From 78518e17fbda241b1f58f64b6cb04fd0d49aa46b Mon Sep 17 00:00:00 2001
From: Sylvain <sylvain@sbx.pm>
Date: Wed, 10 Jun 2020 16:37:11 +0200
Subject: [PATCH] read stripe_currency from the UI

We prevent the currency from being changed if any stripe payment was made, because a stripe user cannot made pay with different currencies. If we try to charge a user with a different currency than the currency he used for a previous payment, this will fail; so we must prevent this case
---
 .../controllers/admin/invoices.js.erb           | 10 ++++++++--
 .../directives/settings/text-setting.js.erb     |  5 ++++-
 app/assets/javascripts/router.js.erb            |  3 ++-
 app/assets/javascripts/services/payment.js      |  4 ++++
 .../templates/admin/invoices/payment.html.erb   | 17 +++++++++++++++++
 app/assets/templates/admin/settings/number.html |  4 ++--
 .../admin/settings/select-multiple.html         |  4 ++--
 app/assets/templates/admin/settings/select.html |  4 ++--
 app/assets/templates/admin/settings/text.html   |  9 ++++++---
 app/controllers/api/payments_controller.rb      | 12 +++++++++++-
 app/models/setting.rb                           |  3 ++-
 app/policies/payment_policy.rb                  |  8 ++++++++
 app/workers/sync_members_on_stripe_worker.rb    |  4 ++--
 config/locales/app.admin.en.yml                 |  5 +++++
 config/locales/app.admin.fr.yml                 |  5 +++++
 config/routes.rb                                |  1 +
 config/secrets.yml                              |  4 ----
 db/seeds.rb                                     |  2 ++
 doc/environment.md                              | 10 ----------
 env.example                                     |  2 --
 lib/tasks/fablab/setup.rake                     |  3 ++-
 setup/env.example                               |  2 --
 setup/setup.sh                                  |  2 +-
 test/fixtures/history_values.yml                |  8 ++++++++
 test/fixtures/settings.yml                      |  6 ++++++
 25 files changed, 100 insertions(+), 37 deletions(-)
 create mode 100644 app/policies/payment_policy.rb

diff --git a/app/assets/javascripts/controllers/admin/invoices.js.erb b/app/assets/javascripts/controllers/admin/invoices.js.erb
index ce8c9667a..3fb9de5e5 100644
--- a/app/assets/javascripts/controllers/admin/invoices.js.erb
+++ b/app/assets/javascripts/controllers/admin/invoices.js.erb
@@ -17,8 +17,8 @@
 /**
  * Controller used in the admin invoices listing page
  */
-Application.Controllers.controller('InvoicesController', ['$scope', '$state', 'Invoice', 'AccountingPeriod', 'AuthService', 'invoices', 'closedPeriods', '$uibModal', 'growl', '$filter', 'Setting', 'settings', 'stripeSecretKey', '_t', 'Member', 'uiTourService',
-  function ($scope, $state, Invoice, AccountingPeriod, AuthService, invoices, closedPeriods, $uibModal, growl, $filter, Setting, settings, stripeSecretKey, _t, Member, uiTourService) {
+Application.Controllers.controller('InvoicesController', ['$scope', '$state', 'Invoice', 'AccountingPeriod', 'AuthService', 'invoices', 'closedPeriods', '$uibModal', 'growl', '$filter', 'Setting', 'settings', 'stripeSecretKey', '_t', 'Member', 'uiTourService', 'Payment', 'onlinePaymentStatus',
+  function ($scope, $state, Invoice, AccountingPeriod, AuthService, invoices, closedPeriods, $uibModal, growl, $filter, Setting, settings, stripeSecretKey, _t, Member, uiTourService, Payment, onlinePaymentStatus) {
   /* PRIVATE STATIC CONSTANTS */
 
     // number of invoices loaded each time we click on 'load more...'
@@ -178,6 +178,9 @@ Application.Controllers.controller('InvoicesController', ['$scope', '$state', 'I
     // is the stripe private set?
     $scope.stripeSecretKey = (stripeSecretKey.isPresent ? STRIPE_SK_HIDDEN : '');
 
+    // has any online payment been already made?
+    $scope.onlinePaymentStatus = onlinePaymentStatus.status;
+
     // Placeholding date for the invoice creation
     $scope.today = moment();
 
@@ -619,6 +622,9 @@ Application.Controllers.controller('InvoicesController', ['$scope', '$state', 'I
           Setting.isPresent({ name: 'stripe_secret_key' }, function (res) {
             $scope.stripeSecretKey = (res.isPresent ? STRIPE_SK_HIDDEN : '');
           })
+          Payment.onlinePaymentStatus(function (res) {
+            $scope.onlinePaymentStatus = res.status;
+          });
         }
       })
 
diff --git a/app/assets/javascripts/directives/settings/text-setting.js.erb b/app/assets/javascripts/directives/settings/text-setting.js.erb
index d95c9cb92..bd9dc9215 100644
--- a/app/assets/javascripts/directives/settings/text-setting.js.erb
+++ b/app/assets/javascripts/directives/settings/text-setting.js.erb
@@ -10,7 +10,10 @@ Application.Directives.directive('textSetting', ['Setting', 'growl', '_t',
         faIcon: '@',
         placeholder: '@',
         required: '<',
-        type: '@'
+        type: '@',
+        maxLength: '@',
+        minLength: '@',
+        readOnly: '<'
       },
       templateUrl: '<%= asset_path "admin/settings/text.html" %>',
       link ($scope, element, attributes) {
diff --git a/app/assets/javascripts/router.js.erb b/app/assets/javascripts/router.js.erb
index 90cf88eee..c959dc9b7 100644
--- a/app/assets/javascripts/router.js.erb
+++ b/app/assets/javascripts/router.js.erb
@@ -839,9 +839,10 @@ angular.module('application.router', ['ui.router'])
                        'accounting_VAT_code', 'accounting_VAT_label', 'accounting_subscription_code', 'accounting_subscription_label', \
                        'accounting_Machine_code', 'accounting_Machine_label', 'accounting_Training_code', 'accounting_Training_label', \
                        'accounting_Event_code', 'accounting_Event_label', 'accounting_Space_code', 'accounting_Space_label', \
-                       'feature_tour_display', 'online_payment_module', 'stripe_public_key']` }).$promise;
+                       'feature_tour_display', 'online_payment_module', 'stripe_public_key', 'stripe_currency']` }).$promise;
           }],
           stripeSecretKey: ['Setting', function (Setting) { return Setting.isPresent({ name: 'stripe_secret_key' }).$promise; }],
+          onlinePaymentStatus: ['Payment', function (Payment) { return Payment.onlinePaymentStatus().$promise; }],
           invoices: [ 'Invoice', function (Invoice) {
             return Invoice.list({
               query: { number: '', customer: '', date: null, order_by: '-reference', page: 1, size: 20 }
diff --git a/app/assets/javascripts/services/payment.js b/app/assets/javascripts/services/payment.js
index c3fd1883d..69c80d865 100644
--- a/app/assets/javascripts/services/payment.js
+++ b/app/assets/javascripts/services/payment.js
@@ -7,6 +7,10 @@ Application.Services.factory('Payment', ['$resource', function ($resource) {
         method: 'POST',
         url: '/api/payments/confirm_payment',
         isArray: false
+      },
+      onlinePaymentStatus: {
+        method: 'GET',
+        url: '/api/payments/online_payment_status'
       }
     }
   );
diff --git a/app/assets/templates/admin/invoices/payment.html.erb b/app/assets/templates/admin/invoices/payment.html.erb
index 7498bffc4..019845fc0 100644
--- a/app/assets/templates/admin/invoices/payment.html.erb
+++ b/app/assets/templates/admin/invoices/payment.html.erb
@@ -42,6 +42,23 @@
         <button class="btn btn-default m-t-lg" ng-click="requireStripeKeys(allSettings.online_payment_module)" translate>{{ 'app.admin.invoices.payment.edit_keys' }}</button>
       </div>
     </div>
+    <div class="row m-t" ng-show="allSettings.online_payment_module === 'true'">
+      <h3 class="m-l" translate>{{ 'app.admin.invoices.payment.currency' }}</h3>
+      <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.invoices.payment.currency_info_html' | translate"></p>
+      <p class="alert alert-danger m-h-md" ng-bind-html="'app.admin.invoices.payment.currency_alert_html' | translate"></p>
+      <div class="col-md-4 m-l">
+        <text-setting name="stripe_currency"
+                      settings="allSettings"
+                      label="app.admin.invoices.payment.stripe_currency"
+                      fa-icon="fa-money"
+                      placeholder="XXX"
+                      required="true"
+                      min-length="3"
+                      max-length="3"
+                      read-only="onlinePaymentStatus">
+        </text-setting>
+      </div>
+    </div>
   </div>
 </div>
 
diff --git a/app/assets/templates/admin/settings/number.html b/app/assets/templates/admin/settings/number.html
index e616d0e6a..3664e2ce0 100644
--- a/app/assets/templates/admin/settings/number.html
+++ b/app/assets/templates/admin/settings/number.html
@@ -1,4 +1,4 @@
-<form class="{{classes}}" name="setting-number-form">
+<form class="{{classes}}" name="settingNumberForm">
   <label for="setting-{{setting.name}}" class="control-label m-r" translate>{{ label }}</label>
   <div class="form-group">
       <div class="input-group">
@@ -11,5 +11,5 @@
           <i class="fa fa-lightbulb-o"></i> {{ helperText | translate }}
       </span>
   </div>
-  <button name="button" class="btn btn-warning" ng-click="save(setting)" ng-disabled="setting-number-form.$invalid" translate>{{ 'app.shared.buttons.save' }}</button>
+  <button name="button" class="btn btn-warning" ng-click="save(setting)" ng-disabled="settingNumberForm.$invalid" translate>{{ 'app.shared.buttons.save' }}</button>
 </form>
diff --git a/app/assets/templates/admin/settings/select-multiple.html b/app/assets/templates/admin/settings/select-multiple.html
index 305689b6a..09cd1dad3 100644
--- a/app/assets/templates/admin/settings/select-multiple.html
+++ b/app/assets/templates/admin/settings/select-multiple.html
@@ -1,4 +1,4 @@
-<form class="{{classes}}" name="setting-select-multiple-form">
+<form class="{{classes}}" name="settingSelectMultipleForm">
     <div class="form-group">
         <label for="setting-{{setting.name}}" class="control-label m-r" translate>{{ label }}</label>
         <select class="form-control"
@@ -13,7 +13,7 @@
         <button ng-click="removeItem()" class="btn btn-default"><i class="fa fa-trash"></i></button>
         <button ng-click="addItem()" class="btn btn-default"><i class="fa fa-plus"></i></button>
     </div>
-  <button name="button" class="btn btn-warning m-t" ng-click="save(setting)" ng-disabled="setting-select-multiple-form.$invalid" translate>{{ 'app.shared.buttons.save' }}</button>
+  <button name="button" class="btn btn-warning m-t" ng-click="save(setting)" ng-disabled="settingSelectMultipleForm.$invalid" translate>{{ 'app.shared.buttons.save' }}</button>
 </form>
 
 <script type="text/ng-template" id="newSelectOption.html">
diff --git a/app/assets/templates/admin/settings/select.html b/app/assets/templates/admin/settings/select.html
index dac0e8b4c..69541bb72 100644
--- a/app/assets/templates/admin/settings/select.html
+++ b/app/assets/templates/admin/settings/select.html
@@ -1,4 +1,4 @@
-<form class="{{classes}}" name="setting-select-form">
+<form class="{{classes}}" name="settingSelectForm">
   <div class="form-group">
       <label for="setting-{{setting.name}}" class="control-label m-r" translate>{{ label }}</label>
       <select class="form-control"
@@ -12,5 +12,5 @@
         <option ng-if="option5" ng-value="option5[0]" translate>{{ option5[1] }}</option>
       </select>
   </div>
-  <button name="button" class="btn btn-warning m-t" ng-click="save(setting)" ng-disabled="setting-select-form.$invalid" translate>{{ 'app.shared.buttons.save' }}</button>
+  <button name="button" class="btn btn-warning m-t" ng-click="save(setting)" ng-disabled="settingSelectForm.$invalid" translate>{{ 'app.shared.buttons.save' }}</button>
 </form>
diff --git a/app/assets/templates/admin/settings/text.html b/app/assets/templates/admin/settings/text.html
index de543cdf3..c4c895e9b 100644
--- a/app/assets/templates/admin/settings/text.html
+++ b/app/assets/templates/admin/settings/text.html
@@ -1,4 +1,4 @@
-<form class="{{classes}}" name="setting-text-form">
+<form class="{{classes}}" name="settingTextForm">
   <label for="setting-{{setting.name}}" class="control-label m-r" translate>{{ label }}</label>
   <div ng-class="{'form-group': faIcon}">
       <div ng-class="{'input-group': faIcon}">
@@ -10,8 +10,11 @@
                  id="setting-{{setting.name}}"
                  placeholder="{{placeholder}}"
                  ng-model="setting.value"
-                 ng-required="required">
+                 ng-required="required"
+                 ng-minlength="minLength"
+                 ng-maxlength="maxLength"
+                 ng-readonly="readOnly">
       </div>
   </div>
-  <button name="button" class="btn btn-warning m-t" ng-click="save(setting)" ng-disabled="setting-text-form.$invalid" translate>{{ 'app.shared.buttons.save' }}</button>
+  <button name="button" class="btn btn-warning m-t" ng-click="save(setting)" ng-disabled="settingTextForm.$invalid || readOnly" translate>{{ 'app.shared.buttons.save' }}</button>
 </form>
diff --git a/app/controllers/api/payments_controller.rb b/app/controllers/api/payments_controller.rb
index 04f565a8c..3c5353efe 100644
--- a/app/controllers/api/payments_controller.rb
+++ b/app/controllers/api/payments_controller.rb
@@ -27,7 +27,7 @@ class API::PaymentsController < API::ApiController
           {
             payment_method: params[:payment_method_id],
             amount: amount[:amount],
-            currency: Rails.application.secrets.stripe_currency,
+            currency: Setting.get('stripe_currency'),
             confirmation_method: 'manual',
             confirm: true,
             customer: current_user.stp_customer_id
@@ -56,6 +56,16 @@ class API::PaymentsController < API::ApiController
     render generate_payment_response(intent, res)
   end
 
+  def online_payment_status
+    authorize :payment
+
+    key = Setting.get('stripe_secret_key')
+    render json: { status: false } and return unless key
+
+    charges = Stripe::Charge.list({ limit: 1 }, { api_key: key })
+    render json: { status: charges.data.length.positive? }
+  end
+
   private
 
   def on_reservation_success(intent, details)
diff --git a/app/models/setting.rb b/app/models/setting.rb
index 80b961c63..a8e8fe604 100644
--- a/app/models/setting.rb
+++ b/app/models/setting.rb
@@ -98,7 +98,8 @@ class Setting < ApplicationRecord
                              openlab_default
                              online_payment_module
                              stripe_public_key
-                             stripe_secret_key] }
+                             stripe_secret_key
+                             stripe_currency] }
   # WARNING: when adding a new key, you may also want to add it in app/policies/setting_policy.rb#public_whitelist
 
   def value
diff --git a/app/policies/payment_policy.rb b/app/policies/payment_policy.rb
new file mode 100644
index 000000000..168f64399
--- /dev/null
+++ b/app/policies/payment_policy.rb
@@ -0,0 +1,8 @@
+# frozen_string_literal: true
+
+# Check the access policies for API::PaymentsController
+class PaymentPolicy < ApplicationPolicy
+  def online_payment_status?
+    user.admin?
+  end
+end
diff --git a/app/workers/sync_members_on_stripe_worker.rb b/app/workers/sync_members_on_stripe_worker.rb
index f2254437d..1b811d479 100644
--- a/app/workers/sync_members_on_stripe_worker.rb
+++ b/app/workers/sync_members_on_stripe_worker.rb
@@ -12,9 +12,9 @@ class SyncMembersOnStripeWorker
       logger.debug "#{index} / #{total}"
       begin
         stp_customer = Stripe::Customer.retrieve(member.stp_customer_id, api_key: Setting.get('stripe_secret_key'))
-        StripeWorker.perform(:create_stripe_customer, member.id) if stp_customer.nil? || stp_customer[:deleted]
+        StripeWorker.new.create_stripe_customer(member.id) if stp_customer.nil? || stp_customer[:deleted]
       rescue Stripe::InvalidRequestError
-        StripeWorker.perform(:create_stripe_customer, member.id)
+        StripeWorker.new.create_stripe_customer(member.id)
       end
     end
     logger.debug 'Sync is done'
diff --git a/config/locales/app.admin.en.yml b/config/locales/app.admin.en.yml
index 6666fe01a..b0cb70ce8 100644
--- a/config/locales/app.admin.en.yml
+++ b/config/locales/app.admin.en.yml
@@ -627,6 +627,10 @@ en:
           stripe_keys_saved: "Stripe keys successfully saved."
           error_saving_stripe_keys: "Unable to save the Stripe keys. Please try again later."
           edit_keys: "Edit keys"
+          currency: "Currency"
+          currency_info_html: "Please specify below the currency used for online payment. You should provide a three-letter ISO code, from the list of <a href='https://stripe.com/docs/currencies' target='_blank'>Stripe supported currencies</a>."
+          currency_alert_html: "<strong>Warning</strong>: the currency cannot be changed after the first online payment was made. Please define this setting carefully before opening Fab-manager to your members."
+          stripe_currency: "Stripe currency"
       #management of users, labels, groups, and so on
       members:
         users_management: "Users management"
@@ -1096,6 +1100,7 @@ en:
         openlab_app_secret: "OpenLab secret"
         openlab_default: "default gallery view"
         online_payment_module: "online payment module"
+        stripe_currency: "Stripe currency"
         general:
           general: "General"
           title: "Title"
diff --git a/config/locales/app.admin.fr.yml b/config/locales/app.admin.fr.yml
index 47c0581e2..4abdeb9bd 100644
--- a/config/locales/app.admin.fr.yml
+++ b/config/locales/app.admin.fr.yml
@@ -627,6 +627,10 @@ fr:
           stripe_keys_saved: "Les clefs Stripe ont bien été enregistrées."
           error_saving_stripe_keys: "Impossible d'enregitrer les clefs Stripe. Veuillez réessayer ultérieurement."
           edit_keys: "Modifier les clefs"
+          currency: "Devise"
+          currency_info_html: "Veuillez indiquer la devise à utiliser lors des paiements en ligne. Vous devez fournir un code ISO à trois lettres, issu de la liste des <a href='https://stripe.com/docs/currencies' target='_blank'>devises supportées par Stripe</a>."
+          currency_alert_html: "<strong>Attention</strong> : la devise ne peut pas être modifiée après que le premier payment en ligne ait été effectué. Veuillez définir attentivement ce paramètre avant d'ouvrir Fab-manager à vos members."
+          stripe_currency: "Devise Stripe"
       #management of users, labels, groups, and so on
       members:
         users_management: "Gestion des utilisateurs"
@@ -1096,6 +1100,7 @@ fr:
         openlab_app_secret: "secret OpenLab"
         openlab_default: "l'affichage par défaut de la galerie"
         online_payment_module: "module de paiement en ligne"
+        stripe_currency: "la devise Stripe"
         general:
           general: "Général"
           title: "Titre"
diff --git a/config/routes.rb b/config/routes.rb
index f29ea4b6f..d98ab79dd 100644
--- a/config/routes.rb
+++ b/config/routes.rb
@@ -164,6 +164,7 @@ Rails.application.routes.draw do
 
     # payments handling
     post 'payments/confirm_payment' => 'payments/confirm_payment'
+    get 'payments/online_payment_status' => 'payments/online_payment_status'
 
     # FabAnalytics
     get 'analytics/data' => 'analytics#data'
diff --git a/config/secrets.yml b/config/secrets.yml
index f97719c71..8235eef53 100644
--- a/config/secrets.yml
+++ b/config/secrets.yml
@@ -12,7 +12,6 @@
 
 development:
   secret_key_base: <%= ENV["SECRET_KEY_BASE"] %>
-  stripe_currency: <%= ENV["STRIPE_CURRENCY"] %>
   fablab_without_wallet: <%= ENV["FABLAB_WITHOUT_WALLET"] %>
   user_confirmation_needed_to_sign_in: <%= ENV["USER_CONFIRMATION_NEEDED_TO_SIGN_IN"] %>
   default_host: <%= ENV["DEFAULT_HOST"] %>
@@ -42,7 +41,6 @@ development:
 
 test:
   secret_key_base: 83daf5e7b80d990f037407bab78dff9904aaf3c195a50f84fa8695a22287e707dfbd9524b403b1dcf116ae1d8c06844c3d7ed942564e5b46be6ae3ead93a9d30
-  stripe_currency: usd
   fablab_without_wallet: false
   user_confirmation_needed_to_sign_in: <%= ENV["USER_CONFIRMATION_NEEDED_TO_SIGN_IN"] %>
   default_host: <%= ENV["DEFAULT_HOST"] %>
@@ -72,7 +70,6 @@ test:
 
 staging:
   secret_key_base: <%= ENV["SECRET_KEY_BASE"] %>
-  stripe_currency: <%= ENV["STRIPE_CURRENCY"] %>
   fablab_without_wallet: <%= ENV["FABLAB_WITHOUT_WALLET"] %>
   user_confirmation_needed_to_sign_in: <%= ENV["USER_CONFIRMATION_NEEDED_TO_SIGN_IN"] %>
   default_host: <%= ENV["DEFAULT_HOST"] %>
@@ -113,7 +110,6 @@ staging:
 # instead read values from the environment.
 production:
   secret_key_base: <%= ENV["SECRET_KEY_BASE"] %>
-  stripe_currency: <%= ENV["STRIPE_CURRENCY"] %>
   fablab_without_wallet: <%= ENV["FABLAB_WITHOUT_WALLET"] %>
   user_confirmation_needed_to_sign_in: <%= ENV["USER_CONFIRMATION_NEEDED_TO_SIGN_IN"] %>
   default_host: <%= ENV["DEFAULT_HOST"] %>
diff --git a/db/seeds.rb b/db/seeds.rb
index f71336982..d44cc9e1e 100644
--- a/db/seeds.rb
+++ b/db/seeds.rb
@@ -880,6 +880,8 @@ unless Setting.find_by(name: 'allowed_cad_mime_types').try(:value)
   )
 end
 
+Setting.set('stripe_currency', 'EUR') unless Setting.find_by(name: 'stripe_currency').try(:value)
+
 if StatisticCustomAggregation.count.zero?
   # available reservations hours for machines
   machine_hours = StatisticType.find_by(key: 'hour', statistic_index_id: 2)
diff --git a/doc/environment.md b/doc/environment.md
index 4fe46d30d..058404285 100644
--- a/doc/environment.md
+++ b/doc/environment.md
@@ -51,16 +51,6 @@ When using docker-compose, you should provide the name of the service in your [d
 Used by the authentication system to generate random tokens, eg. for resetting passwords.
 Used by Rails to verify the integrity of signed cookies.
 You can generate such a random key by running `rails secret`.
-<a name="STRIPE_CURRENCY"></a>
-
-    STRIPE_CURRENCY
-
-Currency used by stripe to charge the final customer.
-See https://support.stripe.com/questions/which-currencies-does-stripe-support for a list of available 3-letters ISO code.
-
-**BEWARE**: stripe currency cannot be changed during the application life.
-Changing the currency after the application has already run, may result in several bugs and prevent the users to pay through stripe.
-So set this setting carefully before starting the application for the first time.
 <a name="INVOICE_PREFIX"></a>
 
     INVOICE_PREFIX
diff --git a/env.example b/env.example
index 01a486ce6..1d2f3f05a 100644
--- a/env.example
+++ b/env.example
@@ -6,9 +6,7 @@ POSTGRES_PASSWORD=
 REDIS_HOST=fabmanager-redis
 ELASTICSEARCH_HOST=fabmanager-elastic
 
-# Stripe
 SECRET_KEY_BASE=83daf5e7b80d990f037407bab78dff9904aaf3c195a50f84fa8695a22287e707dfbd9524b403b1dcf116ae1d8c06844c3d7ed942564e5b46be6ae3ead93a9d30
-STRIPE_CURRENCY=eur
 
 # Invoices
 INVOICE_PREFIX=Demo-FabLab_facture
diff --git a/lib/tasks/fablab/setup.rake b/lib/tasks/fablab/setup.rake
index 1a46272e7..a4e819804 100644
--- a/lib/tasks/fablab/setup.rake
+++ b/lib/tasks/fablab/setup.rake
@@ -128,7 +128,8 @@ namespace :fablab do
         %w[_ OPENLAB_DEFAULT openlab_default],
         %w[! FABLAB_WITHOUT_ONLINE_PAYMENT online_payment_module false],
         %w[_ STRIPE_PUBLISHABLE_KEY stripe_public_key],
-        %w[_ STRIPE_API_KEY stripe_secret_key]
+        %w[_ STRIPE_API_KEY stripe_secret_key],
+        %w[_ STRIPE_CURRENCY stripe_currency]
       ]
 
       mapping.each do |m|
diff --git a/setup/env.example b/setup/env.example
index a28c68530..251c7a218 100644
--- a/setup/env.example
+++ b/setup/env.example
@@ -4,8 +4,6 @@ ELASTICSEARCH_HOST=elasticsearch
 
 SECRET_KEY_BASE=
 
-STRIPE_CURRENCY=eur
-
 INVOICE_PREFIX=Demo-FabLab_facture
 FABLAB_WITHOUT_ONLINE_PAYMENT=false
 PHONE_REQUIRED=false
diff --git a/setup/setup.sh b/setup/setup.sh
index 3bba3e331..ef4133bc0 100755
--- a/setup/setup.sh
+++ b/setup/setup.sh
@@ -234,7 +234,7 @@ configure_env_file()
 
   local doc variables secret
   doc=$(\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/doc/environment.md)
-  variables=(STRIPE_CURRENCY INVOICE_PREFIX FABLAB_WITHOUT_ONLINE_PAYMENT FABLAB_WITHOUT_WALLET \
+  variables=(INVOICE_PREFIX FABLAB_WITHOUT_ONLINE_PAYMENT FABLAB_WITHOUT_WALLET \
    USER_CONFIRMATION_NEEDED_TO_SIGN_IN DEFAULT_HOST DEFAULT_PROTOCOL DELIVERY_METHOD SMTP_ADDRESS SMTP_PORT SMTP_USER_NAME SMTP_PASSWORD SMTP_AUTHENTICATION \
    SMTP_ENABLE_STARTTLS_AUTO SMTP_OPENSSL_VERIFY_MODE SMTP_TLS \
    LOG_LEVEL MAX_IMAGE_SIZE MAX_CAO_SIZE MAX_IMPORT_SIZE DISK_SPACE_MB_ALERT \
diff --git a/test/fixtures/history_values.yml b/test/fixtures/history_values.yml
index b4bf61b85..5ad2c2d28 100644
--- a/test/fixtures/history_values.yml
+++ b/test/fixtures/history_values.yml
@@ -653,3 +653,11 @@ history_value_68:
   value: <%= ENV["STRIPE_API_KEY"] %>
   created_at: 2020-06-08 17:12:16.846525000 Z
   updated_at: 2020-06-08 17:12:16.846525000 Z
+
+history_value_69:
+  id: 69
+  setting_id: 69
+  invoicing_profile_id: 1
+  value: usd
+  created_at: 2020-06-08 17:12:16.846525000 Z
+  updated_at: 2020-06-08 17:12:16.846525000 Z
diff --git a/test/fixtures/settings.yml b/test/fixtures/settings.yml
index afe6fa1e4..f886f618b 100644
--- a/test/fixtures/settings.yml
+++ b/test/fixtures/settings.yml
@@ -400,3 +400,9 @@ setting_68:
   name: stripe_secret_key
   created_at: 2020-06-08 17:12:16.846525000 Z
   updated_at: 2020-06-08 17:12:16.846525000 Z
+
+setting_69:
+  id: 69
+  name: stripe_currency
+  created_at: 2020-06-08 17:12:16.846525000 Z
+  updated_at: 2020-06-08 17:12:16.846525000 Z