public CardlessWithdrawalResponse AuthorizeTransaction(String IP, String TransactionID, string AccountNumber, string providerToken, String TransactionType, String SessionKey, decimal Amount)
{
var p = HttpContext.Current.Request.Headers;
PaycodeDbDataContext ctx = new PaycodeDbDataContext();
nLogger.Info("IP::: " + IP);
CardlessWithdrawalResponse res = null;
try
{
String IPs = ConfigurationManager.AppSettings["AllowedIPS"];
String[] allowedIPs = IPs.Split(new char[] { ';' });
CardlessWithdrawalTransaction rettransaction = ctx.CardlessWithdrawalTransactions.Where(pwmt => pwmt.AccountNumber == AccountNumber && pwmt.ProviderToken == providerToken).FirstOrDefault();
CardlessWithdrawalAuthorisationRequestLog plog = new CardlessWithdrawalAuthorisationRequestLog()
{
AccountNumber = AccountNumber,
Amount = Amount,
RequestDate = DateTime.Now,
ISW_IP = IP,
TransactionID = TransactionID,
TransactionType = TransactionType,
ProviderToken = providerToken,
IsValid = false,
ResponseMessage = ""
};
ctx.CardlessWithdrawalAuthorisationRequestLogs.InsertOnSubmit(plog);
ctx.SubmitChanges();
if (!allowedIPs.Contains(IP))
{
res = new CardlessWithdrawalResponse()
{
ResponseCode = "06", ResponseDescription = "Security Check Failed"
};
}
else
if (rettransaction == null)
{
res = new CardlessWithdrawalResponse()
{
ResponseCode = "12", ResponseDescription = "Account Number/ Provider Token is not valid"
};
}
else
{
String signatureMethod = "SHA1";
String CypherKey = String.Format("{0}|{1}|{2}", rettransaction.AccountNumber, rettransaction.ProviderToken, rettransaction.TransactionType);
MessageDigest messageDigest = MessageDigest
.GetInstance(signatureMethod);
byte[] signatureBytes = messageDigest
.Digest(Encoding.UTF8.GetBytes(CypherKey)); // encode signature as base 64
String signature = Convert.ToBase64String(signatureBytes);
if (signature.Equals(SessionKey))
{
using (TransactionScope scope = new TransactionScope())
{
//Check if Token is valid
if (rettransaction == null)
{
res = new CardlessWithdrawalResponse()
{
ResponseCode = "11", ResponseDescription = "Authorization Token is not Valid"
};
}
else
if (rettransaction.ExpiryDate < DateTime.Now || rettransaction.IsExpired == true)
{
//Check Token Expiry
res = new CardlessWithdrawalResponse()
{
ResponseCode = "12", ResponseDescription = "Token has Expired"
};
}
else if (rettransaction.IsTokenUsed == true)
{
res = new CardlessWithdrawalResponse()
{
ResponseCode = "12", ResponseDescription = "Token has already been used "
};
}
else if (rettransaction.IsCanceled == true)
{
res = new CardlessWithdrawalResponse()
{
ResponseCode = "12", ResponseDescription = "Token has been cancelled"
};
}
else
if (rettransaction.TransactionAmount == rettransaction.AmountAuthorized)
{
res = new CardlessWithdrawalResponse()
{
ResponseCode = "12", ResponseDescription = "Token has already been used "
};
}
else if (Amount > (rettransaction.TransactionAmount - rettransaction.AmountAuthorized))
{
res = new CardlessWithdrawalResponse()
{
ResponseCode = "13", ResponseDescription = "Invalid Amount"
};
}
else
{
if (ctx.CardlessWithdrawalAuthorisations.Where(pwm => pwm.TransactionID == TransactionID).Any())
{
res = new CardlessWithdrawalResponse()
{
ResponseCode = "26", ResponseDescription = "Transaction ID already used"
};
}
else
{
String resp = TransferFund(rettransaction.AccountNumber, ConfigurationManager.AppSettings["ISWPayableAccount"], Amount, "Cardless Withdrawal Transaction", plog);
nLogger.Info("Funds Transfer " + resp);
if ("00".Equals(resp))
{
CardlessWithdrawalAuthorisation pauthorisation = new CardlessWithdrawalAuthorisation()
{
AccountNumber = rettransaction.AccountNumber,
Amount = plog.Amount,
AuthorisationDate = DateTime.Now,
ISW_IP = IP,
CardlessWithdrawalTransactionID = rettransaction.ID,
TransactionID = TransactionID,
TransactionType = TransactionType,
IsReversed = false,
FinacleResponse = plog.FinacleResponse,
FinacleStan = plog.FinacleStan,
FinacleTransactionDateTime = plog.FinacleTransactionDateTime
};
ctx.CardlessWithdrawalAuthorisations.InsertOnSubmit(pauthorisation);
ctx.SubmitChanges();
rettransaction.TokenUsageCount = rettransaction.TokenUsageCount + 1;
rettransaction.AmountAuthorized = rettransaction.AmountAuthorized + pauthorisation.Amount;
ctx.SubmitChanges();
if (rettransaction.TransactionAmount == rettransaction.AmountAuthorized)
{
rettransaction.IsTokenUsed = true;
}
//Token can only be used once according to ISW new requirement
rettransaction.IsTokenUsed = true;
ctx.SubmitChanges();
plog.IsValid = true;
scope.Complete();
//PaymentAuthorisation
res = new CardlessWithdrawalResponse()
{
ResponseCode = "00", ResponseDescription = "Authorized"
};
}
else
{
res = new CardlessWithdrawalResponse()
{
ResponseCode = "06", ResponseDescription = "Transaction Failed"
};
}
}
}
//10041
}
}
else
{
// nLogger.Info("Security Check Failed");
res = new CardlessWithdrawalResponse()
{
ResponseCode = "06", ResponseDescription = "Security Check Failed"
};
//Security Check Failed
}
}
plog.ResponseMessage = res.ResponseCode + "|" + res.ResponseDescription;
ctx.SubmitChanges();
}
catch (Exception ex)
{
nLogger.Error(ex);
res = new CardlessWithdrawalResponse()
{
ResponseCode = "06", ResponseDescription = "An unknown error has occured"
};
}
return(res);
//return System.Guid.NewGuid().ToString().Substring(0, 10);
}
public static PaycodeGenerationResponse RetrievePaycodeGenerationCustomResponse(CardlessWithdrawalTransaction transaction)
{
var response = new PaycodeGenerationResponse();
try
{
if (transaction != null)
{
response.amount = (decimal)transaction.TransactionAmount;
response.isSuccessful = true;
response.payCode = transaction.PayWithMobileToken;
response.tokenLifeTimeInMinutes = (int)transaction.TokenLifeTimeInMinutes;
response.transactionRef = transaction.TransactionReference;
}
else
{
response.isSuccessful = false;
}
} catch (Exception e) { }
return(response);
}
public CardlessWithdrawalTransaction GeneratePayCode(String SessionKey, String SourceChannel, String AccountNumber, String subscriberID, String oneTimePin, String CIF, decimal Amount)
{
ServicePointManager.ServerCertificateValidationCallback += (sender, cert, chain, sslPolicyErrors) => true;
ServicePointManager.SecurityProtocol =
(SecurityProtocolType.Ssl3 | SecurityProtocolType.Tls) | (SecurityProtocolType.Tls11 | SecurityProtocolType.Tls12);
int tokenLifeTimeInMinute = Convert.ToInt32(System.Configuration.ConfigurationManager.AppSettings["tokenLifeExpiryInMinutes"]);
String accountType = "00";//00- All 10-Savings 20-Current
CardlessWithdrawalTransaction transaction = new CardlessWithdrawalTransaction();
try
{
String additionalParameters = "";
MobileTokenRequest tokenrequest = new MobileTokenRequest();
tokenrequest.subscriberId = subscriberID;//Mandatory - AccountNumber
String transactionreference = DateTime.Now.ToString("yyMMddHHmmssfff");
String otp = DateTime.Now.ToString("yyMMddHHmmssfff");
tokenrequest.oneTimePin = oneTimePin;
tokenrequest.providerToken = otp;// GeneratedToken;//
if (IsLive())
{
nLogger.Info("is live credential");
tokenrequest.paymentMethodTypeCode = PaymentMethodTypes.MMO; //Mandatory this is for production,
tokenrequest.frontEndPartnerId = FrontEndPartners.Octopus; //Mandatory this is for production,
tokenrequest.paymentMethodCode = PaymentMethods.Octopus; //Mandatory
}
else
{
nLogger.Info("is test credential");
tokenrequest.frontEndPartnerId = FrontEndPartners.HbOnline; //Mandatory: this code needs to be agreed with ISW
tokenrequest.paymentMethodTypeCode = PaymentMethodTypes.MMO; //Mandatory t
tokenrequest.paymentMethodCode = PaymentMethods.Octopus; //Mandatory
}
//tokenrequest.paymentMethodTypeCode = PaymentMethodTypes.MMO ;//Mandatory this is for test
tokenrequest.tokenLifeTimeInMinutes = tokenLifeTimeInMinute;
tokenrequest.payWithMobileChannel = PayWithMobileChannels.ATM;//ATM, POS,MOBILE and WEB.
//tokenrequest.autoEnroll = "true";
//tokenrequest.accountNo = AccountNumber;
//tokenrequest.accountType = accountType;
tokenrequest.ttid = "1234";
tokenrequest.transactionType = TransactionTypes.CashWithdrawal; //A code to indicate the transaction type e.g Payment, Cash Withdrawal, Deposit
tokenrequest.codeGenerationChannel = CodeGenerationChannels.Mobile; //Conditional//A code to identify the channel where the code is generated e.g. USSD, Mobile et al
tokenrequest.Amount = Amount; // 9000.00;//Conditional
//if (SessionKey != Hash512("GENTOKEN" + AccountNumber + Amount + subscriberID + oneTimePin + SourceChannel + CIF))
if (false)
{
transaction.TransactionReference = "67|Security Validation Failed";
}
else
if ((Amount % 1000) != 0)
{
transaction.TransactionReference = "67|Amount must be in multiples of 1000 (NGN).";
}
else if (Amount > 20000 || Amount < 1000)
{
transaction.TransactionReference = "67|Amount cannot be greater than 20000 and less than 1000.";
}
else
{
String hashKey = Hash512("GENTOKEN" + tokenrequest.oneTimePin + tokenrequest.subscriberId);
nLogger.Info("token request payload :::::: " + JsonSerializer(tokenrequest));
TokenGeneration generation = new TokenGeneration();
String response = generation.GetAuthorizationToken(hashKey, additionalParameters, tokenrequest);
nLogger.Info("Before Getting AUthorisation");
nLogger.Info("response :::::: " + response);
if ((response + "").StartsWith("67|"))
{
transaction.TransactionReference = response;
}
else
if (response.Length > 3)
{
nLogger.Info("response :::2::: " + response);
TokenRequest retobject = JsonConvert.DeserializeObject <TokenRequest>(response);
//Send WICODE to registered Phone Number
//Place Lien On Account
//Check Available Balance
nLogger.Info("response :::3::: " + response);
transaction = new CardlessWithdrawalTransaction()
{
SourceChannel = SourceChannel,
AccountNumber = AccountNumber,
CodeGenerationChannel = tokenrequest.codeGenerationChannel,
CIF = CIF,
FrontEndPartnerId = tokenrequest.frontEndPartnerId,
OneTimePassword = Hash512(tokenrequest.oneTimePin),
PaymentMethodCode = tokenrequest.paymentMethodCode,
PaymentMethodTypeCode = tokenrequest.paymentMethodTypeCode,
PayWithMobileChannel = tokenrequest.payWithMobileChannel,
ProviderToken = tokenrequest.providerToken,
RequestDate = DateTime.Now,
TokenUsageCount = 0,
AmountAuthorized = 0,
TokenLifeTimeInMinutes = tokenrequest.tokenLifeTimeInMinutes,
TransactionAmount = tokenrequest.Amount,
TransactionType = tokenrequest.transactionType,
TransactionReference = transactionreference,
PayWithMobileToken = retobject.payWithMobileToken,
IsCanceled = false,
IsExpired = false,
IsTokenUsed = false
};
String signatureMethod = "SHA1";
String CypherKey = String.Format("{0}|{1}|{2}", transaction.AccountNumber, transaction.ProviderToken, transaction.TransactionType);
MessageDigest messageDigest = MessageDigest
.GetInstance(signatureMethod);
byte[] signatureBytes = messageDigest
.Digest(Encoding.UTF8.GetBytes(CypherKey)); // encode signature as base 64
String signature = Convert.ToBase64String(signatureBytes);
nLogger.Info("response :::5::: " + signature);
transaction.AuthorizationSessionKey = signature;
DateTime ExpiryDate = transaction.RequestDate.Value.AddMinutes(Convert.ToInt32(transaction.TokenLifeTimeInMinutes));
transaction.ExpiryDate = ExpiryDate;
nLogger.Info("response :::6::: " + ExpiryDate);
nLogger.Info("response :::7:: " + JsonConvert.SerializeObject(transaction));
var clearPayCode = transaction.PayWithMobileToken;
//send mail and sms
}
else
{
nLogger.Info(response);
transaction.TransactionReference = "67|Cannot generate Paycode at the moment. Please try again later.";//Could not generate WICode
}
}
}
catch (WebException ex)
{
nLogger.Info(ex.ToString());
try
{
using (WebResponse response = ex.Response)
{
HttpWebResponse httpResponse = (HttpWebResponse)response;
nLogger.Info("Error code: {0}", httpResponse.StatusCode);
nLogger.Info("Status Description: {0}", httpResponse.StatusDescription);
string text = "";
using (Stream data = response.GetResponseStream())
{
text = new StreamReader(data).ReadToEnd();
nLogger.Info(text);
}
}
}
catch
{ nLogger.Info("Something went wrong"); }
transaction.TransactionReference = "67|Cannot generate Paycode at the moment. Please try again later.";
nLogger.Error(ex);
}
catch (Exception ex)
{
transaction.TransactionReference = "67|Cannot generate Paycode at the moment. Please try again later.";
nLogger.Error(ex);
}
return(transaction);
}
