Backported DPM getHash() to SIM getHash() to support a specified currency.

judgej · judgej · commit 648726b2a0f2 · 2015-02-15T12:54:01.000Z
diff --git a/src/DPMGateway.php b/src/DPMGateway.php
@@ -12,21 +12,33 @@ public function getName()
         return 'Authorize.Net DPM';
     }
 
+    /**
+     * Helper to generate the authorize direct-post form.
+     */
     public function authorize(array $parameters = array())
     {
         return $this->createRequest('\Omnipay\AuthorizeNet\Message\DPMAuthorizeRequest', $parameters);
     }
 
+    /**
+     * Get, validate, interpret and respond to the Authorize.Net callback.
+     */
     public function completeAuthorize(array $parameters = array())
     {
         return $this->createRequest('\Omnipay\AuthorizeNet\Message\DPMCompleteRequest', $parameters);
     }
 
+    /**
+     * Helper to generate the purchase direct-post form.
+     */
     public function purchase(array $parameters = array())
     {
         return $this->createRequest('\Omnipay\AuthorizeNet\Message\DPMPurchaseRequest', $parameters);
     }
 
+    /**
+     * Get, validate, interpret and respond to the Authorize.Net callback.
+     */
     public function completePurchase(array $parameters = array())
     {
         return $this->createRequest('\Omnipay\AuthorizeNet\Message\DPMCompleteRequest', $parameters);
diff --git a/src/Message/DPMAuthorizeRequest.php b/src/Message/DPMAuthorizeRequest.php
@@ -5,35 +5,13 @@
 use Omnipay\AuthorizeNet\Message\SIMAbstractRequest;
 
 /**
- * Authorize.Net DPM Authorize Request
+ * Authorize.Net DPM Authorize Request.
+ * Takes the data that will be used to create the direct-post form.
  */
 class DPMAuthorizeRequest extends SIMAuthorizeRequest
 {
     protected $action = 'AUTH_ONLY';
 
-    public function getHash($data)
-    {
-        $fingerprint = implode(
-            '^',
-            array(
-                $this->getApiLoginId(),
-                $data['x_fp_sequence'],
-                $data['x_fp_timestamp'],
-                $data['x_amount']
-            )
-        ).'^';
-
-        // If x_currency_code is specified, then it must follow the final trailing carat.
-        // CHECKME: this may need to be back-ported to SIMAuthorizeRequest and AIMAuthorizeRequest
-        // in order to supprot multiple currencies.
-
-        if ($this->getCurrency()) {
-            $fingerprint .= $this->getCurrency();
-        }
-
-        return hash_hmac('md5', $fingerprint, $this->getTransactionKey());
-    }
-
     public function getData()
     {
         $data = parent::getData();
diff --git a/src/Message/SIMAuthorizeRequest.php b/src/Message/SIMAuthorizeRequest.php
@@ -36,6 +36,12 @@ public function getData()
         return $data;
     }
 
+    /**
+     * This hash is put into the form to confirm the amount has not been
+     * modified en-route.
+     * It uses the TransactionKey, which is a shared secret between the merchant
+     * and Authorize.Net The sequence and timestamp provide additional salt.
+     */
     public function getHash($data)
     {
         $fingerprint = implode(
@@ -48,6 +54,11 @@ public function getHash($data)
             )
         ).'^';
 
+        // If x_currency_code is specified, then it must follow the final trailing carat.
+        if ($this->getCurrency()) {
+            $fingerprint .= $this->getCurrency();
+        }
+
         return hash_hmac('md5', $fingerprint, $this->getTransactionKey());
     }
 

Original file line number	Diff line number	Diff line change
`@@ -12,21 +12,33 @@ public function getName()`
`12`	`12`	`return 'Authorize.Net DPM';`
`13`	`13`	`}`
`14`	`14`
	`15`	`+ /**`
	`16`	`+ * Helper to generate the authorize direct-post form.`
	`17`	`+ */`
`15`	`18`	`public function authorize(array $parameters = array())`
`16`	`19`	`{`
`17`	`20`	`return $this->createRequest('\Omnipay\AuthorizeNet\Message\DPMAuthorizeRequest', $parameters);`
`18`	`21`	`}`
`19`	`22`
	`23`	`+ /**`
	`24`	`+ * Get, validate, interpret and respond to the Authorize.Net callback.`
	`25`	`+ */`
`20`	`26`	`public function completeAuthorize(array $parameters = array())`
`21`	`27`	`{`
`22`	`28`	`return $this->createRequest('\Omnipay\AuthorizeNet\Message\DPMCompleteRequest', $parameters);`
`23`	`29`	`}`
`24`	`30`
	`31`	`+ /**`
	`32`	`+ * Helper to generate the purchase direct-post form.`
	`33`	`+ */`
`25`	`34`	`public function purchase(array $parameters = array())`
`26`	`35`	`{`
`27`	`36`	`return $this->createRequest('\Omnipay\AuthorizeNet\Message\DPMPurchaseRequest', $parameters);`
`28`	`37`	`}`
`29`	`38`
	`39`	`+ /**`
	`40`	`+ * Get, validate, interpret and respond to the Authorize.Net callback.`
	`41`	`+ */`
`30`	`42`	`public function completePurchase(array $parameters = array())`
`31`	`43`	`{`
`32`	`44`	`return $this->createRequest('\Omnipay\AuthorizeNet\Message\DPMCompleteRequest', $parameters);`
Original file line number	Diff line number	Diff line change
`@@ -36,6 +36,12 @@ public function getData()`
`36`	`36`	`return $data;`
`37`	`37`	`}`
`38`	`38`
	`39`	`+ /**`
	`40`	`+ * This hash is put into the form to confirm the amount has not been`
	`41`	`+ * modified en-route.`
	`42`	`+ * It uses the TransactionKey, which is a shared secret between the merchant`
	`43`	`+ * and Authorize.Net The sequence and timestamp provide additional salt.`
	`44`	`+ */`
`39`	`45`	`public function getHash($data)`
`40`	`46`	`{`
`41`	`47`	`$fingerprint = implode(`
`@@ -48,6 +54,11 @@ public function getHash($data)`
`48`	`54`	`)`
`49`	`55`	`).'^';`
`50`	`56`
	`57`	`+ // If x_currency_code is specified, then it must follow the final trailing carat.`
	`58`	`+ if ($this->getCurrency()) {`
	`59`	`+ $fingerprint .= $this->getCurrency();`
	`60`	`+ }`
	`61`	`+`
`51`	`62`	`return hash_hmac('md5', $fingerprint, $this->getTransactionKey());`
`52`	`63`	`}`
`53`	`64`