Redsuncube: Payu Payment Gateway Integration With Django

Introduction

This Blog is describes the steps for technical integration process between merchant
website and PayU Payment Gateway for enabling online transactions. This Blog is covered payment gateway integration with Django Framework.

PayU Payment Gateway

PayU offers electronic payment services to merchant website through its partnerships with various banks and payment instrument companies. Through PayU, the customers would be able to make

Electronic payments through a variety of modes which are mentioned below:

Credit cards
Debit cards
Online net banking accounts
EMI payments
Cash Cards
Email Invoicing
IVR
Cash on Delivery (COD)

PayU also offers an online interface (known as PayU Dashboard) where the merchant has access to various features like viewing all the transaction details, settlement reports, analytical reports etc.Through this interface, the merchant can also execute actions like capturing, cancelling andrefunding the transactions. This online interface can be accessed through Payu using the username and password provided to you.

Payment Gateway Process Flow

PayU payment Gateway Process Flow

Steps for Integration Process

The steps for integrating with PayU can technically be described as below:

1) To start off the integration process, you would be provided a test setup by PayU where you
would be given a test merchant account and test credit card credentials to have a first-hand
experience of the overall transaction flow. Here, you need to make the transaction request
on our test server (and not the production server). Once your testing is complete, then only
you will be ready to move to the PayU production server.

2) To initiate a transaction, the merchant needs to generate a POST REQUEST - which must
consist of mandatory and optional parameters mentioned in the later section. This POST
REQUEST needs to be hit on the below mentioned PayU URLs:

For PayU Test Server:
POST URL: https://test.payu.in/_payment

For PayU Production (LIVE) Server:
POST URL: https://secure.payu.in/_payment

3) In the merchant initiated POST REQUEST, one of the mandatory parameters is named as
hash. The details of this hash parameter have been covered in the later section. But it is
absolutely critical for the merchant to calculate the hash correctly and post to us in the
request.

4) When the transaction POST REQUEST hits the PayU server, a new transaction entry is
created in the PayU Database. To identify each new transaction in the PayU Database, a
unique identifier is created every time at PayU’s end. This identifier is known as the PayU ID
(or MihPayID).

5) With the POST REQUEST, customer would be re-directed to PayU’s payment page. Customer now selects the particular payment option on PayU’s page (Credit Card/Debit Card/NetBanking etc) and clicks on ‘Pay Now’. PayU re-directs the customer to the chosen bank. Thecustomer goes through the necessary authorization/authentication process at bank’s login page, and the bank gives the success/failure response back to PayU.

6) PayU marks the transaction status on the basis of response received from Bank. PayU
provides the final transaction response string to the merchant through a POST RESPONSE.
The parameters in this response are covered in the subsequent sections.

7) In the POST RESPONSE sent by PayU, you would receive the final status of the transaction.
You will receive the hash parameter here also. Similar to step 3, it is absolutely crucial to
verify this hash value at your end and then only accept/reject the invoice order. This is done
to strictly avoid any tampering attempt by the user.

Note :

Test URL: The Test URL is provided to PayU merchants to test the integration of their server with that of PayU or Bank. It is understood that since this is merely a Test URL, the Merchant should not treat any transactions done on this Test server as live and should not deliver the products/services with respect to any such test transactions even in the case your server receive a successful transaction confirmation from PayU/Bank.

Merchants are herein forth requested to set up required control checks on their (merchant) systems/servers to ensure that only those transactions should get routed to the PayU test server which are initiated with sole intention of test the environment.

PayU payment Gateway Integration with DJANGO

Onces you create the account With Payu they will provide SALT and KEY we need this two
credentials for the integration.

Parameters to be posted by Merchant to PayU in Transaction Request:

key (Mandatory)
txnid (Mandatory)
amount(Mandatory)
productinfo(Mandatory)
firstname(Mandatory)
email (Mandatory)
phone (Mandatory)
lastname
Udf1-Udf5
address1
city
state
country
zipcode
surl(Mandatory)
furl(Mandatory)
curl(Mandatory)
hash(Checksum)Mandatory) :sha512(key|txnid|amount|productinfo|firstname|email|udf1|udf2|udf3|udf4|udf5||||||SALT)

Udf : user defind field

Surl : Sucess URL ( Success redirection URLs )

Furl : Failure URL ( Failure redirectio URLs )

Curl : Cancelation URL( cancelation URLs)

Integration Steps

Settings.py in your project

Add this Section.

####### Pay yu payment integration information###################

PAYU_INFO = {'merchant_key': "test merchant key",

'merchant_salt': "test merchant salt",

# for production environment use 'https://secure.payu.in/_payment'

'payment_url': 'https://test.payu.in/_payment',

'surl':'http://example.com/pay-success/',

'furl':'http://example.com/failure/',

'curl':'http://example.com/cancel/',

}

###################End payment info ###############################

models.py

from django.db import models

from uuid import uuid4

from uuid import UUID

import uuid

from django_extensions.db.fields import UUIDField

class MyOrder(models.Model):

items = models.ManyToManyField(OrderItem, null=True, blank=True)

order_date = models.DateField(auto_now=True)

buyer = models.ForeignKey(Buyer)

txnid = models.CharField(max_length=36, primary_key=True)

amount = models.FloatField(null=True, blank=True,default=0.0)

hash = models.CharField(max_length=500, null=True, blank=True)

billing_name = models.CharField(max_length=500, null=True, blank=True)

billing_street_address = models.CharField(max_length=500, null=True, blank=True)

billing_country = models.CharField(max_length=500, null=True, blank=True)

billing_state = models.CharField(max_length=500, null=True, blank=True)

billing_city = models.CharField(max_length=500, null=True, blank=True)

billing_pincode = models.CharField(max_length=500, null=True, blank=True)

billing_mobile = models.CharField(max_length=500, null=True, blank=True)

billing_email = models.CharField(max_length=500, null=True, blank=True)

shipping_name = models.CharField(max_length=500, null=True, blank=True)

shipping_street_address = models.CharField(max_length=500, null=True, blank=True)

shipping_country = models.CharField(max_length=500, null=True, blank=True)

shipping_state = models.CharField(max_length=500, null=True, blank=True)

shipping_city = models.CharField(max_length=500, null=True, blank=True)

shipping_pincode = models.CharField(max_length=500, null=True, blank=True)

shipping_mobile = models.CharField(max_length=500, null=True, blank=True)

shipping_rate = models.FloatField(null=False, blank=False, default=0.0)

status = models.CharField(max_length=500, null=True, blank=True)

shipping_email = models.CharField(max_length=500, null=True, blank=True)

payment_method = models.CharField(max_length=1000,verbose_name='Payment-method')

is_paid = models.BooleanField(default=False)

is_delivered = models.BooleanField(default=False)

is_accepted = models.BooleanField(default=False)

Views.py

When the user click on the checkout button in your online shop,add this code add in to the that views.py

from django.core.exceptions import ObjectDoesNotExist

from django.contrib.auth.decorators import login_required

import hashlib

from django.conf import settings

from util import generate_hash

@login_required

def buy_order(request):

""" funtion for save all orders and genarate order id"""

items = None

orderitem = None

extra = False

if request.user.is_authenticated() and not request.user.is_staff:

# print "Authenticated user"

user = Buyer.objects.get(id=request.user.id)

try:

cart = Cart.objects.get(buyer=request.user)

except ObjectDoesNotExist:

extra = "You dont have any item in your cart"

variables = RequestContext(request, {'extra': extra})

return render_to_response('home.html', variables)

total_amount = OrderItem.objects.filter(buyer=request.user)

item_list = []

if cart:

if request.POST:

if request.POST.get('shippingnme') and request.POST.get('shippingaddress') and request.POST.get('shippingemail') and equest.POST.get('shippingpostel') and equest.POST.get('shippingcity') and request.POST.get('shippingcountry') and request.POST.get('shippingstate') and request.POST.get('shippingphone'):

try:

"""store all products to myorder model and genarate order id for the order"""

myorder = MyOrder(buyer=user)

# billing User

myorder.buyer = user

# myorder of Billing Address

myorder.billing_name = request.POST.get('billingname')

myorder.billing_street_address = request.POST.get(

'billingaddress')

myorder.billing_pincode = request.POST.get('billingpostel')

myorder.billing_city = request.POST.get('billingcity')

myorder.billing_country = request.POST.get('billingcountry')

myorder.billing_state = request.POST.get('billingstate')

myorder.billing_mobile = request.POST.get('billingphone')

myorder.billing_email = request.POST.get('billingemail')

# myorder of shipping Address

myorder.shipping_pincode = request.POST.get('shippingpostel')

myorder.shipping_name = request.POST.get('shippingnme')

myorder.shipping_street_address = request.POST.get(

'shippingaddress')

myorder.shipping_city = request.POST.get('shippingcity')

myorder.shipping_state = request.POST.get('shippingstate')

myorder.shipping_mobile = request.POST.get('shippingphone')

myorder.shipping_country = request.POST.get('shippingcountry')

myorder.shipping_email = request.POST.get('shippingemail')

if request.POST.get('paymentmethod'):

myorder.payment_method = request.POST.get('paymentmethod')

else:

myorder.payment_method = 'ON'

myorder.comment = request.POST.get('prodcutmessage')

print "my messages "

print myorder.comment

# payment_method

# comment

myorder.txnid = str(uuid.uuid1().int >> 64)

myorder.save()

"""genarate an oredr id, the below loop will add all orderd product to the order"""

for order in cart.items.all():

orderitem = OrderItem()

orderitem.buyer = order.buyer

orderitem.product_id = order.product.id

orderitem.product_title = order.product.name

orderitem.weight = order.product.weight

orderitem.product_price = order.product.gross_pay()[0]

orderitem.total_amount = order.total

orderitem.quantity = order.quantity

orderitem.save()

myorder.items.add(orderitem)

total_details = total_price_fu(myorder)

""" After adding products to order assigning a

transaction amount and shipping charge to the order"""

myorder = MyOrder.objects.get(pk=myorder.txnid)

myorder.amount = total_details['grand_total']

myorder.shipping_rate = total_details['shipping_rate']

"""Assigning all values for hash funtion for payu"""

cleaned_data = {'key': settings.PAYU_INFO['merchant_key'], 'txnid': myorder.txnid, 'amount': myorder.amount, 'productinfo': orderitem.product_title,'firstname':

myorder.billing_name,

'email': myorder.billing_email, 'udf1': '', 'udf2': '', 'udf3': '', 'udf4': '', 'udf5': '', 'udf6': '', 'udf7': '', 'udf8': '', 'udf9': '', 'udf10': ''}

""" the generate_hash funtion is use for genarating hash

value from cleaned_data"""

hash_o = generate_hash(cleaned_data)

myorder.hash =hash_o

myorder.save()

return HttpResponse(

"""

<html>

<head><title>Redirecting...</title></head>

<body>

<form action='%s' method='post' name="payu">

<input type="hidden" name="firstname" value="%s" />

<input type="hidden" name="surl" value="%s" />

<input type="hidden" name="phone" value="%s" />

<input type="hidden" name="key" value="%s" />

<input type="hidden" name="hash" value =

"%s" />

<input type="hidden" name="curl" value="%s" />

<input type="hidden" name="furl" value="%s" />

<input type="hidden" name="txnid" value="%s" />

<input type="hidden" name="productinfo" value="%s" />

<input type="hidden" name="amount" value="%s" />

<input type="hidden" name="email" value="%s" />

<input type="hidden" value="submit">

</form>

</body>

<script language='javascript'>

window.onload = function(){

document.forms['payu'].submit()

}

</script>

</html>

""" % (settings.PAYU_INFO['payment_url'],

myorder.billing_name, settings.PAYU_INFO[

'surl'],

myorder.billing_mobile,

settings.PAYU_INFO['merchant_key'],

hash_o,

settings.PAYU_INFO['curl'],

settings.PAYU_INFO['furl'],

myorder.txnid,

orderitem.product_title,

myorder.amount,

myorder.billing_email

)

)

util.py

from hashlib import sha512

from django.conf import settings

KEYS = ('key', 'txnid', 'amount', 'productinfo', 'firstname', 'email',

'udf1', 'udf2', 'udf3', 'udf4', 'udf5', 'udf6', 'udf7', 'udf8',

'udf9', 'udf10')

def generate_hash(data):

keys = ('key', 'txnid', 'amount', 'productinfo', 'firstname', 'email',

'udf1', 'udf2', 'udf3', 'udf4', 'udf5', 'udf6', 'udf7', 'udf8',

'udf9', 'udf10')

hash = sha512('')

for key in KEYS:

hash.update("%s%s" % (str(data.get(key, '')), '|'))

hash.update(settings.PAYU_INFO.get('merchant_salt'))

return hash.hexdigest().lower()

def verify_hash(data, SALT):

keys.reverse()

hash = sha512(settings.PAYU_INFO.get('merchant_salt'))

hash.update("%s%s" % ('|', str(data.get('status', ''))))

for key in KEYS:

hash.update("%s%s" % ('|', str(data.get(key, ''))))

return (hash.hexdigest().lower() == data.get('hash'))

once the transaction comple we will get a set of query set in the form of Json Dictionary

eg :

<QueryDict: {u'name_on_card': [u'sda'], u'net_amount_debit': [u'10'], u'payment_source': [u'payu'], u'udf10': [u''], u'issuing_bank': [u'AXIS'], u'field7': [u''], u'udf3': [u''], u'unmappedstatus': [u'captured'], u'card_type': [u'VISA'], u'PG_TYPE': [u'HDFC'], u'addedon': [u'2014-10-20 18:50:38'], u'city': [u''], u'field8': [u''], u'field9': [u'SUCCESS'], u'field2': [u'999999'], u'field3': [u'2819211501842931'], u'field1': [u'429367481506'], u'field6': [u''], u'zipcode': [u''], u'field4': [u'-1'], u'field5': [u''], u'productinfo': [u'adsdsd'], u'address1': [u''], u'discount': [u'0.00'], u'email': [u'arungopi.online@gmail.com'], u'cardhash': [u'This field is no longer supported in postback params.'], u'udf4': [u''], u'status': [u'success'], u'bank_ref_num': [u'2819211501842931'], u'error_Message': [u'No Error'], u'hash': [u'2f274b1f5ca4004db6eac28f317f9e1bff0105b7c14039ac663b9fcf50dc5910f20eaae33a938ef7989d0ecd28c6557d41f396229c21f18f4fb6f01a562ba667'], u'firstname': [u'Arun'], u'state': [u''], u'lastname': [u''], u'address2': [u''], u'error': [u'E000'], u'phone': [u'8113943843'], u'cardnum': [u'512345XXXXXX2346'], u'key': [u'gtKFFx'], u'bankcode': [u'CC'], u'mihpayid': [u'403993715510265476'], u'country': [u''], u'txnid': [u'9470041433304666596'], u'udf1': [u''], u'amount': [u'10.00'], u'udf2': [u''], u'udf5': [u''], u'mode': [u'CC'], u'udf7': [u''], u'udf6': [u''], u'udf9': [u''], u'udf8': [u'']}>

According to status in the callback queryset from the Payu. The url automaticaly redirect to the appropriate views( we mentioned this urls in settings.py and we pass the urls in the buyorder views )

# order sucess mail views

@csrf_exempt

def success(request):

========================

do what functionality you need

=========================

@csrf_exempt

def failure(request):

========================

do what functionality you need

=========================

@csrf_exempt

def cancel(request):

========================

do what functionality you need

=========================

I hope you all understood the payu payment gateway integration. this is working fine for me you can check the working with this link Electrotrendz online shop

Redsuncube

Payu Payment Gateway Integration With Django

No comments:

Post a Comment

Javascript

Reactjs