle = (ev: Window.event) => {
+      try {
+        let json = ev.data->safeParse
+        Console.log(ev.data)
+        Console.log2("Redsys3ds", ev.data)
+        let dict = json->getDictFromJson
+        if dict->Dict.get("fullScreenIframeMounted")->Option.isSome {
+          let metadata = dict->getJsonObjectFromDict("metadata")
+          let metaDataDict = metadata->JSON.Decode.object->Option.getOr(Dict.make())
+          let paymentIntentId = metaDataDict->getString("paymentIntentId", "")
+          let publishableKey = metaDataDict->getString("publishableKey", "")
+          logger.setClientSecret(paymentIntentId)
+          logger.setMerchantId(publishableKey)
+          let headersDict =
+            metaDataDict
+            ->getJsonObjectFromDict("headers")
+            ->JSON.Decode.object
+            ->Option.getOr(Dict.make())
+
+          let headers =
+            headersDict
+            ->Dict.toArray
+            ->Array.map(entries => {
+              let (x, val) = entries
+              (x, val->JSON.Decode.string->Option.getOr(""))
+            })
+          let iframeDataDict =
+            metaDataDict
+            ->Dict.get("iframeData")
+            ->Option.flatMap(JSON.Decode.object)
+            ->Option.getOr(Dict.make())
+          let methodKey =
+            iframeDataDict
+            ->Dict.get("method_key")
+            ->Option.flatMap(json => Js.Json.decodeString(json))
+            ->Option.getOr("threeDSMethodData")
+
+          let threeDsMethodUrl =
+            iframeDataDict
+            ->Dict.get("three_ds_method_url")
+            ->Belt.Option.flatMap(json => Js.Json.decodeString(json))
+            ->Option.getOr("")
+
+          let threeDsMethodData =
+            iframeDataDict
+            ->Dict.get("three_ds_method_data")
+            ->Belt.Option.flatMap(json => Js.Json.decodeString(json))
+            ->Option.getOr("")
+
+          let threeDsIframe = CommonHooks.querySelector("#threeDsAuthFrame")
+          let threeDsDiv = Window.querySelector("#threeDsDiv")
+
+          switch threeDsDiv->Nullable.toOption {
+          | Some(elem) =>
+            if threeDsMethodUrl !== "" {
+              let form = elem->makeForm(threeDsMethodUrl, "threeDsHiddenPostMethod")
+              let input = Types.createElement("input")
+              input.name = encodeURIComponent(methodKey)
+              input.value = encodeURIComponent(threeDsMethodData)
+              form.target = "threeDsAuthFrame"
+              form.appendChild(input)
+              form.submit()
+            }
+          | None => ()
+          }
+          let id = setTimeout(() => {
+            isConfirmCalled.current = true
+            handleConfirmCall("N", paymentIntentId, publishableKey, headers)->ignore
+          }, 10000)
+
+          switch threeDsIframe->Nullable.toOption {
+          | Some(elem) =>
+            elem->CommonHooks.addEventListener("load", _ => {
+              clearTimeout(id)
+              if !isConfirmCalled.current {
+                handleConfirmCall("Y", paymentIntentId, publishableKey, headers)->ignore
+              }
+            })
+          | None => ()
+          }
+        }
+      } catch {
+      | err => Console.log(err)
+      }
+    }
+    Window.addEventListener("message", handle)
+    Some(() => {Window.removeEventListener("message", handle)})
+  })
+
+  <div id="threeDsDiv" className="max-w-1 max-h-1 opacity-0 fixed left-[-9999px]">
+    <iframe id="threeDsAuthFrame" name="threeDsAuthFrame" title="3D Secure Authentication Frame" />
+  </div>
+}

src/Types/PaymentConfirmTypes.res

@@ -45,6 +45,7 @@ type nextAction = {
   next_action_data: option<JSON.t>,
   display_text: option<string>,
   border_color: option<string>,
+  iframe_data: option<JSON.t>,
 }
 type intent = {
   nextAction: nextAction,
@@ -74,6 +75,7 @@ let defaultNextAction = {
   next_action_data: None,
   display_text: None,
   border_color: None,
+  iframe_data: None,
 }
 let defaultIntent = {
   nextAction: defaultNextAction,
@@ -170,6 +172,11 @@ let getNextAction = (dict, str) => {
       next_action_data: Some(json->getDictFromDict("next_action_data")->JSON.Encode.object),
       display_text: json->getOptionString("display_text"),
       border_color: json->getOptionString("border_color"),
+      iframe_data: Some(
+        json
+        ->Dict.get("iframe_data")
+        ->Option.getOr(Dict.make()->JSON.Encode.object),
+      ),
     }
   })
   ->Option.getOr(defaultNextAction)

src/Utilities/PaymentHelpers.res

@@ -303,7 +303,6 @@ let rec intentCall = (
 ) => {
   open Promise
   let isConfirm = uri->String.includes("/confirm")
-
   let isCompleteAuthorize = uri->String.includes("/complete_authorize")
   let isPostSessionTokens = uri->String.includes("/post_session_tokens")
   let (eventName: HyperLogger.eventName, initEventName: HyperLogger.eventName) = switch (
@@ -332,6 +331,8 @@ let rec intentCall = (
       openUrl(url)
     }
   }
+  Console.log("inside intent Call")
+
   fetchApi(
     uri,
     ~method=fetchMethod,
@@ -344,9 +345,13 @@ let rec intentCall = (
     url.searchParams.set("payment_intent_client_secret", clientSecret)
     url.searchParams.set("status", "failed")
     url.searchParams.set("payment_id", clientSecret->getPaymentId)
+    Console.log("Message parent window")
+
     messageParentWindow([("confirmParams", confirmParam->anyTypeToJson)])
 
     if statusCode->String.charAt(0) !== "2" {
+      Console.log2("statusCode !==2", statusCode)
+
       res
       ->Fetch.Response.json
       ->then(data => {
@@ -469,9 +474,11 @@ let rec intentCall = (
         )->then(resolve)
       })
     } else {
+      Console.log("status code ===2")
       res
       ->Fetch.Response.json
       ->then(data => {
+        Console.log2("statusCode", statusCode)
         Promise.make(
           (resolve, _) => {
             logApi(
@@ -527,7 +534,10 @@ let rec intentCall = (
             }
 
             if intent.status == "requires_customer_action" {
+              Console.log("redirect to url")
               if intent.nextAction.type_ == "redirect_to_url" {
+                Console.log2("redirect to url inside", intent.nextAction.redirectToUrl)
+
                 handleLogging(
                   ~optLogger,
                   ~value="",
@@ -654,6 +664,36 @@ let rec intentCall = (
                     ("metadata", metaData->JSON.Encode.object),
                   ])
                 }
+              } else if intent.nextAction.type_ === "invoke_hidden_iframe" {
+                Console.log("Invoke hidden iframe")
+                let iframeData =
+                  intent.nextAction.iframe_data
+                  ->Option.flatMap(JSON.Decode.object)
+                  ->Option.getOr(Dict.make())
+
+                let headerObj = Dict.make()
+                headers->Array.forEach(
+                  entries => {
+                    let (x, val) = entries
+                    Dict.set(headerObj, x, val->JSON.Encode.string)
+                  },
+                )
+                let metaData =
+                  [
+                    ("iframeData", iframeData->JSON.Encode.object),
+                    ("paymentIntentId", clientSecret->JSON.Encode.string),
+                    ("publishableKey", confirmParam.publishableKey->JSON.Encode.string),
+                    ("headers", headerObj->JSON.Encode.object),
+                    ("url", url.href->JSON.Encode.string),
+                    ("iframeId", iframeId->JSON.Encode.string),
+                  ]->Dict.fromArray
+
+                messageParentWindow([
+                  ("fullscreen", true->JSON.Encode.bool),
+                  ("param", `redsys3ds`->JSON.Encode.string),
+                  ("iframeId", iframeId->JSON.Encode.string),
+                  ("metadata", metaData->JSON.Encode.object),
+                ])
               } else if intent.nextAction.type_ === "display_voucher_information" {
                 let voucherData = intent.nextAction.voucher_details->Option.getOr({
                   download_url: "",
@@ -834,6 +874,8 @@ let rec intentCall = (
     }
   })
   ->catch(err => {
+    Console.log("fetch api fail")
+
     Promise.make((resolve, _) => {
       try {
         let url = makeUrl(confirmParam.return_url)
@@ -916,6 +958,26 @@ let rec intentCall = (
   })
 }
 
+// let redsys3dsAuth = (~clientSecret, ~threeDsMethodComp, ~headers) => {
+//   let endpoint = ApiEndpoint.getApiEndPoint()
+//   let paymentIntentID = String.split(clientSecret, "_secret_")[0]->Option.getOr("")
+//   let url = `${endpoint}/payments/${paymentIntentID}/complete_authorize`
+//   let body =
+//     [
+//       ("client_secret", clientSecret->JSON.Encode.string),
+//       ("threeds_method_comp_ind", threeDsMethodComp->JSON.Encode.string),
+//     ]->getJsonFromArrayOfJson
+//   // open Promise
+//   // fetchApi(url, ~method=#POST, ~bodyStr=body->JSON.stringify, ~headers=headers->Dict.fromArray)
+//   // ->then(res => {
+//   //   Console.log2("completeAuthorize", res)
+//   //   resolve(res)
+//   // })
+//   // ->catch(err => reject(err))
+
+//   intentCall(~fetchApi, ~uri=url, ~headers, ~bodyStr=body->JSON.stringify)
+// }
+
 let usePaymentSync = (optLogger: option<HyperLogger.loggerMake>, paymentType: payment) => {
   open RecoilAtoms
   let paymentMethodList = Recoil.useRecoilValueFromAtom(paymentMethodList)
@@ -1177,6 +1239,67 @@ let usePaymentIntent = (optLogger, paymentType) => {
   }
 }
 
+let useRedsysCompleteAuthorize = (optLogger: option<HyperLogger.loggerMake>) => {
+  open RecoilAtoms
+  let customPodUri = Recoil.useRecoilValueFromAtom(customPodUri)
+  let setIsManualRetryEnabled = Recoil.useSetRecoilState(isManualRetryEnabled)
+  let isCallbackUsedVal = Recoil.useRecoilValueFromAtom(RecoilAtoms.isCompleteCallbackUsed)
+  let redirectionFlags = Recoil.useRecoilValueFromAtom(redirectionFlagsAtom)
+
+  (
+    ~handleUserError=false,
+    ~bodyArr: array<(string, JSON.t)>,
+    ~confirmParam: ConfirmType.confirmParams,
+    ~iframeId="redsys3ds",
+    ~clientSecret,
+    ~headers,
+  ) => {
+    Console.log("intentCall")
+    switch clientSecret {
+    | Some(clientSecret) =>
+      let paymentIntentID = clientSecret->getPaymentId
+      Console.log("some clientSecret")
+      let endpoint = ApiEndpoint.getApiEndPoint(~publishableKey=confirmParam.publishableKey)
+      let uri = `${endpoint}/payments/${paymentIntentID}/complete_authorize`
+
+      let bodyStr =
+        [("client_secret", clientSecret->JSON.Encode.string)]
+        ->Array.concatMany([bodyArr])
+        ->getJsonFromArrayOfJson
+        ->JSON.stringify
+
+      let completeAuthorize = () => {
+        intentCall(
+          ~fetchApi,
+          ~uri,
+          ~headers,
+          ~bodyStr,
+          ~confirmParam: ConfirmType.confirmParams,
+          ~clientSecret,
+          ~optLogger,
+          ~handleUserError,
+          ~paymentType=Redsys3ds,
+          ~iframeId,
+          ~fetchMethod=#POST,
+          ~setIsManualRetryEnabled,
+          ~customPodUri,
+          ~sdkHandleOneClickConfirmPayment=false,
+          ~counter=0,
+          ~isCallbackUsedVal,
+          ~redirectionFlags,
+        )->ignore
+      }
+
+      completeAuthorize()
+
+    | None =>
+      postFailedSubmitResponse(
+        ~errortype="complete_authorize_failed",
+        ~message="Complete Authorize Failed. Try Again!",
+      )
+    }
+  }
+}
 let useCompleteAuthorize = (optLogger: option<HyperLogger.loggerMake>, paymentType: payment) => {
   open RecoilAtoms
   let paymentMethodList = Recoil.useRecoilValueFromAtom(paymentMethodList)

src/Utilities/PaymentHelpersTypes.res

@@ -8,6 +8,7 @@ type payment =
   | Paypal
   | Samsungpay
   | Paze
+  | Redsys3ds
   | Other
 
 type paymentIntent = (

src/Utilities/Utils.res

@@ -837,6 +837,7 @@ let getHeaders = (~uri=?, ~token=?, ~headers=Dict.make()) => {
       ("X-Browser-Name", HyperLogger.arrayOfNameAndVersion->Array.get(0)->Option.getOr("Others")),
       ("X-Browser-Version", HyperLogger.arrayOfNameAndVersion->Array.get(1)->Option.getOr("0")),
       ("X-Client-Platform", "web"),
+      ("ngrok-skip-browser-warning", "true"),
     ]->Dict.fromArray
 
   switch (token, uri) {