Hi
This module implements braintree for payment.
Installation : Download the code zip from git-hub URL: https://www.braintreepayments.com/assets/client_libraries/php/braintree-...
Extract your code and put in into sites/all/libraries/ folder. the path should be sites/all/libraries/braintree-php-3.2.0
Configuration: A simple integration of braintree payment gateway. Administrator needs to set the braintree configuration. For set up the Braintree configuration navigate to
/admin/config/braintree_payment_config
from here you need to enter credential provided by braintree payment gateway. and need to check content type for which content type's node will be purchased. By checking of those content type one field will be created. on node view page there is a "buy" button when creating a node of that specific content type after filling a form and enter the card information user can pay the respective amount and admin can see the transaction in braintree payment gateway.
Link Of Project : https://www.drupal.org/sandbox/rishabh318/2560947
git clone --branch 7.x-1.x http://git.drupal.org/sandbox/rishabh318/2560947.git simple_braintree_gateway
Pareview:
http://pareview.sh/pareview/httpgitdrupalorgsandboxrishabh3182560947git
Manual reviews of other projects:
https://www.drupal.org/node/2565611#comment-10312461
https://www.drupal.org/node/2767049#comment-11411905
https://www.drupal.org/node/2767837#comment-11411927
Comments
Comment #2
rishabh318 CreditAttribution: rishabh318 commentedComment #3
rishabh318 CreditAttribution: rishabh318 commentedComment #4
rishabh318 CreditAttribution: rishabh318 commentedComment #5
sudishth CreditAttribution: sudishth as a volunteer and at Azri Solutions commentedPlease set default branch
Git errors:
Git default branch is not set, see the documentation on setting a default branch.
Comment #6
rishabh318 CreditAttribution: rishabh318 commentedHi Sudishth
Default branch is set.
Comment #7
rishabh318 CreditAttribution: rishabh318 commentedComment #8
rishabh318 CreditAttribution: rishabh318 commentedComment #9
polaki_viswanath CreditAttribution: polaki_viswanath commentedComment #10
polaki_viswanath CreditAttribution: polaki_viswanath commentedHi Rishabh
There are few points which needs to be updated.
1. f_name description needs to be changed.
2. f_name and l_name must be changed to first_name and last_name. Use proper column names.
3. Hook_help is missing.
4. Use proper field names in the simple_braintree_gateway_boooking_form form.
Thanks
Comment #11
rishabh318 CreditAttribution: rishabh318 commentedHi Mr. Polaki
Thanks for review.the points you have mentioned in comment are done.
Thanks
Rishabh
Comment #12
polaki_viswanath CreditAttribution: polaki_viswanath commentedHi Rishabh
The link provided in the description is not found "404 page not found" is seen on the URL: https://www.braintreepayments.com/assets/client_libraries/php/braintree-...
Please update the Readme file and the description so as to get the braintree zip file. And also add steps to installation.
I guess u_email on line no 82 of .admin.inc must be changed to email as the table dont have u_email field anymore.
Thanks
Comment #13
rishabh318 CreditAttribution: rishabh318 commentedHi Mr. Polaki
I have updated the Readme file and resolve the bug as well.
Comment #14
shipra.wasson CreditAttribution: shipra.wasson as a volunteer and at Kellton Tech Solutions Ltd commentedDone manual review its a nice module. Looks like RTBC +1.
Thanks
Shipra
Comment #15
polaki_viswanath CreditAttribution: polaki_viswanath commentedHi Rishabh
Manual review is done, Looks nice.
RTBC +1.
Thanks
Comment #16
gaydamaka CreditAttribution: gaydamaka as a volunteer and at FFW commentedHi Rishabh,
$order_id
is not used. Why did you pass this variable.Comment #17
rishabh318 CreditAttribution: rishabh318 commentedHi gaydamaka
Thanks for review. The point you have mentioned are done. Initially that function was in used but now no need of that function.
Thanks
Rishabh
Comment #18
mohit_arora CreditAttribution: mohit_arora commentedDone manual review. Looks like RTBC +1
Comment #19
rishabh318 CreditAttribution: rishabh318 commentedAll issues are done
Comment #20
gsharm CreditAttribution: gsharm at Srijan | A Material+ Company commentedDone manual review. Looks like RTBC +1.
Comment #21
ARUN AK CreditAttribution: ARUN AK as a volunteer and commentedHi rishabh318,
I did a manual review and please see my comments below.
MENU_CALLBACK
items. Please make sure user has access to the required urls.Found
in simple_braintree_gateway.module.
Add Hashtags module dependency in module info file.
MENU_LOCAL_ACTION
to add link in config page. Refer code in https://www.drupal.org/node/2390747Found
Thanks,
ARUN AK
Comment #22
rishabh318 CreditAttribution: rishabh318 commentedHi ARUN AK
Thanks for review. I have corrected some issues which you pointed out here.
1. user can access the all URL's which have "MENU_CALLBACK" menu type.
2. Done
3. Done
4. We can't use drupal_get_query_parameters() because this is something which need to get from this Super Global variable which not append in URL. openid module used itself which is in core.@see function _openid_response();
5. Done
6. Not required Hashtags module. used function is removed.
7. Done
Thanks,
Rishabh
Comment #23
rishabh318 CreditAttribution: rishabh318 commentedComment #24
PA robot CreditAttribution: PA robot commentedProject 1: https://www.drupal.org/node/2724479
Project 2: https://www.drupal.org/node/2783047
As successful completion of the project application process results in the applicant being granted the 'Create Full Projects' permission, there is no need to take multiple applications through the process. Once the first application has been successfully approved, then the applicant can promote other projects without review. Because of this, posting multiple applications is not necessary, and results in additional workload for reviewers ... which in turn results in longer wait times for everyone in the queue. With this in mind, your secondary applications have been marked as 'closed(duplicate)', with only one application left open (chosen at random).
If you prefer that we proceed through this review process with a different application than the one which was left open, then feel free to close the 'open' application as a duplicate, and re-open one of the project applications which had been closed.
I'm a robot and this is an automated message from Project Applications Scraper.
Comment #25
klausiRemoving security tag, it looks the open page callbacks are required for the module to work?
@ARUN AK: can you check again and describe any vulnerability you see and how you can exploit it?
Comment #26
jyotisankar CreditAttribution: jyotisankar commentedLooks like RTBC +1
Comment #27
Saraswathi Ravikumar CreditAttribution: Saraswathi Ravikumar commentedGit default branch is not set, see the documentation on setting a default branch.
Comment #28
rishabh318 CreditAttribution: rishabh318 commentedHi Sarah
I think default branch is already set as I have set it as per comment #6
Thanks
Rishabh
Comment #29
klausiThe project page is completely empty: http://git.drupal.org/sandbox/rishabh318/2560947.git . Can you add a description and what is different to existing modules before we start reviewing here? See also https://www.drupal.org/node/997024
Comment #30
rishabh318 CreditAttribution: rishabh318 commentedHi Klausi,
Thanks for suggestion. I have add description on project page.
Comment #31
rishabh318 CreditAttribution: rishabh318 commentedComment #32
rishabh318 CreditAttribution: rishabh318 commentedComment #33
klausimanual review:
Removing review bonus tag, you can add it again if you have done another 3 reviews of other projects.
Comment #34
sepgil CreditAttribution: sepgil as a volunteer commentedI found another security issue, while looking for @klausis [security quiz](https://twitter.com/_klausi_/status/797383620746997760):
In the file [simple_braintree_gateway.pages.inc line 40](http://cgit.drupalcode.org/sandbox-rishabh318-2560947/tree/simple_braint...), you are passing the queries result directly to your template. This is not a security issue out of the box, but I would suggest to change it, so you can reuse the template more easily.
The problem is that in your template, you then output the query result unchecked. You should use check_plain() here, to prevent an [XSS issue](https://docs.acquia.com/articles/introduction-cross-site-scripting-xss-a...).
Comment #35
PA robot CreditAttribution: PA robot commentedClosing due to lack of activity. If you are still working on this application, you should fix all known problems and then set the status to "Needs review". (See also the project application workflow).
I'm a robot and this is an automated message from Project Applications Scraper.