Send bank statement descriptors to payment intents (#2263)

* Revert hide shortened statement descriptor

* Add account's own statement descriptor placeholder to settings fields

Adding the placeholder in the statement descriptor fields we have in the settings (full and shortened).

* Tests: add statement descriptor placeholders test

* Add shortened statement descriptor helper

* Add shortened descriptor logic to non-UPE payment requests

* Add descriptor logic to UPE payment requests

* Remove shortened descriptor placeholder

It cannot contain a placeholder because we can't replace the prefix. We're using the shortened descriptor and concatenating with the order ID, generating a full descriptor without having to set up a suffix for it.

* Tests: Remove shortened descriptor placeholder assertion

* Update descriptor preview to include its placeholder in case it's blank

* Tests: Add statement descriptor to the request on UPE gateway tests

* Update shortened statement descriptor helper

Make the order parameter optional to avoid compatibility errors.

* Update shortened statement descriptor helper

Replace  with  because they can be different in case they're filtered.

* Fix import path

* Fix linting

* Remove statement descriptor suffix logic

* Update shortened statement descriptor helper

Truncate the descriptor to 22 characters to avoid edge cases and possible errors.

* Fix import path

* Rename statement descriptor helper

* Add fallback on the dynamic descriptor helper

The fallback is being added because currently the field validation has a breach that needs to be worked out and allows the user to save the descriptors blank.

* Tweak the dynamic statement descriptor helper

* Tweak the dynamic statement descriptor helper

Author: cesarcosta99

client/settings/payments-and-transactions-section/__tests__/index.test.js

@@ -1,5 +1,6 @@
 import { fireEvent, render, screen } from '@testing-library/react';
 import PaymentsAndTransactionsSection from '..';
+import { useAccount } from 'wcstripe/data/account';
 import {
 	useManualCapture,
 	useSavedCards,
@@ -10,6 +11,10 @@ import {
 	useGetSavingError,
 } from 'wcstripe/data';
 
+jest.mock( 'wcstripe/data/account', () => ( {
+	useAccount: jest.fn(),
+} ) );
+
 jest.mock( 'wcstripe/data', () => ( {
 	useManualCapture: jest.fn(),
 	useSavedCards: jest.fn(),
@@ -38,6 +43,7 @@ describe( 'PaymentsAndTransactionsSection', () => {
 			jest.fn(),
 		] );
 		useGetSavingError.mockReturnValue( null );
+		useAccount.mockReturnValue( { data: {} } );
 	} );
 
 	it( 'displays the length of the bank statement input', () => {
@@ -209,4 +215,25 @@ describe( 'PaymentsAndTransactionsSection', () => {
 			)
 		).toBeInTheDocument();
 	} );
+
+	it( "shows the account's statement descriptor placeholder", () => {
+		const mockValue = 'WOOTESTING, LTD';
+
+		useAccount.mockReturnValue( {
+			data: {
+				account: {
+					settings: { payments: { statement_descriptor: mockValue } },
+				},
+			},
+		} );
+		useIsShortAccountStatementEnabled.mockReturnValue( [
+			true,
+			jest.fn(),
+		] );
+		render( <PaymentsAndTransactionsSection /> );
+
+		expect(
+			screen.queryByText( 'Full bank statement' ).nextElementSibling
+		).toHaveAttribute( 'placeholder', mockValue );
+	} );
 } );

client/settings/payments-and-transactions-section/index.js

@@ -7,6 +7,7 @@ import TextLengthHelpInputWrapper from './text-length-help-input-wrapper';
 import StatementPreviewsWrapper from './statement-previews-wrapper';
 import StatementPreview from './statement-preview';
 import ManualCaptureControl from './manual-capture-control';
+import { useAccount } from 'wcstripe/data/account';
 import Tooltip from 'wcstripe/components/tooltip';
 import {
 	useSavedCards,
@@ -62,6 +63,10 @@ const PaymentsAndTransactionsSection = () => {
 		? __( 'All Other Payment Methods', 'woocommerce-gateway-stripe' )
 		: __( 'All Payment Methods', 'woocommerce-gateway-stripe' );
 
+	const { data } = useAccount();
+	const statementDescriptorPlaceholder =
+		data?.account?.settings?.payments?.statement_descriptor || '';
+
 	return (
 		<Card className="transactions-and-payouts">
 			<CardBody>
@@ -132,81 +137,78 @@ const PaymentsAndTransactionsSection = () => {
 						) }
 						value={ accountStatementDescriptor }
 						onChange={ setAccountStatementDescriptor }
+						placeholder={ statementDescriptorPlaceholder }
 						maxLength={ 22 }
 					/>
 				</TextLengthHelpInputWrapper>
-				{ /* TODO: Hiding the Short Account Statement fields until it's included in the POST to Stripe */ }
-				<div style={ { display: 'none' } }>
-					<CheckboxControl
-						checked={ isShortAccountStatementEnabled }
-						onChange={ setIsShortAccountStatementEnabled }
-						label={ __(
-							'Add customer order number to the bank statement',
-							'woocommerce-gateway-stripe'
-						) }
-						help={ __(
-							"When enabled, we'll include the order number for card and express checkout transactions.",
-							'woocommerce-gateway-stripe'
-						) }
-					/>
-					{ isShortAccountStatementEnabled && (
-						<>
-							{ shortStatementDescriptorErrorMessage && (
-								<InlineNotice
-									status="error"
-									isDismissible={ false }
-								>
-									<span
-										dangerouslySetInnerHTML={ {
-											__html: shortStatementDescriptorErrorMessage,
-										} }
-									/>
-								</InlineNotice>
-							) }
-							<TextLengthHelpInputWrapper
-								textLength={
-									shortAccountStatementDescriptor.length
-								}
-								maxLength={ 10 }
+
+				<CheckboxControl
+					checked={ isShortAccountStatementEnabled }
+					onChange={ setIsShortAccountStatementEnabled }
+					label={ __(
+						'Add customer order number to the bank statement',
+						'woocommerce-gateway-stripe'
+					) }
+					help={ __(
+						"When enabled, we'll include the order number for card and express checkout transactions.",
+						'woocommerce-gateway-stripe'
+					) }
+				/>
+				{ isShortAccountStatementEnabled && (
+					<>
+						{ shortStatementDescriptorErrorMessage && (
+							<InlineNotice
+								status="error"
+								isDismissible={ false }
 							>
-								<TextControl
-									help={ __(
-										"We'll use the short version in combination with the customer order number.",
-										'woocommerce-gateway-stripe'
-									) }
-									label={ __(
-										'Shortened customer bank statement',
-										'woocommerce-gateway-stripe'
-									) }
-									value={ shortAccountStatementDescriptor }
-									onChange={
-										setShortAccountStatementDescriptor
-									}
-									maxLength={ 10 }
+								<span
+									dangerouslySetInnerHTML={ {
+										__html: shortStatementDescriptorErrorMessage,
+									} }
 								/>
-							</TextLengthHelpInputWrapper>
-						</>
-					) }
-				</div>
-				<StatementPreviewsWrapper>
-					{ /* TODO: Hiding the Short Account Statement fields until it's included in the POST to Stripe */ }
-					<div style={ { display: 'none' } }>
-						{ isShortAccountStatementEnabled && (
-							<StatementPreview
-								icon="creditCard"
-								title={ __(
-									'Cards & Express Checkouts',
+							</InlineNotice>
+						) }
+						<TextLengthHelpInputWrapper
+							textLength={
+								shortAccountStatementDescriptor.length
+							}
+							maxLength={ 10 }
+						>
+							<TextControl
+								help={ __(
+									"We'll use the short version in combination with the customer order number.",
+									'woocommerce-gateway-stripe'
+								) }
+								label={ __(
+									'Shortened customer bank statement',
 									'woocommerce-gateway-stripe'
 								) }
-								text={ `${ shortAccountStatementDescriptor }* #123456` }
-								className="shortened-bank-statement"
+								value={ shortAccountStatementDescriptor }
+								onChange={ setShortAccountStatementDescriptor }
+								maxLength={ 10 }
 							/>
-						) }
-					</div>
+						</TextLengthHelpInputWrapper>
+					</>
+				) }
+				<StatementPreviewsWrapper>
+					{ isShortAccountStatementEnabled && (
+						<StatementPreview
+							icon="creditCard"
+							title={ __(
+								'Cards & Express Checkouts',
+								'woocommerce-gateway-stripe'
+							) }
+							text={ `${ shortAccountStatementDescriptor }* #123456` }
+							className="shortened-bank-statement"
+						/>
+					) }
 					<StatementPreview
 						icon="bank"
 						title={ translatedFullBankPreviewTitle }
-						text={ accountStatementDescriptor }
+						text={
+							accountStatementDescriptor ||
+							statementDescriptorPlaceholder
+						}
 						className="full-bank-statement"
 					/>
 				</StatementPreviewsWrapper>

includes/abstracts/abstract-wc-stripe-payment-gateway.php

@@ -409,12 +409,14 @@ public function get_stripe_return_url( $order = null, $id = null ) {
 	 * @return array()
 	 */
 	public function generate_payment_request( $order, $prepared_payment_method ) {
-		$settings              = get_option( 'woocommerce_stripe_settings', [] );
-		$statement_descriptor  = ! empty( $settings['statement_descriptor'] ) ? str_replace( "'", '', $settings['statement_descriptor'] ) : '';
-		$capture               = ! empty( $settings['capture'] ) && 'yes' === $settings['capture'] ? true : false;
-		$post_data             = [];
-		$post_data['currency'] = strtolower( $order->get_currency() );
-		$post_data['amount']   = WC_Stripe_Helper::get_stripe_amount( $order->get_total(), $post_data['currency'] );
+		$settings                              = get_option( 'woocommerce_stripe_settings', [] );
+		$statement_descriptor                  = ! empty( $settings['statement_descriptor'] ) ? str_replace( "'", '', $settings['statement_descriptor'] ) : '';
+		$short_statement_descriptor            = ! empty( $settings['short_statement_descriptor'] ) ? str_replace( "'", '', $settings['short_statement_descriptor'] ) : '';
+		$is_short_statement_descriptor_enabled = ! empty( $settings['is_short_statement_descriptor_enabled'] ) && 'yes' === $settings['is_short_statement_descriptor_enabled'];
+		$capture                               = ! empty( $settings['capture'] ) && 'yes' === $settings['capture'] ? true : false;
+		$post_data                             = [];
+		$post_data['currency']                 = strtolower( $order->get_currency() );
+		$post_data['amount']                   = WC_Stripe_Helper::get_stripe_amount( $order->get_total(), $post_data['currency'] );
 		/* translators: 1) blog name 2) order number */
 		$post_data['description'] = sprintf( __( '%1$s - Order %2$s', 'woocommerce-gateway-stripe' ), wp_specialchars_decode( get_bloginfo( 'name' ), ENT_QUOTES ), $order->get_order_number() );
 		$billing_email            = $order->get_billing_email();
@@ -427,7 +429,9 @@ public function generate_payment_request( $order, $prepared_payment_method ) {
 
 		switch ( $order->get_payment_method() ) {
 			case 'stripe':
-				if ( ! empty( $statement_descriptor ) ) {
+				if ( $is_short_statement_descriptor_enabled && ! ( empty( $short_statement_descriptor ) && empty( $statement_descriptor ) ) ) {
+					$post_data['statement_descriptor'] = WC_Stripe_Helper::get_dynamic_statement_descriptor( $short_statement_descriptor, $order, $statement_descriptor );
+				} elseif ( ! empty( $statement_descriptor ) ) {
 					$post_data['statement_descriptor'] = WC_Stripe_Helper::clean_statement_descriptor( $statement_descriptor );
 				}
 
@@ -437,7 +441,7 @@ public function generate_payment_request( $order, $prepared_payment_method ) {
 				if ( ! empty( $statement_descriptor ) ) {
 					$post_data['statement_descriptor'] = WC_Stripe_Helper::clean_statement_descriptor( $statement_descriptor );
 				}
-				break;
+				// other payment methods error if we try to add a statement descriptor in the request
 		}
 
 		if ( method_exists( $order, 'get_shipping_postcode' ) && ! empty( $order->get_shipping_postcode() ) ) {

includes/class-wc-stripe-helper.php

@@ -443,14 +443,41 @@ public static function get_order_by_setup_intent_id( $intent_id ) {
 		return false;
 	}
 
+	/**
+	 * Sanitize and retrieve the shortened statement descriptor concatenated with the order number.
+	 *
+	 * @param string   $statement_descriptor Shortened statement descriptor.
+	 * @param WC_Order $order Order.
+	 * @param string   $fallback_descriptor (optional) Fallback of the shortened statement descriptor in case it's blank.
+	 * @return string $statement_descriptor Final shortened statement descriptor.
+	 */
+	public static function get_dynamic_statement_descriptor( $statement_descriptor = '', $order = null, $fallback_descriptor = '' ) {
+		$actual_descriptor = ! empty( $statement_descriptor ) ? $statement_descriptor : $fallback_descriptor;
+		$prefix            = self::clean_statement_descriptor( $actual_descriptor );
+		$suffix            = '';
+
+		if ( empty( $prefix ) ) {
+			return '';
+		}
+
+		if ( method_exists( $order, 'get_order_number' ) && ! empty( $order->get_order_number() ) ) {
+			$suffix = '* #' . $order->get_order_number();
+		}
+
+		// Make sure it is limited at 22 characters.
+		$statement_descriptor = substr( $prefix . $suffix, 0, 22 );
+
+		return $statement_descriptor;
+	}
+
 	/**
 	 * Sanitize statement descriptor text.
 	 *
 	 * Stripe requires max of 22 characters and no special characters.
 	 *
 	 * @since 4.0.0
-	 * @param string $statement_descriptor
-	 * @return string $statement_descriptor Sanitized statement descriptor
+	 * @param string $statement_descriptor Statement descriptor.
+	 * @return string $statement_descriptor Sanitized statement descriptor.
 	 */
 	public static function clean_statement_descriptor( $statement_descriptor = '' ) {
 		$disallowed_characters = [ '<', '>', '\\', '*', '"', "'", '/', '(', ')', '{', '}' ];

includes/payment-methods/class-wc-stripe-upe-payment-gateway.php

@@ -495,17 +495,29 @@ public function process_payment( $order_id, $retry = true, $force_save_source =
 		$save_payment_method       = $this->has_subscription( $order_id ) || ! empty( $_POST[ 'wc-' . self::ID . '-new-payment-method' ] ); // phpcs:ignore WordPress.Security.NonceVerification.Missing
 		$selected_upe_payment_type = ! empty( $_POST['wc_stripe_selected_upe_payment_type'] ) ? wc_clean( wp_unslash( $_POST['wc_stripe_selected_upe_payment_type'] ) ) : ''; // phpcs:ignore WordPress.Security.NonceVerification.Missing
 
+		$statement_descriptor                  = ! empty( $this->get_option( 'statement_descriptor' ) ) ? str_replace( "'", '', $this->get_option( 'statement_descriptor' ) ) : '';
+		$short_statement_descriptor            = ! empty( $this->get_option( 'short_statement_descriptor' ) ) ? str_replace( "'", '', $this->get_option( 'short_statement_descriptor' ) ) : '';
+		$is_short_statement_descriptor_enabled = ! empty( $this->get_option( 'is_short_statement_descriptor_enabled' ) ) && 'yes' === $this->get_option( 'is_short_statement_descriptor_enabled' );
+		$descriptor                            = null;
+		if ( 'card' === $selected_upe_payment_type && $is_short_statement_descriptor_enabled && ! ( empty( $short_statement_descriptor ) && empty( $statement_descriptor ) ) ) {
+			// Use the shortened statement descriptor for card transactions only
+			$descriptor = WC_Stripe_Helper::get_dynamic_statement_descriptor( $short_statement_descriptor, $order, $statement_descriptor );
+		} elseif ( ! empty( $statement_descriptor ) ) {
+			$descriptor = WC_Stripe_Helper::clean_statement_descriptor( $statement_descriptor );
+		}
+
 		if ( $payment_intent_id ) {
 			if ( $payment_needed ) {
 				$amount           = $order->get_total();
 				$currency         = $order->get_currency();
 				$converted_amount = WC_Stripe_Helper::get_stripe_amount( $amount, $currency );
 
 				$request = [
-					'amount'      => $converted_amount,
-					'currency'    => $currency,
+					'amount'               => $converted_amount,
+					'currency'             => $currency,
+					'statement_descriptor' => $descriptor,
 					/* translators: 1) blog name 2) order number */
-					'description' => sprintf( __( '%1$s - Order %2$s', 'woocommerce-gateway-stripe' ), wp_specialchars_decode( get_bloginfo( 'name' ), ENT_QUOTES ), $order->get_order_number() ),
+					'description'          => sprintf( __( '%1$s - Order %2$s', 'woocommerce-gateway-stripe' ), wp_specialchars_decode( get_bloginfo( 'name' ), ENT_QUOTES ), $order->get_order_number() ),
 				];
 
 				// Get user/customer for order.

tests/phpunit/test-class-wc-stripe-upe-payment-gateway.php

@@ -145,7 +145,7 @@ private function get_order_details( $order ) {
 		$order_key    = $order->get_order_key();
 		$amount       = WC_Stripe_Helper::get_stripe_amount( $total, $currency );
 		$description  = "Test Blog - Order $order_number";
-		$metadata = [
+		$metadata     = [
 			'customer_name'  => 'Jeroen Sormani',
 			'customer_email' => '[email protected]',
 			'site_url'       => 'http://example.org',
@@ -185,11 +185,12 @@ public function test_process_payment_returns_valid_response() {
 		list( $amount, $description, $metadata ) = $this->get_order_details( $order );
 
 		$expected_request = [
-			'amount'      => $amount,
-			'currency'    => $currency,
-			'description' => $description,
-			'customer'    => $customer_id,
-			'metadata'    => $metadata,
+			'amount'               => $amount,
+			'currency'             => $currency,
+			'description'          => $description,
+			'customer'             => $customer_id,
+			'metadata'             => $metadata,
+			'statement_descriptor' => null,
 		];
 
 		$_POST = [ 'wc_payment_intent_id' => $payment_intent_id ];
@@ -312,7 +313,7 @@ public function test_process_redirect_payment_only_runs_once() {
 
 		$success_order = wc_get_order( $order_id );
 
-		$note          = wc_get_order_notes(
+		$note = wc_get_order_notes(
 			[
 				'order_id' => $order_id,
 				'limit'    => 2,
@@ -983,12 +984,13 @@ public function test_if_order_has_subscription_payment_method_will_be_saved() {
 		list( $amount, $description, $metadata ) = $this->get_order_details( $order );
 
 		$expected_request = [
-			'amount'             => $amount,
-			'currency'           => $currency,
-			'description'        => $description,
-			'customer'           => $customer_id,
-			'metadata'           => $metadata,
-			'setup_future_usage' => 'off_session',
+			'amount'               => $amount,
+			'currency'             => $currency,
+			'description'          => $description,
+			'customer'             => $customer_id,
+			'metadata'             => $metadata,
+			'setup_future_usage'   => 'off_session',
+			'statement_descriptor' => null,
 		];
 
 		$_POST = [ 'wc_payment_intent_id' => $payment_intent_id ];