Moved repo

Author: iamchriswick

.gitignore

@@ -0,0 +1,44 @@
+*.py[cod]
+
+# C extensions
+*.so
+
+# Packages
+*.egg
+*.egg-info
+dist
+build
+eggs
+parts
+bin
+var
+sdist
+develop-eggs
+.installed.cfg
+lib
+lib64
+__pycache__
+
+# Installer logs
+pip-log.txt
+
+# Unit test / coverage reports
+.coverage
+.tox
+nosetests.xml
+
+# Translations
+*.mo
+
+# Mr Developer
+.mr.developer.cfg
+.project
+.pydevproject
+
+# vim/bsd
+.swp
+.core
+
+.venv
+.idea
+.ropeproject

LICENSE

@@ -0,0 +1,19 @@
+Copyright (C) 2014 mCASH Norge AS
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies
+of the Software, and to permit persons to whom the Software is furnished to do
+so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

README.md

@@ -1 +1,44 @@
-settle-sdk-python
+=================
+mcash-mapi-client
+=================
+
+A SDK used to make communication with mCASH's merchant API easier. A basic usage example is shown in `mapi_client_example`.
+
+Before using this client
+------------------------
+
+* Be aware that this client is in beta. Backwards incompatible changes should not occur, but updates might be frequent. Comments and pull requests are welcome.
+* Make sure you are familiar with the documentation, found at: `<http://dev.mca.sh/merchant/>`_. Consider reading the tutorials at `<http://dev.mca.sh/tutorials/>`_.
+* Register as a merchant at `<https://my.mca.sh/ssp/merchant/>`_
+
+Usage
+-----
+MapiClient is the main class and can be found in `mapi_client`. It's constructor takes 4 required arguments:
+
+* mcash_merchant: Your merchant id, received while registering.
+* mcash_user: Your merchant user, added in the SSP.
+* base_url: The base url to use. For production this is `<http://api.mca.sh/>`_. The URL's to use for testing can be found at `<http://dev.mca.sh/>`_.
+* auth: The authentication method to use. Accepts one of the classes defined in `auth`.  See the 'Auth' section for more information.
+
+After being instantiated with these arguments, the client is ready to use. All functionality is provided as member methods of the MapiClient class.
+
+Auth
+^^^^
+The merchant API supports 3 authentication levels:
+
+* Open (no authentication)
+* Secret
+* RSA
+
+These are represented in the merchant API client as classes in the `auth` file. When passed as an argument to the MapiClient during instantiation, authentication will be automatically applied to every request.
+
+
+License
+-------
+| Copyright (C) 2014 mCASH Norge AS
+| 
+| Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
+| 
+| The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
+| 
+| THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

mcash/__init__.py

@@ -0,0 +1 @@
+__import__('pkg_resources').declare_namespace(__name__)

mcash/mapi_client/__init__.py

@@ -0,0 +1,7 @@
+from mcash.mapi_client.mapi_client import *
+from mcash.mapi_client.auth import *
+from mcash.mapi_client.mapi_error import *
+from mcash.mapi_client.mapi_response import *
+from mcash.mapi_client.backends import *
+from mcash.mapi_client.backends.requestsframework import *
+from mcash.mapi_client.backends.urlfetch import *

mcash/mapi_client/auth.py

@@ -0,0 +1,67 @@
+import base64
+from Crypto.Hash import SHA256
+from Crypto.PublicKey import RSA
+from Crypto.Signature import PKCS1_v1_5
+from time import strftime
+
+__all__ = ["OpenAuth", "SecretAuth", "RsaSha256Auth"]
+
+
+class OpenAuth(object):
+    """Attaches no authentication to the given Request object."""
+
+    def __call__(self, method, url, headers, body):
+        return method, url, headers, body
+
+
+class SecretAuth(object):
+    """Attaches Authentication with secret token to
+    the given Request object."""
+
+    def __init__(self, secret):
+        self.secret = secret
+
+    def __call__(self, method, url, headers, body):
+        headers['Authorization'] = 'SECRET ' + self.secret
+        return method, url, headers, body
+
+
+class RsaSha256Auth(object):
+    """Attaches RSA authentication to the given Request object."""
+
+    def __init__(self, privkey):
+        self.signer = PKCS1_v1_5.new(RSA.importKey(privkey))
+
+    def __call__(self, method, url, headers, body):
+        headers['X-Mcash-Timestamp'] = self._get_timestamp()
+        headers['X-Mcash-Content-Digest'] = self._get_sha256_digest(body)
+        headers['Authorization'] = self._sha256_sign(method, url, headers, body)
+        return method, url, headers, body
+
+    def _get_timestamp(self):
+        """Return the timestamp formatted to comply with
+        Merchant API expectations.
+        """
+        return str(strftime("%Y-%m-%d %H:%M:%S"))
+
+    def _get_sha256_digest(self, content):
+        """Return the sha256 digest of the content in the
+        header format the Merchant API expects.
+        """
+        content_sha256 = base64.b64encode(SHA256.new(content).digest())
+        return 'SHA256=' + content_sha256
+
+    def _sha256_sign(self, method, url, headers, body):
+        """Sign the request with SHA256.
+        """
+        d = ''
+        sign_headers = method.upper() + '|' + url + '|'
+        for key, value in sorted(headers.items()):
+            if key.startswith('X-Mcash-'):
+                sign_headers += d + key.upper() + '=' + value
+                d = '&'
+
+        rsa_signature = base64.b64encode(
+            self.signer.sign(SHA256.new(sign_headers)))
+
+        return 'RSA-SHA256 ' + rsa_signature

mcash/mapi_client/backends/__init__.py

@@ -0,0 +1,14 @@
+from ..mapi_response import MapiResponse
+
+__all__ = ["RequestsFramework"]
+
+class RequestsFramework(object):
+    def dispatch_request(self, method, url, data, headers, auth):
+        import requests
+        method, url, headers, data = auth(method, url, headers, data)
+        res = requests.request(method,
+                               url,
+                               data=data,
+                               headers=headers,
+                               auth=auth)
+        return MapiResponse(res.status_code, res.headers, res.content)

mcash/mapi_client/backends/requests.py

@@ -0,0 +1,17 @@
+from ..mapi_response import MapiResponse
+
+__all__ = ["RequestsFramework"]
+
+
+class RequestsFramework(object):
+    def dispatch_request(self, method, url, body, headers, auth, files=None):
+        import requests
+        method, url, headers, data = auth(method, url, headers, body)
+        res = requests.request(method,
+                               url,
+                               data=data,
+                               headers=headers,
+                               auth=auth,
+                               timeout=60,
+                               files=files)
+        return MapiResponse(res.status_code, res.headers, res.content)

mcash/mapi_client/backends/requestsframework.py

@@ -0,0 +1,25 @@
+from ..mapi_response import MapiResponse
+import json
+
+from google.appengine.api import urlfetch
+
+__all__ = ["UrlFetchFramework"]
+
+
+class UrlFetchFramework(object):
+    def dispatch_request(self, method, url, body, headers, auth):
+        method, url, headers, data = auth(method, url, headers, body)
+
+        payload = {}
+        if type(data) == dict:
+            for key, value in data.iteritems():
+                if value is not None:
+                    payload.update({key: value})
+            data = json.dumps(payload)
+
+        res = urlfetch.fetch(url=url,
+                             payload=data,
+                             method=method,
+                             deadline=60,
+                             headers=headers)
+        return MapiResponse(res.status_code, res.headers, res.content)