Security News
How Threat Actors are Abusing GitHub’s File Upload Feature to Host Malware
GitHub is susceptible to a CDN flaw that allows attackers to host malware on any public repository.
By Sarah Gooding - Apr 23, 2024
@cashfreepayments/cashfree-sdk
Advanced tools
- Version published
- Weekly downloads
- 521
- decreased by-20.94%
- Maintainers
- 2
- Install size
- 69.3 kB
- Created
- Weekly downloads
Readme
Cashfree libraries are released in Beta. This is work in progress and we are continuously working on improving various aspects of it. It is released as a learning aid and an example kit for the API integrators.
This is not recommended by Cashfree for direct use in production code. Please report any bugs to Cashfree at techsupport@cashfree.com.
cashfree-sdk-nodejs
The official Cashfree SDK for JavaScript, available for Node.js backends. Node version 10.9.0 was used for this SDK.
Get started quickly using Cashfree with the Cashfree SDK for JavaScript in Node.js. The SDK helps take the complexity out of coding by providing JavaScript objects for Cashfree services including Payouts, Payment Gateway, Marketplace and Autocollect. The single, downloadable package includes the Cashfree JavaScript Library and documentation.
API Documentation
Please refer to the Cashfree Docs for the complete API reference.
Installation
In Node.js
The preferred way to install the Cashfree SDK for Node.js is to use the npm package manager for Node.js. Simply type the following into a terminal window:
npm i @cashfreepayments/cashfree-sdk
Getting Started
Pre-requisites
- A Cashfree Merchant Account
- API keys for different products. You can generate them from your Dashboard
IP Whitelisting and dynamic IPs
Your IP has to be whitelisted to hit Cashfree's server. Or if you have a dynamic IP please pass in the public key parameter during the init method as shown below. For more information please go here.
Usage
Payouts
The package needs to be configured with your account's secret key which is available in your Cashfree Dashboard.
In case of static IP (Your IP is whitelisted)
const { Payouts } = require('@cashfreepayments/cashfree-sdk');
// Instantiate Cashfree Payouts
const payoutsInstance = new Payouts({
env: 'TEST',
clientId: '<CLIENT_ID>',
clientSecret: '<CLIENT_SECRET>',
});
In case of dynamic IP you will need a public key to generate a signature(which will be done by sdk itself)
const { Payouts } = require('@cashfreepayments/cashfree-sdk');
// Instantiate Cashfree Payouts
const payoutsInstance = new Payouts({
env: 'TEST',
clientId: '<CLIENT_ID>',
clientSecret: '<CLIENT_SECRET>',
pathToPublicKey: '/path/to/your/public/key/file.pem',
//"publicKey": "ALTERNATIVE TO SPECIFYING PATH (DIRECTLY PASTE PublicKey)"
});
| Option | Default | Description |
|---|---|---|
env | TEST | Environment to be initialized. Can be set to TEST or PRODUCTION |
clientId | `` | clientId which can be generated on cashfree dashboard. |
clientSecret | `` | clientSecret which can be found alongside generated ClientId. |
pathToPublicKey | `` | Either specify the path to your .pem public key file or use publicKey Param and pass the key there. |
publicKey | `` | Pass your Public Key to this parameter as an alternative to pathToPublicKey. |
WebHook Verification
To verify the webhook received from Cashfree for different events and accept the webhook only when it returns true.
Usage
Pass the webhook received along with the payload type.
Payouts.verifySignature(webhookPostDataJson, signature, clientSecret); // returns true or false
Using Promises
Every method returns a promise which can be used:
payoutsInstance.beneficiary
.add({
beneId: 'JOHN18012',
name: 'john doe',
email: 'johndoe@cashfree.com',
phone: '9876543210',
bankAccount: '00001111222233',
ifsc: 'HDFC0000001',
address1: 'ABC Street',
city: 'Bangalore',
state: 'Karnataka',
pincode: '560001',
})
.then(function (response) {
console.log(response);
});
Using Async/Await
async function addBeneficiary() {
try {
const response = await payoutsInstance.beneficiary.add({
beneId: 'JOHN18012',
name: 'john doe',
email: 'johndoe@cashfree.com',
phone: '9876543210',
bankAccount: '00001111222233',
ifsc: 'HDFC0000001',
address1: 'ABC Street',
city: 'Bangalore',
state: 'Karnataka',
pincode: '560001',
});
console.log(response);
} catch (e) {
console.error(e);
}
}
Payment Gateway
TODO
-
Market Place
-
Autocollect
FAQs
Official Node SDK for Cashfree API
The npm package @cashfreepayments/cashfree-sdk receives a total of 407 weekly downloads. As such, @cashfreepayments/cashfree-sdk popularity was classified as not popular.
We found that @cashfreepayments/cashfree-sdk demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Last updated on 28 Sep 2021
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
The Dark Side of Open Source
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
By Sarah Gooding - Apr 19, 2024
Research
Security News
npm Package for ReExt React Components Library Exfiltrates Git Credentials
The Socket Research team found this npm package includes code for collecting sensitive developer information, including your operating system username, Git username, and Git email.
By Sarah Gooding, Socket Research Team - Apr 18, 2024