From 6643c2df6bfca2e2234b7ca87e5fb23db64b482c Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 13:28:32 -0700 Subject: [PATCH 01/28] add Payment provider and status enum add migration to payments model enum status enum provider rename status to old_status --- .rubocop_todo.yml | 1 + db/data/20240806020511_payment_status.rb | 15 +++++++++++++++ db/data_schema.rb | 2 +- db/migrate/20240806011401_payment_provider.rb | 11 +++++++++++ 4 files changed, 28 insertions(+), 1 deletion(-) create mode 100644 db/data/20240806020511_payment_status.rb create mode 100644 db/migrate/20240806011401_payment_provider.rb diff --git a/.rubocop_todo.yml b/.rubocop_todo.yml index 36b2c560..ab59876a 100644 --- a/.rubocop_todo.yml +++ b/.rubocop_todo.yml @@ -107,6 +107,7 @@ Rails/BulkChangeTable: - 'db/migrate/20240728211432_remove_ea_ld.rb' - 'db/migrate/20240728223048_event_prices_as_integers.rb' - 'db/migrate/20240729210234_ticket_requests_cleanup.rb' + - 'db/migrate/20240806011401_payment_provider.rb' # Offense count: 3 # Configuration parameters: Include. diff --git a/db/data/20240806020511_payment_status.rb b/db/data/20240806020511_payment_status.rb new file mode 100644 index 00000000..939a7b40 --- /dev/null +++ b/db/data/20240806020511_payment_status.rb @@ -0,0 +1,15 @@ +# frozen_string_literal: true + +class PaymentStatus < ActiveRecord::Migration[7.1] + def up + matrix = {'N' => 'new', 'P' => 'in progress', 'R' => 'received', 'F' => 'refunded'} + Payment.find_each do |p| + p.status = matrix[p.old_status] + p.save! + end + end + + def down + raise ActiveRecord::IrreversibleMigration + end +end diff --git a/db/data_schema.rb b/db/data_schema.rb index db9a9c2b..18556d88 100644 --- a/db/data_schema.rb +++ b/db/data_schema.rb @@ -1 +1 @@ -DataMigrate::Data.define(version: 20240730034256) +DataMigrate::Data.define(version: 20240806020511) diff --git a/db/migrate/20240806011401_payment_provider.rb b/db/migrate/20240806011401_payment_provider.rb new file mode 100644 index 00000000..60889598 --- /dev/null +++ b/db/migrate/20240806011401_payment_provider.rb @@ -0,0 +1,11 @@ +class PaymentProvider < ActiveRecord::Migration[7.1] + + def change + create_enum :payment_provider, ["stripe", "cash", "other"] + create_enum :payment_status, ["new", "in_progress", "received", "refunded"] + rename_column :payments, :status, :old_status + + add_column :payments, :provider, :enum, enum_type: :payment_provider, default: "stripe", null: false + add_column :payments, :status, :enum, enum_type: :payment_status, default: "new", null: false + end +end From 744f2deb36b52044add6a607324707e0a1c7025c Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 13:28:44 -0700 Subject: [PATCH 02/28] clean unused code --- app/helpers/payments_helper.rb | 7 ------- 1 file changed, 7 deletions(-) delete mode 100644 app/helpers/payments_helper.rb diff --git a/app/helpers/payments_helper.rb b/app/helpers/payments_helper.rb deleted file mode 100644 index 9c9c2f58..00000000 --- a/app/helpers/payments_helper.rb +++ /dev/null @@ -1,7 +0,0 @@ -# frozen_string_literal: true - -module PaymentsHelper - def extra_amount_to_charge(_original_amount) - 0 - end -end From 2b66f246bc859b59240b27c345de0e2d8aea0b46 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 13:29:00 -0700 Subject: [PATCH 03/28] remove unused payment helper --- app/mailers/payment_mailer.rb | 2 -- 1 file changed, 2 deletions(-) diff --git a/app/mailers/payment_mailer.rb b/app/mailers/payment_mailer.rb index fdc3ea8f..ad0a7e35 100644 --- a/app/mailers/payment_mailer.rb +++ b/app/mailers/payment_mailer.rb @@ -1,8 +1,6 @@ # frozen_string_literal: true class PaymentMailer < ApplicationMailer - include PaymentsHelper - def payment_received(payment) self.payment = payment From 14c5e3aea188e80708baa9edc058190bf25a9e1a Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 13:30:48 -0700 Subject: [PATCH 04/28] payment model updates add provider and status enum remove all status from const cleanup logic around payments add cancel payment intent method --- app/models/payment.rb | 89 +++++++++++++++++++-------------------- db/structure.sql | 30 ++++++++++++- spec/factories/payment.rb | 1 - 3 files changed, 71 insertions(+), 49 deletions(-) diff --git a/app/models/payment.rb b/app/models/payment.rb index ae801078..d3ee1b52 100644 --- a/app/models/payment.rb +++ b/app/models/payment.rb @@ -6,7 +6,9 @@ # # id :bigint not null, primary key # explanation :string -# status :string(1) default("N"), not null +# old_status :string(1) default("N"), not null +# provider :enum default("stripe"), not null +# status :enum default("new"), not null # created_at :datetime not null # updated_at :datetime not null # stripe_charge_id :string(255) @@ -19,42 +21,29 @@ # index_payments_on_stripe_payment_id (stripe_payment_id) # -# @description Payment record from Stripe +# @description Payment record from Provider # @deprecated stripe_charge_id + class Payment < ApplicationRecord - include PaymentsHelper - - # TOOD: Change to Enum - STATUSES = [ - STATUS_NEW = 'N', - STATUS_IN_PROGRESS = 'P', - STATUS_RECEIVED = 'R', - STATUS_REFUNDED = 'F' # canceled, refunded - ].freeze - - STATUS_NAMES = { - 'N' => 'New', - 'P' => 'In Progress', - 'R' => 'Received', - 'F' => 'Refunded' - }.freeze + enum :provider, { stripe: 'stripe', cash: 'cash', other: 'other' }, prefix: true + enum :status, { new: 'new', in_progress: 'in_progress', received: 'received', refunded: 'refunded' }, prefix: true belongs_to :ticket_request attr_accessible :ticket_request_id, :ticket_request_attributes, - :status, :stripe_payment_id, :explanation + :status, :provider, :stripe_payment_id, :explanation accepts_nested_attributes_for :ticket_request, reject_if: :modifying_forbidden_attributes? validates :ticket_request, uniqueness: { message: 'ticket request has already been paid' } - validates :status, presence: true, inclusion: { in: STATUSES } # stripe payment objects attr_accessor :payment_intent, :refund - # Create new Payment - # Create Stripe PaymentIntent + delegate :can_view?, to: :ticket_request + + # Create new Payment with Stripe PaymentIntent # Set status Payment def save_with_payment_intent # only save 1 payment intent @@ -65,7 +54,6 @@ def save_with_payment_intent # calculate cost from Ticket Request cost = calculate_cost - Rails.logger.debug { "save_with_payment_intent: cost => #{cost}}" } begin @@ -78,8 +66,9 @@ def save_with_payment_intent false end - # payment is in progress, not completed - self.status = STATUS_IN_PROGRESS + # stripe payment is in progress + self.provider = :stripe unless provider_stripe? + self.status = :in_progress unless status_in_progress? save payment_intent @@ -103,9 +92,8 @@ def retrieve_or_save_payment_intent # Calculate ticket cost from ticket request in cents def calculate_cost - cost = ticket_request.cost - amount_to_charge = cost + extra_amount_to_charge(cost) - (amount_to_charge * 100).to_i + cost = ticket_request.cost + (cost * 100).to_i end def dollar_cost @@ -139,7 +127,7 @@ def payment_intent_client_secret end def retrieve_payment_intent - return unless stripe_payment_id + return unless stripe_payment? self.payment_intent = Stripe::PaymentIntent.retrieve(stripe_payment_id) @@ -152,6 +140,16 @@ def retrieve_payment_intent Rails.logger.debug { "retrieve_payment_intent payment => #{inspect}}" } end + # XXX need to test + # cancel Stripe PaymentIntent if is in progress + def cancel_payment_intent + return if !stripe_payment? || !status_in_progress? + + Rails.logger.info "cancel_payment_intent: #{id} provider: #{provider} stripe_payment_id: #{stripe_payment_id} status: #{status}" + response = Stripe::PaymentIntent.cancel(stripe_payment_id, {cancellation_reason: 'requested_by_customer'}) + self.payment_intent = response if response.present? + end + # https://docs.stripe.com/api/refunds # reasons duplicate, fraudulent, or requested_by_customer def refund_payment(reason: 'requested_by_customer') @@ -166,7 +164,7 @@ def refund_payment(reason: 'requested_by_customer') ticket_request_id: ticket_request.id, ticket_request_user_id: ticket_request.user_id } }) self.stripe_refund_id = refund.id - self.status = STATUS_REFUNDED + self.status = :refunded Rails.logger.info { "refund_payment success stripe_refund_id [#{stripe_refund_id}] status [#{status}]" } log_refund(refund) save! @@ -181,49 +179,48 @@ def refund_payment(reason: 'requested_by_customer') end def payment_in_progress? - payment_intent.present? && status == STATUS_IN_PROGRESS + payment_intent.present? && status_in_progress? end def status_name - STATUS_NAMES[status] + status.humanize end # Manually mark that a payment was received. def mark_received - update status: STATUS_RECEIVED + status_received! end - delegate :can_view?, to: :ticket_request - def in_progress? - status == STATUS_IN_PROGRESS + status_in_progress? end def stripe_payment? - stripe_payment_id.present? + provider_stripe? && stripe_payment_id.present? end def received? - stripe_payment? && status == STATUS_RECEIVED + stripe_payment? && status_received? end def refunded? - status == STATUS_REFUNDED && stripe_refund_id.present? + stripe_payment? && status_refunded? end def refundable? received? && !refunded? end - private - - def log_payment - Rails.logger.info "Payment => id: #{id.colorize(:yellow)}, " \ - "status: #{status.colorize(:green)}, " \ - "user: #{ticket_request.user.email.colorize(:blue)}, " \ - "amount: #{intent_amount}" + # XXX test + # @deprecated method for converting old status + def convert_old_status! + @matrix ||= {'N' => 'new', 'P' => 'in progress', 'R' => 'received', 'F' => 'refunded'} + self.status = @matrix[old_status] + save! end + private + def log_intent(payment_intent) intent_amount = '$%.2f'.colorize(:red) % (payment_intent['amount'].to_i / 100.0) Rails.logger.info "Payment Intent => id: #{payment_intent['id'].colorize(:yellow)}, " \ diff --git a/db/structure.sql b/db/structure.sql index b7bf23fa..23652cbe 100644 --- a/db/structure.sql +++ b/db/structure.sql @@ -9,6 +9,29 @@ SET xmloption = content; SET client_min_messages = warning; SET row_security = off; +-- +-- Name: payment_provider; Type: TYPE; Schema: public; Owner: - +-- + +CREATE TYPE public.payment_provider AS ENUM ( + 'stripe', + 'cash', + 'other' +); + + +-- +-- Name: payment_status; Type: TYPE; Schema: public; Owner: - +-- + +CREATE TYPE public.payment_status AS ENUM ( + 'new', + 'in_progress', + 'received', + 'refunded' +); + + SET default_tablespace = ''; SET default_table_access_method = heap; @@ -220,12 +243,14 @@ CREATE TABLE public.payments ( id bigint NOT NULL, ticket_request_id integer NOT NULL, stripe_charge_id character varying(255), - status character varying(1) DEFAULT 'N'::character varying NOT NULL, + old_status character varying(1) DEFAULT 'N'::character varying NOT NULL, created_at timestamp(6) without time zone NOT NULL, updated_at timestamp(6) without time zone NOT NULL, explanation character varying, stripe_payment_id character varying, - stripe_refund_id character varying + stripe_refund_id character varying, + provider public.payment_provider DEFAULT 'stripe'::public.payment_provider NOT NULL, + status public.payment_status DEFAULT 'new'::public.payment_status NOT NULL ); @@ -902,6 +927,7 @@ ALTER TABLE ONLY public.ticket_request_event_addons SET search_path TO "$user", public; INSERT INTO "schema_migrations" (version) VALUES +('20240806011401'), ('20240729210234'), ('20240728223048'), ('20240728211432'), diff --git a/spec/factories/payment.rb b/spec/factories/payment.rb index 5b5d989b..c84dbeae 100644 --- a/spec/factories/payment.rb +++ b/spec/factories/payment.rb @@ -3,7 +3,6 @@ FactoryBot.define do factory :payment do ticket_request - status { Payment::STATUS_NEW } stripe_payment_id { SecureRandom.hex } end end From 797da9f6a07fac2b4d1821c0a50f824cfd194a59 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 13:31:45 -0700 Subject: [PATCH 05/28] payment controller and views change to use payment enums cleanup view logic for new payment --- app/controllers/payments_controller.rb | 30 ++++++++++---------------- app/views/payments/new.html.haml | 19 ++++++++-------- 2 files changed, 20 insertions(+), 29 deletions(-) diff --git a/app/controllers/payments_controller.rb b/app/controllers/payments_controller.rb index 0f709c4c..abee2171 100644 --- a/app/controllers/payments_controller.rb +++ b/app/controllers/payments_controller.rb @@ -6,7 +6,8 @@ class PaymentsController < ApplicationController before_action :set_event before_action :set_ticket_request before_action :set_payment - before_action :validate_payment, except: [:confirm] + before_action :initialize_payment, except: %i[show confirm other] + before_action :validate_payment, except: %i[confirm] def show Rails.logger.debug { "#show() => @ticket_request = #{@ticket_request&.inspect} params: #{params}" } @@ -15,7 +16,6 @@ def show def new Rails.logger.debug { "#new() => @ticket_request = #{@ticket_request&.inspect}" } - initialize_payment end # Creates new Payment @@ -23,9 +23,6 @@ def new def create Rails.logger.debug { "#create() => @ticket_request = #{@ticket_request&.inspect} params: #{params}" } - # init the payment, user from ticket request - initialize_payment - # check to see if we have an existing stripe payment intent. retrieve or save @payment.retrieve_or_save_payment_intent @@ -65,7 +62,6 @@ def confirm # init and mark the payment as completed. # Annotate that manual was set def manual_confirmation - initialize_payment @payment.update(explanation: 'manual confirm') @payment.reload Rails.logger.info("#manual_confirm() => @payment #{@payment.inspect}") @@ -78,9 +74,13 @@ def other end # handle other forms of payment than credit card / stripe + # set payment provider and cancel the Stripe PaymentIntent def sent - initialize_payment - @payment.update(explanation: permitted_params[:explanation], status: Payment::STATUS_IN_PROGRESS) + # set explanation, provider, status. + @payment.update(explanation: permitted_params[:explanation], + status: :in_progress, + provider: :other) + @payment.cancel_payment_intent @payment.reload Rails.logger.info("#sent() => @payment #{@payment.inspect}") @@ -93,6 +93,7 @@ def sent def mark_payment_completed Payment.transaction do + # if we have a payment explanation, mark as other. else mark received @payment.mark_received @payment.ticket_request.mark_complete @payment.reload @@ -128,16 +129,6 @@ def set_payment end end - # initialize payment and save stripe payment intent - def save_payment_intent - initialize_payment - return redirect_to root_path unless @payment.present? && @payment.can_view?(current_user) - - @payment.save_with_payment_intent.tap do |result| - flash.now[:error] = @payment.errors.full_messages.to_sentence unless result - end - end - def initialize_payment @stripe_publishable_api_key ||= Rails.configuration.stripe[:publishable_api_key] @@ -186,7 +177,7 @@ def validate_payment_confirmation # has to have a stripe payment id and payment must not already be received unless @payment.stripe_payment? Rails.logger.error("Invalid payment confirmation id: #{@payment.id} missing stripe_payment_id") - return root_path, alert: 'This payment request is missing the stripe payment.' + return root_path, alert: 'This payment request is not a valid stripe payment.' end nil @@ -199,6 +190,7 @@ def permitted_params :ticket_request_id, :stripe_payment_id, :payment_intent, + :provider, :explanation, payment: %i[ ticket_request diff --git a/app/views/payments/new.html.haml b/app/views/payments/new.html.haml index 57477634..8bd147a4 100644 --- a/app/views/payments/new.html.haml +++ b/app/views/payments/new.html.haml @@ -9,24 +9,24 @@ %h4 Hi, #{@user.first_name} - - if @event.tickets_require_approval .card-body.bg-success-subtle %table.w-100 %thead - %tr - %th - Your request for - %strong - = @ticket_request.adults - = 'ticket'.pluralize(@ticket_request.total_tickets) - has been approved! + - if @event.tickets_require_approval + %tr + %th + Your request for + %strong + = @ticket_request.adults + = 'ticket'.pluralize(@ticket_request.total_tickets) + has been approved! %tbody %tr %td.w-100{colspan: 2} %hr.w-100 %tr - %td= "Total Price for Tickets:" + %td= "Total Price:" %td.text-end %strong %span{ class: ('label label-info' if @ticket_request.special_price) } @@ -59,7 +59,6 @@ = link_to 'I am not paying via credit card', other_event_ticket_request_payment_path(@event, @ticket_request) - - else .card-body.bg-success %p.lead.text-success You're almost done! All that's left is to purchase your From 02400e1ba732b74fe667df09a6f0e9db0e18c522 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 13:31:57 -0700 Subject: [PATCH 06/28] payments specs --- spec/controllers/payments_controller_spec.rb | 8 +-- spec/models/payment_spec.rb | 75 ++++++++++++++++---- 2 files changed, 66 insertions(+), 17 deletions(-) diff --git a/spec/controllers/payments_controller_spec.rb b/spec/controllers/payments_controller_spec.rb index 257746ab..ccc815e3 100644 --- a/spec/controllers/payments_controller_spec.rb +++ b/spec/controllers/payments_controller_spec.rb @@ -6,7 +6,7 @@ let(:event) { create(:event, max_adult_tickets_per_request: 1) } let(:user) { create(:user) } let(:ticket_request) { create(:ticket_request, event:, user:, kids: 0) } - let(:payment) { create(:payment, status: Payment::STATUS_IN_PROGRESS, stripe_payment_id: 'pi_3PF4524ofUrW5ZY40NeGThOz', ticket_request:) } + let(:payment) { create(:payment, status: :in_progress, stripe_payment_id: 'pi_3PF4524ofUrW5ZY40NeGThOz', ticket_request:) } before { sign_in user if user } @@ -18,19 +18,19 @@ end context 'when payment status new' do - let(:payment) { create(:payment, status: Payment::STATUS_NEW, stripe_payment_id: 'pi_3PF4524ofUrW5ZY40NeGThOz', ticket_request:) } + let(:payment) { create(:payment, status: :new, stripe_payment_id: 'pi_3PF4524ofUrW5ZY40NeGThOz', ticket_request:) } it { is_expected.to have_http_status(:redirect) } end context 'when payment status received' do - let(:payment) { create(:payment, status: Payment::STATUS_RECEIVED, stripe_payment_id: 'pi_3PF4524ofUrW5ZY40NeGThOz', ticket_request:) } + let(:payment) { create(:payment, status: :received, stripe_payment_id: 'pi_3PF4524ofUrW5ZY40NeGThOz', ticket_request:) } it { is_expected.to have_http_status(:redirect) } end context 'when no stripe payment exists' do - let(:payment) { create(:payment, status: Payment::STATUS_RECEIVED, stripe_payment_id: nil, ticket_request:) } + let(:payment) { create(:payment, status: :received, stripe_payment_id: nil, ticket_request:) } it { is_expected.to have_http_status(:redirect) } end diff --git a/spec/models/payment_spec.rb b/spec/models/payment_spec.rb index d6d4be43..c5f22502 100644 --- a/spec/models/payment_spec.rb +++ b/spec/models/payment_spec.rb @@ -6,7 +6,9 @@ # # id :bigint not null, primary key # explanation :string -# status :string(1) default("N"), not null +# old_status :string(1) default("N"), not null +# provider :enum default("stripe"), not null +# status :enum default("new"), not null # created_at :datetime not null # updated_at :datetime not null # stripe_charge_id :string(255) @@ -43,21 +45,37 @@ describe '#status' do context 'when in progress' do - let(:payment) { build(:payment, status: Payment::STATUS_IN_PROGRESS) } + let(:payment) { build(:payment, status: 'in_progress') } it { is_expected.to be_valid } end context 'when unknown status' do - let(:payment) { build(:payment, status: 'nope') } + let(:payment) { build(:payment) } - it { is_expected.not_to be_valid } + it 'is not valid to set to unknown status' do + expect { payment.status = 'nope' }.to raise_error(ArgumentError) + end end + end - context 'when not present' do - let(:payment) { build(:payment, status: nil) } + describe 'provider' do + context 'with stripe' do + let(:payment) { build(:payment) } - it { is_expected.not_to be_valid } + it { is_expected.to be_valid } + + it 'has provider of stripe' do + expect(payment.provider).to eq('stripe') + end + end + + context 'when unknown provider' do + let(:payment) { build(:payment) } + + it 'is not valid to set to unknown provider' do + expect { payment.provider = 'nope' }.to raise_error(ArgumentError) + end end end end @@ -91,7 +109,7 @@ it { is_expected.to be_a(Stripe::PaymentIntent) } it 'changes the payment status' do - expect { payment_intent }.to(change(payment, :status).to(Payment::STATUS_IN_PROGRESS)) + expect { payment_intent }.to(change(payment, :status).to('in_progress')) end end @@ -112,6 +130,37 @@ end end + describe '#cancel_payment_intent' do + let(:amount) { 1000 } + let(:payment) { build(:payment, provider: :stripe, status: :in_progress) } + + before do + payment_intent = payment.create_payment_intent(amount) + payment.stripe_payment_id = payment_intent.id + end + + describe 'cancel valid payment intent' do + it 'returns a PaymentIntent' do + expect(payment.cancel_payment_intent).to be_a(Stripe::PaymentIntent) + end + + it 'has the canceled_at set' do + payment.cancel_payment_intent + expect(payment.payment_intent['canceled_at']).to_not be_nil + end + + it 'does not cancel if status not in progress' do + payment.status_refunded! + expect(payment.cancel_payment_intent).to be_nil + end + + it 'does not cancel if not stripe payment' do + payment.provider_cash! + expect(payment.cancel_payment_intent).to be_nil + end + end + end + describe '#retrieve_payment_intent' do subject { payment.create_payment_intent(amount) } @@ -131,7 +180,7 @@ it { is_expected.to be_a(Stripe::PaymentIntent) } it 'changes payment status' do - expect { payment_intent }.to(change(payment, :status).to(Payment::STATUS_IN_PROGRESS)) + expect { payment_intent }.to(change(payment, :status).to('in_progress')) end context 'when stripe payment exists' do @@ -159,12 +208,12 @@ describe '#refunded?' do subject { payment.refunded? } - let(:payment) { build(:payment, status: Payment::STATUS_REFUNDED, stripe_refund_id: 'refundId') } + let(:payment) { build(:payment, status: 'refunded', stripe_refund_id: 'refundId') } it { is_expected.to be_truthy } context 'when payment not refunded' do - let(:payment) { build(:payment, status: Payment::STATUS_RECEIVED) } + let(:payment) { build(:payment, status: 'received') } it { is_expected.to be_falsey } end @@ -173,12 +222,12 @@ describe '#refundable?' do subject { payment.refundable? } - let(:payment) { build(:payment, status: Payment::STATUS_RECEIVED, stripe_refund_id: nil) } + let(:payment) { build(:payment, status: 'received', stripe_refund_id: nil) } it { is_expected.to be_truthy } context 'when payment already refunded' do - let(:payment) { build(:payment, status: Payment::STATUS_REFUNDED, stripe_refund_id: 'refundId') } + let(:payment) { build(:payment, status: 'refunded', stripe_refund_id: 'refundId') } it { is_expected.to be_falsey } end From 921f2a9350565ddfc9d230070a7a7120b89c341e Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 14:43:12 -0700 Subject: [PATCH 07/28] cleanup cancel payment intent --- app/models/payment.rb | 14 +++++++++----- spec/models/payment_spec.rb | 9 ++++++++- 2 files changed, 17 insertions(+), 6 deletions(-) diff --git a/app/models/payment.rb b/app/models/payment.rb index d3ee1b52..be2b421e 100644 --- a/app/models/payment.rb +++ b/app/models/payment.rb @@ -28,19 +28,22 @@ class Payment < ApplicationRecord enum :provider, { stripe: 'stripe', cash: 'cash', other: 'other' }, prefix: true enum :status, { new: 'new', in_progress: 'in_progress', received: 'received', refunded: 'refunded' }, prefix: true + # in case of destroy, clean up any open payment intent + before_destroy :cancel_payment_intent + belongs_to :ticket_request attr_accessible :ticket_request_id, :ticket_request_attributes, :status, :provider, :stripe_payment_id, :explanation + # stripe payment objects + attr_accessor :payment_intent, :refund + accepts_nested_attributes_for :ticket_request, reject_if: :modifying_forbidden_attributes? validates :ticket_request, uniqueness: { message: 'ticket request has already been paid' } - # stripe payment objects - attr_accessor :payment_intent, :refund - delegate :can_view?, to: :ticket_request # Create new Payment with Stripe PaymentIntent @@ -143,7 +146,7 @@ def retrieve_payment_intent # XXX need to test # cancel Stripe PaymentIntent if is in progress def cancel_payment_intent - return if !stripe_payment? || !status_in_progress? + return unless stripe_payment? && status_in_progress? Rails.logger.info "cancel_payment_intent: #{id} provider: #{provider} stripe_payment_id: #{stripe_payment_id} status: #{status}" response = Stripe::PaymentIntent.cancel(stripe_payment_id, {cancellation_reason: 'requested_by_customer'}) @@ -151,6 +154,7 @@ def cancel_payment_intent end # https://docs.stripe.com/api/refunds + # refund strip payment only # reasons duplicate, fraudulent, or requested_by_customer def refund_payment(reason: 'requested_by_customer') return false unless received? @@ -208,7 +212,7 @@ def refunded? end def refundable? - received? && !refunded? + received? end # XXX test diff --git a/spec/models/payment_spec.rb b/spec/models/payment_spec.rb index c5f22502..e7113521 100644 --- a/spec/models/payment_spec.rb +++ b/spec/models/payment_spec.rb @@ -144,10 +144,17 @@ expect(payment.cancel_payment_intent).to be_a(Stripe::PaymentIntent) end - it 'has the canceled_at set' do + it 'has payment intent canceled_at set' do payment.cancel_payment_intent expect(payment.payment_intent['canceled_at']).to_not be_nil end + end + + describe 'invalid payment state' do + it 'does not cancel if stripe_payment_id not present' do + payment.stripe_payment_id = nil + expect(payment.cancel_payment_intent).to be_nil + end it 'does not cancel if status not in progress' do payment.status_refunded! From 20d8b1191873cfa62e0fbf83e8a377a85e8a3c35 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 14:59:36 -0700 Subject: [PATCH 08/28] add cancel payment intent --- app/controllers/payments_controller.rb | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/app/controllers/payments_controller.rb b/app/controllers/payments_controller.rb index abee2171..e8579dc5 100644 --- a/app/controllers/payments_controller.rb +++ b/app/controllers/payments_controller.rb @@ -62,7 +62,8 @@ def confirm # init and mark the payment as completed. # Annotate that manual was set def manual_confirmation - @payment.update(explanation: 'manual confirm') + @payment.cancel_payment_intent + @payment.update(explanation: 'manual confirm', provider: :other) @payment.reload Rails.logger.info("#manual_confirm() => @payment #{@payment.inspect}") mark_payment_completed From 1782d4ebaa47e858ba73231eaa6956d8a23eda91 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 15:01:05 -0700 Subject: [PATCH 09/28] add refund check --- app/controllers/ticket_requests_controller.rb | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/app/controllers/ticket_requests_controller.rb b/app/controllers/ticket_requests_controller.rb index 3ddb9de9..ef6611e9 100644 --- a/app/controllers/ticket_requests_controller.rb +++ b/app/controllers/ticket_requests_controller.rb @@ -188,8 +188,8 @@ def destroy return render_flash(flash) end - if @ticket_request.payment_received? - flash.now[:error] = 'Can not delete request when payment has been received. It must be refunded instead.' + if @ticket_request.payment_received? || @ticket_request.payment_refunded? + flash.now[:error] = 'Can not delete ticket request when payment has been received or refunded' return render_flash(flash) end From 1152185bd8e7aa8f8f94e941ab77043dfb874e3c Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 15:02:09 -0700 Subject: [PATCH 10/28] payment updates support status and provider enums add dependent destroy to payment cancel checks refund state --- app/models/ticket_request.rb | 18 +++++++---- spec/models/ticket_request_spec.rb | 50 +++++++++++++++--------------- 2 files changed, 37 insertions(+), 31 deletions(-) diff --git a/app/models/ticket_request.rb b/app/models/ticket_request.rb index 15c5fce7..2324e40d 100644 --- a/app/models/ticket_request.rb +++ b/app/models/ticket_request.rb @@ -135,7 +135,7 @@ def csv_columns belongs_to :user, inverse_of: :ticket_requests belongs_to :event, inverse_of: :ticket_requests - has_one :payment, inverse_of: :ticket_request + has_one :payment, inverse_of: :ticket_request, dependent: :destroy has_many :ticket_request_event_addons, dependent: :destroy has_many :event_addons, through: :ticket_request_event_addons @@ -239,20 +239,26 @@ def mark_refunded update status: STATUS_REFUNDED end + # payment received or refunded?? XXX not sure why refunded too. + # XXX ? || payment.refunded?) def payment_received? - payment&.received? || payment&.refunded? + payment&.status_received? + end + + def payment_refunded? + payment&.status_refunded? end def can_be_cancelled?(by_user:) - user.id == by_user&.id && !payment_received? + user.id == by_user&.id && !payment_received? && !payment_refunded? end def refund if refunded? - errors.add(:base, 'Cannot refund a ticket that has already been refunded') + errors.add(:base, 'Ticket has already been refunded') return false - elsif !completed? || !payment&.refundable? - errors.add(:base, 'Cannot refund a ticket that has not been purchased') + elsif !completed? || !payment&.received? + errors.add(:base, 'Ticket has not been purchased') return false end diff --git a/spec/models/ticket_request_spec.rb b/spec/models/ticket_request_spec.rb index 7119d95e..90520100 100644 --- a/spec/models/ticket_request_spec.rb +++ b/spec/models/ticket_request_spec.rb @@ -4,31 +4,31 @@ # # Table name: ticket_requests # -# id :bigint not null, primary key -# address_line1 :string(200) -# address_line2 :string(200) -# admin_notes :string(512) -# adults :integer default(1), not null -# agrees_to_terms :boolean -# city :string(50) -# country_code :string(4) -# deleted_at :datetime -# donation :decimal(8, 2) default(0.0) -# guests :text -# kids :integer default(0), not null -# needs_assistance :boolean default(FALSE), not null -# notes :string(500) -# previous_contribution :string(250) -# role :string default("volunteer"), not null -# role_explanation :string(200) -# special_price :decimal(8, 2) -# state :string(50) -# status :string(1) not null -# zip_code :string(32) -# created_at :datetime not null -# updated_at :datetime not null -# event_id :integer not null -# user_id :integer not null +# id :bigint not null, primary key +# address_line1 :string(200) +# address_line2 :string(200) +# admin_notes :string(512) +# adults :integer default(1), not null +# agrees_to_terms :boolean +# city :string(50) +# country_code :string(4) +# deleted_at :datetime +# donation :decimal(8, 2) default(0.0) +# guests :text +# kids :integer default(0), not null +# needs_assistance :boolean default(FALSE), not null +# notes :string(500) +# previous_contribution :string(250) +# role :string default("volunteer"), not null +# role_explanation :string(200) +# special_price :decimal(8, 2) +# state :string(50) +# status :string(1) not null +# zip_code :string(32) +# created_at :datetime not null +# updated_at :datetime not null +# event_id :integer not null +# user_id :integer not null # # Indexes # From aca8499649efc5a1f819aaca353083962430b8a2 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 15:20:45 -0700 Subject: [PATCH 11/28] cleanup --- app/models/payment.rb | 4 ++-- db/data/20240806020511_payment_status.rb | 2 +- db/migrate/20240806011401_payment_provider.rb | 11 ++++++----- spec/models/payment_spec.rb | 17 +---------------- 4 files changed, 10 insertions(+), 24 deletions(-) diff --git a/app/models/payment.rb b/app/models/payment.rb index be2b421e..d3ab898e 100644 --- a/app/models/payment.rb +++ b/app/models/payment.rb @@ -149,7 +149,7 @@ def cancel_payment_intent return unless stripe_payment? && status_in_progress? Rails.logger.info "cancel_payment_intent: #{id} provider: #{provider} stripe_payment_id: #{stripe_payment_id} status: #{status}" - response = Stripe::PaymentIntent.cancel(stripe_payment_id, {cancellation_reason: 'requested_by_customer'}) + response = Stripe::PaymentIntent.cancel(stripe_payment_id, { cancellation_reason: 'requested_by_customer' }) self.payment_intent = response if response.present? end @@ -218,7 +218,7 @@ def refundable? # XXX test # @deprecated method for converting old status def convert_old_status! - @matrix ||= {'N' => 'new', 'P' => 'in progress', 'R' => 'received', 'F' => 'refunded'} + @matrix ||= { 'N' => 'new', 'P' => 'in progress', 'R' => 'received', 'F' => 'refunded' } self.status = @matrix[old_status] save! end diff --git a/db/data/20240806020511_payment_status.rb b/db/data/20240806020511_payment_status.rb index 939a7b40..0a3a4b9a 100644 --- a/db/data/20240806020511_payment_status.rb +++ b/db/data/20240806020511_payment_status.rb @@ -2,7 +2,7 @@ class PaymentStatus < ActiveRecord::Migration[7.1] def up - matrix = {'N' => 'new', 'P' => 'in progress', 'R' => 'received', 'F' => 'refunded'} + matrix = { 'N' => 'new', 'P' => 'in progress', 'R' => 'received', 'F' => 'refunded' } Payment.find_each do |p| p.status = matrix[p.old_status] p.save! diff --git a/db/migrate/20240806011401_payment_provider.rb b/db/migrate/20240806011401_payment_provider.rb index 60889598..eb6b6db6 100644 --- a/db/migrate/20240806011401_payment_provider.rb +++ b/db/migrate/20240806011401_payment_provider.rb @@ -1,11 +1,12 @@ -class PaymentProvider < ActiveRecord::Migration[7.1] +# frozen_string_literal: true +class PaymentProvider < ActiveRecord::Migration[7.1] def change - create_enum :payment_provider, ["stripe", "cash", "other"] - create_enum :payment_status, ["new", "in_progress", "received", "refunded"] + create_enum :payment_provider, %w[stripe cash other] + create_enum :payment_status, %w[new in_progress received refunded] rename_column :payments, :status, :old_status - add_column :payments, :provider, :enum, enum_type: :payment_provider, default: "stripe", null: false - add_column :payments, :status, :enum, enum_type: :payment_status, default: "new", null: false + add_column :payments, :provider, :enum, enum_type: :payment_provider, default: 'stripe', null: false + add_column :payments, :status, :enum, enum_type: :payment_status, default: 'new', null: false end end diff --git a/spec/models/payment_spec.rb b/spec/models/payment_spec.rb index e7113521..bf4a4e0a 100644 --- a/spec/models/payment_spec.rb +++ b/spec/models/payment_spec.rb @@ -146,7 +146,7 @@ it 'has payment intent canceled_at set' do payment.cancel_payment_intent - expect(payment.payment_intent['canceled_at']).to_not be_nil + expect(payment.payment_intent['canceled_at']).not_to be_nil end end @@ -247,20 +247,5 @@ end end end - - # describe '#refund_payment' do - # subject { payment.refund_payment } - # - # before { payment.save_with_payment_intent } - # - # let(:amount) { 1000 } - # let(:payment) { build(:payment) } - # - # context 'when payment received' do - # before { payment.mark_received } - # - # it { is_expected.to be_truthy } - # end - # end end end From d181e819c6bfa8d9db4e8ab50f455031e122b641 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 15:44:36 -0700 Subject: [PATCH 12/28] cleanup remove addons fix event names and start times --- db/seeds.rb | 20 +++----------------- 1 file changed, 3 insertions(+), 17 deletions(-) diff --git a/db/seeds.rb b/db/seeds.rb index 464a6bbf..44888085 100755 --- a/db/seeds.rb +++ b/db/seeds.rb @@ -23,7 +23,7 @@ class Seeds SITE_ADMIN_PASSWORD = 'fubar!' SITE_ADMIN_EMAIL = 'site-admin@fnf.org' DEFAULT_USER_COUNT = 10 - DEFAULT_EVENT_COUNT = 2 + DEFAULT_EVENT_COUNT = 3 HEADER_WIDTH = 100 end @@ -46,7 +46,6 @@ def run create_site_admins create_users create_events - create_addons self.ran = true end @@ -126,12 +125,12 @@ def create_events self.events = Event.all.to_a || [] (0..event_count).to_a.each do |index| - start_time = (Time.zone.today + Random.rand(2..3).months).to_time + start_time = (Time.zone.today + index.months).to_time seasons = %w[Summer Fall Spring Winter].freeze event = events[index] || Event.create!( - name: "#{seasons[Random.rand(4)]} Campout ", + name: "#{seasons[index]} Campout ", adult_ticket_price: Faker::Commerce.price(range: 100...200), allow_donations: true, allow_financial_assistance: true, @@ -160,19 +159,6 @@ def create_events end end - def create_addons - return if Addon.count.positive? - - puts 'Creating Addons' - Addon.create category: Addon::CATEGORY_PASS, name: 'Early Arrival', default_price: 0 - Addon.create category: Addon::CATEGORY_PASS, name: 'Late Departure', default_price: 30 - Addon.create category: Addon::CATEGORY_CAMP, name: 'Car Camping', default_price: 50 - Addon.create category: Addon::CATEGORY_CAMP, name: 'RV under 20ft', default_price: 100 - Addon.create category: Addon::CATEGORY_CAMP, name: 'RV under 25ft', default_price: 125 - Addon.create category: Addon::CATEGORY_CAMP, name: 'RV over 25ft', default_price: 150 - puts "Created #{Addons.count} Addons" - end - def print_event(event) puts puts " Name: #{event.name.to_s.colorize(color: :magenta, mode: :bold)}" From 3bbdaa75b9abf0656ab0a59e3e4d0b9698a43a3c Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 6 Aug 2024 16:09:33 -0700 Subject: [PATCH 13/28] cleanup view logic for ticket request --- .../_table_ticket_requests.html.haml | 14 ++++++++------ .../ticket_requests/_ticket_request_show.html.haml | 6 +++--- 2 files changed, 11 insertions(+), 9 deletions(-) diff --git a/app/views/ticket_requests/_table_ticket_requests.html.haml b/app/views/ticket_requests/_table_ticket_requests.html.haml index bf76560f..71b74170 100644 --- a/app/views/ticket_requests/_table_ticket_requests.html.haml +++ b/app/views/ticket_requests/_table_ticket_requests.html.haml @@ -68,9 +68,12 @@ %td.align-content-center.text-center.ticket-status %span.p-2.rounded.small.bi-credit-card.text-black{ class: text_class_for_status(ticket_request) } - = text_for_status ticket_request - - if ticket_request.payment && !ticket_request.payment.received? + - if !ticket_request.payment.provider_stripe? + = "#{text_for_status ticket_request} - #{ticket_request.payment.provider.humanize}" %i.icon-comment.hover-tooltip{ title: ticket_request.payment.explanation } + - else + = text_for_status ticket_request + %td.align-content-end.text-end - if event.tickets_require_approval && ticket_request.pending? @@ -106,7 +109,7 @@ data: { confirm: "Are you sure you want to decline #{ticket_request.user.name}'s already approved request?" } do ✘ Decline - - elsif ticket_request.payment && ticket_request.awaiting_payment? && !ticket_request.payment_received? + - elsif ticket_request.payment.present? && ticket_request.awaiting_payment? .btn-group.pull-right = button_to manual_confirmation_event_ticket_request_payments_path(event, ticket_request), method: :post, @@ -114,11 +117,10 @@ Mark as Received %i.icon-ok - - elsif ticket_request.payment_received? && !ticket_request.refunded? + - elsif ticket_request.payment&.received? .btn-group.pull-right = button_to refund_event_ticket_request_path(event, ticket_request), method: :post, class: 'btn btn-danger btn-sm text-nowrap', data: { confirm: "Are you sure you want to refund #{ticket_request.user.name}'s payment?'" } do - ↩︎ Refund - + ↩︎ Refund \ No newline at end of file diff --git a/app/views/ticket_requests/_ticket_request_show.html.haml b/app/views/ticket_requests/_ticket_request_show.html.haml index a021e5b3..34594510 100644 --- a/app/views/ticket_requests/_ticket_request_show.html.haml +++ b/app/views/ticket_requests/_ticket_request_show.html.haml @@ -34,11 +34,11 @@ Free - else - if event.ticket_sales_open? - - if ticket_request.payment.present? && ticket_request.payment.explanation.present? - %strong.span.bg-warning Paying with #{ticket_request.payment.explanation} + - if !ticket_request.payment&.provider_stripe? && ticket_request.payment&.explanation? + %strong.span.bg-warning Paying with: #{ticket_request.payment.explanation} - else - if ticket_request.all_guests_specified? - - if ticket_request.awaiting_payment? + - if ticket_request.approved? = link_to 'Buy Tickets', new_event_ticket_request_payment_path(event, ticket_request), class: 'btn btn-primary m-0' - else = "Waiting on ticket approval" From 80d3b05885bda844f415f80cf5100f92f28a3046 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Fri, 16 Aug 2024 11:38:43 -0700 Subject: [PATCH 14/28] fix for payment provider other ensure payment present add spec --- .../_table_ticket_requests.html.haml | 5 +++-- .../ticket_requests_controller_spec.rb | 9 +++++++++ spec/models/payment_spec.rb | 20 ++++++++++++++++++- 3 files changed, 31 insertions(+), 3 deletions(-) diff --git a/app/views/ticket_requests/_table_ticket_requests.html.haml b/app/views/ticket_requests/_table_ticket_requests.html.haml index 71b74170..799cbc88 100644 --- a/app/views/ticket_requests/_table_ticket_requests.html.haml +++ b/app/views/ticket_requests/_table_ticket_requests.html.haml @@ -68,9 +68,10 @@ %td.align-content-center.text-center.ticket-status %span.p-2.rounded.small.bi-credit-card.text-black{ class: text_class_for_status(ticket_request) } - - if !ticket_request.payment.provider_stripe? + - if ticket_request.payment.present? && !ticket_request.payment.provider_stripe? = "#{text_for_status ticket_request} - #{ticket_request.payment.provider.humanize}" - %i.icon-comment.hover-tooltip{ title: ticket_request.payment.explanation } + = tooltip_box(ticket_request.payment.explanation, title: "Method:") do + = image_tag('icons/comments-user.png', width: 20, class: 'hover-tooltip') - else = text_for_status ticket_request diff --git a/spec/controllers/ticket_requests_controller_spec.rb b/spec/controllers/ticket_requests_controller_spec.rb index da6e9ae2..b3e41285 100644 --- a/spec/controllers/ticket_requests_controller_spec.rb +++ b/spec/controllers/ticket_requests_controller_spec.rb @@ -36,6 +36,15 @@ it { is_expected.to have_http_status(:ok) } end + + context 'when payments exist' do + let(:viewer) { create(:site_admin).user } + let(:payment1) { create(:payment, status: :in_progress, stripe_payment_id: 'pi_3PF4524ofUrW5ZY40NeGThOz', ticket_request: ticket_requests[0]) } + let(:payment2) { create(:payment, status: :received, stripe_payment_id: 'pi_3PF4524ofUrW5ZY40NeGThOz', ticket_request: ticket_requests[1]) } + let(:payment3) { create(:payment, status: :refunded, stripe_payment_id: 'pi_3PF4524ofUrW5ZY40NeGThOz', ticket_request: ticket_requests[2]) } + + it { is_expected.to have_http_status(:ok) } + end end describe 'GET #show' do diff --git a/spec/models/payment_spec.rb b/spec/models/payment_spec.rb index bf4a4e0a..899a2ca6 100644 --- a/spec/models/payment_spec.rb +++ b/spec/models/payment_spec.rb @@ -61,13 +61,31 @@ describe 'provider' do context 'with stripe' do - let(:payment) { build(:payment) } + let(:payment) { build(:payment, provider: 'stripe') } it { is_expected.to be_valid } it 'has provider of stripe' do expect(payment.provider).to eq('stripe') end + + it 'has prefix predicate for stripe' do + expect(payment).to be_provider_stripe + end + end + + context 'with other provider' do + let(:payment) { build(:payment, provider: 'other') } + + it { is_expected.to be_valid } + + it 'has provider of other' do + expect(payment.provider).to eq('other') + end + + it 'has prefix predicate for other' do + expect(payment).to be_provider_other + end end context 'when unknown provider' do From 059a5cf228f6bc71c7c6b558b43ffe8b830986ba Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Sun, 18 Aug 2024 09:59:48 -0700 Subject: [PATCH 15/28] Fix find for ticket request Catch case where ticket request not found. --- app/controllers/application_controller.rb | 11 ++++++++--- 1 file changed, 8 insertions(+), 3 deletions(-) diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb index 51566271..18bcaf38 100644 --- a/app/controllers/application_controller.rb +++ b/app/controllers/application_controller.rb @@ -43,8 +43,7 @@ def set_event end @event = Event.where(id: event_id).first - - if @event.slug != event_slug + if @event&.slug != event_slug Rails.logger.warn("Event slug mismatch: [#{event_slug}] != [#{@event&.slug}]") end @@ -59,7 +58,13 @@ def set_ticket_request Rails.logger.debug { "#set_ticket_request() => ticket_request_id = #{ticket_request_id}" } return unless ticket_request_id - @ticket_request = TicketRequest.find(ticket_request_id) + # check if ticket request exists + @ticket_request = TicketRequest.find_by(id: ticket_request_id) + unless @ticket_request.present? + Rails.logger.info { "#set_ticket_request() => unknown ticket_request_id: #{ticket_request_id}" } + return redirect_to root_path + end + Rails.logger.debug { "#set_ticket_request() => @ticket_request = #{@ticket_request&.inspect}" } redirect_to @event unless @ticket_request.event == @event From 9078884f030ee1a69fa6e620f6f1a37bd6f9f612 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Sun, 18 Aug 2024 10:00:31 -0700 Subject: [PATCH 16/28] cleanup --- app/models/ticket_request.rb | 2 -- app/views/ticket_requests/_table_ticket_requests.html.haml | 3 ++- 2 files changed, 2 insertions(+), 3 deletions(-) diff --git a/app/models/ticket_request.rb b/app/models/ticket_request.rb index b74ce651..05f38f10 100644 --- a/app/models/ticket_request.rb +++ b/app/models/ticket_request.rb @@ -239,8 +239,6 @@ def mark_refunded update status: STATUS_REFUNDED end - # payment received or refunded?? XXX not sure why refunded too. - # XXX ? || payment.refunded?) def payment_received? payment&.status_received? end diff --git a/app/views/ticket_requests/_table_ticket_requests.html.haml b/app/views/ticket_requests/_table_ticket_requests.html.haml index 799cbc88..d9ea0298 100644 --- a/app/views/ticket_requests/_table_ticket_requests.html.haml +++ b/app/views/ticket_requests/_table_ticket_requests.html.haml @@ -29,6 +29,7 @@ = link_to event_ticket_request_path(event, ticket_request) do = ticket_request.user.name + -# If we role is required for the event, add the column for role - if event.require_role %td.muted.align-content-center.optional-medium = TicketRequest::ROLES[ticket_request.role] @@ -123,5 +124,5 @@ = button_to refund_event_ticket_request_path(event, ticket_request), method: :post, class: 'btn btn-danger btn-sm text-nowrap', - data: { confirm: "Are you sure you want to refund #{ticket_request.user.name}'s payment?'" } do + data: { "turbo-confirm": "Are you sure you want to refund #{ticket_request.user.name}'s payment?'" } do ↩︎ Refund \ No newline at end of file From f95cce98eb9aff882846bf1757dcbfc3b21d6e6d Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Sun, 18 Aug 2024 10:01:14 -0700 Subject: [PATCH 17/28] show correct status also cleanup language --- app/views/ticket_requests/_ticket_request_show.html.haml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/app/views/ticket_requests/_ticket_request_show.html.haml b/app/views/ticket_requests/_ticket_request_show.html.haml index 34594510..3cb442b4 100644 --- a/app/views/ticket_requests/_ticket_request_show.html.haml +++ b/app/views/ticket_requests/_ticket_request_show.html.haml @@ -26,7 +26,7 @@ %td.text-end.small.p-2.px-4.text-nowrap= "Payment:" %td %strong - - if ticket_request.payment_received? + - if ticket_request.payment_received? || ticket_request.payment_refunded? %strong.span.p-2.rounded{ class: text_class_for_status(ticket_request) } = ticket_request.payment.status_name - elsif ticket_request.free? @@ -124,7 +124,7 @@ %td.text-end.small.p-2.px-4.text-nowrap= "Financial Assistance Requested?:" %td %strong.bg-warning - Yes, financial assistance is requested. + Yes, assistance requested. - if ticket_request.notes.present? @@ -156,6 +156,6 @@ %tr %td.text-end.small.p-2.px-4.text-nowrap= "Notes:" %td - %h4 Ticket Coordinator Notes: + %strong Ticket Coordinator Notes: %p.small = ticket_request.admin_notes From d019d4cd6973925cb27842720dd1fd6ee53c5979 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Sun, 18 Aug 2024 10:04:07 -0700 Subject: [PATCH 18/28] refactor to be able to delete ticket request by admin --- app/controllers/payments_controller.rb | 13 +++++++++---- app/controllers/ticket_requests_controller.rb | 12 +++--------- app/views/ticket_requests/show.html.haml | 19 ++++++++++++------- 3 files changed, 24 insertions(+), 20 deletions(-) diff --git a/app/controllers/payments_controller.rb b/app/controllers/payments_controller.rb index e8579dc5..1940c83c 100644 --- a/app/controllers/payments_controller.rb +++ b/app/controllers/payments_controller.rb @@ -59,14 +59,19 @@ def confirm mark_payment_completed end - # init and mark the payment as completed. + # human has marked the payment as confirmed received and completed. # Annotate that manual was set def manual_confirmation + # cancel any stripe payment intent, so there is no orphaned intent @payment.cancel_payment_intent - @payment.update(explanation: 'manual confirm', provider: :other) - @payment.reload - Rails.logger.info("#manual_confirm() => @payment #{@payment.inspect}") + + # update payment with explanation. + @payment.update(explanation: 'humanly marked received', provider: :other) + + # mark payment and ticket request completed mark_payment_completed + Rails.logger.info("#manual_confirmation() => @payment #{@payment.inspect}") + redirect_to event_ticket_requests_path(@event, @ticket_request) end diff --git a/app/controllers/ticket_requests_controller.rb b/app/controllers/ticket_requests_controller.rb index ef6611e9..7a0ef79a 100644 --- a/app/controllers/ticket_requests_controller.rb +++ b/app/controllers/ticket_requests_controller.rb @@ -182,19 +182,13 @@ def update def destroy Rails.logger.error("destroy# params: #{permitted_params}".colorize(:yellow)) - unless @event.admin?(current_user) || current_user == @ticket_request.user - Rails.logger.error("ATTEMPT TO DELETE TICKET REQUEST #{@ticket_request} by #{current_user}".colorize(:red)) - flash.now[:error] = 'You do not have sufficient privileges to delete this request.' - return render_flash(flash) - end - - if @ticket_request.payment_received? || @ticket_request.payment_refunded? - flash.now[:error] = 'Can not delete ticket request when payment has been received or refunded' + unless @event.admin?(current_user) || @ticket_request.can_be_cancelled?(by_user: current_user) + Rails.logger.warn("Failed to delete ticket request #{@ticket_request} status: #{@ticket_request.status_name} by #{current_user}".colorize(:red)) + flash.now[:error] = 'You do not have permission to delete this ticket' return render_flash(flash) end @ticket_request.destroy! if @ticket_request&.persisted? - redirect_to new_event_ticket_request_path(@event), notice: 'Ticket Request was successfully cancelled.' end diff --git a/app/views/ticket_requests/show.html.haml b/app/views/ticket_requests/show.html.haml index c37ce30d..914d72e5 100644 --- a/app/views/ticket_requests/show.html.haml +++ b/app/views/ticket_requests/show.html.haml @@ -62,17 +62,22 @@ - if @event.admin?(current_user) || !@ticket_request.post_payment? = link_to edit_event_ticket_request_path(@event, @ticket_request), class: 'btn btn-primary btn-round btn-sm mx-0 fs-6' do Edit Ticket Request - - else + - elsif !@ticket_request.refunded? = link_to edit_event_ticket_request_path(@event, @ticket_request), class: 'btn btn-primary btn-round btn-sm mx-0 fs-6' do Edit Guests - - if signed_in? && @ticket_request.can_be_cancelled?(by_user: current_user) - = button_to " ✘ Cancel Ticket Request", event_ticket_request_path(@event, @ticket_request), class: 'btn btn-warning btn-mdsm', method: :delete, data: { "turbo-confirm": "Are you sure you want to delete this ticket request?" } + = button_to " ✘ Cancel Ticket Request", event_ticket_request_path(@event, @ticket_request), class: 'btn btn-warning btn-mdsm', method: :delete, data: { "turbo-confirm": "Are you sure you want to delete this ticket?" } + .col-4.text-end + .btn-group + - if @event.admin?(current_user) + = link_to event_ticket_requests_path(@event), class: 'btn btn-secondary btn-sm btn-round fs-6' do + All Ticket Requests + - if @ticket_request.refunded? + = button_to " ✘ Delete Refunded!", event_ticket_request_path(@event, @ticket_request), class: 'btn btn-danger btn-mdsm', method: :delete, data: { "turbo-confirm": "Are you sure you want to delete this already REFUNDED ticket?" } + - if @ticket_request.completed? && !@ticket_request.payment&.provider_stripe? + = button_to " ✘ Delete!", event_ticket_request_path(@event, @ticket_request), class: 'btn btn-danger btn-mdsm', method: :delete, data: { "turbo-confirm": "Are you sure you want to delete this already RECEIVED ticket?" } + - - if @event.admin?(current_user) - .col-4.text-end - = link_to event_ticket_requests_path(@event), class: 'btn btn-secondary btn-sm btn-round fs-6' do - All Ticket Requests From 46068e801e2e612590d5363ccb94727a5fa95afa Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Sun, 18 Aug 2024 10:10:25 -0700 Subject: [PATCH 19/28] cleanup --- app/controllers/application_controller.rb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb index 18bcaf38..0ce8f61e 100644 --- a/app/controllers/application_controller.rb +++ b/app/controllers/application_controller.rb @@ -60,7 +60,7 @@ def set_ticket_request # check if ticket request exists @ticket_request = TicketRequest.find_by(id: ticket_request_id) - unless @ticket_request.present? + if @ticket_request.blank? Rails.logger.info { "#set_ticket_request() => unknown ticket_request_id: #{ticket_request_id}" } return redirect_to root_path end From b553b4c2baf76e537da175fd0114c85e613bb94a Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Mon, 19 Aug 2024 09:18:53 -0700 Subject: [PATCH 20/28] don't show re-approve if event has no approval --- .../ticket_requests/_table_ticket_requests.html.haml | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/app/views/ticket_requests/_table_ticket_requests.html.haml b/app/views/ticket_requests/_table_ticket_requests.html.haml index d9ea0298..85bf5dda 100644 --- a/app/views/ticket_requests/_table_ticket_requests.html.haml +++ b/app/views/ticket_requests/_table_ticket_requests.html.haml @@ -97,10 +97,11 @@ class: 'btn btn-danger btn-sm text-nowrap' do ↩︎ Revert - elsif !ticket_request.completed? - = button_to resend_approval_event_ticket_request_path(event, ticket_request), - method: :post, - class: 'btn btn-primary btn-sm text-nowrap' do - ↺ Re-Approve + - if event.tickets_require_approval + = button_to resend_approval_event_ticket_request_path(event, ticket_request), + method: :post, + class: 'btn btn-primary btn-sm text-nowrap' do + ↺ Re-Approve = button_to manual_confirmation_event_ticket_request_payments_path(event, ticket_request), method: :post, class: 'btn btn-success btn-sm text-nowrap' do From 1bdad7d44182bd2bc845908839e2baa1dfa70840 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Mon, 19 Aug 2024 09:20:11 -0700 Subject: [PATCH 21/28] wording --- app/controllers/payments_controller.rb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/app/controllers/payments_controller.rb b/app/controllers/payments_controller.rb index 1940c83c..bd1df04e 100644 --- a/app/controllers/payments_controller.rb +++ b/app/controllers/payments_controller.rb @@ -66,7 +66,7 @@ def manual_confirmation @payment.cancel_payment_intent # update payment with explanation. - @payment.update(explanation: 'humanly marked received', provider: :other) + @payment.update(explanation: 'Marked Received', provider: :other) # mark payment and ticket request completed mark_payment_completed From fd4d430e7c50b24780bae38251c409df27880cfa Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Mon, 19 Aug 2024 09:43:25 -0700 Subject: [PATCH 22/28] fix slug parse --- app/controllers/application_controller.rb | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb index 0ce8f61e..e966f8ea 100644 --- a/app/controllers/application_controller.rb +++ b/app/controllers/application_controller.rb @@ -32,8 +32,10 @@ def stripe_publishable_api_key end def set_event + Rails.logger.debug { "#set_event() permitted params: #{permitted_params.inspect}" } + event_id = permitted_params[:event_id].to_i - event_slug = permitted_params[:event_id].delete("#{event_id}-") + event_slug = permitted_params[:event_id].sub("#{event_id}-",'') Rails.logger.debug { "#set_event() => event_id = #{event_id}, event_slug = #{event_slug} params[:event_id] => #{permitted_params[:event_id]}" } From 04f512239587738dbced090b8761c8748255f6d7 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Mon, 19 Aug 2024 10:11:19 -0700 Subject: [PATCH 23/28] fix space --- app/controllers/application_controller.rb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb index e966f8ea..58e40472 100644 --- a/app/controllers/application_controller.rb +++ b/app/controllers/application_controller.rb @@ -35,7 +35,7 @@ def set_event Rails.logger.debug { "#set_event() permitted params: #{permitted_params.inspect}" } event_id = permitted_params[:event_id].to_i - event_slug = permitted_params[:event_id].sub("#{event_id}-",'') + event_slug = permitted_params[:event_id].sub("#{event_id}-", '') Rails.logger.debug { "#set_event() => event_id = #{event_id}, event_slug = #{event_slug} params[:event_id] => #{permitted_params[:event_id]}" } From 3f2abb5472d2500d9893e9f5392ae8847a11748e Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Mon, 19 Aug 2024 10:11:36 -0700 Subject: [PATCH 24/28] bump version --- .version | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.version b/.version index 80e78df6..95b25aee 100644 --- a/.version +++ b/.version @@ -1 +1 @@ -1.3.5 +1.3.6 From 613d456dbe243bb39b407455fb0c17607d0f7977 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Mon, 19 Aug 2024 17:41:58 -0700 Subject: [PATCH 25/28] fix stats to include donations remove addons, add donations --- app/controllers/ticket_requests_controller.rb | 5 +++-- .../_table_ticket_request_statuses.html.haml | 14 ++++++++++++++ .../_table_ticket_requests.html.haml | 13 +++++++------ 3 files changed, 24 insertions(+), 8 deletions(-) diff --git a/app/controllers/ticket_requests_controller.rb b/app/controllers/ticket_requests_controller.rb index 7a0ef79a..ca67330d 100644 --- a/app/controllers/ticket_requests_controller.rb +++ b/app/controllers/ticket_requests_controller.rb @@ -24,14 +24,15 @@ def index requests: requests.count, adults: requests.sum(&:adults), kids: requests.sum(&:kids), + donations: requests.sum(&:donation), addon_passes: requests.sum(&:active_addon_pass_sum), addon_camping: requests.sum(&:active_addon_camp_sum), - raised: requests.sum(&:price) + raised: requests.sum(&:cost) } end @stats[:total] ||= Hash.new { |h, k| h[k] = 0 } - %i[requests adults kids addon_passes addon_camping raised].each do |measure| + %i[requests adults kids donations addon_passes addon_camping raised].each do |measure| %i[pending awaiting_payment completed].each do |status| @stats[:total][measure] += @stats[status][measure] end diff --git a/app/views/ticket_requests/_table_ticket_request_statuses.html.haml b/app/views/ticket_requests/_table_ticket_request_statuses.html.haml index 1cab8392..312be979 100644 --- a/app/views/ticket_requests/_table_ticket_request_statuses.html.haml +++ b/app/views/ticket_requests/_table_ticket_request_statuses.html.haml @@ -21,6 +21,8 @@ %th.bg-dark-subtle.text-end Tickets - if event.kid_ticket_price %th.bg-dark-subtle.text-end Kids + - if event.allow_donations + %th.bg-dark-subtle.text-end Donations - if event.active_event_addons_passes_count > 0 %th.bg-dark-subtle.text-end =Addon::HUMANIZED_CATEGORIES[Addon::CATEGORY_PASS] @@ -41,6 +43,10 @@ - if event.kid_ticket_price %td.text-end.bg-success-subtle %span= stats[:completed][:kids] + - if event.allow_donations + %td.text-end.bg-success-subtle + %span + = number_to_currency(stats[:completed][:donations], precision: 0) - if event.active_event_addons_passes_count > 0 %td.text-end.bg-success-subtle %span= stats[:completed][:addon_passes] @@ -58,6 +64,9 @@ %td.text-end.bg-warning= stats[:pending][:adults] - if event.kid_ticket_price %td.text-end.bg-warning= stats[:pending][:kids] + - if event.allow_donations + %td.text-end.bg-warning + = number_to_currency(stats[:pending][:donations], precision: 0) - if event.active_event_addons_passes_count > 0 %td.text-end.bg-warning= stats[:pending][:addon_passes] - if event.active_event_addons_camping_count > 0 @@ -72,6 +81,9 @@ %td.text-end.bg-warning-subtle= stats[:awaiting_payment][:adults] - if event.kid_ticket_price %td.text-end.bg-warning-subtle= stats[:awaiting_payment][:kids] + - if event.allow_donations + %td.text-end.bg-warning-subtle + = number_to_currency(stats[:awaiting_payment][:donations], precision: 0) - if event.active_event_addons_passes_count > 0 %td.text-end.bg-warning-subtle= stats[:awaiting_payment][:addon_passes] - if event.active_event_addons_camping_count > 0 @@ -87,6 +99,8 @@ %td.bg-dark-subtle.text-end= stats[:total][:adults] - if event.kid_ticket_price %td.bg-dark-subtle.text-end= stats[:total][:kids] + - if event.allow_donations + %td.bg-dark-subtle.text-end= number_to_currency(stats[:total][:donations], precision: 0) - if event.active_event_addons_passes_count > 0 %td.bg-dark-subtle.text-end= stats[:total][:addon_passes] - if event.active_event_addons_camping_count > 0 diff --git a/app/views/ticket_requests/_table_ticket_requests.html.haml b/app/views/ticket_requests/_table_ticket_requests.html.haml index 85bf5dda..c2cbf631 100644 --- a/app/views/ticket_requests/_table_ticket_requests.html.haml +++ b/app/views/ticket_requests/_table_ticket_requests.html.haml @@ -13,8 +13,8 @@ %th.bg-dark-subtle.text-end.optional-medium Tickets - if event.kid_ticket_price %th.bg-dark-subtle.text-end.optional-medium Kids - - if event.active_event_addons? - %th.bg-dark-subtle.text-end.optional-medium Addons + - if event.allow_donations + %th.bg-dark-subtle.text-end.optional-medium Donation %th.bg-dark-subtle.text-end Total %th.bg-dark-subtle.text-end.optional-medium Date Requested %th.bg-dark-subtle.text-center Status @@ -57,14 +57,15 @@ - if event.kid_ticket_price %td.align-content-center.text-end.optional-medium= ticket_request.kids - - if event.active_event_addons? - %td.align-content-center.text-end.optional-medium= ticket_request.active_addons_sum + - if event.allow_donations + %td.align-content-center.text-end + = number_to_currency(ticket_request.donation, precision: 0) %td.align-content-center.text-end %span{ class: ('label label-info' if ticket_request.special_price) } - = number_to_currency(ticket_request.price, precision: 0) + = number_to_currency(ticket_request.cost, precision: 0) - %td.align-content-center.text-end.optional-medium.text-nowrap.small + %td.align-content-center.text-end = ticket_request.created_at.to_date %td.align-content-center.text-center.ticket-status From 573eb2736a355f103a516655c6b4e447f5834fe8 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Mon, 19 Aug 2024 17:53:04 -0700 Subject: [PATCH 26/28] wording --- app/views/ticket_requests/_ticket_request_show.html.haml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/app/views/ticket_requests/_ticket_request_show.html.haml b/app/views/ticket_requests/_ticket_request_show.html.haml index 3cb442b4..47c129e0 100644 --- a/app/views/ticket_requests/_ticket_request_show.html.haml +++ b/app/views/ticket_requests/_ticket_request_show.html.haml @@ -12,7 +12,7 @@ %tr %td.text-end.small.p-2.px-4.text-nowrap= "Date Requested:" %td - %strong= ticket_request.created_at.localtime.to_formatted_s(:friendly) + %strong= ticket_request.created_at.localtime.to_fs(:db) - if event.tickets_require_approval %tr @@ -55,7 +55,7 @@ = 'ticket'.pluralize(ticket_request.total_tickets) %tr - %td.text-end.small.p-2.px-4.text-nowrap= "Total Price:" + %td.text-end.small.p-2.px-4.text-nowrap= "Total Ticket Price:" %td %strong %span{ class: ('label label-info' if ticket_request.special_price) } From 7f47a37b06d977af9d4e7d1114fcb70da91c4f1f Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 20 Aug 2024 11:26:05 -0700 Subject: [PATCH 27/28] rename for readability --- app/models/payment.rb | 11 +++++------ app/models/ticket_request.rb | 2 +- 2 files changed, 6 insertions(+), 7 deletions(-) diff --git a/app/models/payment.rb b/app/models/payment.rb index d3ab898e..3dda1db8 100644 --- a/app/models/payment.rb +++ b/app/models/payment.rb @@ -143,7 +143,6 @@ def retrieve_payment_intent Rails.logger.debug { "retrieve_payment_intent payment => #{inspect}}" } end - # XXX need to test # cancel Stripe PaymentIntent if is in progress def cancel_payment_intent return unless stripe_payment? && status_in_progress? @@ -154,13 +153,13 @@ def cancel_payment_intent end # https://docs.stripe.com/api/refunds - # refund strip payment only + # refund Stripe payment # reasons duplicate, fraudulent, or requested_by_customer - def refund_payment(reason: 'requested_by_customer') + def refund_stripe_payment(reason: 'requested_by_customer') return false unless received? begin - Rails.logger.info "refund_payment: #{id} stripe_payment_id: #{stripe_payment_id} status: #{status}" + Rails.logger.info "refund_stripe_payment: #{id} stripe_payment_id: #{stripe_payment_id} status: #{status}" self.refund = Stripe::Refund.create({ payment_intent: stripe_payment_id, reason:, metadata: { event_id: ticket_request.event.id, @@ -169,11 +168,11 @@ def refund_payment(reason: 'requested_by_customer') ticket_request_user_id: ticket_request.user_id } }) self.stripe_refund_id = refund.id self.status = :refunded - Rails.logger.info { "refund_payment success stripe_refund_id [#{stripe_refund_id}] status [#{status}]" } + Rails.logger.info { "refund_stripe_payment success stripe_refund_id [#{stripe_refund_id}] status [#{status}]" } log_refund(refund) save! rescue Stripe::StripeError => e - Rails.logger.error { "refund_payment Stripe::Refund.create failed [#{stripe_payment_id}]: #{e}" } + Rails.logger.error { "refund_stripe_payment Stripe::Refund.create failed [#{stripe_payment_id}]: #{e}" } errors.add :base, e.message false rescue StandardError => e diff --git a/app/models/ticket_request.rb b/app/models/ticket_request.rb index 05f38f10..4f79b5db 100644 --- a/app/models/ticket_request.rb +++ b/app/models/ticket_request.rb @@ -262,7 +262,7 @@ def refund # issue refund for payment Rails.logger.info { "ticket_request [#{id}] payment [#{payment.id}] refunding [#{payment.stripe_payment_id}]" } - if payment.refund_payment + if payment.refund_stripe_payment mark_refunded else Rails.logger.error { "ticket_request failed to refund [#{payment.stripe_payment_id}] #{errors&.error_messages&.join('; ')}" } From 596ab50ac00f0a0dc97b55942ee31e4924cde359 Mon Sep 17 00:00:00 2001 From: Matt Levy Date: Tue, 20 Aug 2024 11:31:37 -0700 Subject: [PATCH 28/28] clean up comments --- app/models/payment.rb | 1 - app/models/ticket_request.rb | 2 +- 2 files changed, 1 insertion(+), 2 deletions(-) diff --git a/app/models/payment.rb b/app/models/payment.rb index 3dda1db8..47e407b7 100644 --- a/app/models/payment.rb +++ b/app/models/payment.rb @@ -214,7 +214,6 @@ def refundable? received? end - # XXX test # @deprecated method for converting old status def convert_old_status! @matrix ||= { 'N' => 'new', 'P' => 'in progress', 'R' => 'received', 'F' => 'refunded' } diff --git a/app/models/ticket_request.rb b/app/models/ticket_request.rb index 4f79b5db..db08479e 100644 --- a/app/models/ticket_request.rb +++ b/app/models/ticket_request.rb @@ -135,7 +135,7 @@ def csv_columns belongs_to :user, inverse_of: :ticket_requests belongs_to :event, inverse_of: :ticket_requests, touch: true - has_one :payment, inverse_of: :ticket_request, dependent: :destroy + has_one :payment, inverse_of: :ticket_request has_many :ticket_request_event_addons, dependent: :destroy has_many :event_addons, through: :ticket_request_event_addons