(JavaScript) Global Payments Card Authorization

Demonstrates how to send a card payments authorization request.

For more information, see https://developer.globalpay.com/#!/api/card-payments#api-authorisation

Note

This example is intended for running within a Chilkat.Js embedded JavaScript engine. All Chilkat JavaScript examples require Chilkat v11.4.0 or greater.

var success = false;

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

var http = new CkHttp();

// if you don't have a Client ID yet you can still quickly test some basic request types using the following URL and credentials:

// Test URL - https://test.realexpayments.com/epage-remote.cgi
// Client ID: realexsandbox
// Shared Secret: Po8lRRT67a
var testUrl = "https://test.realexpayments.com/epage-remote.cgi";
var clientID = "realexsandbox";
var sharedSecret = "Po8lRRT67a";

var amount = "1001";
var currency = "EUR";
var cardNumber = "4263970000005262";

// We'll be sending the following XML in the body of the request:

// <?xml version="1.0" encoding="UTF-8"?>
// <request type="auth" timestamp="20180613141207">
//   <merchantid>MerchantId</merchantid>
//   <account>internet</account>
//   <channel>ECOM</channel>
//   <orderid>N6qsk4kYRZihmPrTXWYS6g</orderid>
//   <amount currency="EUR">1001</amount>
//   <card>
//     <number>4263970000005262</number>
//     <expdate>0425</expdate>
//     <chname>James Mason</chname>
//     <type>VISA</type>
//     <cvn>
//       <number>123</number>
//       <presind>1</presind>
//     </cvn>
//   </card>
//   <autosettle flag="1"/>
//   <sha1hash>87707637a34ba651b6185718c863abc64b673f20</sha1hash>
// </request>

// Use this online tool to generate code from sample XML: 
// Generate Code to Create XML

// Get the current date/time in this format:  20180613141207
var dt = new CkDateTime();
dt.SetFromCurrentSystemTime();
var dtStr = dt.GetAsIso8601("YYYYMMDDhhmmss",true);

// Generate a unique order ID
var prng = new CkPrng();
var orderId = prng.GenRandom(32,"base64url");

// Compute the sha1hash
var crypt = new CkCrypt2();
crypt.HashAlgorithm = "sha1";
crypt.EncodingMode = "hexlower";

var sbA = new CkStringBuilder();
sbA.Append("timestamp.merchantid.orderid.amount.currency.cardnumber");
var numReplaced = sbA.Replace("timestamp",dtStr);
numReplaced = sbA.Replace("merchantid",clientID);
numReplaced = sbA.Replace("orderid",orderId);
numReplaced = sbA.Replace("amount",amount);
numReplaced = sbA.Replace("currency",currency);
numReplaced = sbA.Replace("cardnumber",cardNumber);

var hashA = crypt.HashStringENC(sbA.GetAsString());

var sbB = new CkStringBuilder();
sbB.Append(hashA);
sbB.Append(".");
sbB.Append(sharedSecret);

var hashB = crypt.HashStringENC(sbB.GetAsString());

var xml = new CkXml();
xml.Tag = "request";
xml.AddAttribute("type","auth");
xml.AddAttribute("timestamp",dtStr);
xml.UpdateChildContent("merchantid",clientID);
xml.UpdateChildContent("account","internet");
xml.UpdateChildContent("channel","ECOM");
xml.UpdateChildContent("orderid",orderId);
xml.UpdateAttrAt("amount",true,"currency",currency);
xml.UpdateChildContent("amount",amount);
xml.UpdateChildContent("card|number",cardNumber);
xml.UpdateChildContent("card|expdate","0425");
xml.UpdateChildContent("card|chname","James Mason");
xml.UpdateChildContent("card|type","VISA");
xml.UpdateChildContent("card|cvn|number","123");
xml.UpdateChildContent("card|cvn|presind","1");
xml.UpdateAttrAt("autosettle",true,"flag","1");
xml.UpdateChildContent("sha1hash",hashB);

var resp = new CkHttpResponse();
success = http.HttpStr("POST",testUrl,xml.GetXml(),"utf-8","application/xml",resp);
if (success == false) {
    console.log(http.LastErrorText);
    return;
}

console.log("Response Status Code: " + resp.StatusCode);

console.log("Response Body:");
console.log(resp.BodyStr);

if (resp.StatusCode !== 200) {
    console.log("Failed.");
    return;
}

// A status code of 200 indicates we received an XML response, but it could be an error message.
// Here's an example of an error response:

// <?xml version="1.0" encoding="UTF-8" standalone="yes"?>
// <response timestamp="20200418142356">
//     <orderid>N6qsk4kYRZihmPrTXWYS6g</orderid>
//     <result>508</result>
//     <message>Invalid timestamp: '{' Value exceeds allowable limit: '}'</message>
// </response>

// We need to check the "result" within the XML.
xml.LoadXml(resp.BodyStr);

var result = xml.GetChildIntValue("result");
console.log("result = " + result);

// A successful result looks like this:

// <?xml version="1.0" encoding="UTF-8" standalone="yes"?>
// <response timestamp="20200418145519">
//     <merchantid>realexsandbox</merchantid>
//     <account>internet</account>
//     <orderid>Cw93I1nFWVZuaATh46qMUCBlCcfrOvLo65C2cq5X-AY</orderid>
//     <result>00</result>
//     <authcode>L3pHww</authcode>
//     <message>AUTH CODE: L3pHww</message>
//     <pasref>96838535689610806</pasref>
//     <cvnresult>M</cvnresult>
//     <timetaken>87</timetaken>
//     <authtimetaken>67</authtimetaken>
//     <batchid>6322506</batchid>
//     <sha1hash>2fd2f15f97f1775779fe9bda536dc8317a4b39f6</sha1hash>
// </response>

if (result == 0) {
    console.log("authcode = " + xml.GetChildContent("authcode"));
    console.log("Success.");

}
else {
    console.log("Failed.");
}