From 465990bc7b5746b31660e71a098440872acd9fc7 Mon Sep 17 00:00:00 2001 From: Adrian Hope-Bailie Date: Mon, 28 Mar 2016 01:01:06 +0200 Subject: [PATCH 1/3] Issue marker requesting security considerations section --- .gitignore | 1 + specs/paymentrequest.html | 8 ++++++++ 2 files changed, 9 insertions(+) create mode 100644 .gitignore diff --git a/.gitignore b/.gitignore new file mode 100644 index 00000000..62c89355 --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +.idea/ \ No newline at end of file diff --git a/specs/paymentrequest.html b/specs/paymentrequest.html index f0734b71..9460b9c2 100644 --- a/specs/paymentrequest.html +++ b/specs/paymentrequest.html @@ -978,6 +978,14 @@

PaymentRequestUpdateEvent

Accept-Language headers, etc.)

+ +

+ The spec should indicate how data might be passed securely through the API using + mechanisms such as field level encryption and message signing. While these may not + be standardised a reference to the payment method specifications would be appropriate + as well as some examples of how those specifcations might implement secure messaging. +

+

Algorithms

From 66e5a5172746b4479897586a9f82202d71b4225e Mon Sep 17 00:00:00 2001 From: Adrian Hope-Bailie Date: Sat, 9 Apr 2016 20:34:59 -0700 Subject: [PATCH 2/3] Merged PaymentRequest params and tweaked to address some issues Merged PaymentRequest constructor params to allow for options (only processed by the UA) and details (passed to the payment app). This commit also proposes solutions to: #4, #15 and #18 --- specs/paymentrequest.html | 378 +++++++++++++++++++++++--------------- 1 file changed, 229 insertions(+), 149 deletions(-) diff --git a/specs/paymentrequest.html b/specs/paymentrequest.html index 08bd2e1d..c504f14d 100644 --- a/specs/paymentrequest.html +++ b/specs/paymentrequest.html @@ -177,6 +177,7 @@

Dependencies

Payment Request Architecture
The terms Payment Method, + Payment Method Data, Payment App, and Payment Transaction Message Specification are defined by the Payment Request Architecture document [[PAYMENTARCH]].
@@ -224,7 +225,7 @@

Dependencies

PaymentRequest interface

-        [Constructor(sequence<DOMString> supportedMethods, PaymentDetails details, optional PaymentOptions options, optional object data)]
+        [Constructor(PaymentDetails details, optional PaymentOptions options)]
         interface PaymentRequest : EventTarget {
           Promise<PaymentResponse> show();
           void abort();
@@ -253,7 +254,7 @@ 

PaymentRequest interface

user interaction:

-        var payment = new PaymentRequest(supportedMethods, details, options, data);
+        var payment = new PaymentRequest(details, options);
         payment.addEventListener("shippingaddresschange", function (changeEvent) {
             // Process shipping address change
         });
@@ -271,9 +272,8 @@ 

PaymentRequest interface

PaymentRequest constructor

- The PaymentRequest is constructed using the supplied supportedMethods - list, the payment details, the payment options, and any payment - method specific data. + The PaymentRequest is constructed using the payment details (which are passed + to the selected payment app) and the payment options which are processed by the user agent.

It is proposed that a conformance criteria for implementations of this API be @@ -284,16 +284,77 @@

PaymentRequest constructor

payment app.
-

The supportedMethods sequence contains the payment method identifiers - for the payment methods that the merchant web site accepts.

+ +

The details contains the core payment request data that will be passed on to the user selected + payment app.

+ +

The amount sequence contains the amount (possibly in different currencies) that the website + is requesting to be paid.

+ +

The supportedMethods sequence contains the payment methods that the merchant web + site accepts. Each payment method is linked to one or more payment method identifiers.

+ +

The identifers sequence contains the payment method identifiers that identify the + payment methods the web site supports and for which the associated data is part of the + request.

+ +

data is a JSON-serializable object that provides optional information that might + be needed by the supported payment methods.

+
-            ["visa", "bitcoin", "bobpay.com"]
+            {
+              "amount" : [{
+                  "currency" : "USD",
+                  "value" : "55.00"
+              "supportedMethods" : [
+                {
+                  "identifers" : ["visa", "mastercard"],
+                  "data" : {}
+                },
+                {
+                  "identifers" : ["bobpay.com"],
+                  "data" : {
+                      "merchantIdentifier" : "XXXX",
+                      "bobPaySpecificField" : true
+                  }
+                },
+                {
+                  "identifiers" : ["bitcoin"],
+                  "data" : {
+                      "address" : "XXXX"
+                  }
+                }
+              ]
+            }
           
-

The details object contains information about the transaction that the - user is being asked to complete such as the line items in an order.

+

The options object contains information that is processed by the user agent. This MAY + include processing instructions such as a request to capture a user's shipping details or provide + supplimentary information to the payment details that the user agent can use to deliver a rich + user experience.

+ +

The shippingOptions object contains the various shipping options which the user agent + SHOULD present to the user if the web site has requested that it gather shipping data.

+ +

The items object contains information about the transaction that the + user is being asked to complete which the user agent MAY use to supplement the interface presented + to the user.

+
             {
+              "requestShipping": true,
+              "shippingOptions" : [
+                {
+                    "id" : "free",
+                    "label" : "5 day Free Shipping",
+                    "amount" : { "currency": "USD", "value" : "0" },
+                },
+                {
+                    "id" : "express",
+                    "label" : "Express Overnight Shipping",
+                    "amount" : { "currency": "USD", "value" : "5.00" },
+                },
+              ],
               "items": [
                 {
                   "id": "basket",
@@ -313,35 +374,8 @@ 

PaymentRequest constructor

] }
- -

The options object contains information about what options the web page - wishes to use from the payment request system.

- -
-            {
-              "requestShipping": true
-            }
-          
- -

data is a JSON-serializable object that provides optional information that might - be needed by the supported payment methods.

-
-            {
-              "bobpay.com": {
-                  "merchantIdentifier": "XXXX",
-                  "bobPaySpecificField": true
-              },
-              "bitcoin": {
-                  "address": "XXXX"
-              }
-            }
-          
-
- There is an open issue about whether supportedMethods, details, and data - should be combined into a single object. -
There is an open issue about how a payment request is initiated. The options proposed include using a singleton @@ -367,12 +401,6 @@

PaymentRequest constructor

a preference and allow users to express a preference that overrides merchant preferences.
-
- There is an open issue about whether the list of supported payment - methods should be passed to the user agent as a simple sequence of - strings or as a more complex and flexible object structure. -
-
There is an open issue regarding whether the current pattern of using events for exchange of data between the user agent and the website is @@ -385,7 +413,7 @@

PaymentRequest constructor

  1. - If the length of the supportedMethods sequence is zero, then throw + If the length of the details.supportedMethods sequence is zero, then throw a TypeError.
  2. @@ -407,26 +435,20 @@

    PaymentRequest constructor

    have a legitimate reason to request payment.

+
  • If the length of the amount sequence is zero, then throw + a TypeError.
  • - If details does not contain a sequence of items with length greater - than zero, then throw a TypeError. -
  • -
  • - If data is not a JSON-serializable object, then throw a TypeError. -
  • -
  • - If the name of any top level field of data does not match one of the payment method identifiers - in supportedMethods, then throw a TypeError. -
  • -
  • - If the value of any top level field is not a JSON-serializable object, then - throw a TypeError. + For each method in supportedMethods: +
      +
    1. If the length of the method.identifiers sequence is zero, then throw + a TypeError.
    2. +
    3. If method.data is not a JSON-serializable object, then throw a + TypeError.
    4. +
  • Let request be a new PaymentRequest.
  • -
  • Store supportedMethods into request@[[\supportedMethods]].
  • Store details into request@[[\details]].
  • Store options into request@[[\options]].
  • -
  • Store data into request@[[\data]].
  • Set the value request@[[\state]] to created.
  • Set the value of the shippingAddress attribute on request to null. @@ -435,7 +457,7 @@

    PaymentRequest constructor

    Set the value of the shippingOption attribute on request to null.
  • - If details contains a shippingOptions sequence with a + If options contains a shippingOptions sequence with a length of 1, then set shippingOption to the id of the only ShippingOption in the sequence.
  • @@ -467,7 +489,7 @@

    show()

    1. - Let request be the PaymentRequest object on which the method is called.. + Let request be the PaymentRequest object on which the method is called.
    2. If the value of request@[[\state]] is not created then throw an InvalidStateError.
    3. @@ -484,8 +506,20 @@

      show()

      Return acceptPromise and asynchronously perform the remaining steps.
    4. - Let acceptedMethods be the sequence of payment method identifiers request@[[\supportedMethods]] - with all identifiers removed that the user agent does not accept. + Let acceptedMethods be an empty sequence. +
    5. +
    6. For each PaymentMethod in method in sequence request@[[\details]].supportedMethods. +
        +
      1. For each identifier in method.identifiers: +
          +
        1. If acceptedMethods already contains this identifier move onto the next identifier, if + there is one.
        2. +
        3. If the user agent does not have a registered payment app that supports the payment + method identified by this identifier move onto the next identifier, if there is one.
        4. +
        5. Append identifer to the sequence acceptedMethods.
        6. +
        +
      2. +
    7. If the length of acceptedMethods is zero, then reject acceptPromise with a NotSupportedError. @@ -552,10 +586,6 @@

      Internal Slots

      the following table:

      - - - - - - - - @@ -597,6 +623,39 @@

      Internal Slots

      +
      +

      PaymentDetails dictionary

      +
      +dictionary PaymentDetails {
      +  sequence<CurrencyAmount> amount;
      +  sequence<PaymentMethod> supportedMethods;
      +};
      +      
      + +

      + The PaymentDetails dictionary is passed to the PaymentRequest + constructor and provides information about the requested transaction. The PaymentDetails + dictionary is also used to update the payment request using updateWith. +

      +

      + The following fields are part of the PaymentDetails dictionary: +

      +
      +
      amount
      +
      + This sequence of CurrencyAmount dictionaries indicates the amount that is being + requested. The sequence must contain at least one CurrencyAmount. If the seqeunce contains + multiple CurrencyAmount dictionaries it should not contain more than one with the same + currency value. +
      +
      supportedMethods
      +
      + This sequence of PaymentMethod dictionaries indicates which payment methods + can be used to process this payment request. +
      +
      +
      +

      CurrencyAmount

      @@ -605,13 +664,17 @@ 

      CurrencyAmount

      required DOMString value; };
      -
      - The resolution of the WG per Issue #57 defined - a format for currencies and amounts that lacked support for negative values. The format below adds this - capability in a way that is not common for financial messaging standards (using signed numbers). The - rationale for negative numbers is to support discounts. The group is still discussing whether functionality - to support discounts might be implemented in a different manner (e.g., via a transaction type). -
      +
      + The resolution of the WG per Issue #57 defined + a format for currencies and amounts that lacked support for negative values. The format below adds this + capability in a way that is not common for financial messaging standards (using signed numbers). The + rationale for negative numbers is to support discounts. The group is still discussing whether functionality + to support discounts might be implemented in a different manner (e.g., via a transaction type). +
      +
      + There is an open issue about whether and how to handle + non-decimal currencies. +

      A CurrencyAmount dictionary is used to supply monetary amounts. The following fields MUST be supplied for a CurrencyAmount to be valid: @@ -627,8 +690,8 @@

      CurrencyAmount

      value
      A string containing the decimal monetary value. If a decimal separator is needed then the string - MUST use a single U+002E FULL STOP character as the decimal separator. The string MUST begin - with a single U+002D HYPHEN-MINUS character if the value is negative. All other characters must + MUST use a single U+002E FULL STOP character as the decimal separator. The string MUST begin + with a single U+002D HYPHEN-MINUS character if the value is negative. All other characters must be characters in the range U+0030 DIGIT ZERO (0) to U+0039 DIGIT NINE (9).
      The string should match the regular expression ^-?[0-9]+(\.[0-9]+)?$. @@ -646,64 +709,64 @@

      CurrencyAmount

      -

      PaymentDetails dictionary

      +

      PaymentMethod

      -dictionary PaymentDetails {
      -  sequence<PaymentItem> items;
      -  sequence<ShippingOption> shippingOptions;
      +dictionary PaymentMethod {
      +  required sequence<DOMString> identifiers;
      +  object data;
       };
             
      - -

      - The PaymentDetails dictionary is passed to the PaymentRequest - constructor and provides information about the requested transaction. The PaymentDetails - dictionary is also used to update the payment request using updateWith. -

      +
      + There is an open issue about whether it should be possible to provide a different amounts depending + upon the payment method. This could be achevied by having an amount member on the + PaymentMethod dictionary. +

      - The following fields are part of the PaymentDetails dictionary: + A PaymentMethod dictionary is used to provide the payment method data for the + request. Only the identifers field MUST be supplied for a PaymentMethod + to be valid.

      -
      items
      +
      identifiers
      - This sequence of PaymentItem dictionaries indicates what the payment - request is for. The sequence must contain at least one PaymentItem. The last - PaymentItem in the sequence represents the total amount of the payment - request. It is the responsibility of the calling code to ensure that the total amount is - the sum of the preceding items. The user agent MAY not validate that this is true. + identifers is a sequence of payment method identifiers.
      -
      shippingOptions
      +
      data
      - A sequence containing the different shipping options that the use may choose from. -

      If the sequence is empty, then this indicates that the merchant - cannot ship to the current shippingAddress.

      -

      If the sequence only contains one item, then this is the shipping option that - will be used and shippingOption will be set to the id - of this option without running the shipping option changed algorithm.

      + data is a JSON-serializable object containing any payment method data that must be passed + to the payment app.
      - -
      - There is an open issue about whether the items sequence should special-case the last - item in the sequence to represent the total. -

      PaymentOptions dictionary

       dictionary PaymentOptions {
      +  sequence<PaymentItem> items;
         boolean requestShipping = false;
      +  sequence<ShippingOption> shippingOptions;
       };
             
      -

      The PaymentOptions dictionary is passed to the PaymentRequest - constructor and provides information about the options desired for the payment request. + constructor and provides supplimentary data to the user agent for processing the payment request. The + PaymentOptions dictionary is also used to update the payment request using + updateWith +

      +

      + The PaymentOptions dictionary MUST not be passed on to the payment app.

      - The following fields MAY be passed to the PaymentRequest constructor: + The following fields MAY be set on the PaymentOptions dictionary:

      +
      items
      +
      + This sequence of PaymentItem dictionaries indicates what the payment request is for. + The user agent MAY render this information to the user to provide them with additional details + about the payment request. +
      requestShipping
      This boolean value indicates whether the user agent should collect and return @@ -713,6 +776,15 @@

      PaymentOptions dictionary

      If this value is not supplied then the the PaymentRequest behaves as if a value of false had been supplied.
      +
      shippingOptions
      +
      + A sequence containing the different shipping options that the user may choose from. +

      If the sequence is empty, then this indicates that the merchant + cannot ship to the current shippingAddress.

      +

      If the sequence only contains one item, then this is the shipping option that + will be used and shippingOption will be set to the id + of this option without running the shipping option changed algorithm.

      +
      @@ -726,8 +798,8 @@

      PaymentItem dictionary

      };

      - A sequence of one or more PaymentItem dictionaries is included in the PaymentDetails - dictionary to indicate the what the payment request is for and the value asked for. + A sequence of one or more PaymentItem dictionaries is included in the PaymentOptions + dictionary to indicate what the payment request is for and the value asked for.

      The following fields MUST be included in a PaymentItem for it to be valid: @@ -742,18 +814,6 @@

      PaymentItem dictionary

      amount
      A CurrencyAmount containing the monetary amount for the item. -
      - There is an open issue about whether it should be possible to provide a PaymentItem - with amounts in more than once currency. -
      -
      - There is an open issue about whether it should be possible to provide a different amounts depending - upon the payment method. -
      -
      - There is an open issue about whether and how to handle - non-decimal currencies. -
      @@ -796,7 +856,7 @@

      ShippingOption interface

      method in response to a change event.

      - The following fields MUST be included in a PaymentItem for it to be valid: + The following fields MUST be included in a ShippingOption for it to be valid:

      id
      @@ -817,6 +877,7 @@

      PaymentResponse interface

               interface PaymentResponse {
                 readonly attribute DOMString methodName;
      +          readonly attribute CurrencyAmount amount;
                 readonly attribute object details;
       
                 Promise<void> complete(boolean success);
      @@ -828,11 +889,15 @@ 

      PaymentResponse interface

      approved a payment request. It contains the following fields:

      -
      methodName
      -
      - The payment method identifier for the payment method that the user selected - to fulfil the transaction. -
      +
      methodName
      +
      + The payment method identifier for the payment method that the user selected + to fulfil the transaction. +
      +
      amount
      +
      + The amount that the user has agreed to pay. +
      details
      A JSON-serializable object that provides a payment method specific message used by the merchant to @@ -920,7 +985,7 @@

      PaymentRequestUpdateEvent

       [Constructor(DOMString type, optional PaymentRequestUpdateEventInit eventInitDict)]
       interface PaymentRequestUpdateEvent : Event {
      -  void updateWith(Promise<PaymentDetails> d);
      +  void updateWith(Promise<PaymentOptions> o, Promise<PaymentDetails> d);
       };
       
       dictionary PaymentRequestUpdateEventInit : EventInit {
      @@ -929,8 +994,9 @@ 

      PaymentRequestUpdateEvent

      The PaymentRequestUpdateEvent enables the web page to update the details of the payment request in response to a user interaction.

      If the web page wishes to update the payment request then it should call updateWith - and provide a promise that will resolve with a PaymentDetails - dictionary containing changed values that the user agent SHOULD present to the user.

      + and provide a promise that will resolve with a PaymentOptions and a promise that will + resolve with a PaymentDetails dictionary containing changed values that the + user agent SHOULD present to the user and pass to the payment app.

      The PaymentRequestUpdateEvent constructor MUST set the internal slot [[\waitForUpdate]] to false.

      The updateWith method MUST act as follows:

      @@ -957,32 +1023,32 @@

      PaymentRequestUpdateEvent

    8. The user agent SHOULD disable the user interface that allows the user to accept the payment request. This is to ensure that the payment is not accepted until the web page - has made changes required by the change. The web page MUST settle the promise d - to indicate that the payment request is valid again. + has made changes required by the change. The web page MUST settle the promises o and + d to indicate that the payment request is valid again.

      The user agent SHOULD disable any part of the user interface that could cause another update event to be fired. Only one update may be processed at a time.

      We should consider adding a timeout mechanism so that if the page never resolves - the promise within a reasonable amount of time then the user agent behaves as if - the promise was rejected. + the promises within a reasonable amount of time then the user agent behaves as if + one of the promises was rejected.
    9. Return from the method and asynchronously perform the remaining steps.
    10. -
    11. Wait until d settles.
    12. -
    13. If d is resolved with details and details is a - PaymentDetails dictionary, then: +
    14. Wait until o settles.
    15. +
    16. If o is resolved with options and options is a + PaymentOptions dictionary, then:
      1. - If details contains an items value, then copy - this value to the items field of target@[[\details]]. + If options contains an items value, then copy + this value to the items field of target@[[\option]].
      2. - If details contains a shippingOptions sequence, then - copy this value to the shippingOptions field of target@[[\details]]. + If options contains a shippingOptions sequence, then + copy this value to the shippingOptions field of target@[[\options]].
      3. Let newOption be null.
      4. - If details contains a shippingOptions sequence with a + If options contains a shippingOptions sequence with a length of 1, then set newOption to the id of the only ShippingOption in the sequence.
      5. @@ -992,6 +1058,20 @@

        PaymentRequestUpdateEvent

    17. +
    18. Wait until d settles.
    19. +
    20. If d is resolved with details and details is a + PaymentDetails dictionary, then: +
        +
      1. + If details contains an amount sequence, then copy + this value to the amount field of target@[[\details]]. +
      2. +
      3. + If details contains a supportedMethods sequence, then + copy this value to the supportedMethods field of target@[[\details]]. +
      4. +
      +
    21. Set [[\waitForUpdate]] to false.
    22. Set target@[[\updating]] to false.
    23. From cb68196e95d02588afb82b628af69c8f0285c09f Mon Sep 17 00:00:00 2001 From: Adrian Hope-Bailie Date: Mon, 11 Apr 2016 09:41:37 -0400 Subject: [PATCH 3/3] Syntax error in example --- specs/paymentrequest.html | 1 + 1 file changed, 1 insertion(+) diff --git a/specs/paymentrequest.html b/specs/paymentrequest.html index 9595e962..8022d239 100644 --- a/specs/paymentrequest.html +++ b/specs/paymentrequest.html @@ -306,6 +306,7 @@

      PaymentRequest constructor

      "amount" : [{ "currency" : "USD", "value" : "55.00" + }], "supportedMethods" : [ { "identifers" : ["visa", "mastercard"],
    24. Internal SlotDescription (non-normative)
      [[\supportedMethods]]The supportMethods supplied to the constructor.
      [[\details]] @@ -565,13 +595,9 @@

      Internal Slots

      [[\options]]The PaymentOptions supplied to the constructor.
      [[\data]] - The payment method specific data supplied to the constructor used - by a Payment App to influence the app's behavior. + The current PaymentOptions for the payment request initially + supplied to the constructor and then updated with calls to updateWith.