# frozen_string_literal: true # API Controller for handling payments process in the front-end class API::PaymentsController < API::ApiController before_action :authenticate_user! ## # Client requests to confirm a card payment will ask this endpoint. # It will check for the need of a strong customer authentication (SCA) to confirm the payment or confirm that the payment # was successfully made. After the payment was made, the reservation/subscription will be created ## def confirm_payment begin if params[:payment_method_id].present? # Check the coupon unless coupon_params[:coupon_code].nil? coupon = Coupon.find_by(code: coupon_params[:coupon_code]) raise InvalidCouponError if coupon.nil? || coupon.status(current_user.id) != 'active' end # Compute the price reservable = cart_items_params[:reservable_type].constantize.find(cart_items_params[:reservable_id]) price_details = Price.compute(false, current_user, reservable, cart_items_params[:slots_attributes] || [], cart_items_params[:plan_id], cart_items_params[:nb_reserve_places], cart_items_params[:tickets_attributes], coupon_params[:coupon_code]) # Subtract wallet amount from total total = price_details[:total] wallet_debit = get_wallet_debit(current_user, total) # Create the PaymentIntent intent = Stripe::PaymentIntent.create( payment_method: params[:payment_method_id], amount: total - wallet_debit, currency: Rails.application.secrets.stripe_currency, confirmation_method: 'manual', confirm: true ) elsif params[:payment_intent_id].present? intent = Stripe::PaymentIntent.confirm(params[:payment_intent_id]) end rescue Stripe::CardError => e # Display error on client render(status: 200, json: { error: e.message }) and return end render(on_payment_success) and return if intent.status == 'succeeded' render generate_payment_response(intent) end private def on_payment_success # TODO create subscription is needed user_id = params[:cart_items][:reservation][:user_id] @reservation = Reservation.new(reservation_params) is_reserve = Reservations::Reserve.new(user_id, current_user.invoicing_profile.id) .pay_and_save(@reservation, coupon_params[:coupon_code]) if is_reserve SubscriptionExtensionAfterReservation.new(@reservation).extend_subscription_if_eligible { template: 'api/reservations/show', status: :created, location: @reservation } else { json: @reservation.errors, status: :unprocessable_entity } end rescue InvalidCouponError { json: { coupon_code: 'wrong coupon code or expired' }, status: :unprocessable_entity } end def generate_payment_response(intent) if intent.status == 'requires_action' && intent.next_action.type == 'use_stripe_sdk' # Tell the client to handle the action { status: 200, json: { requires_action: true, payment_intent_client_secret: intent.client_secret } } elsif intent.status == 'succeeded' # The payment didn't need any additional actions and is completed! # Handle post-payment fulfillment { status: 200, json: { success: true } } else # Invalid status { status: 500, json: { error: 'Invalid PaymentIntent status' } } end end def get_wallet_debit(user, total_amount) wallet_amount = (user.wallet.amount * 100).to_i wallet_amount >= total_amount ? total_amount : wallet_amount end def reservation_params params[:cart_items].require(:reservation).permit(:reservable_id, :reservable_type, :plan_id, :nb_reserve_places, tickets_attributes: %i[event_price_category_id booked], slots_attributes: %i[id start_at end_at availability_id offered]) end def cart_items_params params[:cart_items].require(:reservation).permit(:reservable_id, :reservable_type, :plan_id, :user_id, :nb_reserve_places, tickets_attributes: %i[event_price_category_id booked], slots_attributes: %i[id start_at end_at availability_id offered]) end def coupon_params params.require(:cart_items).permit(:coupon_code) end end