PHP 5.6 and later
To get started, install the package via the Composer package manager:
composer require craigpaul/moneris-api
Creating a new Moneris instance is quite easy and straightforward.
use CraigPaul\Moneris\Moneris;
...
$id = 'store1';
$token = 'yesguy';
// optional
$params = [
'environment' => Moneris::ENV_TESTING, // default: Moneris::ENV_LIVE
'avs' => true, // default: false
'cvd' => true, // default: false
'cof' => true, // default: false
];
$gateway = (new Moneris($id, $token, $params))->connect();
use CraigPaul\Moneris\Moneris;
...
$id = 'store1';
$token = 'yesguy';
// optional
$params = [
'environment' => Moneris::ENV_TESTING, // default: Moneris::ENV_LIVE
'avs' => true, // default: false
'cvd' => true, // default: false
'cof' => true, // default: false
];
$gateway = Moneris::create($id, $token, $params);
Note: Please note that the Moneris store id and API token are always required to be passed to the Moneris constructor or static create method.
To make a purchase, preauth a card, void a transaction, etc. is very straightforward once you have your Gateway instantiated (see above).
$params = [
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'credit_card' => '4242424242424242',
'expiry_month' => '12',
'expiry_year' => '20',
];
$response = $gateway->purchase($params);
$params = [
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'credit_card' => '4242424242424242',
'expiry_month' => '12',
'expiry_year' => '20',
];
$response = $gateway->preauth($params);
$params = [
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'credit_card' => '4242424242424242',
'expiry_month' => '12',
'expiry_year' => '20',
];
$response = $gateway->preauth($params);
$response = $gateway->capture($response->transaction);
$params = [
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'credit_card' => '4242424242424242',
'expiry_month' => '12',
'expiry_year' => '20',
];
$response = $gateway->purchase($params);
$response = $gateway->void($response->transaction);
$params = [
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'credit_card' => '4242424242424242',
'expiry_month' => '12',
'expiry_year' => '20',
];
$response = $gateway->purchase($params);
$response = $gateway->refund($response->transaction);
$params = [
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'credit_card' => '4242424242424242',
'expiry_month' => '12',
'expiry_year' => '20',
];
$response = $gateway->verify($params);
To take advantage of the Card Verification Digits and/or Address Verification Service provided by Moneris, you need to tell Moneris that upon instantiation (as shown above).
When making a CVD secured purchase, pre-authorization or card verification, you need to pass the following parameter to the Gateway method you are utilizing.
$params = [
// `cvd` needs to be included in your transaction parameters.
'cvd' => '111',
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'credit_card' => $this->visa,
'expdate' => '2012',
];
$response = $gateway->verify($params); // could be purchase, preauth, etc.
When making an AVS secured purchase, pre-authorization or card verification, you need to pass the following parameters to the Gateway method you are utilizing.
$params = [
// `avs_*` keys need to be included in your transaction parameters.
'avs_street_number' => '123',
'avs_street_name' => 'Fake Street',
'avs_zipcode' => 'X0X0X0',
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'credit_card' => $this->visa,
'expdate' => '2012',
];
$response = $gateway->verify($params); // could be purchase, preauth, etc.
Note: When making an AVS or CVD secured transaction, even if AVS or CVD fails, you will still have to void the transaction (DAMN MONERIS!). There are two easy ways around this.
Verify the card first. Using this method, there is one additional caveat (let me repeat it again...DAMN MONERIS!). Your verification transaction and purchase transaction must have different order_id
parameters. One such solution could be to prepend an specific prefix to the front of verification order ids.
$response = $gateway->verify($params);
if ($response->successful && !$response->failedAvs && !$response->failedCvd) {
$response = $gateway->purchase($params);
if ($response->successful) {
$receipt = $response->receipt();
} else {
$errors = $response->errors;
}
}
Void the transaction.
$response = $gateway->purchase($params);
if ($response->successful && ($response->failedAvs || $response->failedCvd)) {
$errors = $response->errors;
$response = $gateway->void($response->transaction);
} elseif (!$response->successful) {
$errors = $response->errors;
} else {
$receipt = $response->receipt();
}
The credential on file is part of the new Visa requirements to pass the CVD/CVV2 data for transactions.
$params = [
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'data_key' => $key,
'payment_indicator' => 'U',
'payment_information' => '2',
'issuer_id' => $issuer_id // this is optional
];
$response = $vault->purchase($params); // could be purchase, preauth, etc.
The Moneris Vault allows you create and maintain credit card profiles on the Moneris servers instead of your own. To access the Vault, you will need to have your instantiated Gateway (see above).
$vault = $gateway->cards();
Note: The expiry passed into the credit card is in the format of YYMM as that is how Moneris accepts it.
use CraigPaul\Moneris\CreditCard;
...
$card = CreditCard::create('4242424242424242', '2012');
$response = $vault->add($card);
In order to maintain your credit card profiles, Moneris will send back a unique key for the profile that will allow you to keep track in your own database. You can retrieve the key once you have received your Receipt (see more below)
$card = CreditCard::create('4242424242424242', '2012');
$response = $vault->add($card);
$key = $response->receipt()->read('key');
$card->expiry = '2112';
$response = $vault->update($key, $card);
$card = CreditCard::create('4242424242424242', '2012');
$response = $vault->add($card);
$key = $response->receipt()->read('key');
$response = $vault->delete($key);
In order to sync your customer information with the credit cards stored in the Vault, we can attach a basic Customer
object to the CreditCard
.
use CraigPaul\Moneris\Customer;
...
$params = [
'id' => uniqid('customer-', true),
'email' => '[email protected]',
'phone' => '555-555-5555',
'note' => 'Customer note',
];
$customer = Customer::create($params);
$card = CreditCard::create('4242424242424242', '2012');
$card = $card->attach($customer);
$response = $vault->add($card);
use CraigPaul\Moneris\Customer;
...
$params = [
'id' => uniqid('customer-', true),
'email' => '[email protected]',
'phone' => '555-555-5555',
'note' => 'Customer note',
];
$customer = Customer::create($params);
$card = CreditCard::create('4242424242424242', '2012');
$card = $card->attach($customer);
$response = $vault->add($card);
$key = $response->receipt()->read('key');
$card->customer->email = '[email protected]';
$response = $vault->update($key, $card);
Used to create a credit card profile based on a previous transaction.
$params = [
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'credit_card' => '4242424242424242',
'expiry_month' => '12',
'expiry_year' => '20',
];
$response = $gateway->purchase($params);
$response = $vault->tokenize($response->transaction);
If you have the need to look up the masked credit card number you can peek into the Vault.
$card = CreditCard::create('4242424242424242', '2012');
$response = $vault->add($card);
$key = $response->receipt()->read('key');
$response = $vault->peek($key);
$receipt = $response->receipt();
$masked = $receipt->read('data')['masked_pan'];
This transaction can be performed no more then 2 times on any given calendar day as per the Moneris API.
$response = $vault->expiring();
Credit cards stored in the Moneris Vault have a slightly different flow for purchasing and pre-authorization. Any of the other transactions work exactly the same as shown above.
$card = CreditCard::create('4242424242424242', '2012');
$response = $vault->add($card);
$key = $response->receipt()->read('key');
$params = [
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'data_key' => $key,
];
$response = $vault->purchase($params); //
Note: The Vault is used for the transaction here instead of the base Gateway object.
$card = CreditCard::create('4242424242424242', '2012');
$response = $vault->add($card);
$key = $response->receipt()->read('key');
$params = [
'order_id' => uniqid('1234-56789', true),
'amount' => '1.00',
'data_key' => $key,
];
$response = $vault->preauth($params); //
The Response
and Receipt
objects allow you to understand how everything went with your API call. After a transaction returns from being processed the Response
will get validated and return all the relevant information for you.
The information available to you on the Response
object is as follows:
$errors = $response->errors;
Any errors that might occur during your transaction will be returned in the following format for you. It is returned in this format to allow you to handle any translation logic in your own app by utilizing the unique title
and field
keys in each error.
// The following example would be returned when you forget to set the `order_id` on your transaction.
$errors = [
[
'field' => 'order_id',
'code' => self::PARAMETER_NOT_SET, // 2
'title' => 'not_set'
],
];
$status = $response->status;
The status will return a status code matching the appropriate error returned. See below for an example of the possible statuses returned.
ERROR = -23;
INVALID_TRANSACTION_DATA = 0;
FAILED_ATTEMPT = -1;
CREATE_TRANSACTION_RECORD = -2;
GLOBAL_ERROR_RECEIPT = -3;
SYSTEM_UNAVAILABLE = -14;
CARD_EXPIRED = -15;
INVALID_CARD = -16;
INSUFFICIENT_FUNDS = -17;
PREAUTH_FULL = -18;
DUPLICATE_TRANSACTION = -19;
DECLINED = -20;
NOT_AUTHORIZED = -21;
INVALID_EXPIRY_DATE = -22;
CVD = -4;
CVD_NO_MATCH = -5;
CVD_NOT_PROCESSED = -6;
CVD_MISSING = -7;
CVD_NOT_SUPPORTED = -8;
AVS = -9;
AVS_POSTAL_CODE = -10;
AVS_ADDRESS = -11;
AVS_NO_MATCH = -12;
AVS_TIMEOUT = -13;
POST_FRAUD = -22;
$success = $response->successful
The successful property simply lets you know if your transaction has been processed successfully.
The Receipt
object is your record of any information relevant to your transaction you have submitted. To retrieve your receipt once you have a response see the following.
$response = $gateway->purchase($params);
$receipt = $response->receipt();
Depending on that type of transaction, you will have different items on your Receipt
that you have available to read.
$amount = $receipt->read('amount');
For a full list of possible readable receipt items, see below.
amount - The amount of the transaction. (string)
authorization - The authorization code for the transaction. (string)
avs_result - The avs result code for the transaction. (string)
card - The card type used for the transaction. (string)
code - The response code for the transaction. (string)
complete - Whether the transaction had completed correctly or not. (boolean)
cvd_result - The cvd result code. (string)
data - The data related to the customer and card for the transaction. (array)
date - The date of the transaction. (string)
id - The Moneris id of the receipt. (string)
iso - The ISO code for the transaction. (string)
key - The data key used for vault transactions. (string)
message - Any relevant message provided for the transaction. (string)
reference - The reference number for the transaction. (string)
time - The time of the transaction. (string)
transaction - The Moneris id of the transaction. (string)
type - The transaction type. (string)
Please see CHANGELOG for more information on what has changed recently.
Please see CONTRIBUTING for details.
Moneris API is open-sourced software licensed under the MIT license.