const express = require('express'); const axios = require('axios'); const stripBom = require('strip-bom'); const common = require('../../lib/common'); const router = express.Router(); // The homepage of the site router.post('/checkout_action', (req, res, next) => { const db = req.app.db; const config = req.app.config; const authorizenetConfig = common.getPaymentConfig(); let authorizeUrl = 'https://api.authorize.net/xml/v1/request.api'; if(authorizenetConfig.mode === 'test'){ authorizeUrl = 'https://apitest.authorize.net/xml/v1/request.api'; } const chargeJson = { createTransactionRequest: { merchantAuthentication: { name: authorizenetConfig.loginId, transactionKey: authorizenetConfig.transactionKey }, transactionRequest: { transactionType: 'authCaptureTransaction', amount: req.session.totalCartAmount, payment: { opaqueData: { dataDescriptor: req.body.opaqueData.dataDescriptor, dataValue: req.body.opaqueData.dataValue } } } } }; axios.post(authorizeUrl, chargeJson, {responseType: 'text'}) .then((response) => { // This is crazy but the Authorize.net API returns a string with BOM and totally // screws the JSON response being parsed. So many hours wasted! const txn = JSON.parse(stripBom(response.data)).transactionResponse; if(!txn){ console.log('Declined request payload', chargeJson); console.log('Declined response payload', response.data); res.status(400).json({err: 'Your payment has declined. Please try again'}); return; } // order status if approved let orderStatus = 'Paid'; if(txn && txn.responseCode !== '1'){ console.log('Declined response payload', response.data); orderStatus = 'Declined'; } let orderDoc = { orderPaymentId: txn.transHash, orderPaymentGateway: 'AuthorizeNet', orderPaymentMessage: 'Your payment was successfully completed', orderTotal: req.session.totalCartAmount, orderEmail: req.body.shipEmail, orderFirstname: req.body.shipFirstname, orderLastname: req.body.shipLastname, orderAddr1: req.body.shipAddr1, orderAddr2: req.body.shipAddr2, orderCountry: req.body.shipCountry, orderState: req.body.shipState, orderPostcode: req.body.shipPostcode, orderPhoneNumber: req.body.shipPhoneNumber, orderComment: req.body.orderComment, orderStatus: orderStatus, orderDate: new Date(), orderProducts: req.session.cart }; // insert order into DB db.orders.insert(orderDoc, (err, newDoc) => { if(err){ console.info(err.stack); } // get the new ID let newId = newDoc.insertedIds['0']; // add to lunr index common.indexOrders(req.app) .then(() => { // if approved, send email etc if(orderStatus === 'Paid'){ // set the results req.session.messageType = 'success'; req.session.message = 'Your payment was successfully completed'; req.session.paymentEmailAddr = newDoc.ops[0].orderEmail; req.session.paymentApproved = true; req.session.paymentDetails = `
Order ID: ${newId}
Transaction ID: ${txn.transHash}
`; // set payment results for email let paymentResults = { message: req.session.message, messageType: req.session.messageType, paymentEmailAddr: req.session.paymentEmailAddr, paymentApproved: true, paymentDetails: req.session.paymentDetails }; // clear the cart if(req.session.cart){ req.session.cart = null; req.session.orderId = null; req.session.totalCartAmount = 0; } // send the email with the response // TODO: Should fix this to properly handle result common.sendEmail(req.session.paymentEmailAddr, `Your payment with ${config.cartTitle}`, common.getEmailTemplate(paymentResults)); // redirect to outcome res.status(200).json({orderId: newId}); }else{ // redirect to failure req.session.messageType = 'danger'; req.session.message = 'Your payment has declined. Please try again'; req.session.paymentApproved = false; req.session.paymentDetails = `Order ID: ${newId}
Transaction ID: ${txn.transHash}
`; res.status(400).json({err: true, orderId: newId}); } }); }); }) .catch((err) => { console.log('Error sending payment to API', err); res.status(400).json({err: 'Your payment has declined. Please try again'}); }); }); module.exports = router;