const express = require('express');
const axios = require('axios');
const stripBom = require('strip-bom');
const common = require('../../lib/common');
const router = express.Router();
// The homepage of the site
router.post('/checkout_action', (req, res, next) => {
const db = req.app.db;
const config = common.getConfig();
const authorizenetConfig = common.getPaymentConfig();
let authorizeUrl = 'https://api.authorize.net/xml/v1/request.api';
if(authorizenetConfig.mode === 'test'){
authorizeUrl = 'https://apitest.authorize.net/xml/v1/request.api';
}
const chargeJson = {
createTransactionRequest: {
merchantAuthentication: {
name: authorizenetConfig.loginId,
transactionKey: authorizenetConfig.transactionKey
},
transactionRequest: {
transactionType: 'authCaptureTransaction',
amount: req.session.totalCartAmount,
payment: {
opaqueData: {
dataDescriptor: req.body.opaqueData.dataDescriptor,
dataValue: req.body.opaqueData.dataValue
}
}
}
}
};
axios.post(authorizeUrl, chargeJson, {responseType: 'text'})
.then((response) => {
// This is crazy but the Authorize.net API returns a string with BOM and totally
// screws the JSON response being parsed. So many hours wasted!
const txn = JSON.parse(stripBom(response.data)).transactionResponse;
if(!txn){
console.log('Declined request payload', chargeJson);
console.log('Declined response payload', response.data);
res.status(400).json({err: 'Your payment has declined. Please try again'});
return;
}
// order status if approved
let orderStatus = 'Paid';
if(txn && txn.responseCode !== '1'){
console.log('Declined response payload', response.data);
orderStatus = 'Declined';
}
let orderDoc = {
orderPaymentId: txn.transHash,
orderPaymentGateway: 'AuthorizeNet',
orderPaymentMessage: 'Your payment was successfully completed',
orderTotal: req.session.totalCartAmount,
orderEmail: req.body.shipEmail,
orderFirstname: req.body.shipFirstname,
orderLastname: req.body.shipLastname,
orderAddr1: req.body.shipAddr1,
orderAddr2: req.body.shipAddr2,
orderCountry: req.body.shipCountry,
orderState: req.body.shipState,
orderPostcode: req.body.shipPostcode,
orderPhoneNumber: req.body.shipPhoneNumber,
orderStatus: orderStatus,
orderDate: new Date(),
orderProducts: req.session.cart
};
// insert order into DB
db.orders.insert(orderDoc, (err, newDoc) => {
if(err){
console.info(err.stack);
}
// get the new ID
let newId = newDoc.insertedIds['0'];
// add to lunr index
common.indexOrders(req.app)
.then(() => {
// if approved, send email etc
if(orderStatus === 'Paid'){
// set the results
req.session.messageType = 'success';
req.session.message = 'Your payment was successfully completed';
req.session.paymentEmailAddr = newDoc.ops[0].orderEmail;
req.session.paymentApproved = true;
req.session.paymentDetails = `Order ID: ${newId}
Transaction ID: ${txn.transHash}
`;
// set payment results for email
let paymentResults = {
message: req.session.message,
messageType: req.session.messageType,
paymentEmailAddr: req.session.paymentEmailAddr,
paymentApproved: true,
paymentDetails: req.session.paymentDetails
};
// clear the cart
if(req.session.cart){
req.session.cart = null;
req.session.orderId = null;
req.session.totalCartAmount = 0;
}
// send the email with the response
// TODO: Should fix this to properly handle result
common.sendEmail(req.session.paymentEmailAddr, `Your payment with ${config.cartTitle}`, common.getEmailTemplate(paymentResults));
// redirect to outcome
res.status(200).json({orderId: newId});
}else{
// redirect to failure
req.session.messageType = 'danger';
req.session.message = 'Your payment has declined. Please try again';
req.session.paymentApproved = false;
req.session.paymentDetails = `Order ID: ${newId}
Transaction ID: ${txn.transHash}
`;
res.status(400).json({err: true, orderId: newId});
}
});
});
})
.catch((err) => {
console.log('Error sending payment to API', err);
res.status(400).json({err: 'Your payment has declined. Please try again'});
});
});
module.exports = router;