Fundraising/Data and flow/Audits

From Wikitech
Jump to navigation Jump to search

Overview

This documents the workflow to process audit files from payment processors and import missing messages into CiviCRM.

For all payment processors, except PayPal, the parse-audit drush command processes the audit files. The code in the drupal module handles reading the list of files from the directory, searching for existing transactions in the database, and finding missing information in the payments-wiki logs (mounted at /srv/archive/frlog/logs) for each transaction that isn't in the database. The code to parse the individual files to an array of normalized transactions lives under the SmashPig codebase, in classes that implement the AuditParser interface.

Audit files are located on civi1001 in /var/spool/audit/[payment-processor] and divided into two directories: incoming and completed.

Payment Processor Specific Information

Adyen

Fundraising/Data and flow/PSP integrations/Adyen Checkout#Audits

Amazon

Instead of an SFTP download, we have to call methods on the Amazon Pay SDK to get our reports. This is kicked off with the DownloadReports php script in SmashPig.

Astropay

Fundraising/Data and flow/PSP integrations/dLocal#Audits

Braintree

Using graphQL run and consume the report nightly

Ingenico

Process control jobs

ingenico_audit.yaml - Runs at 1AM Tuesday-Sunday (Cleanup job runs at 1AM Monday) Calls ingenico_audit_download and then ingenico_wx_audit_parse

ingenico_audit_download - Downloads wx* and other files from the GlobalCollect server.

ingenico_wx_audit_parse - Calls drush @wmff -vv parse-audit ingenico --run_all


Transactions from the new API come in the same file as transactions from the old API (see below), but these transactions can be identified because they have the tag EmailTypeIndicator.

<tns:EmailTypeIndicator>1</tns:EmailTypeIndicator>

GlobalCollect

The files are located in /var/spool/audit/globalcollect/incoming. While there are multiple files in this directory, the ones we parse begin with wx1 and are in a xml.gz format.

We pay attention to records classified with these codes (Recordcategory + recordtype):

  • XON - Credit card item that has been processed, but not settled.
  • +IP - Settled "Invoice Payment". Could be invoice, bt, rtbt, check, prepaid card, ew, cash
  • -CB - Credit card chargeback
  • -CR - Refund on collected credit card payment
  • XCR - Any old refund
  • +AP - Direct Debit collected

The parser code is here: https://phabricator.wikimedia.org/diffusion/WFSP/browse/master/PaymentProviders/Ingenico/Audit/IngenicoAudit.php

PayPal

PayPal uses a python script deployed in the fundraising tools repository: https://phabricator.wikimedia.org/diffusion/WFTO/browse/master/audit/paypal/

We currently use PayPal's Express Checkout integration, and classify those donations using gateway value 'paypal_ec'. However, we still have some legacy recurring donations from the old integration, and those are classified with gateway value 'paypal'.

Log

check audit parse log from frlog1002, located at /srv/archive/civi/process-control/<yyyymmdd>/<paymentMethod>_audit_parse-<yyyymmdd>-xxxxxx.log.civi1001.bz2

Result print example as:

Done! Final stats:

Total number of donations in audit file: xxx

Number missing from database: xxx

Missing transactions found in logs: xxx

Missing transactions not found in logs: xxx

Missing transaction summary:

Regular donations: 2

Returned from hook drush_wmf_audit_parse_audit [1.13 sec, 36.01 MB] [debug] 

		xxxxxxxx: 1
		xxxxxxxx: 1

Refunds and chargebacks: 0

Recurring donations: 0

Command dispatch complete [1.13 sec, 35.92 MB] [notice]

Transaction IDs: 

		xxx xxxxxxxxxx
		xxx xxxxxxxxxx

Initial stats on recon files: Array

( 

	    [/var/spool/audit/xxx/incoming/xxx] => 0
	    [/var/spool/audit/xxx/incoming/xxx] => 0
	    [/var/spool/audit/xxx/incoming/xxx] => 2

)

File Wrangling

Sometimes the audit processor can't resolve all the transactions in a file, even after trying for several days. This can lead to a build-up of files in the incoming directory and to subsequent processor runs getting longer and longer till finally they start timing out. The solution is to 'manually' move the older files from the incoming to the completed directory. Since our personal accounts don't have permissions to move the files, we do this with a one-off process-control job such as ingenico_move_audit_files. Since process control runs each command as a separate process under python, we need to wrap any file globs that we want expanded with 'sh -c', for example: 

sh -c "mv /srv/archive/civi1001/audit/globalcollect/incoming//wx1*202010[01][0-5]*xml* /var/spool/audit/globalcollect/"

Adding a New Payment Processor

Once the new processor code has been added

1. Enable the Module

2. Add the folders

This is done via puppet [add more info]

Testing

Initial Setup

The directories are set up in the drupal module here:

https://wmff.localhost:32353/admin/config/wmf_audit

Running

Run the audit parser:

drush parse-audit ingenico

Run with just one specific file:

drush @wmff parse-audit astropay --file=test.csv

Refunds

If a refund is successful it will put a message on the refund queue:

drush --user=1 -v -r /srv/civi-sites/wmff/drupal rfdqc

Retrieved from "https://wikitech.wikimedia.org/w/index.php?title=Fundraising/Data_and_flow/Audits&oldid=2075323"