BankStore integration JET-IFRAME
The JET-IFRAME system of PAYCOMET allows you to integrate in a simple and safe the payment gateway keeping your payment forms.
Thanks to its iframes system, sensitive data never passes through the client's system. The integration of this system does not require additional security measures.
Introduction
The JET-IFRAME integration is part of the card capture's solution and performs the pre-tokenizations to be able to execute collection operations. It is independent of the user interface and especially recommended for integrations for mobile devices.
Remember!
The environment will only work on SSL secure protocol.
How does it work?
Using javascript two iframes are loaded inside the form as fields to collect the values of the PAN and the CVC2, and the styles and placeholder defined in said DIV are applied to them. When the form is submitted, JET-IFRAME initiates a process in which the iframes collect and send the necessary information to PAYCOMET to return a temporary token and insert in the client's original form in a hidden field. Once this process is finished, the form is sent on as usual. The client will receive on his server through the post of his form the fields of the same, except the PAN and the CVC2, which will never be accessible. You will also receive the variable "paytpvToken ", necessary along with other parameters that we will see later to start operating.
Remember!
This integration is not compatible with Internet Explorer 11, nor previous versions.
Product configuration
In order to use the BankStore JET-IFRAME service in your store, you must be in possession of the necessary configuration parameters. These can be obtained through the customer control panel (new version)
Once inside the platform, you can review the configuration of the product through the menu My products -> Configure product
After clicking on the "Edit" button of the chosen product, a panel with the basic informatio?n of the product will appear under the section "Technical configuration of the product". In particular, the data needed during the integration process are:
- JET ID
If your JET ID has not yet been generated, you can click on the link Generate JET ID in your control panel.
At that moment your JET ID will be generated. With this identifier you can make the calls that we explain in the following sections.
Integration
Instructions for integration
All of these fields are required: cardHolderName , dateMonth , dateYear . The data-paycomet attribute must be maintained with its corresponding values. The attribute name should not appear in these fields
<input type="text" data-paycomet="cardHolderName"> <input type="text" data-paycomet="dateMonth"> <input type="text" data-paycomet="dateYear">
The place where the card will be inserted and the CVC2 code must have a DIV over the INPUT.
<div id="paycomet-pan" data-paycomet="paNumber" style="style for card number"></ div> <input type="text" id="old-pan-input"/> <div id="paycomet-cvc2" data-paycomet="cvc2" style="style for CVC2 code"></ div> <input type="text" id="old-CVC2-input"/>
The div with id "paycomet-pan" and "paycomet-cvc2" are required.
The indicated ids of div "paycomet-pan" and "paycomet-cvc2" must be maintained.
The style that is defined in-line in the div will be the one with the input. In other words, to define the styles of these fields it must be put in the style attribute of each DIV. Only in-line styles will be taken, the rest will be ignored.
By default, the PAN field has a mask that shows the type of card in an icon on the left, inside the INPUT and a TICK at the end that indicates whether the format is correct. If you do not want to incorporate this design just enter a hidden field in the form as follows:
<input type="hidden" data-paycomet="no-mask" value="">
You must include your jetID in this way:
<input type="hidden" data-paycomet="jetID" value="[customer-jetID]"></inputt>
You must include "https://api.paycomet.com/gateway/paycomet..js" at the end of the document
<script src="https://api.paycomet.com/gateway/paycomet.jetiframe.js"></ script>
This integration should be Javascript isolated, therefore you should not use Javascript script that interacts with the payment form.
Payment form
Following is an example of how to adapt your payment form in order to use the JET-IFRAME solution.
Trade form before integration:
<div class="container"> <div class="row"> <aside class="col-sm-6"> <article class="card"> <div class="card-body p-5"> <p> <img src="http://bootstrap-ecommerce.com/main/images/icons/pay-visa.png"> <img src="http://bootstrap-ecommerce.com/main/images/icons/pay-mastercard.png"> <img src="http://bootstrap-ecommerce.com/main/images/icons/pay-american-ex.png"> </p> <p class="alert alert-success">Some text success or error</p> <form role="form" action="index.php"> <input type="hidden" name="amount" value="1234"> <div class="form-group"> <label for="username">Full name (on the card)</label> <div class="input-group"> <div class="input-group-prepend"> <span class="input-group-text"><i class="fa fa-user"></i></span> </div> <input type="text" class="form-control" name="username" placeholder="" required=""> </div> <!-- input-group.// --> </div> <!-- form-group.// --> <div class="form-group"> <label for="cardNumber">Card number</label> <div class="input-group"> <div class="input-group-prepend"> <span class="input-group-text"><i class="fa fa-credit-card"></i></span> </div> <input type="text" class="form-control" name="cardNumber" placeholder=""> </div> <!-- input-group.// --> </div> <!-- form-group.// --> <div class="row"> <div class="col-sm-8"> <div class="form-group"> <label><span class="hidden-xs">Expiration</span> </label> <div class="form-inline"> <select class="form-control" style="width:45%" data-paycomet="dateMonth"> <option>MM</option> <option value="01">01 - January</option> <option value="02">02 - February</option> <option value="03">03 - March</option> <option value="04">04 - April</option> <option value="05">05 - May</option> <option value="06">06 - June</option> <option value="07">07 - July</option> <option value="08">08 - August</option> <option value="09">09 - September</option> <option value="10">10 - October</option> <option value="11">11 - November</option> <option value="12">12 - December</option> </select> <span style="width:10%; text-align: center"> / </span> <select class="form-control" style="width:45%" data-paycomet="dateYear"> <option>YY</option> <option value="20">2020</option> <option value="21">2021</option> <option value="22">2022</option> <option value="23">2023</option> <option value="24">2024</option> <option value="25">2025</option> <option value="26">2026</option> <option value="27">2027</option> <option value="28">2028</option> <option value="29">2029</option> <option value="30">2030</option> </select> </div> </div> </div> <div class="col-sm-4"> <div class="form-group"> <label data-toggle="tooltip" title="" data-original-title="3 digits code on back side of the card">CVV <i class="fa fa-question-circle"></i></label> <input class="form-control" required="" type="text"> </div> <!-- form-group.// --> </div> </div> <!-- row.// --> <button class="subscribe btn btn-primary btn-block" type="button"> Confirm </button> </form> </div> <!-- card-body.// --> </article> <!-- card.// --> </aside> </div> </div>
Trade form after integration:
<div class="container"> <div class="row"> <aside class="col-sm-6"> <article class="card"> <div class="card-body p-5"> <p> <img src="http://bootstrap-ecommerce.com/main/images/icons/pay-visa.png"> <img src="http://bootstrap-ecommerce.com/main/images/icons/pay-mastercard.png"> <img src="http://bootstrap-ecommerce.com/main/images/icons/pay-american-ex.png"> </p> <p class="alert alert-success">Some text success or error</p> <form role="form" id="paycometPaymentForm" action="index.php" method="POST"> <input type="hidden" name="amount" value="1234"> <input type="hidden" data-paycomet="jetID" value="[customer-jetID]"> <div class="form-group"> <label for="username">Full name (on the card)</label> <div class="input-group"> <div class="input-group-prepend"> <span class="input-group-text"><i class="fa fa-user"></i></span> </div> <input type="text" class="form-control" name="username" data-paycomet="cardHolderName" placeholder="" required=""> </div> <!-- input-group.// --> </div> <!-- form-group.// --> <div class="form-group"> <label for="cardNumber">Card number</label> <div class="input-group"> <div class="input-group-prepend"> <span class="input-group-text"><i class="fa fa-credit-card"></i></span> </div> <div id="paycomet-pan" style="padding:0px; height:36px;"></div> <input paycomet-style="width: 100%; height: 21px; font-size:14px; padding-left:7px; padding-top:8px; border:0px;" paycomet-name="pan" paycomet-placeholder="Enter your card..."> </div> <!-- input-group.// --> </div> <!-- form-group.// --> <div class="row"> <div class="col-sm-8"> <div class="form-group"> <label><span class="hidden-xs">Expiration</span> </label> <div class="form-inline"> <select class="form-control" style="width:45%" data-paycomet="dateMonth"> <option>MM</option> <option value="01">01 - January</option> <option value="02">02 - February</option> <option value="03">03 - March</option> <option value="04">04 - April</option> <option value="05">05 - May</option> <option value="06">06 - June</option> <option value="07">07 - July</option> <option value="08">08 - August</option> <option value="09">09 - September</option> <option value="10">10 - October</option> <option value="11">11 - November</option> <option value="12">12 - December</option> </select> <span style="width:10%; text-align: center"> / </span> <select class="form-control" style="width:45%" data-paycomet="dateYear"> <option>YY</option> <option value="20">2020</option> <option value="21">2021</option> <option value="22">2022</option> <option value="23">2023</option> <option value="24">2024</option> <option value="25">2025</option> <option value="26">2026</option> <option value="27">2027</option> <option value="28">2028</option> <option value="29">2029</option> <option value="30">2030</option> </select> </div> </div> </div> <div class="col-sm-4"> <div class="form-group"> <label data-toggle="tooltip" title="" data-original-title="3 digits code on back side of the card">CVV <i class="fa fa-question-circle"></i></label> <div id="paycomet-cvc2" style="height: 36px; padding:0px;"></div> <input paycomet-name="cvc2" paycomet-style="border:0px; width: 100%; height: 21px; font-size:12px; padding-left:7px; padding-tap:8px;" paycomet-placeholder="CVV2" class="form-control" required="" type="text"> </div> <!-- form-group.// --> </div> </div> <!-- row.// --> <button class="subscribe btn btn-primary btn-block" type="submit"> Confirm </button> </form> <div id="paymentErrorMsg"> </div> </div> <!-- card-body.// --> </article> <!-- card.// --> </aside> </div> </div> <script src="https://api.paycomet.com/gateway/paycomet.jetiframe.js?lang=en"></script>
What has changed?
- The method must be
POST
- The hidden field is included
<input type="hidden" data-paycomet="jetID" value="[customer-jetID]">
- The name field of the card holder happens to have the attribute:
data-paycomet="cardHoldername"
- On the field of PAN a div is included with
id="paycomet-pan"
<div id="paycomet-pan" style="width: 433px; height: 29px;"></div>
- In the input of the PAN an attribute is added with the styles that field will have:
paycomet-style="width:419px; height:21px; font-size:12px; padding-left:7px;"
- In the input of the PAN an attribute is added with the placeholder that field will have:
paycomet-placeholder="Enter your card..."
- An attribute is added to the bread input:
paycomet-name="pan"
- In the PAN input all attributes are deleted but the new ones.
- In the selectors of month and year are added attributes:
data-paycomet="dateMonth"
data-paycomet="dateYear"
- In the selectors of month and year the values are adjusted so that they have the format accepted by paycomet: mm y yy.
- On the CVC2 field a div is included with
id="paycomet-cvc2"
<div id="paycomet-cvc2" style="width: 134px; height: 29px;"></div>
- In the CVC2 input an attribute is added with the styles that field will have:
paycomet-style="width: 120px; height: 21px; font-size:12px; padding-left:7px;"
- In the CVC2 input an attribute is added with the placeholder that field will have:
paycomet-placeholder="CVV2"
- In the CVC2 input an attribute is added:
paycomet-name="cvc2"
- In the CVC2 input all attributes are deleted but the new ones.
- A new div is added to host the error messages. The user can freely add styles in CSS or inline for the contents of this div:
<div id="paymentErrorMsg"></div>
- The script that will run the entire system is added
<script src="https://api.paycomet.com/gateway/paycomet.jetiframe.js?lang=es"></script>/pre>
Return of the call
After sending the form, the call to the callback function or the action defined in the form, you will receive the temporary token with which you must make a call to:
- If you use an XML integration you must use add_user_token.
- If you use a REST integration, you have to make a call to /v1/cards with only the terminal and jetToken.
In the following example we can see how to use this temporary token in PHP to create a permanent token and to start operating with the user
Usage examples
Next we will show an example of code where the action of the previous form is received where the basic operations are carried out to make a payment (with XML integration).
In this case, after dynamically adding the token to the form, we have received it as the variable paytpvToken . With this token (remember that it is only valid for five minutes) we can create the necessary signature to use the SOAP API provided by PAYCOMET. With the SOAP client already created, we can perform a series of operations. The first thing will be to register the user and if it is the first time he uses the platform it will be saved for future purchases.
By invoking "add_user_token" we will return a token that will serve to indicate to PAYCOMET future operations on it without the need to re-enter the card or the vendor to store any data of the client. The token can be saved and related to any user identifier that the vendor system has (cookies, registered users ...) without incurring unsafe practices. Once the user has registered, we can proceed with the collection operation (or any of those provided in the PAYCOMET API).
It is recommended to know and use the PAYCOMET' PHP API as shown in the following example:
With XML services:
<?php
/**
* PAYCOMET JET IFRAME callback
* Tracking ID: SSX-7MS-JX3J
*
* @author PAYCOMET
* @copyright Copyright (c) 2019, PAYCOMET
* @version 1.1 2019-11-07
*/
$jetID = "** yourJETID";
$merchantCode = "** yourmerchantcode";
$terminal = "** terminalnumber";
$password = "** yourpassword";
if (isset($_POST["paytpvToken"])) {
date_default_timezone_set("Europe/Madrid");
$token = $_POST["paytpvToken"];
if ($token && strlen($token) == 64) {
$endPoint = "https://api.paycomet.com/gateway/xml-bankstore?wsdl";
$productDescription = "XML_BANKSTORE TEST productDescription";
$owner = "XML_BANKSTORE TEST owner";
$signature
= hash("sha512",
$merchantCode
.$token
.$jetID
.$terminal
.$password
);
$ip = $_SERVER["REMOTE_ADDR"];
try {
$context = stream_context_create(array(
'ssl' => array(
'verify_peer' => false,
'verify_peer_name' => false,
'allow_self_signed' => true
)
));
$clientSOAP = new SoapClient($endPoint, array('stream_context' => $context));
$addUserTokenResponse
= $clientSOAP->add_user_token(
$merchantCode,
$terminal,
$token,
$jetID,
$signature,
$ip
);
if ($addUserTokenResponse["DS_ERROR_ID"] == "0") {
// OK
echo " Success. Token received.";
var_dump($addUserTokenResponse);
$order = "MERCHANTORDER-" . date("Y/m/d h:I:s");
$signature
= hash("sha512",
$merchantCode
.$addUserTokenResponse["DS_IDUSER"]
.$addUserTokenResponse["DS_TOKEN_USER"]
.$terminal
.$_POST["amount"]
.$order
.$password
);
$productDescription = "XML_BANKSTORE TEST productDescription";
$owner = "XML_BANKSTORE TEST owner";
$executePurchaseResponse
= $clientSOAP->execute_purchase(
$merchantCode,
$terminal,
$addUserTokenResponse["DS_IDUSER"],
$addUserTokenResponse["DS_TOKEN_USER"],
$_POST["amount"],
$order,
"EUR",
$signature,
$ip,
$productDescription,
$owner
);
if ($executePurchaseResponse["DS_RESPONSE"] == "1") {
// OK
var_dump("Successful purchase
");
return true;
} else {
//KO
var_dump("Error in execute purchase");
var_dump($executePurchaseResponse["DS_ERROR_ID"]);
return false;
}
var_dump($executePurchaseResponse);
} else {
var_dump("Error in add user token");
var_dump($addUserTokenResponse["DS_ERROR_ID"]);
return false;
}
} catch(SoapFault $e){
var_dump($e);
}
} else {
var_dump("Error, token not found");
return false;
}
return false;
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
</head>
<body>
<script src="//cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js"></script>
<link href="//maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css" rel="stylesheet" id="bootstrap-css">
<script src="//maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js"></script>
<!------ Include the above in your HEAD tag ---------->
<link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.0.8/css/all.css">
<div class="container">
<div class="row">
<aside class="col-sm-6">
<p><h1>JET-IFRAME </h1> </p>
<article class="card">
<div class="card-body p-5">
<p>
<h3> Test card </h3>
PAN : 4539 2320 7664 8253 <br/>
CVC: 123 <br/>
Exp. Date: 05 / 25 <br/>
</p>
<p class="alert alert-success">Some text success or error</p>
<form role="form" id="paycometPaymentForm" method="POST">
<input type="hidden" name="amount" value="1234">
<input type="hidden" data-paycomet="jetID" value="<?php echo $jetID; ?>">
<div class="form-group">
<label for="username">Full name (on the card)</label>
<div class="input-group">
<div class="input-group-prepend">
<span class="input-group-text"><i class="fa fa-user"></i></span>
</div>
<input type="text" class="form-control" name="username" data-paycomet="cardHolderName" placeholder="" required="">
</div> <!-- input-group.// -->
</div> <!-- form-group.// -->
<div class="form-group">
<label for="cardNumber">Card number</label>
<div class="input-group">
<div class="input-group-prepend">
<span class="input-group-text"><i class="fa fa-credit-card"></i></span>
</div>
<div id="paycomet-pan" style="padding:0px; height:36px;"></div>
<input paycomet-style="width: 100%; height: 21px; font-size:14px; padding-left:7px; padding-top:8px; border:0px;" paycomet-name="pan">
</div> <!-- input-group.// -->
</div> <!-- form-group.// -->
<div class="row">
<div class="col-sm-8">
<div class="form-group">
<label><span class="hidden-xs">Expiration</span> </label>
<div class="form-inline">
<select class="form-control" style="width:45%" data-paycomet="dateMonth">
<option>MM</option>
<option value="01">01 - January</option>
<option value="02">02 - February</option>
<option value="03">03 - March</option>
<option value="04">04 - April</option>
<option value="05">05 - May</option>
<option value="06">06 - June</option>
<option value="07">07 - July</option>
<option value="08">08 - August</option>
<option value="09">09 - September</option>
<option value="10">10 - October</option>
<option value="11">11 - November</option>
<option value="12">12 - December</option>
</select>
<span style="width:10%; text-align: center"> / </span>
<select class="form-control" style="width:45%" data-paycomet="dateYear">
<option>YY</option>
<option value="20">2020</option>
<option value="21">2021</option>
<option value="22">2022</option>
<option value="23">2023</option>
<option value="24">2024</option>
<option value="25">2025</option>
<option value="26">2026</option>
<option value="27">2027</option>
<option value="28">2028</option>
<option value="29">2029</option>
<option value="30">2030</option>
</select>
</div>
</div>
</div>
<div class="col-sm-4">
<div class="form-group">
<label data-toggle="tooltip" title=""
data-original-title="3 digits code on back side of the card">CVV <i
class="fa fa-question-circle"></i></label>
<div id="paycomet-cvc2" style="height: 36px; padding:0px;"></div>
<input paycomet-name="cvc2" paycomet-style="border:0px; width: 100%; height: 21px; font-size:12px; padding-left:7px; padding-tap:8px;" class="form-control" required="" type="text">
</div> <!-- form-group.// -->
</div>
</div> <!-- row.// -->
<button class="subscribe btn btn-primary btn-block" type="submit"> Confirm </button>
</form>
<div id="paymentErrorMsg">
</div>
</div> <!-- card-body.// -->
</article> <!-- card.// -->
</aside>
</div>
</div>
<script src="https://api.paycomet.com/gateway/paycomet.jetiframe.js?lang=en"></script>
</body>
</html>
With the PHP API
<?php
/**
* PAYCOMET JET callback
* Tracking ID: SSX-7MS-JX3J
*
* @author PAYCOMET
* @copyright Copyright (c) 2019, PAYCOMET
* @version 1.0 2016-05-01
*/
include("class/paycomet_bankstore.php");
date_default_timezone_set("Europe/Madrid");
$token = $_POST["paytpvToken"];
if ($token && strlen($token) == 64) {
$endPoint = "https://api.paycomet.com/gateway/xml-bankstore?wsdl";
$merchantCode = "** yourmerchantcode";
$terminal = "** terminalnumber";
$password = "** yourpassword";
$jetID = "** yourJETID";
$signature = hash("sha512",$merchantCode.$token.$jetID.$terminal.$password);
$ip = $_SERVER["REMOTE_ADDR"];
$paycomet
= new Paycomet_Bankstore($merchantCode, $terminal, $password, $jetID);
$resp = $paycomet->AddUserToken($token);
$idUser = $resp->DS_IDUSER;
$tokenUser = $resp->DS_TOKEN_USER;
$purchaseResult
= $paycomet->ExecutePurchase(
$resp->DS_IDUSER,
$resp->DS_TOKEN_USER,
$_POST["amount"],
"REFERENCIAPEDIDO",
"EUR"
);
if ($purchaseResult->DS_RESPONSE == "1") {
return true;
} else {
var_dump($purchaseResult->DS_ERROR_ID);
return false;
}
} else {
var_dump("Error, no se ha obtenido token");
return false;
}
return false;
Handler
JET-IFRAME does not allow actions to be taken between sending and generating tokens. However, you can use this method to handle the form with the token.
The following example adds a call to customFunction() in the action of the form and then performs operations from there.
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
</head>
<body>
<form role="form" id="paycometPaymentForm" action="javascript:customFunction();" method="POST">
<!------ Form ---------->
</form>
<script>
function customFunction(){
myForm = document.getElementById("paycometPaymentForm");
console.log(myForm);
}
</script>
</body>
</html>