Mondido.js

A Javascript library where you safely can create payments directly from your checkout page to the mondido API without going through your backend.

To send credit card information from your checkout page we need to encrypt the sensitive data using mondido.js. Instead of having "name" attributes you need to use the attribute "data-encrypt-attribute", mondido.js will then ease your burden by encrypting the data and adding the name attribute before it's being sent to our API. No need for you the roll your own encryption implementation, the library will automatically encrypt the values just before the form is submitted.

3D-Secure

Mondido understands the need to incorporate best business practices in security. That's why we've made it easy for merchants to implement 3D Secure or “3 Domain Secure” as the industry standard identity check solution to minimize chargebacks from fraudulent credit cards, all included in our simple pricing. 3D-Secure refers to second authentication factor products such as Verified by Visa, MastercardⓇSecureCode™, American Express SafekeyⓇ, and JCB J/Secure™.

NOTE: While you can create your own payment experience, We strongly recommend using our Hosted Window or Mondido.js solution to save time in implementing 3D-Secure and client side encryption to your checkout procedure.

What you can send

<input type="hidden" name="metadata" value="{'user_name':'john doe','email':'jd@mail.com','shoe_size':'42'}">

Example

After having jQuery, include the JavaScript library and pass your personal merchant ID. It is important to have the same merchant_id in the JavaScript and in the input parameter in the form.

<script src="https://cdn-web01.mondido.com/v2/mondido.js?merchant_id={merchant_id}"> </script>

The way you encrypt card data is by using data-encrypt-attribute instead of name html attribute on the input tags.

<input type="text" data-encrypt-attribute="card_holder" value="John Doe"/>

If you don't want to encrypt a value then use the "name" attribute as a normal form POST

<input type="text" name="card_holder" value="John Doe"/>

The action attribute of the form tag should be: https://api.mondido.com/v1/transactions

Try the code pen example:

See the Pen Mondido.JS by Robert (@robertpohl) on CodePen.

  
<!DOCTYPE html>
<html>
    <head>
        <meta content="text/html;charset=utf-8" http-equiv="Content-Type">
        <meta content="utf-8" http-equiv="encoding">
        <title>Mondido.js</title>
    </head>
    <body>
        <form id="mondidopayform" action="https://api.mondido.com/v1/transactions" method="post">
            <label>
            Card holder name
            <input type="text" name="card_holder" value="John Doe"/>
            </label>
            <label>
            Card number
            <input type="text" data-encrypted-attribute="card_number" value="4111111111111111"/>
            </label>
            <label>
            Card type
            <input type="text" name="card_type" value="VISA"/>
            </label>
            <label>
            Card expiry (MMYY)
            <input type="text" name="card_expiry" value="0918"/>
            </label>
            <label>
            CVV
            <input type="text" data-encrypted-attribute="card_cvv" value="200"/>
            </label>
            <label>
            Order ID
            <input type="hidden" name="payment_ref" value="123">
            </label>
            <label>
            Amount
            <input type="hidden" name="amount" value="1.00">
            </label>
            <label>
            Currency
            <input type="hidden" name="currency" value="sek">
            </label>
            <label>
            Hash
            <input type="hidden" name="hash" value="">
            </label>
            <label>
            Merchant ID
            <input type="text" name="merchant_id" value="3">
            </label>
            <label>
            Store Card
            <input type="text" name="store_card" value="true">
            </label>

            <label>
            Webhook
            <input type="text" name="webhook" value='{"url":"https://mybackend.com/confirmOrderFromMondido","trigger":"payment_success","http_method":"post","data_format":"form_data"}'>
            </label>

            <label>
            Metadata
            <input type="text" name="metadata" value='{"products":[{"id":"1","name":"Nice Shoe","price":"100.00","qty":"1","url":"https://mysite.com/product/1"}],"user":{"email":"jd@email.com"}}'>
            </label>

            <input type="hidden" name="customer_ref" value="1">
            <input type="hidden" name="test" value="true">
            <input type="hidden" name="encrypted" value="card_number,card_cvv">

            <input type="submit" value="Pay" class="btn">
        </form>
        <script src="https://ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js"></script>
        <script src="https://blueimp.github.io/JavaScript-MD5/js/md5.js"></script>
        <script src="https://cdn-web01.mondido.com/v2/mondido.js?merchant_id=3"> </script>
        <script>
            var onSuccess = function (transaction) {
                if(window.mondido.hasCallback){
                    return;
                }
                alert('Thank you for the payment!');
                window.mondido.hasCallback = true;
            };
            var onError = function (error,data) {
                if(window.mondido.hasCallback){
                    return;
                }
                if (data != null) {
                    alert(data.description);
                }
                window.mondido.hasCallback = true;
            };

            var onBefore = function(){
                window.mondido = {hasCallback: false};
            };

            $('#mondidopayform')
                .mondido({type:"ajax"})
                .on('payment:before', onBefore)
                .on('payment:success', onSuccess)
                .on('payment:fail', onError);

            var payment_ref = Math.floor((Math.random() * 10000) + 1).toString(); //random payment reference
            var secret = "$2a$10$k/wS5qecZLyMmqo0e8GV9."; // ssshhh, this is the secret.
            var merchant_id = "3";
            var customer_ref = "customer1";
            var amount = "1.00";
            var h_str = merchant_id+payment_ref+amount+customer_ref+"sek"+"test"+secret;
            var hash = md5(h_str);

            $('input[name="customer_ref"]').val(customer_ref);
            $('input[name="merchant_id"]').val(merchant_id);
            $('input[name="payment_ref"]').val(payment_ref);
            $('input[name="hash"]').val(hash);
            $('input[name="amount"]').val(amount);
        </script>
    </body>
</html>
  

If you are not using AJAX but POST instead, then change:

<input type="hidden" name="success_url" value="https://mysite.com/payment/success">
<input type="hidden" name="error_url" value="https://mysite.com/payment/error">

And POST to the URL: https://pay.mondido.com/v1/form instead.

Options:

• type: ajax/post
• success: success callback, sends a transactions object
• error: error callback, sends an error object

Events
Mondido.js also provides a few events that you can hook in to with the jQuery.on method. See these examples to learn how to use them.

• mpi:open (event)
  Triggered when the MPI/3D Secure window opens.
  Might be used to for example pop an overlay while the user goes through the MPI flow.

  Called with the event as an argument

• mpi:close (event)
  Triggered when the MPI/3D Secure window closes.

  Called with the event as an argument

• payment:success (event, transaction)
  Triggered after a successful payment.

  Called with the event and the transaction as arguments

• payment:fail (event, error)
  Triggered after a failed payment.

  Called with the event and an error object as arguments

• payment:before ()
  Triggered before a payment is processed.

  Return false to halt the event chain and prevent the payment from being processed.

For example:

error: {
  name: 'errors.card_number.missing',
  code: 118,
  description: 'Card number is missing'
}

Items

Items makes it possible to send product info about the items into a payment. This items array is required for invoice payments and can also be used in subscriptions to add additional product charges intop of the Plan amount.

Example

[{"artno": "001", "amount": 1, "description": "user license2", "qty": 1, "vat": 25, "discount": 0}]

Metadata

Metadata is custom schemaless information that you can choose to send in to Mondido. It can be information about the customer, the product or about campaigns or offers.

The metadata can be used to customize your hosted payment window or sending personalized receipts to your customers in a webhook.

Example of metadata:

{
  "products":[
  {
    "id":"1",
    "name":"Nice Shoe",
    "price":"100.00",
    "qty":"1",
    "url":"http://mysite.com/product/1"
  }
  ],
  "user":{
    "email":"jd@email.com"
  }
}

The values like products, 1, name, are optional and can be named freely by the merchant. These will be shown in the transaction lists so you can analyze transactions based on metadata and get a comprehensive understanding of your sales.

Why Metadata?

One of the most important benefits of using Mondido is the power of the data that you can send with the payment. The more data you send in the more parameters you have to create custom payment flows and analyze transaction data to see what are your best selling items, services and products.

• Order information (price, vat, categories, materials, tags)
• Platform specs (iPhone/Android, OS version, screen size, locale)
• Application specs (version number, tokens, sessions)
• Customer information (location, language)

All sent in data can be visualized in your dashboard in graphs or charts so that you easy can follow up and analyze your sales. Mondido understands that making relevant and important business decisions starts with knowing your customers habits, likes and preferences. Incorporating metadata into the payment gives you the best chance to optimize your checkout, A/B test and bring intelligence into your business.

Updating the transaction with shop order ID

Liquid and Metadata

Liquid is an open-source, Ruby-based template language created by Shopify. It is a well-known framework and is used to load dynamic content on storefronts.

Liquid uses a combination of tags, objects, and filters to load dynamic content. They are used inside the Mondido Hosted Window Payment Form to display information from the payment data and make the template dynamic for each customer, product or transaction.

The official documentation can be found here: https://github.com/Shopify/liquid/wiki/Liquid-for-Designers

You can output information in your metadata to your Hosted Windows Form or in a Receipt Webhook using Liquid syntax. Using the example above, this is the way to output it:

Product name: {{ transaction.metadata['products'].first.name }}
Product quantity: {{ transaction.metadata['products'].first.qty }}

To loop all products:

{%for item in transaction.metadata['products']%}
<li>
  Name: {{ item['name'] }},
  Price: {{ item['price'] }} {{transaction.amount | upcase }},
  Quantity {{ item['qty'] }}
</li>
{% endfor %}

Supported Card Types

Accepted Currencies

Webhooks

A webhook is a messaging service that is executed before or after a transaction. You can add one or more webhooks in the Admin console or specify a custom webhook for a transaction. The data that sent varies depending on the context, read more under triggers to see what data to expect.

Show Webhooks

To show a webhook with ID 1 you need to GET the following url https://api.mondido.com/v1/webhooks/1

List Webhooks

To show a list of webhooks you need to GET the following url https://api.mondido.com/v1/webhooks

Creating Webhooks in a transaction

Webhooks can either be created from a template in the Admin console, or custom attached to each transaction call from the merchant shop. When creating custom Webhooks you define it using JSON described in the examples below:

{"trigger":"payment_success","email":"myname@domain.com"}

{"url":"https://mybackend.com/confirmOrderFromMondido","trigger":"payment_success","http_method":"post","data_format":"form_data"}

[{"trigger":"payment_success","email":"myname@domain.com"},{"url":"https://mybackend.com/confirmOrderFromMondido","trigger":"payment_success","http_method":"post","data_format":"form_data"}]

• payment_success - (after a successful transaction, data sent: a transaction object)
• payment_error - (after a failed transaction, data sent: a transaction object)
• payment_form - (when an hosted window is loaded, data sent: a transaction object)
• payment - (after any transaction regardless of status, data sent: a transaction object)
• refund - (after a refund, data sent: a transaction object)
• subscription_started - (when a new subscription is created, data sent: a subscription object)
• card_stored - (when a new card is stored, data sent: a stored_card object)
• card_updated - (when a card is updated, data sent: a stored_card object)
• webhook_exhausted - (when a Webhook didn't reach it's destination after retries, data sent: a webhook object)
• change_address - (after a shipping address is changed, data sent: a transaction object)
• none - (manual execution in the Mondido Rule Engine)

• post
• get
• put
• patch
• delete

• json
• xml
• form_data

file not found

//Fetching the incoming transaction data

$transaction = webhook::get($path);

// Fetches and parses the incoming transaction.
// This example is coming from a WebAPI Post action and uses the ControllerContext for data

var transaction = Webhook.GetWebhook(this.ControllerContext.Request);

Automatic job retry

Webhooks will retry failures up to 20 times, with an exponential backoff using the formula (retry_count ** 4) + 15 + (rand(30) * (retry_count + 1)) (i.e. 15, 16, 31, 96, 271, ... seconds + a random amount of time).

Liquid and Receipt Webhooks

Liquid is an open-source, Ruby-based template language created by Shopify. It is a well-known framework and is used to load dynamic content on storefronts.

Liquid uses a combination of tags, objects, and filters to load dynamic content. They are used inside the Mondido Hosted Window Payment Form to display information from the payment data and make the template dynamic for each customer, product or transaction.

The official documentation can be found here: https://github.com/Shopify/liquid/wiki/Liquid-for-Designers

You can output information in your receipt Webhook using Liquid syntax. Using the example above, this is the way to output it:

Product name: {{ transaction.metadata['products'].first.name }}
Product quantity: {{ transaction.metadata['products'].first.qty }}  %p
To loop all products:

{%for item in transaction.metadata['products']%}
  <li>
    Name: {{ item['name'] }},
    Price: {{ item['price'] }} {{transaction.amount | upcase }},
    Quantity {{ item['qty'] }}
  </li>
{% endfor %}  %strong For Refunds

You can send a refund confirmation using the After Refund event with the Receipt webhook. There you can output the refunded amount like this:

Hi, here is your refund confirmation for order: {{ transaction.payment_ref }}
Amount: {{ transaction.refunds.last.amount }}
Reason: {{ transaction.refunds.last.reason }}

Test Cards

To create test transactions you need to send in a test card number, and also a CVV code that can simulate different responses

When in test mode (test=true) you can use CVV codes to simulate different responses. Anything else will lead to Approved.

When in test mode (test=true) you can use specific expiry dates to simulate failed recurring card payments

Error messages

We aim to send as many insightful and helpful error messages to you as possible, both in numeric, data and human readable.

{
  name: 'errors.card_number.missing',
  code: 118,
  description: 'Card number is missing'
}

Simulate errors:

To simulate error messages send this json in your metadata. Use one of the following formats:

{
  "mondido_instructions": {
    "fail_as_code":"errors.invoice.address_not_found"
   }
}

{
  "mondido_instructions": {
    "fail_as_message":"do not honour"
  }
}

List of error messages: