This is an example repo for deploying an express server to Heroku to serve as a listener for IPN messages from PayPal or Amazon Pay, and send a follow-up email to your customers upon successful purchase. It also logs purchases to a firebase database, and provides a basic front end for viewing transaction history (authenticated via Firebase Authentication using the Google account sign-in-method).
The primary components of the backend system are:
- Node Express
- Firebase database
- Heroku
- Postmark and/or Amazon SES for outbound email (both implemented in this project)
Also, a no-frills front end set up to display transaction history has been included, using:
Caveat: unless you already have an outgoing email solution in place, whether you use Amazon SES, or Postmark for your outbound email, there is an account verification period prior to being able to send e-mails anywhere other than your confirmed test email. It should range no more than 2-3 days.
- Heroku
- Create new account, if needed.
- Create New App at https://dashboard.heroku.com/apps
- Deployment guidelines listed below.
- Firebase
- Add project at https://console.firebase.google.com
- Further instructions listed below.
- (Postmark, or Amazon SES can be replaced if you already have an outgoing email service, but that will require additional configuration within the repo. NOTE: you do not need Postmark and Amazon SES, but hooks are provided for both, so you can decide which one you want to sign up for and configure)
- Postmark
- Sign up at: https://postmarkapp.com
- Amazon SES
- Sign up at: https://aws.amazon.com/ses
- Clone repo locally
cdinto repo foldernpm install(installs project dependencies)
Added to .gitignore, the .env file allows you to save and access your environmental variables locally, via process.env, without committing them to source code. The environmental variables will be added to your heroku server via cli, or web ui.
First: $ npm run setup inside project repo (initializes .env file).
Then fill in .env entries (values should be inside quotation marks, as in SAMPLE_KEY='sample-value')
-
postmark email client
-
POSTMARK_API_TOKEN, available at https://account.postmarkapp.com/servers/[your-server-number]/credentials -
aws ses settings. Not wanting to wade through Amazon AWS? You can avoid using Amazon SES by using only Postmark to send your transactional emails. I've included hooks for sending email from either in the repo, but AWS is set up as the default.
-
AWS_ACCESS_KEY_ID, is created via the IAM service in Amazon AWS. The complete details are beyond the scope of this README. The short story is that I recommend you create a user with "AmazonSESFullAccess" privileges, and generate a key for this user. Enter the "Access key ID" here. -
AWS_SECRET_ACCESS_KEY, will be generated along with the access key above. -
AWS_REGION, available from the SES console underIdentity Management > Domains > Identity ARN: arn:aws:ses:**HERE**:1234567890:identity/yourdomain.com. Example:us-west-2for US West(Oregon) -
amazon pay settings, available from https://sellercentral.amazon.com/hz/me/integration/details (url may change), or
Amazon Pay > Integration > MWS Access Keyamz_merchant_id, listed as Seller IDamz_access_key, listed as Access Key IDamz_client_id, listed as "Login with Amazon Account Information", Client IDamz_secret_key, listed as Secret Access Key
-
firebase service account settings, available by making new service account credentials at
firebase > settings(gear icon) > Project settings > SERVICE ACCOUNTS > GENERATE NEW PRIVATE KEY > GENERATE KEY...outputs a .json file with a name similar toyour-project-name-firebase-adminsdk-abdc-123456c.json, from which you get the following:-
FIREBASE_TYPE, from "type" -
FIREBASE_PROJECT_ID, from "project_id" -
FIREBASE_PRIVATE_KEY_ID, from "private_key_id" -
FIREBASE_PRIVATE_KEY, from "private_key"- paste in the entire string, such as:
FIREBASE_PRIVATE_KEY='-----BEGIN PRIVATE KEY-----\nABCDEF12345 ...(snipped)... FEDCBA54321\n-----END PRIVATE KEY-----\n' -
FIREBASE_CLIENT_EMAIL, from "client_email" -
FIREBASE_CLIENT_ID, from "client_id" -
FIREBASE_DATABASE_URL, from your firebase project ui:settings > SERVICE ACCOUNTSequal to https://[your-project-name].firebaseio.com
-
-
Update
const configinsrc/shared/constants.jswith the following:- navigate to
https://console.firebase.google.com/u/0/project/[your-project-name]/overview - click
Add Firebase to your web app. - copy the
configobject to theconstants.jsfile. - fill in your
defaultFromEmailanddefaultToEmail
- navigate to
-
Update
src/server/routes/ipn/ipn.jsCUSTOMER_SUBJECT: the subject of an email sent to your customer in the case of a successful transaction.SUBJECT_FAIL: the subject of an email sent to you in the case that something fails during order processingIPN_RECEIVED_SUCCESS: the subject of an email sent to you with the ipn data received from PayPalIPN_RECEIVED_SUCCESS_AMAZON: the subject of an email sent to you with the ipn data received from Amazon PaySAMPLE_PAYPAL_PRODUCT: the string to search for in a successful PayPal IPN notification to determine if your customer should get a success email. (After you enable IPN, your server will be pinged after every PayPal transaction, including those unrelated to your specific products)SAMPLE_AMAZON_PRODUCT: the string to search for in a successful Amazon Pay IPN notification to determine if your customer should get a success email.
npm run serverruns the express server, which serves the latest production bundle of the client, located inbuild/- If you make changes to the client code, output a new production bundle with
npm run build - If you want the express server to auto-reload on changes:
npm install -g nodemonnpm run watch
- In a separate terminal window:
npm startwill start the webpack dev server, which is helpful if you are making client changes, as you will be able to observe results without reloading the browser. If your client development work requires express routes to be handled, just make sure that the server is running in a separate terminal process, and requests to the server will be proxied via the"proxy": "http://localhost:8000"entry in the package.json file.
- Under Firebase > Authentication > SIGN-IN-METHOD:
- Enable Google
- Authorized Domains: add ".heroku.com"
- Log in with client UI with the gmail account you want to enable for being able to browse the database contents via the UI.
- Under Firebase > Authentication > USERS:
- take note of the "User UID" of the user you wish to authenticate
- Under Firebase > Database > Rules:
- replace default rules with:
{
"rules": {
".read": "auth != null && auth.uid === 'user-uid-you-wish-to-authenticate'",
".write": "auth != null",
"purchases": {
".indexOn": ["unix_timestamp"]
}
}
}- Download and install the Heroku CLI.
$ heroku login- create new project on heroku
- There are a couple deployment methods I will mention (they are set up via the heroku ui, under the deployment tab, after you create your new project):
- Heroku Git:
$ git remote add heroku https://git.heroku.com/[your-heroku-project-name].git$ git push origin heroku
- Track Github repo:
- Fork this project, or push this cloned repository to a new github repo, and on the heroku ui, select the deployment option of tracking the master (or other) branch of a specified github repository.
- there is also a Dropbox option, which I have not yet personally used.
- Heroku Git:
- The PayPal IPN simulator will send IPN notifications to a designated endpoint. You can use it to ping your deployed server at the PayPal IPN end point of your choice. The default PayPal IPN endpoint for this project is
https://[your-app-name].herokuapp.com/api/ipn/paypal - If you don't already have an Amazon Pay account, you can sign up for one here: https://pay.amazon.com
- There are separate Amazon Pay production and sandbox views. This project's default endpoint for the Amazon sandbox IPN test is:
https://[your-app-name].herokuapp.com/api/ipn/amazon/sandboxand the Amazon production IPN endpoint, per this project's default settings is:https://[your-app-name].herokuapp.com/api/ipn/amazon - You will have to create an Amazon sandbox account, which compared to many things in the AWS universe, is relatively easy.
- For sandbox testing of making a purchase from an Amazon buy-it-now-button, you also create buttons in the Amazon Pay sandbox view.
- After you have a successfully validated IPN message from the PayPal IPN simulator, you can send it to the locally running express server with curl to test your local set up. Make sure to set the PayPal IPN simulator
payer_emailfield to an email address you control so you can validate that this repo will send you the follow-up email you are expecting. That will probably also involve you setting theitem_namefield to something that will match yourxxx_PRODUCT_NAME_STRINGinsrc/server/routes/ipn/ipn.js.$ npm run server- followed by:
curl -H "Content-Type: application/JSON" -X POST -d '{"payment_type": "instant","payment_date": "Sun Apr 1 2017 11:23:45 GMT-0700 (PDT)","payment_status": "Completed","address_status": "confirmed","payer_status": "verified","first_name": "John","last_name": "Smith","payer_email": "[email protected]","payer_id": "TESTBUYERID01","address_name": "John Smith","address_country": "United States","address_country_code": "US","address_zip": "95131","address_state": "CA","address_city": "San Jose","address_street": "123 any street","business": "[email protected]","receiver_email": "[email protected]","receiver_id": "[email protected]","residence_country": "US","item_name": "My Product Name That Will Trigger Email Success Message","item_number": "AK-1234","quantity": "1","shipping": "3.04","tax": "2.02","mc_currency": "USD","mc_fee": "0.44","mc_gross": "12.34","mc_gross_1": "9.34","txn_type": "web_accept","txn_id": "595189057","notify_version": "2.1","custom": "abc123","invoice": "abc1234","test_ipn": "1","verify_sign": "AFbYYYRCpSSRlAbC123def456HoqQfEQtnRdRji"}' localhost:8000/api/ipn/paypal$ npm run test