Ruby Client for the GoCardless API
A Ruby client for the GoCardless API. For full details of the GoCardless API, see the API docs.
- "Getting started" guide with copy and paste Ruby code samples
- API Reference
Usage Examples
This README will use customers
throughout but each of the resources in the
API is available in this library.
Installation
Add this line to your application's Gemfile:
gem 'gocardless_pro'
And then load it into your application:
require 'gocardless_pro'
Initialising the client
The client is initialised with an Access Token.
You can also pass in environment
as :sandbox
to make requests to the sandbox
environment rather than production.
@client = GoCardlessPro::Client.new(
access_token: ENV["GOCARDLESS_TOKEN"]
)
GET requests
You can get details about one or many resources in the API by calling the
#get
, #list
and #all
methods.
Getting a single resource
To request a single resource, use the #get
method:
@client.customers.get(customer_id)
A call to get
returns an instance of the resource:
p @client.customers.get(customer_id).given_name
Getting a list of resources
To get a list of resources, use the #list
method:
@client.customers.list
A call to list
returns an instance of GoCardlessPro::ListResponse
. You can call records
on this to iterate through results:
@client.customers.list.records.each do |customer|
p customer.given_name
end
If you need to pass any options, the last (or in the absence of URL params, the only) argument is an options hash. This is used to pass query parameters for GET
requests:
@client.customers.list(params: { limit: 400 })
Getting all resources
If you want to get all of the records for a given resource type, you can use the
#all
method to get a lazily paginated list. #all
will deal with making extra
API requests to paginate through all the data for you:
@client.customers.all.each do |customer|
p customer.given_name
end
Raw response details
In addition to providing details of the requested resource(s), all GET requests give you access the following properties of the response:
status
headers
body
POST/PUT Requests
For POST and PUT requests you need to pass in the body in under the params
key:
@client.customers.create(
params: {
given_name: "Pete",
family_name: "Hamilton",
email: "[email protected]",
...
}
)
When creating a resource, the library will automatically include a randomly-generated idempotency key
- This means that if a request appears to fail but is in fact successful (for example due to a timeout), you will not end up creating multiple duplicates of the resource.
- By default if a request results in an Idempotency Key conflict
the library will make a second request and return the object that was
originally created with the Idempotency Key. If you wish, you can instead configure
the client to raise the conflict for you to handle. e.g
rb @client = GoCardlessPro::Client.new( access_token: ENV["GOCARDLESS_TOKEN"], on_idempotency_conflict: :raise, )
If any parameters are required they come first:
@client.customers.update(customer_id, {...})
Custom headers
Custom headers can be provided for a POST request under the headers
key.
The most common use of a custom header would be to set a custom idempotency key when making a request:
@client.customers.create(
params: {
given_name: "Pete",
family_name: "Hamilton",
...
},
headers: {
"Idempotency-Key" => "1f9630a9-0487-418d-bd37-8b77793c9985"
}
)
Handling failures
When the API itself returns an error, the client will raise a corresponding exception. There are four classes of exception which could be thrown, all of which subclass GoCardlessPro::Error
:
GoCardlessPro::GoCardlessError
GoCardlessPro::InvalidApiUsageError
GoCardlessPro::InvalidStateError
GoCardlessPro::ValidationError
These different types of error are fully documented in the API documentation. Exceptions raised by the library have the following methods to provide access to information in the API response:
#documentation_url
#message
#type
#code
#request_id
#errors
When the API returns an invalid_state
error due to an idempotent_creation_conflict
,
this library will attempt to retrieve the existing record which was created using the
idempotency key, however you can also configure the library to raise an exception instead:
@client = GoCardlessPro::Client.new(
on_idempotency_conflict: :raise
)
begin
@client.payments.create(...)
rescue GoCardlessPro::IdempotencyConflict => e
# do something useful
end
If the client is unable to connect to GoCardless, an appropriate exception will be raised, for example:
Faraday::TimeoutError
, in case of a timeoutFaraday::ConnectionFailed
, in case of a connection issue (e.g. problems with DNS resolution)GoCardlessPro::ApiError
, for5xx
errors returned from our infrastructure, but not by the API itself
If an error occurs which is likely to be resolved with a retry (e.g. a timeout or connection error), and the request being made is idempotent, the library will automatically retry the request twice (i.e. it will make up to 3 attempts) before giving up and raising an exception.
Handling webhooks
GoCardless supports webhooks, allowing you to receive real-time notifications when things happen in your account, so you can take automatic actions in response, for example:
- When a customer cancels their mandate with the bank, suspend their club membership
- When a payment fails due to lack of funds, mark their invoice as unpaid
- When a customer’s subscription generates a new payment, log it in their “past payments” list
The client allows you to validate that a webhook you receive is genuinely from GoCardless, and to parse it into GoCardlessPro::Resources::Event
objects which are easy to work with:
class WebhooksController < ApplicationController
include ActionController::Live
protect_from_forgery except: :create
def create
# When you create a webhook endpoint, you can specify a secret. When GoCardless sends
# you a webhook, it'll sign the body using that secret. Since only you and GoCardless
# know the secret, you can check the signature and ensure that the webhook is truly
# from GoCardless.
#
# We recommend storing your webhook endpoint secret in an environment variable
# for security, but you could include it as a string directly in your code
webhook_endpoint_secret = ENV['GOCARDLESS_WEBHOOK_ENDPOINT_SECRET']
begin
# This example is for Rails. In a Rack app (e.g. Sinatra), access the POST body with
# `request.body.tap(&:rewind).read` and the Webhook-Signature header with
# `request.env['HTTP_WEBHOOK_SIGNATURE']`.
events = GoCardlessPro::Webhook.parse(
request_body: request.raw_post,
signature_header: request.headers['Webhook-Signature'],
webhook_endpoint_secret: webhook_endpoint_secret
)
events.each do |event|
# You can access each event in the webhook.
puts event.id
end
render status: 200, nothing: true
rescue GoCardlessPro::Webhook::InvalidSignatureError
# The webhook doesn't appear to be genuinely from GoCardless, as the signature
# included in the `Webhook-Signature` header doesn't match one computed with your
# webhook endpoint secret and the body
render status: 498, nothing: true
end
end
end
For more details on working with webhooks, see our "Getting started" guide.
Using the OAuth API
The API includes OAuth functionality, which allows you to work with other users' GoCardless accounts. Once a user approves you, you can use the GoCardless API on their behalf and receive their webhooks.
OAuth simply provides a means by which you obtain an access token - once you have this access token, you can use this gem as usual.
We recommend using the oauth2 gem to handle the authorisation process and gain a token. For an example of this in action, see our open-source OAuth demo app.
Supporting Ruby < 2.0.0
The client only supports Ruby >= 2.0.0 out of the box due to our use of Enumerable::Lazy for lazy loading of paginated API resources.
If you wish to use this gem with a previous ruby version, you should be able to do so with the backports gem:
- Add backports to your Gemfile
gem 'backports'
- Require lazy enumerables
require 'backports/2.0.0/enumerable/lazy.rb'
Contributing
This client is auto-generated from Crank, a toolchain that we hope to open source soon. For now, issues should be reported on this repository. Please do not modify the source code yourself, your changes will be overriden!