Sample code for 30+ languages & platforms
Node.js

Global Payments Card Authorization

See more Global Payments Examples

Demonstrates how to send a card payments authorization request.

Chilkat Node.js Downloads

Node.js
NODEJS_PRELUDE

function chilkatExample() {

    var success = false;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    var http = new chilkat.Http();

    // if you don't have a Client ID yet you can still quickly test some basic request types using the following URL and credentials:

    // Test URL - https://test.realexpayments.com/epage-remote.cgi
    // Client ID: realexsandbox
    // Shared Secret: Po8lRRT67a
    var testUrl = "https://test.realexpayments.com/epage-remote.cgi";
    var clientID = "realexsandbox";
    var sharedSecret = "Po8lRRT67a";

    var amount = "1001";
    var currency = "EUR";
    var cardNumber = "4263970000005262";

    // We'll be sending the following XML in the body of the request:

    // <?xml version="1.0" encoding="UTF-8"?>
    // <request type="auth" timestamp="20180613141207">
    //   <merchantid>MerchantId</merchantid>
    //   <account>internet</account>
    //   <channel>ECOM</channel>
    //   <orderid>N6qsk4kYRZihmPrTXWYS6g</orderid>
    //   <amount currency="EUR">1001</amount>
    //   <card>
    //     <number>4263970000005262</number>
    //     <expdate>0425</expdate>
    //     <chname>James Mason</chname>
    //     <type>VISA</type>
    //     <cvn>
    //       <number>123</number>
    //       <presind>1</presind>
    //     </cvn>
    //   </card>
    //   <autosettle flag="1"/>
    //   <sha1hash>87707637a34ba651b6185718c863abc64b673f20</sha1hash>
    // </request>

    // Use this online tool to generate code from sample XML: 
    // Generate Code to Create XML

    // Get the current date/time in this format:  20180613141207
    var dt = new chilkat.CkDateTime();
    dt.SetFromCurrentSystemTime();
    var dtStr = dt.GetAsIso8601("YYYYMMDDhhmmss",true);

    // Generate a unique order ID
    var prng = new chilkat.Prng();
    var orderId = prng.GenRandom(32,"base64url");

    // Compute the sha1hash
    var crypt = new chilkat.Crypt2();
    crypt.HashAlgorithm = "sha1";
    crypt.EncodingMode = "hexlower";

    var sbA = new chilkat.StringBuilder();
    sbA.Append("timestamp.merchantid.orderid.amount.currency.cardnumber");
    var numReplaced = sbA.Replace("timestamp",dtStr);
    numReplaced = sbA.Replace("merchantid",clientID);
    numReplaced = sbA.Replace("orderid",orderId);
    numReplaced = sbA.Replace("amount",amount);
    numReplaced = sbA.Replace("currency",currency);
    numReplaced = sbA.Replace("cardnumber",cardNumber);

    var hashA = crypt.HashStringENC(sbA.GetAsString());

    var sbB = new chilkat.StringBuilder();
    sbB.Append(hashA);
    sbB.Append(".");
    sbB.Append(sharedSecret);

    var hashB = crypt.HashStringENC(sbB.GetAsString());

    var xml = new chilkat.Xml();
    xml.Tag = "request";
    xml.AddAttribute("type","auth");
    xml.AddAttribute("timestamp",dtStr);
    xml.UpdateChildContent("merchantid",clientID);
    xml.UpdateChildContent("account","internet");
    xml.UpdateChildContent("channel","ECOM");
    xml.UpdateChildContent("orderid",orderId);
    xml.UpdateAttrAt("amount",true,"currency",currency);
    xml.UpdateChildContent("amount",amount);
    xml.UpdateChildContent("card|number",cardNumber);
    xml.UpdateChildContent("card|expdate","0425");
    xml.UpdateChildContent("card|chname","James Mason");
    xml.UpdateChildContent("card|type","VISA");
    xml.UpdateChildContent("card|cvn|number","123");
    xml.UpdateChildContent("card|cvn|presind","1");
    xml.UpdateAttrAt("autosettle",true,"flag","1");
    xml.UpdateChildContent("sha1hash",hashB);

    var resp = new chilkat.HttpResponse();
    success = http.HttpStr("POST",testUrl,xml.GetXml(),"utf-8","application/xml",resp);
    if (success == false) {
        console.log(http.LastErrorText);
        return;
    }

    console.log("Response Status Code: " + resp.StatusCode);

    console.log("Response Body:");
    console.log(resp.BodyStr);

    if (resp.StatusCode !== 200) {
        console.log("Failed.");
        return;
    }

    // A status code of 200 indicates we received an XML response, but it could be an error message.
    // Here's an example of an error response:

    // <?xml version="1.0" encoding="UTF-8" standalone="yes"?>
    // <response timestamp="20200418142356">
    //     <orderid>N6qsk4kYRZihmPrTXWYS6g</orderid>
    //     <result>508</result>
    //     <message>Invalid timestamp: '{' Value exceeds allowable limit: '}'</message>
    // </response>

    // We need to check the "result" within the XML.
    xml.LoadXml(resp.BodyStr);

    var result = xml.GetChildIntValue("result");
    console.log("result = " + result);

    // A successful result looks like this:

    // <?xml version="1.0" encoding="UTF-8" standalone="yes"?>
    // <response timestamp="20200418145519">
    //     <merchantid>realexsandbox</merchantid>
    //     <account>internet</account>
    //     <orderid>Cw93I1nFWVZuaATh46qMUCBlCcfrOvLo65C2cq5X-AY</orderid>
    //     <result>00</result>
    //     <authcode>L3pHww</authcode>
    //     <message>AUTH CODE: L3pHww</message>
    //     <pasref>96838535689610806</pasref>
    //     <cvnresult>M</cvnresult>
    //     <timetaken>87</timetaken>
    //     <authtimetaken>67</authtimetaken>
    //     <batchid>6322506</batchid>
    //     <sha1hash>2fd2f15f97f1775779fe9bda536dc8317a4b39f6</sha1hash>
    // </response>

    if (result == 0) {
        console.log("authcode = " + xml.GetChildContent("authcode"));
        console.log("Success.");

    }
    else {
        console.log("Failed.");
    }


}

chilkatExample();