accept-a-payment/prebuilt-checkout-page/server/ruby/server.rb at main · salework916-hue/accept-a-payment · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
require 'stripe'
require 'sinatra'
require 'dotenv'
require './config_helper.rb'

# Copy the .env.example in the root into a .env file in this folder.
Dotenv.load
# Ensure environment variables were configured properly.
ConfigHelper.check_env!
# For sample support and debugging, not required for production:
Stripe.set_app_info(
  'stripe-samples/accept-a-payment/prebuilt-checkout-page',
  version: '0.0.1',
  url: 'https://github.com/stripe-samples'
)
Stripe.api_version = '2020-08-27'

Stripe.api_key = ENV['STRIPE_SECRET_KEY']

set :static, true
set :public_folder, File.join(File.dirname(__FILE__), ENV['STATIC_DIR'])
set :port, 4242
set :bind, '0.0.0.0'

# Serve the static assets and a basic index.html page.
get '/' do
  content_type 'text/html'
  send_file File.join(settings.public_folder, 'index.html')
end

# Fetch the Checkout Session to display the JSON result on the success page
get '/checkout-session' do
  content_type 'application/json'
  session_id = params[:sessionId]

  session = Stripe::Checkout::Session.retrieve(session_id)
  session.to_json
end

# Creates a Checkout Session then redirects to its `url`.
post '/create-checkout-session' do
  # Create new Checkout Session
  #
  # Other optional params include:
  # For full details see https:#stripe.com/docs/api/checkout/sessions/create
  session = Stripe::Checkout::Session.create(
    # ?session_id={CHECKOUT_SESSION_ID} means the redirect will have the
    # session ID set as a query param when redirecting back to the success page.
    success_url: ENV['DOMAIN'] + '/success.html?session_id={CHECKOUT_SESSION_ID}',
    cancel_url: ENV['DOMAIN'] + '/canceled.html',
    mode: 'payment',
    # automatic_tax: { enabled: true },
    line_items: [{
      quantity: 1,
      price: ENV['PRICE'],
    }]
  )

  redirect session.url, 303
end

post '/webhook' do
  # You can use webhooks to receive information about asynchronous payment events.
  # For more about our webhook events check out https://stripe.com/docs/webhooks.
  webhook_secret = ENV['STRIPE_WEBHOOK_SECRET']
  payload = request.body.read
  if !webhook_secret.empty?
    # Retrieve the event by verifying the signature using the raw body and
    # secret if webhook signing is configured.
    sig_header = request.env['HTTP_STRIPE_SIGNATURE']
    event = nil

    begin
      event = Stripe::Webhook.construct_event(
        payload, sig_header, webhook_secret
      )
    rescue JSON::ParserError => e
      # Invalid payload
      status 400
      return
    rescue Stripe::SignatureVerificationError => e
      # Invalid signature
      puts '⚠️  Webhook signature verification failed.'
      status 400
      return
    end
  else
    data = JSON.parse(payload, symbolize_names: true)
    event = Stripe::Event.construct_from(data)
  end

  if event.type == 'checkout.session.completed'
    checkout_session = event.data.object
    # Note: If you need access to the line items, for instance to
    # automate fullfillment based on the the ID of the Price, you'll
    # need to refetch the Checkout Session here, and expand the line items:
    #
    # session_with_lines = Stripe::Checkout::Session.retrieve(
    #   checkout_session.id,
    #   expand: ['line_items']
    # )
    #
    # Read more about expand here: https://stripe.com/docs/expand
    puts '🔔  Payment succeeded!'
  end

  content_type 'application/json'
  { status: 'success' }.to_json
end