forked from Mastercard-Gateway/gateway-test-merchant-server
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy path3DSecureResult.php
63 lines (54 loc) · 2.29 KB
/
3DSecureResult.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
<?php
/*
* Copyright (c) 2016 Mastercard
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
include '_bootstrap.php';
// capture POST data from issuer
if (intercept('POST')) {
// ensure we have a 3DSecureId
$threeDSecureId = requiredQueryParam('3DSecureId');
// parse payload to get encoded paRes value
$post = array_change_key_case($_POST, CASE_LOWER);
$paResParam = 'pares';
if (!array_key_exists($paResParam, $post) || empty($post[$paResParam])) {
error(400, 'Missing required issuer response information');
}
$data = array(
'apiOperation' => 'PROCESS_ACS_RESULT',
'3DSecure' => array(
'paRes' => $post[$paResParam]
)
);
// decode paRes by calling Process ACS Result to obtain result
$response = doRequest($gatewayUrl . '/3DSecureId/' . $threeDSecureId, 'POST', json_encode($data), $headers);
// build mobile redirect
doRedirect("gatewaysdk://3dsecure?acsResult=" . urlencode($response));
}
?>
<html>
<head>
<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0-beta/css/bootstrap.min.css" integrity="sha384-/Y6pD6FV/Vv2HJnA6t+vslU6fwYXjCFtcEpHbNJ0lyAFsXTsjBbfaDjzALeQsN6M" crossorigin="anonymous">
<style>
body {
padding: 2rem;
}
</style>
</head>
<body>
<h1>3DSecure - Process Issuer Result</h1>
<p>This script is used to process the Issuer response during a 3DS transaction on a mobile device.<br/>The url to this page should be provided during <a href="../3DSecure.php">Check 3DS Enrollment</a>.</p>
<p>When you provide this page as the 3DSecure.authenticationRedirect.responseUrl parameter, you must include the 3DSecureId as a query param, as illustrated in the above link.</p>
</body>
</html>